Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-7192189 Support endpoint identification algorithm in RFC 6125
  3. JDK-8282800

Release Note: Fully Support Endpoint Identification Algorithm in RFC 6125

    XMLWordPrintable

    Details

    • Type: Sub-task
    • Status: Resolved
    • Priority: P3
    • Resolution: Delivered
    • Affects Version/s: 19
    • Fix Version/s: 19
    • Component/s: security-libs
    • Labels:

      Description

      The JDK `SunJSSE` provider implementation has been enhanced to be fully compliant with RFC 6125. Prior to this release, the implementation was compliant except for one case, which has now been addressed: the implementation will not attempt to match wildcard domains in TLS certificates where the wildcard character comprises a label other than the left-most label.

      If necessary, applications can workaround this restriction by implementing their own `HostnameVerifier` or `TrustManager`.

        Attachments

          Activity

            People

            Assignee:
            mullan Sean Mullan
            Reporter:
            mullan Sean Mullan
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: