mercurial-scm/hg: comparison mercurial/sslutil.py

equal deleted inserted replaced

-:5edc5acecc83
+:5b9577edf745
 return ui.getpass(_('passphrase for %s: ') % f, '')
 sslcontext.load_cert_chain(certfile, keyfile, password)
 if ca_certs is not None:
 sslcontext.load_verify_locations(cafile=ca_certs)
+caloaded = True
 else:
 # This is a no-op on old Python.
 sslcontext.load_default_certs()
+caloaded = _canloaddefaultcerts
 sslsocket = sslcontext.wrap_socket(sock, server_hostname=serverhostname)
 # check if wrap_socket failed silently because socket had been
 # closed
 # - see http://bugs.python.org/issue13721
 if not sslsocket.cipher():
 raise error.Abort(_('ssl connection failed'))
+sslsocket._hgcaloaded = caloaded
 return sslsocket
 def _verifycert(cert, hostname):
 '''Verify that cert (in socket.getpeercert() format) matches hostname.
 CRLs is not handled.
 # FUTURE this can disappear once wrapsocket() is secure by default.
 if _canloaddefaultcerts:
 kws['cert_reqs'] = ssl.CERT_REQUIRED
 return kws
-# This is effectively indicating that no CAs can be loaded because
-# we can't get here if web.cacerts is set or if we can find
-# CA certs elsewhere. Using a config option (which is later
-# consulted by validator.__call__ is not very obvious).
-# FUTURE fix this
-ui.setconfig('web', 'cacerts', '!', 'defaultcacerts')
 return kws
 class validator(object):
 def __init__(self, ui, host):
 self.ui = ui
 'verified (check hostfingerprints or web.cacerts '
 'config setting)\n') %
 (host, nicefingerprint))
 return
-# No pinned fingerprint. Establish trust by looking at the CAs.
+if not sock._hgcaloaded:
-cacerts = self.ui.config('web', 'cacerts')
+if strict:
-if cacerts != '!':
+raise error.Abort(_('%s certificate with fingerprint %s not '
-msg = _verifycert(peercert2, host)
+'verified') % (host, nicefingerprint),
-if msg:
+hint=_('check hostfingerprints or '
-raise error.Abort(_('%s certificate error: %s') % (host, msg),
+'web.cacerts config setting'))
-hint=_('configure hostfingerprint %s or use '
+else:
-'--insecure to connect insecurely') %
+self.ui.warn(_('warning: %s certificate with fingerprint %s '
-nicefingerprint)
+'not verified (check hostfingerprints or '
-self.ui.debug('%s certificate successfully verified\n' % host)
+'web.cacerts config setting)\n') %
-elif strict:
+(host, nicefingerprint))
-raise error.Abort(_('%s certificate with fingerprint %s not '
-'verified') % (host, nicefingerprint),
+return
-hint=_('check hostfingerprints or web.cacerts '
-'config setting'))
+msg = _verifycert(peercert2, host)
-else:
+if msg:
-self.ui.warn(_('warning: %s certificate with fingerprint %s not '
+raise error.Abort(_('%s certificate error: %s') % (host, msg),
-'verified (check hostfingerprints or web.cacerts '
+hint=_('configure hostfingerprint %s or use '
-'config setting)\n') %
+'--insecure to connect insecurely') %
-(host, nicefingerprint))
+nicefingerprint)

changeset 29113	5b9577edf745
parent 29112	5edc5acecc83
child 29115	ef316c653b7f