JDK-4975882 : Reverse DNS calls in SocketPermission undesirable
  • Type: Bug
  • Component: core-libs
  • Sub-Component: java.net
  • Affected Version: 6
  • Priority: P4
  • Status: Resolved
  • Resolution: Won't Fix
  • OS: generic,linux
  • CPU: generic,x86
  • Submitted: 2004-01-09
  • Updated: 2018-10-02
  • Resolved: 2018-10-02
Related Reports
Duplicate :  
Relates :  
Relates :  
Relates :  
Relates :  
a customer has ask this question, he has a network setup in which
DNS name to address translation is ok but address to name translation
is not allowed.
in this setup he has used an applet to connect to a server and run into
a huge delay because of this code in SocketPermission.java, method

          // XXX: if all else fails, compare hostnames?
          // Do we really want this?
          if (this.cname == null) {

          if (that.cname == null) {
->               that.getCanonName();

          return (this.cname.equalsIgnoreCase(that.cname));

this line doing reverse DNS hangs for long time. since the comment says
"do we really want this", it makes me think can this be considered to
removed? we have already compared IP address above this. 

To risky to change at this point without having a potentially negative impact on security and compatibility.

CONVERTED DATA BugTraq+ Release Management Values COMMIT TO FIX: mustang

EVALUATION Revisit for mustang ###@###.### 2004-01-12