[
https://issues.apache.org/jira/browse/HTTPCLIENT-1302?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13558359#comment-13558359
]
Oleg Kalnichevski commented on HTTPCLIENT-1302:
-----------------------------------------------
Why should not it? AllowAllHostnameVerifier has not expectations as to the
format of the the certificate subject but it still requires the session to be
valid.
Oleg
> AllowAllHostnameVerifier should not access session
> --------------------------------------------------
>
> Key: HTTPCLIENT-1302
> URL: https://issues.apache.org/jira/browse/HTTPCLIENT-1302
> Project: HttpComponents HttpClient
> Issue Type: Bug
> Components: HttpClient
> Affects Versions: 4.2.3
> Reporter: Philippe Mouawad
> Fix For: 4.2.4
>
>
> Hello,
> We are facing a bug in JMeter:
> - https://issues.apache.org/bugzilla/show_bug.cgi?id=54449
> Analyzing code, I noticed AllowAllHostnameVerifier ends up calling
> AbstractVerifier#verify(String host, SSLSocket ssl) which does more job than
> it should for AllowAllHostname policy
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
