From mboxrd@z Thu Jan  1 00:00:00 1970
X-Msuck: nntp://news.gmane.io/gmane.emacs.gnus.general/66428
Path: news.gmane.org!not-for-mail
From: Reiner Steib <reinersteib+gmane@imap.cc>
Newsgroups: gmane.emacs.devel,gmane.emacs.gnus.general
Subject: Re: [PATCH] POP3 Over SSL with openssl
Date: Tue, 04 Mar 2008 23:37:07 +0100
Message-ID: <v93ar6azfw.fsf@marauder.physik.uni-ulm.de>
References: <87mypgi37v.fsf@gmail.com>
Reply-To: Reiner Steib <Reiner.Steib@gmx.de>
NNTP-Posting-Host: lo.gmane.org
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Trace: ger.gmane.org 1204670288 29757 80.91.229.12 (4 Mar 2008 22:38:08 GMT)
X-Complaints-To: usenet@ger.gmane.org
NNTP-Posting-Date: Tue, 4 Mar 2008 22:38:08 +0000 (UTC)
Cc: Elias Oltmanns <eo@nebensachen.de>, ding@gnus.org, emacs-devel@gnu.org
To: Naohiro Aota <nao.aota@gmail.com>
Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Tue Mar 04 23:38:33 2008
Return-path: <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>
Envelope-to: ged-emacs-devel@m.gmane.org
Original-Received: from lists.gnu.org ([199.232.76.165])
	by lo.gmane.org with esmtp (Exim 4.50)
	id 1JWfm8-00045v-AS
	for ged-emacs-devel@m.gmane.org; Tue, 04 Mar 2008 23:38:20 +0100
Original-Received: from localhost ([127.0.0.1] helo=lists.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.43)
	id 1JWfla-0006xy-Vh
	for ged-emacs-devel@m.gmane.org; Tue, 04 Mar 2008 17:37:47 -0500
Original-Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43)
	id 1JWflW-0006vv-Pk
	for emacs-devel@gnu.org; Tue, 04 Mar 2008 17:37:42 -0500
Original-Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43)
	id 1JWflW-0006uy-5p
	for emacs-devel@gnu.org; Tue, 04 Mar 2008 17:37:42 -0500
Original-Received: from [199.232.76.173] (helo=monty-python.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.43) id 1JWflV-0006uv-Uf
	for emacs-devel@gnu.org; Tue, 04 Mar 2008 17:37:41 -0500
Original-Received: from mail.uni-ulm.de ([134.60.1.11])
	by monty-python.gnu.org with esmtps
	(TLS-1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.60)
	(envelope-from <reinersteib+gmane@imap.cc>) id 1JWflV-0006SU-IT
	for emacs-devel@gnu.org; Tue, 04 Mar 2008 17:37:41 -0500
Original-Received: from bridgekeeper.physik.uni-ulm.de (bridgekeeper.physik.uni-ulm.de
	[134.60.41.37])
	by mail.uni-ulm.de (8.14.2/8.14.2) with ESMTP id m24MbcSl025637;
	Tue, 4 Mar 2008 23:37:38 +0100 (MET)
Original-Received: from localhost (bridgekeeper.physik.uni-ulm.de [134.60.41.37])
	by bridgekeeper.physik.uni-ulm.de (Postfix) with ESMTP id E3BE712FD5;
	Tue,  4 Mar 2008 23:37:37 +0100 (CET)
X-Face: .*T0'iU(sujq_j9\J>-d4fg;
	N/1++U#U$_5ii6k.=|"-n'?5O:Hyz&wi'-!I~,}7~GgT=0S
	/&-R5sbkNy5+Xo1y{Tw2KKxi@Xh"g@]Qc|.U<*]WDd)qvGowFDvfU1F]{EDho:7P0@|oOD=Bc{K4?>
	WP68K[Mx:}=`ZT'6g4'f+g?;`vri2!)xGy}3:=l'(/Cea0l4lo^H5#@/Z3ev
Mail-Followup-To: Naohiro Aota <nao.aota@gmail.com>, ding@gnus.org,
	<emacs-devel@gnu.org>, Elias Oltmanns <eo@nebensachen.de>
In-Reply-To: <87mypgi37v.fsf@gmail.com> (Naohiro Aota's message of "Mon, 03
	Mar 2008 18:09:08 +0900")
User-Agent: Gnus/5.110007 (No Gnus v0.7) Emacs/22.1.91 (gnu/linux)
X-DCC-HP_X86_64_8CPU-Metrics: poseidon 1245; Body=4 Fuz1=4 Fuz2=4
X-Virus-Scanned: by amavisd-new
X-detected-kernel: by monty-python.gnu.org: Genre and OS details not
	recognized.
X-BeenThere: emacs-devel@gnu.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Emacs development discussions." <emacs-devel.gnu.org>
List-Unsubscribe: <http://lists.gnu.org/mailman/listinfo/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/pipermail/emacs-devel>
List-Post: <mailto:emacs-devel@gnu.org>
List-Help: <mailto:emacs-devel-request@gnu.org?subject=help>
List-Subscribe: <http://lists.gnu.org/mailman/listinfo/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=subscribe>
Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org
Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org
Xref: news.gmane.org gmane.emacs.devel:91328 gmane.emacs.gnus.general:66428
Archived-At: <http://permalink.gmane.org/gmane.emacs.gnus.general/66428>

On Mon, Mar 03 2008, Naohiro Aota wrote:

> I tried to retrieve mails by POP3 Over SSL with openssl, but Gnus
> stopped working displaing "Retrieving message 1 of 5 from myserver...".
> Then I found that without -ign_eof and -quiet argument, openssl doesn't
> send line begins with "R" or "Q" to server but renegotiate or quit its
> connection. So sending "RETR" command made this problem.
>
> I suggest to call openssl commands with "-ign_eof" argument. Please find
> the patch below.

Does anyone see a problem with this?

> 2008-03-03  Naohiro Aota  <nao.aota@gmail.com>
>
> 	* tls.el (tls-program): Add -ign_eof argument to call the openssl
> 	commands.
> 	(tls-checktrust): Ditto.
>
> Index: lisp/tls.el
> ===================================================================
> RCS file: /usr/local/cvsroot/gnus/lisp/tls.el,v
> retrieving revision 7.23
> diff -u -r7.23 tls.el
> --- lisp/tls.el	1 Mar 2008 01:48:13 -0000	7.23
> +++ lisp/tls.el	3 Mar 2008 08:56:24 -0000
> @@ -80,7 +80,7 @@
>
>  (defcustom tls-program '("gnutls-cli -p %p %h"
>  			 "gnutls-cli -p %p %h --protocols ssl3"
> -			 "openssl s_client -connect %h:%p -no_ssl2")
> +			 "openssl s_client -connect %h:%p -no_ssl2 -ign_eof")
>    "List of strings containing commands to start TLS stream to a host.
>  Each entry in the list is tried until a connection is successful.
>  %h is replaced with server hostname, %p with port to connect to.
> @@ -97,23 +97,23 @@
>  	  :value
>  	  ("gnutls-cli -p %p %h"
>  	   "gnutls-cli -p %p %h --protocols ssl3"
> -	   "openssl s_client -connect %h:%p -no_ssl2")
> +	   "openssl s_client -connect %h:%p -no_ssl2 -ign_eof")
>  	  (set :inline t
>  	       ;; FIXME: add brief `:tag "..."' descriptions.
>  	       ;; (repeat :inline t :tag "Other" (string))
>  	       ;; See `tls-checktrust':
>  	       (const "gnutls-cli --x509cafile /etc/ssl/certs/ca-certificates.crt -p %p %h")
>  	       (const "gnutls-cli --x509cafile /etc/ssl/certs/ca-certificates.crt -p %p %h --protocols ssl3")
> -	       (const "openssl s_client -connect %h:%p -CAfile /etc/ssl/certs/ca-certificates.crt -no_ssl2")
> +	       (const "openssl s_client -connect %h:%p -CAfile /etc/ssl/certs/ca-certificates.crt -no_ssl2 -ign_eof")
>  	       ;; No trust check:
>  	       (const "gnutls-cli -p %p %h")
>  	       (const "gnutls-cli -p %p %h --protocols ssl3")
> -	       (const "openssl s_client -connect %h:%p -no_ssl2"))
> +	       (const "openssl s_client -connect %h:%p -no_ssl2 -ign_eof"))
>  	  (repeat :inline t :tag "Other" (string)))
>      (const :tag "Default list of commands"
>  	   ("gnutls-cli -p %p %h"
>  	    "gnutls-cli -p %p %h --protocols ssl3"
> -	    "openssl s_client -connect %h:%p -no_ssl2"))
> +	    "openssl s_client -connect %h:%p -no_ssl2 -ign_eof"))
>      (list :tag "List of commands"
>  	  (repeat :tag "Command" (string))))
>    :version "22.1"
> @@ -144,7 +144,7 @@
>  \(setq tls-program
>        '(\"gnutls-cli --x509cafile /etc/ssl/certs/ca-certificates.crt -p %p %h\"
>  	\"gnutls-cli --x509cafile /etc/ssl/certs/ca-certificates.crt -p %p %h --protocols ssl3\"
> -	\"openssl s_client -connect %h:%p -CAfile /etc/ssl/certs/ca-certificates.crt -no_ssl2\"))"
> +	\"openssl s_client -connect %h:%p -CAfile /etc/ssl/certs/ca-certificates.crt -no_ssl2 -ign_eof\"))"
>    :type '(choice (const :tag "Always" t)
>  		 (const :tag "Never" nil)
>  		 (const :tag "Ask" ask))

Bye, Reiner.
-- 
       ,,,
      (o o)
---ooO-(_)-Ooo---  |  PGP key available  |  http://rsteib.home.pages.de/