Submitter | Manuel Jacob |
---|---|
Date | May 31, 2020, 10:24 a.m. |
Message ID | <d950d0faa52d3db15914.1590920687@tmp> |
Download | mbox | patch |
Permalink | /patch/46436/ |
State | New |
Headers | show |
Comments
Patch
diff --git a/mercurial/sslutil.py b/mercurial/sslutil.py --- a/mercurial/sslutil.py +++ b/mercurial/sslutil.py @@ -105,7 +105,7 @@ def _hostsettings(ui, hostname): # We default to TLS 1.1+ where we can because TLS 1.0 has known # vulnerabilities (like BEAST and POODLE). We allow users to downgrade to # TLS 1.0+ via config options in case a legacy server is encountered. - if b'tls1.1' in supportedprotocols: + if supportedprotocols - {b'tls1.0'}: defaultminimumprotocol = b'tls1.1' else: # Let people know they are borderline secure.