From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: "Roland Winkler" Newsgroups: gmane.emacs.bugs Subject: bug#9017: 24.0.50; gnutls.c: [0] (Emacs) fatal error: Key usage violation in certificate has been detected. Date: Sat, 16 Jul 2011 19:37:05 -0500 Message-ID: <20002.11953.120421.334092@gargle.gargle.HOWL> References: <87ei22yzz3.fsf@niu.edu> <19990.21514.711483.515100@gargle.gargle.HOWL> <19995.450.645561.299970@gargle.gargle.HOWL> <19995.2276.68599.608421@gargle.gargle.HOWL> <19995.3751.825437.128524@gargle.gargle.HOWL> <19995.6586.299315.729607@gargle.gargle.HOWL> <19997.45936.636066.132554@gargle.gargle.HOWL> <19997.49819.733446.452844@gargle.gargle.HOWL> <87hb6n7ars.fsf@lifelogs.com> NNTP-Posting-Host: lo.gmane.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Trace: dough.gmane.org 1310863109 17375 80.91.229.12 (17 Jul 2011 00:38:29 GMT) X-Complaints-To: usenet@dough.gmane.org NNTP-Posting-Date: Sun, 17 Jul 2011 00:38:29 +0000 (UTC) Cc: 9017@debbugs.gnu.org, Ted Zlatanov To: Lars Magne Ingebrigtsen Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Sun Jul 17 02:38:25 2011 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane.org Original-Received: from lists.gnu.org ([140.186.70.17]) by lo.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1QiFNJ-0006b5-7x for geb-bug-gnu-emacs@m.gmane.org; Sun, 17 Jul 2011 02:38:25 +0200 Original-Received: from localhost ([::1]:41913 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1QiFNI-0005Cg-BM for geb-bug-gnu-emacs@m.gmane.org; Sat, 16 Jul 2011 20:38:24 -0400 Original-Received: from eggs.gnu.org ([140.186.70.92]:41107) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1QiFN0-0005Bs-6w for bug-gnu-emacs@gnu.org; Sat, 16 Jul 2011 20:38:07 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1QiFMx-0004il-WA for bug-gnu-emacs@gnu.org; Sat, 16 Jul 2011 20:38:05 -0400 Original-Received: from debbugs.gnu.org ([140.186.70.43]:45616) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1QiFMx-0004i3-1I for bug-gnu-emacs@gnu.org; Sat, 16 Jul 2011 20:38:03 -0400 Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.69) (envelope-from ) id 1QiFMw-0000H7-Hg; Sat, 16 Jul 2011 20:38:02 -0400 X-Loop: help-debbugs@gnu.org Resent-From: "Roland Winkler" Original-Sender: debbugs-submit-bounces@debbugs.gnu.org Resent-To: owner@debbugs.gnu.org Resent-CC: bug-gnu-emacs@gnu.org Resent-Date: Sun, 17 Jul 2011 00:38:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 9017 X-GNU-PR-Package: emacs X-GNU-PR-Keywords: Original-Received: via spool by 9017-submit@debbugs.gnu.org id=B9017.1310863051998 (code B ref 9017); Sun, 17 Jul 2011 00:38:02 +0000 Original-Received: (at 9017) by debbugs.gnu.org; 17 Jul 2011 00:37:31 +0000 Original-Received: from localhost ([127.0.0.1] helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.69) (envelope-from ) id 1QiFMQ-0000G3-8b for submit@debbugs.gnu.org; Sat, 16 Jul 2011 20:37:30 -0400 Original-Received: from tfkpsv.physik.uni-erlangen.de ([131.188.164.197]) by debbugs.gnu.org with esmtp (Exim 4.69) (envelope-from ) id 1QiFMO-0000Fk-Gv for 9017@debbugs.gnu.org; Sat, 16 Jul 2011 20:37:29 -0400 Original-Received: from regnitz (unknown [218.242.242.194]) by tfkpsv.physik.uni-erlangen.de (Postfix) with ESMTP id 1F5B739814; Sun, 17 Jul 2011 02:37:19 +0200 (CEST) In-Reply-To: X-Mailer: VM 8.2 trial under 23.3.1 (x86_64-unknown-linux-gnu) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.11 Precedence: list Resent-Date: Sat, 16 Jul 2011 20:38:02 -0400 X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.6 (newer, 3) X-Received-From: 140.186.70.43 X-BeenThere: bug-gnu-emacs@gnu.org List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Original-Sender: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.bugs:49299 Archived-At: On Fri Jul 15 2011 Lars Magne Ingebrigtsen wrote: > Roland, could you upgrade your Emacs and say > > (setq gnutls-algorithm-priority "normal:-dhe-rsa") > > and see whether that fixes the problem? Similar to disabling gnutls-available-p, this now aborts with the message RCPT TO: 554 : Recipient address rejected: Access denied But I am surprised that Emacs tries to send the message even though the smtp server is configured such that it requires a username and password for sending messages and I do not have yet an .authinfo entry for the smtp server. It is my understanding that the emacs code is such that emacs should ask me for username / password if emacs believes it needs one for the smtp session. In other words, it appears to me as if emacs and the smtp server do not communicate properly so that emacs wants to send the message in a way that is not supported by the smtp server. (I have no such problems with emacs 23.) On Fri Jul 15 2011 Ted Zlatanov wrote: > I think there should be no such situations; the command-line GnuTLS > tools are insecure and unreliable and should not have to be used. As > with the priority string option, whatever options users need should get > added. I see those cases as bugs rather than feature requests. I understand your goal and in the long run it is probably the best solution. I am merely looking at this from the perspective: if I had been a regular user running into such a problem after release of emacs 24, I would have been stuck. The new code is a substantial change as compared to the old approach. And I do not see a simple way to predict which other gnutls options might be needed by other users. So even if the command line gnutls-cli is not perfect by itself, it would give the user a more forgiving transition period if with Emacs 24 the old approach remained available as a fallback. Roland