From: Stephan Bosch <stephan.bosch@dovecot.fi>
Date: Thu, 21 Dec 2017 22:09:13 +0000 (+0100)
Subject: lib-smtp: server: STARTTLS command: Call smtp_server_connection_set_ssl_streams(... 
X-Git-Tag: 2.3.0~15
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=7adffef212c70393f5ed5d8275b3c2552b965a97;p=thirdparty%2Fdovecot%2Fcore.git

lib-smtp: server: STARTTLS command: Call smtp_server_connection_set_ssl_streams() after calling the conn_start_tls() connection callback.

This is called instead smtp_server_connection_set_streams(), so that the connection is now marked as SSL-secured.
This fixes a submission-login bug that prevented client login when ssl=required.
---

diff --git a/src/lib-smtp/smtp-server-cmd-starttls.c b/src/lib-smtp/smtp-server-cmd-starttls.c
index fd5d983049..0aae8b8269 100644
--- a/src/lib-smtp/smtp-server-cmd-starttls.c
+++ b/src/lib-smtp/smtp-server-cmd-starttls.c
@@ -30,7 +30,7 @@ static int cmd_starttls_start(struct smtp_server_connection *conn)
 		if (!smtp_server_connection_unref(&tmp_conn) || ret < 0)
 			return -1;
 
-		smtp_server_connection_set_streams(conn, input, output);
+		smtp_server_connection_set_ssl_streams(conn, input, output);
 	} else if (smtp_server_connection_ssl_init(conn) < 0) {
 		smtp_server_connection_close(&conn,
 			"SSL Initialization failed");