Comment # 1 on bug 919209 from Jan Matejek

actually, the right thing now is to get the context through:
context = ssl.create_default_context()
context.wrap_socket(...)

unfortunately, for various reasons the libraries such as requests can't do
this, and they have already been patched to rely on our enhanced python :)
besides, the way python's ssl still (!) mirrors openssl api, is inferior to
what our patch did, so i'll be reintroducing it.