Apply Lutz Behnke's 56 bit cipher patch with a few

minor changes. Docs haven't been added at this stage. They are probably best included in the 'ciphers' program docs.
author: Dr. Stephen Henson <steve@openssl.org> 2000-01-22 03:17:06 +0000
committer: Dr. Stephen Henson <steve@openssl.org> 2000-01-22 03:17:06 +0000
commit: 018e57c74d9dc6b5676aead4be11cd28a8617ea4 (patch)
tree: 4975f3d313b24af7ecd5d1ab0741cce0176143f8 /ssl/s3_clnt.c
parent: 3604a4d3d17620b1c1610e337cbe705cf8f67b0c (diff)
1 files changed, 3 insertions, 3 deletions
diff --git a/ssl/s3_clnt.c b/ssl/s3_clnt.c
index cec0e3b35a..22e35c23fe 100644
--- a/ssl/s3_clnt.c
+++ b/ssl/s3_clnt.c
@@ -1688,13 +1688,13 @@ static int ssl3_check_cert_and_algorithm(SSL *s)
 #endif
 #endif
 
-	if (SSL_IS_EXPORT(algs) && !has_bits(i,EVP_PKT_EXP))
+	if (SSL_C_IS_EXPORT(s->s3->tmp.new_cipher) && !has_bits(i,EVP_PKT_EXP))
 		{
 #ifndef NO_RSA
 		if (algs & SSL_kRSA)
 			{
 			if (rsa == NULL
-			    || RSA_size(rsa) > SSL_EXPORT_PKEYLENGTH(algs))
+			    || RSA_size(rsa) > SSL_C_EXPORT_PKEYLENGTH(s->s3->tmp.new_cipher))
 				{
 				SSLerr(SSL_F_SSL3_CHECK_CERT_AND_ALGORITHM,SSL_R_MISSING_EXPORT_TMP_RSA_KEY);
 				goto f_err;
@@ -1706,7 +1706,7 @@ static int ssl3_check_cert_and_algorithm(SSL *s)
 			if (algs & (SSL_kEDH|SSL_kDHr|SSL_kDHd))
 			    {
 			    if (dh == NULL
-				|| DH_size(dh) > SSL_EXPORT_PKEYLENGTH(algs))
+				|| DH_size(dh) > SSL_C_EXPORT_PKEYLENGTH(s->s3->tmp.new_cipher))
 				{
 				SSLerr(SSL_F_SSL3_CHECK_CERT_AND_ALGORITHM,SSL_R_MISSING_EXPORT_TMP_DH_KEY);
 				goto f_err;
author	Dr. Stephen Henson <steve@openssl.org>	2000-01-22 03:17:06 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	2000-01-22 03:17:06 +0000
commit	018e57c74d9dc6b5676aead4be11cd28a8617ea4 (patch)
tree	4975f3d313b24af7ecd5d1ab0741cce0176143f8 /ssl/s3_clnt.c
parent	3604a4d3d17620b1c1610e337cbe705cf8f67b0c (diff)