]> granicus.if.org Git - icinga2/commit
projects / icinga2 / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4ce43b8) | patch
Support TLSv1.1 and TLSv1.2 for the cluster transport encryption
authorTobias von der Krone <tobias.vonderkrone@profitbricks.com>
Tue, 19 Jan 2016 20:04:59 +0000 (21:04 +0100)
committerMichael Friedrich <michael.friedrich@netways.de>
Wed, 20 Jan 2016 15:48:00 +0000 (16:48 +0100)
commit1c67bf394cbcc92e103e1c35e4a3b8ee23e8c1bd
tree892a71c6fa017676828bc41d6d7b4b968122150atree | snapshot
parent4ce43b8d02c4792050dcd24f5d6336c5517de93ccommit | diff
Support TLSv1.1 and TLSv1.2 for the cluster transport encryption

From https://wiki.openssl.org/index.php/SSL/TLS_Client:
SSLv23_method specifies the protocols used and behavior of the handshake.
The method essentially means SSLv2 or above, and includes the TLS protocols.
The protocols are further tuned through SSL/TLS options. By using
SSLv23_method (and removing the SSL protocols with SSL_OP_NO_SSLv2 and
SSL_OP_NO_SSLv3), then you will use TLS v1.0 and above, including TLS v1.2.
You will also use a TLS handshake in the TLS Record.

If you use TLSv1_method, then you will only use TLS v1.0.

fixes #10988
lib/base/tlsutility.cpp diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.