From 1533b726604620379544f18eeb694ced61ab3631 Mon Sep 17 00:00:00 2001 From: Elio Maldonado Date: Sat, 6 Mar 2010 21:25:03 +0000 Subject: [PATCH] Use SSL_RENEGOTIATE_TRANSITIONAL as default until the transitional period is over --- renegotiate-transitional.patch | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) create mode 100644 renegotiate-transitional.patch diff --git a/renegotiate-transitional.patch b/renegotiate-transitional.patch new file mode 100644 index 0000000..e0c5189 --- /dev/null +++ b/renegotiate-transitional.patch @@ -0,0 +1,16 @@ +Index: ./mozilla/security/nss/lib/ssl/sslsock.c +=================================================================== +RCS file: /cvsroot/mozilla/security/nss/lib/ssl/sslsock.c,v +retrieving revision 1.66 +diff -u -p -r1.66 sslsock.c +--- ./mozilla/security/nss/lib/ssl/sslsock.c 26 Feb 2010 20:44:54 -0000 1.66 ++++ ./mozilla/security/nss/lib/ssl/sslsock.c 1 Mar 2010 18:05:10 -0000 +@@ -181,7 +181,7 @@ static sslOptions ssl_defaults = { + PR_FALSE, /* noLocks */ + PR_FALSE, /* enableSessionTickets */ + PR_FALSE, /* enableDeflate */ +- 2, /* enableRenegotiation (default: requires extension) */ ++ 3, /* enableRenegotiation (default: transitional) + PR_FALSE, /* requireSafeNegotiation */ + }; +