diff options
author | Christina Fu <cfu@redhat.com> | 2014-11-18 18:28:53 -0800 |
---|---|---|
committer | Christina Fu <cfu@redhat.com> | 2014-11-21 09:55:33 -0800 |
commit | 46d7be6f5d24e025df30b382065addfb30c8032f (patch) | |
tree | e025247ed79d9a9c99614a24e1d26fb9a7d320b4 /base/server | |
parent | 99d571cee64846e8e1cfbc129aa0081b2f1f95e0 (diff) | |
download | pki-46d7be6f5d24e025df30b382065addfb30c8032f.tar.gz pki-46d7be6f5d24e025df30b382065addfb30c8032f.tar.xz pki-46d7be6f5d24e025df30b382065addfb30c8032f.zip |
bugzilla 871171 (client-side code) Provide Tomcat support for TLS v1.1 and TLS v1.2
Diffstat (limited to 'base/server')
-rw-r--r-- | base/server/cmscore/src/com/netscape/cmscore/ldapconn/LdapJssSSLSocketFactory.java | 7 |
1 files changed, 3 insertions, 4 deletions
diff --git a/base/server/cmscore/src/com/netscape/cmscore/ldapconn/LdapJssSSLSocketFactory.java b/base/server/cmscore/src/com/netscape/cmscore/ldapconn/LdapJssSSLSocketFactory.java index 4d9e60251..720882a15 100644 --- a/base/server/cmscore/src/com/netscape/cmscore/ldapconn/LdapJssSSLSocketFactory.java +++ b/base/server/cmscore/src/com/netscape/cmscore/ldapconn/LdapJssSSLSocketFactory.java @@ -51,12 +51,11 @@ public class LdapJssSSLSocketFactory implements LDAPSSLSocketFactoryExt { SSLSocket s = null; try { - SSLSocket.enableSSL2Default(false); + /* + * let inherit TLS range and cipher settings + */ s = new SSLSocket(host, port); s.setUseClientMode(true); - s.enableSSL2(false); - //TODO Do we really want to set the default each time? - SSLSocket.enableSSL2Default(false); s.enableV2CompatibleHello(false); SSLHandshakeCompletedListener listener = null; |