(openssl security fix) in the client to server connection, peer verification is not done in all cases. See https://github.com/machinezone/IXWebSocket/pull/250

docs/CHANGELOG.md

@@ -2,6 +2,10 @@
 
 All changes to this project will be documented in this file.
 
+## [11.0.0] - 2020-11-11
+
+(openssl security fix) in the client to server connection, peer verification is not done in all cases. See https://github.com/machinezone/IXWebSocket/pull/250
+
 ## [10.5.7] - 2020-11-07
 
 (docker) build docker container with zlib disabled

ixwebsocket/IXSocketOpenSSL.cpp

@@ -506,10 +506,9 @@ namespace ix
                 }
             }
 
-            SSL_CTX_set_verify(
+            SSL_CTX_set_verify(_ssl_context,
-                _ssl_context, SSL_VERIFY_PEER, [](int preverify, X509_STORE_CTX*) -> int {
+                               SSL_VERIFY_PEER,
-                    return preverify;
+                               [](int preverify, X509_STORE_CTX*) -> int { return preverify; });
-                });
             SSL_CTX_set_verify_depth(_ssl_context, 4);
         }
         else

ixwebsocket/IXWebSocketVersion.h

@@ -6,4 +6,4 @@
 
 #pragma once
 
-#define IX_WEBSOCKET_VERSION "10.5.7"
+#define IX_WEBSOCKET_VERSION "10.6.0"