activemq-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Francois Godin (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (AMQCPP-619) Support for SSL wilcard certificate
Date Wed, 16 Aug 2017 14:48:00 GMT

     [ https://issues.apache.org/jira/browse/AMQCPP-619?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Francois Godin updated AMQCPP-619:
----------------------------------
    Attachment: sslCertificateWildcard.patch

Use OpenSSL 1.0.2 functionality to implement hostname verification in the certificate.


> Support for SSL wilcard certificate
> -----------------------------------
>
>                 Key: AMQCPP-619
>                 URL: https://issues.apache.org/jira/browse/AMQCPP-619
>             Project: ActiveMQ C++ Client
>          Issue Type: New Feature
>    Affects Versions: 3.9.4
>            Reporter: Francois Godin
>            Assignee: Timothy Bish
>         Attachments: sslCertificateWildcard.patch
>
>
> SSL certificate can contain wildcard in the hostname. For example, the certificate URL
"*.proxy.app.com" should match the following address:
> * 1.proxy.app.com
> * 2.proxy.app.com
> Sadly, ActiveMQ-CPP simply compare the two values and thus does not accept such certificates.
> The Openssl page https://wiki.openssl.org/index.php/Hostname_validation describe some
possible implementation.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

Mime
View raw message