GnuTLS C support for nsm.el

emacs-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

GnuTLS C support for nsm.el

From:	Ted Zlatanov
Subject:	GnuTLS C support for nsm.el
Date:	Fri, 11 Nov 2016 12:30:07 -0500
User-agent:	Gnus/5.13 (Gnus v5.13) Emacs/26.0.50 (gnu/linux)

Since 3.0.13, GnuTLS has gnutls_verify_stored_pubkey() and
gnutls_store_pubkey() according to
https://www.gnutls.org/manual/html_node/Certificate-verification.html
which can replace a good chunk of the code in nsm.el and move it down
the stack.

The UI is similar to the typical SSH hostkey acceptance. By default
these use ~/.gnutls/known_hosts but Emacs could override the backend
storage function to use the ~/.emacs.d/network-security.data file.

I am neutral about this, but wanted to bring it up for discussion. Does
anyone think this GnuTLS facility is valuable enough to start using it,
or should we keep nsm.el the way it is, Emacs Lisp only? Lars?

Thanks
Ted

[Prev in Thread]

Current Thread

[Next in Thread]

GnuTLS C support for nsm.el, Ted Zlatanov <=
- Re: GnuTLS C support for nsm.el, Lars Ingebrigtsen, 2016/11/14
  - Re: GnuTLS C support for nsm.el, Ted Zlatanov, 2016/11/15

Prev by Date: Re: lldb support
Next by Date: Re: lldb support
Previous by thread: [ANN] Emacs workshop in Paris, December 12-13-14
Next by thread: Re: GnuTLS C support for nsm.el
Index(es):
- Date
- Thread