Merge "Bug: 476863 - Android Service is limited to SSL 3.0 I've set the SSL/TLS version to TLSv1. This is an immediate improvement over the very insecure SSLv1 that was previously allowed. This should allow TLSv1 TLSV1.1 and TLSv1.2 Signed-off-by: James Sutton <james.sutton@uk.ibm.com>" into develop

Ian Craggs · Gerrit Code Review @ Eclipse.org · commit cd8642a75a60 · 2015-11-26T17:41:24.000-05:00
diff --git a/org.eclipse.paho.android.service/org.eclipse.paho.android.service/src/main/java/org/eclipse/paho/android/service/MqttAndroidClient.java b/org.eclipse.paho.android.service/org.eclipse.paho.android.service/src/main/java/org/eclipse/paho/android/service/MqttAndroidClient.java
@@ -1667,7 +1667,7 @@ public SSLSocketFactory getSSLSocketFactory (InputStream keyStore, String passwo
 		 TrustManagerFactory tmf = TrustManagerFactory.getInstance("X509");
 		 tmf.init(ts);
 		 TrustManager[] tm = tmf.getTrustManagers();
-		 ctx = SSLContext.getInstance("SSL");
+		 ctx = SSLContext.getInstance("TLSv1");
 		 ctx.init(null, tm, null);
 		 
 		 sslSockFactory=ctx.getSocketFactory();
