On Tue, Apr 25, 2023 at 01:12:18PM +0100, ckeader via Mutt-dev wrote:
And this is the scenario where the certificate exists in the file[2023-04-25 12:15:35] Looking up disroot.org... [2023-04-25 12:15:35] Connecting to disroot.org... [2023-04-25 12:15:35] ssl_load_certificates: loading trusted certificates [2023-04-25 12:15:35] SSL failed: error:14FFF086:SSL routines:(UNKNOWN)SSL_internal:certificate verify failed
Thank you for the heads-up about the problem.Strange, it is successfully loading the certificates file, but then after calling SSL_connect() it doesn't even get to the point of calling mutt's ssl_verify_callback() function. It just blows up and returns an internal error.
[2023-04-25 12:15:36] Connected to disroot.org:993 on fd=-1 [2023-04-25 12:15:37] mutt_index_menu[831]: Got op 102 [2023-04-25 12:15:37] mutt_buffer_pool_free: 15 of 15 returned to pool It seems libressl has had problems with certificate chains before.
Just out of curiosity, what happens if you set $ssl_verify_partial_chains?
-- Kevin J. McCarthy GPG Fingerprint: 8975 A9B3 3AA3 7910 385C 5308 ADEF 7684 8031 6BDA
signature.asc
Description: PGP signature
