[Pidgin] #3456: TLS handshake error(unexpected length packet) when recieving MSN contact list
Pidgin
trac at pidgin.im
Wed Feb 4 15:02:17 EST 2009
#3456: TLS handshake error(unexpected length packet) when recieving MSN contact
list
--------------------------------------+-------------------------------------
Reporter: bsdunx | Owner: khc
Type: defect | Status: new
Milestone: | Component: MSN
Version: 2.2.1 | Resolution:
Keywords: gnutls tls handshake msn | Launchpad_bug:
--------------------------------------+-------------------------------------
Comment(by gagern):
The patch I just attached is something of a middle road. It limits MSN
soap connections to SSL 3 or TLS 1.0. Connections using TLS 1.1 are not
even tried, which avoids much of the machinery that would be needed for
bug detection and fallback. On the other hand, the version limit only
applies to MSN, therefore other protocols with proper server
implementations won't suffer. Verbose comments in multiple suitable places
indicate the workaround as such and suggest its reevaluation.
As the API of libpurple changes, it might that all this will have to wait
until 2.6.0. On the other hand, the implementation of purple_ssl_connect
stays compatible, and instances of PurpleSslConnection should only ever be
passed around as pointers, so a change in its size should not matter. If
you decide to include this in 2.5.x, please change the @since comments
accordingly.
By the way, I've tested the patch. Got a successful TLS 1.0 connection to
65.54.170.19. Prooves my point that a successful connection using GnuTLS
is possible.
--
Ticket URL: <http://developer.pidgin.im/ticket/3456#comment:18>
Pidgin <http://pidgin.im>
Pidgin
More information about the Tracker
mailing list