-
Type:
Bug
-
Resolution: Won't Fix
-
Priority:
P4
-
None
-
Affects Version/s: 8-pool
-
Component/s: security-libs
When application creates an SSLSocket with InetAddress.getLocalHost(), for example;
SSLSocket sslSocket = (SSLSocket)sslSocketFactory.createSocket(
InetAddress.getLocalHost().getHostName(), serverPort);
On some platform, the hostname used may look like "hostname.local" or "apple.local". The server name indication implementation is not able to identify that the hostname is not a valid domain name yet. So the SNI extension may be used, and the server may not be able to accept the SNI extension, and result in handshaking failure.
SSLSocket sslSocket = (SSLSocket)sslSocketFactory.createSocket(
InetAddress.getLocalHost().getHostName(), serverPort);
On some platform, the hostname used may look like "hostname.local" or "apple.local". The server name indication implementation is not able to identify that the hostname is not a valid domain name yet. So the SNI extension may be used, and the server may not be able to accept the SNI extension, and result in handshaking failure.