SSLContext.wrap_socket() is good to use in 3.6

mikemanger · mikemanger · commit c7cf483c5bb7 · 2024-12-05T12:15:53.000Z
diff --git a/lib/createsend/utils.py b/lib/createsend/utils.py
@@ -99,21 +99,12 @@ def connect(self):
 
         cert_path = os.path.join(os.path.dirname(__file__), 'cacert.pem')
 
-        # for >= py3.7, mandatory since 3.12
-        if hasattr(ssl.SSLContext, 'wrap_socket'):
-            context = ssl.SSLContext()
-            context.verify_mode = ssl.CERT_REQUIRED
-            context.load_verify_locations(cert_path)
-            if hasattr(self, 'cert_file') and hasattr(self, 'key_file') and self.cert_file and self.key_file:
-                context.load_cert_chain(certfile=self.cert_file, keyfile=self.key_file)
-            self.sock = context.wrap_socket(sock)
-        else:
-            self.sock = ssl.wrap_socket(
-                sock,
-                self.key_file,
-                self.cert_file,
-                cert_reqs=ssl.CERT_REQUIRED,
-                ca_certs=cert_path)
+        context = ssl.SSLContext()
+        context.verify_mode = ssl.CERT_REQUIRED
+        context.load_verify_locations(cert_path)
+        if hasattr(self, 'cert_file') and hasattr(self, 'key_file') and self.cert_file and self.key_file:
+            context.load_cert_chain(certfile=self.cert_file, keyfile=self.key_file)
+        self.sock = context.wrap_socket(sock)
 
         try:
             match_hostname(self.sock.getpeercert(), self.host)
