From b6b691b9959f638af7df3624166cd0f4acbf8339 Mon Sep 17 00:00:00 2001
From: Varun Lodaya <Varun_Lodaya@symantec.com>
Date: Thu, 16 Jul 2015 12:42:25 -0700
Subject: [PATCH] Fix for poodle vulnerability; ChangeId:
 I9432d035eb59b1ff53cb5d33350cd5f8063e077c; Closes-Bug: #1475392

Change-Id: I390a77261bc0d3257108c06951c79f1d2c3dadaa
---
 .../opencontrail_vrouter_netns/haproxy_config.py                | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/vnsw/opencontrail-vrouter-netns/opencontrail_vrouter_netns/haproxy_config.py b/src/vnsw/opencontrail-vrouter-netns/opencontrail_vrouter_netns/haproxy_config.py
index 4785efb5584..6f7c6cf4102 100644
--- a/src/vnsw/opencontrail-vrouter-netns/opencontrail_vrouter_netns/haproxy_config.py
+++ b/src/vnsw/opencontrail-vrouter-netns/opencontrail_vrouter_netns/haproxy_config.py
@@ -72,7 +72,7 @@ def _set_frontend(config):
     port = config['vip']['port']
     ssl = ''
     if config['vip']['protocol'] == PROTO_HTTPS:
-        ssl = 'ssl crt %s' % config['ssl-crt']
+        ssl = 'ssl crt %s no-sslv3' % config['ssl-crt']
     conf = [
         'frontend %s' % config['vip']['id'],
         'option tcplog',