[exim-dev] [Bug 1413] tls_verify_certificates = {forced fail…

Top Page
Delete this message
Reply to this message
Author: Git Commit
Date:  
To: exim-dev
Old-Topics: [exim-dev] [Bug 1413] New: tls_verify_certificates = {forced failure} but Exim still tries to verify the certificate.
Subject: [exim-dev] [Bug 1413] tls_verify_certificates = {forced failure} but Exim still tries to verify the certificate.
------- You are receiving this mail because: -------
You are on the CC list for the bug.

http://bugs.exim.org/show_bug.cgi?id=1413

Git Commit <git@???> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |git@???





--- Comment #9 from Git Commit <git@???> 2014-02-08 14:17:18 ---
Git commit:
http://git.exim.org/exim.git/commitdiff/b26a34e4fcb8ae07c413eea991918247f52c5940

commit b26a34e4fcb8ae07c413eea991918247f52c5940
Author:     Jeremy Harris <jgh146exb@???>
AuthorDate: Sun Jan 26 18:03:01 2014 +0000
Commit:     Jeremy Harris <jgh146exb@???>
CommitDate: Sun Jan 26 18:03:01 2014 +0000


    Fix tls_verify_certificates in gnutls use.  Bug 1413.
    Patch by W.Breyha, tested by H.Schlittermann
---
 src/src/tls-gnu.c |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)


diff --git a/src/src/tls-gnu.c b/src/src/tls-gnu.c
index e089e35..4f1169a 100644
--- a/src/src/tls-gnu.c
+++ b/src/src/tls-gnu.c
@@ -1601,7 +1601,7 @@ DEBUG(D_tls) debug_printf("Setting D-H prime minimum
acceptable bits to %d\n",
     dh_min_bits);
 gnutls_dh_set_prime_bits(state->session, dh_min_bits);


-if (verify_certs == NULL)
+if (state->exp_tls_verify_certificates == NULL)
{
DEBUG(D_tls) debug_printf("TLS: server certificate verification not
required\n");
state->verify_requirement = VERIFY_NONE;


--
Configure bugmail: http://bugs.exim.org/userprefs.cgi?tab=email