diff options
Diffstat (limited to 'lisp')
| -rw-r--r-- | lisp/ChangeLog | 5 | ||||
| -rw-r--r-- | lisp/net/network-stream.el | 10 |
2 files changed, 12 insertions, 3 deletions
diff --git a/lisp/ChangeLog b/lisp/ChangeLog index 38a463ddb58..9603acec917 100644 --- a/lisp/ChangeLog +++ b/lisp/ChangeLog | |||
| @@ -1,3 +1,8 @@ | |||
| 1 | 2011-08-17 Lars Magne Ingebrigtsen <larsi@gnus.org> | ||
| 2 | |||
| 3 | * net/network-stream.el (network-stream-open-starttls): Support | ||
| 4 | using starttls.el without using gnutls-cli. | ||
| 5 | |||
| 1 | 2011-08-17 Juri Linkov <juri@jurta.org> | 6 | 2011-08-17 Juri Linkov <juri@jurta.org> |
| 2 | 7 | ||
| 3 | * progmodes/grep.el (rgrep): Handle the case when | 8 | * progmodes/grep.el (rgrep): Handle the case when |
diff --git a/lisp/net/network-stream.el b/lisp/net/network-stream.el index ceb094cded7..0c3d0285f91 100644 --- a/lisp/net/network-stream.el +++ b/lisp/net/network-stream.el | |||
| @@ -237,13 +237,13 @@ functionality. | |||
| 237 | (unless builtin-starttls | 237 | (unless builtin-starttls |
| 238 | (delete-process stream) | 238 | (delete-process stream) |
| 239 | (setq start (with-current-buffer buffer (point-max))) | 239 | (setq start (with-current-buffer buffer (point-max))) |
| 240 | (let* ((starttls-use-gnutls t) | 240 | (let* ((starttls-extra-arguments |
| 241 | (starttls-extra-arguments | ||
| 242 | (if require-tls | 241 | (if require-tls |
| 243 | starttls-extra-arguments | 242 | starttls-extra-arguments |
| 244 | ;; For opportunistic TLS upgrades, we don't really | 243 | ;; For opportunistic TLS upgrades, we don't really |
| 245 | ;; care about the identity of the peer. | 244 | ;; care about the identity of the peer. |
| 246 | (cons "--insecure" starttls-extra-arguments))) | 245 | (cons "--insecure" starttls-extra-arguments))) |
| 246 | (starttls-extra-args starttls-extra-args) | ||
| 247 | (cert (network-stream-certificate host service parameters))) | 247 | (cert (network-stream-certificate host service parameters))) |
| 248 | ;; There are client certificates requested, so add them to | 248 | ;; There are client certificates requested, so add them to |
| 249 | ;; the command line. | 249 | ;; the command line. |
| @@ -251,7 +251,11 @@ functionality. | |||
| 251 | (setq starttls-extra-arguments | 251 | (setq starttls-extra-arguments |
| 252 | (nconc (list "--x509keyfile" (expand-file-name (nth 0 cert)) | 252 | (nconc (list "--x509keyfile" (expand-file-name (nth 0 cert)) |
| 253 | "--x509certfile" (expand-file-name (nth 1 cert))) | 253 | "--x509certfile" (expand-file-name (nth 1 cert))) |
| 254 | starttls-extra-arguments))) | 254 | starttls-extra-arguments) |
| 255 | starttls-extra-args | ||
| 256 | (nconc (list "--key-file" (expand-file-name (nth 0 cert)) | ||
| 257 | "--cert-file" (expand-file-name (nth 1 cert))) | ||
| 258 | starttls-extra-args))) | ||
| 255 | (setq stream (starttls-open-stream name buffer host service))) | 259 | (setq stream (starttls-open-stream name buffer host service))) |
| 256 | (network-stream-get-response stream start eoc) | 260 | (network-stream-get-response stream start eoc) |
| 257 | ;; Requery capabilities for protocols that require it; i.e., | 261 | ;; Requery capabilities for protocols that require it; i.e., |