From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.io!.POSTED.ciao.gmane.io!not-for-mail From: Paul Pogonyshev Newsgroups: gmane.emacs.devel Subject: Re: GNU Elpa and Emacs 25.3 Date: Sun, 16 Feb 2020 13:52:16 +0100 Message-ID: References: Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="0000000000002f7aeb059eb0e923" Injection-Info: ciao.gmane.io; posting-host="ciao.gmane.io:159.69.161.202"; logging-data="37514"; mail-complaints-to="usenet@ciao.gmane.io" Cc: Emacs developers To: Noam Postavsky Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane-mx.org@gnu.org Sun Feb 16 13:53:03 2020 Return-path: Envelope-to: ged-emacs-devel@m.gmane-mx.org Original-Received: from lists.gnu.org ([209.51.188.17]) by ciao.gmane.io with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1j3JPz-0009ec-5r for ged-emacs-devel@m.gmane-mx.org; Sun, 16 Feb 2020 13:53:03 +0100 Original-Received: from localhost ([::1]:60436 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1j3JPy-0005dH-7E for ged-emacs-devel@m.gmane-mx.org; Sun, 16 Feb 2020 07:53:02 -0500 Original-Received: from eggs.gnu.org ([2001:470:142:3::10]:53853) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1j3JPS-0004xE-26 for emacs-devel@gnu.org; Sun, 16 Feb 2020 07:52:31 -0500 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1j3JPQ-0002eY-LI for emacs-devel@gnu.org; Sun, 16 Feb 2020 07:52:29 -0500 Original-Received: from mail-wr1-x42d.google.com ([2a00:1450:4864:20::42d]:37914) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1j3JPQ-0002dt-CL for emacs-devel@gnu.org; Sun, 16 Feb 2020 07:52:28 -0500 Original-Received: by mail-wr1-x42d.google.com with SMTP id y17so16337977wrh.5 for ; Sun, 16 Feb 2020 04:52:28 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=o2iXEQPjnHYVH9l+ethpBG9WQ96CrEe58LY1SO4WYys=; b=JRWf9goXXMIFS2Q5F1HmWjZ2izsf8kPI9AzA0BEqq7yxlT2FbWMxDs3rbxtcVp7dI+ 7f1thhF/yXzTy96P63PPH10suND5HZJIT+pB0U9CWC2C9Xw+B3evm5DvivgSivmjlQUl sWnDBafKwDM9gctbr6z919mmS7T/axlZxqsMwmbst9IYLHOrGLUx5DqtqN6vcrO1N6tX mO+G3w0YrhrHcreTXCvr75dww9cEZznA5Q58wqMIZ4tkJ8O1CzgDSel53CwKRk/TR+2s 86NH5aQyy41CBg/mIcRiSR0/e+W0j1lJOnEnbJ/yY4CG36kNKGEizTTnPunY4/FUXaXJ HYhQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=o2iXEQPjnHYVH9l+ethpBG9WQ96CrEe58LY1SO4WYys=; b=eeY42RPnRGNzy5bkgCiUZ/hvut88RusUzaWC0O3D+fIECEkFSGF5D7JXC8CGRULAIj 1z8qXt9ako9WfxTp3A3yM9UKHWB5mYhczDVlemLtHU/hKeNhVC1/pHZQzRiBzC1nzIaQ AZhgowdrCMVWhTgD0p9qtnSb4hYINAmPLlcJGfZTA/LXGEDqkqTn/vR20JKWExM2jhbt J2oxH9Nex/tFJle9al8Fz6NVPyCPfI/ssj46aSxLm9x7Jw6c55J+g72FI4pbBT9cBoCH LNPhcAiJWbmPJkhQzRD1RKUrsvJDhpGaEnJkeLWlHg0DoqjgShru3oA49NH2YweTKFT9 XlOQ== X-Gm-Message-State: APjAAAWNH/l8bo9yJW2crHIR9H0OKJgCTEIsCHptb8Mg+qeU0sliSFYk JFs5RItKwiKJQUqLRx7mA7X9o4hM3wgzLYKY5A== X-Google-Smtp-Source: APXvYqxxISmuqDAa0gTj21tO+SR1NbeJUPZbB8HaT3WrO0I1iqGhBE7JXugDHMufBKM2DHuEOJhTRhN9qH2Z7T7ZpLk= X-Received: by 2002:adf:f64b:: with SMTP id x11mr15526823wrp.355.1581857547187; Sun, 16 Feb 2020 04:52:27 -0800 (PST) In-Reply-To: X-detected-operating-system: by eggs.gnu.org: Genre and OS details not recognized. X-Received-From: 2a00:1450:4864:20::42d X-BeenThere: emacs-devel@gnu.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Emacs development discussions." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane-mx.org@gnu.org Original-Sender: "Emacs-devel" Xref: news.gmane.io gmane.emacs.devel:244965 Archived-At: --0000000000002f7aeb059eb0e923 Content-Type: text/plain; charset="UTF-8" Nevermind, found it. Guess it would have been easier if `libgnutls-version' wasn't such a shady undocumented variable. Paul On Sat, 15 Feb 2020 at 22:05, Paul Pogonyshev wrote: > Sorry to bother again, but now I run into a different problem with this. I > set `gnutls-algorithm-priority' to "NORMAL:-VERS-TLS1.3" as suggested in > that bugreport. This does work fine locally. However, when I use the same > code on Travis CI for automated testing, I get the following error: > > gnutls.c: [1] (Emacs) connecting to host: stable.melpa.org > gnutls.c: [1] (Emacs) allocating credentials > gnutls.c: [2] (Emacs) allocating x509 credentials > gnutls.c: [2] (Emacs) using default verification flags > gnutls.c: [1] (Emacs) setting the trustfile: > /etc/ssl/certs/ca-certificates.crt > gnutls.c: [1] (Emacs) gnutls callbacks > gnutls.c: [1] (Emacs) gnutls_init > gnutls.c: [1] (Emacs) got non-default priority string: > NORMAL:-VERS-TLS1.3 > gnutls.c: [1] (Emacs) setting the priority string > gnutls.c: [2] ASSERT: gnutls_priority.c:832 > > gnutls.el: (err=[-50] The request is invalid.) boot: (:priority > NORMAL:-VERS-TLS1.3 :hostname stable.melpa.org :loglevel 2 > :min-prime-bits 256 :trustfiles (/etc/ssl/certs/ca-certificates.crt) > :crlfiles nil :keylist nil :verify-flags nil :verify-error nil :callbacks > nil) > Package refresh done > Debugger entered--Lisp error: (gnutls-error # stable.melpa.org<1>> -50) > signal(gnutls-error (#> -50)) > > Travis CI (Ubuntu distribution Trusty) has an ancient GnuTLS version > 2.12.6. As far as I understand, it doesn't know about TLS1.3 and therefore > the attempt to disable it fails. > > Is there a way to use "NORMAL:-VERS-TLS1.3" in "do not fail" mode? Maybe I > could somehow query if the library knows about 1.3 first? > > Paul > > On Sat, 25 Jan 2020 at 16:33, Noam Postavsky wrote: > >> On Sat, 25 Jan 2020 at 09:55, Paul Pogonyshev >> wrote: >> > >> > (file-error "https://elpa.gnu.org/packages/archive-contents" "Bad >> Request") >> > >> > for me. Also fails if I replace "https" with "http" in the command, >> > though with a different error. >> >> The https failure is Bug#36749, though I'm surprised to hear that it >> fails with plain http as well. >> >> > * The command with different Emacs version: 24.5, 26.3 and 28.0.50 >> > (trunk). >> >> Is your 24.5 Emacs linked against an older version of libgnutls? >> Otherwise I would expect it to have the same problem. >> > --0000000000002f7aeb059eb0e923 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
Nevermind, found it. Guess it would have = been easier if `libgnutls-version' wasn't such a shady undocumented= variable.

Paul

On Sat, 15 Feb 2020 at 22:05,= Paul Pogonyshev <pogonyshev@gma= il.com> wrote:
Sorry to bother again, but now I run into a differen= t problem with this. I set `gnutls-algorithm-priority' to "NORMAL:= -VERS-TLS1.3" as suggested in that bugreport. This does work fine loca= lly. However, when I use the same code on Travis CI for automated testing, = I get the following error:

=C2=A0 =C2=A0 =C2=A0gnutls.c:= [1] (Emacs) connecting to host: stable.melpa.org
=C2=A0 =C2=A0 =C2=A0gnutls.c: [1] (Emac= s) allocating credentials
=C2=A0 =C2=A0 =C2=A0gnutls.c: [2] (Emacs) allo= cating x509 credentials
=C2=A0 =C2=A0 =C2=A0gnutls.c: [2] (Emacs) using = default verification flags
=C2=A0 =C2=A0 =C2=A0gnutls.c: [1] (Emacs) set= ting the trustfile: =C2=A0/etc/ssl/certs/ca-certificates.crt
=C2=A0 =C2= =A0 =C2=A0gnutls.c: [1] (Emacs) gnutls callbacks
=C2=A0 =C2=A0 =C2=A0gnu= tls.c: [1] (Emacs) gnutls_init
=C2=A0 =C2=A0 =C2=A0gnutls.c: [1] (Emacs)= got non-default priority string: NORMAL:-VERS-TLS1.3
=C2=A0 =C2=A0 =C2= =A0gnutls.c: [1] (Emacs) setting the priority string
=C2=A0 =C2=A0 =C2= =A0gnutls.c: [2] ASSERT: gnutls_priority.c:832
=C2=A0 =C2=A0 =C2=A0
= =C2=A0 =C2=A0 =C2=A0gnutls.el: (err=3D[-50] The request is invalid.) boot: = (:priority NORMAL:-VERS-TLS1.3 :hostname stable.melpa.org :loglevel 2 :min-prime-bits 256 :t= rustfiles (/etc/ssl/certs/ca-certificates.crt) :crlfiles nil :keylist nil := verify-flags nil :verify-error nil :callbacks nil)
=C2=A0 =C2=A0 =C2=A0P= ackage refresh done
=C2=A0 =C2=A0 =C2=A0Debugger entered--Lisp error: (g= nutls-error #<process stable.melpa.org<1>> -50)
=C2=A0 =C2=A0 =C2=A0 =C2=A0si= gnal(gnutls-error (#<process stable.melpa.org<1>> -50))

Travis CI (Ubuntu distribution Trusty) has an ancient GnuTLS version = 2.12.6. As far as I understand, it doesn't know about TLS1.3 and theref= ore the attempt to disable it fails.

Is there a wa= y to use "NORMAL:-VERS-TLS1.3" in "do not fail" mode? M= aybe I could somehow query if the library knows about 1.3 first?
=
Paul

On Sat, 25 Jan 2020 at 16:33, Noam Postavsky <<= a href=3D"mailto:npostavs@gmail.com" target=3D"_blank">npostavs@gmail.com> wrote:
On= Sat, 25 Jan 2020 at 09:55, Paul Pogonyshev <pogonyshev@gmail.com> wrote:
>
>=C2=A0 =C2=A0 =C2=A0(file-error "https://elpa= .gnu.org/packages/archive-contents" "Bad Request")
>
> for me.=C2=A0 Also fails if I replace "https" with "htt= p" in the command,
> though with a different error.

The https failure is Bug#36749, though I'm surprised to hear that it fails with plain http as well.

> * The command with different Emacs version: 24.5, 26.3 and 28.0.50
>=C2=A0 =C2=A0(trunk).

Is your 24.5 Emacs linked against an older version of libgnutls?
Otherwise I would expect it to have the same problem.
--0000000000002f7aeb059eb0e923--