From 280a77fe77f9ac811107018127151a31f77ae033 Mon Sep 17 00:00:00 2001
From: Partha Aji <paji@redhat.com>
Date: Tue, 18 Nov 2014 11:32:30 -0500
Subject: [PATCH] Fixes #8441 - Can specify cdn ssl version via config

One can now specify the ssl version used to connect to the cdn
---
 app/lib/katello/resources/cdn.rb | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/app/lib/katello/resources/cdn.rb b/app/lib/katello/resources/cdn.rb
index fad56687749..2ddc7582bad 100644
--- a/app/lib/katello/resources/cdn.rb
+++ b/app/lib/katello/resources/cdn.rb
@@ -57,6 +57,13 @@ def initialize(url, options = {})
           @net.key = options[:ssl_client_key]
           @net.ca_file = options[:ssl_ca_file]
 
+          # NOTE: This was added because some proxies dont support SSLv23 and do not handle TLS 1.2
+          # Valid values in ruby 1.9.3 are 'SSLv23' or 'TLSV1'
+          # Run the following command in rails console to figure out other
+          # valid constants in other ruby versions
+          # "OpenSSL::SSL::SSLContext::METHODS"
+          @net.ssl_version = Katello.config.cdn_ssl_version if Katello.config.key?(:cdn_ssl_version)
+
           if (options[:verify_ssl] == false) || (options[:verify_ssl] == OpenSSL::SSL::VERIFY_NONE)
             @net.verify_mode = OpenSSL::SSL::VERIFY_NONE
           elsif options[:verify_ssl].is_a? Integer