Details
-
Bug
-
Status: Closed
-
Major
-
Resolution: Fixed
-
None
Description
If you start up a locator using its host name, without a domain name, as a bind address you may get an SSLException in the form
javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: No subject alternative DNS name matching hostname.domainname found
The LocatorLauncher and InternalLocator throw away the bind address string and later do a reverse lookup to find the fully qualified hostname to use in endpoint identification matching. If the locator's own TLS certificate doesn't have the fully qualified name in it as a Subject Alternate Name the connection that the Locator makes to its own location service will fail.
Attachments
Issue Links
- causes
-
-
- Closed
-
- fixes
-
-
- Closed
-
- relates to
-
-
- Closed
-
-
-
- Closed
-
- links to