From 8f71b164fdb9311996d50659a17963db303d55cf Mon Sep 17 00:00:00 2001
From: Francis Russell <francis@unchartedbackwaters.co.uk>
Date: Fri, 8 Jan 2016 12:19:29 +0000
Subject: [PATCH] Make TLS method for IMAP parameterisable.

---
 program/lib/Roundcube/rcube_imap_generic.php | 15 ++++++++++-----
 1 file changed, 10 insertions(+), 5 deletions(-)

diff --git a/program/lib/Roundcube/rcube_imap_generic.php b/program/lib/Roundcube/rcube_imap_generic.php
index bde14077c..1442ecae8 100644
--- a/program/lib/Roundcube/rcube_imap_generic.php
+++ b/program/lib/Roundcube/rcube_imap_generic.php
@@ -997,11 +997,16 @@ class rcube_imap_generic
                 return false;
             }
 
-            // There is no flag to enable all TLS methods. Net_SMTP
-            // handles enabling TLS similarly.
-            $crypto_method = STREAM_CRYPTO_METHOD_TLS_CLIENT
-                | @STREAM_CRYPTO_METHOD_TLSv1_1_CLIENT
-                | @STREAM_CRYPTO_METHOD_TLSv1_2_CLIENT;
+            if (isset($this->prefs['socket_options']['ssl']['crypto_method'])) {
+                $crypto_method = $this->prefs['socket_options']['ssl']['crypto_method'];
+            }
+            else {
+                // There is no flag to enable all TLS methods. Net_SMTP
+                // handles enabling TLS similarly.
+                $crypto_method = STREAM_CRYPTO_METHOD_TLS_CLIENT
+                    | @STREAM_CRYPTO_METHOD_TLSv1_1_CLIENT
+                    | @STREAM_CRYPTO_METHOD_TLSv1_2_CLIENT;
+            }
 
             if (!stream_socket_enable_crypto($this->fp, true, $crypto_method)) {
                 $this->setError(self::ERROR_BAD, "Unable to negotiate TLS");