[
https://issues.apache.org/jira/browse/THRIFT-3240?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14634445#comment-14634445
]
Jake Farrell commented on THRIFT-3240:
--------------------------------------
Hey [~mkazia], thanks for the patch. The code included in your patch has the
PSF license, which i'm unsure of the compatibility of this license for ASF
inclusion. Will need to track this detail down before being able to commit
> Thrift Python client should support subjectAltName and wildcard certs in
> TSSLSocket
> -----------------------------------------------------------------------------------
>
> Key: THRIFT-3240
> URL: https://issues.apache.org/jira/browse/THRIFT-3240
> Project: Thrift
> Issue Type: Improvement
> Components: Python - Library
> Affects Versions: 0.9.2
> Reporter: Mubashir Kazia
> Labels: easyfix, patch, security
> Fix For: 0.9.3
>
> Attachments: THRIFT-3240.1.patch
>
>
> The TSSLSocket in Python Library does not support subjectAltName or wildcard
> certs. It fails to validate valid certs. Currently it only validates if the
> CN in Subject of the Server Cert matches the hostname we are trying to
> connect.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
