upstream/mercurial-mirror Commit - r18879:93b03a22

sslutil: try harder to avoid getpeercert problems...

Matt Mackall -

r18879:93b03a22 default

parent child

mercurial/sslutil.py

0 +8 -2

                              self.ui.warn(_("warning: certificate for %s can't be verified "
                                             "(Python too old)\n") % host)
                          return
                      if not sock.cipher(): # work around http://bugs.python.org/issue13721
                          raise util.Abort(_('%s ssl connection error') % host)
-                     peercert = sock.getpeercert(True)
+                     try:
+                         peercert = sock.getpeercert(True)
+                         peercert2 = sock.getpeercert()
+                     except AttributeError:
+                         raise util.Abort(_('%s ssl connection error') % host)
                      if not peercert:
                          raise util.Abort(_('%s certificate error: '
                                             'no certificate received') % host)
                          self.ui.debug('%s certificate matched fingerprint %s\n' %
                                        (host, nicefingerprint))
                      elif cacerts:
-                         msg = _verifycert(sock.getpeercert(), host)
+                         msg = _verifycert(peercert2, host)
                          if msg:
                              raise util.Abort(_('%s certificate error: %s') % (host, msg),
                                               hint=_('configure hostfingerprint %s or use '

General Comments 0

You need to be logged in to leave comments. Login now

No TODOs yet

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages