Add a variable to customize the gnutls priority

author: Lars Magne Ingebrigtsen <larsi@gnus.org> 2011-07-15 19:21:57 +0200
committer: Lars Magne Ingebrigtsen <larsi@gnus.org> 2011-07-15 19:21:57 +0200
commit: 7b41decb8ee56d61ace1637138a38b89bcf09eb4 (patch)
tree: 8c85fc9da44fe4e6c4334aab14091fef0f77f128 /lisp/net/gnutls.el
parent: c65bca6520d8f3097b1c597381150fd2ffd0f886 (diff)
download: emacs-7b41decb8ee56d61ace1637138a38b89bcf09eb4.tar.gz
1 files changed, 8 insertions, 1 deletions
diff --git a/lisp/net/gnutls.el b/lisp/net/gnutls.el
index 67d7b2d20d3..f0bc8dec09d 100644
--- a/lisp/net/gnutls.el
+++ b/lisp/net/gnutls.el
@@ -47,6 +47,13 @@
   :type 'integer
   :group 'gnutls)
 
+(defcustom gnutls-algorithm-priority nil
+  "If non-nil, this should be a TLS priority string.
+For instance, if you want to skip the \"dhe-rsa\" algorithm,
+set this variable to \"normal:-dhe-rsa\"."
+  :type '(choice (const nil)
+		 string))
+
 (defun open-gnutls-stream (name buffer host service)
   "Open a SSL/TLS connection for a service to a host.
 Returns a subprocess-object to represent the connection.
@@ -145,7 +152,7 @@ defaults to GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT."
                                ((eq type 'gnutls-anon)
                                 "NORMAL:+ANON-DH:!ARCFOUR-128")
                                ((eq type 'gnutls-x509pki)
-                                "NORMAL"))))
+                                (or gnutls-algorithm-priority "NORMAL")))))
          (params `(:priority ,priority-string
                              :hostname ,hostname
                              :loglevel ,gnutls-log-level
author	Lars Magne Ingebrigtsen <larsi@gnus.org>	2011-07-15 19:21:57 +0200
committer	Lars Magne Ingebrigtsen <larsi@gnus.org>	2011-07-15 19:21:57 +0200
commit	7b41decb8ee56d61ace1637138a38b89bcf09eb4 (patch)
tree	8c85fc9da44fe4e6c4334aab14091fef0f77f128 /lisp/net/gnutls.el
parent	c65bca6520d8f3097b1c597381150fd2ffd0f886 (diff)
download	emacs-7b41decb8ee56d61ace1637138a38b89bcf09eb4.tar.gz