[Konversation-devel] [konversation] [Bug 340396] Connection to TLS-only server does not work.
Eike Hein
hein at kde.org
Mon Nov 3 11:49:11 UTC 2014
https://bugs.kde.org/show_bug.cgi?id=340396
Eike Hein <hein at kde.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |hein at kde.org
--- Comment #3 from Eike Hein <hein at kde.org> ---
I believe this is because of the following:
1. Konversation uses KTcpSocket, which is a wrapper around QSslSocket.
2. QSslSocket lets you set which SSL or TLS versions you want to use while
connecting.
3. For technical reasons KTcpSocket duplicates that API, and can get out of
sync with QSslSocket.
4. KTcpSocket didn't use to have an equivalent to the "Use secure protocols"
mode of QSslSocket, which enables reasonable defaults.
5. I actually added this to KTcpSocket, but because kdelibs wasn't released at
the time the only secure variant left at the time was to set Konvi to use
TLSv1.
6. This probably breaks on servers supporting only TLSv1.2.
We can rely on newer kdelibs now and we're about to do a 1.5.1 release, so we
can switch to #4 now.
--
You are receiving this mail because:
You are on the CC list for the bug.
More information about the Konversation-devel
mailing list