net/third_party/nss/patches/paddingextensionall.patch - platform/external/chromium_org - Git at Google

 diff --git a/nss/lib/ssl/ssl3ext.c b/nss/lib/ssl/ssl3ext.c
 index cdebcc9..03cf05c 100644
 --- a/nss/lib/ssl/ssl3ext.c
 +++ b/nss/lib/ssl/ssl3ext.c
 @@ -2306,7 +2306,11 @@ ssl3_CalculatePaddingExtensionLength(unsigned int clientHelloLength)
  				clientHelloLength;
      unsigned int extensionLength;

 -    if (recordLength < 256 || recordLength >= 512) {
 +    /* This condition should be:
 +     *   if (recordLength < 256 || recordLength >= 512) {
 +     * It has been changed, temporarily, to test whether 512 byte ClientHellos
 +     * are a compatibility problem. */
 +    if (recordLength >= 512) {
  	return 0;
      }

 @@ -2327,7 +2331,7 @@ ssl3_AppendPaddingExtension(sslSocket *ss, unsigned int extensionLen,
  			    PRUint32 maxBytes)
  {
      unsigned int paddingLen = extensionLen - 4;
 -    unsigned char padding[256];
 +    unsigned char padding[512];

      if (extensionLen == 0) {
  	return 0;
	diff --git a/nss/lib/ssl/ssl3ext.c b/nss/lib/ssl/ssl3ext.c
	index cdebcc9..03cf05c 100644
	--- a/nss/lib/ssl/ssl3ext.c
	+++ b/nss/lib/ssl/ssl3ext.c
	@@ -2306,7 +2306,11 @@ ssl3_CalculatePaddingExtensionLength(unsigned int clientHelloLength)
	clientHelloLength;
	unsigned int extensionLength;

	- if (recordLength < 256 \|\| recordLength >= 512) {
	+ /* This condition should be:
	+ * if (recordLength < 256 \|\| recordLength >= 512) {
	+ * It has been changed, temporarily, to test whether 512 byte ClientHellos
	+ * are a compatibility problem. */
	+ if (recordLength >= 512) {
	return 0;
	}

	@@ -2327,7 +2331,7 @@ ssl3_AppendPaddingExtension(sslSocket *ss, unsigned int extensionLen,
	PRUint32 maxBytes)
	{
	unsigned int paddingLen = extensionLen - 4;
	- unsigned char padding[256];
	+ unsigned char padding[512];

	if (extensionLen == 0) {
	return 0;