\input texinfo @c -*-texinfo-*-
+@set VERSION 0.3
+
@setfilename ../../info/emacs-gnutls
@settitle Emacs GnuTLS Integration @value{VERSION}
-
-@set VERSION 0.3
+@documentencoding UTF-8
@copying
This file describes the Emacs GnuTLS integration.
-Copyright @copyright{} 2012 Free Software Foundation, Inc.
+Copyright @copyright{} 2012--2014 Free Software Foundation, Inc.
@quotation
Permission is granted to copy, distribute and/or modify this document
any later version published by the Free Software Foundation; with no
Invariant Sections, with the Front-Cover texts being ``A GNU Manual,''
and with the Back-Cover Texts as in (a) below. A copy of the license
-is included in the section entitled ``GNU Free Documentation License''
-in the Emacs manual.
+is included in the section entitled ``GNU Free Documentation License''.
(a) The FSF's Back-Cover Text is: ``You have the freedom to copy and
modify this GNU manual.''
-
-This document is part of a collection distributed under the GNU Free
-Documentation License. If you want to distribute this document
-separately from the collection, you can do so by adding a copy of the
-license to the document, as described in section 6 of the license.
@end quotation
@end copying
@dircategory Emacs network features
@direntry
-* GnuTLS: (emacs-gnutls). The Emacs GnuTLS integration.
+* Emacs GnuTLS: (emacs-gnutls). The Emacs GnuTLS integration.
@end direntry
@titlepage
* Overview:: Overview of the GnuTLS integration.
* Help For Users::
* Help For Developers::
+* GNU Free Documentation License:: The license for this documentation.
* Function Index::
* Variable Index::
@end menu
of that platform.
@end defvar
+@defvar gnutls-verify-error
+The @code{gnutls-verify-error} variable allows you to verify SSL/TLS
+server certificates for all connections or by host name. It defaults
+to @code{nil} for now but will likely be changed to @code{t} later,
+meaning that all certificates will be verified.
+
+There are two checks available currently, that the certificate has
+been issued by a trusted authority as defined by
+@code{gnutls-trustfiles}, and that the hostname matches the
+certificate. @code{t} enables both checks, but you can enable them
+individually as well with @code{:trustfiles} and @code{:hostname}
+instead.
+
+Because of the low-level interactions with the GnuTLS library, there
+is no way currently to ask if a certificate can be accepted. You have
+to look in the @code{*Messages*} buffer.
+@end defvar
+
@defvar gnutls-min-prime-bits
The @code{gnutls-min-prime-bits} variable is a pretty exotic
customization for cases where you want to refuse handshakes with keys
but do not rely on this function's interface if possible.
@end defun
+@node GNU Free Documentation License
+@appendix GNU Free Documentation License
+@include doclicense.texi
+
@node Function Index
-@chapter Function Index
+@unnumbered Function Index
@printindex fn
@node Variable Index
-@chapter Variable Index
+@unnumbered Variable Index
@printindex vr
@bye