2
* The contents of this file are subject to the Mozilla Public
3
* License Version 1.1 (the "License"); you may not use this file
4
* except in compliance with the License. You may obtain a copy of
5
* the License at http://www.mozilla.org/MPL/
7
* Software distributed under the License is distributed on an "AS
8
* IS" basis, WITHOUT WARRANTY OF ANY KIND, either express or
9
* implied. See the License for the specific language governing
10
* rights and limitations under the License.
12
* The Original Code is the Netscape security libraries.
14
* The Initial Developer of the Original Code is Netscape
15
* Communications Corporation. Portions created by Netscape are
16
* Copyright (C) 1994-2000 Netscape Communications Corporation. All
21
* Alternatively, the contents of this file may be used under the
22
* terms of the GNU General Public License Version 2 or later (the
23
* "GPL"), in which case the provisions of the GPL are applicable
24
* instead of those above. If you wish to allow use of your
25
* version of this file only under the terms of the GPL and not to
26
* allow others to use your version of this file under the MPL,
27
* indicate your decision by deleting the provisions above and
28
* replace them with the notice and other provisions required by
29
* the GPL. If you do not delete the provisions above, a recipient
30
* may use your version of this file under either the MPL or the
39
int sslversion; /* either 2 or 3 */
40
int exportable; /* 0=domestic cipher, 1=exportable */
41
int ks,sks; /* key size, secret key size (bits) */
42
char *name; /* name expected from SecurityStatus */
43
int enableid; /* the cipher id used by SSL_EnableCipher */
44
int on; /* 0= do not enable this cipher, 1 = enable */
48
/* Ugly way to generate code to fill in cipher_array struct */
49
/* I wanted to make this part of the static structure initialization,
50
but some compilers complain that the .on field is not constant */
52
#define CIPHER(p_sslversion,p_policy,p_ks,p_sks,p_name,p_x) {\
53
cipher_array[i].sslversion = p_sslversion; \
54
cipher_array[i].exportable = p_policy; \
55
cipher_array[i].ks = p_ks; \
56
cipher_array[i].sks = p_sks; \
57
cipher_array[i].name = p_name; \
58
cipher_array[i].enableid = SSL_ ## p_x; \
59
cipher_array[i].on = REP_Cipher_ ## p_x; \
62
/* A DIPHER is a disabled-cipher (don't run the test suite) */
63
#define DIPHER(sslversion,policy,ks,sks,name,x) ;
66
/* These constants are indexes into the 'nicknames' array */
69
#define CLIENT_CERT_VERISIGN 1
70
#define CLIENT_CERT_HARDCOREII_1024 2
71
#define CLIENT_CERT_HARDCOREII_512 3
72
#define CLIENT_CERT_SPARK 4
73
#define SERVER_CERT_HARDCOREII_512 5
74
#define SERVER_CERT_VERISIGN_REGULAR 6
75
#define SERVER_CERT_VERISIGN_STEPUP 7
76
#define SERVER_CERT_SPARK 8
77
#define MAX_NICKNAME 10
79
extern struct cipherspec cipher_array[];
80
extern int cipher_array_size;
82
extern void ClearCiphers();
83
extern void EnableCiphers();
84
extern void SetPolicy();
85
extern int Version2Enable();
86
extern int Version3Enable();
87
extern int Version23Clear();
88
extern char *nicknames[];
89
extern void SetupNickNames();
90
extern int SetServerSecParms(struct ThreadData *td);