1
0
Fork 0
mirror of https://github.com/vanitasvitae/Smack.git synced 2024-12-20 09:37:58 +01:00

XmppHostnameVerifier: check subject CommonName

This commit is contained in:
Hugues Bruant 2015-06-20 13:55:43 -04:00 committed by Florian Schmaus
parent 0cbbedd2f4
commit f24ef7dda9

View file

@ -30,6 +30,9 @@ import java.util.Locale;
import java.util.logging.Level;
import java.util.logging.Logger;
import javax.naming.InvalidNameException;
import javax.naming.ldap.LdapName;
import javax.naming.ldap.Rdn;
import javax.net.ssl.HostnameVerifier;
import javax.net.ssl.SSLPeerUnverifiedException;
import javax.net.ssl.SSLSession;
@ -133,7 +136,24 @@ public class XmppHostnameVerifier implements HostnameVerifier {
throw new CertificateException(sb.toString());
}
}
// TODO SubjectX500Name
LdapName dn = null;
try {
dn = new LdapName(cert.getSubjectX500Principal().getName());
} catch (InvalidNameException e) {
LOGGER.warning("Invalid DN: " + e.getMessage());
}
if (dn != null) {
for (Rdn rdn : dn.getRdns()) {
if (rdn.getType().equalsIgnoreCase("CN")) {
if (matchesPerRfc2818(name, rdn.getValue().toString())) {
return;
}
break;
}
}
}
throw new CertificateException("No name matching " + name + " found");
}