It seems that SSLSockets created by the
SSLCertificateSocketFactory don’t have TLSv1.2 enabled by default, at least on our Samsung Note 10.1 (Android 4.1) and here: https://twitter.com/mrwaite/status/451568328436248576
When quering the socket with
getSupportedProtocols(), TLSv1.2 is listed, so it’s available not enabled by default.
So DAVdroid should provide reasonable SSL/TLS settings (although this should in my opionion by done by
SSLCertificateSocketFactory), including enabled protocols, cipher suites and other settings like TLS sessions.