Ticket #12766: 0001-Set-security.tls.version.max-1-in-meek-http-helper.patch

File 0001-Set-security.tls.version.max-1-in-meek-http-helper.patch, 1.4 KB (added by dcf, 5 years ago)
  • Bundle-Data/PTConfigs/meek-http-helper-user.js

    From fc99c79d70ff91292e7209c8cfde7f76b4113e28 Mon Sep 17 00:00:00 2001
    From: David Fifield <david@bamsoftware.com>
    Date: Fri, 15 Aug 2014 18:02:53 -0700
    Subject: [PATCH] Set security.tls.version.max=1 in meek-http-helper.
    
    #11253 set security.tls.version.max=3 (i.e., TLSv1.2).
    We need to set it back to 1 (TLSv1.0) in the helper, or else we look
    unlike an ordinary installation of Firefox 24.
    
    https://trac.torproject.org/projects/tor/ticket/12766
    ---
     Bundle-Data/PTConfigs/meek-http-helper-user.js | 8 ++++++++
     1 file changed, 8 insertions(+)
    
    diff --git a/Bundle-Data/PTConfigs/meek-http-helper-user.js b/Bundle-Data/PTConfigs/meek-http-helper-user.js
    index cddc237..26fd819 100644
    a b  
    44// to stdout.
    55user_pref("browser.dom.window.dump.enabled", true);
    66
     7// Make TLSv1.0 the maximum TLS version, as in stock Firefox 24. Since #11253,
     8// Tor Browser overrides the maximum to TLSv1.2, which would cause us to look
     9// unlike ordinary Firefox 24.
     10// https://trac.torproject.org/projects/tor/ticket/11253
     11// https://trac.torproject.org/projects/tor/ticket/12766
     12// http://kb.mozillazine.org/Security.tls.version.*
     13user_pref("security.tls.version.max", 1);
     14
    715// Enable TLS session tickets (disabled by default in Tor Browser). Otherwise
    816// there is a missing TLS extension.
    917// https://trac.torproject.org/projects/tor/ticket/11183#comment:9