From e5d5875193f31a3428b5a547c791fc0e4230d0e4 Mon Sep 17 00:00:00 2001 From: Ashish SHUKLA Date: Sun, 12 Jul 2020 19:16:02 +0000 Subject: [PATCH] - Import a patch from upstream to fix bug related to SSL certificate verification in Profanity PR: 247871 Approved by: arved (maintainer) MFH: 2020Q3 (reliability fix blanket) --- net-im/libmesode/Makefile | 1 + net-im/libmesode/files/patch-src_tls__openssl.c | 14 ++++++++++++++ 2 files changed, 15 insertions(+) create mode 100644 net-im/libmesode/files/patch-src_tls__openssl.c diff --git a/net-im/libmesode/Makefile b/net-im/libmesode/Makefile index 2d8801433796..660665fb651f 100644 --- a/net-im/libmesode/Makefile +++ b/net-im/libmesode/Makefile @@ -2,6 +2,7 @@ PORTNAME= libmesode PORTVERSION= 0.9.3 +PORTREVISION= 1 CATEGORIES= net-im MAINTAINER= arved@FreeBSD.org diff --git a/net-im/libmesode/files/patch-src_tls__openssl.c b/net-im/libmesode/files/patch-src_tls__openssl.c new file mode 100644 index 000000000000..f07b29524d40 --- /dev/null +++ b/net-im/libmesode/files/patch-src_tls__openssl.c @@ -0,0 +1,14 @@ +Patch from: + + https://github.com/profanity-im/libmesode/commit/532ed1e9d3e71e5bea0752e03dbacd4139d750d1 + +--- src/tls_openssl.c.orig 2019-10-11 19:08:58 UTC ++++ src/tls_openssl.c +@@ -320,6 +320,7 @@ tls_t *tls_new(xmpp_conn_t *conn) + SSL_CTX_set_client_cert_cb(tls->ssl_ctx, NULL); + SSL_CTX_set_mode(tls->ssl_ctx, SSL_MODE_ENABLE_PARTIAL_WRITE); + SSL_CTX_set_verify(tls->ssl_ctx, SSL_VERIFY_PEER, verify_callback); ++ SSL_CTX_set_default_verify_paths(tls->ssl_ctx); + if (conn->tls_cert_path) { + SSL_CTX_load_verify_locations(tls->ssl_ctx, NULL, conn->tls_cert_path); + }