You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@mina.apache.org by "Jonathan Valliere (Jira)" <ji...@apache.org> on 2021/07/31 15:11:00 UTC
[jira] [Resolved] (DIRMINA-1122) Add support for endpoint
identification algorithm
[ https://issues.apache.org/jira/browse/DIRMINA-1122?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Jonathan Valliere resolved DIRMINA-1122.
----------------------------------------
Fix Version/s: 2.2.0
Assignee: Jonathan Valliere
Resolution: Won't Fix
The SSL components in 2.2.X have an overrideable onEngineCreated() function in the filter allowing you to implement features like this without having to patch anything. Check out DIRMINA-1132
> Add support for endpoint identification algorithm
> -------------------------------------------------
>
> Key: DIRMINA-1122
> URL: https://issues.apache.org/jira/browse/DIRMINA-1122
> Project: MINA
> Issue Type: Improvement
> Components: Filter, SSL
> Affects Versions: 2.0.22, 2.1.3
> Reporter: Marcin L
> Assignee: Jonathan Valliere
> Priority: Minor
> Fix For: 2.2.0
>
> Attachments: DIRMINA-1122_-_endpoint_identification_algorithm_support.patch
>
> Time Spent: 40m
> Remaining Estimate: 0h
>
> Support for endpoint identification algorithm was added in Java 1.7. Currently MINA supports providing single SNI name via org.apache.mina.filter.ssl.SslFilter#PEER_ADDRESS session attribute, but there is no way verifying it matches the certificate received.
> It would be nice if we could provide endpoint identification algorithm to SslFilter so certificate's common name or subject alternative names are verified.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@mina.apache.org
For additional commands, e-mail: dev-help@mina.apache.org