From 87259631e4f9baf4cafb55a75db16ca9cc20d40e Mon Sep 17 00:00:00 2001 From: Vincent Richard Date: Mon, 10 Dec 2012 22:59:19 +0100 Subject: SSL server identity check. --- src/net/tls/openssl/TLSSocket_OpenSSL.cpp | 14 +++++++++++++- 1 file changed, 13 insertions(+), 1 deletion(-) (limited to 'src/net/tls/openssl/TLSSocket_OpenSSL.cpp') diff --git a/src/net/tls/openssl/TLSSocket_OpenSSL.cpp b/src/net/tls/openssl/TLSSocket_OpenSSL.cpp index 25937e32..f37d9a33 100755 --- a/src/net/tls/openssl/TLSSocket_OpenSSL.cpp +++ b/src/net/tls/openssl/TLSSocket_OpenSSL.cpp @@ -160,6 +160,18 @@ TLSSocket::size_type TLSSocket_OpenSSL::getBlockSize() const } +const string TLSSocket_OpenSSL::getPeerName() const +{ + return m_wrapped->getPeerName(); +} + + +const string TLSSocket_OpenSSL::getPeerAddress() const +{ + return m_wrapped->getPeerAddress(); +} + + void TLSSocket_OpenSSL::receive(string& buffer) { const size_type size = receiveRaw(m_buffer, sizeof(m_buffer)); @@ -239,7 +251,7 @@ void TLSSocket_OpenSSL::handshake(ref toHandler) if (certs == NULL) throw exceptions::tls_exception("No peer certificate."); - m_session->getCertificateVerifier()->verify(certs); + m_session->getCertificateVerifier()->verify(certs, getPeerName()); m_connected = true; } -- cgit v1.2.3