upstream/mercurial-mirror Commit - r13248:00411a4f

url: fix UnicodeDecodeError on certificate verification error...

Yuya Nishihara -

r13248:00411a4f stable

parent child

mercurial/url.py

0 +5 -1

                 for s in cert.get('subject', []):
                     key, value = s[0]
                     if key == 'commonName':
-                        certname = value.lower()
+                        try:
+                            # 'subject' entries are unicode
+                            certname = value.lower().encode('ascii')
+                        except UnicodeEncodeError:
+                            return _('IDN in certificate not supported')
                         if (certname == dnsname or
                             '.' in dnsname and certname == '*.' + dnsname.split('.', 1)[1]):
                             return None

tests/test-url.py

0 +4 0

@@ -36,3 +36,7 b" check(_verifycert({'subject': ()},"
36	'no commonName found in certificate')	36	'no commonName found in certificate')
37	check(_verifycert(None, 'example.com'),	37	check(_verifycert(None, 'example.com'),
38	'no certificate received')	38	'no certificate received')
		39
		40	# Unicode (IDN) certname isn't supported
		41	check(_verifycert(cert(u'\u4f8b.jp'), 'example.jp'),
		42	'IDN in certificate not supported')

General Comments 0

You need to be logged in to leave comments. Login now

No TODOs yet

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages