socket.io-client-cpp icon indicating copy to clipboard operation
socket.io-client-cpp copied to clipboard

Published 20 hours ago verified publisher icon socketio

Server's certificate is not verified on TLS mode

Open jianjunz opened this issue 10 years ago • 6 comments

The Socket.IO cpp client doesn't verify server's certificate while TLS is enabled. So the server's certificate may be issued by an untrusted authority or server's domain may not match certificate's CN/SAN.

jianjunz avatar Jul 08 '15 05:07 jianjunz

Hi, I'll seek a patch for that. Maybe a callback to ask whether trust the certificate.

melode11 avatar Jul 09 '15 14:07 melode11

Seems that you're busy these days :)

I found ssl::context::set_verify_mode is what we need. I'll submit a patch to fix it.

jianjunz avatar Jul 15 '15 06:07 jianjunz

#41 has been submitted for this issue.

jianjunz avatar Jul 15 '15 06:07 jianjunz

Hi, is this issue still there?

jmigual avatar Feb 25 '22 13:02 jmigual

I think the issue is still there. The comment above suggested to have a callback for certificate verification.

jianjunz avatar Feb 28 '22 06:02 jianjunz

Could someone provide a callback example for certificate verification? Thanks

wuendi avatar Dec 07 '23 02:12 wuendi