You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@hc.apache.org by "Oleg Kalnichevski (JIRA)" <ji...@apache.org> on 2015/03/24 13:50:58 UTC
[jira] [Resolved] (HTTPCLIENT-1636) Regression: hostname
verification fails when it shouldn't
[ https://issues.apache.org/jira/browse/HTTPCLIENT-1636?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Oleg Kalnichevski resolved HTTPCLIENT-1636.
-------------------------------------------
Resolution: Duplicate
Fix Version/s: 4.5 Alpha1
Resolved by HTTPCLIENT-1613
Oleg
> Regression: hostname verification fails when it shouldn't
> ---------------------------------------------------------
>
> Key: HTTPCLIENT-1636
> URL: https://issues.apache.org/jira/browse/HTTPCLIENT-1636
> Project: HttpComponents HttpClient
> Issue Type: Bug
> Components: HttpClient
> Affects Versions: 4.4 Final
> Reporter: Richard DiCroce
> Fix For: 4.5 Alpha1
>
>
> I tried to use HttpClient to download this file:
> https://github.com/activescott/lessmsi/releases/download/v1.2.0/lessmsi-v1.2.0.zip
> My browser and other tools have no problem with it. HttpClient 4.3.6 is also fine, but 4.4 fails with this exception:
> {code}
> javax.net.ssl.SSLPeerUnverifiedException: Host name 's3.amazonaws.com' does not match the certificate subject provided by the peer (CN=s3.amazonaws.com, O=Amazon.com Inc., L=Seattle, ST=Washington, C=US)
> at org.apache.http.conn.ssl.SSLConnectionSocketFactory.verifyHostname(SSLConnectionSocketFactory.java:466)
> at org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocket(SSLConnectionSocketFactory.java:396)
> at org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLConnectionSocketFactory.java:354)
> at org.apache.http.impl.conn.DefaultHttpClientConnectionOperator.connect(DefaultHttpClientConnectionOperator.java:134)
> at org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(PoolingHttpClientConnectionManager.java:353)
> at org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClientExec.java:380)
> at org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.java:236)
> at org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java:184)
> at org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:88)
> at org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java:110)
> at org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpClient.java:184)
> at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:82)
> at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:107)
> at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:55)
> at org.apache.http.client.fluent.Request.execute(Request.java:151)
> at com.sg.maven.relpkg.UnpackUtil.unpackJDK(UnpackUtil.java:55)
> at com.sg.maven.relpkg.ReleasePackageBuilder.build(ReleasePackageBuilder.java:151)
> at com.sg.maven.relpkg.Main.main(Main.java:84)
> {code}
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@hc.apache.org
For additional commands, e-mail: dev-help@hc.apache.org