emacs-devel
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

weird gnutls issue on OSX


From: Yann Hodique
Subject: weird gnutls issue on OSX
Date: Wed, 29 Jun 2016 09:51:23 -0700
User-agent: Gnus/5.13 (Gnus v5.13) Emacs/25.0.95 (darwin)

Hi,

there seems to be an "interesting" issue going on around gnutls in the
master branch, at least for OSX.
https://github.com/sigma/gh.el/issues/73 provides some backstory

but the short of it is this: with gnutls enabled,
(url-retrieve-synchronously "https://www.gnu.org";) doesn't work, while
(url-retrieve-synchronously "https://www.google.com";) does.

And what's worse, when it fails, it fails pretty silently. Which
generates some confusion.
(btw, without gnutls everything's fine)

The relevant part of the gnutls.c logs reads:

,----
| Contacting host: www.gnu.org:443
| gnutls.c: [1] (Emacs) connecting to host: www.gnu.org
| gnutls.c: [1] (Emacs) allocating credentials
| gnutls.c: [2] (Emacs) allocating x509 credentials
| gnutls.c: [2] (Emacs) using default verification flags
| gnutls.c: [audit] There was a non-CA certificate in the trusted list: 
O=Entrust.
| 
| gnutls.c: [1] (Emacs) setting the trustfile:  
/etc/ssl/certs/ca-certificates.crt
| gnutls.c: [audit] There was a non-CA certificate in the trusted list: 
O=Entrust.
| 
| gnutls.c: [1] (Emacs) gnutls callbacks
| gnutls.c: [1] (Emacs) gnutls_init
| gnutls.c: [1] (Emacs) got non-default priority string: NORMAL
| gnutls.c: [1] (Emacs) setting the priority string
| gnutls.c: [audit] Note that the security level of the Diffie-Hellman key 
exchang
| 
| gnutls.c: [2] WRITE: -1 returned from 0x9, errno: 57
| 
| gnutls.c: [1] (Emacs) fatal error: Error in the push function.
`----

Attached are the logs for the following commands:

$ /usr/local/bin/emacs -q --batch --eval '(progn (setq gnutls-log-level 2) 
(with-current-buffer (url-retrieve-synchronously "https://www.gnu.org";) (princ 
(buffer-string))))' > gnu.log 2>&1

$ /usr/local/bin/emacs -q --batch --eval '(progn (setq gnutls-log-level 2) 
(with-current-buffer (url-retrieve-synchronously "https://www.google.com";) 
(princ (buffer-string))))'

Does that ring any bell?

Thanks

Yann.

-- 
There are weapons you cannot hold in your hand.
You can only hold them in your mind.

  -- Bene Gesserit Teaching

Attachment: google.log.gz
Description: Binary data

Attachment: gnu.log.gz
Description: Binary data


reply via email to

[Prev in Thread] Current Thread [Next in Thread]