upstream/mercurial-mirror Commit - r29483:918dce4b

sslutil: pass ui to _defaultcacerts...

Gregory Szorc -

r29483:918dce4b default

parent child

mercurial/sslutil.py

0 +2 -2

             # sslutil.py - SSL handling for mercurial
             #
             # Copyright 2005, 2006, 2007, 2008 Matt Mackall <mpm@selenic.com>
             # Copyright 2006, 2007 Alexis S. L. Carvalho <alexis@cecm.usp.br>
             # Copyright 2006 Vadim Gelfer <vadim.gelfer@gmail.com>
             #
             # This software may be used and distributed according to the terms of the
             # GNU General Public License version 2 or any later version.
             from __future__ import absolute_import
             import hashlib
             import os
             import re
             import ssl
             import sys
             from .i18n import _
             from . import (
                 error,
                 util,
             )
             # Python 2.7.9+ overhauled the built-in SSL/TLS features of Python. It added
             # support for TLS 1.1, TLS 1.2, SNI, system CA stores, etc. These features are
             # all exposed via the "ssl" module.
             #
             # Depending on the version of Python being used, SSL/TLS support is either
             # modern/secure or legacy/insecure. Many operations in this module have
             # separate code paths depending on support in Python.
             hassni = getattr(ssl, 'HAS_SNI', False)
             try:
                 OP_NO_SSLv2 = ssl.OP_NO_SSLv2
                 OP_NO_SSLv3 = ssl.OP_NO_SSLv3
             except AttributeError:
                 OP_NO_SSLv2 = 0x1000000
                 OP_NO_SSLv3 = 0x2000000
             try:
                 # ssl.SSLContext was added in 2.7.9 and presence indicates modern
                 # SSL/TLS features are available.
                 SSLContext = ssl.SSLContext
                 modernssl = True
                 _canloaddefaultcerts = util.safehasattr(SSLContext, 'load_default_certs')
             except AttributeError:
                 modernssl = False
                 _canloaddefaultcerts = False
                 # We implement SSLContext using the interface from the standard library.
                 class SSLContext(object):
                     # ssl.wrap_socket gained the "ciphers" named argument in 2.7.
                     _supportsciphers = sys.version_info >= (2, 7)
                     def __init__(self, protocol):
                         # From the public interface of SSLContext
                         self.protocol = protocol
                         self.check_hostname = False
                         self.options = 0
                         self.verify_mode = ssl.CERT_NONE
                         # Used by our implementation.
                         self._certfile = None
                         self._keyfile = None
                         self._certpassword = None
                         self._cacerts = None
                         self._ciphers = None
                     def load_cert_chain(self, certfile, keyfile=None, password=None):
                         self._certfile = certfile
                         self._keyfile = keyfile
                         self._certpassword = password
                     def load_default_certs(self, purpose=None):
                         pass
                     def load_verify_locations(self, cafile=None, capath=None, cadata=None):
                         if capath:
                             raise error.Abort(_('capath not supported'))
                         if cadata:
                             raise error.Abort(_('cadata not supported'))
                         self._cacerts = cafile
                     def set_ciphers(self, ciphers):
                         if not self._supportsciphers:
                             raise error.Abort(_('setting ciphers not supported'))
                         self._ciphers = ciphers
                     def wrap_socket(self, socket, server_hostname=None, server_side=False):
                         # server_hostname is unique to SSLContext.wrap_socket and is used
                         # for SNI in that context. So there's nothing for us to do with it
                         # in this legacy code since we don't support SNI.
                         args = {
                             'keyfile': self._keyfile,
                             'certfile': self._certfile,
                             'server_side': server_side,
                             'cert_reqs': self.verify_mode,
                             'ssl_version': self.protocol,
                             'ca_certs': self._cacerts,
                         }
                         if self._supportsciphers:
                             args['ciphers'] = self._ciphers
                         return ssl.wrap_socket(socket, **args)
             def _hostsettings(ui, hostname):
                 """Obtain security settings for a hostname.
                 Returns a dict of settings relevant to that hostname.
                 """
                 s = {
                     # Whether we should attempt to load default/available CA certs
                     # if an explicit ``cafile`` is not defined.
                     'allowloaddefaultcerts': True,
                     # List of 2-tuple of (hash algorithm, hash).
                     'certfingerprints': [],
                     # Path to file containing concatenated CA certs. Used by
                     # SSLContext.load_verify_locations().
                     'cafile': None,
                     # Whether certificate verification should be disabled.
                     'disablecertverification': False,
                     # Whether the legacy [hostfingerprints] section has data for this host.
                     'legacyfingerprint': False,
                     # ssl.CERT_* constant used by SSLContext.verify_mode.
                     'verifymode': None,
                 }
                 # Look for fingerprints in [hostsecurity] section. Value is a list
                 # of <alg>:<fingerprint> strings.
                 fingerprints = ui.configlist('hostsecurity', '%s:fingerprints' % hostname,
                                              [])
                 for fingerprint in fingerprints:
                     if not (fingerprint.startswith(('sha1:', 'sha256:', 'sha512:'))):
                         raise error.Abort(_('invalid fingerprint for %s: %s') % (
                                             hostname, fingerprint),
                                           hint=_('must begin with "sha1:", "sha256:", '
                                                  'or "sha512:"'))
                     alg, fingerprint = fingerprint.split(':', 1)
                     fingerprint = fingerprint.replace(':', '').lower()
                     s['certfingerprints'].append((alg, fingerprint))
                 # Fingerprints from [hostfingerprints] are always SHA-1.
                 for fingerprint in ui.configlist('hostfingerprints', hostname, []):
                     fingerprint = fingerprint.replace(':', '').lower()
                     s['certfingerprints'].append(('sha1', fingerprint))
                     s['legacyfingerprint'] = True
                 # If a host cert fingerprint is defined, it is the only thing that
                 # matters. No need to validate CA certs.
                 if s['certfingerprints']:
                     s['verifymode'] = ssl.CERT_NONE
                     s['allowloaddefaultcerts'] = False
                 # If --insecure is used, don't take CAs into consideration.
                 elif ui.insecureconnections:
                     s['disablecertverification'] = True
                     s['verifymode'] = ssl.CERT_NONE
                     s['allowloaddefaultcerts'] = False
                 if ui.configbool('devel', 'disableloaddefaultcerts'):
                     s['allowloaddefaultcerts'] = False
                 # If both fingerprints and a per-host ca file are specified, issue a warning
                 # because users should not be surprised about what security is or isn't
                 # being performed.
                 cafile = ui.config('hostsecurity', '%s:verifycertsfile' % hostname)
                 if s['certfingerprints'] and cafile:
                     ui.warn(_('(hostsecurity.%s:verifycertsfile ignored when host '
                               'fingerprints defined; using host fingerprints for '
                               'verification)\n') % hostname)
                 # Try to hook up CA certificate validation unless something above
                 # makes it not necessary.
                 if s['verifymode'] is None:
                     # Look at per-host ca file first.
                     if cafile:
                         cafile = util.expandpath(cafile)
                         if not os.path.exists(cafile):
                             raise error.Abort(_('path specified by %s does not exist: %s') %
                                               ('hostsecurity.%s:verifycertsfile' % hostname,
                                                cafile))
                         s['cafile'] = cafile
                     else:
                         # Find global certificates file in config.
                         cafile = ui.config('web', 'cacerts')
                         if cafile:
                             cafile = util.expandpath(cafile)
                             if not os.path.exists(cafile):
                                 raise error.Abort(_('could not find web.cacerts: %s') %
                                                   cafile)
                         else:
                             # CAs not defined in config. Try to find system bundles.
-                            cafile = _defaultcacerts()
+                            cafile = _defaultcacerts(ui)
                             if cafile:
                                 ui.debug('using %s for CA file\n' % cafile)
                         s['cafile'] = cafile
                     # Require certificate validation if CA certs are being loaded and
                     # verification hasn't been disabled above.
                     if cafile or (_canloaddefaultcerts and s['allowloaddefaultcerts']):
                         s['verifymode'] = ssl.CERT_REQUIRED
                     else:
                         # At this point we don't have a fingerprint, aren't being
                         # explicitly insecure, and can't load CA certs. Connecting
                         # is insecure. We allow the connection and abort during
                         # validation (once we have the fingerprint to print to the
                         # user).
                         s['verifymode'] = ssl.CERT_NONE
                 assert s['verifymode'] is not None
                 return s
             def wrapsocket(sock, keyfile, certfile, ui, serverhostname=None):
                 """Add SSL/TLS to a socket.
                 This is a glorified wrapper for ``ssl.wrap_socket()``. It makes sane
                 choices based on what security options are available.
                 In addition to the arguments supported by ``ssl.wrap_socket``, we allow
                 the following additional arguments:
                 * serverhostname - The expected hostname of the remote server. If the
                   server (and client) support SNI, this tells the server which certificate
                   to use.
                 """
                 if not serverhostname:
                     raise error.Abort(_('serverhostname argument is required'))
                 settings = _hostsettings(ui, serverhostname)
                 # Despite its name, PROTOCOL_SSLv23 selects the highest protocol
                 # that both ends support, including TLS protocols. On legacy stacks,
                 # the highest it likely goes in TLS 1.0. On modern stacks, it can
                 # support TLS 1.2.
                 #
                 # The PROTOCOL_TLSv* constants select a specific TLS version
                 # only (as opposed to multiple versions). So the method for
                 # supporting multiple TLS versions is to use PROTOCOL_SSLv23 and
                 # disable protocols via SSLContext.options and OP_NO_* constants.
                 # However, SSLContext.options doesn't work unless we have the
                 # full/real SSLContext available to us.
                 #
                 # SSLv2 and SSLv3 are broken. We ban them outright.
                 if modernssl:
                     protocol = ssl.PROTOCOL_SSLv23
                 else:
                     protocol = ssl.PROTOCOL_TLSv1
                 # TODO use ssl.create_default_context() on modernssl.
                 sslcontext = SSLContext(protocol)
                 # This is a no-op on old Python.
                 sslcontext.options |= OP_NO_SSLv2 | OP_NO_SSLv3
                 # This still works on our fake SSLContext.
                 sslcontext.verify_mode = settings['verifymode']
                 if certfile is not None:
                     def password():
                         f = keyfile or certfile
                         return ui.getpass(_('passphrase for %s: ') % f, '')
                     sslcontext.load_cert_chain(certfile, keyfile, password)
                 if settings['cafile'] is not None:
                     try:
                         sslcontext.load_verify_locations(cafile=settings['cafile'])
                     except ssl.SSLError as e:
                         raise error.Abort(_('error loading CA file %s: %s') % (
                                           settings['cafile'], e.args[1]),
                                           hint=_('file is empty or malformed?'))
                     caloaded = True
                 elif settings['allowloaddefaultcerts']:
                     # This is a no-op on old Python.
                     sslcontext.load_default_certs()
                     caloaded = True
                 else:
                     caloaded = False
                 try:
                     sslsocket = sslcontext.wrap_socket(sock, server_hostname=serverhostname)
                 except ssl.SSLError:
                     # If we're doing certificate verification and no CA certs are loaded,
                     # that is almost certainly the reason why verification failed. Provide
                     # a hint to the user.
                     # Only modern ssl module exposes SSLContext.get_ca_certs() so we can
                     # only show this warning if modern ssl is available.
                     if (caloaded and settings['verifymode'] == ssl.CERT_REQUIRED and
                         modernssl and not sslcontext.get_ca_certs()):
                         ui.warn(_('(an attempt was made to load CA certificates but none '
                                   'were loaded; see '
                                   'https://mercurial-scm.org/wiki/SecureConnections for '
                                   'how to configure Mercurial to avoid this error)\n'))
                     raise
                 # check if wrap_socket failed silently because socket had been
                 # closed
                 # - see http://bugs.python.org/issue13721
                 if not sslsocket.cipher():
                     raise error.Abort(_('ssl connection failed'))
                 sslsocket._hgstate = {
                     'caloaded': caloaded,
                     'hostname': serverhostname,
                     'settings': settings,
                     'ui': ui,
                 }
                 return sslsocket
             class wildcarderror(Exception):
                 """Represents an error parsing wildcards in DNS name."""
             def _dnsnamematch(dn, hostname, maxwildcards=1):
                 """Match DNS names according RFC 6125 section 6.4.3.
                 This code is effectively copied from CPython's ssl._dnsname_match.
                 Returns a bool indicating whether the expected hostname matches
                 the value in ``dn``.
                 """
                 pats = []
                 if not dn:
                     return False
                 pieces = dn.split(r'.')
                 leftmost = pieces[0]
                 remainder = pieces[1:]
                 wildcards = leftmost.count('*')
                 if wildcards > maxwildcards:
                     raise wildcarderror(
                         _('too many wildcards in certificate DNS name: %s') % dn)
                 # speed up common case w/o wildcards
                 if not wildcards:
                     return dn.lower() == hostname.lower()
                 # RFC 6125, section 6.4.3, subitem 1.
                 # The client SHOULD NOT attempt to match a presented identifier in which
                 # the wildcard character comprises a label other than the left-most label.
                 if leftmost == '*':
                     # When '*' is a fragment by itself, it matches a non-empty dotless
                     # fragment.
                     pats.append('[^.]+')
                 elif leftmost.startswith('xn--') or hostname.startswith('xn--'):
                     # RFC 6125, section 6.4.3, subitem 3.
                     # The client SHOULD NOT attempt to match a presented identifier
                     # where the wildcard character is embedded within an A-label or
                     # U-label of an internationalized domain name.
                     pats.append(re.escape(leftmost))
                 else:
                     # Otherwise, '*' matches any dotless string, e.g. www*
                     pats.append(re.escape(leftmost).replace(r'\*', '[^.]*'))
                 # add the remaining fragments, ignore any wildcards
                 for frag in remainder:
                     pats.append(re.escape(frag))
                 pat = re.compile(r'\A' + r'\.'.join(pats) + r'\Z', re.IGNORECASE)
                 return pat.match(hostname) is not None
             def _verifycert(cert, hostname):
                 '''Verify that cert (in socket.getpeercert() format) matches hostname.
                 CRLs is not handled.
                 Returns error message if any problems are found and None on success.
                 '''
                 if not cert:
                     return _('no certificate received')
                 dnsnames = []
                 san = cert.get('subjectAltName', [])
                 for key, value in san:
                     if key == 'DNS':
                         try:
                             if _dnsnamematch(value, hostname):
                                 return
                         except wildcarderror as e:
                             return e.message
                         dnsnames.append(value)
                 if not dnsnames:
                     # The subject is only checked when there is no DNS in subjectAltName.
                     for sub in cert.get('subject', []):
                         for key, value in sub:
                             # According to RFC 2818 the most specific Common Name must
                             # be used.
                             if key == 'commonName':
                                 # 'subject' entries are unicide.
                                 try:
                                     value = value.encode('ascii')
                                 except UnicodeEncodeError:
                                     return _('IDN in certificate not supported')
                                 try:
                                     if _dnsnamematch(value, hostname):
                                         return
                                 except wildcarderror as e:
                                     return e.message
                                 dnsnames.append(value)
                 if len(dnsnames) > 1:
                     return _('certificate is for %s') % ', '.join(dnsnames)
                 elif len(dnsnames) == 1:
                     return _('certificate is for %s') % dnsnames[0]
                 else:
                     return _('no commonName or subjectAltName found in certificate')
             def _plainapplepython():
                 """return true if this seems to be a pure Apple Python that
                 * is unfrozen and presumably has the whole mercurial module in the file
                   system
                 * presumably is an Apple Python that uses Apple OpenSSL which has patches
                   for using system certificate store CAs in addition to the provided
                   cacerts file
                 """
                 if sys.platform != 'darwin' or util.mainfrozen() or not sys.executable:
                     return False
                 exe = os.path.realpath(sys.executable).lower()
                 return (exe.startswith('/usr/bin/python') or
                         exe.startswith('/system/library/frameworks/python.framework/'))
-            def _defaultcacerts():
+            def _defaultcacerts(ui):
                 """return path to default CA certificates or None."""
                 if _plainapplepython():
                     dummycert = os.path.join(os.path.dirname(__file__), 'dummycert.pem')
                     if os.path.exists(dummycert):
                         return dummycert
                 return None
             def validatesocket(sock):
                 """Validate a socket meets security requiremnets.
                 The passed socket must have been created with ``wrapsocket()``.
                 """
                 host = sock._hgstate['hostname']
                 ui = sock._hgstate['ui']
                 settings = sock._hgstate['settings']
                 try:
                     peercert = sock.getpeercert(True)
                     peercert2 = sock.getpeercert()
                 except AttributeError:
                     raise error.Abort(_('%s ssl connection error') % host)
                 if not peercert:
                     raise error.Abort(_('%s certificate error: '
                                        'no certificate received') % host)
                 if settings['disablecertverification']:
                     # We don't print the certificate fingerprint because it shouldn't
                     # be necessary: if the user requested certificate verification be
                     # disabled, they presumably already saw a message about the inability
                     # to verify the certificate and this message would have printed the
                     # fingerprint. So printing the fingerprint here adds little to no
                     # value.
                     ui.warn(_('warning: connection security to %s is disabled per current '
                               'settings; communication is susceptible to eavesdropping '
                               'and tampering\n') % host)
                     return
                 # If a certificate fingerprint is pinned, use it and only it to
                 # validate the remote cert.
                 peerfingerprints = {
                     'sha1': hashlib.sha1(peercert).hexdigest(),
                     'sha256': hashlib.sha256(peercert).hexdigest(),
                     'sha512': hashlib.sha512(peercert).hexdigest(),
                 }
                 def fmtfingerprint(s):
                     return ':'.join([s[x:x + 2] for x in range(0, len(s), 2)])
                 nicefingerprint = 'sha256:%s' % fmtfingerprint(peerfingerprints['sha256'])
                 if settings['certfingerprints']:
                     for hash, fingerprint in settings['certfingerprints']:
                         if peerfingerprints[hash].lower() == fingerprint:
                             ui.debug('%s certificate matched fingerprint %s:%s\n' %
                                      (host, hash, fmtfingerprint(fingerprint)))
                             return
                     # Pinned fingerprint didn't match. This is a fatal error.
                     if settings['legacyfingerprint']:
                         section = 'hostfingerprint'
                         nice = fmtfingerprint(peerfingerprints['sha1'])
                     else:
                         section = 'hostsecurity'
                         nice = '%s:%s' % (hash, fmtfingerprint(peerfingerprints[hash]))
                     raise error.Abort(_('certificate for %s has unexpected '
                                         'fingerprint %s') % (host, nice),
                                       hint=_('check %s configuration') % section)
                 # Security is enabled but no CAs are loaded. We can't establish trust
                 # for the cert so abort.
                 if not sock._hgstate['caloaded']:
                     raise error.Abort(
                         _('unable to verify security of %s (no loaded CA certificates); '
                           'refusing to connect') % host,
                         hint=_('see https://mercurial-scm.org/wiki/SecureConnections for '
                                'how to configure Mercurial to avoid this error or set '
                                'hostsecurity.%s:fingerprints=%s to trust this server') %
                                (host, nicefingerprint))
                 msg = _verifycert(peercert2, host)
                 if msg:
                     raise error.Abort(_('%s certificate error: %s') % (host, msg),
                                      hint=_('set hostsecurity.%s:certfingerprints=%s '
                                             'config setting or use --insecure to connect '
                                             'insecurely') %
                                           (host, nicefingerprint))

tests/hghave.py

0 +6 -4

             from __future__ import absolute_import
             import errno
             import os
             import re
             import socket
             import stat
             import subprocess
             import sys
             import tempfile
             tempprefix = 'hg-hghave-'
             checks = {
                 "true": (lambda: True, "yak shaving"),
                 "false": (lambda: False, "nail clipper"),
             }
             def check(name, desc):
                 """Registers a check function for a feature."""
                 def decorator(func):
                     checks[name] = (func, desc)
                     return func
                 return decorator
             def checkvers(name, desc, vers):
                 """Registers a check function for each of a series of versions.
                 vers can be a list or an iterator"""
                 def decorator(func):
                     def funcv(v):
                         def f():
                             return func(v)
                         return f
                     for v in vers:
                         v = str(v)
                         f = funcv(v)
                         checks['%s%s' % (name, v.replace('.', ''))] = (f, desc % v)
                     return func
                 return decorator
             def checkfeatures(features):
                 result = {
                     'error': [],
                     'missing': [],
                     'skipped': [],
                 }
                 for feature in features:
                     negate = feature.startswith('no-')
                     if negate:
                         feature = feature[3:]
                     if feature not in checks:
                         result['missing'].append(feature)
                         continue
                     check, desc = checks[feature]
                     try:
                         available = check()
                     except Exception:
                         result['error'].append('hghave check failed: %s' % feature)
                         continue
                     if not negate and not available:
                         result['skipped'].append('missing feature: %s' % desc)
                     elif negate and available:
                         result['skipped'].append('system supports %s' % desc)
                 return result
             def require(features):
                 """Require that features are available, exiting if not."""
                 result = checkfeatures(features)
                 for missing in result['missing']:
                     sys.stderr.write('skipped: unknown feature: %s\n' % missing)
                 for msg in result['skipped']:
                     sys.stderr.write('skipped: %s\n' % msg)
                 for msg in result['error']:
                     sys.stderr.write('%s\n' % msg)
                 if result['missing']:
                     sys.exit(2)
                 if result['skipped'] or result['error']:
                     sys.exit(1)
             def matchoutput(cmd, regexp, ignorestatus=False):
                 """Return the match object if cmd executes successfully and its output
                 is matched by the supplied regular expression.
                 """
                 r = re.compile(regexp)
                 try:
                     p = subprocess.Popen(
                         cmd, shell=True, stdout=subprocess.PIPE, stderr=subprocess.STDOUT)
                 except OSError as e:
                     if e.errno != errno.ENOENT:
                         raise
                     ret = -1
                 ret = p.wait()
                 s = p.stdout.read()
                 return (ignorestatus or not ret) and r.search(s)
             @check("baz", "GNU Arch baz client")
             def has_baz():
                 return matchoutput('baz --version 2>&1', br'baz Bazaar version')
             @check("bzr", "Canonical's Bazaar client")
             def has_bzr():
                 try:
                     import bzrlib
                     return bzrlib.__doc__ is not None
                 except ImportError:
                     return False
             @checkvers("bzr", "Canonical's Bazaar client >= %s", (1.14,))
             def has_bzr_range(v):
                 major, minor = v.split('.')[0:2]
                 try:
                     import bzrlib
                     return (bzrlib.__doc__ is not None
                             and bzrlib.version_info[:2] >= (int(major), int(minor)))
                 except ImportError:
                     return False
             @check("chg", "running with chg")
             def has_chg():
                 return 'CHGHG' in os.environ
             @check("cvs", "cvs client/server")
             def has_cvs():
                 re = br'Concurrent Versions System.*?server'
                 return matchoutput('cvs --version 2>&1', re) and not has_msys()
             @check("cvs112", "cvs client/server 1.12.* (not cvsnt)")
             def has_cvs112():
                 re = br'Concurrent Versions System \(CVS\) 1.12.*?server'
                 return matchoutput('cvs --version 2>&1', re) and not has_msys()
             @check("cvsnt", "cvsnt client/server")
             def has_cvsnt():
                 re = br'Concurrent Versions System \(CVSNT\) (\d+).(\d+).*\(client/server\)'
                 return matchoutput('cvsnt --version 2>&1', re)
             @check("darcs", "darcs client")
             def has_darcs():
                 return matchoutput('darcs --version', br'2\.[2-9]', True)
             @check("mtn", "monotone client (>= 1.0)")
             def has_mtn():
                 return matchoutput('mtn --version', br'monotone', True) and not matchoutput(
                     'mtn --version', br'monotone 0\.', True)
             @check("eol-in-paths", "end-of-lines in paths")
             def has_eol_in_paths():
                 try:
                     fd, path = tempfile.mkstemp(dir='.', prefix=tempprefix, suffix='\n\r')
                     os.close(fd)
                     os.remove(path)
                     return True
                 except (IOError, OSError):
                     return False
             @check("execbit", "executable bit")
             def has_executablebit():
                 try:
                     EXECFLAGS = stat.S_IXUSR | stat.S_IXGRP | stat.S_IXOTH
                     fh, fn = tempfile.mkstemp(dir='.', prefix=tempprefix)
                     try:
                         os.close(fh)
                         m = os.stat(fn).st_mode & 0o777
                         new_file_has_exec = m & EXECFLAGS
                         os.chmod(fn, m ^ EXECFLAGS)
                         exec_flags_cannot_flip = ((os.stat(fn).st_mode & 0o777) == m)
                     finally:
                         os.unlink(fn)
                 except (IOError, OSError):
                     # we don't care, the user probably won't be able to commit anyway
                     return False
                 return not (new_file_has_exec or exec_flags_cannot_flip)
             @check("icasefs", "case insensitive file system")
             def has_icasefs():
                 # Stolen from mercurial.util
                 fd, path = tempfile.mkstemp(dir='.', prefix=tempprefix)
                 os.close(fd)
                 try:
                     s1 = os.stat(path)
                     d, b = os.path.split(path)
                     p2 = os.path.join(d, b.upper())
                     if path == p2:
                         p2 = os.path.join(d, b.lower())
                     try:
                         s2 = os.stat(p2)
                         return s2 == s1
                     except OSError:
                         return False
                 finally:
                     os.remove(path)
             @check("fifo", "named pipes")
             def has_fifo():
                 if getattr(os, "mkfifo", None) is None:
                     return False
                 name = tempfile.mktemp(dir='.', prefix=tempprefix)
                 try:
                     os.mkfifo(name)
                     os.unlink(name)
                     return True
                 except OSError:
                     return False
             @check("killdaemons", 'killdaemons.py support')
             def has_killdaemons():
                 return True
             @check("cacheable", "cacheable filesystem")
             def has_cacheable_fs():
                 from mercurial import util
                 fd, path = tempfile.mkstemp(dir='.', prefix=tempprefix)
                 os.close(fd)
                 try:
                     return util.cachestat(path).cacheable()
                 finally:
                     os.remove(path)
             @check("lsprof", "python lsprof module")
             def has_lsprof():
                 try:
                     import _lsprof
                     _lsprof.Profiler # silence unused import warning
                     return True
                 except ImportError:
                     return False
             def gethgversion():
                 m = matchoutput('hg --version --quiet 2>&1', br'(\d+)\.(\d+)')
                 if not m:
                     return (0, 0)
                 return (int(m.group(1)), int(m.group(2)))
             @checkvers("hg", "Mercurial >= %s",
                         list([(1.0 * x) / 10 for x in range(9, 40)]))
             def has_hg_range(v):
                 major, minor = v.split('.')[0:2]
                 return gethgversion() >= (int(major), int(minor))
             @check("hg08", "Mercurial >= 0.8")
             def has_hg08():
                 if checks["hg09"][0]():
                     return True
                 return matchoutput('hg help annotate 2>&1', '--date')
             @check("hg07", "Mercurial >= 0.7")
             def has_hg07():
                 if checks["hg08"][0]():
                     return True
                 return matchoutput('hg --version --quiet 2>&1', 'Mercurial Distributed SCM')
             @check("hg06", "Mercurial >= 0.6")
             def has_hg06():
                 if checks["hg07"][0]():
                     return True
                 return matchoutput('hg --version --quiet 2>&1', 'Mercurial version')
             @check("gettext", "GNU Gettext (msgfmt)")
             def has_gettext():
                 return matchoutput('msgfmt --version', br'GNU gettext-tools')
             @check("git", "git command line client")
             def has_git():
                 return matchoutput('git --version 2>&1', br'^git version')
             @check("docutils", "Docutils text processing library")
             def has_docutils():
                 try:
                     import docutils.core
                     docutils.core.publish_cmdline # silence unused import
                     return True
                 except ImportError:
                     return False
             def getsvnversion():
                 m = matchoutput('svn --version --quiet 2>&1', br'^(\d+)\.(\d+)')
                 if not m:
                     return (0, 0)
                 return (int(m.group(1)), int(m.group(2)))
             @checkvers("svn", "subversion client and admin tools >= %s", (1.3, 1.5))
             def has_svn_range(v):
                 major, minor = v.split('.')[0:2]
                 return getsvnversion() >= (int(major), int(minor))
             @check("svn", "subversion client and admin tools")
             def has_svn():
                 return matchoutput('svn --version 2>&1', br'^svn, version') and \
                     matchoutput('svnadmin --version 2>&1', br'^svnadmin, version')
             @check("svn-bindings", "subversion python bindings")
             def has_svn_bindings():
                 try:
                     import svn.core
                     version = svn.core.SVN_VER_MAJOR, svn.core.SVN_VER_MINOR
                     if version < (1, 4):
                         return False
                     return True
                 except ImportError:
                     return False
             @check("p4", "Perforce server and client")
             def has_p4():
                 return (matchoutput('p4 -V', br'Rev\. P4/') and
                         matchoutput('p4d -V', br'Rev\. P4D/'))
             @check("symlink", "symbolic links")
             def has_symlink():
                 if getattr(os, "symlink", None) is None:
                     return False
                 name = tempfile.mktemp(dir='.', prefix=tempprefix)
                 try:
                     os.symlink(".", name)
                     os.unlink(name)
                     return True
                 except (OSError, AttributeError):
                     return False
             @check("hardlink", "hardlinks")
             def has_hardlink():
                 from mercurial import util
                 fh, fn = tempfile.mkstemp(dir='.', prefix=tempprefix)
                 os.close(fh)
                 name = tempfile.mktemp(dir='.', prefix=tempprefix)
                 try:
                     util.oslink(fn, name)
                     os.unlink(name)
                     return True
                 except OSError:
                     return False
                 finally:
                     os.unlink(fn)
             @check("tla", "GNU Arch tla client")
             def has_tla():
                 return matchoutput('tla --version 2>&1', br'The GNU Arch Revision')
             @check("gpg", "gpg client")
             def has_gpg():
                 return matchoutput('gpg --version 2>&1', br'GnuPG')
             @check("unix-permissions", "unix-style permissions")
             def has_unix_permissions():
                 d = tempfile.mkdtemp(dir='.', prefix=tempprefix)
                 try:
                     fname = os.path.join(d, 'foo')
                     for umask in (0o77, 0o07, 0o22):
                         os.umask(umask)
                         f = open(fname, 'w')
                         f.close()
                         mode = os.stat(fname).st_mode
                         os.unlink(fname)
                         if mode & 0o777 != ~umask & 0o666:
                             return False
                     return True
                 finally:
                     os.rmdir(d)
             @check("unix-socket", "AF_UNIX socket family")
             def has_unix_socket():
                 return getattr(socket, 'AF_UNIX', None) is not None
             @check("root", "root permissions")
             def has_root():
                 return getattr(os, 'geteuid', None) and os.geteuid() == 0
             @check("pyflakes", "Pyflakes python linter")
             def has_pyflakes():
                 return matchoutput("sh -c \"echo 'import re' 2>&1 | pyflakes\"",
                                    br"<stdin>:1: 're' imported but unused",
                                    True)
             @check("pygments", "Pygments source highlighting library")
             def has_pygments():
                 try:
                     import pygments
                     pygments.highlight # silence unused import warning
                     return True
                 except ImportError:
                     return False
             @check("outer-repo", "outer repo")
             def has_outer_repo():
                 # failing for other reasons than 'no repo' imply that there is a repo
                 return not matchoutput('hg root 2>&1',
                                        br'abort: no repository found', True)
             @check("ssl", "ssl module available")
             def has_ssl():
                 try:
                     import ssl
                     ssl.CERT_NONE
                     return True
                 except ImportError:
                     return False
             @check("sslcontext", "python >= 2.7.9 ssl")
             def has_sslcontext():
                 try:
                     import ssl
                     ssl.SSLContext
                     return True
                 except (ImportError, AttributeError):
                     return False
             @check("defaultcacerts", "can verify SSL certs by system's CA certs store")
             def has_defaultcacerts():
-                from mercurial import sslutil
+                from mercurial import sslutil, ui as uimod
-                return sslutil._defaultcacerts() or sslutil._canloaddefaultcerts
+                ui = uimod.ui()
+                return sslutil._defaultcacerts(ui) or sslutil._canloaddefaultcerts
             @check("defaultcacertsloaded", "detected presence of loaded system CA certs")
             def has_defaultcacertsloaded():
                 import ssl
-                from mercurial import sslutil
+                from mercurial import sslutil, ui as uimod
                 if not has_defaultcacerts():
                     return False
                 if not has_sslcontext():
                     return False
-                cafile = sslutil._defaultcacerts()
+                ui = uimod.ui()
+                cafile = sslutil._defaultcacerts(ui)
                 ctx = ssl.create_default_context()
                 if cafile:
                     ctx.load_verify_locations(cafile=cafile)
                 else:
                     ctx.load_default_certs()
                 return len(ctx.get_ca_certs()) > 0
             @check("windows", "Windows")
             def has_windows():
                 return os.name == 'nt'
             @check("system-sh", "system() uses sh")
             def has_system_sh():
                 return os.name != 'nt'
             @check("serve", "platform and python can manage 'hg serve -d'")
             def has_serve():
                 return os.name != 'nt' # gross approximation
             @check("test-repo", "running tests from repository")
             def has_test_repo():
                 t = os.environ["TESTDIR"]
                 return os.path.isdir(os.path.join(t, "..", ".hg"))
             @check("tic", "terminfo compiler and curses module")
             def has_tic():
                 try:
                     import curses
                     curses.COLOR_BLUE
                     return matchoutput('test -x "`which tic`"', br'')
                 except ImportError:
                     return False
             @check("msys", "Windows with MSYS")
             def has_msys():
                 return os.getenv('MSYSTEM')
             @check("aix", "AIX")
             def has_aix():
                 return sys.platform.startswith("aix")
             @check("osx", "OS X")
             def has_osx():
                 return sys.platform == 'darwin'
             @check("osxpackaging", "OS X packaging tools")
             def has_osxpackaging():
                 try:
                     return (matchoutput('pkgbuild', br'Usage: pkgbuild ', ignorestatus=1)
                             and matchoutput(
                                 'productbuild', br'Usage: productbuild ',
                                 ignorestatus=1)
                             and matchoutput('lsbom', br'Usage: lsbom', ignorestatus=1)
                             and matchoutput(
                                 'xar --help', br'Usage: xar', ignorestatus=1))
                 except ImportError:
                     return False
             @check("docker", "docker support")
             def has_docker():
                 pat = br'A self-sufficient runtime for'
                 if matchoutput('docker --help', pat):
                     if 'linux' not in sys.platform:
                         # TODO: in theory we should be able to test docker-based
                         # package creation on non-linux using boot2docker, but in
                         # practice that requires extra coordination to make sure
                         # $TESTTEMP is going to be visible at the same path to the
                         # boot2docker VM. If we figure out how to verify that, we
                         # can use the following instead of just saying False:
                         # return 'DOCKER_HOST' in os.environ
                         return False
                     return True
                 return False
             @check("debhelper", "debian packaging tools")
             def has_debhelper():
                 dpkg = matchoutput('dpkg --version',
                                    br"Debian `dpkg' package management program")
                 dh = matchoutput('dh --help',
                                  br'dh is a part of debhelper.', ignorestatus=True)
                 dh_py2 = matchoutput('dh_python2 --help',
                                      br'other supported Python versions')
                 return dpkg and dh and dh_py2
             @check("absimport", "absolute_import in __future__")
             def has_absimport():
                 import __future__
                 from mercurial import util
                 return util.safehasattr(__future__, "absolute_import")
             @check("py3k", "running with Python 3.x")
             def has_py3k():
                 return 3 == sys.version_info[0]
             @check("py3exe", "a Python 3.x interpreter is available")
             def has_python3exe():
                 return 'PYTHON3' in os.environ
             @check("pure", "running with pure Python code")
             def has_pure():
                 return any([
                     os.environ.get("HGMODULEPOLICY") == "py",
                     os.environ.get("HGTEST_RUN_TESTS_PURE") == "--pure",
                 ])
             @check("slow", "allow slow tests")
             def has_slow():
                 return os.environ.get('HGTEST_SLOW') == 'slow'
             @check("hypothesis", "Hypothesis automated test generation")
             def has_hypothesis():
                 try:
                     import hypothesis
                     hypothesis.given
                     return True
                 except ImportError:
                     return False

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages