> @@ -63,6 +63,7 @@ public SSLContext get() {
> kmf.init(keyStore.get(), keyStorePassword.toCharArray());
> SSLContext sc = SSLContext.getInstance("TLS");
> sc.init(kmf.getKeyManagers(), trustManager, new SecureRandom());
> + System.setProperty("https.protocols", "TLSv1");
look up what this property actually does. It likely can be represented in
code. System property is a race condition and also pollutes the JVM.
Here is a hint
http://www.oracle.com/technetwork/java/javase/documentation/cve-2014-3566-2342133.html
On Tue, Nov 25, 2014 at 8:44 AM, Andrea Turli <[email protected]>
wrote:
> In
> docker/src/main/java/org/jclouds/docker/suppliers/SSLContextWithKeysSupplier.java:
>
> > @@ -63,6 +63,7 @@ public SSLContext get() {
> > kmf.init(keyStore.get(), keyStorePassword.toCharArray());
> > SSLContext sc = SSLContext.getInstance("TLS");
> > sc.init(kmf.getKeyManagers(), trustManager, new SecureRandom());
> > + System.setProperty("https.protocols", "TLSv1");
>
> I was afraid about that, any suggestions?
>
> —
> Reply to this email directly or view it on GitHub
> <https://github.com/jclouds/jclouds-labs/pull/113/files#r20875748>.
>
---
Reply to this email directly or view it on GitHub:
https://github.com/jclouds/jclouds-labs/pull/113/files#r20880849
