Skip to content

4435 secure sock thread#4512

Merged
aleks-f merged 6 commits intodevelfrom
4435-secure-sock-thread
Apr 2, 2024
Merged

4435 secure sock thread#4512
aleks-f merged 6 commits intodevelfrom
4435-secure-sock-thread

Conversation

@aleks-f
Copy link
Copy Markdown
Member

@aleks-f aleks-f commented Mar 26, 2024

No description provided.

github-advanced-security[bot]
github-advanced-security AI found potential problems Mar 26, 2024
View reviewed changes
Comment thread NetSSL_OpenSSL/src/SecureSocketImpl.cpp Fixed
github-advanced-security[bot]
github-advanced-security AI found potential problems Mar 27, 2024
View reviewed changes
Comment thread NetSSL_OpenSSL/src/SecureSocketImpl.cpp
else
return nullptr;
{
pCert = ::SSL_get_peer_certificate(_pSSL);

Check failure

Code scanning / CodeQL

Certificate not checked

This call to SSL_get_peer_certificate is not followed by a call to SSL_get_verify_result.
@aleks-f aleks-f requested review from matejk and obiltschnig March 27, 2024 21:43
matejk
matejk approved these changes Mar 28, 2024
View reviewed changes
Copy link
Copy Markdown
Contributor

@matejk matejk left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Changes seem OK to me. I added few comments where some things were not clear to me.

Comment thread NetSSL_OpenSSL/src/SecureSocketImpl.cpp
Comment thread NetSSL_OpenSSL/include/Poco/Net/SecureSocketImpl.h
@aleks-f aleks-f merged commit ece3603 into devel Apr 2, 2024
@aleks-f aleks-f deleted the 4435-secure-sock-thread branch April 2, 2024 16:53
aleks-f added a commit that referenced this pull request Apr 2, 2024
@aleks-f @matejk
4435 secure sock thread (#4512)
facf937 
* fix(SecureSocket): Refactor detection of timeout when reading, writing or handshaking. (#3725)

* enh(SecureSocket): some trivial C++17 modernisation changes.

* chore: indentation and compiler warning

* fix(SecureSocketImpl): not thread-safe (1st attempt) #4435

* fix(SecureSocketImpl): silence CodeQL cpp/certificate-not-checked

---------

Co-authored-by: Matej Kenda <matejken@gmail.com>
@thevar1able thevar1able mentioned this pull request Apr 22, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@matejk matejk matejk approved these changes

@obiltschnig obiltschnig Awaiting requested review from obiltschnig

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@aleks-f @matejk @github-advanced-security