You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@cassandra.apache.org by "Brad Schoening (Jira)" <ji...@apache.org> on 2022/02/09 01:42:00 UTC

[jira] [Updated] (CASSANDRA-17365) Remove deprecated version specific TSL usage in CQLSH

     [ https://issues.apache.org/jira/browse/CASSANDRA-17365?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Brad Schoening updated CASSANDRA-17365:
---------------------------------------
    Impacts: Security  (was: None)

> Remove deprecated version specific TSL usage in CQLSH
> -----------------------------------------------------
>
>                 Key: CASSANDRA-17365
>                 URL: https://issues.apache.org/jira/browse/CASSANDRA-17365
>             Project: Cassandra
>          Issue Type: Task
>            Reporter: Brad Schoening
>            Priority: Normal
>
> According to [https://docs.python.org/3/library/ssl.html] use of explicit TLS versions v1, v1_1 and v1_2 has been deprecated in Python 3.6+ in favor of auto-negotiation of the highest protocol version that both the client and server support.
>  * {{{}ssl.{}}}{{{}PROTOCOL_TLSv1{}}}
>  * {{{}ssl.{}}}{{{}PROTOCOL_TLSv1_1{}}}
>  * {{{}ssl.{}}}{{{}PROTOCOL_TLSv1_2{}}}
> {{{}{}}}The above are deprecated since version 3.6: OpenSSL has deprecated all version specific protocols.
> This affects cqlshlib/sslhandling.py and cqlshlib/test/test_sslhandling.py.
>  



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

---------------------------------------------------------------------
To unsubscribe, e-mail: commits-unsubscribe@cassandra.apache.org
For additional commands, e-mail: commits-help@cassandra.apache.org