From mboxrd@z Thu Jan  1 00:00:00 1970
Path: news.gmane.org!.POSTED!not-for-mail
From: Andy Wingo <wingo@igalia.com>
Newsgroups: gmane.emacs.bugs
Subject: bug#25061: consider adding %COMPAT to default gnutls priority string
Date: Fri, 10 Feb 2017 16:51:39 +0100
Message-ID: <87vasigi2c.fsf@igalia.com>
References: <87zikiwpl6.fsf@igalia.com> <878trzo5ys.fsf@lifelogs.com>
	<87fum7o0qu.fsf@gnu.org> <87zikfmiiy.fsf@lifelogs.com>
	<878tq0dqgw.fsf@gnus.org> <87sho1gemz.fsf@gnu.org>
NNTP-Posting-Host: blaine.gmane.org
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
X-Trace: blaine.gmane.org 1486967903 7047 195.159.176.226 (13 Feb 2017 06:38:23 GMT)
X-Complaints-To: usenet@blaine.gmane.org
NNTP-Posting-Date: Mon, 13 Feb 2017 06:38:23 +0000 (UTC)
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.5 (gnu/linux)
Cc: 25061@debbugs.gnu.org, Lars Ingebrigtsen <larsi@gnus.org>
To: ludo@gnu.org (Ludovic =?UTF-8?Q?Court=C3=A8s?=)
Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Mon Feb 13 07:38:15 2017
Return-path: <bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org>
Envelope-to: geb-bug-gnu-emacs@m.gmane.org
Original-Received: from lists.gnu.org ([208.118.235.17])
	by blaine.gmane.org with esmtp (Exim 4.84_2)
	(envelope-from <bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org>)
	id 1cdAH5-00012M-Q5
	for geb-bug-gnu-emacs@m.gmane.org; Mon, 13 Feb 2017 07:38:12 +0100
Original-Received: from localhost ([::1]:54797 helo=lists.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org>)
	id 1cdAH9-0004pr-H9
	for geb-bug-gnu-emacs@m.gmane.org; Mon, 13 Feb 2017 01:38:15 -0500
Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:38856)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1cdAH0-0004oK-Ot
	for bug-gnu-emacs@gnu.org; Mon, 13 Feb 2017 01:38:10 -0500
Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1cdAGw-0008PT-6C
	for bug-gnu-emacs@gnu.org; Mon, 13 Feb 2017 01:38:06 -0500
Original-Received: from debbugs.gnu.org ([208.118.235.43]:39546)
	by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16)
	(Exim 4.71) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
	id 1cdAGw-0008PP-2U
	for bug-gnu-emacs@gnu.org; Mon, 13 Feb 2017 01:38:02 -0500
Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1cdAGv-0005V4-Nj
	for bug-gnu-emacs@gnu.org; Mon, 13 Feb 2017 01:38:01 -0500
X-Loop: help-debbugs@gnu.org
Resent-From: Andy Wingo <wingo@igalia.com>
Original-Sender: "Debbugs-submit" <debbugs-submit-bounces@debbugs.gnu.org>
Resent-CC: bug-gnu-emacs@gnu.org
Resent-Date: Mon, 13 Feb 2017 06:38:01 +0000
Resent-Message-ID: <handler.25061.B25061.148696783121078@debbugs.gnu.org>
Resent-Sender: help-debbugs@gnu.org
X-GNU-PR-Message: followup 25061
X-GNU-PR-Package: emacs
X-GNU-PR-Keywords: 
Original-Received: via spool by 25061-submit@debbugs.gnu.org id=B25061.148696783121078
	(code B ref 25061); Mon, 13 Feb 2017 06:38:01 +0000
Original-Received: (at 25061) by debbugs.gnu.org; 13 Feb 2017 06:37:11 +0000
Original-Received: from localhost ([127.0.0.1]:37744 helo=debbugs.gnu.org)
	by debbugs.gnu.org with esmtp (Exim 4.84_2)
	(envelope-from <debbugs-submit-bounces@debbugs.gnu.org>)
	id 1cdAG3-0005Tq-JX
	for submit@debbugs.gnu.org; Mon, 13 Feb 2017 01:37:11 -0500
Original-Received: from pb-sasl1.pobox.com ([64.147.108.66]:57569
	helo=sasl.smtp.pobox.com) by debbugs.gnu.org with esmtp (Exim 4.84_2)
	(envelope-from <wingo@igalia.com>) id 1cdAFy-0005Tb-8K
	for 25061@debbugs.gnu.org; Mon, 13 Feb 2017 01:37:06 -0500
Original-Received: from sasl.smtp.pobox.com (unknown [127.0.0.1])
	by pb-sasl1.pobox.com (Postfix) with ESMTP id 74CC96098D;
	Mon, 13 Feb 2017 01:36:59 -0500 (EST)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=pobox.com; h=from:to:cc
	:subject:references:date:in-reply-to:message-id:mime-version
	:content-type:content-transfer-encoding; s=sasl; bh=HW2JTN8c6hPk
	kEgBx5CKJ++kPKY=; b=bYSAhgCo96jjBwNMGOlxzTjwpnTW1AVXE5CfCt2F49c0
	bFmdDQtarywO5xLPIxrWgKU8gw1UR5aA/gCJ+h6rUjvm9GDWDCbIc67bLSGfKxHQ
	WHZkTzZx925G74Pl9wcy2m2vqo/4AiE7l+qE0U3VAb2bO6WbQHCPQSWZZRvALPk=
Original-Received: from pb-sasl1.nyi.icgroup.com (unknown [127.0.0.1])
	by pb-sasl1.pobox.com (Postfix) with ESMTP id 6B5F06098B;
	Mon, 13 Feb 2017 01:36:59 -0500 (EST)
Original-Received: from rusty (unknown [88.160.190.192])
	(using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by pb-sasl1.pobox.com (Postfix) with ESMTPSA id 9CDAE60987;
	Mon, 13 Feb 2017 01:36:58 -0500 (EST)
In-Reply-To: <87sho1gemz.fsf@gnu.org> ("Ludovic =?UTF-8?Q?Court=C3=A8s?="'s
	message of "Mon, 30 Jan 2017 09:01:40 +0100")
X-Pobox-Relay-ID: D1CE8DE6-F1B6-11E6-83B7-CDEC6462E9F6-02397024!pb-sasl1.pobox.com
X-BeenThere: debbugs-submit@debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic]
X-Received-From: 208.118.235.43
X-BeenThere: bug-gnu-emacs@gnu.org
List-Id: "Bug reports for GNU Emacs,
	the Swiss army knife of text editors" <bug-gnu-emacs.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/bug-gnu-emacs>,
	<mailto:bug-gnu-emacs-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/bug-gnu-emacs/>
List-Post: <mailto:bug-gnu-emacs@gnu.org>
List-Help: <mailto:bug-gnu-emacs-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/bug-gnu-emacs>,
	<mailto:bug-gnu-emacs-request@gnu.org?subject=subscribe>
Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org
Original-Sender: "bug-gnu-emacs"
	<bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org>
Xref: news.gmane.org gmane.emacs.bugs:129301
Archived-At: <http://permalink.gmane.org/gmane.emacs.bugs/129301>

On Mon 30 Jan 2017 09:01, ludo@gnu.org (Ludovic Court=C3=A8s) writes:

> Lars Ingebrigtsen <larsi@gnus.org> skribis:
>
>> Ted Zlatanov <tzz@lifelogs.com> writes:
>>
>>> On Thu, 01 Dec 2016 21:25:29 +0100 ludo@gnu.org (Ludovic Court=C3=A8s) =
wrote:=20
>>>
>>> LC> Ted Zlatanov <tzz@lifelogs.com> skribis:
>>>
>>>>> We could break down %COMPAT to all its components and find which ones
>>>>> are causing the issue.
>>>
>>> LC> %DUMBFW may be that option (info "(gnutls) Priority Strings"):
>>>
>>> LC> will add a private extension with bogus data that make the
>>> LC> client hello exceed 512 bytes. This avoids a black hole
>>> LC> behavior in some firewalls. This is the [_rfc7685_] client
>>> LC> hello padding extension, also enabled with %COMPAT.
>>>
>>> Nice. Could you or Andy verify if it resolves the originally reported
>>> problem? I think it's very reasonable to add it to the default, if it d=
oes.
>>
>> Yes, I think so, too.  Did anyone of you check whether it fixed the prob=
lems?
>
> I=E2=80=99m just a passerby so I haven=E2=80=99t tested.  ;-)
>
> I think Andy has been traveling lately but he might be able to check
> later.

I tried checking (had to remember what I was doing to begin with!) and
was not able to reproduce the original problem, and therefore couldn't
test NORMAL:%COMPAT or NORMAL:%DUMBFW :/  Sorry :/

I was trying to just do this:

  ;; uncomment to test original proposed workaround
  ;; (setq gnutls-algorithm-priority "NORMAL:%COMPAT")
  (setq gnutls-log-level 2)
  (url-retrieve "https://mirror.hydra.gnu.org/"
                #'(lambda (status)
                    (message "success")))

and evaluating that last form a number of times.  Not very scientific :P
I was unable to reproduce the problem though.

Andy