upstream/mercurial-mirror Commit - r29291:15e533b7

sslutil: refactor code for fingerprint matching...

Gregory Szorc -

r29291:15e533b7 default

parent child

mercurial/sslutil.py

0 +7 -10

                     section = 'hostsecurity'
                 if settings['certfingerprints']:
-                    fingerprintmatch = False
                     for hash, fingerprint in settings['certfingerprints']:
                         if peerfingerprints[hash].lower() == fingerprint:
-                            fingerprintmatch = True
+                            ui.debug('%s certificate matched fingerprint %s:%s\n' %
-                            break
+                                     (host, hash, fmtfingerprint(fingerprint)))
-                    if not fingerprintmatch:
+                            return
-                        raise error.Abort(_('certificate for %s has unexpected '
-                                           'fingerprint %s') % (host, legacyfingerprint),
+                    raise error.Abort(_('certificate for %s has unexpected '
-                                          hint=_('check %s configuration') % section)
+                                        'fingerprint %s') % (host, legacyfingerprint),
-                    ui.debug('%s certificate matched fingerprint %s\n' %
+                                      hint=_('check %s configuration') % section)
-                             (host, legacyfingerprint))
-                    return
                 if not sock._hgstate['caloaded']:
                     ui.warn(_('warning: %s certificate with fingerprint %s '

General Comments 0

You need to be logged in to leave comments. Login now

No TODOs yet

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages