From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Ted Zlatanov Newsgroups: gmane.emacs.bugs Subject: bug#19284: 25.0.50; tls.el uses option --insecure Date: Thu, 31 Dec 2015 11:00:12 -0500 Organization: =?UTF-8?Q?=D0=A2=D0=B5=D0=BE=D0=B4=D0=BE=D1=80_?= =?UTF-8?Q?=D0=97=D0=BB=D0=B0=D1=82=D0=B0=D0=BD=D0=BE=D0=B2?= @ Cienfuegos Message-ID: <87d1tmzjzn.fsf@lifelogs.com> References: <86iohpq3w2.fsf@informationelle-selbstbestimmung-im-internet.de> <87k2o0q5by.fsf@gnus.org> <87k2ny1b8a.fsf@lifelogs.com> <87y4cdvyyr.fsf@violet.siamics.net> <8737uk0zal.fsf@lifelogs.com> NNTP-Posting-Host: plane.gmane.org Mime-Version: 1.0 Content-Type: text/plain X-Trace: ger.gmane.org 1451577684 1368 80.91.229.3 (31 Dec 2015 16:01:24 GMT) X-Complaints-To: usenet@ger.gmane.org NNTP-Posting-Date: Thu, 31 Dec 2015 16:01:24 +0000 (UTC) Cc: Ivan Shmakov , 19284@debbugs.gnu.org To: Lars Magne Ingebrigtsen Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Thu Dec 31 17:01:13 2015 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane.org Original-Received: from lists.gnu.org ([208.118.235.17]) by plane.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1aEff7-0003SU-2t for geb-bug-gnu-emacs@m.gmane.org; Thu, 31 Dec 2015 17:01:13 +0100 Original-Received: from localhost ([::1]:56108 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1aEff6-0007op-Dw for geb-bug-gnu-emacs@m.gmane.org; Thu, 31 Dec 2015 11:01:12 -0500 Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:43382) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1aEff0-0007oi-7U for bug-gnu-emacs@gnu.org; Thu, 31 Dec 2015 11:01:09 -0500 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1aEfew-0006G0-GZ for bug-gnu-emacs@gnu.org; Thu, 31 Dec 2015 11:01:06 -0500 Original-Received: from debbugs.gnu.org ([208.118.235.43]:44281) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1aEfew-0006Fw-AB for bug-gnu-emacs@gnu.org; Thu, 31 Dec 2015 11:01:02 -0500 Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84) (envelope-from ) id 1aEfew-0002i2-3r for bug-gnu-emacs@gnu.org; Thu, 31 Dec 2015 11:01:02 -0500 X-Loop: help-debbugs@gnu.org Resent-From: Ted Zlatanov Original-Sender: "Debbugs-submit" Resent-CC: bug-gnu-emacs@gnu.org Resent-Date: Thu, 31 Dec 2015 16:01:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 19284 X-GNU-PR-Package: emacs X-GNU-PR-Keywords: fixed security Original-Received: via spool by 19284-submit@debbugs.gnu.org id=B19284.145157762910354 (code B ref 19284); Thu, 31 Dec 2015 16:01:02 +0000 Original-Received: (at 19284) by debbugs.gnu.org; 31 Dec 2015 16:00:29 +0000 Original-Received: from localhost ([127.0.0.1]:51883 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84) (envelope-from ) id 1aEfeL-0002gt-Cz for submit@debbugs.gnu.org; Thu, 31 Dec 2015 11:00:28 -0500 Original-Received: from mail-qg0-f42.google.com ([209.85.192.42]:36576) by debbugs.gnu.org with esmtp (Exim 4.84) (envelope-from ) id 1aEfeG-0002gb-Cj for 19284@debbugs.gnu.org; Thu, 31 Dec 2015 11:00:24 -0500 Original-Received: by mail-qg0-f42.google.com with SMTP id e32so112623137qgf.3 for <19284@debbugs.gnu.org>; Thu, 31 Dec 2015 08:00:20 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lifelogs.com; s=google; h=from:to:cc:subject:organization:references:mail-copies-to :gmane-reply-to-list:date:in-reply-to:message-id:user-agent :mime-version:content-type; bh=O/BhXGtoCtbLcJ2lytmzvzbu1SH9Qn1hfzk6y1y0YXU=; b=pJlbds33oOw6PDeXrUh+3phCeExyQFaeqvf+RZG/Z+dS8FALwtpYt75fCJ5deTDYLO 3z5t0PsPkJzvSLsswwFvNzYyLubMXI0Q/lCwN/oJ853Qakh41hUSUMrEqANxBNdPowov yJR3EfV8NYlofPg0PbDMuYSvyIrEh8Z3BHGmk= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:from:to:cc:subject:organization:references :mail-copies-to:gmane-reply-to-list:date:in-reply-to:message-id :user-agent:mime-version:content-type; bh=O/BhXGtoCtbLcJ2lytmzvzbu1SH9Qn1hfzk6y1y0YXU=; b=Wm0y4nkqgqdfLc5V2crqj57e7C4Cu52sZQsCCc6yDCF0vr6r4p8Gx6w9Azh9Smv0lP pp3iKji9ZR2APuHJwR7Zs9xOW+wKg7BtGTspya7TkAQWYwyLQ0SFwh0D6J4v93OlqEOo WC2XrMYKEmKc74IjYyd5pTRDHRKHEjFORR+5758AKz/rzCiH3D77SCE/4ZYQAqfps388 ennMuwsRp2m9hVq7u70nvIOTsGF+B6fP+mA5RYM1zAJorR3yX3a4tKy24mqEoZ8Mj9Hz Vs8has0HxxM9y9XQd+n9HVWJuj5lbQ6dyIgjOs0NFJ99ihVB9NvGcRdwPF7/DBhxmE6b G6Og== X-Gm-Message-State: ALoCoQkT5LGxejxhNM0h1BnQ4mKOq4dgyl98DKO76gsTrqSDLg8FtOfgAr/s+sxxsJOTZSakoRlopN5XJXlxlDeH7s2vdZB2tw== X-Received: by 10.140.236.68 with SMTP id h65mr28796226qhc.13.1451577614753; Thu, 31 Dec 2015 08:00:14 -0800 (PST) Original-Received: from flea ([98.229.60.157]) by smtp.gmail.com with ESMTPSA id w145sm24482009qhw.36.2015.12.31.08.00.13 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 31 Dec 2015 08:00:13 -0800 (PST) X-Face: bd.DQ~'29fIs`T_%O%C\g%6jW)yi[zuz6; d4V0`@y-~$#3P_Ng{@m+e4o<4P'#(_GJQ%TT= D}[Ep*b!\e,fBZ'j_+#"Ps?s2!4H2-Y"sx" Mail-Copies-To: never Gmane-Reply-To-List: yes In-Reply-To: (Lars Magne Ingebrigtsen's message of "Wed, 30 Dec 2015 19:22:49 +0100") User-Agent: Gnus/5.130012 (Ma Gnus v0.12) Emacs/25.0.50 (gnu/linux) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Received-From: 208.118.235.43 X-BeenThere: bug-gnu-emacs@gnu.org List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Original-Sender: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.bugs:111063 Archived-At: On Wed, 30 Dec 2015 19:22:49 +0100 Lars Magne Ingebrigtsen wrote: LMI> Ted Zlatanov writes: >> There is a user experience difference between relying on external tools >> implicitly, which tls.el does, and explicitly, which ProxyCommand does. >> Also, tls.el is not granular like ProxyCommand or the `nnimap-stream' >> functionality, it applies to all connectivity. I hope that explains my >> reasoning better. LMI> Yeah. For the version after this, we should dump tls.el (and LMI> starttls.el) completely. If somebody wants a way to do TLS proxying, we LMI> should add that as separate functionality, not something that plops out LMI> as a side-effect of using gnutls-cli. Ivan, do you want to summarize the three separate proposals to emacs-devel or should I? I think it's time to move it out of this bug report since Lars has committed the changes to fix it. The proposals, I think, were: 1) provide a new function hook point for tls.el to provide network-stream functionality, and make that a defcustom that can be overridden by host and port 2) move tls.el out of Emacs into the GNU ELPA 3) support TLS proxying in gnutls.el or at the C level, if we can define what that actually means Thanks Ted