Github user jeking3 commented on the issue:
https://github.com/apache/thrift/pull/1185
One issue I found was that TLSv1_2 was being specified. We use SSLv23 with
SSLv2 and SSLv3 disabled; this allows OpenSSL to negotiate at the highest
possible level including TLSv1.2. So I changed the c_glib ssl client socket
code to use SSLTLS as the default protocol (which is SSLv23 as described above).
At that point I expected it to interop with the python ssl server in make
cross. The docker image has python 2.7.6 and there was some conditional code
in the python server class that seems to be restricting it to TLSv1_0
specifically. I set it to use the same logic (SSLv23 with v2 and v3 disabled).
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at [email protected] or file a JIRA ticket
with INFRA.
---
