From 63bc481b060841b8f2c2e579ce9933ba0b21a2dc Mon Sep 17 00:00:00 2001 From: Nick Bolton Date: Mon, 29 Jul 2024 23:38:31 +0100 Subject: [PATCH] Add TODO for S1-1766 --- src/lib/net/SecureSocket.cpp | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/src/lib/net/SecureSocket.cpp b/src/lib/net/SecureSocket.cpp index ca353d464b..2873b595dd 100644 --- a/src/lib/net/SecureSocket.cpp +++ b/src/lib/net/SecureSocket.cpp @@ -428,6 +428,10 @@ int SecureSocket::secureConnect(int socket) { SSL_set_fd(m_ssl->m_ssl, socket); LOG((CLOG_DEBUG2 "connecting secure socket")); + + // TODO: S1-1766, enable hostname verification. + // the cert will need to be installed in the trusted store on the client. + // we'll probably need to find a way of securely transferring the cert. int r = SSL_connect(m_ssl->m_ssl); static int retry;