upstream/mercurial-mirror Commit - r13544:66d65bcc

cacert: improve error report when web.cacert file does not exist

timeless -

r13544:66d65bcc stable

parent child

mercurial/url.py

0 +5 -1

                         hostfingerprint = self.ui.config('hostfingerprints', host)
                         if cacerts and not hostfingerprint:
+                            cacerts = util.expandpath(cacerts)
+                            if not os.path.exists(cacerts):
+                                raise util.Abort(_('could not find '
+                                                   'web.cacerts: %s') % cacerts)
                             self.sock = _ssl_wrap_socket(self.sock, self.key_file,
                                 self.cert_file, cert_reqs=CERT_REQUIRED,
-                                ca_certs=util.expandpath(cacerts))
+                                ca_certs=cacerts)
                             msg = _verifycert(self.sock.getpeercert(), host)
                             if msg:
                                 raise util.Abort(_('%s certificate error: %s '

tests/test-https.t

0 +6 0

               $ hg serve -p $HGPORT -d --pid-file=../hg0.pid --certificate=$PRIV
               $ cat ../hg0.pid >> $DAEMON_PIDS
+            cacert not found
+              $ hg in --config web.cacerts=no-such.pem https://localhost:$HGPORT/
+              abort: could not find web.cacerts: no-such.pem
+              [255]
             Test server address cannot be reused
               $ hg serve -p $HGPORT --certificate=$PRIV 2>&1

General Comments 0

You need to be logged in to leave comments. Login now

No TODOs yet

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages