Add SSL protocol version fallback for IMAP servers not supporting it correctly

Review Request #107099 - Created Oct. 28, 2012 and submitted

Information
Stefan Brüns
kdepimlibs
306964, 308854
Reviewers
kdepimlibs
adawit, ahartmetz, ervin, thiago
Normally any server greeted with an TLS1.2 (protocol version 03.03) ClientHello should answer with an ServerHello indicating the highest common version. Unfortunately there are some servers out there not doing this, exiting with an fatal TLS alert.
In this case, try again with TLS1.0, SSLv3 and SSLv2.

This happens as openSSL 1.0.1 supports TLS1.1/1.2, which will be used if KTcpSocket::AnySslVersion is used. openSSL <= 1.0.0 only supports TLS1.0, so this not an issue then.

This patch only adds this behaviour to the "normal" imap ressource, but something similar is also needed in the server setup dialog.

Something similar is done in the TCP ioslave, see https://git.reviewboard.kde.org/r/103610/

  
Laurent Montel
Stefan Brüns
Kevin Ottens
Stefan Brüns
Stefan Brüns
Stefan Brüns
Kevin Ottens
Commit Hook
Commit Hook
Commit Hook
Stefan Brüns
Review request changed

Status: Closed (submitted)

Loading...