You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@cxf.apache.org by co...@apache.org on 2014/10/22 11:19:23 UTC
git commit: Disable SSLv2Hello
Repository: cxf
Updated Branches:
refs/heads/master 83a241c02 -> 0d6384679
Disable SSLv2Hello
Project: http://git-wip-us.apache.org/repos/asf/cxf/repo
Commit: http://git-wip-us.apache.org/repos/asf/cxf/commit/0d638467
Tree: http://git-wip-us.apache.org/repos/asf/cxf/tree/0d638467
Diff: http://git-wip-us.apache.org/repos/asf/cxf/diff/0d638467
Branch: refs/heads/master
Commit: 0d63846798b590255c45463359e2cb1a28e4d3cb
Parents: 83a241c
Author: Colm O hEigeartaigh <co...@apache.org>
Authored: Wed Oct 22 10:19:02 2014 +0100
Committer: Colm O hEigeartaigh <co...@apache.org>
Committed: Wed Oct 22 10:19:02 2014 +0100
----------------------------------------------------------------------
.../apache/cxf/transport/http_jetty/JettyHTTPServerEngine.java | 3 +++
1 file changed, 3 insertions(+)
----------------------------------------------------------------------
http://git-wip-us.apache.org/repos/asf/cxf/blob/0d638467/rt/transports/http-jetty/src/main/java/org/apache/cxf/transport/http_jetty/JettyHTTPServerEngine.java
----------------------------------------------------------------------
diff --git a/rt/transports/http-jetty/src/main/java/org/apache/cxf/transport/http_jetty/JettyHTTPServerEngine.java b/rt/transports/http-jetty/src/main/java/org/apache/cxf/transport/http_jetty/JettyHTTPServerEngine.java
index 6fc1f41..0d5904d 100644
--- a/rt/transports/http-jetty/src/main/java/org/apache/cxf/transport/http_jetty/JettyHTTPServerEngine.java
+++ b/rt/transports/http-jetty/src/main/java/org/apache/cxf/transport/http_jetty/JettyHTTPServerEngine.java
@@ -675,6 +675,9 @@ public class JettyHTTPServerEngine
if (!"SSLv3".equals(proto)) {
scf.addExcludeProtocols("SSLv3");
}
+ if (!"SSLv2Hello".equals(proto)) {
+ scf.addExcludeProtocols("SSLv2Hello");
+ }
SSLContext context = tlsServerParameters.getJsseProvider() == null
? SSLContext.getInstance(proto)