upstream/mercurial-mirror Files · tests/test-bad-extension.t

sslutil: synchronize hostname matching logic with CPython...

sslutil: synchronize hostname matching logic with CPython sslutil contains its own hostname matching logic. CPython has code for the same intent. However, it is only available to Python 2.7.9+ (or distributions that have backported 2.7.9's ssl module improvements). This patch effectively imports CPython's hostname matching code from its ssl.py into sslutil.py. The hostname matching code itself is pretty similar. However, the DNS name matching code is much more robust and spec conformant. As the test changes show, this changes some behavior around wildcard handling and IDNA matching. The new behavior allows wildcards in the middle of words (e.g. 'f*.com' matches 'foo.com') This is spec compliant according to RFC 6125 Section 6.5.3 item 3. There is one test where the matcher is more strict. Before, '*.a.com' matched '.a.com'. Now it doesn't match. Strictly speaking this is a security vulnerability.

Maciej Fijalkowski - - Load All Authors

File last commit:

r28737:a3a01194 default


                r29452:26a5d605

3.8.4 stable

Download file

             test-bad-extension.t
        
                    73 lines
            
             | 2.6 KiB
            
                | text/troff
            
             |
                Tads3Lexer
            
             / tests / test-bad-extension.t
          
                    History
                
                 |
                  Annotation
                 | Raw
                 |Copy content
                 |Copy permalink

        $ echo 'raise Exception("bit bucket overflow")' > badext.py

        $ abspathexc=`pwd`/badext.py

        $ cat >baddocext.py <<EOF

        > """

        > baddocext is bad

        > """

        > EOF

        $ abspathdoc=`pwd`/baddocext.py

        $ cat <<EOF >> $HGRCPATH

        > [extensions]

        > gpg =

        > hgext.gpg =

        > badext = $abspathexc

        > baddocext = $abspathdoc

        > badext2 =

        > EOF

        $ hg -q help help 2>&1 |grep extension

        *** failed to import extension badext from $TESTTMP/badext.py: bit bucket overflow

        *** failed to import extension badext2: No module named badext2

      show traceback

        $ hg -q help help --traceback 2>&1 | egrep ' extension|^Exception|Traceback|ImportError'

        *** failed to import extension badext from $TESTTMP/badext.py: bit bucket overflow

        Traceback (most recent call last):

        Exception: bit bucket overflow

        *** failed to import extension badext2: No module named badext2

        Traceback (most recent call last):

        ImportError: No module named badext2

      names of extensions failed to load can be accessed via extensions.notloaded()

        $ cat <<EOF > showbadexts.py

        > from mercurial import cmdutil, commands, extensions

        > cmdtable = {}

        > command = cmdutil.command(cmdtable)

        > @command('showbadexts', norepo=True)

        > def showbadexts(ui, *pats, **opts):

        >     ui.write('BADEXTS: %s\n' % ' '.join(sorted(extensions.notloaded())))

        > EOF

        $ hg --config extensions.badexts=showbadexts.py showbadexts 2>&1 | grep '^BADEXTS'

        BADEXTS: badext badext2

      show traceback for ImportError of hgext.name if debug is set

      (note that --debug option isn't applied yet when loading extensions)

        $ (hg -q help help --traceback --config ui.debug=True 2>&1) \

        > | grep -v '^ ' \

        > | egrep 'extension..[^p]|^Exception|Traceback|ImportError|not import'

        *** failed to import extension badext from $TESTTMP/badext.py: bit bucket overflow

        Traceback (most recent call last):

        Exception: bit bucket overflow

        could not import hgext.badext2 (No module named *badext2): trying badext2 (glob)

        Traceback (most recent call last):

        ImportError: No module named *badext2 (glob)

        could not import hgext3rd.badext2 (No module named *badext2): trying badext2 (glob)

        Traceback (most recent call last):

        ImportError: No module named *badext2 (glob)

        *** failed to import extension badext2: No module named badext2

        Traceback (most recent call last):

        ImportError: No module named badext2

      confirm that there's no crash when an extension's documentation is bad

        $ hg help --keyword baddocext

        *** failed to import extension badext from $TESTTMP/badext.py: bit bucket overflow

        *** failed to import extension badext2: No module named badext2

        Topics:

         extensions Using Additional Features

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

				$ echo 'raise Exception("bit bucket overflow")' > badext.py
				$ abspathexc=`pwd`/badext.py

				$ cat >baddocext.py <<EOF
				> """
				> baddocext is bad
				> """
				> EOF
				$ abspathdoc=`pwd`/baddocext.py

				$ cat <<EOF >> $HGRCPATH
				> [extensions]
				> gpg =
				> hgext.gpg =
				> badext = $abspathexc
				> baddocext = $abspathdoc
				> badext2 =
				> EOF

				$ hg -q help help 2>&1 \|grep extension
				*** failed to import extension badext from $TESTTMP/badext.py: bit bucket overflow
				*** failed to import extension badext2: No module named badext2

				show traceback

				$ hg -q help help --traceback 2>&1 \| egrep ' extension\|^Exception\|Traceback\|ImportError'
				*** failed to import extension badext from $TESTTMP/badext.py: bit bucket overflow
				Traceback (most recent call last):
				Exception: bit bucket overflow
				*** failed to import extension badext2: No module named badext2
				Traceback (most recent call last):
				ImportError: No module named badext2

				names of extensions failed to load can be accessed via extensions.notloaded()

				$ cat <<EOF > showbadexts.py
				> from mercurial import cmdutil, commands, extensions
				> cmdtable = {}
				> command = cmdutil.command(cmdtable)
				> @command('showbadexts', norepo=True)
				> def showbadexts(ui, pats, *opts):
				> ui.write('BADEXTS: %s\n' % ' '.join(sorted(extensions.notloaded())))
				> EOF
				$ hg --config extensions.badexts=showbadexts.py showbadexts 2>&1 \| grep '^BADEXTS'
				BADEXTS: badext badext2

				show traceback for ImportError of hgext.name if debug is set
				(note that --debug option isn't applied yet when loading extensions)

				$ (hg -q help help --traceback --config ui.debug=True 2>&1) \
				> \| grep -v '^ ' \
				> \| egrep 'extension..[^p]\|^Exception\|Traceback\|ImportError\|not import'
				*** failed to import extension badext from $TESTTMP/badext.py: bit bucket overflow
				Traceback (most recent call last):
				Exception: bit bucket overflow
				could not import hgext.badext2 (No module named *badext2): trying badext2 (glob)
				Traceback (most recent call last):
				ImportError: No module named *badext2 (glob)
				could not import hgext3rd.badext2 (No module named *badext2): trying badext2 (glob)
				Traceback (most recent call last):
				ImportError: No module named *badext2 (glob)
				*** failed to import extension badext2: No module named badext2
				Traceback (most recent call last):
				ImportError: No module named badext2

				confirm that there's no crash when an extension's documentation is bad

				$ hg help --keyword baddocext
				*** failed to import extension badext from $TESTTMP/badext.py: bit bucket overflow
				*** failed to import extension badext2: No module named badext2
				Topics:

				extensions Using Additional Features