Browse Source

Merge branch 'stable-3.5'

* stable-3.5:
  Prepare 3.5.3-SNAPSHOT builds
  JGit v3.5.2.201411120430-r
  Don't use SSL anymore to avoid POODLE attack

Change-Id: Icc8404a94512aae36da83baafb8b10422b7bbf7b
Signed-off-by: Matthias Sohn <matthias.sohn@sap.com>
stable-3.6
Matthias Sohn 10 years ago
parent
commit
0bb212019a
  1. 2
      org.eclipse.jgit/src/org/eclipse/jgit/transport/http/JDKHttpConnection.java

2
org.eclipse.jgit/src/org/eclipse/jgit/transport/http/JDKHttpConnection.java

@ -186,7 +186,7 @@ public class JDKHttpConnection implements HttpConnection {
public void configure(KeyManager[] km, TrustManager[] tm, public void configure(KeyManager[] km, TrustManager[] tm,
SecureRandom random) throws NoSuchAlgorithmException, SecureRandom random) throws NoSuchAlgorithmException,
KeyManagementException { KeyManagementException {
SSLContext ctx = SSLContext.getInstance("SSL"); //$NON-NLS-1$ SSLContext ctx = SSLContext.getInstance("TLS"); //$NON-NLS-1$
ctx.init(km, tm, random); ctx.init(km, tm, random);
((HttpsURLConnection) wrappedUrlConnection).setSSLSocketFactory(ctx ((HttpsURLConnection) wrappedUrlConnection).setSSLSocketFactory(ctx
.getSocketFactory()); .getSocketFactory());

Loading…
Cancel
Save