[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Testing the gnutls support
From: |
Lars Magne Ingebrigtsen |
Subject: |
Re: Testing the gnutls support |
Date: |
Fri, 01 Apr 2011 17:39:21 +0200 |
User-agent: |
Gnus/5.110016 (No Gnus v0.16) Emacs/24.0.50 (gnu/linux) |
Ted Zlatanov <address@hidden> writes:
> After the connection fails, the code that uses gnutls.el can look at
> `gnutls-rejected-certificates' (which will have the certificate and
> enough information about the connection to figure out what it's for).
> And it can then save some of those certificates and `gnutls-negotiate'
> will pick them up.
Right; that makes sense, I think.
> So, from the proto-stream.el perspective, you would try the connection
> and if it fails, look at `gnutls-rejected-certificates' for an entry
> relevant to the connection you just failed to make. You would then ask
> the user "do you want to accept certificate?" and show the info; if they
> accept you'd save to ~/.emacs.d/certs/SERVER[.PORT].pem.
Do we really need to save the certificate? Wouldn't just noting that we
accepted the cert suffice?
--
(domestic pets only, the antidote for overdose, milk.)
address@hidden * Lars Magne Ingebrigtsen