From: Robert Pluim <rpluim@gmail.com>
To: Vinothan Shankar <darael@dracon.is>
Cc: 33780@debbugs.gnu.org
Subject: bug#33780: network-stream.el: network-stream-certificate always returns nil
Date: Thu, 20 Dec 2018 19:45:25 +0100 [thread overview]
Message-ID: <m2r2ec9gvu.fsf@gmail.com> (raw)
In-Reply-To: <97b430dc5524473a7ed3af1b903644880db057ff.camel@dracon.is> (Vinothan Shankar's message of "Thu, 20 Dec 2018 11:24:12 +0000")
Vinothan Shankar <darael@dracon.is> writes:
> OK, so a few minutes into the process of trying to do this, I came
> across a snag: the syntax for using certificates in authinfo files
> doesn't appear to be documented anywhere; I had to extract it from a
> stackexchange question. Docs bug, or lack of search-fu? Moving on...
Itʼs in the smptmail info manual, node 'Encryption'. It is linked from
the main Emacs manual, from the 'Mail Sending' node, but there appears
to be no description of the syntax in the auth-source manual. Patches
welcome :-)
> Results:
>
> Initial failure, but this is because I've been testing with ERC, which
> calls open-network-stream with ":nowait t". If I add the ":keylist
> (and cert (list cert))" stanza to the other branch of open-gnutls-
> stream as well, in the gnutls-boot-parameters call, it works perfectly:
> Freenode picks up my identity even when I supply a blank password.
Thanks for testing. Iʼll update my patch (and write a ChangeLog, and a
NEWS entry)
By my count there are at least 11 calls to open-network-stream in
Emacs' sources which would need updating with ':client-certificate t'
in order to trigger transparent use of user-specified certificates.
By analogy to e.g. smtpmail looking up usernames and passwords by
default using auth-source, I think Emacs should do the same for
client-certificates by default. People without entries specifying
certificates would be unaffected, and third-party packages would not
need to be updated to take advantage of this new feature. Comments
welcome.
Robert
next prev parent reply other threads:[~2018-12-20 18:45 UTC|newest]
Thread overview: 15+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-12-17 19:02 bug#33780: network-stream.el: network-stream-certificate always returns nil Vinothan Shankar
2018-12-19 17:19 ` Robert Pluim
2018-12-20 11:24 ` Vinothan Shankar
2018-12-20 18:45 ` Robert Pluim [this message]
2018-12-21 13:16 ` Robert Pluim
2019-01-09 10:48 ` Robert Pluim
2019-01-12 11:13 ` Eli Zaretskii
2019-01-14 13:27 ` Robert Pluim
2019-01-14 16:00 ` Eli Zaretskii
2019-01-14 16:25 ` Robert Pluim
2019-01-14 16:45 ` Eli Zaretskii
2019-01-14 17:40 ` Robert Pluim
2019-01-14 18:51 ` Eli Zaretskii
2019-01-15 20:31 ` Robert Pluim
2019-01-24 10:40 ` Robert Pluim
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=m2r2ec9gvu.fsf@gmail.com \
--to=rpluim@gmail.com \
--cc=33780@debbugs.gnu.org \
--cc=darael@dracon.is \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this external index
https://git.savannah.gnu.org/cgit/emacs.git
https://git.savannah.gnu.org/cgit/emacs/org-mode.git
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.