RGBCube/serenity
1
Fork 0
mirror of https://github.com/RGBCube/serenity synced 2025-07-26 13:07:47 +00:00
Code Issues Activity Actions

LibTLS: Actually verify the certificats

Browse source 
This was likely commented out at some point to debug something.
This commit is contained in:
Ali Mohammad Pur 2021-05-14 09:29:27 +04:30 committed by Linus Groh
parent df515e1d85
commit 5a7db74c52
1 changed files with 1 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

3
Userland/Libraries/LibTLS/ClientHandshake.cpp
View file

@ -259,8 +259,7 @@ void TLSv12::build_random(PacketBuilder& builder)
m_context.premaster_key = ByteBuffer::copy(random_bytes, bytes); m_context.premaster_key = ByteBuffer::copy(random_bytes, bytes);
// const auto& certificate_option = verify_chain_and_get_matching_certificate(m_context.extensions.SNI); // if the SNI is empty, we'll make a special case and match *a* leaf certificate. const auto& certificate_option = verify_chain_and_get_matching_certificate(m_context.extensions.SNI); // if the SNI is empty, we'll make a special case and match *a* leaf certificate.
Optional<size_t> certificate_option = 0;
if (!certificate_option.has_value()) { if (!certificate_option.has_value()) {
dbgln("certificate verification failed :("); dbgln("certificate verification failed :(");
alert(AlertLevel::Critical, AlertDescription::BadCertificate); alert(AlertLevel::Critical, AlertDescription::BadCertificate);