Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Fixed
Priority: Major
Fix Version/s: 3.0
Affects Version/s: 2.8.0
Component/s: Java, Java-Android
Security Level: Public
Labels:
None

Story Points:
1

Description

A forum post pointed out a StackOverflow question that highlights a bug in CBLTrustManager.java:

https://stackoverflow.com/questions/58934384/network-security-configuration-not-working-with-third-party-api

It's a new behaviour of the Android Framework. If your network config contains any <domain-config blocks, Framework throws CertificateException if you call checkServerTrusted(X509Certificate[] certs, String authType) in X509TrustManager. So instead you should use X509TrustManagerExtensions

Attachments

Issue Links

backports to

CBL-1984 [Backport] Support domain specific server authentication

Closed

is duplicated by

CBL-1955 Support domain specific server authentication

Closed

Gerrit Reviews

- Issue Only
- Show All Reviews
- Show Open Reviews
- Show All Issues
- Show Open Issues

No reviews matched the request. Check your Options in the drop-down menu of this sections header.

Activity

People

Assignee:: The Lite

Reporter:: Blake Meike

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 11/Mar/21 12:32 PM

Updated:: 10/Aug/21 7:40 AM

Resolved:: 28/May/21 11:21 AM

Time Tracking

Estimated:

Not Specified

Remaining:

Logged:

Gerrit Reviews

There are no open Gerrit changes

X509TrustManager.checkServerTrusted with X509TrustManagerExtensions.checkServerTrusted

Details

Description

Attachments

Issue Links

Gerrit Reviews

Activity

People

Dates

Time Tracking

Gerrit Reviews

PagerDuty