Red Hat Bugzilla – Bug 1251935
Preserving mechanism of original hostnames in SSLSocketImpl fails
Last modified: 2016-05-10 16:30:21 EDT
Created attachment 1061012 [details]
Description of problem:
As described in
, sslSession.getPeerHost() is broken in recent OpenJDK packages.
With my further investigation, InetAddressHolder.originalHostName is not initialized properly in various situations.
Proposed patch is attached.
Version-Release number of selected component (if applicable):
Taking this one as it relates to the last security update.
I'd like to submit this patch to JDK-8133196 but I don't know how to sign up.
Their bug database is weird in that it only allows those with commit access to OpenJDK to use it.
I suggest posting the patch to the net-dev mailing list:
JDK-8133196 was fixed so the fix will be carried in later versions.
This has just now been made public:
Expect it to appear in the January security update.
This isn't specific to a particular RHEL version, so switching it to the better supported RHEL 6 series.
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.
For information on the advisory, and where to find the updated
files, follow the link below.
If the solution does not work for you, open a new bug report.