#3916: Mutt 1.8: TOFU approach bails out on first fail or reject, not offering
higher links of the cert' chain
--------------------------+----------------------
Reporter: kratem32 | Owner: mutt-dev
Type: enhancement | Status: closed
Priority: minor | Milestone: 1.8
Component: crypto | Version:
Resolution: fixed | Keywords: tofu
--------------------------+----------------------
Comment (by kevin8t8):
Just experimenting, it appears the exact same cert pointer is passed
again. This makes the comparison easier, and avoids issues of whether
the saved pointer is still valid on the second callback. (I believe it
always would be, but this way we can skip a call to
compare_certificates()).
So I propose the following simple patch. It checks skip_mode is on,
preverify_ok is set, and the pos and cert are the same as the last
invocation. For me, it detects the second time.
--
Ticket URL: <https://dev.mutt.org/trac/ticket/3916#comment:70>
Mutt <http://www.mutt.org/>
The Mutt mail user agent
