On Monday 19 of March 2018, Aki Tuomi wrote:
> https://dovecot.org/releases/2.2/dovecot-2.2.35.tar.gz
> https://dovecot.org/releases/2.2/dovecot-2.2.35.tar.gz.sig
[...]
> - Fix local name handling in v2.2.34 SNI code, bug found by cPanel.
That change broke handling of such entries
local_name *.example.com {
ssl_cert = </etc/certs/aaa.pem
ssl_key = </etc/certs/aaa.pem
}
and for connection with pop3.example.com in TLS SNI default certificate is
presented instead of domain specific one.
Reverting
commit 446c0b02a7802b676e893ccc4934fc7318d950ea
Author: Aki Tuomi <[email protected]>
Date: Tue Mar 6 15:15:01 2018 +0200
lib-master: Correctly match when local_name has multiple names
Reported by J. Nick Koston <[email protected]>
fixes the problem.
--
Arkadiusz Miśkiewicz, arekm / ( maven.pl | pld-linux.org )
