Don't use SSL anymore to avoid POODLE attack

author Dani Megert <Daniel_Megert@ch.ibm.com>

Wed, 5 Nov 2014 16:05:34 +0000 (17:05 +0100)

committer Matthias Sohn <matthias.sohn@sap.com>

Thu, 6 Nov 2014 23:20:25 +0000 (00:20 +0100)
author Dani Megert <Daniel_Megert@ch.ibm.com>
Wed, 5 Nov 2014 16:05:34 +0000 (17:05 +0100)
committer Matthias Sohn <matthias.sohn@sap.com>
Thu, 6 Nov 2014 23:20:25 +0000 (00:20 +0100)
diff --git a/org.eclipse.jgit/src/org/eclipse/jgit/transport/http/JDKHttpConnection.java b/org.eclipse.jgit/src/org/eclipse/jgit/transport/http/JDKHttpConnection.java

index bde5e1da260d074f9899f4e6d6cf4bd56d3b9316..ed37feab3feb92d269de6a50b026ef2db592a378 100644 (file)
--- a/org.eclipse.jgit/src/org/eclipse/jgit/transport/http/JDKHttpConnection.java
+++ b/org.eclipse.jgit/src/org/eclipse/jgit/transport/http/JDKHttpConnection.java
@@ -186,7 +186,7 @@ public class JDKHttpConnection implements HttpConnection {
         public void configure(KeyManager[] km, TrustManager[] tm,
                         SecureRandom random) throws NoSuchAlgorithmException,
                         KeyManagementException {
-               SSLContext ctx = SSLContext.getInstance("SSL"); //$NON-NLS-1$
+               SSLContext ctx = SSLContext.getInstance("TLS"); //$NON-NLS-1$
                 ctx.init(km, tm, random);
                 ((HttpsURLConnection) wrappedUrlConnection).setSSLSocketFactory(ctx
                                 .getSocketFactory());
author	Dani Megert <Daniel_Megert@ch.ibm.com>
	Wed, 5 Nov 2014 16:05:34 +0000 (17:05 +0100)
committer	Matthias Sohn <matthias.sohn@sap.com>
	Thu, 6 Nov 2014 23:20:25 +0000 (00:20 +0100)