Hi, Issue 40479 is about a security risk when OpenSSL is used in fcl-web (TFPHTTPClient). Using the current source/trunk, TLS certificates having a wrong hostname are accepted, while they should be rejected.
An easy patch for this is available, I kindly ask for a review by one of the developers: https://gitlab.com/freepascal.org/fpc/source/-/issues/40479 If I can help in any way to facilitate this review, please let me know. (BTW I also submitted a patch for a GnuTLS problem, which is less important because it is no security risk, but still a review is highly appreciated: https://gitlab.com/freepascal.org/fpc/source/-/issues/40195#note_1621128840) Peter. _______________________________________________ fpc-devel maillist - fpc-devel@lists.freepascal.org https://lists.freepascal.org/cgi-bin/mailman/listinfo/fpc-devel
