From fd7a5c605aa14852398c514288ab5d1971573a47 Mon Sep 17 00:00:00 2001
From: Daniel Gultsch <daniel@gultsch.de>
Date: Sat, 26 May 2018 10:22:40 +0200
Subject: [PATCH] Do not use TLS_FALLBACK_SCSV

closes #2937

Thanks to @tmolitor-stud-tu for explaining the situation in
https://github.com/guardianproject/NetCipher/pull/74
---
 src/main/java/eu/siacs/conversations/utils/CryptoHelper.java | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/main/java/eu/siacs/conversations/utils/CryptoHelper.java b/src/main/java/eu/siacs/conversations/utils/CryptoHelper.java
index 2df9c27b3..e6f06c579 100644
--- a/src/main/java/eu/siacs/conversations/utils/CryptoHelper.java
+++ b/src/main/java/eu/siacs/conversations/utils/CryptoHelper.java
@@ -130,6 +130,7 @@ public final class CryptoHelper {
 		cipherSuites.retainAll(platformCiphers);
 		cipherSuites.addAll(platformCiphers);
 		filterWeakCipherSuites(cipherSuites);
+		cipherSuites.remove("TLS_FALLBACK_SCSV");
 		return cipherSuites.toArray(new String[cipherSuites.size()]);
 	}