You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@thrift.apache.org by ro...@apache.org on 2014/07/26 00:31:31 UTC

git commit: THRIFT-2489 Peer host name not provied when performing AccessManager common name verification.

Repository: thrift
Updated Branches:
  refs/heads/master 6aacd4cc7 -> e3f0a4234


THRIFT-2489 Peer host name not provied when performing AccessManager common name verification.

This closes #102
commit fd2afa58bff579c2a03281a34afda990e2f499e3
Author: Chris Stylianou <ch...@gmail.com>
Date: 2014-04-21T14:06:20Z
THRIFT-2489 Pull Request
Peer host name not provied when performing AccessManager common name verification.


Project: http://git-wip-us.apache.org/repos/asf/thrift/repo
Commit: http://git-wip-us.apache.org/repos/asf/thrift/commit/e3f0a423
Tree: http://git-wip-us.apache.org/repos/asf/thrift/tree/e3f0a423
Diff: http://git-wip-us.apache.org/repos/asf/thrift/diff/e3f0a423

Branch: refs/heads/master
Commit: e3f0a42347433e0c65d4635d86d93f72cfc83aff
Parents: 6aacd4c
Author: Roger Meier <ro...@apache.org>
Authored: Sat Jul 26 00:24:39 2014 +0200
Committer: Roger Meier <ro...@apache.org>
Committed: Sat Jul 26 00:24:39 2014 +0200

----------------------------------------------------------------------
 lib/cpp/src/thrift/transport/TSSLSocket.cpp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/thrift/blob/e3f0a423/lib/cpp/src/thrift/transport/TSSLSocket.cpp
----------------------------------------------------------------------
diff --git a/lib/cpp/src/thrift/transport/TSSLSocket.cpp b/lib/cpp/src/thrift/transport/TSSLSocket.cpp
index 25c5610..9a8c758 100644
--- a/lib/cpp/src/thrift/transport/TSSLSocket.cpp
+++ b/lib/cpp/src/thrift/transport/TSSLSocket.cpp
@@ -364,7 +364,7 @@ void TSSLSocket::authorize() {
       ASN1_STRING* common = X509_NAME_ENTRY_get_data(entry);
       int size = ASN1_STRING_to_UTF8(&utf8, common);
       if (host.empty()) {
-        host = (server() ? getHost() : getHost());
+        host = (server() ? getPeerHost() : getHost());
       }
       decision = access_->verify(host, (char*)utf8, size);
       OPENSSL_free(utf8);