1 diff -r 9c8daca7bb8b Plugins/Purple Service/libpurple_extensions/ssl-cdsa.c
2 --- a/Plugins/Purple Service/libpurple_extensions/ssl-cdsa.c Wed Oct 23 16:08:03 2013 +0200
3 +++ b/Plugins/Purple Service/libpurple_extensions/ssl-cdsa.c Sat Nov 16 14:28:04 2013 +0200
8 +#import <Availability.h>
9 #import <Security/Security.h>
13 protoErr = SSLSetProtocolVersionEnabled(cdsa_data->ssl_ctx, kTLSProtocol1, true);
16 + if (!strcmp(purple_account_get_protocol_id(account),"prpl-sipe")) {
17 + purple_debug_info("cdsa", "Explicitly disabling SSL BEAST mitigation for Microsoft Lync 2010 connections\n");
20 +#if __MAC_OS_X_VERSION_MAX_ALLOWED <= 1090
21 +#define kSSLSessionOptionSendOneByteRecord 4 /* appears in 10.9 */
24 + protoErr = SSLSetSessionOption(cdsa_data->ssl_ctx, kSSLSessionOptionSendOneByteRecord, false);
25 + if (protoErr != noErr) {
26 + purple_debug_info("cdsa", "SSLSetSessionOption failed to disable SSL BEAST mitigation\n");
32 * Set the peer's domain name so CDSA can check the certificate's CN