Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-6586276

SSLSockets and SSLEngines need a switch to enable hostname validation

    Details

    • Type: Enhancement
    • Status: Closed
    • Priority: P3
    • Resolution: Duplicate
    • Affects Version/s: 6u2
    • Fix Version/s: 7
    • Component/s: security-libs
    • Labels:
      None

      Description

      In order to be compliant with RFC 2459, applications should implement hostname checking on SSL connections. The class HttpsURLConnection does this, for example. However, if you are using the lower-level SSLSocket, SSLServerSocket and SSLEngine classes this functionality isn't available, even though it is implemented in the underlying libraries. A mechanism should be provided to enable this existing code so that JSSE clients don't have to reinvent an existing wheel.

      Suggestion: make this flag part of the SSLParameters class and implement RFE 6586274

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                xuelei Xue-Lei Fan
                Reporter:
                alanbur Alan Burlison
              • Votes:
                0 Vote for this issue
                Watchers:
                0 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:
                  Imported:
                  Indexed: