Switch to TLSv1 as SSLv3 is considered insecure and is disabled by default
Rabbitmq won't talk to us anymore if we try to use SSLv3 as it disabled
support for SSLv3. Openstack components use python's openssl
implementation which does not support TLSv1.1 and TLSv1.2 yet so we
just switch to TLSv1. Support for newer TLS should come with python
2.7.9+
Closes-Bug: #1409667
Change-Id: I949421cd092a31eab3ef7f2194c4da3a9dbac818
(cherry picked from commit c231da8de6d3ef14a23259d1d8e05c7b6c6d83ba)
Reviewed: https:/ /review. openstack. org/146882 /git.openstack. org/cgit/ stackforge/ puppet- heat/commit/ ?id=ef2f0676862 bf7b07a8576937b bf4d6a77d5d45b
Committed: https:/
Submitter: Jenkins
Branch: stable/juno
commit ef2f0676862bf7b 07a8576937bbf4d 6a77d5d45b
Author: Lukas Bezdicka <email address hidden>
Date: Fri Jan 2 20:27:10 2015 +0100
Switch to TLSv1 as SSLv3 is considered insecure and is disabled by default
Rabbitmq won't talk to us anymore if we try to use SSLv3 as it disabled
support for SSLv3. Openstack components use python's openssl
implementation which does not support TLSv1.1 and TLSv1.2 yet so we
just switch to TLSv1. Support for newer TLS should come with python
2.7.9+
Closes-Bug: #1409667 eab3ef7f2194c4d a3a9dbac818 4a23259d1d8e05c 7b6c6d83ba)
Change-Id: I949421cd092a31
(cherry picked from commit c231da8de6d3ef1