Overview

File perl-ldap-default-sslversion.patch of Package perl-ldap.15375

From b22d1f5fb541921e16b5c8368f933088399032c8 Mon Sep 17 00:00:00 2001
From: Peter Marschall <peter@adpm.de>
Date: Thu, 2 Apr 2015 14:20:50 +0200
Subject: [PATCH] LDAP.pm: do not set default sslversion for start_tls

Instead of setting a default sslversion for start_tls, rely on the default
value used by IO::Socket::SSL.
In addition, extend documentation slightly.
---
 lib/Net/LDAP.pm  | 1 -
 lib/Net/LDAP.pod | 8 +++++---
 2 files changed, 5 insertions(+), 4 deletions(-)

Index: perl-ldap-0.44/lib/Net/LDAP.pm
===================================================================
--- perl-ldap-0.44.orig/lib/Net/LDAP.pm
+++ perl-ldap-0.44/lib/Net/LDAP.pm
@@ -1037,7 +1037,6 @@ sub start_tls {
 
   delete $ldap->{net_ldap_root_dse};
 
-  $arg->{sslversion} = 'tlsv1' unless defined $arg->{sslversion};
   $arg->{sslserver} = $ldap->{'net_ldap_host'} unless defined $arg->{sslserver};
 
   IO::Socket::SSL::context_init( { _SSL_context_init_args($arg) } );
Index: perl-ldap-0.44/lib/Net/LDAP.pod
===================================================================
--- perl-ldap-0.44.orig/lib/Net/LDAP.pod
+++ perl-ldap-0.44/lib/Net/LDAP.pod
@@ -755,10 +755,12 @@ The server must provide a certificate, a
 If you set verify to optional or require, you must also set either
 cafile or capath. The most secure option is B<require>.
 
-=item sslversion =E<gt> 'sslv2' | 'sslv3' | 'sslv2/3' | 'tlsv1'
+=item sslversion =E<gt> 'sslv2' | 'sslv3' | 'sslv2/3' | 'tlsv1' | 'tlsv1_1' | 'tlsv1_2'
 
-This defines the version of the SSL/TLS protocol to use. Defaults to
-B<'tlsv1'>.
+This defines the version of the SSL/TLS protocol to use.
+Default is to use the value that L<IO::Socket::SSL> uses as default.
+
+See L<IO::Socket::SSL/SSL_version> for more details.
 
 =item ciphers =E<gt> CIPHERS
openSUSE Build Service is sponsored by
Places