You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@jmeter.apache.org by pm...@apache.org on 2019/10/01 09:23:56 UTC

[jmeter] 01/04: Fix sonar security warning: False positive in the context of JMeter

This is an automated email from the ASF dual-hosted git repository.

pmouawad pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/jmeter.git

commit 8323941eb8005abba76ee0f6ad1773a309eaabf8
Author: pmouawad <p....@ubik-ingenierie.com>
AuthorDate: Tue Oct 1 09:59:04 2019 +0200

    Fix sonar security warning: False positive in the context of JMeter
---
 src/core/src/main/java/org/apache/jmeter/util/JsseSSLManager.java | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/core/src/main/java/org/apache/jmeter/util/JsseSSLManager.java b/src/core/src/main/java/org/apache/jmeter/util/JsseSSLManager.java
index dcedbd8..b36fa95 100644
--- a/src/core/src/main/java/org/apache/jmeter/util/JsseSSLManager.java
+++ b/src/core/src/main/java/org/apache/jmeter/util/JsseSSLManager.java
@@ -111,7 +111,7 @@ public class JsseSSLManager extends SSLManager {
             }
 
             HttpsURLConnection.setDefaultSSLSocketFactory(new HttpSSLProtocolSocketFactory(CPS));
-            HttpsURLConnection.setDefaultHostnameVerifier((hostname, session) -> true);
+            HttpsURLConnection.setDefaultHostnameVerifier((hostname, session) -> true); // NOSONAR JMeter is a pentest and perf testing tool
 
             log.debug("SSL stuff all set");
         } catch (GeneralSecurityException ex) {