From cc94dea6d7fad79e531ee723c31e2d92fb7ccf98 Mon Sep 17 00:00:00 2001
From: Kirill Boyarshinov <naghtarr@gmail.com>
Date: Tue, 10 Feb 2015 10:30:40 +0600
Subject: [PATCH] Throw SSLPeerUnverifiedException when host verification
 fails, instead of IOException

---
 okhttp/src/main/java/com/squareup/okhttp/Connection.java | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/okhttp/src/main/java/com/squareup/okhttp/Connection.java b/okhttp/src/main/java/com/squareup/okhttp/Connection.java
index 8d8586ea0..7dddc3a5c 100644
--- a/okhttp/src/main/java/com/squareup/okhttp/Connection.java
+++ b/okhttp/src/main/java/com/squareup/okhttp/Connection.java
@@ -32,6 +32,7 @@ import java.net.Socket;
 import java.net.URL;
 import java.security.cert.X509Certificate;
 import java.util.concurrent.TimeUnit;
+import javax.net.ssl.SSLPeerUnverifiedException;
 import javax.net.ssl.SSLSocket;
 import okio.Source;
 
@@ -254,7 +255,7 @@ public final class Connection {
     // Verify that the socket's certificates are acceptable for the target host.
     if (!route.address.hostnameVerifier.verify(route.address.uriHost, sslSocket.getSession())) {
       X509Certificate cert = (X509Certificate) sslSocket.getSession().getPeerCertificates()[0];
-      throw new IOException("Hostname " + route.address.uriHost + " not verified:"
+      throw new SSLPeerUnverifiedException("Hostname " + route.address.uriHost + " not verified:"
           + "\n    certificate: " + CertificatePinner.pin(cert)
           + "\n    DN: " + cert.getSubjectDN().getName()
           + "\n    subjectAltNames: " + OkHostnameVerifier.allSubjectAltNames(cert));