From 4bdacf737cabb39888d894a90a455a0848abb587 Mon Sep 17 00:00:00 2001
From: Jack Magne <jmagne@dhcp-32-224.sjc.redhat.com>
Date: Wed, 29 Aug 2012 16:58:06 -0700
Subject: Bugzilla Bug #849027 - rhcs81 tks failed start in selftest
 sharedsessionkey - symkey PK11_Derive.

---
 base/symkey/src/com/netscape/symkey/SessionKey.cpp | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

(limited to 'base/symkey')

diff --git a/base/symkey/src/com/netscape/symkey/SessionKey.cpp b/base/symkey/src/com/netscape/symkey/SessionKey.cpp
index eb412f01a..0878e26dd 100644
--- a/base/symkey/src/com/netscape/symkey/SessionKey.cpp
+++ b/base/symkey/src/com/netscape/symkey/SessionKey.cpp
@@ -389,8 +389,10 @@ PK11SymKey *DeriveKey(PK11SymKey *cardKey, const Buffer& hostChallenge, const Bu
     param.data = (unsigned char*)&string;
     param.len = sizeof(string);
 
-    invalid_mechanism = PR_FALSE;
+    invalid_mechanism = PR_TRUE;
 
+    /* When NSS gets full ability to perform this mechanism in soft token, revisit this code to make sure it works. */
+    /*
     tmp1 = PK11_Derive( master , CKM_DES_ECB_ENCRYPT_DATA , &param , CKM_CONCATENATE_BASE_AND_KEY  , CKA_DERIVE, 0);
 
     if ( tmp1 == NULL) {
@@ -401,7 +403,7 @@ PK11SymKey *DeriveKey(PK11SymKey *cardKey, const Buffer& hostChallenge, const Bu
     } else {
        PR_fprintf(PR_STDOUT,"DeriveKey: Successfully created key using encrypt and derive method! \n");
     }
-
+    */
     if ( invalid_mechanism == PR_FALSE) {
 
         string.pData = &derivationData[EIGHT_BYTES];
-- 
cgit