qt/qtbase.git - Qt Base (Core, Gui, Widgets, Network, ...)

diff options

author	Timur Pocheptsov <timur.pocheptsov@qt.io>	2017-06-01 12:04:06 +0200
committer	Timur Pocheptsov <timur.pocheptsov@qt.io>	2017-06-02 12:34:22 +0000
commit	4fb174563945438d34da38ebadf0f6b03cad266d (patch)
tree	7188f1eae23d20400f9445544bc64962959263de /src/corelib/tools
parent	91ef71b7bf3526a0bb7f6f83e6b3e03e286c2030 (diff)

Ssl socket - fix broken certificate verification

On iOS QSslConfiguration always has an empty list of system CA certificates. Calling SecTrustSetAnchorCertificatesOnly(.., TRUE) on iOS results in SecTrustEvaluate failing to verify a valid certificate, since there are no 'anchors' at all. We can use SecTrustSetAnchorCerificatesOnly(.. TRUE) on macOS only, where we do extract/copy system certificates using SecTrustSettingsCopyCertificates and save them in a QSslConfiguration's list. Task-number: QTBUG-61053 Change-Id: I70d4e46273d78414baaac8531273def707c3eebc Reviewed-by: Edward Welbourne <edward.welbourne@qt.io> Reviewed-by: Timur Pocheptsov <timur.pocheptsov@qt.io>

Diffstat (limited to 'src/corelib/tools')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: