upstream/mercurial-mirror Commit - r29105:548e9c8c

sslutil: document and slightly refactor sslkwargs...

Gregory Szorc -

r29105:548e9c8c default

parent child

mercurial/sslutil.py

0 +15 -2

                 return '!'
             def sslkwargs(ui, host):
+                """Determine arguments to pass to wrapsocket().
+                ``host`` is the hostname being connected to.
+                """
                 kws = {'ui': ui}
+                # If a host key fingerprint is on file, it is the only thing that matters
+                # and CA certs don't come into play.
                 hostfingerprint = ui.config('hostfingerprints', host)
                 if hostfingerprint:
                     return kws
+                # dispatch sets web.cacerts=! when --insecure is used.
                 cacerts = ui.config('web', 'cacerts')
                 if cacerts == '!':
-                    pass
+                    return kws
-                elif cacerts:
+                if cacerts:
                     cacerts = util.expandpath(cacerts)
                     if not os.path.exists(cacerts):
                         raise error.Abort(_('could not find web.cacerts: %s') % cacerts)
                 else:
+                    # CA certs aren't explicitly listed in the config. See if we can load
+                    # defaults.
                     cacerts = _defaultcacerts()
                     if cacerts and cacerts != '!':
                         ui.debug('using %s to enable OS X system CA\n' % cacerts)
                     ui.setconfig('web', 'cacerts', cacerts, 'defaultcacerts')
                 if cacerts != '!':
                     kws.update({'ca_certs': cacerts,
                                 'cert_reqs': ssl.CERT_REQUIRED,

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages