Google Git
Sign in
apache / axis-axis2-c-core / 7abdde944f86ef72f4dddae4a6d514c1140c1e29
commit7abdde944f86ef72f4dddae4a6d514c1140c1e29[log] [tgz]
authorBill Blough <billblough@apache.org>Sun Sep 01 00:23:06 2019 +0000
committerBill Blough <billblough@apache.org>Sun Sep 01 00:23:06 2019 +0000
tree85f93d82cbe45b720df512fdd61552519f9e02cf
parenta86bfbc0018927f6523254e6dbd688a45529e512 [diff]
Perform SSL hostname validation

SSL stream can now verify that the remote server hostname matches the
the certificate Common Name or Subject Alternative Name.

This behavior can be disabled/enabled at the http_client scope using the
new function:

    axis2_http_client_set_validate_ssl_hostname

There is also an associated getter:

    axis2_http_client_get_validate_ssl_hostname

For backwards compatibility, this behavior is disabled by default.
However, this will change to being enabled by default in a future
release.

When enabled, this functionality mitigates CVE-2012-6107.

JIRA: AXIS2C-1619
6 files changed
tree: 85f93d82cbe45b720df512fdd61552519f9e02cf
  1. axiom/
  2. build/
  3. docs/
  4. gtest/
  5. guththila/
  6. ides/
  7. include/
  8. neethi/
  9. samples/
  10. src/
  11. test/
  12. tools/
  13. util/
  14. xdocs/
  15. COPYINGLICENSE
  16. aix-inst-libs.sh
  17. AUTHORS
  18. autogen.sh
  19. axis2c.pc.in
  20. axis2c_build.sh.in
  21. bindist.sh.in
  22. build.sh
  23. build_for_dist.sh
  24. ChangeLog
  25. clean.sh
  26. configure.ac
  27. CREDITS
  28. dist.sh.in
  29. INSTALL
  30. LICENSE
  31. Makefile.am
  32. maven.xml
  33. NEWS
  34. NOTICE
  35. pack_dists.sh
  36. project.properties
  37. project.xml
  38. README
  39. release_process