Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 83068 - sendmail does not read chained certificate files
Summary: sendmail does not read chained certificate files
Status: RESOLVED UPSTREAM
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: Current packages (show other bugs)
Hardware: All All
: High normal (vote)
Assignee: Net-Mail Packages
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2005-02-23 07:04 UTC by Angelos Karageorgiou
Modified: 2005-05-17 09:54 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Angelos Karageorgiou 2005-02-23 07:04:46 UTC 
Sendmail all versions cannot load chained certificate files as those created by intermediate certificate authorities such as digicert
A change of two lines of code fixes the problem.Also a ca-bundle is missing and it is essential for verifying peers.

Reproducible: Always
Steps to Reproduce:
1.
2.
3.

Actual Results:  
change 
SSL_CTX_use_certificate_file(*ctx, certfile,SSL_FILETYPE_PEM) <= 0)

Expected Results:  
to:

SSL_CTX_use_certificate_chain_file(*ctx, certfile) <= 0)

and it goes away
Comment 1 Andrea Barisani (RETIRED) gentoo-dev 2005-05-17 09:54:58 UTC 
Well you should really report this upstream, I'm not comfortable in making
the change in our ebuild and if it's a general problem it's supposed to be
solved upstream. Have you tried contacting sendmail@sendmail.org before filing
the bug to us?