[jira] [Created] (HTTPCLIENT-1125) hostname in certificate didn't match: !=

Wed, 07 Sep 2011 12:33:36 -0700 

hostname in certificate didn't match: <www.google.com/74.125.93.106> != 
<www.google.com>
----------------------------------------------------------------------------------------

                 Key: HTTPCLIENT-1125
                 URL: https://issues.apache.org/jira/browse/HTTPCLIENT-1125
             Project: HttpComponents HttpClient
          Issue Type: Bug
          Components: HttpConn
    Affects Versions: 4.1.2
            Reporter: Bozhidar Bozhanov


I'm using a 3rd party library for openId authentication. It worked fine until I 
upgraded httpcomponents httpclient to 4.1.2. The stacktrace is:

Caused by: javax.net.ssl.SSLException: hostname in certificate didn't match: 
<www.google.com/74.125.93.106> != <www.google.com>
        at 
org.apache.http.conn.ssl.AbstractVerifier.verify(AbstractVerifier.java:228)
        at 
org.apache.http.conn.ssl.BrowserCompatHostnameVerifier.verify(BrowserCompatHostnameVerifier.java:54)
        at 
org.apache.http.conn.ssl.AbstractVerifier.verify(AbstractVerifier.java:149)
        at 
org.apache.http.conn.ssl.AbstractVerifier.verify(AbstractVerifier.java:130)
        at 
org.apache.http.conn.ssl.SSLSocketFactory.connectSocket(SSLSocketFactory.java:397)
        at 
org.apache.http.conn.ssl.SSLSocketFactory.connectSocket(SSLSocketFactory.java:495)
        at 
org.apache.http.conn.scheme.SchemeSocketFactoryAdaptor.connectSocket(SchemeSocketFactoryAdaptor.java:62)
        at 
org.apache.http.impl.conn.DefaultClientConnectionOperator.openConnection(DefaultClientConnectionOperator.java:148)
        at 
org.apache.http.impl.conn.AbstractPoolEntry.open(AbstractPoolEntry.java:149)
        at 
org.apache.http.impl.conn.AbstractPooledConnAdapter.open(AbstractPooledConnAdapter.java:121)
        at 
org.apache.http.impl.client.DefaultRequestDirector.tryConnect(DefaultRequestDirector.java:573)
        at 
org.apache.http.impl.client.DefaultRequestDirector.execute(DefaultRequestDirector.java:425)
        at 
org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.java:820)
        at 
org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.java:754)
        at 
org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.java:732)
        at org.openid4java.util.HttpCache.head(HttpCache.java:335)
        at 
org.openid4java.discovery.yadis.YadisResolver.retrieveXrdsLocation(YadisResolver.java:400)

It works fine with 4.1.1 so I assume it's some bug with the certificate 
verification (That's the google open ID endpoint, so it's less likely there's a 
problem there)

--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to