Fix DANE + SNI handling (Bug 2265)

author Heiko Schlittermann (HS12-RIPE) <hs@schlittermann.de>

Mon, 3 May 2021 13:53:28 +0000 (15:53 +0200)

committer Heiko Schlittermann (HS12-RIPE) <hs@schlittermann.de>

Mon, 3 May 2021 13:54:07 +0000 (15:54 +0200)
author Heiko Schlittermann (HS12-RIPE) <hs@schlittermann.de>
Mon, 3 May 2021 13:53:28 +0000 (15:53 +0200)
committer Heiko Schlittermann (HS12-RIPE) <hs@schlittermann.de>
Mon, 3 May 2021 13:54:07 +0000 (15:54 +0200)
diff --git a/src/src/transports/smtp.c b/src/src/transports/smtp.c

index f26e2337afafa538a74627ad1d6201d6a89053c9..9ee6a578ae3c36d831e20b5749f639b4170820d7 100644 (file)
--- a/src/src/transports/smtp.c
+++ b/src/src/transports/smtp.c
@@ -2015,7 +2015,7 @@ if (continue_hostname && continue_proxy_cipher)
        {
        case OK:         sx->conn_args.dane = TRUE;
                         ob->tls_tempfail_tryclear = FALSE;      /* force TLS */
-                       ob->tls_sni = sx->first_addr->domain;   /* force SNI */
+                        ob->tls_sni = sx->conn_args.host->name; /* force SNI */
                         break;
        case FAIL_FORCED:        break;
        default:         set_errno_nohost(sx->addrlist, ERRNO_DNSDEFER,
@@ -2097,7 +2097,7 @@ if (!continue_hostname)
           {
           case OK:              sx->conn_args.dane = TRUE;
                                 ob->tls_tempfail_tryclear = FALSE;      /* force TLS */
-                               ob->tls_sni = sx->first_addr->domain;   /* force SNI */
+                               ob->tls_sni = sx->conn_args.host->name; /* force SNI */
                                 break;
           case FAIL_FORCED:     break;
           default:              set_errno_nohost(sx->addrlist, ERRNO_DNSDEFER,
author	Heiko Schlittermann (HS12-RIPE) <hs@schlittermann.de>
	Mon, 3 May 2021 13:53:28 +0000 (15:53 +0200)
committer	Heiko Schlittermann (HS12-RIPE) <hs@schlittermann.de>
	Mon, 3 May 2021 13:54:07 +0000 (15:54 +0200)