hardcode the value of OpenSSL.SSL.OP_NO_TICKET for old version of openssl. Fixes #5689

2011-01-25 11:54:28 +01:00 · 2011-01-25 11:54:28 +01:00 · 04418850f9
parent d10322d48b
commit 04418850f9
1 changed files with 7 additions and 2 deletions
--- a/src/common/xmpp/tls_nb.py
+++ b/src/common/xmpp/tls_nb.py
@ -384,8 +384,13 @@ class NonBlockingTLS(PlugIn):
        else:
            # See http://docs.python.org/dev/library/ssl.html
            tcpsock._sslContext = OpenSSL.SSL.Context(OpenSSL.SSL.SSLv23_METHOD)
-            tcpsock._sslContext.set_options(OpenSSL.SSL.OP_NO_SSLv2 | \
-                OpenSSL.SSL.OP_NO_TICKET)
+            flags = OpenSSL.SSL.OP_NO_SSLv2
+            try:
+                flags |= OpenSSL.SSL.OP_NO_TICKET
+            except AttributeError, e:
+                # py-OpenSSL < 0.9 or old OpenSSL
+                flags |= 16384
+            tcpsock._sslContext.set_options(flags)

        tcpsock.ssl_errnum = 0
        tcpsock._sslContext.set_verify(OpenSSL.SSL.VERIFY_PEER,