Switch to TLSv1 as SSLv3 is considered insecure and is disabled by default
Rabbitmq won't talk to us anymore if we try to use SSLv3 as it disabled
support for SSLv3. Openstack components use python's openssl
implementation which does not support TLSv1.1 and TLSv1.2 yet so we
just switch to TLSv1. Support for newer TLS should come with python
2.7.9+
Reviewed: https:/ /review. openstack. org/144797 /git.openstack. org/cgit/ stackforge/ puppet- keystone/ commit/ ?id=370f2aa2425 6dc54f363216ddc 3009c199595d14
Committed: https:/
Submitter: Jenkins
Branch: master
commit 370f2aa24256dc5 4f363216ddc3009 c199595d14
Author: Lukas Bezdicka <email address hidden>
Date: Fri Jan 2 20:48:44 2015 +0100
Switch to TLSv1 as SSLv3 is considered insecure and is disabled by default
Rabbitmq won't talk to us anymore if we try to use SSLv3 as it disabled
support for SSLv3. Openstack components use python's openssl
implementation which does not support TLSv1.1 and TLSv1.2 yet so we
just switch to TLSv1. Support for newer TLS should come with python
2.7.9+
Closes-Bug: #1409667 b40056b9928971e 63fc1b76a3b
Change-Id: I852cf4d68de6d6