[Freeipa-devel] [PATCH] 1111 Use NSS protocol range setter
Rob Crittenden
rcritten at redhat.com
Thu Nov 20 22:26:57 UTC 2014
Use new capability in python-nss-0.16 to use the NSS protocol range
setter. This lets us enable TLSv1.1 and TLSv1.2 for client connections.
I made this configurable via tls_protocol_range in case somebody wants
to override it.
There isn't a whole ton of error handling on bad input but there is
enough, I think, to point the user in the the right direction.
Added a couple more lines of debug output to include the negotiated
protocol and cipher.
rob
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-rcrit-1111-protocol.patch
Type: text/x-patch
Size: 6481 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20141120/dda4d5bd/attachment.bin>
More information about the Freeipa-devel
mailing list