Important Notice: We're experiencing email notification issues. If you've posted a question in the community forums recently, please check your profile manually for responses while we're working to fix this.

Avatar for Username

Поиск в Поддержке

Избегайте мошенников, выдающих себя за службу поддержки. Мы никогда не попросим вас позвонить, отправить текстовое сообщение или поделиться личной информацией. Сообщайте о подозрительной активности, используя функцию «Пожаловаться».

Подробнее

Certificate validation on Imaps

  • 1 ответ
  • 0 имеют эту проблему
  • 4 просмотра
  • Последний ответ от tron2

tron2
tron2
more options

Hi, I'm trying to find out where (in the code) the app checks the server certificate. I consider myself a programmer (thanks Edsger!) but after some browsing I did not find the way in the repo.

The issue is that in my experience, every time the server cert is changed (Imaps, LetsEncrypt) k9 asks me to validate the new cert. And I have 2 things I want to check: -Another user says he is also using K9 and he's never presented with a cert issue on change -I want to see the possibility of directly accepting the new cert iif stored cert is about to expire, new cert comes from the same authority (root CA) and PK is the same.

Any help in this regard is appreciated! -Carlos

Hi, I'm trying to find out where (in the code) the app checks the server certificate. I consider myself a programmer (thanks Edsger!) but after some browsing I did not find the way in the repo. The issue is that in my experience, every time the server cert is changed (Imaps, LetsEncrypt) k9 asks me to validate the new cert. And I have 2 things I want to check: -Another user says he is also using K9 and he's never presented with a cert issue on change -I want to see the possibility of directly accepting the new cert iif stored cert is about to expire, new cert comes from the same authority (root CA) and PK is the same. Any help in this regard is appreciated! -Carlos

Все ответы (1)

tron2
tron2 Задавший вопрос
more options

I guess I found the place, and the answer to my dilemma. The code seems to be at mail/common/src/main/java/com/fsck/k9/mail/ssl/TrustManagerFactory.java and the exception is raised only for not default trusted certs. My phone is old and LetsEncrypt root CA seems not there.

Полезно?

Задать вопрос

Для ответа на сообщения вы должны войти в свою учётную запись. Пожалуйста, задайте новый вопрос, если у вас ещё нет учётной записи.