[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Testing the gnutls support

From: Lars Magne Ingebrigtsen
Subject: Re: Testing the gnutls support
Date: Fri, 01 Apr 2011 17:39:21 +0200
User-agent: Gnus/5.110016 (No Gnus v0.16) Emacs/24.0.50 (gnu/linux)

Ted Zlatanov <address@hidden> writes:

> After the connection fails, the code that uses gnutls.el can look at
> `gnutls-rejected-certificates' (which will have the certificate and
> enough information about the connection to figure out what it's for).
> And it can then save some of those certificates and `gnutls-negotiate'
> will pick them up.

Right; that makes sense, I think.

> So, from the proto-stream.el perspective, you would try the connection
> and if it fails, look at `gnutls-rejected-certificates' for an entry
> relevant to the connection you just failed to make.  You would then ask
> the user "do you want to accept certificate?" and show the info; if they
> accept you'd save to ~/.emacs.d/certs/SERVER[.PORT].pem.

Do we really need to save the certificate?  Wouldn't just noting that we
accepted the cert suffice?

(domestic pets only, the antidote for overdose, milk.)
  address@hidden * Lars Magne Ingebrigtsen

reply via email to

[Prev in Thread] Current Thread [Next in Thread]