Hi there,

excuse me, if I' m asking at the wrong place.

Apparently there is a bug in current Fetchmail (6.3.26-lp152.5.8) installed with openSUSE-Leap-15.2-1, which causes TLS to fail especially with Gmail servers:

fetchmail: Server CommonName mismatch: invalid2.invalid != pop.gmail.com
fetchmail: Server certificate verification error: self signed certificate
fetchmail: Missing trust anchor certificate: /OU=No SNI provided; please fix your client./CN=invalid2.invalid

As reported elsewhere:
https://bugs.archlinux.org/task/60038
https://bugs.gentoo.org/697030

There is patch from RedHat which could be applied on fetchmail-6.3.26:
https://bugzilla.redhat.com/show_bug.cgi?id=1611815

Other (better?) "fix" would be to bump fetchmail to 6.4.x where this issue is resolved?
I could provide a complete bug report if needed.


Best regards

Zsolt

-- 
Heinlein Support GmbH
Schwedter Str. 8/9b, 10119 Berlin
  
https://www.heinlein-support.de
 
Tel: 030 / 40 50 51 - 0
Fax: 030 / 40 50 51 - 19
  
Amtsgericht Berlin-Charlottenburg - HRB 93818 B
Geschäftsführer: Peer Heinlein - Sitz: Berlin