commit | 3e131a35e3166f1615611b4df30b1772812b6016 | [log] [tgz] |
---|---|---|
author | Dani Megert <Daniel_Megert@ch.ibm.com> | Wed Nov 05 17:05:34 2014 +0100 |
committer | Matthias Sohn <matthias.sohn@sap.com> | Fri Nov 07 00:20:25 2014 +0100 |
tree | 8d9c20d665f8c744a87101431ff2c70ec2ff31b7 | |
parent | dcb52291a9f1feacf666e592af64cb688ee4bc50 [diff] |
Don't use SSL anymore to avoid POODLE attack For details about poodle see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566 Bug 450170 Change-Id: Ib169e88d9d51f4d0e6caa3a498f48edc81e0991d Signed-off-by: Dani Megert <Daniel_Megert@ch.ibm.com> Signed-off-by: Matthias Sohn <matthias.sohn@sap.com>
diff --git a/org.eclipse.jgit/src/org/eclipse/jgit/transport/http/JDKHttpConnection.java b/org.eclipse.jgit/src/org/eclipse/jgit/transport/http/JDKHttpConnection.java index bde5e1d..ed37fea 100644 --- a/org.eclipse.jgit/src/org/eclipse/jgit/transport/http/JDKHttpConnection.java +++ b/org.eclipse.jgit/src/org/eclipse/jgit/transport/http/JDKHttpConnection.java
@@ -186,7 +186,7 @@ public void configure(KeyManager[] km, TrustManager[] tm, SecureRandom random) throws NoSuchAlgorithmException, KeyManagementException { - SSLContext ctx = SSLContext.getInstance("SSL"); //$NON-NLS-1$ + SSLContext ctx = SSLContext.getInstance("TLS"); //$NON-NLS-1$ ctx.init(km, tm, random); ((HttpsURLConnection) wrappedUrlConnection).setSSLSocketFactory(ctx .getSocketFactory());