android/okhttp
1
0
Fork 0
mirror of https://github.com/square/okhttp.git synced 2026-01-17 08:42:25 +03:00
Code Releases Activity

Throw SSLPeerUnverifiedException when host verification fails, instead of IOException

Browse Source
This commit is contained in:
Kirill Boyarshinov
2015-02-10 10:30:40 +06:00
parent eb5aeb0976
commit cc94dea6d7
1 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
okhttp/src/main/java/com/squareup/okhttp/Connection.java
View File

@@ -32,6 +32,7 @@ import java.net.Socket;
import java.net.URL;
import java.security.cert.X509Certificate;
import java.util.concurrent.TimeUnit;
import javax.net.ssl.SSLPeerUnverifiedException;
import javax.net.ssl.SSLSocket;
import okio.Source;
@@ -254,7 +255,7 @@ public final class Connection {
// Verify that the socket's certificates are acceptable for the target host.
if (!route.address.hostnameVerifier.verify(route.address.uriHost, sslSocket.getSession())) {
X509Certificate cert = (X509Certificate) sslSocket.getSession().getPeerCertificates()[0];
throw new IOException("Hostname " + route.address.uriHost + " not verified:"
throw new SSLPeerUnverifiedException("Hostname " + route.address.uriHost + " not verified:"
+ "\n certificate: " + CertificatePinner.pin(cert)
+ "\n DN: " + cert.getSubjectDN().getName()
+ "\n subjectAltNames: " + OkHostnameVerifier.allSubjectAltNames(cert));