Mercurial > pidgin
comparison libpurple/plugins/ssl/ssl-nss.c @ 27436:b171a80dff25
disapproval of revision '39b90ee2c4d49d80e4f9befbc80cb9684cf05209'
This was a bad recommendation on my part. Let's handle older certificate algorithms a different way.
author | Paul Aurich <paul@darkrain42.org> |
---|---|
date | Wed, 22 Jul 2009 06:10:17 +0000 |
parents | 0491bd8a2a60 |
children | 31905a0d1c9d |
comparison
equal
deleted
inserted
replaced
27433:0491bd8a2a60 | 27436:b171a80dff25 |
---|---|
149 SSL_CipherPrefSetDefault(TLS_RSA_WITH_AES_128_CBC_SHA, 1); | 149 SSL_CipherPrefSetDefault(TLS_RSA_WITH_AES_128_CBC_SHA, 1); |
150 SSL_CipherPrefSetDefault(SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA, 1); | 150 SSL_CipherPrefSetDefault(SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA, 1); |
151 SSL_CipherPrefSetDefault(SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA, 1); | 151 SSL_CipherPrefSetDefault(SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA, 1); |
152 SSL_CipherPrefSetDefault(SSL_DHE_RSA_WITH_DES_CBC_SHA, 1); | 152 SSL_CipherPrefSetDefault(SSL_DHE_RSA_WITH_DES_CBC_SHA, 1); |
153 SSL_CipherPrefSetDefault(SSL_DHE_DSS_WITH_DES_CBC_SHA, 1); | 153 SSL_CipherPrefSetDefault(SSL_DHE_DSS_WITH_DES_CBC_SHA, 1); |
154 | |
155 #ifdef NEED_NSS_WEAK_ALGORITHMS | |
156 /* Enable some weaker algorithms for XMPP and MSN */ | |
157 NSS_SetAlgorithmPolicy(SEC_OID_PKCS1_MD2_WITH_RSA_ENCRYPTION, NSS_USE_ALG_IN_CERT_SIGNATURE, 0); | |
158 NSS_SetAlgorithmPolicy(SEC_OID_PKCS1_MD4_WITH_RSA_ENCRYPTION, NSS_USE_ALG_IN_CERT_SIGNATURE, 0); | |
159 #endif | |
160 | 154 |
161 _identity = PR_GetUniqueIdentity("Purple"); | 155 _identity = PR_GetUniqueIdentity("Purple"); |
162 _nss_methods = PR_GetDefaultIOMethods(); | 156 _nss_methods = PR_GetDefaultIOMethods(); |
163 } | 157 } |
164 | 158 |