Public bug reported:
If you use the option
auth_ssl_require_client_cert = yes
Then no matter how carefully you follow the documentation are all the
attempts provide support your clients (e.g. Thunderbird) will fail to
connect to the dovecot mail server. This issue does not with cyrus-imap
mail server.
I have investigated the code and believe I have found and fixed the
issue (the attached patch makes verification of client side SSL
certificates work for me, which is NOT true without the patch).
Basically the OpenSSL logic is wrong when it comes to setting up the
client side verification.
I have a DebDiff against Trusty that fixes the issue. (Attached).
** Affects: dovecot (Ubuntu)
Importance: Undecided
Status: New
** Patch added: "Fix client certificate verification fails for dovecot"
https://bugs.launchpad.net/bugs/1420648/+attachment/4316931/+files/dovecot-fix-client-certificate-validation-fail.diff
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1420648
Title:
Client certificate verfication fails
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/dovecot/+bug/1420648/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
