- Import a patch from upstream to fix bug related to SSL

certificate verification in Profanity PR: 247871 Approved by: arved (maintainer) MFH: 2020Q3 (reliability fix blanket)
svn path=/head/; revision=542090
2020-07-12 19:16:02 +00:00 · 2020-07-12 19:16:02 +00:00 · e5d5875193 · 2021-03-31 03:12:20 +00:00
commit e5d5875193
parent e0d745ad0a
2 changed files with 15 additions and 0 deletions
--- a/net-im/libmesode/Makefile
+++ b/net-im/libmesode/Makefile
@ -2,6 +2,7 @@

 PORTNAME=	libmesode
 PORTVERSION=	0.9.3
+PORTREVISION=	1
 CATEGORIES=	net-im

 MAINTAINER=	arved@FreeBSD.org
--- a/net-im/libmesode/files/patch-src_tls__openssl.c
+++ b/net-im/libmesode/files/patch-src_tls__openssl.c
@ -0,0 +1,14 @@
+Patch from:
+
+  https://github.com/profanity-im/libmesode/commit/532ed1e9d3e71e5bea0752e03dbacd4139d750d1
+
+--- src/tls_openssl.c.orig	2019-10-11 19:08:58 UTC
+++ src/tls_openssl.c
+@@ -320,6 +320,7 @@ tls_t *tls_new(xmpp_conn_t *conn)
+         SSL_CTX_set_client_cert_cb(tls->ssl_ctx, NULL);
+         SSL_CTX_set_mode(tls->ssl_ctx, SSL_MODE_ENABLE_PARTIAL_WRITE);
+         SSL_CTX_set_verify(tls->ssl_ctx, SSL_VERIFY_PEER, verify_callback);
+        SSL_CTX_set_default_verify_paths(tls->ssl_ctx);
+         if (conn->tls_cert_path) {
+             SSL_CTX_load_verify_locations(tls->ssl_ctx, NULL, conn->tls_cert_path);
+         }