#3914: mutt stores duplicate certificates into $certificate-file on hostname
mismatch and interactive_check_cert = "allow always"
---------------------+----------------------
Reporter: m-a | Owner: mutt-dev
Type: defect | Status: closed
Priority: minor | Milestone: 1.8
Component: crypto | Version: 1.7.2
Resolution: fixed | Keywords:
---------------------+----------------------
Changes (by Kevin McCarthy <kevin@…>):
* status: reopened => closed
* resolution: => fixed
Comment:
In [changeset:"be5d02a8e7822b82d9bb8c7fa5d5b9bc3baaf8b7"
6964:be5d02a8e782]:
{{{
#!CommitTicketReference repository=""
revision="be5d02a8e7822b82d9bb8c7fa5d5b9bc3baaf8b7"
OpenSSL: Don't offer (a)ccept always choice for hostname mismatches.
(closes #3914)
On a hostname mismatch, saving the certificate is pointless because
mutt will ask the user no matter if the certificate is saved or not.
The only invocation allowing "accept always" is guarded by a call to
check_certificate_digest(), which means the check_certificate_file()
check is redundant. Therefore remove that check and add a comment
noting why.
Thanks to Matthias Andree for the original version of this patch.
}}}
--
Ticket URL: <https://dev.mutt.org/trac/ticket/3914#comment:11>
Mutt <http://www.mutt.org/>
The Mutt mail user agent
