aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorLars Magne Ingebrigtsen2010-10-01 12:56:44 +0000
committerKatsumi Yamaoka2010-10-01 12:56:44 +0000
commitaecb42aa494ca9edb75bb700a807bd9eeed82dca (patch)
tree1153cb6c460a28128e88f915f6de65154be26b0a
parent088dcc3e8c2a0b8a36dd9ac5e515d51e41530bee (diff)
downloademacs-aecb42aa494ca9edb75bb700a807bd9eeed82dca.tar.gz
emacs-aecb42aa494ca9edb75bb700a807bd9eeed82dca.zip
Give up on using gnutls-cli for starttls.
Diffstat
-rw-r--r--lisp/ChangeLog7
-rw-r--r--lisp/gnus/ChangeLog5
-rw-r--r--lisp/gnus/nnimap.el6
-rw-r--r--lisp/net/tls.el7
4 files changed, 20 insertions, 5 deletions
diff --git a/lisp/ChangeLog b/lisp/ChangeLog
index fb364f9651e..235aec2f478 100644
--- a/lisp/ChangeLog
+++ b/lisp/ChangeLog
@@ -1,3 +1,10 @@
12010-10-01 Lars Magne Ingebrigtsen <larsi@gnus.org>
2
3 * net/tls.el (tls-starttls-switches): Give up on using starttls with
4 gnutls-cli.
5 (tls-program): Add --insecure to be consistent with the defaults from
6 openssl s_client. Now all three commands are insecure.
7
12010-10-01 Eli Zaretskii <eliz@gnu.org> 82010-10-01 Eli Zaretskii <eliz@gnu.org>
2 9
3 * makefile.w32-in (DEST, TAGS, TAGS-LISP, TAGS-nmake) 10 * makefile.w32-in (DEST, TAGS, TAGS-LISP, TAGS-nmake)
diff --git a/lisp/gnus/ChangeLog b/lisp/gnus/ChangeLog
index 32b6716c970..4737a414545 100644
--- a/lisp/gnus/ChangeLog
+++ b/lisp/gnus/ChangeLog
@@ -1,3 +1,8 @@
12010-10-01 Lars Magne Ingebrigtsen <larsi@gnus.org>
2
3 * nnimap.el (nnimap-extend-tls-programs): Only extend those programs
4 for starttls that tls.el implements; i.e. openssl.
5
12010-10-01 Katsumi Yamaoka <yamaoka@jpl.org> 62010-10-01 Katsumi Yamaoka <yamaoka@jpl.org>
2 7
3 * gravatar.el: Don't load image.el that XEmacs doesn't provide. 8 * gravatar.el: Don't load image.el that XEmacs doesn't provide.
diff --git a/lisp/gnus/nnimap.el b/lisp/gnus/nnimap.el
index 4d26cdb6371..70aa573525f 100644
--- a/lisp/gnus/nnimap.el
+++ b/lisp/gnus/nnimap.el
@@ -404,7 +404,11 @@ textual parts.")
404 (unless (consp programs) 404 (unless (consp programs)
405 (setq programs (list programs))) 405 (setq programs (list programs)))
406 (dolist (program programs) 406 (dolist (program programs)
407 (push (concat program " " "%s") result)) 407 (when (assoc (car (split-string program)) tls-starttls-switches)
408 (push (if (not (string-match "%s" program))
409 (concat program " " "%s")
410 program)
411 result)))
408 (nreverse result))) 412 (nreverse result)))
409 413
410(defun nnimap-find-parameter (parameter elems) 414(defun nnimap-find-parameter (parameter elems)
diff --git a/lisp/net/tls.el b/lisp/net/tls.el
index ad0768968e5..daa1c18c8bf 100644
--- a/lisp/net/tls.el
+++ b/lisp/net/tls.el
@@ -76,12 +76,11 @@ and `gnutls-cli' (version 2.0.1) output."
76 :group 'tls) 76 :group 'tls)
77 77
78(defvar tls-starttls-switches 78(defvar tls-starttls-switches
79 '(("gnutls-cli" "-s") 79 '(("openssl" "-starttls imap"))
80 ("openssl" "-starttls imap"))
81 "Alist of programs and the switches necessary to get starttls behaviour.") 80 "Alist of programs and the switches necessary to get starttls behaviour.")
82 81
83(defcustom tls-program '("gnutls-cli %s -p %p %h" 82(defcustom tls-program '("gnutls-cli --insecure -p %p %h"
84 "gnutls-cli %s -p %p %h --protocols ssl3" 83 "gnutls-cli --insecure -p %p %h --protocols ssl3"
85 "openssl s_client %s -connect %h:%p -no_ssl2 -ign_eof") 84 "openssl s_client %s -connect %h:%p -no_ssl2 -ign_eof")
86 "List of strings containing commands to start TLS stream to a host. 85 "List of strings containing commands to start TLS stream to a host.
87Each entry in the list is tried until a connection is successful. 86Each entry in the list is tried until a connection is successful.
generated by cgit v1.2.1 (git 2.18.0) at 2026-01-18 10:49:29 +0000