Mon, 23 Nov 2020 16:20:02 -0800 |
Martin von Zweigbergk |
errors: introduce SecurityError and use it in a few places
|
Mon, 23 Nov 2020 11:30:43 -0800 |
Martin von Zweigbergk |
tests: update test-https.t's #no-defaultcacertsloaded block with new exit code
|
Thu, 22 Oct 2020 13:31:34 -0700 |
Martin von Zweigbergk |
errors: set detailed exit code to 100 for some remote errors
|
Sun, 31 May 2020 00:30:49 +0200 |
Manuel Jacob |
config: remove unused hostsecurity.disabletls10warning config
|
Sun, 31 May 2020 22:15:35 +0200 |
Manuel Jacob |
sslutil: remove dead code (that downgraded default minimum TLS version)
|
Sat, 30 May 2020 19:04:53 +0200 |
Manuel Jacob |
tests: stop checking for optional, now impossible output
|
Sat, 30 May 2020 05:27:53 +0200 |
Manuel Jacob |
tests: remove "sslcontext" check
|
Sat, 30 May 2020 05:08:02 +0200 |
Manuel Jacob |
tests: remove "defaultcacerts" check
|
Fri, 17 May 2019 11:13:12 -0400 |
Augie Fackler |
tests: work around libressl being different about error strings (issue6122)
|
Tue, 19 Mar 2019 16:36:59 +0300 |
Pulkit Goyal |
merge with stable
|
Sat, 09 Feb 2019 23:01:30 +0100 |
Pierre-Yves David |
transaction: include txnname in the hookargs dictionary
|
Sat, 09 Feb 2019 01:22:20 +0100 |
Boris Feld |
test: use `printenv.py --line` in `test-https.t`
|
Sun, 17 Mar 2019 12:43:45 +0900 |
Yuya Nishihara |
test-https: add some more known failure messages of client certs (issue6030)
stable
|
Sun, 17 Mar 2019 12:37:57 +0900 |
Yuya Nishihara |
test-https: turn off system OpenSSL configuration
stable
|
Wed, 05 Sep 2018 01:19:48 +0300 |
Meirambek Omyrzak |
verify: make output less confusing (issue5924)
|
Sat, 02 Dec 2017 20:03:28 -0500 |
Matt Harbison |
tests: add a substitution for EADDRINUSE/WSAEADDRINUSE messages
|
Thu, 12 Oct 2017 09:39:50 +0200 |
Denis Laxalde |
transaction-summary: show the range of new revisions upon pull/unbundle (BC)
|
Tue, 18 Jul 2017 00:12:44 -0400 |
Matt Harbison |
run-tests: drop required (feature !) style lines when the output is missing
|
Tue, 18 Jul 2017 19:49:51 -0400 |
Matt Harbison |
test-https: properly conditionalize Windows vs non-Windows output
stable
|
Wed, 12 Jul 2017 18:37:13 -0400 |
Matt Harbison |
sslutil: inform the user about how to fix an incomplete certificate chain
|
Tue, 11 Jul 2017 22:06:57 -0400 |
Matt Harbison |
test-https: stabilize for Windows
|
Mon, 10 Jul 2017 21:09:46 -0700 |
Gregory Szorc |
sslutil: check for missing certificate and key files (issue5598)
|
Wed, 10 May 2017 23:49:37 -0700 |
Gregory Szorc |
sslutil: tweak the legacy [hostfingerprints] warning message
|
Fri, 12 May 2017 11:20:25 -0700 |
Martin von Zweigbergk |
merge with stable
|
Mon, 08 May 2017 15:30:15 -0700 |
Gregory Szorc |
tests: remove test targeting Python 2.6
|
Mon, 08 May 2017 09:30:26 -0700 |
Gregory Szorc |
sslutil: reference fingerprints config option properly (issue5559)
stable
|
Mon, 03 Apr 2017 18:56:08 -0400 |
Augie Fackler |
tests: fix missing (glob) annotations in test-https.t
|
Sat, 01 Apr 2017 18:30:51 -0400 |
Matt Harbison |
test-http: update output for Windows
|
Sat, 01 Apr 2017 14:48:39 -0400 |
Matt Harbison |
tests: add globs for Windows
|
Fri, 31 Mar 2017 11:53:56 +0200 |
Pierre-Yves David |
hook: add hook name information to external hook
|
Fri, 31 Mar 2017 11:08:11 +0200 |
Pierre-Yves David |
hook: provide hook type information to external hook
|
Thu, 30 Mar 2017 17:29:03 +0200 |
Pierre-Yves David |
run-tests: auto-replace 'TXNID' output
|
Thu, 09 Mar 2017 20:33:29 -0800 |
Gregory Szorc |
sslutil: issue warning when [hostfingerprint] is used
|
Thu, 16 Feb 2017 00:13:29 -0800 |
Jun Wu |
runtests: set web.address to localhost
|
Thu, 16 Feb 2017 09:38:52 -0800 |
Jun Wu |
tests: use LOCALIP
|
Mon, 17 Oct 2016 23:16:55 +0200 |
Mads Kiilerich |
spelling: fixes of non-dictionary words
|
Sat, 29 Oct 2016 02:44:45 +0900 |
FUJIWARA Katsunori |
tests: invoke printenv.py via sh -c for test portability
stable
|
Thu, 25 Aug 2016 01:00:54 -0400 |
Augie Fackler |
test-https: drop two spurious --traceback flags
|
Thu, 28 Jul 2016 08:53:36 -0700 |
Gregory Szorc |
tests: glob over ssl error
stable
|
Tue, 19 Jul 2016 21:09:58 -0700 |
Gregory Szorc |
sslutil: improve messaging around unsupported protocols (issue5303)
stable
|
Tue, 19 Jul 2016 20:16:51 -0700 |
Gregory Szorc |
sslutil: allow TLS 1.0 when --insecure is used
stable
|
Tue, 19 Jul 2016 19:57:34 -0700 |
Gregory Szorc |
hg: copy [hostsecurity] options to remote ui instances (issue5305)
stable
|
Mon, 18 Jul 2016 11:27:27 -0700 |
Gregory Szorc |
sslutil: more robustly detect protocol support
|
Sun, 17 Jul 2016 10:59:32 -0700 |
Gregory Szorc |
sslutil: support defining cipher list
|
Wed, 13 Jul 2016 21:49:17 -0700 |
Gregory Szorc |
sslutil: print a warning when using TLS 1.0 on legacy Python
|
Wed, 13 Jul 2016 21:35:54 -0700 |
Gregory Szorc |
sslutil: require TLS 1.1+ when supported
|
Thu, 14 Jul 2016 20:47:22 -0700 |
Gregory Szorc |
sslutil: config option to specify TLS protocol version
|
Tue, 12 Jul 2016 23:12:03 -0700 |
Gregory Szorc |
hgweb: use sslutil.wrapserversocket()
|
Wed, 13 Jul 2016 00:14:50 -0700 |
Gregory Szorc |
hgweb: pass ui into preparehttpserver
|
Tue, 12 Jul 2016 22:26:04 -0700 |
Gregory Szorc |
tests: regenerate x509 test certificates
|
Sat, 09 Jul 2016 23:03:45 -0400 |
Augie Fackler |
tests: add (glob) annotations to output lines with 127.0.0.1
|
Wed, 06 Jul 2016 21:16:00 -0700 |
Gregory Szorc |
sslutil: try to find CA certficates in well-known locations
|
Wed, 06 Jul 2016 20:46:05 -0700 |
Gregory Szorc |
sslutil: issue warning when unable to load certificates on OS X
|
Mon, 04 Jul 2016 10:04:11 -0700 |
Gregory Szorc |
sslutil: handle default CA certificate loading on Windows
|
Fri, 01 Jul 2016 19:27:34 -0700 |
Gregory Szorc |
tests: better testing of loaded certificates
|
Wed, 29 Jun 2016 19:43:27 -0700 |
Gregory Szorc |
sslutil: emit warning when no CA certificates loaded
|
Wed, 29 Jun 2016 19:49:39 -0700 |
Gregory Szorc |
tests: test case where default ca certs not available
|
Wed, 29 Jun 2016 19:37:38 -0700 |
Gregory Szorc |
sslutil: display a better error message when CA file loading fails
|
Wed, 29 Jun 2016 18:15:28 -0700 |
Gregory Szorc |
tests: add test for empty CA certs file
|
Sat, 25 Jun 2016 07:26:43 -0700 |
Gregory Szorc |
sslutil: abort when unable to verify peer connection (BC)
|
Tue, 14 Jun 2016 18:14:42 -0700 |
Durham Goode |
tests: increase test-https malform error glob
|
Tue, 07 Jun 2016 20:29:54 -0700 |
Gregory Szorc |
sslutil: per-host config option to define certificates
|
Fri, 27 May 2016 22:40:09 +0900 |
Yuya Nishihara |
tests: extract SSL certificates from test-https.t
|
Sat, 04 Jun 2016 11:16:08 -0700 |
Gregory Szorc |
sslutil: print the fingerprint from the last hash used
|
Tue, 31 May 2016 19:21:08 -0700 |
Gregory Szorc |
sslutil: make cert fingerprints messages more actionable
|
Mon, 30 May 2016 15:42:39 -0700 |
Gregory Szorc |
sslutil: print SHA-256 fingerprint by default
|
Mon, 30 May 2016 13:15:53 -0700 |
Gregory Szorc |
sslutil: move and change warning when cert verification is disabled
|
Wed, 01 Jun 2016 19:57:20 -0700 |
Gregory Szorc |
sslutil: add devel.disableloaddefaultcerts to disable CA loading
|
Sat, 28 May 2016 12:58:46 -0700 |
Gregory Szorc |
sslutil: reference appropriate config section in messaging
|
Sat, 28 May 2016 12:37:36 -0700 |
Gregory Szorc |
sslutil: allow fingerprints to be specified in [hostsecurity]
|
Sat, 28 May 2016 12:29:59 -0700 |
Gregory Szorc |
tests: don't save host fingerprints in hgrc
|
Sun, 10 Apr 2016 10:54:53 -0700 |
Gregory Szorc |
tests: use --insecure instead of web.cacerts=!
|
Tue, 15 Mar 2016 09:51:54 +0000 |
Jun Wu |
tests: reorder hg serve commands
|
Sun, 13 Mar 2016 14:03:58 -0700 |
Gregory Szorc |
sslutil: allow multiple fingerprints per host
|
Tue, 05 Jan 2016 17:37:59 -0800 |
Mateusz Kwapich |
hooks: add HG_NODE_LAST to txnclose and changegroup hook environments
|
Mon, 08 Jun 2015 15:10:15 -0500 |
Matt Mackall |
tests: simplify printenv calls
|
Mon, 08 Jun 2015 14:44:30 -0500 |
Matt Mackall |
tests: drop explicit $TESTDIR from executables
|
Fri, 05 Jun 2015 07:49:06 +0900 |
Yuya Nishihara |
test-https: kill only hgweb daemon to restart for client-auth test
|
Thu, 07 May 2015 17:15:24 +0900 |
Yuya Nishihara |
ssl: prompt passphrase of client key file via ui.getpass() (issue4648)
|
Thu, 07 May 2015 17:38:22 +0900 |
Yuya Nishihara |
test-https: test basic functions of client certificate authentication
|
Wed, 15 Apr 2015 11:11:54 -0400 |
Pierre-Yves David |
transaction: introduce a transaction ID, to be available to all hooks
|
Wed, 04 Mar 2015 23:27:04 +0900 |
Yuya Nishihara |
ssl: set explicit symbol "!" to web.cacerts to disable SSL verification (BC)
|
Wed, 04 Mar 2015 22:41:48 +0900 |
Yuya Nishihara |
test-https: enable dummycert test only if Apple python is used (issue4500)
|
Tue, 24 Feb 2015 10:55:24 +0100 |
Thomas Arendsen Hein |
pull: print "pulling from foo" before accessing the other repo
|
Tue, 13 Jan 2015 15:15:37 -0500 |
Augie Fackler |
test-https: glob error messages more so we pass on Python 2.7.9
|
Fri, 17 Oct 2014 18:56:12 +0200 |
Mads Kiilerich |
ssl: only use the dummy cert hack if using an Apple Python (issue4410)
|
Thu, 16 Oct 2014 15:54:53 +0900 |
Mike Hommey |
changegroup: use a copy of hookargs when invoking the changegroup hook
|
Sun, 12 Oct 2014 08:03:20 -0700 |
Pierre-Yves David |
phases: inform transaction-related hooks that a phase was moved
|
Fri, 26 Sep 2014 02:19:48 +0200 |
Mads Kiilerich |
ssl: on OS X, use a dummy cert to trick Python/OpenSSL to use system CA certs
|
Wed, 06 Aug 2014 11:43:59 -0500 |
Matt Mackall |
tests: replace exit 80 with #require
|
Wed, 13 Feb 2013 22:05:30 +0100 |
Simon Heimberg |
tests: remove glob from output lines containing no glob character
|
Sat, 09 Feb 2013 05:26:16 -0600 |
Augie Fackler |
test-https.t: stop using kill `cat $pidfile`
|
Tue, 15 Jan 2013 01:10:08 +0100 |
Mads Kiilerich |
serve: use chunked encoding in hgweb responses
|
Sat, 28 Jul 2012 13:33:06 +0200 |
Pierre-Yves David |
pushkey: do not exchange obsole markers if feature is disabled
stable
|
Thu, 07 Jun 2012 19:21:59 +0200 |
Pierre-Yves David |
obsolete: exchange obsolete marker over pushkey
|
Tue, 19 Jun 2012 19:45:00 +0200 |
Adrian Buehlmann |
test-http and test-https: partially adapt for Windows
|
Thu, 21 Jun 2012 03:05:02 +0200 |
Mads Kiilerich |
tests: consistently use printenv.py the same MSYS/Windows-compatible way
|
Sun, 17 Jun 2012 00:27:31 +0200 |
Adrian Buehlmann |
tests/printenv.py: eliminate trailing spaces on output
|
Mon, 23 Apr 2012 01:56:48 +0200 |
Mads Kiilerich |
tests: use 'do sleep 0' instead of 'do true', also on first line of command
stable
|
Wed, 28 Mar 2012 19:23:25 -0500 |
Matt Mackall |
tests: fix startup/shutdown races in test-https
stable
|
Fri, 10 Feb 2012 16:09:30 -0600 |
Matt Mackall |
pull: backout change to return code
stable
|
Mon, 30 Jan 2012 16:01:54 -0600 |
Matt Mackall |
pull: return 1 when no changes found (BC)
stable
|
Thu, 26 Jan 2012 11:23:15 -0600 |
Matt Mackall |
sslutil: more helpful fingerprint mismatch message
stable
|
Mon, 09 Jan 2012 14:43:24 +0100 |
Mads Kiilerich |
sslutil: show fingerprint when cacerts validation fails
|
Thu, 15 Dec 2011 11:28:42 +0100 |
Pierre-Yves David |
phases: exchange phase boundaries on pull
|
Fri, 04 Nov 2011 10:18:40 +0100 |
Arne Babenhauserheide |
clone: get all bookmarks before updating
|
Mon, 07 Nov 2011 03:24:53 +0100 |
Mads Kiilerich |
tests: use 'hghave serve' to guard tests that requires serve daemon management
|
Wed, 04 May 2011 10:32:08 -0500 |
Augie Fackler |
test-https.t: clean up superfluous trailing whitespace
|
Wed, 16 Mar 2011 09:05:59 +0100 |
David Soria Parra |
test-https: match output from 31eac42d9123
|
Mon, 14 Mar 2011 09:20:05 +0100 |
Martin Geisler |
test-https: update to match output from 3f6a4579f803
|
Sun, 06 Mar 2011 10:27:07 -0600 |
timeless |
cacert: improve error report when web.cacert file does not exist
stable
|
Fri, 18 Feb 2011 03:35:01 +0100 |
Mads Kiilerich |
util: flush stdout before calling external processes
stable
|
Fri, 18 Feb 2011 03:34:47 +0100 |
Mads Kiilerich |
tests: update test-https.t output
stable
|
Wed, 16 Feb 2011 04:36:36 +0100 |
Mads Kiilerich |
url: merge BetterHTTPS with httpsconnection to get some proxy https validation
|
Wed, 16 Feb 2011 04:28:11 +0100 |
Mads Kiilerich |
tests: test https through http proxy
|
Mon, 14 Feb 2011 18:04:20 -0600 |
Matt Mackall |
bookmarks: fix up test-https
|
Sat, 29 Jan 2011 23:23:24 +0900 |
Yuya Nishihara |
url: add --insecure option to bypass verification of ssl certificates
stable
|
Fri, 28 Jan 2011 02:57:59 +0100 |
Mads Kiilerich |
url: 'ssh known host'-like checking of fingerprints of HTTPS certificates
stable
|
Sun, 02 Jan 2011 15:30:12 +0200 |
Eduard-Cristian Stefan |
url: expand path for web.cacerts
stable
|
Mon, 27 Dec 2010 17:49:58 +0100 |
Mads Kiilerich |
https: use web.cacerts configuration from local repo to validate remote repo
stable
|
Sat, 18 Dec 2010 21:58:52 +0100 |
Mads Kiilerich |
https: warn when server certificate isn't verified
stable
|
Wed, 20 Oct 2010 20:19:34 +0200 |
Mads Kiilerich |
hgweb: use Pythons ssl module for HTTPS serve when using Python 2.6 or later
|
Sun, 17 Oct 2010 04:13:50 +0200 |
Mads Kiilerich |
test-https: test web.cacerts functionality
|
Sun, 17 Oct 2010 04:13:35 +0200 |
Mads Kiilerich |
serve: fix https mode and add test
base
tests/test-http.t@d80daf306b34
|