From a21a3d38e362626381e0a47cc9fbd349b31b0449 Mon Sep 17 00:00:00 2001 From: Neil Fuller Date: Wed, 10 Dec 2014 16:15:33 +0000 Subject: [PATCH] Change COMPATIBLE_TLS to be TLSv1.0 and not SSLv3 Based on a discussion with Jesse Wilson during https://github.com/square/okhttp/pull/1189. --- okhttp/src/main/java/com/squareup/okhttp/ConnectionSpec.java | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/okhttp/src/main/java/com/squareup/okhttp/ConnectionSpec.java b/okhttp/src/main/java/com/squareup/okhttp/ConnectionSpec.java index ba9d548377ae..04b8de414d32 100644 --- a/okhttp/src/main/java/com/squareup/okhttp/ConnectionSpec.java +++ b/okhttp/src/main/java/com/squareup/okhttp/ConnectionSpec.java @@ -53,13 +53,13 @@ public final class ConnectionSpec { CipherSuite.TLS_RSA_WITH_RC4_128_SHA, CipherSuite.TLS_RSA_WITH_RC4_128_MD5 ) - .tlsVersions(TlsVersion.TLS_1_2, TlsVersion.TLS_1_1, TlsVersion.TLS_1_0, TlsVersion.SSL_3_0) + .tlsVersions(TlsVersion.TLS_1_2, TlsVersion.TLS_1_1, TlsVersion.TLS_1_0) .supportsTlsExtensions(true) .build(); /** A backwards-compatible fallback connection for interop with obsolete servers. */ public static final ConnectionSpec COMPATIBLE_TLS = new Builder(MODERN_TLS) - .tlsVersions(TlsVersion.SSL_3_0) + .tlsVersions(TlsVersion.TLS_1_0) .build(); /** Unencrypted, unauthenticated connections for {@code http:} URLs. */