[HTTPCLIENT-1119] Server Name Indication (SNI) Support - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 4.3.2
Component/s: HttpClient (classic)
Labels:
- sni
- ssl
- tls
- vhost

Description

Provide support for Server Name Indication (SNI) support as per RFC 3546 (section 3.1).

Currently attempting to connect to SNI enabled host 'expectedhost' over SSL using http client results in an SSLException similar to:

javax.net.ssl.SSLException: hostname in certificate didn't match: <expectedhost> != <defaulthost>
at org.apache.http.conn.ssl.AbstractVerifier.verify(AbstractVerifier.java:220)

We use SNI on some of our environments and were trying to use httpclient to automatically test host access and availability.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

HTTPCLIENT-1119-support-SNI-on-Java-7-via-setHost-of.patch
25/Oct/12 01:25
5 kB
Michael Locher
apache_httpclient_4.2.x_sni.patch
16/Oct/13 12:17
1 kB
Bruno Harbulot

Activity

People

Assignee:: Unassigned

Reporter:: Gus Power

Votes:: 11 Vote for this issue

Watchers:: 17 Start watching this issue

Dates

Created:: 24/Aug/11 12:18

Updated:: 04/May/17 09:48

Resolved:: 23/Nov/13 11:11