equal
deleted
inserted
replaced
359 $ cat ../hg2.pid >> $DAEMON_PIDS |
359 $ cat ../hg2.pid >> $DAEMON_PIDS |
360 $ cd .. |
360 $ cd .. |
361 |
361 |
362 Clients talking same TLS versions work |
362 Clients talking same TLS versions work |
363 |
363 |
364 $ P="$CERTSDIR" hg --config hostsecurity.minimumprotocol=tls1.0 id https://localhost:$HGPORT/ |
364 $ P="$CERTSDIR" hg --config hostsecurity.minimumprotocol=tls1.0 --config hostsecurity.ciphers=DEFAULT id https://localhost:$HGPORT/ |
365 5fed3813f7f5 |
365 5fed3813f7f5 |
366 $ P="$CERTSDIR" hg --config hostsecurity.minimumprotocol=tls1.1 id https://localhost:$HGPORT1/ |
366 $ P="$CERTSDIR" hg --config hostsecurity.minimumprotocol=tls1.1 --config hostsecurity.ciphers=DEFAULT id https://localhost:$HGPORT1/ |
367 5fed3813f7f5 |
367 5fed3813f7f5 |
368 $ P="$CERTSDIR" hg --config hostsecurity.minimumprotocol=tls1.2 id https://localhost:$HGPORT2/ |
368 $ P="$CERTSDIR" hg --config hostsecurity.minimumprotocol=tls1.2 id https://localhost:$HGPORT2/ |
369 5fed3813f7f5 |
369 5fed3813f7f5 |
370 |
370 |
371 Clients requiring newer TLS version than what server supports fail |
371 Clients requiring newer TLS version than what server supports fail |
403 5fed3813f7f5 |
403 5fed3813f7f5 |
404 |
404 |
405 The per-host config option overrides the default |
405 The per-host config option overrides the default |
406 |
406 |
407 $ P="$CERTSDIR" hg id https://localhost:$HGPORT/ \ |
407 $ P="$CERTSDIR" hg id https://localhost:$HGPORT/ \ |
|
408 > --config hostsecurity.ciphers=DEFAULT \ |
408 > --config hostsecurity.minimumprotocol=tls1.2 \ |
409 > --config hostsecurity.minimumprotocol=tls1.2 \ |
409 > --config hostsecurity.localhost:minimumprotocol=tls1.0 |
410 > --config hostsecurity.localhost:minimumprotocol=tls1.0 |
410 5fed3813f7f5 |
411 5fed3813f7f5 |
411 |
412 |
412 The per-host config option by itself works |
413 The per-host config option by itself works |