From: Vsevolod Stakhov <vsevolod@rspamd.com>
Date: Mon, 9 Feb 2026 11:54:04 +0000 (+0000)
Subject: [Fix] Fix bind line parsing to use stripped bind_line for SSL suffix
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=12af57815e8d217cc10d490f7ced69e8f84902d8;p=thirdparty%2Frspamd.git

[Fix] Fix bind line parsing to use stripped bind_line for SSL suffix

When parsing bind lines with " ssl" suffix, the suffix was stripped from
cnf->bind_line but the original unstripped str was passed to
rspamd_parse_host_port_priority, causing parse failures.
---

diff --git a/src/libserver/cfg_utils.cxx b/src/libserver/cfg_utils.cxx
index edee9cb898..a5871a87cc 100644
--- a/src/libserver/cfg_utils.cxx
+++ b/src/libserver/cfg_utils.cxx
@@ -221,7 +221,7 @@ rspamd_parse_bind_line(struct rspamd_config *cfg,
 		}
 	}
 	else {
-		if (rspamd_parse_host_port_priority(str, &cnf->addrs,
+		if (rspamd_parse_host_port_priority(cnf->bind_line, &cnf->addrs,
 											nullptr, &cnf->name, DEFAULT_BIND_PORT, TRUE, cfg->cfg_pool) == RSPAMD_PARSE_ADDR_FAIL) {
 			msg_err_config("cannot parse bind line: %s", str);
 			ret = FALSE;