From 765b3c410b39efa0da93f888396eebad1b98ba99 Mon Sep 17 00:00:00 2001 From: Elio Maldonado Date: Wed, 28 Nov 2012 12:52:53 -0800 Subject: [PATCH] Fix the patch turn the dault as intended - Remove a pprtion that is actually applied already - Current one gives the desired results but must invertigate further why the sencnd hunk is already applied. --- nss-ssl-cbc-random-iv-off-by-default.patch | 17 ++--------------- 1 file changed, 2 insertions(+), 15 deletions(-) diff --git a/nss-ssl-cbc-random-iv-off-by-default.patch b/nss-ssl-cbc-random-iv-off-by-default.patch index 04ecf64..2678580 100644 --- a/nss-ssl-cbc-random-iv-off-by-default.patch +++ b/nss-ssl-cbc-random-iv-off-by-default.patch @@ -5,21 +5,8 @@ diff -up ./mozilla/security/nss/lib/ssl/sslsock.c.770682 ./mozilla/security/nss/ 3, /* enableRenegotiation (default: transitional) */ PR_FALSE, /* requireSafeNegotiation */ PR_FALSE, /* enableFalseStart */ -- PR_FALSE /* cbcRandomIV */ /* defaults to off for compatibility */ -+ PR_TRUE /* cbcRandomIV */ +- PR_TRUE /* cbcRandomIV */ ++ PR_FALSE /* cbcRandomIV */ /* defaults to off for compatibility */ }; /* -@@ -2833,9 +2833,9 @@ ssl_SetDefaultsFromEnvironment(void) - PR_TRUE)); - } - ev = getenv("NSS_SSL_CBC_RANDOM_IV"); -- if (ev && ev[0] == '1') { -- ssl_defaults.cbcRandomIV = PR_TRUE; -- SSL_TRACE(("SSL: cbcRandomIV set to 1")); -+ if (ev && ev[0] == '0') { -+ ssl_defaults.cbcRandomIV = PR_FALSE; -+ SSL_TRACE(("SSL: cbcRandomIV set to 0")); - } - } - #endif /* NSS_HAVE_GETENV */