steramline some teardown decision code, and add webpki_roots for cert-checking

2026-04-17 21:46:35 +03:00 · 2019-11-12 12:48:01 +01:00
parent b5cbc97333
commit 5293ea70ae
2 changed files with 15 additions and 10 deletions
--- a/src/imap.rs
+++ b/src/imap.rs
@@ -312,18 +312,21 @@ impl Imap {
                return false;
            }

-            let (teardown, can_idle, has_xlist) = match &mut *self.session.lock().await {
+            let teardown = match &mut *self.session.lock().await {
                Some(ref mut session) => match session.capabilities().await {
                    Ok(caps) => {
                        if !context.sql.is_open() {
                            warn!(context, "IMAP-LOGIN as {} ok but ABORTING", lp.mail_user,);
-                            (true, false, false)
+                            true
                        } else {
                            let can_idle = caps.has_str("IDLE");
                            let has_xlist = caps.has_str("XLIST");
                            let caps_list = caps
                                .iter()
                                .fold(String::new(), |s, c| s + &format!(" {:?}", c));
+                            self.config.write().await.can_idle = can_idle;
+                            self.config.write().await.has_xlist = has_xlist;
+                            *self.connected.lock().await = true;
                            emit_event!(
                                context,
                                Event::ImapConnected(format!(
@@ -331,25 +334,22 @@ impl Imap {
                                    lp.mail_user, caps_list,
                                ))
                            );
-                            (false, can_idle, has_xlist)
+                            false
                        }
                    }
                    Err(err) => {
                        info!(context, "CAPABILITY command error: {}", err);
-                        (true, false, false)
+                        true
                    }
                },
-                None => (true, false, false),
+                None => true,
            };

            if teardown {
-                self.unsetup_handle(context).await;
-                self.free_connect_params().await;
+                self.disconnect(context);
+
                false
            } else {
-                self.config.write().await.can_idle = can_idle;
-                self.config.write().await.has_xlist = has_xlist;
-                *self.connected.lock().await = true;
                true
            }
        })
--- a/src/login_param.rs
+++ b/src/login_param.rs
@@ -6,6 +6,7 @@ use crate::error::Error;
 use async_std::sync::Arc;
 use rustls;
 use webpki;
+use webpki_roots;

 #[derive(Copy, Clone, Debug, Display, FromPrimitive)]
 #[repr(i32)]
@@ -270,6 +271,10 @@ impl rustls::ServerCertVerifier for NoCertificateVerification {

 pub fn dc_build_tls_config(certificate_checks: CertificateChecks) -> rustls::ClientConfig {
    let mut config = rustls::ClientConfig::new();
+    config
+        .root_store
+        .add_server_trust_anchors(&webpki_roots::TLS_SERVER_ROOTS);
+
    match certificate_checks {
        CertificateChecks::Strict => {}
        CertificateChecks::Automatic => {