[Pidgin] #15909: [Patch] Support TLS 1.1/1.2 on NSS

Pidgin trac at pidgin.im
Thu Feb 6 13:36:08 EST 2014

#15909: [Patch] Support TLS 1.1/1.2 on NSS
 Reporter:  elrond       |       Owner:
     Type:  patch        |      Status:  new
Milestone:               |   Component:  libpurple
  Version:  2.10.8       |  Resolution:
 Keywords:  ssl tls nss  |

Comment (by elrond):

 After some lengthy discussion on pidgin-devel, the current consensus seems
 to be:

 1. This should go in soon. Without any config knob for now. The only real
 expected problem are completely broken mitm/ssl proxies.
 2. debug logging is needed.
 3. gnutls should do the same.

 About Logging:
 * I already asked for someone else helping with it. It shouldn't be too
 hard, really.

 About GnuTLS:
 * If one wants to change things, the place is the priority string. One can
 do things like "+TLS-VERS-ALL" which adds everything from SSL3 to TLS1.2.
 * From looking at the GnuTLS sources, this seems to be the default.
 * If this is correct, then all that's needed for (3) above is to verify
 this on the wire.

Ticket URL: <https://developer.pidgin.im/ticket/15909#comment:10>
Pidgin <https://pidgin.im>

More information about the Tracker mailing list