Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-6586276

SSLSockets and SSLEngines need a switch to enable hostname validation

    XMLWordPrintable

    Details

    • Type: Enhancement
    • Status: Closed
    • Priority: P3
    • Resolution: Duplicate
    • Affects Version/s: 6u2
    • Fix Version/s: 7
    • Component/s: security-libs
    • Labels:
      None

      Description

      In order to be compliant with RFC 2459, applications should implement hostname checking on SSL connections. The class HttpsURLConnection does this, for example. However, if you are using the lower-level SSLSocket, SSLServerSocket and SSLEngine classes this functionality isn't available, even though it is implemented in the underlying libraries. A mechanism should be provided to enable this existing code so that JSSE clients don't have to reinvent an existing wheel.

      Suggestion: make this flag part of the SSLParameters class and implement RFE 6586274

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              xuelei Xue-Lei Fan
              Reporter:
              alanbur Alan Burlison
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:
                Imported:
                Indexed: