From 93e1f7c66f77827bcad7a5636c3edcff685ca19e Mon Sep 17 00:00:00 2001
From: Lars Ingebrigtsen <larsi@gnus.org>
Date: Mon, 15 Jul 2019 20:31:42 +0200
Subject: [PATCH] Fix saving certificates in the NSM on high security levels

* lisp/net/nsm.el (nsm-check-certificate): `nsm-fingerprint-ok-p'
will save the fingerprint in the correct temporary/permanent
storage, so saving it once more (in the permanent storage) if the
security level is high or greater is a mistake (bug#27823).
---
 lisp/net/nsm.el | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/lisp/net/nsm.el b/lisp/net/nsm.el
index 6a312e2ebb4..dbfa2101f0c 100644
--- a/lisp/net/nsm.el
+++ b/lisp/net/nsm.el
@@ -149,11 +149,6 @@ unencrypted."
 	     (not (nsm-new-fingerprint-ok-p host port status)))
 	(delete-process process)
 	nil)
-       ((>= (nsm-level network-security-level) (nsm-level 'high))
-	;; Save the host fingerprint so that we can check it the
-	;; next time we connect.
-	(nsm-save-host host port status 'fingerprint 'always)
-	process)
        (t
 	process)))
 
-- 
2.39.2