diff options
| -rw-r--r-- | lisp/ChangeLog | 7 | ||||
| -rw-r--r-- | lisp/gnus/ChangeLog | 5 | ||||
| -rw-r--r-- | lisp/gnus/nnimap.el | 6 | ||||
| -rw-r--r-- | lisp/net/tls.el | 7 |
4 files changed, 20 insertions, 5 deletions
diff --git a/lisp/ChangeLog b/lisp/ChangeLog index fb364f9651e..235aec2f478 100644 --- a/lisp/ChangeLog +++ b/lisp/ChangeLog | |||
| @@ -1,3 +1,10 @@ | |||
| 1 | 2010-10-01 Lars Magne Ingebrigtsen <larsi@gnus.org> | ||
| 2 | |||
| 3 | * net/tls.el (tls-starttls-switches): Give up on using starttls with | ||
| 4 | gnutls-cli. | ||
| 5 | (tls-program): Add --insecure to be consistent with the defaults from | ||
| 6 | openssl s_client. Now all three commands are insecure. | ||
| 7 | |||
| 1 | 2010-10-01 Eli Zaretskii <eliz@gnu.org> | 8 | 2010-10-01 Eli Zaretskii <eliz@gnu.org> |
| 2 | 9 | ||
| 3 | * makefile.w32-in (DEST, TAGS, TAGS-LISP, TAGS-nmake) | 10 | * makefile.w32-in (DEST, TAGS, TAGS-LISP, TAGS-nmake) |
diff --git a/lisp/gnus/ChangeLog b/lisp/gnus/ChangeLog index 32b6716c970..4737a414545 100644 --- a/lisp/gnus/ChangeLog +++ b/lisp/gnus/ChangeLog | |||
| @@ -1,3 +1,8 @@ | |||
| 1 | 2010-10-01 Lars Magne Ingebrigtsen <larsi@gnus.org> | ||
| 2 | |||
| 3 | * nnimap.el (nnimap-extend-tls-programs): Only extend those programs | ||
| 4 | for starttls that tls.el implements; i.e. openssl. | ||
| 5 | |||
| 1 | 2010-10-01 Katsumi Yamaoka <yamaoka@jpl.org> | 6 | 2010-10-01 Katsumi Yamaoka <yamaoka@jpl.org> |
| 2 | 7 | ||
| 3 | * gravatar.el: Don't load image.el that XEmacs doesn't provide. | 8 | * gravatar.el: Don't load image.el that XEmacs doesn't provide. |
diff --git a/lisp/gnus/nnimap.el b/lisp/gnus/nnimap.el index 4d26cdb6371..70aa573525f 100644 --- a/lisp/gnus/nnimap.el +++ b/lisp/gnus/nnimap.el | |||
| @@ -404,7 +404,11 @@ textual parts.") | |||
| 404 | (unless (consp programs) | 404 | (unless (consp programs) |
| 405 | (setq programs (list programs))) | 405 | (setq programs (list programs))) |
| 406 | (dolist (program programs) | 406 | (dolist (program programs) |
| 407 | (push (concat program " " "%s") result)) | 407 | (when (assoc (car (split-string program)) tls-starttls-switches) |
| 408 | (push (if (not (string-match "%s" program)) | ||
| 409 | (concat program " " "%s") | ||
| 410 | program) | ||
| 411 | result))) | ||
| 408 | (nreverse result))) | 412 | (nreverse result))) |
| 409 | 413 | ||
| 410 | (defun nnimap-find-parameter (parameter elems) | 414 | (defun nnimap-find-parameter (parameter elems) |
diff --git a/lisp/net/tls.el b/lisp/net/tls.el index ad0768968e5..daa1c18c8bf 100644 --- a/lisp/net/tls.el +++ b/lisp/net/tls.el | |||
| @@ -76,12 +76,11 @@ and `gnutls-cli' (version 2.0.1) output." | |||
| 76 | :group 'tls) | 76 | :group 'tls) |
| 77 | 77 | ||
| 78 | (defvar tls-starttls-switches | 78 | (defvar tls-starttls-switches |
| 79 | '(("gnutls-cli" "-s") | 79 | '(("openssl" "-starttls imap")) |
| 80 | ("openssl" "-starttls imap")) | ||
| 81 | "Alist of programs and the switches necessary to get starttls behaviour.") | 80 | "Alist of programs and the switches necessary to get starttls behaviour.") |
| 82 | 81 | ||
| 83 | (defcustom tls-program '("gnutls-cli %s -p %p %h" | 82 | (defcustom tls-program '("gnutls-cli --insecure -p %p %h" |
| 84 | "gnutls-cli %s -p %p %h --protocols ssl3" | 83 | "gnutls-cli --insecure -p %p %h --protocols ssl3" |
| 85 | "openssl s_client %s -connect %h:%p -no_ssl2 -ign_eof") | 84 | "openssl s_client %s -connect %h:%p -no_ssl2 -ign_eof") |
| 86 | "List of strings containing commands to start TLS stream to a host. | 85 | "List of strings containing commands to start TLS stream to a host. |
| 87 | Each entry in the list is tried until a connection is successful. | 86 | Each entry in the list is tried until a connection is successful. |