From 11b99bcba4650ea597c0458af6b349312fb95216 Mon Sep 17 00:00:00 2001 From: Eduardo Chappa Date: Sat, 17 Apr 2021 23:25:13 -0600 Subject: * This code was not committed earlier, and is part of support of the ssl-ciphers configuration option. --- imap/src/osdep/unix/ssl_unix.c | 3 +++ 1 file changed, 3 insertions(+) diff --git a/imap/src/osdep/unix/ssl_unix.c b/imap/src/osdep/unix/ssl_unix.c index 5d3ffcd..841077c 100644 --- a/imap/src/osdep/unix/ssl_unix.c +++ b/imap/src/osdep/unix/ssl_unix.c @@ -416,6 +416,9 @@ static char *ssl_start_work (SSLSTREAM *stream,char *host,unsigned long flags) else SSL_CTX_set_verify (stream->context,SSL_VERIFY_PEER,ssl_open_verify); /* set cipher list */ ciphers = (char *) mail_parameters (NIL,GET_SSLCIPHERS,NIL); + if(ciphers != NIL + && !SSL_CTX_set_cipher_list (stream->context,ciphers)) + return "No listed ciphers recognized"; /* if a non-standard path desired */ CAfile = (char *) mail_parameters (NIL,GET_SSLCAFILE,NIL); CApath = (char *) mail_parameters (NIL,GET_SSLCAPATH,NIL); -- cgit v1.2.3