From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Fran Newsgroups: gmane.emacs.bugs Subject: bug#23759: 25.1.50; open-tls-stream creates malformed gnutls-cli command if trusted cert files don't exist Date: Mon, 13 Jun 2016 07:33:58 -0400 Message-ID: References: <87y46ahz23.fsf@gmail.com> <83r3c1g3fv.fsf@gnu.org> <87oa759yu0.fsf@gnus.org> NNTP-Posting-Host: plane.gmane.org Mime-Version: 1.0 Content-Type: multipart/alternative; boundary=94eb2c0944f6a3279f05352743c3 X-Trace: ger.gmane.org 1465818513 6469 80.91.229.3 (13 Jun 2016 11:48:33 GMT) X-Complaints-To: usenet@ger.gmane.org NNTP-Posting-Date: Mon, 13 Jun 2016 11:48:33 +0000 (UTC) Cc: 23759@debbugs.gnu.org To: Lars Magne Ingebrigtsen Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Mon Jun 13 13:48:24 2016 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane.org Original-Received: from lists.gnu.org ([208.118.235.17]) by plane.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1bCQLt-0000aW-Gx for geb-bug-gnu-emacs@m.gmane.org; Mon, 13 Jun 2016 13:48:21 +0200 Original-Received: from localhost ([::1]:55651 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1bCQLn-00087i-MT for geb-bug-gnu-emacs@m.gmane.org; Mon, 13 Jun 2016 07:48:15 -0400 Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:51737) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1bCQ96-0005mB-8X for bug-gnu-emacs@gnu.org; Mon, 13 Jun 2016 07:35:09 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1bCQ90-0003Uo-3a for bug-gnu-emacs@gnu.org; Mon, 13 Jun 2016 07:35:07 -0400 Original-Received: from debbugs.gnu.org ([208.118.235.43]:54482) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1bCQ90-0003UV-0Y for bug-gnu-emacs@gnu.org; Mon, 13 Jun 2016 07:35:02 -0400 Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1bCQ8z-0007QX-QD for bug-gnu-emacs@gnu.org; Mon, 13 Jun 2016 07:35:01 -0400 X-Loop: help-debbugs@gnu.org Resent-From: Fran Original-Sender: "Debbugs-submit" Resent-CC: bug-gnu-emacs@gnu.org Resent-Date: Mon, 13 Jun 2016 11:35:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 23759 X-GNU-PR-Package: emacs X-GNU-PR-Keywords: Original-Received: via spool by 23759-submit@debbugs.gnu.org id=B23759.146581765228487 (code B ref 23759); Mon, 13 Jun 2016 11:35:01 +0000 Original-Received: (at 23759) by debbugs.gnu.org; 13 Jun 2016 11:34:12 +0000 Original-Received: from localhost ([127.0.0.1]:38586 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1bCQ88-0007PM-Tl for submit@debbugs.gnu.org; Mon, 13 Jun 2016 07:34:12 -0400 Original-Received: from mail-oi0-f44.google.com ([209.85.218.44]:35593) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1bCQ84-0007Op-05 for 23759@debbugs.gnu.org; Mon, 13 Jun 2016 07:34:07 -0400 Original-Received: by mail-oi0-f44.google.com with SMTP id w5so123662979oib.2 for <23759@debbugs.gnu.org>; Mon, 13 Jun 2016 04:34:03 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc; bh=PF3f7zTi+LZkf7Ucvlgwuxte6WPReAGKRU2nET8mA6k=; b=rnTtaPuHx7JKxh6Vuj8WaUvbGIUexaU6xgP8qaT8yA05FwOt7FKyl5SdaZTW1qun1F TUVWUbfTQr1tKlR+v+9lwyU0kgTkMaGJ3mZb6iKqczJXfWcqi3tJviEwzY3lUQIyn3I0 dhUraNf3oIEyRK6IvrvP+8TMhW9wlswoy1BO4o14sW0z6pnIERqAJwQA2r0mqvD9vKHp RuZYwbpsa72I0KttkYTpx2cMe2B/aZlPECbBRxxAomE8zgTR9ZhBlW+HoUafWj6qCMja RHoSVFhEUaioQ918TwIgHSPh33BMAGScke1edzVfNpuDKisdhjBxEZ5bt+ksJluE4J21 71tA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc; bh=PF3f7zTi+LZkf7Ucvlgwuxte6WPReAGKRU2nET8mA6k=; b=VecEDRY9gTpbAOVicntgBqxYzavpMEpypDX06kws03gjJM9SkPTOKNduK7sqaTAKd7 06FPG9Ysm4223GK9YsJ/dvRSx38Fc62qatrsixs92mvGkoU7gfTuxHIAvOEElwWLsGMK gKPj6QcA9Vr47lOrfisNZ0yjFXM7JRKL7zzLwRawNk16DkXYvYzfPe5MqQkKT8XE5lIN Ivt8R+JgoVESYLYPobNFFfREcaymVJsoxwOH3VkDdOBg4Ro8RxE4NUwruMUVkuiNnjOV Nl3qcufpE5z3/0To2NIklTTyTW/V9tdbIVC0tZmqdEc0l36YwW0+IHTdNBeYcBAl6S3E rRCw== X-Gm-Message-State: ALyK8tKbs+DtxQT8TWFi+ABcSZdqA7Fvjf0+XVbuWHqdp1LcokpR/xvvKyMhShL7wN7u3dPOcRJ6fyHBtW/iGQ== X-Received: by 10.157.23.209 with SMTP id j75mr6261036otj.109.1465817638313; Mon, 13 Jun 2016 04:33:58 -0700 (PDT) Original-Received: by 10.157.16.10 with HTTP; Mon, 13 Jun 2016 04:33:58 -0700 (PDT) Original-Received: by 10.157.16.10 with HTTP; Mon, 13 Jun 2016 04:33:58 -0700 (PDT) In-Reply-To: X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Received-From: 208.118.235.43 X-BeenThere: bug-gnu-emacs@gnu.org List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Original-Sender: "bug-gnu-emacs" Xref: news.gmane.org gmane.emacs.bugs:119489 Archived-At: --94eb2c0944f6a3279f05352743c3 Content-Type: text/plain; charset=UTF-8 If Cygwin is installed, open-tls-stream works, because gnutls-cli and openssl are available. It has worked for some time. I routinely use this feature to enable ERC to connect to servers using TLS using function erc-tls. This bug report is about an Elisp logic error that can happen on any platform if the certificate trust files do not exist, leading to a malformed gnutls-cli command line. Those files are outside the control of Emacs. They may not exist. Please don't disable functionality that some of us have used for years. Thanks. -- Fran Litterio On Jun 13, 2016 6:18 AM, "Lars Ingebrigtsen" wrote: Eli Zaretskii writes: > TLS connections on MS-Windows are supported via the GnuTLS library. > External TLS programs will never work correctly on Windows, since they > use signals to communicate with Emacs. So there's little sense in > fixing this issue, because the result will not work anyway. Perhaps it would make sense to just have `open-tls-stream' signal an error on Windows to avoid confusing people? I think this is at least the fourth bug report where people have spent significant time trying to debug something that will never work. It could just say (error "Use an Emacs built with TLS support (and with installed gnutls libraries)"). -- (domestic pets only, the antidote for overdose, milk.) bloggy blog: http://lars.ingebrigtsen.no --94eb2c0944f6a3279f05352743c3 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable

If Cygwin is installed, open-tls-stream works, because gnutl= s-cli and openssl are available. It has worked for some time. I routinely u= se this feature to enable ERC to connect to servers using TLS using functio= n erc-tls.

This bug report is about an Elisp logic error that can happe= n on any platform if the certificate trust files do not exist, leading to a= malformed gnutls-cli command line. Those files are outside the control of = Emacs. They may not exist.

Please don't disable functionality that some of us have = used for years.

Thanks.
--
Fran Litterio

On Jun 13, 2016 6:18 AM, "Lars Ingebrigtsen= " <larsi@gnus.org> wrote:<= br type=3D"attribution">
Eli Zaretskii <eliz@gnu.org> wri= tes:

> TLS connections on MS-Windows are supported via the GnuTLS library. > External TLS programs will never work correctly on Windows, since they=
> use signals to communicate with Emacs.=C2=A0 So there's little sen= se in
> fixing this issue, because the result will not work anyway.

Perhaps it would make sense to just have `open-tls-stream' signal= an
error on Windows to avoid confusing people?=C2=A0 I think this is at least<= br> the fourth bug report where people have spent significant time trying to debug something that will never work.

It could just say (error "Use an Emacs built with TLS support (and wit= h
installed gnutls libraries)").

--
(domestic pets only, the antidote for overdose, milk.)
=C2=A0 =C2=A0bloggy blog: http://lars.ingebrigtsen.no
--94eb2c0944f6a3279f05352743c3--