[Pidgin] #15909: [Patch] Support TLS 1.1/1.2 on NSS
Pidgin
trac at pidgin.im
Thu Feb 6 13:36:08 EST 2014
#15909: [Patch] Support TLS 1.1/1.2 on NSS
-------------------------+------------------------
Reporter: elrond | Owner:
Type: patch | Status: new
Milestone: | Component: libpurple
Version: 2.10.8 | Resolution:
Keywords: ssl tls nss |
-------------------------+------------------------
Comment (by elrond):
After some lengthy discussion on pidgin-devel, the current consensus seems
to be:
1. This should go in soon. Without any config knob for now. The only real
expected problem are completely broken mitm/ssl proxies.
2. debug logging is needed.
3. gnutls should do the same.
About Logging:
* I already asked for someone else helping with it. It shouldn't be too
hard, really.
About GnuTLS:
* If one wants to change things, the place is the priority string. One can
do things like "+TLS-VERS-ALL" which adds everything from SSL3 to TLS1.2.
* From looking at the GnuTLS sources, this seems to be the default.
* If this is correct, then all that's needed for (3) above is to verify
this on the wire.
--
Ticket URL: <https://developer.pidgin.im/ticket/15909#comment:10>
Pidgin <https://pidgin.im>
Pidgin
More information about the Tracker
mailing list