tls1.h 38 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810
  1. /* ssl/tls1.h */
  2. /* Copyright (C) 1995-1998 Eric Young ([email protected])
  3. * All rights reserved.
  4. *
  5. * This package is an SSL implementation written
  6. * by Eric Young ([email protected]).
  7. * The implementation was written so as to conform with Netscapes SSL.
  8. *
  9. * This library is free for commercial and non-commercial use as long as
  10. * the following conditions are aheared to. The following conditions
  11. * apply to all code found in this distribution, be it the RC4, RSA,
  12. * lhash, DES, etc., code; not just the SSL code. The SSL documentation
  13. * included with this distribution is covered by the same copyright terms
  14. * except that the holder is Tim Hudson ([email protected]).
  15. *
  16. * Copyright remains Eric Young's, and as such any Copyright notices in
  17. * the code are not to be removed.
  18. * If this package is used in a product, Eric Young should be given attribution
  19. * as the author of the parts of the library used.
  20. * This can be in the form of a textual message at program startup or
  21. * in documentation (online or textual) provided with the package.
  22. *
  23. * Redistribution and use in source and binary forms, with or without
  24. * modification, are permitted provided that the following conditions
  25. * are met:
  26. * 1. Redistributions of source code must retain the copyright
  27. * notice, this list of conditions and the following disclaimer.
  28. * 2. Redistributions in binary form must reproduce the above copyright
  29. * notice, this list of conditions and the following disclaimer in the
  30. * documentation and/or other materials provided with the distribution.
  31. * 3. All advertising materials mentioning features or use of this software
  32. * must display the following acknowledgement:
  33. * "This product includes cryptographic software written by
  34. * Eric Young ([email protected])"
  35. * The word 'cryptographic' can be left out if the rouines from the library
  36. * being used are not cryptographic related :-).
  37. * 4. If you include any Windows specific code (or a derivative thereof) from
  38. * the apps directory (application code) you must include an acknowledgement:
  39. * "This product includes software written by Tim Hudson ([email protected])"
  40. *
  41. * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
  42. * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  43. * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
  44. * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
  45. * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
  46. * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
  47. * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
  48. * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
  49. * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
  50. * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
  51. * SUCH DAMAGE.
  52. *
  53. * The licence and distribution terms for any publically available version or
  54. * derivative of this code cannot be changed. i.e. this code cannot simply be
  55. * copied and put under another distribution licence
  56. * [including the GNU Public Licence.]
  57. */
  58. /* ====================================================================
  59. * Copyright (c) 1998-2006 The OpenSSL Project. All rights reserved.
  60. *
  61. * Redistribution and use in source and binary forms, with or without
  62. * modification, are permitted provided that the following conditions
  63. * are met:
  64. *
  65. * 1. Redistributions of source code must retain the above copyright
  66. * notice, this list of conditions and the following disclaimer.
  67. *
  68. * 2. Redistributions in binary form must reproduce the above copyright
  69. * notice, this list of conditions and the following disclaimer in
  70. * the documentation and/or other materials provided with the
  71. * distribution.
  72. *
  73. * 3. All advertising materials mentioning features or use of this
  74. * software must display the following acknowledgment:
  75. * "This product includes software developed by the OpenSSL Project
  76. * for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
  77. *
  78. * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
  79. * endorse or promote products derived from this software without
  80. * prior written permission. For written permission, please contact
  81. * [email protected].
  82. *
  83. * 5. Products derived from this software may not be called "OpenSSL"
  84. * nor may "OpenSSL" appear in their names without prior written
  85. * permission of the OpenSSL Project.
  86. *
  87. * 6. Redistributions of any form whatsoever must retain the following
  88. * acknowledgment:
  89. * "This product includes software developed by the OpenSSL Project
  90. * for use in the OpenSSL Toolkit (http://www.openssl.org/)"
  91. *
  92. * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
  93. * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  94. * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
  95. * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
  96. * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
  97. * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
  98. * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
  99. * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
  100. * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
  101. * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
  102. * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
  103. * OF THE POSSIBILITY OF SUCH DAMAGE.
  104. * ====================================================================
  105. *
  106. * This product includes cryptographic software written by Eric Young
  107. * ([email protected]). This product includes software written by Tim
  108. * Hudson ([email protected]).
  109. *
  110. */
  111. /* ====================================================================
  112. * Copyright 2002 Sun Microsystems, Inc. ALL RIGHTS RESERVED.
  113. *
  114. * Portions of the attached software ("Contribution") are developed by
  115. * SUN MICROSYSTEMS, INC., and are contributed to the OpenSSL project.
  116. *
  117. * The Contribution is licensed pursuant to the OpenSSL open source
  118. * license provided above.
  119. *
  120. * ECC cipher suite support in OpenSSL originally written by
  121. * Vipul Gupta and Sumit Gupta of Sun Microsystems Laboratories.
  122. *
  123. */
  124. /* ====================================================================
  125. * Copyright 2005 Nokia. All rights reserved.
  126. *
  127. * The portions of the attached software ("Contribution") is developed by
  128. * Nokia Corporation and is licensed pursuant to the OpenSSL open source
  129. * license.
  130. *
  131. * The Contribution, originally written by Mika Kousa and Pasi Eronen of
  132. * Nokia Corporation, consists of the "PSK" (Pre-Shared Key) ciphersuites
  133. * support (see RFC 4279) to OpenSSL.
  134. *
  135. * No patent licenses or other rights except those expressly stated in
  136. * the OpenSSL open source license shall be deemed granted or received
  137. * expressly, by implication, estoppel, or otherwise.
  138. *
  139. * No assurances are provided by Nokia that the Contribution does not
  140. * infringe the patent or other intellectual property rights of any third
  141. * party or that the license provides you with all the necessary rights
  142. * to make use of the Contribution.
  143. *
  144. * THE SOFTWARE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. IN
  145. * ADDITION TO THE DISCLAIMERS INCLUDED IN THE LICENSE, NOKIA
  146. * SPECIFICALLY DISCLAIMS ANY LIABILITY FOR CLAIMS BROUGHT BY YOU OR ANY
  147. * OTHER ENTITY BASED ON INFRINGEMENT OF INTELLECTUAL PROPERTY RIGHTS OR
  148. * OTHERWISE.
  149. */
  150. #ifndef HEADER_TLS1_H
  151. # define HEADER_TLS1_H
  152. # include <openssl/buffer.h>
  153. #ifdef __cplusplus
  154. extern "C" {
  155. #endif
  156. # define TLS1_ALLOW_EXPERIMENTAL_CIPHERSUITES 0
  157. # define TLS1_VERSION 0x0301
  158. # define TLS1_1_VERSION 0x0302
  159. # define TLS1_2_VERSION 0x0303
  160. # define TLS_MAX_VERSION TLS1_2_VERSION
  161. # define TLS1_VERSION_MAJOR 0x03
  162. # define TLS1_VERSION_MINOR 0x01
  163. # define TLS1_1_VERSION_MAJOR 0x03
  164. # define TLS1_1_VERSION_MINOR 0x02
  165. # define TLS1_2_VERSION_MAJOR 0x03
  166. # define TLS1_2_VERSION_MINOR 0x03
  167. # define TLS1_get_version(s) \
  168. ((s->version >> 8) == TLS1_VERSION_MAJOR ? s->version : 0)
  169. # define TLS1_get_client_version(s) \
  170. ((s->client_version >> 8) == TLS1_VERSION_MAJOR ? s->client_version : 0)
  171. # define TLS1_AD_DECRYPTION_FAILED 21
  172. # define TLS1_AD_RECORD_OVERFLOW 22
  173. # define TLS1_AD_UNKNOWN_CA 48/* fatal */
  174. # define TLS1_AD_ACCESS_DENIED 49/* fatal */
  175. # define TLS1_AD_DECODE_ERROR 50/* fatal */
  176. # define TLS1_AD_DECRYPT_ERROR 51
  177. # define TLS1_AD_EXPORT_RESTRICTION 60/* fatal */
  178. # define TLS1_AD_PROTOCOL_VERSION 70/* fatal */
  179. # define TLS1_AD_INSUFFICIENT_SECURITY 71/* fatal */
  180. # define TLS1_AD_INTERNAL_ERROR 80/* fatal */
  181. # define TLS1_AD_INAPPROPRIATE_FALLBACK 86/* fatal */
  182. # define TLS1_AD_USER_CANCELLED 90
  183. # define TLS1_AD_NO_RENEGOTIATION 100
  184. /* codes 110-114 are from RFC3546 */
  185. # define TLS1_AD_UNSUPPORTED_EXTENSION 110
  186. # define TLS1_AD_CERTIFICATE_UNOBTAINABLE 111
  187. # define TLS1_AD_UNRECOGNIZED_NAME 112
  188. # define TLS1_AD_BAD_CERTIFICATE_STATUS_RESPONSE 113
  189. # define TLS1_AD_BAD_CERTIFICATE_HASH_VALUE 114
  190. # define TLS1_AD_UNKNOWN_PSK_IDENTITY 115/* fatal */
  191. /* ExtensionType values from RFC3546 / RFC4366 / RFC6066 */
  192. # define TLSEXT_TYPE_server_name 0
  193. # define TLSEXT_TYPE_max_fragment_length 1
  194. # define TLSEXT_TYPE_client_certificate_url 2
  195. # define TLSEXT_TYPE_trusted_ca_keys 3
  196. # define TLSEXT_TYPE_truncated_hmac 4
  197. # define TLSEXT_TYPE_status_request 5
  198. /* ExtensionType values from RFC4681 */
  199. # define TLSEXT_TYPE_user_mapping 6
  200. /* ExtensionType values from RFC5878 */
  201. # define TLSEXT_TYPE_client_authz 7
  202. # define TLSEXT_TYPE_server_authz 8
  203. /* ExtensionType values from RFC6091 */
  204. # define TLSEXT_TYPE_cert_type 9
  205. /* ExtensionType values from RFC4492 */
  206. # define TLSEXT_TYPE_elliptic_curves 10
  207. # define TLSEXT_TYPE_ec_point_formats 11
  208. /* ExtensionType value from RFC5054 */
  209. # define TLSEXT_TYPE_srp 12
  210. /* ExtensionType values from RFC5246 */
  211. # define TLSEXT_TYPE_signature_algorithms 13
  212. /* ExtensionType value from RFC5764 */
  213. # define TLSEXT_TYPE_use_srtp 14
  214. /* ExtensionType value from RFC5620 */
  215. # define TLSEXT_TYPE_heartbeat 15
  216. /* ExtensionType value from RFC7301 */
  217. # define TLSEXT_TYPE_application_layer_protocol_negotiation 16
  218. /*
  219. * ExtensionType value for TLS padding extension.
  220. * http://tools.ietf.org/html/draft-agl-tls-padding
  221. */
  222. # define TLSEXT_TYPE_padding 21
  223. /* ExtensionType value from RFC4507 */
  224. # define TLSEXT_TYPE_session_ticket 35
  225. /* ExtensionType value from draft-rescorla-tls-opaque-prf-input-00.txt */
  226. # if 0
  227. /*
  228. * will have to be provided externally for now ,
  229. * i.e. build with -DTLSEXT_TYPE_opaque_prf_input=38183
  230. * using whatever extension number you'd like to try
  231. */
  232. # define TLSEXT_TYPE_opaque_prf_input ??
  233. # endif
  234. /* Temporary extension type */
  235. # define TLSEXT_TYPE_renegotiate 0xff01
  236. # ifndef OPENSSL_NO_NEXTPROTONEG
  237. /* This is not an IANA defined extension number */
  238. # define TLSEXT_TYPE_next_proto_neg 13172
  239. # endif
  240. /* NameType value from RFC3546 */
  241. # define TLSEXT_NAMETYPE_host_name 0
  242. /* status request value from RFC3546 */
  243. # define TLSEXT_STATUSTYPE_ocsp 1
  244. /* ECPointFormat values from RFC4492 */
  245. # define TLSEXT_ECPOINTFORMAT_first 0
  246. # define TLSEXT_ECPOINTFORMAT_uncompressed 0
  247. # define TLSEXT_ECPOINTFORMAT_ansiX962_compressed_prime 1
  248. # define TLSEXT_ECPOINTFORMAT_ansiX962_compressed_char2 2
  249. # define TLSEXT_ECPOINTFORMAT_last 2
  250. /* Signature and hash algorithms from RFC5246 */
  251. # define TLSEXT_signature_anonymous 0
  252. # define TLSEXT_signature_rsa 1
  253. # define TLSEXT_signature_dsa 2
  254. # define TLSEXT_signature_ecdsa 3
  255. /* Total number of different signature algorithms */
  256. # define TLSEXT_signature_num 4
  257. # define TLSEXT_hash_none 0
  258. # define TLSEXT_hash_md5 1
  259. # define TLSEXT_hash_sha1 2
  260. # define TLSEXT_hash_sha224 3
  261. # define TLSEXT_hash_sha256 4
  262. # define TLSEXT_hash_sha384 5
  263. # define TLSEXT_hash_sha512 6
  264. /* Total number of different digest algorithms */
  265. # define TLSEXT_hash_num 7
  266. /* Flag set for unrecognised algorithms */
  267. # define TLSEXT_nid_unknown 0x1000000
  268. /* ECC curves */
  269. # define TLSEXT_curve_P_256 23
  270. # define TLSEXT_curve_P_384 24
  271. # ifndef OPENSSL_NO_TLSEXT
  272. # define TLSEXT_MAXLEN_host_name 255
  273. const char *SSL_get_servername(const SSL *s, const int type);
  274. int SSL_get_servername_type(const SSL *s);
  275. /*
  276. * SSL_export_keying_material exports a value derived from the master secret,
  277. * as specified in RFC 5705. It writes |olen| bytes to |out| given a label and
  278. * optional context. (Since a zero length context is allowed, the |use_context|
  279. * flag controls whether a context is included.) It returns 1 on success and
  280. * zero otherwise.
  281. */
  282. int SSL_export_keying_material(SSL *s, unsigned char *out, size_t olen,
  283. const char *label, size_t llen,
  284. const unsigned char *context, size_t contextlen,
  285. int use_context);
  286. int SSL_get_sigalgs(SSL *s, int idx,
  287. int *psign, int *phash, int *psignandhash,
  288. unsigned char *rsig, unsigned char *rhash);
  289. int SSL_get_shared_sigalgs(SSL *s, int idx,
  290. int *psign, int *phash, int *psignandhash,
  291. unsigned char *rsig, unsigned char *rhash);
  292. int SSL_check_chain(SSL *s, X509 *x, EVP_PKEY *pk, STACK_OF(X509) *chain);
  293. # define SSL_set_tlsext_host_name(s,name) \
  294. SSL_ctrl(s,SSL_CTRL_SET_TLSEXT_HOSTNAME,TLSEXT_NAMETYPE_host_name,(char *)name)
  295. # define SSL_set_tlsext_debug_callback(ssl, cb) \
  296. SSL_callback_ctrl(ssl,SSL_CTRL_SET_TLSEXT_DEBUG_CB,(void (*)(void))cb)
  297. # define SSL_set_tlsext_debug_arg(ssl, arg) \
  298. SSL_ctrl(ssl,SSL_CTRL_SET_TLSEXT_DEBUG_ARG,0, (void *)arg)
  299. # define SSL_set_tlsext_status_type(ssl, type) \
  300. SSL_ctrl(ssl,SSL_CTRL_SET_TLSEXT_STATUS_REQ_TYPE,type, NULL)
  301. # define SSL_get_tlsext_status_exts(ssl, arg) \
  302. SSL_ctrl(ssl,SSL_CTRL_GET_TLSEXT_STATUS_REQ_EXTS,0, (void *)arg)
  303. # define SSL_set_tlsext_status_exts(ssl, arg) \
  304. SSL_ctrl(ssl,SSL_CTRL_SET_TLSEXT_STATUS_REQ_EXTS,0, (void *)arg)
  305. # define SSL_get_tlsext_status_ids(ssl, arg) \
  306. SSL_ctrl(ssl,SSL_CTRL_GET_TLSEXT_STATUS_REQ_IDS,0, (void *)arg)
  307. # define SSL_set_tlsext_status_ids(ssl, arg) \
  308. SSL_ctrl(ssl,SSL_CTRL_SET_TLSEXT_STATUS_REQ_IDS,0, (void *)arg)
  309. # define SSL_get_tlsext_status_ocsp_resp(ssl, arg) \
  310. SSL_ctrl(ssl,SSL_CTRL_GET_TLSEXT_STATUS_REQ_OCSP_RESP,0, (void *)arg)
  311. # define SSL_set_tlsext_status_ocsp_resp(ssl, arg, arglen) \
  312. SSL_ctrl(ssl,SSL_CTRL_SET_TLSEXT_STATUS_REQ_OCSP_RESP,arglen, (void *)arg)
  313. # define SSL_CTX_set_tlsext_servername_callback(ctx, cb) \
  314. SSL_CTX_callback_ctrl(ctx,SSL_CTRL_SET_TLSEXT_SERVERNAME_CB,(void (*)(void))cb)
  315. # define SSL_TLSEXT_ERR_OK 0
  316. # define SSL_TLSEXT_ERR_ALERT_WARNING 1
  317. # define SSL_TLSEXT_ERR_ALERT_FATAL 2
  318. # define SSL_TLSEXT_ERR_NOACK 3
  319. # define SSL_CTX_set_tlsext_servername_arg(ctx, arg) \
  320. SSL_CTX_ctrl(ctx,SSL_CTRL_SET_TLSEXT_SERVERNAME_ARG,0, (void *)arg)
  321. # define SSL_CTX_get_tlsext_ticket_keys(ctx, keys, keylen) \
  322. SSL_CTX_ctrl((ctx),SSL_CTRL_GET_TLSEXT_TICKET_KEYS,(keylen),(keys))
  323. # define SSL_CTX_set_tlsext_ticket_keys(ctx, keys, keylen) \
  324. SSL_CTX_ctrl((ctx),SSL_CTRL_SET_TLSEXT_TICKET_KEYS,(keylen),(keys))
  325. # define SSL_CTX_set_tlsext_status_cb(ssl, cb) \
  326. SSL_CTX_callback_ctrl(ssl,SSL_CTRL_SET_TLSEXT_STATUS_REQ_CB,(void (*)(void))cb)
  327. # define SSL_CTX_set_tlsext_status_arg(ssl, arg) \
  328. SSL_CTX_ctrl(ssl,SSL_CTRL_SET_TLSEXT_STATUS_REQ_CB_ARG,0, (void *)arg)
  329. # define SSL_set_tlsext_opaque_prf_input(s, src, len) \
  330. SSL_ctrl(s,SSL_CTRL_SET_TLSEXT_OPAQUE_PRF_INPUT, len, src)
  331. # define SSL_CTX_set_tlsext_opaque_prf_input_callback(ctx, cb) \
  332. SSL_CTX_callback_ctrl(ctx,SSL_CTRL_SET_TLSEXT_OPAQUE_PRF_INPUT_CB, (void (*)(void))cb)
  333. # define SSL_CTX_set_tlsext_opaque_prf_input_callback_arg(ctx, arg) \
  334. SSL_CTX_ctrl(ctx,SSL_CTRL_SET_TLSEXT_OPAQUE_PRF_INPUT_CB_ARG, 0, arg)
  335. # define SSL_CTX_set_tlsext_ticket_key_cb(ssl, cb) \
  336. SSL_CTX_callback_ctrl(ssl,SSL_CTRL_SET_TLSEXT_TICKET_KEY_CB,(void (*)(void))cb)
  337. # ifndef OPENSSL_NO_HEARTBEATS
  338. # define SSL_TLSEXT_HB_ENABLED 0x01
  339. # define SSL_TLSEXT_HB_DONT_SEND_REQUESTS 0x02
  340. # define SSL_TLSEXT_HB_DONT_RECV_REQUESTS 0x04
  341. # define SSL_get_tlsext_heartbeat_pending(ssl) \
  342. SSL_ctrl((ssl),SSL_CTRL_GET_TLS_EXT_HEARTBEAT_PENDING,0,NULL)
  343. # define SSL_set_tlsext_heartbeat_no_requests(ssl, arg) \
  344. SSL_ctrl((ssl),SSL_CTRL_SET_TLS_EXT_HEARTBEAT_NO_REQUESTS,arg,NULL)
  345. # endif
  346. # endif
  347. /* PSK ciphersuites from 4279 */
  348. # define TLS1_CK_PSK_WITH_RC4_128_SHA 0x0300008A
  349. # define TLS1_CK_PSK_WITH_3DES_EDE_CBC_SHA 0x0300008B
  350. # define TLS1_CK_PSK_WITH_AES_128_CBC_SHA 0x0300008C
  351. # define TLS1_CK_PSK_WITH_AES_256_CBC_SHA 0x0300008D
  352. /*
  353. * Additional TLS ciphersuites from expired Internet Draft
  354. * draft-ietf-tls-56-bit-ciphersuites-01.txt (available if
  355. * TLS1_ALLOW_EXPERIMENTAL_CIPHERSUITES is defined, see s3_lib.c). We
  356. * actually treat them like SSL 3.0 ciphers, which we probably shouldn't.
  357. * Note that the first two are actually not in the IDs.
  358. */
  359. # define TLS1_CK_RSA_EXPORT1024_WITH_RC4_56_MD5 0x03000060/* not in
  360. * ID */
  361. # define TLS1_CK_RSA_EXPORT1024_WITH_RC2_CBC_56_MD5 0x03000061/* not in
  362. * ID */
  363. # define TLS1_CK_RSA_EXPORT1024_WITH_DES_CBC_SHA 0x03000062
  364. # define TLS1_CK_DHE_DSS_EXPORT1024_WITH_DES_CBC_SHA 0x03000063
  365. # define TLS1_CK_RSA_EXPORT1024_WITH_RC4_56_SHA 0x03000064
  366. # define TLS1_CK_DHE_DSS_EXPORT1024_WITH_RC4_56_SHA 0x03000065
  367. # define TLS1_CK_DHE_DSS_WITH_RC4_128_SHA 0x03000066
  368. /* AES ciphersuites from RFC3268 */
  369. # define TLS1_CK_RSA_WITH_AES_128_SHA 0x0300002F
  370. # define TLS1_CK_DH_DSS_WITH_AES_128_SHA 0x03000030
  371. # define TLS1_CK_DH_RSA_WITH_AES_128_SHA 0x03000031
  372. # define TLS1_CK_DHE_DSS_WITH_AES_128_SHA 0x03000032
  373. # define TLS1_CK_DHE_RSA_WITH_AES_128_SHA 0x03000033
  374. # define TLS1_CK_ADH_WITH_AES_128_SHA 0x03000034
  375. # define TLS1_CK_RSA_WITH_AES_256_SHA 0x03000035
  376. # define TLS1_CK_DH_DSS_WITH_AES_256_SHA 0x03000036
  377. # define TLS1_CK_DH_RSA_WITH_AES_256_SHA 0x03000037
  378. # define TLS1_CK_DHE_DSS_WITH_AES_256_SHA 0x03000038
  379. # define TLS1_CK_DHE_RSA_WITH_AES_256_SHA 0x03000039
  380. # define TLS1_CK_ADH_WITH_AES_256_SHA 0x0300003A
  381. /* TLS v1.2 ciphersuites */
  382. # define TLS1_CK_RSA_WITH_NULL_SHA256 0x0300003B
  383. # define TLS1_CK_RSA_WITH_AES_128_SHA256 0x0300003C
  384. # define TLS1_CK_RSA_WITH_AES_256_SHA256 0x0300003D
  385. # define TLS1_CK_DH_DSS_WITH_AES_128_SHA256 0x0300003E
  386. # define TLS1_CK_DH_RSA_WITH_AES_128_SHA256 0x0300003F
  387. # define TLS1_CK_DHE_DSS_WITH_AES_128_SHA256 0x03000040
  388. /* Camellia ciphersuites from RFC4132 */
  389. # define TLS1_CK_RSA_WITH_CAMELLIA_128_CBC_SHA 0x03000041
  390. # define TLS1_CK_DH_DSS_WITH_CAMELLIA_128_CBC_SHA 0x03000042
  391. # define TLS1_CK_DH_RSA_WITH_CAMELLIA_128_CBC_SHA 0x03000043
  392. # define TLS1_CK_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA 0x03000044
  393. # define TLS1_CK_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA 0x03000045
  394. # define TLS1_CK_ADH_WITH_CAMELLIA_128_CBC_SHA 0x03000046
  395. /* TLS v1.2 ciphersuites */
  396. # define TLS1_CK_DHE_RSA_WITH_AES_128_SHA256 0x03000067
  397. # define TLS1_CK_DH_DSS_WITH_AES_256_SHA256 0x03000068
  398. # define TLS1_CK_DH_RSA_WITH_AES_256_SHA256 0x03000069
  399. # define TLS1_CK_DHE_DSS_WITH_AES_256_SHA256 0x0300006A
  400. # define TLS1_CK_DHE_RSA_WITH_AES_256_SHA256 0x0300006B
  401. # define TLS1_CK_ADH_WITH_AES_128_SHA256 0x0300006C
  402. # define TLS1_CK_ADH_WITH_AES_256_SHA256 0x0300006D
  403. /* Camellia ciphersuites from RFC4132 */
  404. # define TLS1_CK_RSA_WITH_CAMELLIA_256_CBC_SHA 0x03000084
  405. # define TLS1_CK_DH_DSS_WITH_CAMELLIA_256_CBC_SHA 0x03000085
  406. # define TLS1_CK_DH_RSA_WITH_CAMELLIA_256_CBC_SHA 0x03000086
  407. # define TLS1_CK_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA 0x03000087
  408. # define TLS1_CK_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA 0x03000088
  409. # define TLS1_CK_ADH_WITH_CAMELLIA_256_CBC_SHA 0x03000089
  410. /* SEED ciphersuites from RFC4162 */
  411. # define TLS1_CK_RSA_WITH_SEED_SHA 0x03000096
  412. # define TLS1_CK_DH_DSS_WITH_SEED_SHA 0x03000097
  413. # define TLS1_CK_DH_RSA_WITH_SEED_SHA 0x03000098
  414. # define TLS1_CK_DHE_DSS_WITH_SEED_SHA 0x03000099
  415. # define TLS1_CK_DHE_RSA_WITH_SEED_SHA 0x0300009A
  416. # define TLS1_CK_ADH_WITH_SEED_SHA 0x0300009B
  417. /* TLS v1.2 GCM ciphersuites from RFC5288 */
  418. # define TLS1_CK_RSA_WITH_AES_128_GCM_SHA256 0x0300009C
  419. # define TLS1_CK_RSA_WITH_AES_256_GCM_SHA384 0x0300009D
  420. # define TLS1_CK_DHE_RSA_WITH_AES_128_GCM_SHA256 0x0300009E
  421. # define TLS1_CK_DHE_RSA_WITH_AES_256_GCM_SHA384 0x0300009F
  422. # define TLS1_CK_DH_RSA_WITH_AES_128_GCM_SHA256 0x030000A0
  423. # define TLS1_CK_DH_RSA_WITH_AES_256_GCM_SHA384 0x030000A1
  424. # define TLS1_CK_DHE_DSS_WITH_AES_128_GCM_SHA256 0x030000A2
  425. # define TLS1_CK_DHE_DSS_WITH_AES_256_GCM_SHA384 0x030000A3
  426. # define TLS1_CK_DH_DSS_WITH_AES_128_GCM_SHA256 0x030000A4
  427. # define TLS1_CK_DH_DSS_WITH_AES_256_GCM_SHA384 0x030000A5
  428. # define TLS1_CK_ADH_WITH_AES_128_GCM_SHA256 0x030000A6
  429. # define TLS1_CK_ADH_WITH_AES_256_GCM_SHA384 0x030000A7
  430. /*
  431. * ECC ciphersuites from draft-ietf-tls-ecc-12.txt with changes soon to be in
  432. * draft 13
  433. */
  434. # define TLS1_CK_ECDH_ECDSA_WITH_NULL_SHA 0x0300C001
  435. # define TLS1_CK_ECDH_ECDSA_WITH_RC4_128_SHA 0x0300C002
  436. # define TLS1_CK_ECDH_ECDSA_WITH_DES_192_CBC3_SHA 0x0300C003
  437. # define TLS1_CK_ECDH_ECDSA_WITH_AES_128_CBC_SHA 0x0300C004
  438. # define TLS1_CK_ECDH_ECDSA_WITH_AES_256_CBC_SHA 0x0300C005
  439. # define TLS1_CK_ECDHE_ECDSA_WITH_NULL_SHA 0x0300C006
  440. # define TLS1_CK_ECDHE_ECDSA_WITH_RC4_128_SHA 0x0300C007
  441. # define TLS1_CK_ECDHE_ECDSA_WITH_DES_192_CBC3_SHA 0x0300C008
  442. # define TLS1_CK_ECDHE_ECDSA_WITH_AES_128_CBC_SHA 0x0300C009
  443. # define TLS1_CK_ECDHE_ECDSA_WITH_AES_256_CBC_SHA 0x0300C00A
  444. # define TLS1_CK_ECDH_RSA_WITH_NULL_SHA 0x0300C00B
  445. # define TLS1_CK_ECDH_RSA_WITH_RC4_128_SHA 0x0300C00C
  446. # define TLS1_CK_ECDH_RSA_WITH_DES_192_CBC3_SHA 0x0300C00D
  447. # define TLS1_CK_ECDH_RSA_WITH_AES_128_CBC_SHA 0x0300C00E
  448. # define TLS1_CK_ECDH_RSA_WITH_AES_256_CBC_SHA 0x0300C00F
  449. # define TLS1_CK_ECDHE_RSA_WITH_NULL_SHA 0x0300C010
  450. # define TLS1_CK_ECDHE_RSA_WITH_RC4_128_SHA 0x0300C011
  451. # define TLS1_CK_ECDHE_RSA_WITH_DES_192_CBC3_SHA 0x0300C012
  452. # define TLS1_CK_ECDHE_RSA_WITH_AES_128_CBC_SHA 0x0300C013
  453. # define TLS1_CK_ECDHE_RSA_WITH_AES_256_CBC_SHA 0x0300C014
  454. # define TLS1_CK_ECDH_anon_WITH_NULL_SHA 0x0300C015
  455. # define TLS1_CK_ECDH_anon_WITH_RC4_128_SHA 0x0300C016
  456. # define TLS1_CK_ECDH_anon_WITH_DES_192_CBC3_SHA 0x0300C017
  457. # define TLS1_CK_ECDH_anon_WITH_AES_128_CBC_SHA 0x0300C018
  458. # define TLS1_CK_ECDH_anon_WITH_AES_256_CBC_SHA 0x0300C019
  459. /* SRP ciphersuites from RFC 5054 */
  460. # define TLS1_CK_SRP_SHA_WITH_3DES_EDE_CBC_SHA 0x0300C01A
  461. # define TLS1_CK_SRP_SHA_RSA_WITH_3DES_EDE_CBC_SHA 0x0300C01B
  462. # define TLS1_CK_SRP_SHA_DSS_WITH_3DES_EDE_CBC_SHA 0x0300C01C
  463. # define TLS1_CK_SRP_SHA_WITH_AES_128_CBC_SHA 0x0300C01D
  464. # define TLS1_CK_SRP_SHA_RSA_WITH_AES_128_CBC_SHA 0x0300C01E
  465. # define TLS1_CK_SRP_SHA_DSS_WITH_AES_128_CBC_SHA 0x0300C01F
  466. # define TLS1_CK_SRP_SHA_WITH_AES_256_CBC_SHA 0x0300C020
  467. # define TLS1_CK_SRP_SHA_RSA_WITH_AES_256_CBC_SHA 0x0300C021
  468. # define TLS1_CK_SRP_SHA_DSS_WITH_AES_256_CBC_SHA 0x0300C022
  469. /* ECDH HMAC based ciphersuites from RFC5289 */
  470. # define TLS1_CK_ECDHE_ECDSA_WITH_AES_128_SHA256 0x0300C023
  471. # define TLS1_CK_ECDHE_ECDSA_WITH_AES_256_SHA384 0x0300C024
  472. # define TLS1_CK_ECDH_ECDSA_WITH_AES_128_SHA256 0x0300C025
  473. # define TLS1_CK_ECDH_ECDSA_WITH_AES_256_SHA384 0x0300C026
  474. # define TLS1_CK_ECDHE_RSA_WITH_AES_128_SHA256 0x0300C027
  475. # define TLS1_CK_ECDHE_RSA_WITH_AES_256_SHA384 0x0300C028
  476. # define TLS1_CK_ECDH_RSA_WITH_AES_128_SHA256 0x0300C029
  477. # define TLS1_CK_ECDH_RSA_WITH_AES_256_SHA384 0x0300C02A
  478. /* ECDH GCM based ciphersuites from RFC5289 */
  479. # define TLS1_CK_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 0x0300C02B
  480. # define TLS1_CK_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 0x0300C02C
  481. # define TLS1_CK_ECDH_ECDSA_WITH_AES_128_GCM_SHA256 0x0300C02D
  482. # define TLS1_CK_ECDH_ECDSA_WITH_AES_256_GCM_SHA384 0x0300C02E
  483. # define TLS1_CK_ECDHE_RSA_WITH_AES_128_GCM_SHA256 0x0300C02F
  484. # define TLS1_CK_ECDHE_RSA_WITH_AES_256_GCM_SHA384 0x0300C030
  485. # define TLS1_CK_ECDH_RSA_WITH_AES_128_GCM_SHA256 0x0300C031
  486. # define TLS1_CK_ECDH_RSA_WITH_AES_256_GCM_SHA384 0x0300C032
  487. /*
  488. * XXX * Backward compatibility alert: + * Older versions of OpenSSL gave
  489. * some DHE ciphers names with "EDH" + * instead of "DHE". Going forward, we
  490. * should be using DHE + * everywhere, though we may indefinitely maintain
  491. * aliases for users + * or configurations that used "EDH" +
  492. */
  493. # define TLS1_TXT_RSA_EXPORT1024_WITH_RC4_56_MD5 "EXP1024-RC4-MD5"
  494. # define TLS1_TXT_RSA_EXPORT1024_WITH_RC2_CBC_56_MD5 "EXP1024-RC2-CBC-MD5"
  495. # define TLS1_TXT_RSA_EXPORT1024_WITH_DES_CBC_SHA "EXP1024-DES-CBC-SHA"
  496. # define TLS1_TXT_DHE_DSS_EXPORT1024_WITH_DES_CBC_SHA "EXP1024-DHE-DSS-DES-CBC-SHA"
  497. # define TLS1_TXT_RSA_EXPORT1024_WITH_RC4_56_SHA "EXP1024-RC4-SHA"
  498. # define TLS1_TXT_DHE_DSS_EXPORT1024_WITH_RC4_56_SHA "EXP1024-DHE-DSS-RC4-SHA"
  499. # define TLS1_TXT_DHE_DSS_WITH_RC4_128_SHA "DHE-DSS-RC4-SHA"
  500. /* AES ciphersuites from RFC3268 */
  501. # define TLS1_TXT_RSA_WITH_AES_128_SHA "AES128-SHA"
  502. # define TLS1_TXT_DH_DSS_WITH_AES_128_SHA "DH-DSS-AES128-SHA"
  503. # define TLS1_TXT_DH_RSA_WITH_AES_128_SHA "DH-RSA-AES128-SHA"
  504. # define TLS1_TXT_DHE_DSS_WITH_AES_128_SHA "DHE-DSS-AES128-SHA"
  505. # define TLS1_TXT_DHE_RSA_WITH_AES_128_SHA "DHE-RSA-AES128-SHA"
  506. # define TLS1_TXT_ADH_WITH_AES_128_SHA "ADH-AES128-SHA"
  507. # define TLS1_TXT_RSA_WITH_AES_256_SHA "AES256-SHA"
  508. # define TLS1_TXT_DH_DSS_WITH_AES_256_SHA "DH-DSS-AES256-SHA"
  509. # define TLS1_TXT_DH_RSA_WITH_AES_256_SHA "DH-RSA-AES256-SHA"
  510. # define TLS1_TXT_DHE_DSS_WITH_AES_256_SHA "DHE-DSS-AES256-SHA"
  511. # define TLS1_TXT_DHE_RSA_WITH_AES_256_SHA "DHE-RSA-AES256-SHA"
  512. # define TLS1_TXT_ADH_WITH_AES_256_SHA "ADH-AES256-SHA"
  513. /* ECC ciphersuites from RFC4492 */
  514. # define TLS1_TXT_ECDH_ECDSA_WITH_NULL_SHA "ECDH-ECDSA-NULL-SHA"
  515. # define TLS1_TXT_ECDH_ECDSA_WITH_RC4_128_SHA "ECDH-ECDSA-RC4-SHA"
  516. # define TLS1_TXT_ECDH_ECDSA_WITH_DES_192_CBC3_SHA "ECDH-ECDSA-DES-CBC3-SHA"
  517. # define TLS1_TXT_ECDH_ECDSA_WITH_AES_128_CBC_SHA "ECDH-ECDSA-AES128-SHA"
  518. # define TLS1_TXT_ECDH_ECDSA_WITH_AES_256_CBC_SHA "ECDH-ECDSA-AES256-SHA"
  519. # define TLS1_TXT_ECDHE_ECDSA_WITH_NULL_SHA "ECDHE-ECDSA-NULL-SHA"
  520. # define TLS1_TXT_ECDHE_ECDSA_WITH_RC4_128_SHA "ECDHE-ECDSA-RC4-SHA"
  521. # define TLS1_TXT_ECDHE_ECDSA_WITH_DES_192_CBC3_SHA "ECDHE-ECDSA-DES-CBC3-SHA"
  522. # define TLS1_TXT_ECDHE_ECDSA_WITH_AES_128_CBC_SHA "ECDHE-ECDSA-AES128-SHA"
  523. # define TLS1_TXT_ECDHE_ECDSA_WITH_AES_256_CBC_SHA "ECDHE-ECDSA-AES256-SHA"
  524. # define TLS1_TXT_ECDH_RSA_WITH_NULL_SHA "ECDH-RSA-NULL-SHA"
  525. # define TLS1_TXT_ECDH_RSA_WITH_RC4_128_SHA "ECDH-RSA-RC4-SHA"
  526. # define TLS1_TXT_ECDH_RSA_WITH_DES_192_CBC3_SHA "ECDH-RSA-DES-CBC3-SHA"
  527. # define TLS1_TXT_ECDH_RSA_WITH_AES_128_CBC_SHA "ECDH-RSA-AES128-SHA"
  528. # define TLS1_TXT_ECDH_RSA_WITH_AES_256_CBC_SHA "ECDH-RSA-AES256-SHA"
  529. # define TLS1_TXT_ECDHE_RSA_WITH_NULL_SHA "ECDHE-RSA-NULL-SHA"
  530. # define TLS1_TXT_ECDHE_RSA_WITH_RC4_128_SHA "ECDHE-RSA-RC4-SHA"
  531. # define TLS1_TXT_ECDHE_RSA_WITH_DES_192_CBC3_SHA "ECDHE-RSA-DES-CBC3-SHA"
  532. # define TLS1_TXT_ECDHE_RSA_WITH_AES_128_CBC_SHA "ECDHE-RSA-AES128-SHA"
  533. # define TLS1_TXT_ECDHE_RSA_WITH_AES_256_CBC_SHA "ECDHE-RSA-AES256-SHA"
  534. # define TLS1_TXT_ECDH_anon_WITH_NULL_SHA "AECDH-NULL-SHA"
  535. # define TLS1_TXT_ECDH_anon_WITH_RC4_128_SHA "AECDH-RC4-SHA"
  536. # define TLS1_TXT_ECDH_anon_WITH_DES_192_CBC3_SHA "AECDH-DES-CBC3-SHA"
  537. # define TLS1_TXT_ECDH_anon_WITH_AES_128_CBC_SHA "AECDH-AES128-SHA"
  538. # define TLS1_TXT_ECDH_anon_WITH_AES_256_CBC_SHA "AECDH-AES256-SHA"
  539. /* PSK ciphersuites from RFC 4279 */
  540. # define TLS1_TXT_PSK_WITH_RC4_128_SHA "PSK-RC4-SHA"
  541. # define TLS1_TXT_PSK_WITH_3DES_EDE_CBC_SHA "PSK-3DES-EDE-CBC-SHA"
  542. # define TLS1_TXT_PSK_WITH_AES_128_CBC_SHA "PSK-AES128-CBC-SHA"
  543. # define TLS1_TXT_PSK_WITH_AES_256_CBC_SHA "PSK-AES256-CBC-SHA"
  544. /* SRP ciphersuite from RFC 5054 */
  545. # define TLS1_TXT_SRP_SHA_WITH_3DES_EDE_CBC_SHA "SRP-3DES-EDE-CBC-SHA"
  546. # define TLS1_TXT_SRP_SHA_RSA_WITH_3DES_EDE_CBC_SHA "SRP-RSA-3DES-EDE-CBC-SHA"
  547. # define TLS1_TXT_SRP_SHA_DSS_WITH_3DES_EDE_CBC_SHA "SRP-DSS-3DES-EDE-CBC-SHA"
  548. # define TLS1_TXT_SRP_SHA_WITH_AES_128_CBC_SHA "SRP-AES-128-CBC-SHA"
  549. # define TLS1_TXT_SRP_SHA_RSA_WITH_AES_128_CBC_SHA "SRP-RSA-AES-128-CBC-SHA"
  550. # define TLS1_TXT_SRP_SHA_DSS_WITH_AES_128_CBC_SHA "SRP-DSS-AES-128-CBC-SHA"
  551. # define TLS1_TXT_SRP_SHA_WITH_AES_256_CBC_SHA "SRP-AES-256-CBC-SHA"
  552. # define TLS1_TXT_SRP_SHA_RSA_WITH_AES_256_CBC_SHA "SRP-RSA-AES-256-CBC-SHA"
  553. # define TLS1_TXT_SRP_SHA_DSS_WITH_AES_256_CBC_SHA "SRP-DSS-AES-256-CBC-SHA"
  554. /* Camellia ciphersuites from RFC4132 */
  555. # define TLS1_TXT_RSA_WITH_CAMELLIA_128_CBC_SHA "CAMELLIA128-SHA"
  556. # define TLS1_TXT_DH_DSS_WITH_CAMELLIA_128_CBC_SHA "DH-DSS-CAMELLIA128-SHA"
  557. # define TLS1_TXT_DH_RSA_WITH_CAMELLIA_128_CBC_SHA "DH-RSA-CAMELLIA128-SHA"
  558. # define TLS1_TXT_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA "DHE-DSS-CAMELLIA128-SHA"
  559. # define TLS1_TXT_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA "DHE-RSA-CAMELLIA128-SHA"
  560. # define TLS1_TXT_ADH_WITH_CAMELLIA_128_CBC_SHA "ADH-CAMELLIA128-SHA"
  561. # define TLS1_TXT_RSA_WITH_CAMELLIA_256_CBC_SHA "CAMELLIA256-SHA"
  562. # define TLS1_TXT_DH_DSS_WITH_CAMELLIA_256_CBC_SHA "DH-DSS-CAMELLIA256-SHA"
  563. # define TLS1_TXT_DH_RSA_WITH_CAMELLIA_256_CBC_SHA "DH-RSA-CAMELLIA256-SHA"
  564. # define TLS1_TXT_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA "DHE-DSS-CAMELLIA256-SHA"
  565. # define TLS1_TXT_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA "DHE-RSA-CAMELLIA256-SHA"
  566. # define TLS1_TXT_ADH_WITH_CAMELLIA_256_CBC_SHA "ADH-CAMELLIA256-SHA"
  567. /* SEED ciphersuites from RFC4162 */
  568. # define TLS1_TXT_RSA_WITH_SEED_SHA "SEED-SHA"
  569. # define TLS1_TXT_DH_DSS_WITH_SEED_SHA "DH-DSS-SEED-SHA"
  570. # define TLS1_TXT_DH_RSA_WITH_SEED_SHA "DH-RSA-SEED-SHA"
  571. # define TLS1_TXT_DHE_DSS_WITH_SEED_SHA "DHE-DSS-SEED-SHA"
  572. # define TLS1_TXT_DHE_RSA_WITH_SEED_SHA "DHE-RSA-SEED-SHA"
  573. # define TLS1_TXT_ADH_WITH_SEED_SHA "ADH-SEED-SHA"
  574. /* TLS v1.2 ciphersuites */
  575. # define TLS1_TXT_RSA_WITH_NULL_SHA256 "NULL-SHA256"
  576. # define TLS1_TXT_RSA_WITH_AES_128_SHA256 "AES128-SHA256"
  577. # define TLS1_TXT_RSA_WITH_AES_256_SHA256 "AES256-SHA256"
  578. # define TLS1_TXT_DH_DSS_WITH_AES_128_SHA256 "DH-DSS-AES128-SHA256"
  579. # define TLS1_TXT_DH_RSA_WITH_AES_128_SHA256 "DH-RSA-AES128-SHA256"
  580. # define TLS1_TXT_DHE_DSS_WITH_AES_128_SHA256 "DHE-DSS-AES128-SHA256"
  581. # define TLS1_TXT_DHE_RSA_WITH_AES_128_SHA256 "DHE-RSA-AES128-SHA256"
  582. # define TLS1_TXT_DH_DSS_WITH_AES_256_SHA256 "DH-DSS-AES256-SHA256"
  583. # define TLS1_TXT_DH_RSA_WITH_AES_256_SHA256 "DH-RSA-AES256-SHA256"
  584. # define TLS1_TXT_DHE_DSS_WITH_AES_256_SHA256 "DHE-DSS-AES256-SHA256"
  585. # define TLS1_TXT_DHE_RSA_WITH_AES_256_SHA256 "DHE-RSA-AES256-SHA256"
  586. # define TLS1_TXT_ADH_WITH_AES_128_SHA256 "ADH-AES128-SHA256"
  587. # define TLS1_TXT_ADH_WITH_AES_256_SHA256 "ADH-AES256-SHA256"
  588. /* TLS v1.2 GCM ciphersuites from RFC5288 */
  589. # define TLS1_TXT_RSA_WITH_AES_128_GCM_SHA256 "AES128-GCM-SHA256"
  590. # define TLS1_TXT_RSA_WITH_AES_256_GCM_SHA384 "AES256-GCM-SHA384"
  591. # define TLS1_TXT_DHE_RSA_WITH_AES_128_GCM_SHA256 "DHE-RSA-AES128-GCM-SHA256"
  592. # define TLS1_TXT_DHE_RSA_WITH_AES_256_GCM_SHA384 "DHE-RSA-AES256-GCM-SHA384"
  593. # define TLS1_TXT_DH_RSA_WITH_AES_128_GCM_SHA256 "DH-RSA-AES128-GCM-SHA256"
  594. # define TLS1_TXT_DH_RSA_WITH_AES_256_GCM_SHA384 "DH-RSA-AES256-GCM-SHA384"
  595. # define TLS1_TXT_DHE_DSS_WITH_AES_128_GCM_SHA256 "DHE-DSS-AES128-GCM-SHA256"
  596. # define TLS1_TXT_DHE_DSS_WITH_AES_256_GCM_SHA384 "DHE-DSS-AES256-GCM-SHA384"
  597. # define TLS1_TXT_DH_DSS_WITH_AES_128_GCM_SHA256 "DH-DSS-AES128-GCM-SHA256"
  598. # define TLS1_TXT_DH_DSS_WITH_AES_256_GCM_SHA384 "DH-DSS-AES256-GCM-SHA384"
  599. # define TLS1_TXT_ADH_WITH_AES_128_GCM_SHA256 "ADH-AES128-GCM-SHA256"
  600. # define TLS1_TXT_ADH_WITH_AES_256_GCM_SHA384 "ADH-AES256-GCM-SHA384"
  601. /* ECDH HMAC based ciphersuites from RFC5289 */
  602. # define TLS1_TXT_ECDHE_ECDSA_WITH_AES_128_SHA256 "ECDHE-ECDSA-AES128-SHA256"
  603. # define TLS1_TXT_ECDHE_ECDSA_WITH_AES_256_SHA384 "ECDHE-ECDSA-AES256-SHA384"
  604. # define TLS1_TXT_ECDH_ECDSA_WITH_AES_128_SHA256 "ECDH-ECDSA-AES128-SHA256"
  605. # define TLS1_TXT_ECDH_ECDSA_WITH_AES_256_SHA384 "ECDH-ECDSA-AES256-SHA384"
  606. # define TLS1_TXT_ECDHE_RSA_WITH_AES_128_SHA256 "ECDHE-RSA-AES128-SHA256"
  607. # define TLS1_TXT_ECDHE_RSA_WITH_AES_256_SHA384 "ECDHE-RSA-AES256-SHA384"
  608. # define TLS1_TXT_ECDH_RSA_WITH_AES_128_SHA256 "ECDH-RSA-AES128-SHA256"
  609. # define TLS1_TXT_ECDH_RSA_WITH_AES_256_SHA384 "ECDH-RSA-AES256-SHA384"
  610. /* ECDH GCM based ciphersuites from RFC5289 */
  611. # define TLS1_TXT_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 "ECDHE-ECDSA-AES128-GCM-SHA256"
  612. # define TLS1_TXT_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 "ECDHE-ECDSA-AES256-GCM-SHA384"
  613. # define TLS1_TXT_ECDH_ECDSA_WITH_AES_128_GCM_SHA256 "ECDH-ECDSA-AES128-GCM-SHA256"
  614. # define TLS1_TXT_ECDH_ECDSA_WITH_AES_256_GCM_SHA384 "ECDH-ECDSA-AES256-GCM-SHA384"
  615. # define TLS1_TXT_ECDHE_RSA_WITH_AES_128_GCM_SHA256 "ECDHE-RSA-AES128-GCM-SHA256"
  616. # define TLS1_TXT_ECDHE_RSA_WITH_AES_256_GCM_SHA384 "ECDHE-RSA-AES256-GCM-SHA384"
  617. # define TLS1_TXT_ECDH_RSA_WITH_AES_128_GCM_SHA256 "ECDH-RSA-AES128-GCM-SHA256"
  618. # define TLS1_TXT_ECDH_RSA_WITH_AES_256_GCM_SHA384 "ECDH-RSA-AES256-GCM-SHA384"
  619. # define TLS_CT_RSA_SIGN 1
  620. # define TLS_CT_DSS_SIGN 2
  621. # define TLS_CT_RSA_FIXED_DH 3
  622. # define TLS_CT_DSS_FIXED_DH 4
  623. # define TLS_CT_ECDSA_SIGN 64
  624. # define TLS_CT_RSA_FIXED_ECDH 65
  625. # define TLS_CT_ECDSA_FIXED_ECDH 66
  626. # define TLS_CT_GOST94_SIGN 21
  627. # define TLS_CT_GOST01_SIGN 22
  628. /*
  629. * when correcting this number, correct also SSL3_CT_NUMBER in ssl3.h (see
  630. * comment there)
  631. */
  632. # define TLS_CT_NUMBER 9
  633. # define TLS1_FINISH_MAC_LENGTH 12
  634. # define TLS_MD_MAX_CONST_SIZE 20
  635. # define TLS_MD_CLIENT_FINISH_CONST "client finished"
  636. # define TLS_MD_CLIENT_FINISH_CONST_SIZE 15
  637. # define TLS_MD_SERVER_FINISH_CONST "server finished"
  638. # define TLS_MD_SERVER_FINISH_CONST_SIZE 15
  639. # define TLS_MD_SERVER_WRITE_KEY_CONST "server write key"
  640. # define TLS_MD_SERVER_WRITE_KEY_CONST_SIZE 16
  641. # define TLS_MD_KEY_EXPANSION_CONST "key expansion"
  642. # define TLS_MD_KEY_EXPANSION_CONST_SIZE 13
  643. # define TLS_MD_CLIENT_WRITE_KEY_CONST "client write key"
  644. # define TLS_MD_CLIENT_WRITE_KEY_CONST_SIZE 16
  645. # define TLS_MD_SERVER_WRITE_KEY_CONST "server write key"
  646. # define TLS_MD_SERVER_WRITE_KEY_CONST_SIZE 16
  647. # define TLS_MD_IV_BLOCK_CONST "IV block"
  648. # define TLS_MD_IV_BLOCK_CONST_SIZE 8
  649. # define TLS_MD_MASTER_SECRET_CONST "master secret"
  650. # define TLS_MD_MASTER_SECRET_CONST_SIZE 13
  651. # ifdef CHARSET_EBCDIC
  652. # undef TLS_MD_CLIENT_FINISH_CONST
  653. /*
  654. * client finished
  655. */
  656. # define TLS_MD_CLIENT_FINISH_CONST "\x63\x6c\x69\x65\x6e\x74\x20\x66\x69\x6e\x69\x73\x68\x65\x64"
  657. # undef TLS_MD_SERVER_FINISH_CONST
  658. /*
  659. * server finished
  660. */
  661. # define TLS_MD_SERVER_FINISH_CONST "\x73\x65\x72\x76\x65\x72\x20\x66\x69\x6e\x69\x73\x68\x65\x64"
  662. # undef TLS_MD_SERVER_WRITE_KEY_CONST
  663. /*
  664. * server write key
  665. */
  666. # define TLS_MD_SERVER_WRITE_KEY_CONST "\x73\x65\x72\x76\x65\x72\x20\x77\x72\x69\x74\x65\x20\x6b\x65\x79"
  667. # undef TLS_MD_KEY_EXPANSION_CONST
  668. /*
  669. * key expansion
  670. */
  671. # define TLS_MD_KEY_EXPANSION_CONST "\x6b\x65\x79\x20\x65\x78\x70\x61\x6e\x73\x69\x6f\x6e"
  672. # undef TLS_MD_CLIENT_WRITE_KEY_CONST
  673. /*
  674. * client write key
  675. */
  676. # define TLS_MD_CLIENT_WRITE_KEY_CONST "\x63\x6c\x69\x65\x6e\x74\x20\x77\x72\x69\x74\x65\x20\x6b\x65\x79"
  677. # undef TLS_MD_SERVER_WRITE_KEY_CONST
  678. /*
  679. * server write key
  680. */
  681. # define TLS_MD_SERVER_WRITE_KEY_CONST "\x73\x65\x72\x76\x65\x72\x20\x77\x72\x69\x74\x65\x20\x6b\x65\x79"
  682. # undef TLS_MD_IV_BLOCK_CONST
  683. /*
  684. * IV block
  685. */
  686. # define TLS_MD_IV_BLOCK_CONST "\x49\x56\x20\x62\x6c\x6f\x63\x6b"
  687. # undef TLS_MD_MASTER_SECRET_CONST
  688. /*
  689. * master secret
  690. */
  691. # define TLS_MD_MASTER_SECRET_CONST "\x6d\x61\x73\x74\x65\x72\x20\x73\x65\x63\x72\x65\x74"
  692. # endif
  693. /* TLS Session Ticket extension struct */
  694. struct tls_session_ticket_ext_st {
  695. unsigned short length;
  696. void *data;
  697. };
  698. #ifdef __cplusplus
  699. }
  700. #endif
  701. #endif