use a preferable protocol that works on jvm 1.6

yadvr · yadvr · commit f5f6c2d1a744 · 2015-01-28T13:41:00.000+05:30
Signed-off-by: Rohit Yadav &lt;rohit.yadav@shapeblue.com&gt;
diff --git a/plugins/event-bus/rabbitmq/src/org/apache/cloudstack/mom/rabbitmq/RabbitMQEventBus.java b/plugins/event-bus/rabbitmq/src/org/apache/cloudstack/mom/rabbitmq/RabbitMQEventBus.java
@@ -47,7 +47,7 @@ public class RabbitMQEventBus extends ManagerBase implements EventBus {
     private static Integer port;
     private static String username;
     private static String password;
-    private static String secureProtocol = "TLSv1.2";
+    private static String secureProtocol = "TLSv1";
 
     public static void setVirtualHost(String virtualHost) {
         RabbitMQEventBus.virtualHost = virtualHost;
diff --git a/services/console-proxy-rdp/rdpconsole/src/main/java/streamer/SocketWrapperImpl.java b/services/console-proxy-rdp/rdpconsole/src/main/java/streamer/SocketWrapperImpl.java
@@ -48,9 +48,6 @@ public class SocketWrapperImpl extends PipelineImpl implements SocketWrapper {
 
     protected SSLSocket sslSocket;
 
-    protected String SSL_VERSION_TO_USE = "TLSv1.2";
-    //protected String SSL_VERSION_TO_USE = "SSLv3";
-
     protected SSLState sslState;
 
     public SocketWrapperImpl(String id, SSLState sslState) {
@@ -135,7 +132,7 @@ public void upgradeToSsl() {
             // Use most secure implementation of SSL available now.
             // JVM will try to negotiate TLS1.2, then will fallback to TLS1.0, if
             // TLS1.2 is not supported.
-            SSLContext sslContext = SSLContext.getInstance(SSL_VERSION_TO_USE);
+            SSLContext sslContext = SSLUtils.getSSLContext();
 
             // Trust all certificates (FIXME: insecure)
             sslContext.init(null, new TrustManager[] {new TrustAllX509TrustManager(sslState)}, null);
diff --git a/utils/src/org/apache/cloudstack/utils/security/SSLUtils.java b/utils/src/org/apache/cloudstack/utils/security/SSLUtils.java
@@ -42,10 +42,10 @@ public static String[] getSupportedProtocols(String[] protocols) {
     }
 
     public static SSLContext getSSLContext() throws NoSuchAlgorithmException {
-        return SSLContext.getInstance("TLSv1.2");
+        return SSLContext.getInstance("TLSv1");
     }
 
     public static SSLContext getSSLContext(String provider) throws NoSuchAlgorithmException, NoSuchProviderException {
-        return SSLContext.getInstance("TLSv1.2", provider);
+        return SSLContext.getInstance("TLSv1", provider);
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -42,10 +42,10 @@ public static String[] getSupportedProtocols(String[] protocols) {`
`42`	`42`	`}`
`43`	`43`
`44`	`44`	`public static SSLContext getSSLContext() throws NoSuchAlgorithmException {`
`45`		`- return SSLContext.getInstance("TLSv1.2");`
	`45`	`+ return SSLContext.getInstance("TLSv1");`
`46`	`46`	`}`
`47`	`47`
`48`	`48`	`public static SSLContext getSSLContext(String provider) throws NoSuchAlgorithmException, NoSuchProviderException {`
`49`		`- return SSLContext.getInstance("TLSv1.2", provider);`
	`49`	`+ return SSLContext.getInstance("TLSv1", provider);`
`50`	`50`	`}`
`51`	`51`	`}`