hg-stable: comparison mercurial/sslutil.py

equal deleted inserted replaced

-:1fde84d42f9c
+:3819c349b194
 self.ui = ui
 self.host = host
 def __call__(self, sock, strict=False):
 host = self.host
-cacerts = self.ui.config('web', 'cacerts')
-hostfingerprints = self.ui.configlist('hostfingerprints', host)
 if not sock.cipher(): # work around http://bugs.python.org/issue13721
 raise error.Abort(_('%s ssl connection error') % host)
 try:
 peercert = sock.getpeercert(True)
 raise error.Abort(_('%s ssl connection error') % host)
 if not peercert:
 raise error.Abort(_('%s certificate error: '
 'no certificate received') % host)
+# If a certificate fingerprint is pinned, use it and only it to
+# validate the remote cert.
+hostfingerprints = self.ui.configlist('hostfingerprints', host)
 peerfingerprint = util.sha1(peercert).hexdigest()
 nicefingerprint = ":".join([peerfingerprint[x:x + 2]
 for x in xrange(0, len(peerfingerprint), 2)])
 if hostfingerprints:
 fingerprintmatch = False
 raise error.Abort(_('certificate for %s has unexpected '
 'fingerprint %s') % (host, nicefingerprint),
 hint=_('check hostfingerprint configuration'))
 self.ui.debug('%s certificate matched fingerprint %s\n' %
 (host, nicefingerprint))
-elif cacerts != '!':
+return
+# No pinned fingerprint. Establish trust by looking at the CAs.
+cacerts = self.ui.config('web', 'cacerts')
+if cacerts != '!':
 msg = _verifycert(peercert2, host)
 if msg:
 raise error.Abort(_('%s certificate error: %s') % (host, msg),
 hint=_('configure hostfingerprint %s or use '
 '--insecure to connect insecurely') %

changeset 28850	3819c349b194
parent 28849	1fde84d42f9c
child 29042	693b856a4d45