Typo in s3_lib.c definition of cipher 0x19 ("EXP-ADH-DES-CBC-SHA)?

Victor Duchovni Fri, 04 Jun 2010 14:23:01 -0700

The declaration of "EXP-ADH-DES-CBC-SHA" in s3_lib.c (OpenSSL 0.9.6m,
0.9.7m, 0.9.7n, 1.0.0) seems to suggest that this cipher has a 128-bit key


    /* Cipher 19 */
        {
        1,
        SSL3_TXT_ADH_DES_40_CBC_SHA,
        SSL3_CK_ADH_DES_40_CBC_SHA,
        SSL_kEDH,
        SSL_aNULL,
        SSL_DES,
        SSL_SHA1,
        SSL_SSLV3,
        SSL_EXPORT|SSL_EXP40,
        SSL_HANDSHAKE_MAC_DEFAULT|TLS1_PRF,
        40,
        128,
        },

but I would expect the key length for DES to be 56 bits, as is the case
for "ADH-DES-CBC-SHA":

    /* Cipher 1A */
        {
        1,
        SSL3_TXT_ADH_DES_64_CBC_SHA,
        SSL3_CK_ADH_DES_64_CBC_SHA,
        SSL_kEDH,
        SSL_aNULL,
        SSL_DES,
        SSL_SHA1,
        SSL_SSLV3,
        SSL_NOT_EXP|SSL_LOW,
        SSL_HANDSHAKE_MAC_DEFAULT|TLS1_PRF,
        56,
        56,
        },

Is the definition of 'EXP-ADH-DES-CBC-SHA' correct? Does it matter?

-- 
        Viktor.
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           majord...@openssl.org

Typo in s3_lib.c definition of cipher 0x19 ("EXP-ADH-DES-CBC-SHA)?

Reply via email to