summaryrefslogtreecommitdiffstats
path: root/base/server/cmscore/src/com/netscape/cmscore/ldapconn
diff options
context:
space:
mode:
authorChristina Fu <cfu@redhat.com>2014-11-18 18:28:53 -0800
committerChristina Fu <cfu@redhat.com>2014-11-21 09:55:33 -0800
commit46d7be6f5d24e025df30b382065addfb30c8032f (patch)
treee025247ed79d9a9c99614a24e1d26fb9a7d320b4 /base/server/cmscore/src/com/netscape/cmscore/ldapconn
parent99d571cee64846e8e1cfbc129aa0081b2f1f95e0 (diff)
downloadpki-46d7be6f5d24e025df30b382065addfb30c8032f.tar.gz
pki-46d7be6f5d24e025df30b382065addfb30c8032f.tar.xz
pki-46d7be6f5d24e025df30b382065addfb30c8032f.zip
bugzilla 871171 (client-side code) Provide Tomcat support for TLS v1.1 and TLS v1.2
Diffstat (limited to 'base/server/cmscore/src/com/netscape/cmscore/ldapconn')
-rw-r--r--base/server/cmscore/src/com/netscape/cmscore/ldapconn/LdapJssSSLSocketFactory.java7
1 files changed, 3 insertions, 4 deletions
diff --git a/base/server/cmscore/src/com/netscape/cmscore/ldapconn/LdapJssSSLSocketFactory.java b/base/server/cmscore/src/com/netscape/cmscore/ldapconn/LdapJssSSLSocketFactory.java
index 4d9e60251..720882a15 100644
--- a/base/server/cmscore/src/com/netscape/cmscore/ldapconn/LdapJssSSLSocketFactory.java
+++ b/base/server/cmscore/src/com/netscape/cmscore/ldapconn/LdapJssSSLSocketFactory.java
@@ -51,12 +51,11 @@ public class LdapJssSSLSocketFactory implements LDAPSSLSocketFactoryExt {
SSLSocket s = null;
try {
- SSLSocket.enableSSL2Default(false);
+ /*
+ * let inherit TLS range and cipher settings
+ */
s = new SSLSocket(host, port);
s.setUseClientMode(true);
- s.enableSSL2(false);
- //TODO Do we really want to set the default each time?
- SSLSocket.enableSSL2Default(false);
s.enableV2CompatibleHello(false);
SSLHandshakeCompletedListener listener = null;
generated by cgit (git 2.34.1) at 2024-05-23 18:33:44 +0000