Bug 1267275 - The hostname from the server certificate is parsed incorrectly
Summary: The hostname from the server certificate is parsed incorrectly
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Red Hat Enterprise MRG
Classification: Red Hat
Component: qpid-java
Version: Development
Hardware: Unspecified
OS: Unspecified
unspecified
medium
Target Milestone: 3.2
: ---
Assignee: Scott Mumford
QA Contact: Petr Matousek
URL:
Whiteboard:
Depends On: 1265130
Blocks:
TreeView+ depends on / blocked
 
Reported: 2015-09-29 14:02 UTC by Petr Matousek
Modified: 2015-10-13 13:01 UTC (History)
9 users (show)

Fixed In Version:
Doc Type: Known Issue
Doc Text:
When the java client (qpid-java) parses the server certificate, it expects the 'subject' to begin with `CN=<hostname>`. If it does not, the certificate fails to parse correctly and the SSL hostname verification will fail. This will fail even if the `CN` appears elsewhere in the subject. The workaround is to make sure the subject starts with `CN`.
Clone Of: 1265130
Environment:
Last Closed: 2015-10-13 13:01:02 UTC
Target Upstream Version:
Embargoed:


Attachments (Terms of Use)

Comment 8 Petr Matousek 2015-10-08 08:50:52 UTC
Release note added, content approved.

-> VERIFIED


Note You need to log in before you can comment on or make changes to this bug.