Do not explicitly disable SSLv3 if GnuTLS does it already.

author Andrej Kacian <ticho@claws-mail.org>

Tue, 23 Aug 2016 15:47:24 +0000 (17:47 +0200)

committer Andrej Kacian <ticho@claws-mail.org>

Tue, 23 Aug 2016 15:47:24 +0000 (17:47 +0200)
author Andrej Kacian <ticho@claws-mail.org>
Tue, 23 Aug 2016 15:47:24 +0000 (17:47 +0200)
committer Andrej Kacian <ticho@claws-mail.org>
Tue, 23 Aug 2016 15:47:24 +0000 (17:47 +0200)
diff --git a/src/common/ssl.c b/src/common/ssl.c

index c8b1b3da4051665613069ea558d4b4a5feba07d3..e25a42301fb73752a1d71b1cd7b6f1108ab31ce8 100644 (file)
--- a/src/common/ssl.c
+++ b/src/common/ssl.c
@@ -330,9 +330,11 @@ gboolean ssl_init_socket(SockInfo *sockinfo)
                 debug_print("Setting GnuTLS priority to %s, status = %d\n",
                             sockinfo->gnutls_priority, r);
         }
+#ifdef GNUTLS_VERSION_NUMBER < 0x030400
         else {
                 gnutls_priority_set_direct(session, "NORMAL:-VERS-SSL3.0", NULL);
         }
+#endif
         gnutls_record_disable_padding(session);
  
         gnutls_credentials_set(session, GNUTLS_CRD_CERTIFICATE, xcred);
author	Andrej Kacian <ticho@claws-mail.org>
	Tue, 23 Aug 2016 15:47:24 +0000 (17:47 +0200)
committer	Andrej Kacian <ticho@claws-mail.org>
	Tue, 23 Aug 2016 15:47:24 +0000 (17:47 +0200)