Google Git
Sign in
apache / httpcomponents-client / 87cc64fc8829860f6406b53dae64dee44d7ac2df
commit87cc64fc8829860f6406b53dae64dee44d7ac2df[log] [tgz]
authorRyan Schmitt <rschmitt@apache.org>Mon Jan 06 15:57:06 2020 -0800
committerRyan Schmitt <rschmitt@pobox.com>Tue Jan 07 10:09:02 2020 -0800
tree35ae5529f3820c0b35afa67258bc7761655d2ca9
parent3aec96d3dbbc1a167e0be376c4734d5c246e9bf3 [diff]
DefaultHostnameVerifier: Match DNS and CN names against ICANN domains

This change ensures that during hostname verification the public suffix
list is only used to prevent wildcard matching against entire TLDs (e.g.
`*.com`). Currently, private domains are also being matched against,
which is preventing reasonable wildcards (such as
`*.s3.eu-central-1.amazonaws.com`) from being respected.
1 file changed
tree: 35ae5529f3820c0b35afa67258bc7761655d2ca9
  1. httpclient5/
  2. httpclient5-cache/
  3. httpclient5-fluent/
  4. httpclient5-testing/
  5. httpclient5-win/
  6. test-CA/
  7. .gitattributes
  8. .gitignore
  9. .travis.yml
  10. BUILDING.txt
  11. doap_HttpComponents_Client.rdf
  12. LICENSE.txt
  13. NOTICE.txt
  14. pom.xml
  15. README.txt
  16. RELEASE_NOTES.txt