Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-4387961

HostnameVerifier needs to pass various hostnames

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Fixed
    • Icon: P3 P3
    • unknown
    • unknown
    • security-libs
    • None
    • ventura
    • generic
    • generic

      jdn points out:

          We need to change the verify method to allow
      for more than one host name from the server
      certificate. New certs may include a "subject
      alternative name" extension which can include
      additional dnsName fields. The most obvious change
      is to make the cert host field an array of String.
      An alternative is to give up and just pass the cert
      but that means the implementor of verify has to root
      around in the cert looking for host names.
      I believe there is an internet draft in
      /home/internet/internet-drafts/*tls* which
      describes the cert name matching rule for certs
      with subject alt name fields.

            wetmore Bradford Wetmore
            wetmore Bradford Wetmore
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

              Created:
              Updated:
              Resolved:
              Imported:
              Indexed: