Re: [PATCH] GnuTLS support on Woe32

From: Lars Magne Ingebrigtsen
Subject: Re: [PATCH] GnuTLS support on Woe32
Date: Mon, 07 Mar 2011 17:34:56 +0100
address@hidden (Claudio Bley) writes:

> +(eval-and-compile
> +  (when (fboundp 'gnutls-boot) (require 'gnutls)))
> +
>  (defun starttls-negotiate-gnutls (process)

I think starttls.el should probably be left as is -- that is, use it
only for doing the STARTTLS connections based on the external programs.
That way it can be decided on a higher level whether to use the built-in
version or not.  Which is particularly important since there are still
rather serious bugs in the built-in gnutls support.

Have a look at proto-stream.el (currently residing in the Gnus
directory, but should be moved to the net directory at some point),
which provides comprehensive support for TLS/STARTTLS based on
starttls.el and/or gnutls.c (including opportunistic upgrades based on
the capabilities of the server).

I've been meaning to change pop3.el and smtpmail.el to use
open-protocol-stream to get these nice features working automatically
there, too, but I haven't gotten around to it yet.

