Red Hat Bugzilla – Bug 890931
Must set NSS_SSL_CBC_RANDOM_IV=0 for pidgin-sipe to work with ms ocs
Last modified: 2012-12-31 04:03:42 EST
Description of problem:
After upgrade to Fedora 18 pidgin-sipe stopped working
Version-Release number of selected component (if applicable):
All versions on Fedora 18
Steps to Reproduce:
1. start pidgin with a MS OCS account defined
Cannot connect to server
Setting NSS_SSL_CBC_RANDOM_IV=0 before starting pidgin fixs the problem. Is it possible to do the equivalent from within the plugin? Or does it have to be handled at the SSL library?
The bug is on Microsoft side, not pidgin-sipe, Pidgin nor NSS. It seems that Microsoft does have an update for their SSL code, because for some servers/accounts disabling the NSS security fix is no longer necessary.
Pidgin does not have an API to disable NSS security fix per plugin/SSL connection, so this can't be implemented in the plugin.
The only option to get this working without the environment variable would be to re-introduce the same patch to NSS which was used in F15/F16/F17.
*** This bug has been marked as a duplicate of bug 770682 ***