[evolution-patches] bug 402925 - tentative patch

From: HggdH <hggdh2 gmail com>
To: Evo Patches <evolution-patches gnome org>
Subject: [evolution-patches] bug 402925 - tentative patch
Date: Mon, 09 Jul 2007 11:33:06 -0500

This resolves an issue with e-d-s not being set to use/accept high-end
encryption suites. I am patching the libnss3 interface only.

c.f. http://bugzilla.gnome.org/show_bug.cgi?id=402925

Regards,

diff -ur -x '\.svn' evolution-d-s-trunk/camel/camel.c evolution-d-s-trunk-new/camel/camel.c
--- evolution-d-s-trunk/camel/camel.c	2007-07-09 10:57:41.000000000 -0500
+++ evolution-d-s-trunk-new/camel/camel.c	2007-07-09 11:14:13.000000000 -0500
@@ -92,6 +92,7 @@
 #ifdef HAVE_NSS
 	if (nss_init) {
 		char *nss_configdir;
+		PRUint16 indx;
 
 		PR_Init (PR_SYSTEM_THREAD, PR_PRIORITY_NORMAL, 10);
 		
@@ -110,6 +111,11 @@
 		}
 
 		NSS_SetDomesticPolicy ();
+		/* we must enable all ciphersuites */
+		for (indx = 0; indx < SSL_NumImplementedCiphers; indx++) {
+		if (!SSL_IS_SSL2_CIPHER(SSL_ImplementedCiphers[indx]))
+			SSL_CipherPrefSetDefault (SSL_ImplementedCiphers[indx], PR_TRUE);
+		}	
 		
 		SSL_OptionSetDefault (SSL_ENABLE_SSL2, PR_TRUE);
 		SSL_OptionSetDefault (SSL_ENABLE_SSL3, PR_TRUE);

Attachment: signature.asc
Description: This is a digitally signed message part

Follow-Ups:
- Re: [evolution-patches] bug 402925 - tentative patch
  - From: Jeffrey Stedfast

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]