emacs: lisp/net/gnutls.el annotate

annotate lisp/net/gnutls.el @ 110640:f7f67bd95f3d

Minor diary-lib change. * lisp/calendar/diary-lib.el (diary-list-entries): Move the "Preparing..." message entirely here. (diary-simple-display, diary-fancy-display): Move "Preparing..." messages to diary-list-entries. (diary-include-other-diary-files): Use LIST-ONLY rather than setting diary-display-function.

author	Glenn Morris <rgm@gnu.org>
date	Tue, 28 Sep 2010 21:10:34 -0700
parents	6c735824d0c1
children	256dd50b2a63

rev	line source
110584 9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	1 ;;; gnutls.el --- Support SSL and TLS connections through GnuTLS
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	2 ;; Copyright (C) 2010 Free Software Foundation, Inc.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	3
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	4 ;; Author: Ted Zlatanov <tzz@lifelogs.com>
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	5 ;; Keywords: comm, tls, ssl, encryption
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	6 ;; Originally-By: Simon Josefsson (See http://josefsson.org/emacs-security/)
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	7
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	8 ;; This file is part of GNU Emacs.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	9
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	10 ;; GNU Emacs is free software: you can redistribute it and/or modify
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	11 ;; it under the terms of the GNU General Public License as published by
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	12 ;; the Free Software Foundation, either version 3 of the License, or
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	13 ;; (at your option) any later version.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	14
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	15 ;; GNU Emacs is distributed in the hope that it will be useful,
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	16 ;; but WITHOUT ANY WARRANTY; without even the implied warranty of
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	17 ;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	18 ;; GNU General Public License for more details.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	19
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	20 ;; You should have received a copy of the GNU General Public License
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	21 ;; along with GNU Emacs. If not, see <http://www.gnu.org/licenses/>.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	22
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	23 ;;; Commentary:
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	24
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	25 ;; This package provides language bindings for the GnuTLS library
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	26 ;; using the corresponding core functions in gnutls.c.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	27
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	28 ;; Simple test:
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	29 ;;
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	30 ;; (setq jas (open-ssl-stream "ssl" (current-buffer) "www.pdc.kth.se" 443))
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	31 ;; (process-send-string jas "GET /\r\n\r\n")
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	32
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	33 ;;; Code:
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	34
110611 6c735824d0c1 Add gnutls logging and clean up various gnutls bits. Lars Magne Ingebrigtsen <larsi@gnus.org> parents: 110606 diff changeset	35 (defgroup gnutls nil
6c735824d0c1 Add gnutls logging and clean up various gnutls bits. Lars Magne Ingebrigtsen <larsi@gnus.org> parents: 110606 diff changeset	36 "Emacs interface to the GnuTLS library."
6c735824d0c1 Add gnutls logging and clean up various gnutls bits. Lars Magne Ingebrigtsen <larsi@gnus.org> parents: 110606 diff changeset	37 :prefix "gnutls-"
6c735824d0c1 Add gnutls logging and clean up various gnutls bits. Lars Magne Ingebrigtsen <larsi@gnus.org> parents: 110606 diff changeset	38 :group 'net-utils)
6c735824d0c1 Add gnutls logging and clean up various gnutls bits. Lars Magne Ingebrigtsen <larsi@gnus.org> parents: 110606 diff changeset	39
6c735824d0c1 Add gnutls logging and clean up various gnutls bits. Lars Magne Ingebrigtsen <larsi@gnus.org> parents: 110606 diff changeset	40 (defcustom gnutls-log-level 2
6c735824d0c1 Add gnutls logging and clean up various gnutls bits. Lars Magne Ingebrigtsen <larsi@gnus.org> parents: 110606 diff changeset	41 "Logging level to be used by `starttls-negotiate' and GnuTLS."
6c735824d0c1 Add gnutls logging and clean up various gnutls bits. Lars Magne Ingebrigtsen <larsi@gnus.org> parents: 110606 diff changeset	42 :type 'integer
6c735824d0c1 Add gnutls logging and clean up various gnutls bits. Lars Magne Ingebrigtsen <larsi@gnus.org> parents: 110606 diff changeset	43 :group 'gnutls)
6c735824d0c1 Add gnutls logging and clean up various gnutls bits. Lars Magne Ingebrigtsen <larsi@gnus.org> parents: 110606 diff changeset	44
110584 9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	45 (defun open-ssl-stream (name buffer host service)
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	46 "Open a SSL connection for a service to a host.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	47 Returns a subprocess-object to represent the connection.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	48 Input and output work as for subprocesses; `delete-process' closes it.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	49 Args are NAME BUFFER HOST SERVICE.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	50 NAME is name for process. It is modified if necessary to make it unique.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	51 BUFFER is the buffer (or `buffer-name') to associate with the process.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	52 Process output goes at end of that buffer, unless you specify
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	53 an output stream or filter function to handle the output.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	54 BUFFER may be also nil, meaning that this process is not associated
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	55 with any buffer
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	56 Third arg is name of the host to connect to, or its IP address.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	57 Fourth arg SERVICE is name of the service desired, or an integer
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	58 specifying a port number to connect to."
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	59 (let ((proc (open-network-stream name buffer host service)))
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	60 (starttls-negotiate proc nil 'gnutls-x509pki)))
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	61
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	62 ;; (open-ssl-stream "tls" "tls-buffer" "yourserver.com" "https")
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	63 (defun starttls-negotiate (proc &optional priority-string
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	64 credentials credentials-file)
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	65 "Negotiate a SSL or TLS connection.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	66 PROC is the process returned by `starttls-open-stream'.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	67 PRIORITY-STRING is as per the GnuTLS docs.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	68 CREDENTIALS is `gnutls-x509pki' or `gnutls-anon'.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	69 CREDENTIALS-FILE is a filename with meaning dependent on CREDENTIALS."
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	70 (let* ((credentials (or credentials 'gnutls-x509pki))
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	71 (credentials-file (or credentials-file
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	72 "/etc/ssl/certs/ca-certificates.crt"
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	73 ;"/etc/ssl/certs/ca.pem"
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	74 ))
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	75
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	76 (priority-string (or priority-string
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	77 (cond
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	78 ((eq credentials 'gnutls-anon)
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	79 "NORMAL:+ANON-DH:!ARCFOUR-128")
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	80 ((eq credentials 'gnutls-x509pki)
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	81 "NORMAL"))))
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	82 ret)
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	83
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	84 (gnutls-message-maybe
110611 6c735824d0c1 Add gnutls logging and clean up various gnutls bits. Lars Magne Ingebrigtsen <larsi@gnus.org> parents: 110606 diff changeset	85 (setq ret (gnutls-boot proc priority-string
6c735824d0c1 Add gnutls logging and clean up various gnutls bits. Lars Magne Ingebrigtsen <larsi@gnus.org> parents: 110606 diff changeset	86 credentials credentials-file
6c735824d0c1 Add gnutls logging and clean up various gnutls bits. Lars Magne Ingebrigtsen <larsi@gnus.org> parents: 110606 diff changeset	87 nil nil gnutls-log-level))
110584 9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	88 "boot: %s")
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	89
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	90 (when (gnutls-errorp ret)
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	91 (error "Could not boot GnuTLS for this process"));
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	92
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	93 (let ((ret 'gnutls-e-again)
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	94 (n 25000))
110606 b4f4c3e9b976 Add debugging to the gnutls library, and finish handshaking when it's done. Lars Magne Ingebrigtsen <larsi@gnus.org> parents: 110591 diff changeset	95 (while (and (not (eq ret t))
b4f4c3e9b976 Add debugging to the gnutls library, and finish handshaking when it's done. Lars Magne Ingebrigtsen <larsi@gnus.org> parents: 110591 diff changeset	96 (not (gnutls-error-fatalp ret))
110584 9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	97 (> n 0))
110591 ab4cdde63001 (starttls-negotiate): Avoid the cl.el decf function. Lars Magne Ingebrigtsen <larsi@gnus.org> parents: 110584 diff changeset	98 (setq n (1- n))
110606 b4f4c3e9b976 Add debugging to the gnutls library, and finish handshaking when it's done. Lars Magne Ingebrigtsen <larsi@gnus.org> parents: 110591 diff changeset	99 (setq ret (gnutls-handshake proc))
110584 9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	100 )
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	101 (if (gnutls-errorp ret)
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	102 (progn
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	103 (message "Ouch, error return %s (%s)"
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	104 ret (gnutls-error-string ret))
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	105 (setq proc nil))
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	106 (message "Handshake complete %s." ret)))
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	107 proc))
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	108
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	109 (defun starttls-open-stream (name buffer host service)
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	110 "Open a TLS connection for a service to a host.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	111 Returns a subprocess-object to represent the connection.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	112 Input and output work as for subprocesses; `delete-process' closes it.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	113 Args are NAME BUFFER HOST SERVICE.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	114 NAME is name for process. It is modified if necessary to make it unique.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	115 BUFFER is the buffer (or `buffer-name') to associate with the process.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	116 Process output goes at end of that buffer, unless you specify
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	117 an output stream or filter function to handle the output.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	118 BUFFER may be also nil, meaning that this process is not associated
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	119 with any buffer
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	120 Third arg is name of the host to connect to, or its IP address.
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	121 Fourth arg SERVICE is name of the service desired, or an integer
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	122 specifying a port number to connect to."
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	123 (open-network-stream name buffer host service))
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	124
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	125 (defun gnutls-message-maybe (doit format &rest params)
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	126 "When DOIT, message with the caller name followed by FORMAT on PARAMS."
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	127 ;; (apply 'debug format (or params '(nil)))
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	128 (when (gnutls-errorp doit)
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	129 (message "%s: (err=[%s] %s) %s"
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	130 "gnutls.el"
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	131 doit (gnutls-error-string doit)
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	132 (apply 'format format (or params '(nil))))))
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	133
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	134 (provide 'ssl)
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	135 (provide 'gnutls)
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	136 (provide 'starttls)
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	137
9d94d76ce611 Set up GnuTLS support. Ted Zlatanov <tzz@lifelogs.com> parents: diff changeset	138 ;;; gnutls.el ends here

Mercurial > emacs

annotate lisp/net/gnutls.el @ 110640:f7f67bd95f3d