]> granicus.if.org Git - icinga2/commit
projects / icinga2 / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 87817bf) | patch
Support TLSv1.1 and TLSv1.2 for the cluster transport encryption
authorTobias von der Krone <tobias.vonderkrone@profitbricks.com>
Tue, 19 Jan 2016 20:04:59 +0000 (21:04 +0100)
committerGunnar Beutner <gunnar@beutner.name>
Tue, 23 Feb 2016 09:50:23 +0000 (10:50 +0100)
commitae5033499595543d66bbefc6793d70809e5836b5
tree6233fef8616333f717f1e46a7d1a4723b4b6bbd9tree | snapshot
parent87817bfc8a898f82760c570943ef9d76667ff43ecommit | diff
Support TLSv1.1 and TLSv1.2 for the cluster transport encryption

From https://wiki.openssl.org/index.php/SSL/TLS_Client:
SSLv23_method specifies the protocols used and behavior of the handshake.
The method essentially means SSLv2 or above, and includes the TLS protocols.
The protocols are further tuned through SSL/TLS options. By using
SSLv23_method (and removing the SSL protocols with SSL_OP_NO_SSLv2 and
SSL_OP_NO_SSLv3), then you will use TLS v1.0 and above, including TLS v1.2.
You will also use a TLS handshake in the TLS Record.

If you use TLSv1_method, then you will only use TLS v1.0.

fixes #10988
lib/base/tlsutility.cpp diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.