Ciphers with NULL encryption were not properly handled because they were

not covered by the strength bit mask. Submitted by: Reviewed by: PR: 130
2002-07-10 06:40:18 +00:00
parent 3a9fef60a1
commit 4064a85205
4 changed files with 21 additions and 13 deletions
--- a/ssl/ssl_locl.h
+++ b/ssl/ssl_locl.h
@@ -293,16 +293,17 @@
 #define SSL_NOT_EXP		0x00000001L
 #define SSL_EXPORT		0x00000002L

-#define SSL_STRONG_MASK		0x0000007cL
-#define SSL_EXP40		0x00000004L
+#define SSL_STRONG_MASK		0x000000fcL
+#define SSL_STRONG_NONE		0x00000004L
+#define SSL_EXP40		0x00000008L
 #define SSL_MICRO		(SSL_EXP40)
-#define SSL_EXP56		0x00000008L
+#define SSL_EXP56		0x00000010L
 #define SSL_MINI		(SSL_EXP56)
-#define SSL_LOW			0x00000010L
-#define SSL_MEDIUM		0x00000020L
-#define SSL_HIGH		0x00000040L
+#define SSL_LOW			0x00000020L
+#define SSL_MEDIUM		0x00000040L
+#define SSL_HIGH		0x00000080L

-/* we have used 0000007f - 25 bits left to go */
+/* we have used 000000ff - 24 bits left to go */

 /*
 * Macros to check the export status and cipher strength for export ciphers.