Avatar for Username

搜索 | 用户支持

防范以用户支持为名的诈骗。我们绝对不会要求您拨打电话或发送短信,及提供任何个人信息。请使用“举报滥用”选项报告涉及违规的行为。

详细了解

Certificate validation on Imaps

  • 1 个回答
  • 0 人有此问题
  • 4 次查看
  • 最后回复者为 tron2

tron2
tron2
more options

Hi, I'm trying to find out where (in the code) the app checks the server certificate. I consider myself a programmer (thanks Edsger!) but after some browsing I did not find the way in the repo.

The issue is that in my experience, every time the server cert is changed (Imaps, LetsEncrypt) k9 asks me to validate the new cert. And I have 2 things I want to check: -Another user says he is also using K9 and he's never presented with a cert issue on change -I want to see the possibility of directly accepting the new cert iif stored cert is about to expire, new cert comes from the same authority (root CA) and PK is the same.

Any help in this regard is appreciated! -Carlos

Hi, I'm trying to find out where (in the code) the app checks the server certificate. I consider myself a programmer (thanks Edsger!) but after some browsing I did not find the way in the repo. The issue is that in my experience, every time the server cert is changed (Imaps, LetsEncrypt) k9 asks me to validate the new cert. And I have 2 things I want to check: -Another user says he is also using K9 and he's never presented with a cert issue on change -I want to see the possibility of directly accepting the new cert iif stored cert is about to expire, new cert comes from the same authority (root CA) and PK is the same. Any help in this regard is appreciated! -Carlos

所有回复 (1)

tron2
tron2 提问者
more options

I guess I found the place, and the answer to my dilemma. The code seems to be at mail/common/src/main/java/com/fsck/k9/mail/ssl/TrustManagerFactory.java and the exception is raised only for not default trusted certs. My phone is old and LetsEncrypt root CA seems not there.

有帮助吗?

我要提问

您需要登录才能回复。如果您还没账号,可以提出新问题