From mboxrd@z Thu Jan  1 00:00:00 1970
Path: news.gmane.org!not-for-mail
From: Ted Zlatanov <tzz@lifelogs.com>
Newsgroups: gmane.emacs.devel
Subject: Re: Emacs and TLS support
Date: Sun, 26 Sep 2010 16:02:05 -0500
Organization: =?utf-8?B?0KLQtdC+0LTQvtGAINCX0LvQsNGC0LDQvdC+0LI=?= @ Cienfuegos
Message-ID: <87tylcz0aa.fsf@lifelogs.com>
References: <4C9F70AE.3020705@alice.it> <m3eicgbhkv.fsf@quimbies.gnus.org>
NNTP-Posting-Host: lo.gmane.org
Mime-Version: 1.0
Content-Type: text/plain
X-Trace: dough.gmane.org 1285534958 27914 80.91.229.12 (26 Sep 2010 21:02:38 GMT)
X-Complaints-To: usenet@dough.gmane.org
NNTP-Posting-Date: Sun, 26 Sep 2010 21:02:38 +0000 (UTC)
To: emacs-devel@gnu.org
Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Sun Sep 26 23:02:36 2010
Return-path: <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>
Envelope-to: ged-emacs-devel@m.gmane.org
Original-Received: from lists.gnu.org ([199.232.76.165])
	by lo.gmane.org with esmtp (Exim 4.69)
	(envelope-from <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>)
	id 1OzyMl-0008NS-RI
	for ged-emacs-devel@m.gmane.org; Sun, 26 Sep 2010 23:02:36 +0200
Original-Received: from localhost ([127.0.0.1]:44239 helo=lists.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.43)
	id 1OzyMl-0004wh-GD
	for ged-emacs-devel@m.gmane.org; Sun, 26 Sep 2010 17:02:35 -0400
Original-Received: from [140.186.70.92] (port=55828 helo=eggs.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.43) id 1OzyMb-0004rs-Up
	for emacs-devel@gnu.org; Sun, 26 Sep 2010 17:02:29 -0400
Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.69)
	(envelope-from <ged-emacs-devel@m.gmane.org>) id 1OzyMX-0008Eh-6l
	for emacs-devel@gnu.org; Sun, 26 Sep 2010 17:02:25 -0400
Original-Received: from lo.gmane.org ([80.91.229.12]:47331)
	by eggs.gnu.org with esmtp (Exim 4.69)
	(envelope-from <ged-emacs-devel@m.gmane.org>) id 1OzyMW-0008ET-TO
	for emacs-devel@gnu.org; Sun, 26 Sep 2010 17:02:21 -0400
Original-Received: from list by lo.gmane.org with local (Exim 4.69)
	(envelope-from <ged-emacs-devel@m.gmane.org>) id 1OzyMR-0008IO-CH
	for emacs-devel@gnu.org; Sun, 26 Sep 2010 23:02:15 +0200
Original-Received: from c-24-14-16-248.hsd1.il.comcast.net ([24.14.16.248])
	by main.gmane.org with esmtp (Gmexim 0.1 (Debian))
	id 1AlnuQ-0007hv-00
	for <emacs-devel@gnu.org>; Sun, 26 Sep 2010 23:02:15 +0200
Original-Received: from tzz by c-24-14-16-248.hsd1.il.comcast.net with local (Gmexim
	0.1 (Debian)) id 1AlnuQ-0007hv-00
	for <emacs-devel@gnu.org>; Sun, 26 Sep 2010 23:02:15 +0200
X-Injected-Via-Gmane: http://gmane.org/
Original-Lines: 50
Original-X-Complaints-To: usenet@dough.gmane.org
X-Gmane-NNTP-Posting-Host: c-24-14-16-248.hsd1.il.comcast.net
X-Face: bd.DQ~'29fIs`T_%O%C\g%6jW)yi[zuz6;
	d4V0`@y-~$#3P_Ng{@m+e4o<4P'#(_GJQ%TT=
	D}[Ep*b!\e,fBZ'j_+#"Ps?s2!4H2-Y"sx"
User-Agent: Gnus/5.110011 (No Gnus v0.11) Emacs/24.0.50 (gnu/linux)
Cancel-Lock: sha1:KCcn1kkoEMKtuqQCfjTcJ0K28KE=
X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.6 (newer, 3)
X-BeenThere: emacs-devel@gnu.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Emacs development discussions." <emacs-devel.gnu.org>
List-Unsubscribe: <http://lists.gnu.org/mailman/listinfo/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/emacs-devel>
List-Post: <mailto:emacs-devel@gnu.org>
List-Help: <mailto:emacs-devel-request@gnu.org?subject=help>
List-Subscribe: <http://lists.gnu.org/mailman/listinfo/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=subscribe>
Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org
Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org
Xref: news.gmane.org gmane.emacs.devel:130941
Archived-At: <http://permalink.gmane.org/gmane.emacs.devel/130941>

On Sun, 26 Sep 2010 18:22:24 +0200 Lars Magne Ingebrigtsen <larsi@gnus.org> wrote: 

LMI> Angelo Graziosi <angelo.graziosi@alice.it> writes:
>> Does Emacs use -lgnutls (BROKEN)?                       yes
>> [...]
>> 
>> Why '(BROKEN)'?

LMI> The tls support doesn't currently work.  So if you try to use it, you'll
LMI> find that it's broken.

Yeah, I couldn't find a better way of saying "it should work but Ted
couldn't figure out why handshaking fails" :)

On Sun, 26 Sep 2010 17:32:10 +0200 Lars Magne Ingebrigtsen <larsi@gnus.org> wrote: 

LMI> Ted Zlatanov <tzz@lifelogs.com> writes:

>> gnutls: handshake: handshaking
>> gnutls.el: (err=[-9] A TLS packet with unexpected length was received.) handshake: nil
>> Ouch, error return -9 (A TLS packet with unexpected length was received.)
>> nil
>> Mark set [2 times]

LMI> (open-ssl-stream "tls" "tls-buffer" "imap.gmail.com" "imaps")

LMI> Yes, I'm getting the same:

LMI> gnutls.el: (err=[gnutls-e-again] Resource temporarily unavailable, try again.) handshake: nil
LMI> gnutls: handshake: handshaking [2 times]
LMI> gnutls.el: (err=[-15] An unexpected TLS packet was received.) handshake: nil
LMI> Ouch, error return -15 (An unexpected TLS packet was received.)

I stepped through the GnuTLS function calls and couldn't find a problem
with the credential structures.  It's frustrating that the exact same
code works for the example client in GnuTLS but breaks in Emacs (most of
my time debugging this was spent double-checking that the same functions
are called with the same parameters in both cases).

On Sun, 26 Sep 2010 17:16:28 +0200 Lars Magne Ingebrigtsen <larsi@gnus.org> wrote: 

LMI> joakim@verona.se writes:

>> | gcc: @LIBGNUTLS_CFLAGS@: No such file or directory

LMI> Ok; I've now fixed this, and am checking in now.

Thanks!

Ted