[dovecot/core] 657f59: lib-ssl-iostream: Split host to connected_host and...

[GitHub]

  Branch: refs/heads/master-2.2
  Home:   https://github.com/dovecot/core
  Commit: 657f59b5dfec4ac251661e81233a6ee4ed666973
      https://github.com/dovecot/core/commit/657f59b5dfec4ac251661e81233a6ee4ed666973
  Author: Timo Sirainen <timo.sirainen at dovecot.fi>
  Date:   2018-01-16 (Tue, 16 Jan 2018)

  Changed paths:
    M src/lib-ssl-iostream/iostream-openssl-context.c
    M src/lib-ssl-iostream/iostream-openssl.c
    M src/lib-ssl-iostream/iostream-openssl.h

  Log Message:
  -----------
  lib-ssl-iostream: Split host to connected_host and sni_host

Using the same variable for both was causing confusion.


  Commit: 054811737dd218a45b3400132d8b5487e481692f
      https://github.com/dovecot/core/commit/054811737dd218a45b3400132d8b5487e481692f
  Author: Timo Sirainen <timo.sirainen at dovecot.fi>
  Date:   2018-01-16 (Tue, 16 Jan 2018)

  Changed paths:
    M src/lib-ssl-iostream/iostream-openssl.c

  Log Message:
  -----------
  lib-ssl-iostream: Fix checking cert validity when handshake callback isn't used


  Commit: 48c2c41ded661289393e53c158daa642c64d890d
      https://github.com/dovecot/core/commit/48c2c41ded661289393e53c158daa642c64d890d
  Author: Timo Sirainen <timo.sirainen at dovecot.fi>
  Date:   2018-01-16 (Tue, 16 Jan 2018)

  Changed paths:
    M src/lib-ssl-iostream/iostream-openssl.c
    M src/lib-ssl-iostream/iostream-ssl.h

  Log Message:
  -----------
  lib-ssl-iostream: Verify SSL server's hostname against cert if it's non-NULL

The hostname verification was skipped when handshake-callback wasn't used.
All of the existing code used the callback though, so this doesn't fix
any bugs.


Compare: https://github.com/dovecot/core/compare/f2c9ac1a2a51...48c2c41ded66