Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Conditionally use HTTPS based on platform_version #240

Merged
merged 1 commit into from Oct 15, 2015
Merged

Conditionally use HTTPS based on platform_version #240

merged 1 commit into from Oct 15, 2015

Conversation

miketheman
Copy link
Contributor

Following #225.

CentOS 5 and earlier use an older version of yum, which embeds an older
version of M2Crypto, that when used against a modern cipher set (i.e. no
sslv3), fails when trying to retrieve the signing key with:

    ...
      File "/usr/lib64/python2.4/site-packages/M2Crypto/SSL/Connection.py",
line 167, in connect_ssl
        return m2.ssl_connect(self.ssl, self._timeout)
    M2Crypto.SSL.SSLError: sslv3 alert handshake failure

There doesn't seem to be any patches to update this behavior, so instead
switch on SSL for any system older than 6.x, continue to use http to
retrieve the key.

/cc @elafarge

@miketheman
Conditionally use HTTPS based on platform_version
aa63739 
Following #225.

CentOS 5 and earlier use an older version of yum, which embeds an older
version of M2Crypto, that when used against a modern cipher set (i.e. no
sslv3), fails when trying to retrieve the signing key with:

    ...
      File "/usr/lib64/python2.4/site-packages/M2Crypto/SSL/Connection.py",
line 167, in connect_ssl
        return m2.ssl_connect(self.ssl, self._timeout)
    M2Crypto.SSL.SSLError: sslv3 alert handshake failure

There doesn't seem to be any patches to update this behavior, so instead
switch on SSL for any system older than 6.x, continue to use http to
retrieve the key.
@miketheman miketheman added the bug label Oct 15, 2015
@miketheman miketheman added this to the Next minor milestone Oct 15, 2015
@miketheman miketheman self-assigned this Oct 15, 2015
miketheman added a commit that referenced this pull request Oct 15, 2015
@miketheman
Merge pull request #240 from DataDog/miketheman/yum_ssl
77bcca8 
Conditionally use HTTPS based on platform_version
@miketheman miketheman merged commit 77bcca8 into master Oct 15, 2015
@miketheman miketheman deleted the miketheman/yum_ssl branch October 15, 2015 16:17
@olivielpeau olivielpeau mentioned this pull request Dec 3, 2015
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@miketheman miketheman

Labels
bug
Projects
None yet
Milestone
2.2.0
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@miketheman