GNU bug report logs - #24575
25.1; TLS cert lossage

Previous Next

Package: emacs;

Reported by: "Devon Sean McCullough" <Emacs-Hacker2016 <at> jovi.net>

Date: Fri, 30 Sep 2016 21:51:02 UTC

Severity: normal

Tags: notabug

Found in version 25.1

Done: Lars Ingebrigtsen <larsi <at> gnus.org>

Bug is archived. No further changes may be made.

Full log

View this message in rfc822 format

From: Devon Sean McCullough <devon2016 <at> jovi.net>
To: Lars Ingebrigtsen <larsi <at> gnus.org>
Cc: 24575 <at> debbugs.gnu.org, Eli Zaretskii <eliz <at> gnu.org>, npostavs <at> users.sourceforge.net
Subject: bug#24575: libgnutls MacOSX bug?
Date: Wed, 25 Jan 2017 16:38:43 -0500

> On Jan 24, 2017, at 6:35 PM, Lars Ingebrigtsen <larsi <at> gnus.org> wrote:
> So this doesn't seem to be an Emacs bug?  I'm closing this report, but
> feel free to reopen if it turns out to be an Emacs bug anyway.

Either an Emacs bug or a cert bug at https://gnu.org.

Open -a /Applications/Emacs.app -n --args -Q --eval '(progn (setq debug-on-error t) (trace-function (function nsm-query-user)) (url-retrieve-synchronously "https://gnu.org"))'

======================================================================
1 -> (nsm-query-user "The TLS connection to %s:%s is insecure for the following reason%s:

%s" ("gnu.org" 443 "s" "the certificate was signed by an unknown and therefore untrusted authority
certificate could not be verified") #("Certificate information
Issued by:          Let's Encrypt Authority X3
Issued to:          CN=gnu.org
Hostname:           gnu.org
Public key:         RSA, signature: RSA-SHA256
Protocol:           TLS1.2, key: ECDHE-RSA, cipher: AES-128-GCM, mac: AEAD
Security level:     Medium
Valid:              From 2016-12-16 to 2017-03-16

" 272 278 (face bold)))
1 <- nsm-query-user: session
======================================================================
1 -> (nsm-query-user "The TLS connection to %s:%s is insecure for the following reason%s:

%s" ("www.gnu.org" 443 "s" "the certificate was signed by an unknown and therefore untrusted authority
certificate could not be verified") #("Certificate information
Issued by:          Let's Encrypt Authority X3
Issued to:          CN=gnu.org
Hostname:           gnu.org
Public key:         RSA, signature: RSA-SHA256
Protocol:           TLS1.2, key: ECDHE-RSA, cipher: AES-128-GCM, mac: AEAD
Security level:     Medium
Valid:              From 2016-12-16 to 2017-03-16

" 272 278 (face bold)))
1 <- nsm-query-user: session
This bug report was last modified 8 years and 197 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.