Date: Sun, 29 Sep 2024 15:57:11 +0000 From: bugzilla-noreply@freebsd.org To: ports-bugs@FreeBSD.org Subject: [Bug 281761] net-im/libpurple: add patch to handle ssl certificate chain on libpurple / pidgin Message-ID: <bug-281761-7788@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D281761 Bug ID: 281761 Summary: net-im/libpurple: add patch to handle ssl certificate chain on libpurple / pidgin Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Some People Priority: --- Component: Individual Port(s) Assignee: marcus@FreeBSD.org Reporter: rodrigo@FreeBSD.org Flags: maintainer-feedback?(marcus@FreeBSD.org) Assignee: marcus@FreeBSD.org Created attachment 253890 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D253890&action= =3Dedit use the SSL_PeerCertificateChain function, instead of SSL_PeerCertificate Hi, The ssl_nss_get_peer_certificates function in libpurple 2.x.y assumes that = all intermediate certificates from the peer's presented chain can be found in t= he NSS certificate DB. This is not the case in NSS 3.103. This patch is required in order to add a new port for *MS teams* support in pidgin. This patch[1] replaces a call to ssl_nss_get_peer_certificates by SSL_PeerCertificateChain who retrieves the certificates presented by the SSL peer.SSL_PeerCertificateChain has been in NSS since version 3.15.4 released= in 2014. Additional references: https://bugzilla.mozilla.org/show_bug.cgi?id=3D19130= 47 [1] https://issues.imfreedom.org/issue/PIDGIN-17886/Certificate-verification-er= rors-with-NSS-3.103 Cheers, -- rodrigo --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-281761-7788>