[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Better HTTPS support in (web client)
From: |
Ludovic Courtès |
Subject: |
Better HTTPS support in (web client) |
Date: |
Fri, 10 Jan 2020 15:49:49 +0100 |
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/26.3 (gnu/linux) |
Hello Guilers!
I’ve pushed a ‘wip-https-client’ branch that contains improvements for
HTTPS support in (web client) that I’d like to be part of Guile 3:
https://git.savannah.gnu.org/cgit/guile.git/log/?h=wip-https-client
In a nutshell:
• $https_proxy support and a ‘current-https-proxy’ parameter;
• better TLS alert handling;
• verification of server certificates (!).
You can test it with a program as simple as:
(use-modules (web client))
(call-with-values
(lambda ()
(http-get "https://guix.gnu.org"))
pk)
You can test how expired certificates are handled with:
guix environment --ad-hoc libfaketime -- \
faketime 2022-01-01 ./meta/guile /tmp/https.scm
To check whether $https_proxy is honored, try:
https_proxy=http://localhost:8118 strace -e connect \
./meta/guile /tmp/https.scm
(I have Privoxy running as a proxy on that port.)
Feedback welcome!
Ludo’.
- Better HTTPS support in (web client),
Ludovic Courtès <=