Jacek Caban : secur32: Disable SSL2 protocol in default settings.

Alexandre Julliard julliard at winehq.org
Mon Apr 1 13:48:40 CDT 2013 

Module: wine
Branch: master
Commit: 194cc70fbef13d4f3d724d8abbe2810f4fb1a53b
URL:    http://source.winehq.org/git/wine.git/?a=commit;h=194cc70fbef13d4f3d724d8abbe2810f4fb1a53b

Author: Jacek Caban <jacek at codeweavers.com>
Date:   Sat Mar 30 16:25:58 2013 +0100

secur32: Disable SSL2 protocol in default settings.

---

 dlls/secur32/schannel.c |    4 ++--
 tools/wine.inf.in       |    1 +
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/dlls/secur32/schannel.c b/dlls/secur32/schannel.c
index df75b67..ecc189d 100644
--- a/dlls/secur32/schannel.c
+++ b/dlls/secur32/schannel.c
@@ -178,7 +178,7 @@ static void read_config(void)
         BOOL enabled; /* If no config is present, enable the protocol */
         BOOL disabled_by_default; /* Disable if caller asks for default protocol set */
     } protocol_config_keys[] = {
-        {{'S','S','L',' ','2','.','0',0}, SP_PROT_SSL2_CLIENT, TRUE, TRUE},
+        {{'S','S','L',' ','2','.','0',0}, SP_PROT_SSL2_CLIENT, FALSE, TRUE}, /* NOTE: TRUE, TRUE on Windows */
         {{'S','S','L',' ','3','.','0',0}, SP_PROT_SSL3_CLIENT, TRUE, FALSE},
         {{'T','L','S',' ','1','.','0',0}, SP_PROT_TLS1_0_CLIENT, TRUE, FALSE},
         {{'T','L','S',' ','1','.','1',0}, SP_PROT_TLS1_1_CLIENT, TRUE, FALSE /* NOTE: not enabled by default on Windows */ },
@@ -220,7 +220,7 @@ static void read_config(void)
                 if(type != REG_DWORD || value)
                     default_disabled |= protocol_config_keys[i].prot_client_flag;
             }else if(protocol_config_keys[i].disabled_by_default) {
-                    default_disabled |= protocol_config_keys[i].prot_client_flag;
+                default_disabled |= protocol_config_keys[i].prot_client_flag;
             }
 
             RegCloseKey(key);
diff --git a/tools/wine.inf.in b/tools/wine.inf.in
index e7cc5c7..84e40d2 100644
--- a/tools/wine.inf.in
+++ b/tools/wine.inf.in
@@ -639,6 +639,7 @@ HKLM,Software\Microsoft\Transaction Server,,16
 HKLM,Software\Policies,,16
 HKLM,Software\Registered Applications,,16
 HKLM,System\CurrentControlSet\Control\Lsa,,16
+HKLM,System\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\SSL 2.0\Client,"DisabledByDefault",0x10003,1
 HKLM,System\CurrentControlSet\Control\TimeZoneInformation,"StandardName",2,""
 HKLM,System\CurrentControlSet\Control\TimeZoneInformation,"TimeZoneKeyName",2,""
 HKLM,System\CurrentControlSet\Control\VirtualDeviceDrivers,,16

More information about the wine-cvs mailing list