[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Bug classpath/50792] New: x509 certificates not verfied

From: ludwig.nussel at suse dot de
Subject: [Bug classpath/50792] New: x509 certificates not verfied
Date: Wed, 19 Oct 2011 13:20:42 +0000


             Bug #: 50792
           Summary: x509 certificates not verfied
    Classification: Unclassified
           Product: classpath
           Version: unspecified
               URL: https://bugzilla.novell.com/show_bug.cgi?id=596905
            Status: UNCONFIRMED
          Severity: normal
          Priority: P3
         Component: classpath
        AssignedTo: address@hidden
        ReportedBy: address@hidden

The following java program takes the name of a server that offers https as
When compiled and run using openjdk it throws a validation exception
when pointed at a server that uses an unknown CA. With gcj (openSUSE 12.1, gcc
4.6.1) no such exception is thrown. Looks like gcj (or rather it's java
runtime) doesn't properly verify certificates.

import java.net.*;
import javax.net.ssl.*;

public class ssltest
    public static void main(String[] args)
        throws java.io.IOException, UnknownHostException
        Socket s = SSLSocketFactory.getDefault().createSocket(args[0], 443);


reply via email to

[Prev in Thread] Current Thread [Next in Thread]