Halaman utama Jelajahi Bantuan
Masuk
noah
/
isync
1
0
Fork 0
Berkas Masalah 0 Permintaan Tarik 0 Wiki
Jelajahi Sumber

require Host if SSL is used despite Tunnel

Oswald Buddenhagen 11 tahun lalu
induk
7ce57b9c00
melakukan
7822bd8a91
2 mengubah file dengan 7 tambahan dan 4 penghapusan
Tampilan Split Tampilkan Statistik Diff
  1. 3 2
      src/mbsync.1
  2. 4 2
      src/socket.c

+ 3 - 2
src/mbsync.1
Tampilan Berkas 

@@ -238,8 +238,9 @@ Define the IMAP4 Account \fIname\fR, opening a section for its parameters.
 
 \fBHost\fR \fIhost\fR
 
 Specify the DNS name or IP address of the IMAP server.
 
 .br
 
-If \fBTunnel\fR is used, this setting is used only for SSL host certificate
 
-verification, if provided.
 
+If \fBTunnel\fR is used, this setting is needed only if \fBSSLType\fR is
 
+not \fINone\fR and \fBCertificateFile\fR is not used,
 
+in which case the host name is used for certificate subject verification.
 
 ..
 
 .TP
 
 \fBPort\fR \fIport\fR

+ 4 - 2
src/socket.c
Tampilan Berkas 

@@ -177,8 +177,10 @@ verify_cert_host( const server_conf_t *conf, conn_t *sock )
 
 		return -1;
 
 	}
 
 
-	if (!conf->host)
 
-		return 0; /* SSL on top of a tunnel, no host specified. */
 
+	if (!conf->host) {
 
+		error( "SSL error connecting %s: Neither host nor matching certificate specified\n", sock->name );
 
+		return -1;
 
+	}
 
 
 	return verify_hostname( cert, conf->host );
 
 }