Skip to content
This project is mirrored from https://codeberg.org/iNPUTmice/Conversations.git. Pull mirroring updated .
  1. Jul 16, 2017
    • Daniel Gultsch's avatar
      workaround for OpenFire: check CN first in self signed certs · 8afe7efc
      Daniel Gultsch authored
      The self signed certificates created by OpenFire (Not sure if other
      certs are affected as well) will crash the Java/Android TLS stack when
      accessing getSubjectAlternativeNames() on the the peer certificate.
      
      This usually goes unnoticed in other applications since the
      DefaultHostnameVerifier checkes the CN first. That however is a
      violation of RFC6125 section 6.4.4 which requires us to check for the
      existence of SAN first.
      
      This commit adds a work around where in self signed certificates we
      check for the CN first as well. (Avoiding the call to
      getSubjectAlternativeNames())
      8afe7efc
  2. Jul 14, 2017
  3. Jul 13, 2017
  4. Jul 12, 2017
  5. Jul 11, 2017
  6. Jul 10, 2017
  7. Jul 09, 2017
  8. Jul 05, 2017
  9. Jul 04, 2017
  10. Jul 03, 2017
  11. Jul 01, 2017
  12. Jun 30, 2017
  13. Jun 29, 2017
  14. Jun 27, 2017
  15. Jun 26, 2017
  16. Jun 25, 2017
Loading