From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!.POSTED.blaine.gmane.org!not-for-mail From: Lennard Henze Newsgroups: gmane.emacs.bugs Subject: bug#36725: 26.1; Emacs can't connect to gnu elpa Date: Fri, 19 Jul 2019 15:06:37 +0200 Message-ID: References: <073aef89-5d8a-0335-c54a-eb1948e9394c@hu-berlin.de> <87zhlaykbw.fsf@gmail.com> <87lfwuxmdt.fsf@gmail.com> <2facabee-41b3-4cef-c053-3cf4cd7089f8@hu-berlin.de> Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="------------FC2D03751E1D318C4475A0B8" Injection-Info: blaine.gmane.org; posting-host="blaine.gmane.org:195.159.176.226"; logging-data="20787"; mail-complaints-to="usenet@blaine.gmane.org" User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.8.0 Cc: Noam Postavsky , 36725@debbugs.gnu.org To: Tim Cross Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Fri Jul 19 16:03:18 2019 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane.org Original-Received: from lists.gnu.org ([209.51.188.17]) by blaine.gmane.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.89) (envelope-from ) id 1hoTTe-0005D4-LM for geb-bug-gnu-emacs@m.gmane.org; Fri, 19 Jul 2019 16:03:15 +0200 Original-Received: from localhost ([::1]:45826 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.86_2) (envelope-from ) id 1hoTTd-0005vZ-04 for geb-bug-gnu-emacs@m.gmane.org; Fri, 19 Jul 2019 10:03:13 -0400 Original-Received: from eggs.gnu.org ([2001:470:142:3::10]:44999) by lists.gnu.org with esmtp (Exim 4.86_2) (envelope-from ) id 1hoTTY-0005vG-1W for bug-gnu-emacs@gnu.org; Fri, 19 Jul 2019 10:03:09 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1hoTTW-0007z8-8t for bug-gnu-emacs@gnu.org; Fri, 19 Jul 2019 10:03:07 -0400 Original-Received: from debbugs.gnu.org ([209.51.188.43]:47554) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1hoTTU-0007y7-CB for bug-gnu-emacs@gnu.org; Fri, 19 Jul 2019 10:03:04 -0400 Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1hoTTS-0003iy-TH for bug-gnu-emacs@gnu.org; Fri, 19 Jul 2019 10:03:02 -0400 X-Loop: help-debbugs@gnu.org Resent-From: Lennard Henze Original-Sender: "Debbugs-submit" Resent-CC: bug-gnu-emacs@gnu.org Resent-Date: Fri, 19 Jul 2019 14:03:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 36725 X-GNU-PR-Package: emacs Original-Received: via spool by 36725-submit@debbugs.gnu.org id=B36725.156354496814289 (code B ref 36725); Fri, 19 Jul 2019 14:03:02 +0000 Original-Received: (at 36725) by debbugs.gnu.org; 19 Jul 2019 14:02:48 +0000 Original-Received: from localhost ([127.0.0.1]:56374 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1hoTTE-0003iK-8f for submit@debbugs.gnu.org; Fri, 19 Jul 2019 10:02:48 -0400 Original-Received: from ir1.cms.hu-berlin.de ([141.20.1.146]:44736) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1hoSat-0008Pb-NN for 36725@debbugs.gnu.org; Fri, 19 Jul 2019 09:06:40 -0400 IronPort-SDR: SMF9u/EJ2kqvAkLDmGEVKllF8JmCu0RxS0SxFGbzEhQi1dzXUzfPQpyi3LCOyA81rhsjGMx32Z qrfkvvhRX5ug== X-IronPort-AV: E=Sophos;i="5.64,282,1559512800"; d="scan'208,217";a="130914588" Original-Received: from p2e5a6890.dip0.t-ipconnect.de (HELO [192.168.1.115]) ([46.90.104.144]) by ir1-relay.cms.hu-berlin.de with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 19 Jul 2019 15:06:37 +0200 In-Reply-To: Content-Language: en-US X-Mailman-Approved-At: Fri, 19 Jul 2019 10:02:45 -0400 X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Received-From: 209.51.188.43 X-BeenThere: bug-gnu-emacs@gnu.org List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Original-Sender: "bug-gnu-emacs" Xref: news.gmane.org gmane.emacs.bugs:163414 Archived-At: This is a multi-part message in MIME format. --------------FC2D03751E1D318C4475A0B8 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 8bit Cleaned everything: emacs -Q: get into small buffer for lisp eval try to set via set-variable: does not find gnutls-algorithm-priority (only var starting with gnutls is gnutls-min-prime-bits) do customize-group gnutls: there the variable gnutls-algorithm-priority is shown and set to nil change it to NORMAL:-VERS-TLS1.3 run package-initialize: no problem run package-refresh-contents: no problem install undo-tree via package-install ret undo-tree ret: no problem  On 19.07.19 14:33, Tim Cross wrote: > What happens if you do > > emacs -Q > > set the gnutls-algorithm-priority (using customize-group or set-variable) > > and then > > M-x customize-group gnutls > > M-x package-initialise > M-x package-refresh-contents > > I get a failed to download 'gnu' archive error. If I try to install > the delight package (also a dependency of use-package) I get the bad > response error. > > The issue is definitely TLS related, but not sure if it is client or > server end. When I set the perferred algorithm variable, the > connections to MELPA fail as well. Without setting that variable (i.e. > set to nil) the connections to MELPA work fine and only ELPA fails. > > Tim > > > > On Fri, 19 Jul 2019 at 22:15, Lennard Henze > wrote: > > Hey, I just double checked to not cause unnecessary confusion: > > Crated new user on arch to get empty home: > > used same .emacs as before, but without (setq > gnutls-algorithm-priority "NORMAL:-VERS-TLS1.3"). After refreshing > package list i can find undo-tree in gnu repos. When i try to > install get the same bad request bug. > > After adding the line (setq gnutls-algorithm-priority > "NORMAL:-VERS-TLS1.3") > > use-package downloads the package properly at startup and > everything works fine. > > Can i provide additional debug info? > Still not sure tho if its some dumb mistake in my os. > > On 19.07.19 14:09, Tim Cross wrote: >> Yep, checked and it made no difference. Did get a little more wrt >> error info >> >> gnutls.el: (err=[-50] The request is invalid.) boot: (:priority >> "NORMAL:-VERS-TLS1.3" :hostname melpa.org >> :loglevel 0 :min-prime-bits 256 :trustfiles >> (/etc/ssl/certs/ca-certificates.crt) :crlfiles nil :keylist nil >> :verify-flags nil :verify-error nil :callbacks nil) >> >> Also tried with TLS 1.2, same error. >> >> >> >> On Fri, 19 Jul 2019 at 22:02, Noam Postavsky > > wrote: >> >> Robert Pluim > writes: >> >> >     Noam> Does (setq gnutls-algorithm-priority >> "NORMAL:-VERS-TLS1.3") help?  If >> >     Noam> yes, this is likely Bug#34341 (should already be >> fixed already in >> >     Noam> emacs-26, and the 26.2.90 pretest). >> > >> > elpa.gnu.org uses TLS1.2, not TLS1.3. >> But emacs-27 has a bunch of >> > changes in its TLS handling that might improve matters. >> >> Hmm, it does.  On the other hand, Lennard told me [Lennard, >> please use >> "Reply All" next time so your response goes to the bug list] >> that (setq >> gnutls-algorithm-priority "NORMAL:-VERS-TLS1.3") did actually >> help. >> >> Tim, can you check the gnutls-algorithm-priority workaround too? >> >> >> >> -- >> regards, >> >> Tim >> >> -- >> Tim Cross >> > > > -- > regards, > > Tim > > -- > Tim Cross > --------------FC2D03751E1D318C4475A0B8 Content-Type: text/html; charset=utf-8 Content-Transfer-Encoding: 8bit

Cleaned everything:

emacs -Q: get into small buffer for lisp eval

try to set via set-variable: does not find gnutls-algorithm-priority (only var starting with gnutls is gnutls-min-prime-bits)

do customize-group gnutls: there the variable gnutls-algorithm-priority is shown and set to nil

change it to NORMAL:-VERS-TLS1.3

run package-initialize: no problem

run package-refresh-contents: no problem

install undo-tree via package-install ret undo-tree ret: no problem

 On 19.07.19 14:33, Tim Cross wrote:
What happens if you do 

emacs -Q

set the gnutls-algorithm-priority (using customize-group or set-variable)
 
and then

M-x customize-group gnutls

M-x package-initialise
M-x package-refresh-contents

I get a failed to download 'gnu' archive error. If I try to install the delight package (also a dependency of use-package) I get the bad response error.

The issue is definitely TLS related, but not sure if it is client or server end. When I set the perferred algorithm variable, the connections to MELPA fail as well. Without setting that variable (i.e. set to nil) the connections to MELPA work fine and only ELPA fails.

Tim



On Fri, 19 Jul 2019 at 22:15, Lennard Henze <henzelen@hu-berlin.de> wrote:

Hey, I just double checked to not cause unnecessary confusion:

Crated new user on arch to get empty home:

used same .emacs as before, but without (setq gnutls-algorithm-priority "NORMAL:-VERS-TLS1.3"). After refreshing package list i can find undo-tree in gnu repos. When i try to install get the same bad request bug.

After adding the line (setq gnutls-algorithm-priority "NORMAL:-VERS-TLS1.3")

use-package downloads the package properly at startup and everything works fine.

Can i provide additional debug info?
Still not sure tho if its some dumb mistake in my os.

On 19.07.19 14:09, Tim Cross wrote:
Yep, checked and it made no difference. Did get a little more wrt error info

gnutls.el: (err=[-50] The request is invalid.) boot: (:priority "NORMAL:-VERS-TLS1.3" :hostname melpa.org :loglevel 0 :min-prime-bits 256 :trustfiles (/etc/ssl/certs/ca-certificates.crt) :crlfiles nil :keylist nil :verify-flags nil :verify-error nil :callbacks nil)

Also tried with TLS 1.2, same error.



On Fri, 19 Jul 2019 at 22:02, Noam Postavsky <npostavs@gmail.com> wrote:
Robert Pluim <rpluim@gmail.com> writes:

>     Noam> Does (setq gnutls-algorithm-priority "NORMAL:-VERS-TLS1.3") help?  If
>     Noam> yes, this is likely Bug#34341 (should already be fixed already in
>     Noam> emacs-26, and the 26.2.90 pretest).
>
> elpa.gnu.org uses TLS1.2, not TLS1.3. But emacs-27 has a bunch of
> changes in its TLS handling that might improve matters.

Hmm, it does.  On the other hand, Lennard told me [Lennard, please use
"Reply All" next time so your response goes to the bug list] that (setq
gnutls-algorithm-priority "NORMAL:-VERS-TLS1.3") did actually help.

Tim, can you check the gnutls-algorithm-priority workaround too?



--
regards,

Tim

--
Tim Cross



--
regards,

Tim

--
Tim Cross

--------------FC2D03751E1D318C4475A0B8--