[HTTPCLIENT-1255] Wildcard matching in hostname verifier incorrect - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 4.2.3
Component/s: HttpClient (classic)
Labels:
- security

Description

According to the findings of [1], the hostname verification in AbstractVerifier.java is not correct. The wildcard prefix extraction uses the dimension of the dotted parts array instead of the length of the first part itself.

String prefix = parts[0].substring(0, parts.length-2); // e.g. server
should be
String prefix = parts[0].substring(0, parts[0].length()-1); // e.g. server

(This is line 208 of http://svn.apache.org/repos/asf/httpcomponents/httpclient/trunk/httpclient/src/main/java/org/apache/http/conn/ssl/AbstractVerifier.java as of Revision 1402320)

[1] http://www.cs.utexas.edu/~shmat/shmat_ccs12.pdf

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Ingo Bauersachs

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 25/Oct/12 20:26

Updated:: 20/Sep/16 19:30

Resolved:: 06/Nov/12 16:51

Time Tracking

Estimated:

Remaining:

Logged:

Not Specified