[master] + rework (#2) the fix for the issue #525

oleksiys · oleksiys · commit f171c9a13a15 · 2014-07-15T12:08:15.000-07:00
#525 "Move the hostname verification to after the SSL handshake has completed"
diff --git a/providers/grizzly/src/main/java/org/asynchttpclient/providers/grizzly/filters/SwitchingSSLFilter.java b/providers/grizzly/src/main/java/org/asynchttpclient/providers/grizzly/filters/SwitchingSSLFilter.java
@@ -191,20 +191,26 @@ public void failed(final Throwable throwable) {
             }
 
             public void completed(final Connection connection) {
-                final SSLSession session = SSLUtils.getSSLEngine(connection).getSession();
-                if (LOGGER.isDebugEnabled()) {
-                    LOGGER.debug("SSL Handshake onComplete: session = {}, id = {}, isValid = {}, host = {}",
-                            session.toString(), Base64.encode(session.getId()), session.isValid(), host);
-                }
+                if (getHandshakeError(connection) == null) {
+                    final SSLSession session = SSLUtils.getSSLEngine(connection).getSession();
+                    if (LOGGER.isDebugEnabled()) {
+                        LOGGER.debug("SSL Handshake onComplete: session = {}, id = {}, isValid = {}, host = {}",
+                                session.toString(), Base64.encode(session.getId()), session.isValid(), host);
+                    }
+
+                    if (!verifier.verify(host, session)) {
+                        connection.terminateSilently();
 
-                if (!verifier.verify(host, session)) {
-                    connection.terminateSilently();
-                    
-                    if (delegateCompletionHandler != null) {
-                        IOException e = new ConnectException("Host name verification failed for host " + host);
-                        delegateCompletionHandler.failed(e);
+                        if (delegateCompletionHandler != null) {
+                            IOException e = new ConnectException("Host name verification failed for host " + host);
+                            delegateCompletionHandler.failed(e);
+                        }
+
+                        return;
                     }
-                } else if (delegateCompletionHandler != null) {
+                }
+                
+                if (delegateCompletionHandler != null) {
                     delegateCompletionHandler.completed(connection);
                 }
             }
