char/conduit
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

fix: verify tls cert for non-conformant servers

Browse source
This commit is contained in:
Gabriel Souza Franco 2021-04-16 00:36:35 -03:00
parent b4c001de2f
commit e73de2317e
1 changed files with 5 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
src/database/globals.rs
View file

@ -52,7 +52,11 @@ impl ServerCertVerifier for MatrixServerVerifier {
}, },
None => dns_name None => dns_name
}; };
self.inner.verify_server_cert(roots, presented_certs, override_name, ocsp_response)
self.inner.verify_server_cert(roots, presented_certs, override_name, ocsp_response).or_else(|_| {
log::warn!("Server is non-compliant, retrying with original name!");
self.inner.verify_server_cert(roots, presented_certs, dns_name, ocsp_response)
})
} }
} }