upstream/mercurial-mirror Commit - r29291:15e533b7

sslutil: refactor code for fingerprint matching...

Gregory Szorc -

r29291:15e533b7 default

parent child

mercurial/sslutil.py

0 +7 -10

                      section = 'hostsecurity'
                  if settings['certfingerprints']:
-                     fingerprintmatch = False
                      for hash, fingerprint in settings['certfingerprints']:
                          if peerfingerprints[hash].lower() == fingerprint:
-                             fingerprintmatch = True
-                             break
-                     if not fingerprintmatch:
-                         raise error.Abort(_('certificate for %s has unexpected '
-                                            'fingerprint %s') % (host, legacyfingerprint),
-                                           hint=_('check %s configuration') % section)
-                     ui.debug('%s certificate matched fingerprint %s\n' %
-                              (host, legacyfingerprint))
-                     return
+                             ui.debug('%s certificate matched fingerprint %s:%s\n' %
+                                      (host, hash, fmtfingerprint(fingerprint)))
+                             return
+                     raise error.Abort(_('certificate for %s has unexpected '
+                                         'fingerprint %s') % (host, legacyfingerprint),
+                                       hint=_('check %s configuration') % section)
                  if not sock._hgstate['caloaded']:
                      ui.warn(_('warning: %s certificate with fingerprint %s '

General Comments 0

You need to be logged in to leave comments. Login now

No reviewers

No TODOs yet

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages