RussellSpitzer commented on PR #15500: URL: https://github.com/apache/iceberg/pull/15500#issuecomment-4184178599
> It would be nice to know when we a choosing JSSE host name verifier, how much can we now influence with java ops / system prop and what are the new cases we are opening to when are shifting from lib to this one. What are you looking for in particular? I tried to do some Cursor assisted analysis and as far as I can tell neither of the verifiers are actually changeable via system properties or java opts. Neither of the OpenJDK HostnameChecker verifier nor the Apache DefaultHostnameVerifier use system.getProperty. Cursor did list a few things that would indirectly change behaviors but they seem to be all a result of the fact that JSSE will will do hostname verification during the TLS handshake rather than the DefaultHostnameVerifier which checks after the handshake. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
