xCAT/xcat-core
2
0
Fork 0
mirror of https://github.com/xcat2/xcat-core.git synced 2025-11-01 11:52:31 +00:00
Code Issues Releases Wiki Activity

Explicitly undef the cipher list

Browse Source 
SuSE mandates a list.  That list does *not* allow
TLSv1.2 ciphers, so explicitly put the fate of
the connection in the server's hands.
This commit is contained in:
Jarrod Johnson
2018-06-08 10:16:53 -04:00
parent 4da0a96066
commit 5413980ba0
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
perl-xCAT/xCAT/Client.pm
View File

@@ -260,6 +260,7 @@ sub submit_request {
SSL_ca_file => $cafile,
SSL_verify_mode => SSL_VERIFY_PEER,
SSL_verifycn_scheme => "none",
SSL_cipher_list => undef,
SSL_use_cert => 1,
Timeout => 0,
%sslargs,
@@ -270,6 +271,7 @@ sub submit_request {
#need to specify SSL_verify_mode => SSL_VERIFY_NONE explicitly
$client = IO::Socket::SSL->start_SSL($pclient,
SSL_verify_mode => SSL_VERIFY_NONE,
SSL_cipher_list => undef,
Timeout => 0,
);
}