From da93c3bd0bd80adab3a2d0d0d892da831cbbe4bb Mon Sep 17 00:00:00 2001 From: Yuya Nishihara Date: Sat, 29 Jan 2011 23:23:24 +0900 Subject: [PATCH] url: add --insecure option to bypass verification of ssl certificates If --insecure specified, it behaves in the same way as no web.cacerts configured. Also shows hint for --insecure option when _verifycert() failed. But currently the hint isn't displayed on SSLError, because it needs a certain level of changes. --- doc/hgrc.5.txt | 3 +++ mercurial/commands.py | 2 ++ mercurial/dispatch.py | 3 +++ mercurial/url.py | 5 +++-- tests/test-debugcomplete.t | 14 +++++++------- tests/test-https.t | 17 ++++++++++++++++- 6 files changed, 34 insertions(+), 10 deletions(-) diff --git a/doc/hgrc.5.txt b/doc/hgrc.5.txt index 2be6e20f1f..2f0844b0b7 100644 --- a/doc/hgrc.5.txt +++ b/doc/hgrc.5.txt @@ -1030,6 +1030,9 @@ The full set of options is: You can use OpenSSL's CA certificate file if your platform has one. On most Linux systems this will be ``/etc/ssl/certs/ca-certificates.crt``. Otherwise you will have to generate this file manually. + + To disable SSL verification temporarily, specify ``--insecure`` from + command line. ``contact`` Name or email address of the person in charge of the repository. Defaults to ui.username or ``$EMAIL`` or "unknown" if unset or empty. diff --git a/mercurial/commands.py b/mercurial/commands.py index 9a1ca47e29..de82ef299b 100644 --- a/mercurial/commands.py +++ b/mercurial/commands.py @@ -3943,6 +3943,8 @@ remoteopts = [ _('specify ssh command to use'), _('CMD')), ('', 'remotecmd', '', _('specify hg command to run on the remote side'), _('CMD')), + ('', 'insecure', None, + _('do not verify server certificate (ignoring web.cacerts config)')), ] walkopts = [ diff --git a/mercurial/dispatch.py b/mercurial/dispatch.py index 97f0e3ecd9..3243168506 100644 --- a/mercurial/dispatch.py +++ b/mercurial/dispatch.py @@ -552,6 +552,9 @@ def _dispatch(ui, args): if options['noninteractive']: ui.setconfig('ui', 'interactive', 'off') + if cmdoptions.get('insecure', False): + ui.setconfig('web', 'cacerts', '') + if options['help']: return commands.help_(ui, cmd, options['version']) elif options['version']: diff --git a/mercurial/url.py b/mercurial/url.py index eec2799b9c..1d2bccb33a 100644 --- a/mercurial/url.py +++ b/mercurial/url.py @@ -541,8 +541,9 @@ if has_https: ca_certs=cacerts) msg = _verifycert(self.sock.getpeercert(), self.host) if msg: - raise util.Abort(_('%s certificate error: %s') % - (self.host, msg)) + raise util.Abort(_('%s certificate error: %s ' + '(use --insecure to connect ' + 'insecurely)') % (self.host, msg)) self.ui.debug('%s certificate successfully verified\n' % self.host) else: diff --git a/tests/test-debugcomplete.t b/tests/test-debugcomplete.t index 3b127a6220..e8f463455b 100644 --- a/tests/test-debugcomplete.t +++ b/tests/test-debugcomplete.t @@ -179,16 +179,16 @@ Show all commands + options $ hg debugcommands add: include, exclude, subrepos, dry-run annotate: rev, follow, no-follow, text, user, file, date, number, changeset, line-number, include, exclude - clone: noupdate, updaterev, rev, branch, pull, uncompressed, ssh, remotecmd + clone: noupdate, updaterev, rev, branch, pull, uncompressed, ssh, remotecmd, insecure commit: addremove, close-branch, include, exclude, message, logfile, date, user diff: rev, change, text, git, nodates, show-function, reverse, ignore-all-space, ignore-space-change, ignore-blank-lines, unified, stat, include, exclude, subrepos export: output, switch-parent, rev, text, git, nodates forget: include, exclude - init: ssh, remotecmd + init: ssh, remotecmd, insecure log: follow, follow-first, date, copies, keyword, rev, removed, only-merges, user, only-branch, branch, prune, patch, git, limit, no-merges, stat, style, template, include, exclude merge: force, tool, rev, preview - pull: update, force, rev, branch, ssh, remotecmd - push: force, rev, branch, new-branch, ssh, remotecmd + pull: update, force, rev, branch, ssh, remotecmd, insecure + push: force, rev, branch, new-branch, ssh, remotecmd, insecure remove: after, force, include, exclude serve: accesslog, daemon, daemon-pipefds, errorlog, port, address, prefix, name, web-conf, webdir-conf, pid-file, stdio, templates, style, ipv6, certificate status: all, modified, added, removed, deleted, clean, unknown, ignored, no-status, copies, print0, rev, change, include, exclude, subrepos @@ -200,7 +200,7 @@ Show all commands + options bisect: reset, good, bad, skip, command, noupdate branch: force, clean branches: active, closed - bundle: force, rev, branch, base, all, type, ssh, remotecmd + bundle: force, rev, branch, base, all, type, ssh, remotecmd, insecure cat: output, rev, decode, include, exclude copy: after, force, include, exclude, dry-run debugancestor: @@ -228,10 +228,10 @@ Show all commands + options help: identify: rev, num, id, branch, tags import: strip, base, force, no-commit, exact, import-branch, message, logfile, date, user, similarity - incoming: force, newest-first, bundle, rev, branch, patch, git, limit, no-merges, stat, style, template, ssh, remotecmd, subrepos + incoming: force, newest-first, bundle, rev, branch, patch, git, limit, no-merges, stat, style, template, ssh, remotecmd, insecure, subrepos locate: rev, print0, fullpath, include, exclude manifest: rev - outgoing: force, rev, newest-first, branch, patch, git, limit, no-merges, stat, style, template, ssh, remotecmd, subrepos + outgoing: force, rev, newest-first, branch, patch, git, limit, no-merges, stat, style, template, ssh, remotecmd, insecure, subrepos parents: rev, style, template paths: recover: diff --git a/tests/test-https.t b/tests/test-https.t index 70efcbe012..db67c0e678 100644 --- a/tests/test-https.t +++ b/tests/test-https.t @@ -163,15 +163,30 @@ variables in the filename pulling from https://localhost:$HGPORT/ searching for changes no changes found + $ P=`pwd` hg -R copy-pull pull --insecure + warning: localhost certificate with fingerprint 91:4f:1a:ff:87:24:9c:09:b6:85:9b:88:b1:90:6d:30:75:64:91:ca not verified (check hostfingerprints or web.cacerts config setting) + pulling from https://localhost:$HGPORT/ + searching for changes + no changes found cacert mismatch $ hg -R copy-pull pull --config web.cacerts=pub.pem https://127.0.0.1:$HGPORT/ - abort: 127.0.0.1 certificate error: certificate is for localhost + abort: 127.0.0.1 certificate error: certificate is for localhost (use --insecure to connect insecurely) [255] + $ hg -R copy-pull pull --config web.cacerts=pub.pem https://127.0.0.1:$HGPORT/ --insecure + warning: 127.0.0.1 certificate with fingerprint 91:4f:1a:ff:87:24:9c:09:b6:85:9b:88:b1:90:6d:30:75:64:91:ca not verified (check hostfingerprints or web.cacerts config setting) + pulling from https://127.0.0.1:$HGPORT/ + searching for changes + no changes found $ hg -R copy-pull pull --config web.cacerts=pub-other.pem abort: error: *:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed (glob) [255] + $ hg -R copy-pull pull --config web.cacerts=pub-other.pem --insecure + warning: localhost certificate with fingerprint 91:4f:1a:ff:87:24:9c:09:b6:85:9b:88:b1:90:6d:30:75:64:91:ca not verified (check hostfingerprints or web.cacerts config setting) + pulling from https://localhost:$HGPORT/ + searching for changes + no changes found Test server cert which isn't valid yet