diff options
| author | Mattes D <github@xoft.cz> | 2023-05-09 11:29:35 +0200 |
|---|---|---|
| committer | Mattes D <github@xoft.cz> | 2023-05-19 16:25:12 +0200 |
| commit | c2e0344110c01eef33697c9611c5689e8eee0691 (patch) | |
| tree | aa09568a54eda66f062ae0032ce88957730cd3a5 /src/mbedTLS++/SslContext.h | |
| parent | Auth SSL Fixes (diff) | |
| download | cuberite-c2e0344110c01eef33697c9611c5689e8eee0691.tar cuberite-c2e0344110c01eef33697c9611c5689e8eee0691.tar.gz cuberite-c2e0344110c01eef33697c9611c5689e8eee0691.tar.bz2 cuberite-c2e0344110c01eef33697c9611c5689e8eee0691.tar.lz cuberite-c2e0344110c01eef33697c9611c5689e8eee0691.tar.xz cuberite-c2e0344110c01eef33697c9611c5689e8eee0691.tar.zst cuberite-c2e0344110c01eef33697c9611c5689e8eee0691.zip | |
Diffstat (limited to 'src/mbedTLS++/SslContext.h')
| -rw-r--r-- | src/mbedTLS++/SslContext.h | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/src/mbedTLS++/SslContext.h b/src/mbedTLS++/SslContext.h index 6343f7e43..b4b184403 100644 --- a/src/mbedTLS++/SslContext.h +++ b/src/mbedTLS++/SslContext.h @@ -51,7 +51,9 @@ public: /** Returns true if the object has been initialized properly. */ bool IsValid(void) const { return m_IsValid; } - /** Sets the SSL peer name expected for this context. Must be called after Initialize(). + /** Sets the SSL peer name expected for this context. + This is used both for TLS SNI and for certificate validation. + Must be called after Initialize(). \param a_ExpectedPeerName CommonName that we expect the SSL peer to have in its cert, if it is different, the verification will fail. An empty string will disable the CN check. */ void SetExpectedPeerName(const std::string_view a_ExpectedPeerName); |