Perform SSL hostname validation
SSL stream can now verify that the remote server hostname matches the
the certificate Common Name or Subject Alternative Name.
This behavior can be disabled/enabled at the http_client scope using the
There is also an associated getter:
For backwards compatibility, this behavior is disabled by default.
However, this will change to being enabled by default in a future
When enabled, this functionality mitigates CVE-2012-6107.
6 files changed