From ca400a499cf1f6a5b28cd3f62f69b1a3b5487c67 Mon Sep 17 00:00:00 2001
From: Timo Sirainen <timo.sirainen@dovecot.fi>
Date: Thu, 8 Feb 2018 13:27:25 +0200
Subject: [PATCH] lib-http: client: Fix using non-context SSL settings

The SSL settings were used for the SSL context, but they weren't used for
individual SSL streams. This broke stream-only settings, like
allow_invalid_cert=TRUE.
---
 src/lib-http/http-client-connection.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/lib-http/http-client-connection.c b/src/lib-http/http-client-connection.c
index d28a11dd17..9d12a0ef1b 100644
--- a/src/lib-http/http-client-connection.c
+++ b/src/lib-http/http-client-connection.c
@@ -1383,7 +1383,7 @@ http_client_connection_ssl_init(struct http_client_connection *conn,
 
 	i_assert(ssl_ctx != NULL);
 
-	i_zero(&ssl_set);
+	ssl_set = *set->ssl;
 	if (!set->ssl->allow_invalid_cert) {
 		ssl_set.verbose_invalid_cert = TRUE;
 	}