Jacek Caban : secur32: Disable SSL2 protocol in default settings.
Alexandre Julliard
julliard at winehq.org
Mon Apr 1 13:48:40 CDT 2013
Module: wine
Branch: master
Commit: 194cc70fbef13d4f3d724d8abbe2810f4fb1a53b
URL: http://source.winehq.org/git/wine.git/?a=commit;h=194cc70fbef13d4f3d724d8abbe2810f4fb1a53b
Author: Jacek Caban <jacek at codeweavers.com>
Date: Sat Mar 30 16:25:58 2013 +0100
secur32: Disable SSL2 protocol in default settings.
---
dlls/secur32/schannel.c | 4 ++--
tools/wine.inf.in | 1 +
2 files changed, 3 insertions(+), 2 deletions(-)
diff --git a/dlls/secur32/schannel.c b/dlls/secur32/schannel.c
index df75b67..ecc189d 100644
--- a/dlls/secur32/schannel.c
+++ b/dlls/secur32/schannel.c
@@ -178,7 +178,7 @@ static void read_config(void)
BOOL enabled; /* If no config is present, enable the protocol */
BOOL disabled_by_default; /* Disable if caller asks for default protocol set */
} protocol_config_keys[] = {
- {{'S','S','L',' ','2','.','0',0}, SP_PROT_SSL2_CLIENT, TRUE, TRUE},
+ {{'S','S','L',' ','2','.','0',0}, SP_PROT_SSL2_CLIENT, FALSE, TRUE}, /* NOTE: TRUE, TRUE on Windows */
{{'S','S','L',' ','3','.','0',0}, SP_PROT_SSL3_CLIENT, TRUE, FALSE},
{{'T','L','S',' ','1','.','0',0}, SP_PROT_TLS1_0_CLIENT, TRUE, FALSE},
{{'T','L','S',' ','1','.','1',0}, SP_PROT_TLS1_1_CLIENT, TRUE, FALSE /* NOTE: not enabled by default on Windows */ },
@@ -220,7 +220,7 @@ static void read_config(void)
if(type != REG_DWORD || value)
default_disabled |= protocol_config_keys[i].prot_client_flag;
}else if(protocol_config_keys[i].disabled_by_default) {
- default_disabled |= protocol_config_keys[i].prot_client_flag;
+ default_disabled |= protocol_config_keys[i].prot_client_flag;
}
RegCloseKey(key);
diff --git a/tools/wine.inf.in b/tools/wine.inf.in
index e7cc5c7..84e40d2 100644
--- a/tools/wine.inf.in
+++ b/tools/wine.inf.in
@@ -639,6 +639,7 @@ HKLM,Software\Microsoft\Transaction Server,,16
HKLM,Software\Policies,,16
HKLM,Software\Registered Applications,,16
HKLM,System\CurrentControlSet\Control\Lsa,,16
+HKLM,System\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\SSL 2.0\Client,"DisabledByDefault",0x10003,1
HKLM,System\CurrentControlSet\Control\TimeZoneInformation,"StandardName",2,""
HKLM,System\CurrentControlSet\Control\TimeZoneInformation,"TimeZoneKeyName",2,""
HKLM,System\CurrentControlSet\Control\VirtualDeviceDrivers,,16
More information about the wine-cvs
mailing list