Mercurial > public > mercurial-scm > hg-stable
comparison mercurial/sslutil.py @ 44953:39c598f1c774
sslutil: remove comment referring to unsupported legacy stacks
| author | Manuel Jacob <me@manueljacob.de> |
|---|---|
| date | Fri, 29 May 2020 22:47:58 +0200 |
| parents | dd7c4a208a4e |
| children | 5921dc0d5c3a |
comparison
equal
deleted
inserted
replaced
| 44952:95c832849955 | 44953:39c598f1c774 |
|---|---|
| 255 """ | 255 """ |
| 256 if minimumprotocol not in configprotocols: | 256 if minimumprotocol not in configprotocols: |
| 257 raise ValueError(b'protocol value not supported: %s' % minimumprotocol) | 257 raise ValueError(b'protocol value not supported: %s' % minimumprotocol) |
| 258 | 258 |
| 259 # Despite its name, PROTOCOL_SSLv23 selects the highest protocol | 259 # Despite its name, PROTOCOL_SSLv23 selects the highest protocol |
| 260 # that both ends support, including TLS protocols. On legacy stacks, | 260 # that both ends support, including TLS protocols. |
| 261 # the highest it likely goes is TLS 1.0. On modern stacks, it can | |
| 262 # support TLS 1.2. | |
| 263 # | 261 # |
| 264 # The PROTOCOL_TLSv* constants select a specific TLS version | 262 # The PROTOCOL_TLSv* constants select a specific TLS version |
| 265 # only (as opposed to multiple versions). So the method for | 263 # only (as opposed to multiple versions). So the method for |
| 266 # supporting multiple TLS versions is to use PROTOCOL_SSLv23 and | 264 # supporting multiple TLS versions is to use PROTOCOL_SSLv23 and |
| 267 # disable protocols via SSLContext.options and OP_NO_* constants. | 265 # disable protocols via SSLContext.options and OP_NO_* constants. |