From 1533b726604620379544f18eeb694ced61ab3631 Mon Sep 17 00:00:00 2001
From: Elio Maldonado <emaldonado@fedoraproject.org>
Date: Sat, 6 Mar 2010 21:25:03 +0000
Subject: [PATCH] Use SSL_RENEGOTIATE_TRANSITIONAL as default until the
 transitional period     is over

---
 renegotiate-transitional.patch | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)
 create mode 100644 renegotiate-transitional.patch

diff --git a/renegotiate-transitional.patch b/renegotiate-transitional.patch
new file mode 100644
index 0000000..e0c5189
--- /dev/null
+++ b/renegotiate-transitional.patch
@@ -0,0 +1,16 @@
+Index: ./mozilla/security/nss/lib/ssl/sslsock.c
+===================================================================
+RCS file: /cvsroot/mozilla/security/nss/lib/ssl/sslsock.c,v
+retrieving revision 1.66
+diff -u -p -r1.66 sslsock.c
+--- ./mozilla/security/nss/lib/ssl/sslsock.c	26 Feb 2010 20:44:54 -0000	1.66
++++ ./mozilla/security/nss/lib/ssl/sslsock.c	1 Mar 2010 18:05:10 -0000
+@@ -181,7 +181,7 @@ static sslOptions ssl_defaults = {
+     PR_FALSE,   /* noLocks            */
+     PR_FALSE,   /* enableSessionTickets */
+     PR_FALSE,   /* enableDeflate      */
+-    2,          /* enableRenegotiation (default: requires extension) */
++    3,          /* enableRenegotiation (default: transitional)
+     PR_FALSE,   /* requireSafeNegotiation */
+ };
+