Mercurial > pidgin.yaz
diff libpurple/plugins/ssl/ssl-nss.c @ 27510:0491bd8a2a60
Enable the weaker MD2 and MD4 with RSA encryption signing algorithms that
are now disabled in NSS 3.12.3. This allows signing in without errors on at
least MSN, and some XMPP servers.
Fixes #9360.
| author | Elliott Sales de Andrade <qulogic@pidgin.im> |
|---|---|
| date | Sat, 11 Jul 2009 06:46:21 +0000 |
| parents | ab5a49e46e38 |
| children | 199cf148cdf8 b171a80dff25 |
line wrap: on
line diff
--- a/libpurple/plugins/ssl/ssl-nss.c Fri Jul 10 00:51:31 2009 +0000 +++ b/libpurple/plugins/ssl/ssl-nss.c Sat Jul 11 06:46:21 2009 +0000 @@ -152,6 +152,12 @@ SSL_CipherPrefSetDefault(SSL_DHE_RSA_WITH_DES_CBC_SHA, 1); SSL_CipherPrefSetDefault(SSL_DHE_DSS_WITH_DES_CBC_SHA, 1); +#ifdef NEED_NSS_WEAK_ALGORITHMS + /* Enable some weaker algorithms for XMPP and MSN */ + NSS_SetAlgorithmPolicy(SEC_OID_PKCS1_MD2_WITH_RSA_ENCRYPTION, NSS_USE_ALG_IN_CERT_SIGNATURE, 0); + NSS_SetAlgorithmPolicy(SEC_OID_PKCS1_MD4_WITH_RSA_ENCRYPTION, NSS_USE_ALG_IN_CERT_SIGNATURE, 0); +#endif + _identity = PR_GetUniqueIdentity("Purple"); _nss_methods = PR_GetDefaultIOMethods(); }