Mercurial Mercurial > hg / annotate
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
contrib/simplemerge
author Gregory Szorc <gregory.szorc@gmail.com>
Wed, 13 Jul 2016 21:35:54 -0700
changeset 29560 303e9300772a
parent 28047 863075fd4cd0
child 30559 d83ca854fa21
permissions -rwxr-xr-x
sslutil: require TLS 1.1+ when supported Currently, Mercurial will use TLS 1.0 or newer when connecting to remote servers, selecting the highest TLS version supported by both peers. On older Pythons, only TLS 1.0 is available. On newer Pythons, TLS 1.1 and 1.2 should be available. Security professionals recommend avoiding TLS 1.0 if possible. PCI DSS 3.1 "strongly encourages" the use of TLS 1.2. Known attacks like BEAST and POODLE exist against TLS 1.0 (although mitigations are available and properly configured servers aren't vulnerable). I asked Eric Rescorla - Mozilla's resident crypto expert - whether Mercurial should drop support for TLS 1.0. His response was "if you can get away with it." Essentially, a number of servers on the Internet don't support TLS 1.1+. This is why web browsers continue to support TLS 1.0 despite desires from security experts. This patch changes Mercurial's default behavior on modern Python versions to require TLS 1.1+, thus avoiding known security issues with TLS 1.0 and making Mercurial more secure by default. Rather than drop TLS 1.0 support wholesale, we still allow TLS 1.0 to be used if configured. This is a compromise solution - ideally we'd disallow TLS 1.0. However, since we're not sure how many Mercurial servers don't support TLS 1.1+ and we're not sure how much user inconvenience this change will bring, I think it is prudent to ship an escape hatch that still allows usage of TLS 1.0. In the default case our users get better security. In the worst case, they are no worse off than before this patch. This patch has no effect when running on Python versions that don't support TLS 1.1+. As the added test shows, connecting to a server that doesn't support TLS 1.1+ will display a warning message with a link to our wiki, where we can guide people to configure their client to allow less secure connections.
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
4363
2e3c54fb79a3 actually port simplemerge to hg
Alexis S. L. Carvalho <alexis@cecm.usp.br>
parents: 4362
diff changeset 
     1
 
#!/usr/bin/env python
4362
465b9ea02868 Import 3-way merge code from bzr
Alexis S. L. Carvalho <alexis@cecm.usp.br>
parents:
diff changeset 
     2
 







4364






d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




     3


from mercurial import demandimport













d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




     4


demandimport.enable()








4362






465b9ea02868
Import 3-way merge code from bzr



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 

diff
changeset




     5









19378






9de689d20230
cleanup: drop unused variables and an unused import



Simon Heimberg <simohe@besonet.ch>


parents: 
19022

diff
changeset




     6


import sys








4363






2e3c54fb79a3
actually port simplemerge to hg



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4362

diff
changeset




     7


from mercurial.i18n import _








26587






56b2bcea2529
error: get Abort from 'error' instead of 'util'



Pierre-Yves David <pierre-yves.david@fb.com>


parents: 
22023

diff
changeset




     8


from mercurial import error, simplemerge, fancyopts, util, ui








4362






465b9ea02868
Import 3-way merge code from bzr



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 

diff
changeset




     9









4364






d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    10


options = [('L', 'label', [], _('labels to use on conflict markers')),













d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    11


           ('a', 'text', None, _('treat all files as text')),













d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    12


           ('p', 'print', None,













d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    13


            _('print results instead of overwriting LOCAL')),








22023






f18830651811
simplemerge: burn "minimal" feature to the ground



Pierre-Yves David <pierre-yves.david@fb.com>


parents: 
19378

diff
changeset




    14


           ('', 'no-minimal', None, _('no effect (DEPRECATED)')),








4364






d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    15


           ('h', 'help', None, _('display help and exit')),













d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    16


           ('q', 'quiet', None, _('suppress output'))]













d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    17














d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    18


usage = _('''simplemerge [OPTS] LOCAL BASE OTHER













d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    19














d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    20


    Simple three-way file merge utility with a minimal feature set.








5081






ea7b982b6c08
Remove trailing spaces



Thomas Arendsen Hein <thomas@intevation.de>


parents: 
4408

diff
changeset




    21









4364






d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    22


    Apply to LOCAL the changes necessary to go from BASE to OTHER.








5081






ea7b982b6c08
Remove trailing spaces



Thomas Arendsen Hein <thomas@intevation.de>


parents: 
4408

diff
changeset




    23









4364






d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    24


    By default, LOCAL is overwritten with the results of this operation.













d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    25


''')













d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    26









6002






abd66eb0889e
merge: move the bulk of simplemerge into core



Matt Mackall <mpm@selenic.com>


parents: 
5081

diff
changeset




    27


class ParseError(Exception):













abd66eb0889e
merge: move the bulk of simplemerge into core



Matt Mackall <mpm@selenic.com>


parents: 
5081

diff
changeset




    28


    """Exception raised on errors in parsing the command line."""













abd66eb0889e
merge: move the bulk of simplemerge into core



Matt Mackall <mpm@selenic.com>


parents: 
5081

diff
changeset




    29









4364






d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    30


def showhelp():













d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    31


    sys.stdout.write(usage)













d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    32


    sys.stdout.write('\noptions:\n')








4362






465b9ea02868
Import 3-way merge code from bzr



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 

diff
changeset




    33









4364






d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    34


    out_opts = []













d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    35


    for shortopt, longopt, default, desc in options:













d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    36


        out_opts.append(('%2s%s' % (shortopt and '-%s' % shortopt,













d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    37


                                    longopt and ' --%s' % longopt),













d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    38


                         '%s' % desc))













d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    39


    opts_len = max([len(opt[0]) for opt in out_opts])













d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    40


    for first, second in out_opts:













d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    41


        sys.stdout.write(' %-*s  %s\n' % (opts_len, first, second))













d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    42









6002






abd66eb0889e
merge: move the bulk of simplemerge into core



Matt Mackall <mpm@selenic.com>


parents: 
5081

diff
changeset




    43


try:








7080






a6477aa893b8
tests: Windows compatibility fixes



Patrick Mezard <pmezard@gmail.com>


parents: 
6002

diff
changeset




    44


    for fp in (sys.stdin, sys.stdout, sys.stderr):








14233






659f34b833b9
rename util.set_binary to setbinary



Adrian Buehlmann <adrian@cadifra.com>


parents: 
8269

diff
changeset




    45


        util.setbinary(fp)








19022






cba222f01056
tests: run check-code on Python files without .py extension



Mads Kiilerich <madski@unity3d.com>


parents: 
14233

diff
changeset




    46









6002






abd66eb0889e
merge: move the bulk of simplemerge into core



Matt Mackall <mpm@selenic.com>


parents: 
5081

diff
changeset




    47


    opts = {}








4364






d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    48


    try:








6002






abd66eb0889e
merge: move the bulk of simplemerge into core



Matt Mackall <mpm@selenic.com>


parents: 
5081

diff
changeset




    49


        args = fancyopts.fancyopts(sys.argv[1:], options, opts)








28047






863075fd4cd0
misc: use modern exception syntax



FUJIWARA Katsunori <foozy@lares.dti.ne.jp>


parents: 
26587

diff
changeset




    50


    except fancyopts.getopt.GetoptError as e:








6002






abd66eb0889e
merge: move the bulk of simplemerge into core



Matt Mackall <mpm@selenic.com>


parents: 
5081

diff
changeset




    51


        raise ParseError(e)













abd66eb0889e
merge: move the bulk of simplemerge into core



Matt Mackall <mpm@selenic.com>


parents: 
5081

diff
changeset




    52


    if opts['help']:








4364






d5c3a70f8422
polish the simplemerge command; add a test



Alexis S. L. Carvalho <alexis@cecm.usp.br>


parents: 
4363

diff
changeset




    53


        showhelp()








6002






abd66eb0889e
merge: move the bulk of simplemerge into core



Matt Mackall <mpm@selenic.com>


parents: 
5081

diff
changeset




    54


        sys.exit(0)













abd66eb0889e
merge: move the bulk of simplemerge into core



Matt Mackall <mpm@selenic.com>


parents: 
5081

diff
changeset




    55


    if len(args) != 3:













abd66eb0889e
merge: move the bulk of simplemerge into core



Matt Mackall <mpm@selenic.com>


parents: 
5081

diff
changeset




    56


            raise ParseError(_('wrong number of arguments'))








8269






bb9f13974d8e
simplemerge: use ui.warn() for warnings



Steve Borho <steve@borho.org>


parents: 
7080

diff
changeset




    57


    sys.exit(simplemerge.simplemerge(ui.ui(), *args, **opts))








28047






863075fd4cd0
misc: use modern exception syntax



FUJIWARA Katsunori <foozy@lares.dti.ne.jp>


parents: 
26587

diff
changeset




    58


except ParseError as e:








6002






abd66eb0889e
merge: move the bulk of simplemerge into core



Matt Mackall <mpm@selenic.com>


parents: 
5081

diff
changeset




    59


    sys.stdout.write("%s: %s\n" % (sys.argv[0], e))













abd66eb0889e
merge: move the bulk of simplemerge into core



Matt Mackall <mpm@selenic.com>


parents: 
5081

diff
changeset




    60


    showhelp()













abd66eb0889e
merge: move the bulk of simplemerge into core



Matt Mackall <mpm@selenic.com>


parents: 
5081

diff
changeset




    61


    sys.exit(1)








28047






863075fd4cd0
misc: use modern exception syntax



FUJIWARA Katsunori <foozy@lares.dti.ne.jp>


parents: 
26587

diff
changeset




    62


except error.Abort as e:








6002






abd66eb0889e
merge: move the bulk of simplemerge into core



Matt Mackall <mpm@selenic.com>


parents: 
5081

diff
changeset




    63


    sys.stderr.write("abort: %s\n" % e)













abd66eb0889e
merge: move the bulk of simplemerge into core



Matt Mackall <mpm@selenic.com>


parents: 
5081

diff
changeset




    64


    sys.exit(255)













abd66eb0889e
merge: move the bulk of simplemerge into core



Matt Mackall <mpm@selenic.com>


parents: 
5081

diff
changeset




    65


except KeyboardInterrupt:













abd66eb0889e
merge: move the bulk of simplemerge into core



Matt Mackall <mpm@selenic.com>


parents: 
5081

diff
changeset




    66


    sys.exit(255)















Mercurial