Mercurial failing on TLSv1.2 repos, but I wrote a patch
Matt Mackall
mpm at selenic.com
Mon Jul 20 12:18:19 CDT 2015
On Mon, 2015-07-20 at 16:37 +0000, Warren Melnick wrote:
> I am having problems working with repos which use TLSv1.2. I tracked down the problem to an ssl wrapper which is using TLSv1 instead of SSLv23.
>
> This small change fixed it for me:
> - ssl_version=ssl.PROTOCOL_TLSv1)
>
> + ssl_version=ssl.PROTOCOL_SSLv23)
You've reenabled the insecure and deprecated protocols known as SSLv2
and SSLv3 so this is not the right fix. Welcome to OpenSSL's broken API.
--
Mathematics is the supreme nostalgia of our time.
More information about the Mercurial-devel
mailing list