From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Ted Zlatanov Newsgroups: gmane.emacs.devel Subject: open-network-stream problems on W32 (was: [PATCH] GnuTLS support on Woe32) Date: Tue, 26 Apr 2011 23:13:23 -0500 Organization: =?utf-8?B?0KLQtdC+0LTQvtGAINCX0LvQsNGC0LDQvdC+0LI=?= @ Cienfuegos Message-ID: <87pqo82uxo.fsf_-_@lifelogs.com> References: <87ipvwl1nx.wl%claudio.bley@gmail.com> <87wrjquacf.fsf@lifelogs.com> <87lj05svwh.fsf@lifelogs.com> <87bp11imgb.wl%claudio.bley@gmail.com> <8739mc5nes.fsf@lifelogs.com> <87ipuubao6.fsf@lifelogs.com> <87fwpjfkkz.fsf@lifelogs.com> <87bp072fb1.fsf@lifelogs.com> <874o5vimm5.fsf@lifelogs.com> <87zknjmcyk.fsf@lifelogs.com> <87sjta2zvp.fsf@lifelogs.com> <87liyzglkh.fsf@lifelogs.com> <4DB77682.1070605@gmail.com> <8762q04ba1.fsf@lifelogs.com> <4DB79419.3030001@gmail.com> NNTP-Posting-Host: lo.gmane.org Mime-Version: 1.0 Content-Type: text/plain X-Trace: dough.gmane.org 1303877635 11216 80.91.229.12 (27 Apr 2011 04:13:55 GMT) X-Complaints-To: usenet@dough.gmane.org NNTP-Posting-Date: Wed, 27 Apr 2011 04:13:55 +0000 (UTC) To: emacs-devel@gnu.org Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Wed Apr 27 06:13:47 2011 Return-path: Envelope-to: ged-emacs-devel@m.gmane.org Original-Received: from lists.gnu.org ([140.186.70.17]) by lo.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1QEw8G-00024Q-Mz for ged-emacs-devel@m.gmane.org; Wed, 27 Apr 2011 06:13:44 +0200 Original-Received: from localhost ([::1]:50062 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1QEw8G-0008Ti-5o for ged-emacs-devel@m.gmane.org; Wed, 27 Apr 2011 00:13:44 -0400 Original-Received: from eggs.gnu.org ([140.186.70.92]:42758) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1QEw8D-0008Ta-GS for emacs-devel@gnu.org; Wed, 27 Apr 2011 00:13:42 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1QEw8C-0008Bt-Hh for emacs-devel@gnu.org; Wed, 27 Apr 2011 00:13:41 -0400 Original-Received: from lo.gmane.org ([80.91.229.12]:41476) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1QEw8C-0008Bn-5m for emacs-devel@gnu.org; Wed, 27 Apr 2011 00:13:40 -0400 Original-Received: from list by lo.gmane.org with local (Exim 4.69) (envelope-from ) id 1QEw8B-00023f-4O for emacs-devel@gnu.org; Wed, 27 Apr 2011 06:13:39 +0200 Original-Received: from c-67-186-102-106.hsd1.il.comcast.net ([67.186.102.106]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Wed, 27 Apr 2011 06:13:39 +0200 Original-Received: from tzz by c-67-186-102-106.hsd1.il.comcast.net with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Wed, 27 Apr 2011 06:13:39 +0200 X-Injected-Via-Gmane: http://gmane.org/ Original-Lines: 61 Original-X-Complaints-To: usenet@dough.gmane.org X-Gmane-NNTP-Posting-Host: c-67-186-102-106.hsd1.il.comcast.net X-Face: bd.DQ~'29fIs`T_%O%C\g%6jW)yi[zuz6; d4V0`@y-~$#3P_Ng{@m+e4o<4P'#(_GJQ%TT= D}[Ep*b!\e,fBZ'j_+#"Ps?s2!4H2-Y"sx" User-Agent: Gnus/5.110016 (No Gnus v0.16) Emacs/24.0.50 (gnu/linux) Cancel-Lock: sha1:SyuauR53EM/2jBx3GRWySw6Je44= X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.6 (newer, 3) X-Received-From: 80.91.229.12 X-BeenThere: emacs-devel@gnu.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Emacs development discussions." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.devel:138832 Archived-At: On Tue, 26 Apr 2011 21:57:13 -0600 Christoph Scholtes wrote: CS> On 4/26/2011 9:35 PM, Ted Zlatanov wrote: >> It depends on what version of Gnus and Emacs you are using. If you're >> using the trunk version of both, I think you want (nnimap-stream ssl), >> but I honestly don't remember all the permutations before then. CS> Yes. I am using the trunk versions of both. `ssl' does not work, btw. It should work, it's what I'm using. Are you loading gnutls.el before Gnus? See `open-network-stream' for the code that Gnus is calling. I changed the subject and I hope that will get Lars and Chong's attention. >> You can test that GnuTLS support works, in any case, with >> >> (require 'gnutls) >> (open-gnutls-stream "tls" "tls-buffer" "imap.gmail.com" "imaps") >> >> Set `gnutls-log-level' to 1 to get details in *Messages*. CS> I get this: CS> gnutls.c: [1] (Emacs) allocating credentials CS> gnutls.c: [1] (Emacs) gnutls callbacks CS> gnutls.c: [1] (Emacs) gnutls_init CS> gnutls.c: [1] (Emacs) got non-default priority string: NORMAL CS> gnutls.c: [1] (Emacs) setting the priority string CS> imap.gmail.com certificate could not be verified. CS> gnutls.c: [1] (Emacs) certificate signer was not found: imap.gmail.com CS> gnutls.c: [1] (Emacs) certificate validation failed: imap.gmail.com CS> # CS> and CS> * OK Gimap ready for requests from ...(my IP address I guess) CS> in the tls-buffer. CS> I am not sure if this means it is working or not. This means that you established the connection but the SSL certificate could not be verified (by default, not fatal because the `verify-error' and `verify-hostname-error' parameters to `gnutls-negotiate' are nil by default). Chances are that the default certificate bundle, /etc/ssl/certs/ca-certificates.crt, is not available on your system. We may have to attach this bundle to Emacs itself on W32 if there is nothing suitable on the system (I would not depend on a Firefox or Chrome or cygwin installation). We should also set up a customizable `gnutls-trustfiles' variable instead of the currently hard-coded string in `gnutls-negotiate'. But none of this should be breaking your connection, the original problem you reported. I won't be able to work on the bundle issue above for a few days so if anyone else wants to do it, go ahead. Ted