upstream/mercurial-mirror Files · mercurial/help/extensions.txt

sslutil: print a warning when using TLS 1.0 on legacy Python...

sslutil: print a warning when using TLS 1.0 on legacy Python Mercurial now requires TLS 1.1+ when TLS 1.1+ is supported by the client. Since we made the decision to require TLS 1.1+ when running with modern Python versions, it makes sense to do something for legacy Python versions that only support TLS 1.0. Feature parity would be to prevent TLS 1.0 connections out of the box and require a config option to enable them. However, this is extremely user hostile since Mercurial wouldn't talk to https:// by default in these installations! I can easily see how someone would do something foolish like use "--insecure" instead - and that would be worse than allowing TLS 1.0! This patch takes the compromise position of printing a warning when performing TLS 1.0 connections when running on old Python versions. While this warning is no more annoying than the CA certificate / fingerprint warnings in Mercurial 3.8, we provide a config option to disable the warning because to many people upgrading Python to make the warning go away is not an available recourse (unlike pinning fingerprints is for the CA warning). The warning appears as optional output in a lot of tests.

Jordi Gutiérrez Hermoso - - Load All Authors

File last commit:

r19296:da16d21c stable


                r29561:1a782fab

default

Download file

             extensions.txt
        
                    35 lines
            
             | 1.2 KiB
            
                | text/plain
            
             |
                TextLexer

/ mercurial / help / extensions.txt

History | Annotation | Raw |Copy content |Copy permalink

				Mercurial has the ability to add new features through the use of
				extensions. Extensions may add new commands, add options to
				existing commands, change the default behavior of commands, or
				implement hooks.

				To enable the "foo" extension, either shipped with Mercurial or in the
				Python search path, create an entry for it in your configuration file,
				like this::

				[extensions]
				foo =

				You may also specify the full path to an extension::

				[extensions]
				myfeature = ~/.hgext/myfeature.py

				See :hg:`help config` for more information on configuration files.

				Extensions are not loaded by default for a variety of reasons:
				they can increase startup overhead; they may be meant for advanced
				usage only; they may provide potentially dangerous abilities (such
				as letting you destroy or modify history); they might not be ready
				for prime time; or they may alter some usual behaviors of stock
				Mercurial. It is thus up to the user to activate extensions as
				needed.

				To explicitly disable an extension enabled in a configuration file of
				broader scope, prepend its path with !::

				[extensions]
				# disabling extension bar residing in /path/to/extension/bar.py
				bar = !/path/to/extension/bar.py
				# ditto, but no path was supplied for extension baz
				baz = !

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages