mercurial-scm/hg-stable: mercurial/url.py comparison

comparison mercurial/url.py @ 13421:bd8bfa85d5a5

url: refactor BetterHTTPS.connect

author	Mads Kiilerich <mads@kiilerich.com>
date	Wed, 16 Feb 2011 04:28:17 +0100
parents	051f498628f7
children	ebce5196b9db

comparison

equal deleted inserted replaced

-:051f498628f7
+:bd8bfa85d5a5
 if has_https:
 class BetterHTTPS(httplib.HTTPSConnection):
 send = keepalive.safesend
 def connect(self):
+host = self.host
 cacerts = self.ui.config('web', 'cacerts')
-if cacerts:
+hostfingerprint = self.ui.config('hostfingerprints', host)
-cacerts = util.expandpath(cacerts)
-hostfingerprint = self.ui.config('hostfingerprints', self.host)
 if cacerts and not hostfingerprint:
 sock = _create_connection((self.host, self.port))
-self.sock = _ssl_wrap_socket(sock, self.key_file,
+self.sock = _ssl_wrap_socket(self.sock, self.key_file,
 self.cert_file, cert_reqs=CERT_REQUIRED,
-ca_certs=cacerts)
+ca_certs=util.expandpath(cacerts))
-msg = _verifycert(self.sock.getpeercert(), self.host)
+msg = _verifycert(self.sock.getpeercert(), host)
 if msg:
 raise util.Abort(_('%s certificate error: %s '
 '(use --insecure to connect '
-'insecurely)') % (self.host, msg))
+'insecurely)') % (host, msg))
-self.ui.debug('%s certificate successfully verified\n' %
+self.ui.debug('%s certificate successfully verified\n' % host)
-self.host)
 else:
 httplib.HTTPSConnection.connect(self)
 if hasattr(self.sock, 'getpeercert'):
 peercert = self.sock.getpeercert(True)
 peerfingerprint = util.sha1(peercert).hexdigest()
 if hostfingerprint:
 if peerfingerprint.lower() != \
 hostfingerprint.replace(':', '').lower():
 raise util.Abort(_('invalid certificate for %s '
 'with fingerprint %s') %
-(self.host, nicefingerprint))
+(host, nicefingerprint))
 self.ui.debug('%s certificate matched fingerprint %s\n' %
-(self.host, nicefingerprint))
+(host, nicefingerprint))
 else:
 self.ui.warn(_('warning: %s certificate '
 'with fingerprint %s not verified '
 '(check hostfingerprints or web.cacerts '
 'config setting)\n') %
-(self.host, nicefingerprint))
+(host, nicefingerprint))
 else: # python 2.5 ?
 if hostfingerprint:
-raise util.Abort(_('no certificate for %s '
+raise util.Abort(_('no certificate for %s with '
-'with fingerprint') % self.host)
+'configured hostfingerprint') % host)
 self.ui.warn(_('warning: %s certificate not verified '
 '(check web.cacerts config setting)\n') %
-self.host)
+host)
 class httpsconnection(BetterHTTPS):
 response_class = keepalive.HTTPResponse
 # must be able to send big bundle as stream.
 send = _gen_sendfile(BetterHTTPS.send)

Mercurial > public > mercurial-scm > hg-stable

comparison mercurial/url.py @ 13421:bd8bfa85d5a5