sandbox
/
mbedtls
Important changes to repositories hosted on mbed.com
Mbed hosted mercurial repositories are deprecated and are due to be permanently deleted in July 2026.
To keep a copy of this software download the repository Zip archive or clone locally using Mercurial.
It is also possible to export all your personal repositories from the account settings page.
Fork of
mbedtls
by 
Christopher Haster
Embed:
(wiki syntax)
Show/hide line numbers
ssl_ciphersuites.c
Go to the documentation of this file.
00001 /** 00002 * \file ssl_ciphersuites.c 00003 * 00004 * \brief SSL ciphersuites for mbed TLS 00005 * 00006 * Copyright (C) 2006-2015, ARM Limited, All Rights Reserved 00007 * SPDX-License-Identifier: Apache-2.0 00008 * 00009 * Licensed under the Apache License, Version 2.0 (the "License"); you may 00010 * not use this file except in compliance with the License. 00011 * You may obtain a copy of the License at 00012 * 00013 * http://www.apache.org/licenses/LICENSE-2.0 00014 * 00015 * Unless required by applicable law or agreed to in writing, software 00016 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT 00017 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 00018 * See the License for the specific language governing permissions and 00019 * limitations under the License. 00020 * 00021 * This file is part of mbed TLS (https://tls.mbed.org) 00022 */ 00023 00024 #if !defined(MBEDTLS_CONFIG_FILE) 00025 #include "mbedtls/config.h" 00026 #else 00027 #include MBEDTLS_CONFIG_FILE 00028 #endif 00029 00030 #if defined(MBEDTLS_SSL_TLS_C) 00031 00032 #include "mbedtls/ssl_ciphersuites.h" 00033 #include "mbedtls/ssl.h" 00034 00035 // #include <stdlib.h> 00036 #include <string.h> 00037 00038 /* 00039 * Ordered from most preferred to least preferred in terms of security. 00040 * 00041 * Current rule (except rc4, weak and null which come last): 00042 * 1. By key exchange: 00043 * Forward-secure non-PSK > forward-secure PSK > ECJPAKE > other non-PSK > other PSK 00044 * 2. By key length and cipher: 00045 * AES-256 > Camellia-256 > AES-128 > Camellia-128 > 3DES 00046 * 3. By cipher mode when relevant GCM > CCM > CBC > CCM_8 00047 * 4. By hash function used when relevant 00048 * 5. By key exchange/auth again: EC > non-EC 00049 */ 00050 static const int ciphersuite_preference[] = 00051 { 00052 #if defined(MBEDTLS_SSL_CIPHERSUITES) 00053 MBEDTLS_SSL_CIPHERSUITES, 00054 #else 00055 /* All AES-256 ephemeral suites */ 00056 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, 00057 MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, 00058 MBEDTLS_TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, 00059 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CCM, 00060 MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CCM, 00061 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, 00062 MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, 00063 MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA256, 00064 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, 00065 MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, 00066 MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA, 00067 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CCM_8, 00068 MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CCM_8, 00069 00070 /* All CAMELLIA-256 ephemeral suites */ 00071 MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384, 00072 MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_GCM_SHA384, 00073 MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_GCM_SHA384, 00074 MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384, 00075 MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384, 00076 MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256, 00077 MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA, 00078 00079 /* All AES-128 ephemeral suites */ 00080 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, 00081 MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, 00082 MBEDTLS_TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, 00083 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CCM, 00084 MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CCM, 00085 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, 00086 MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, 00087 MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA256, 00088 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, 00089 MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, 00090 MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA, 00091 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8, 00092 MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CCM_8, 00093 00094 /* All CAMELLIA-128 ephemeral suites */ 00095 MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_GCM_SHA256, 00096 MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_GCM_SHA256, 00097 MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_GCM_SHA256, 00098 MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256, 00099 MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256, 00100 MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256, 00101 MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA, 00102 00103 /* All remaining >= 128-bit ephemeral suites */ 00104 MBEDTLS_TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA, 00105 MBEDTLS_TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, 00106 MBEDTLS_TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA, 00107 00108 /* The PSK ephemeral suites */ 00109 MBEDTLS_TLS_DHE_PSK_WITH_AES_256_GCM_SHA384, 00110 MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CCM, 00111 MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA384, 00112 MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA384, 00113 MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA, 00114 MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA, 00115 MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_GCM_SHA384, 00116 MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384, 00117 MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384, 00118 MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CCM_8, 00119 00120 MBEDTLS_TLS_DHE_PSK_WITH_AES_128_GCM_SHA256, 00121 MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CCM, 00122 MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256, 00123 MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA256, 00124 MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA, 00125 MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA, 00126 MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_GCM_SHA256, 00127 MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256, 00128 MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256, 00129 MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CCM_8, 00130 00131 MBEDTLS_TLS_ECDHE_PSK_WITH_3DES_EDE_CBC_SHA, 00132 MBEDTLS_TLS_DHE_PSK_WITH_3DES_EDE_CBC_SHA, 00133 00134 /* The ECJPAKE suite */ 00135 MBEDTLS_TLS_ECJPAKE_WITH_AES_128_CCM_8, 00136 00137 /* All AES-256 suites */ 00138 MBEDTLS_TLS_RSA_WITH_AES_256_GCM_SHA384, 00139 MBEDTLS_TLS_RSA_WITH_AES_256_CCM, 00140 MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA256, 00141 MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA, 00142 MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384, 00143 MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384, 00144 MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA, 00145 MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384, 00146 MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384, 00147 MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA, 00148 MBEDTLS_TLS_RSA_WITH_AES_256_CCM_8, 00149 00150 /* All CAMELLIA-256 suites */ 00151 MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_GCM_SHA384, 00152 MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256, 00153 MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA, 00154 MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384, 00155 MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384, 00156 MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384, 00157 MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384, 00158 00159 /* All AES-128 suites */ 00160 MBEDTLS_TLS_RSA_WITH_AES_128_GCM_SHA256, 00161 MBEDTLS_TLS_RSA_WITH_AES_128_CCM, 00162 MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA256, 00163 MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA, 00164 MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256, 00165 MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256, 00166 MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA, 00167 MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256, 00168 MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256, 00169 MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA, 00170 MBEDTLS_TLS_RSA_WITH_AES_128_CCM_8, 00171 00172 /* All CAMELLIA-128 suites */ 00173 MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_GCM_SHA256, 00174 MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256, 00175 MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA, 00176 MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256, 00177 MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256, 00178 MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256, 00179 MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256, 00180 00181 /* All remaining >= 128-bit suites */ 00182 MBEDTLS_TLS_RSA_WITH_3DES_EDE_CBC_SHA, 00183 MBEDTLS_TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA, 00184 MBEDTLS_TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA, 00185 00186 /* The RSA PSK suites */ 00187 MBEDTLS_TLS_RSA_PSK_WITH_AES_256_GCM_SHA384, 00188 MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA384, 00189 MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA, 00190 MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_GCM_SHA384, 00191 MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384, 00192 00193 MBEDTLS_TLS_RSA_PSK_WITH_AES_128_GCM_SHA256, 00194 MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA256, 00195 MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA, 00196 MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_GCM_SHA256, 00197 MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256, 00198 00199 MBEDTLS_TLS_RSA_PSK_WITH_3DES_EDE_CBC_SHA, 00200 00201 /* The PSK suites */ 00202 MBEDTLS_TLS_PSK_WITH_AES_256_GCM_SHA384, 00203 MBEDTLS_TLS_PSK_WITH_AES_256_CCM, 00204 MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA384, 00205 MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA, 00206 MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_GCM_SHA384, 00207 MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_CBC_SHA384, 00208 MBEDTLS_TLS_PSK_WITH_AES_256_CCM_8, 00209 00210 MBEDTLS_TLS_PSK_WITH_AES_128_GCM_SHA256, 00211 MBEDTLS_TLS_PSK_WITH_AES_128_CCM, 00212 MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA256, 00213 MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA, 00214 MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_GCM_SHA256, 00215 MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256, 00216 MBEDTLS_TLS_PSK_WITH_AES_128_CCM_8, 00217 00218 MBEDTLS_TLS_PSK_WITH_3DES_EDE_CBC_SHA, 00219 00220 /* RC4 suites */ 00221 MBEDTLS_TLS_ECDHE_ECDSA_WITH_RC4_128_SHA, 00222 MBEDTLS_TLS_ECDHE_RSA_WITH_RC4_128_SHA, 00223 MBEDTLS_TLS_ECDHE_PSK_WITH_RC4_128_SHA, 00224 MBEDTLS_TLS_DHE_PSK_WITH_RC4_128_SHA, 00225 MBEDTLS_TLS_RSA_WITH_RC4_128_SHA, 00226 MBEDTLS_TLS_RSA_WITH_RC4_128_MD5, 00227 MBEDTLS_TLS_ECDH_RSA_WITH_RC4_128_SHA, 00228 MBEDTLS_TLS_ECDH_ECDSA_WITH_RC4_128_SHA, 00229 MBEDTLS_TLS_RSA_PSK_WITH_RC4_128_SHA, 00230 MBEDTLS_TLS_PSK_WITH_RC4_128_SHA, 00231 00232 /* Weak suites */ 00233 MBEDTLS_TLS_DHE_RSA_WITH_DES_CBC_SHA, 00234 MBEDTLS_TLS_RSA_WITH_DES_CBC_SHA, 00235 00236 /* NULL suites */ 00237 MBEDTLS_TLS_ECDHE_ECDSA_WITH_NULL_SHA, 00238 MBEDTLS_TLS_ECDHE_RSA_WITH_NULL_SHA, 00239 MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA384, 00240 MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA256, 00241 MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA, 00242 MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA384, 00243 MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA256, 00244 MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA, 00245 00246 MBEDTLS_TLS_RSA_WITH_NULL_SHA256, 00247 MBEDTLS_TLS_RSA_WITH_NULL_SHA, 00248 MBEDTLS_TLS_RSA_WITH_NULL_MD5, 00249 MBEDTLS_TLS_ECDH_RSA_WITH_NULL_SHA, 00250 MBEDTLS_TLS_ECDH_ECDSA_WITH_NULL_SHA, 00251 MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA384, 00252 MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA256, 00253 MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA, 00254 MBEDTLS_TLS_PSK_WITH_NULL_SHA384, 00255 MBEDTLS_TLS_PSK_WITH_NULL_SHA256, 00256 MBEDTLS_TLS_PSK_WITH_NULL_SHA, 00257 00258 #endif /* MBEDTLS_SSL_CIPHERSUITES */ 00259 0 00260 }; 00261 00262 static const mbedtls_ssl_ciphersuite_t ciphersuite_definitions[] = 00263 { 00264 #if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED) 00265 #if defined(MBEDTLS_AES_C) 00266 #if defined(MBEDTLS_SHA1_C) 00267 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00268 { MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, "TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA", 00269 MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA, 00270 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00271 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00272 0 }, 00273 { MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, "TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA", 00274 MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA, 00275 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00276 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00277 0 }, 00278 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00279 #endif /* MBEDTLS_SHA1_C */ 00280 #if defined(MBEDTLS_SHA256_C) 00281 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00282 { MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, "TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256", 00283 MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA, 00284 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00285 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00286 0 }, 00287 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00288 #if defined(MBEDTLS_GCM_C) 00289 { MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, "TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256", 00290 MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA, 00291 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00292 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00293 0 }, 00294 #endif /* MBEDTLS_GCM_C */ 00295 #endif /* MBEDTLS_SHA256_C */ 00296 #if defined(MBEDTLS_SHA512_C) 00297 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00298 { MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, "TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384", 00299 MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA, 00300 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00301 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00302 0 }, 00303 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00304 #if defined(MBEDTLS_GCM_C) 00305 { MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, "TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384", 00306 MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA, 00307 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00308 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00309 0 }, 00310 #endif /* MBEDTLS_GCM_C */ 00311 #endif /* MBEDTLS_SHA512_C */ 00312 #if defined(MBEDTLS_CCM_C) 00313 { MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CCM, "TLS-ECDHE-ECDSA-WITH-AES-256-CCM", 00314 MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA, 00315 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00316 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00317 0 }, 00318 { MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CCM_8, "TLS-ECDHE-ECDSA-WITH-AES-256-CCM-8", 00319 MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA, 00320 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00321 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00322 MBEDTLS_CIPHERSUITE_SHORT_TAG }, 00323 { MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CCM, "TLS-ECDHE-ECDSA-WITH-AES-128-CCM", 00324 MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA, 00325 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00326 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00327 0 }, 00328 { MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8, "TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8", 00329 MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA, 00330 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00331 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00332 MBEDTLS_CIPHERSUITE_SHORT_TAG }, 00333 #endif /* MBEDTLS_CCM_C */ 00334 #endif /* MBEDTLS_AES_C */ 00335 00336 #if defined(MBEDTLS_CAMELLIA_C) 00337 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00338 #if defined(MBEDTLS_SHA256_C) 00339 { MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256, "TLS-ECDHE-ECDSA-WITH-CAMELLIA-128-CBC-SHA256", 00340 MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA, 00341 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00342 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00343 0 }, 00344 #endif /* MBEDTLS_SHA256_C */ 00345 #if defined(MBEDTLS_SHA512_C) 00346 { MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384, "TLS-ECDHE-ECDSA-WITH-CAMELLIA-256-CBC-SHA384", 00347 MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA, 00348 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00349 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00350 0 }, 00351 #endif /* MBEDTLS_SHA512_C */ 00352 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00353 00354 #if defined(MBEDTLS_GCM_C) 00355 #if defined(MBEDTLS_SHA256_C) 00356 { MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_GCM_SHA256, "TLS-ECDHE-ECDSA-WITH-CAMELLIA-128-GCM-SHA256", 00357 MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA, 00358 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00359 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00360 0 }, 00361 #endif /* MBEDTLS_SHA256_C */ 00362 #if defined(MBEDTLS_SHA512_C) 00363 { MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384, "TLS-ECDHE-ECDSA-WITH-CAMELLIA-256-GCM-SHA384", 00364 MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA, 00365 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00366 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00367 0 }, 00368 #endif /* MBEDTLS_SHA512_C */ 00369 #endif /* MBEDTLS_GCM_C */ 00370 #endif /* MBEDTLS_CAMELLIA_C */ 00371 00372 #if defined(MBEDTLS_DES_C) 00373 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00374 #if defined(MBEDTLS_SHA1_C) 00375 { MBEDTLS_TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA, "TLS-ECDHE-ECDSA-WITH-3DES-EDE-CBC-SHA", 00376 MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA, 00377 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00378 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00379 0 }, 00380 #endif /* MBEDTLS_SHA1_C */ 00381 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00382 #endif /* MBEDTLS_DES_C */ 00383 00384 #if defined(MBEDTLS_ARC4_C) 00385 #if defined(MBEDTLS_SHA1_C) 00386 { MBEDTLS_TLS_ECDHE_ECDSA_WITH_RC4_128_SHA, "TLS-ECDHE-ECDSA-WITH-RC4-128-SHA", 00387 MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA, 00388 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00389 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00390 MBEDTLS_CIPHERSUITE_NODTLS }, 00391 #endif /* MBEDTLS_SHA1_C */ 00392 #endif /* MBEDTLS_ARC4_C */ 00393 00394 #if defined(MBEDTLS_CIPHER_NULL_CIPHER) 00395 #if defined(MBEDTLS_SHA1_C) 00396 { MBEDTLS_TLS_ECDHE_ECDSA_WITH_NULL_SHA, "TLS-ECDHE-ECDSA-WITH-NULL-SHA", 00397 MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA, 00398 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00399 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00400 MBEDTLS_CIPHERSUITE_WEAK }, 00401 #endif /* MBEDTLS_SHA1_C */ 00402 #endif /* MBEDTLS_CIPHER_NULL_CIPHER */ 00403 #endif /* MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED */ 00404 00405 #if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED) 00406 #if defined(MBEDTLS_AES_C) 00407 #if defined(MBEDTLS_SHA1_C) 00408 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00409 { MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, "TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA", 00410 MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA, 00411 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00412 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00413 0 }, 00414 { MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, "TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA", 00415 MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA, 00416 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00417 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00418 0 }, 00419 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00420 #endif /* MBEDTLS_SHA1_C */ 00421 #if defined(MBEDTLS_SHA256_C) 00422 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00423 { MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, "TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256", 00424 MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA, 00425 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00426 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00427 0 }, 00428 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00429 #if defined(MBEDTLS_GCM_C) 00430 { MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, "TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256", 00431 MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA, 00432 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00433 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00434 0 }, 00435 #endif /* MBEDTLS_GCM_C */ 00436 #endif /* MBEDTLS_SHA256_C */ 00437 #if defined(MBEDTLS_SHA512_C) 00438 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00439 { MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, "TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384", 00440 MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA, 00441 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00442 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00443 0 }, 00444 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00445 #if defined(MBEDTLS_GCM_C) 00446 { MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, "TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384", 00447 MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA, 00448 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00449 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00450 0 }, 00451 #endif /* MBEDTLS_GCM_C */ 00452 #endif /* MBEDTLS_SHA512_C */ 00453 #endif /* MBEDTLS_AES_C */ 00454 00455 #if defined(MBEDTLS_CAMELLIA_C) 00456 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00457 #if defined(MBEDTLS_SHA256_C) 00458 { MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256, "TLS-ECDHE-RSA-WITH-CAMELLIA-128-CBC-SHA256", 00459 MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA, 00460 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00461 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00462 0 }, 00463 #endif /* MBEDTLS_SHA256_C */ 00464 #if defined(MBEDTLS_SHA512_C) 00465 { MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384, "TLS-ECDHE-RSA-WITH-CAMELLIA-256-CBC-SHA384", 00466 MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA, 00467 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00468 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00469 0 }, 00470 #endif /* MBEDTLS_SHA512_C */ 00471 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00472 00473 #if defined(MBEDTLS_GCM_C) 00474 #if defined(MBEDTLS_SHA256_C) 00475 { MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_GCM_SHA256, "TLS-ECDHE-RSA-WITH-CAMELLIA-128-GCM-SHA256", 00476 MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA, 00477 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00478 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00479 0 }, 00480 #endif /* MBEDTLS_SHA256_C */ 00481 #if defined(MBEDTLS_SHA512_C) 00482 { MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_GCM_SHA384, "TLS-ECDHE-RSA-WITH-CAMELLIA-256-GCM-SHA384", 00483 MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA, 00484 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00485 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00486 0 }, 00487 #endif /* MBEDTLS_SHA512_C */ 00488 #endif /* MBEDTLS_GCM_C */ 00489 #endif /* MBEDTLS_CAMELLIA_C */ 00490 00491 #if defined(MBEDTLS_DES_C) 00492 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00493 #if defined(MBEDTLS_SHA1_C) 00494 { MBEDTLS_TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, "TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA", 00495 MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA, 00496 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00497 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00498 0 }, 00499 #endif /* MBEDTLS_SHA1_C */ 00500 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00501 #endif /* MBEDTLS_DES_C */ 00502 00503 #if defined(MBEDTLS_ARC4_C) 00504 #if defined(MBEDTLS_SHA1_C) 00505 { MBEDTLS_TLS_ECDHE_RSA_WITH_RC4_128_SHA, "TLS-ECDHE-RSA-WITH-RC4-128-SHA", 00506 MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA, 00507 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00508 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00509 MBEDTLS_CIPHERSUITE_NODTLS }, 00510 #endif /* MBEDTLS_SHA1_C */ 00511 #endif /* MBEDTLS_ARC4_C */ 00512 00513 #if defined(MBEDTLS_CIPHER_NULL_CIPHER) 00514 #if defined(MBEDTLS_SHA1_C) 00515 { MBEDTLS_TLS_ECDHE_RSA_WITH_NULL_SHA, "TLS-ECDHE-RSA-WITH-NULL-SHA", 00516 MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA, 00517 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00518 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00519 MBEDTLS_CIPHERSUITE_WEAK }, 00520 #endif /* MBEDTLS_SHA1_C */ 00521 #endif /* MBEDTLS_CIPHER_NULL_CIPHER */ 00522 #endif /* MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED */ 00523 00524 #if defined(MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED) 00525 #if defined(MBEDTLS_AES_C) 00526 #if defined(MBEDTLS_SHA512_C) && defined(MBEDTLS_GCM_C) 00527 { MBEDTLS_TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, "TLS-DHE-RSA-WITH-AES-256-GCM-SHA384", 00528 MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_RSA, 00529 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00530 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00531 0 }, 00532 #endif /* MBEDTLS_SHA512_C && MBEDTLS_GCM_C */ 00533 00534 #if defined(MBEDTLS_SHA256_C) 00535 #if defined(MBEDTLS_GCM_C) 00536 { MBEDTLS_TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, "TLS-DHE-RSA-WITH-AES-128-GCM-SHA256", 00537 MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA, 00538 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00539 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00540 0 }, 00541 #endif /* MBEDTLS_GCM_C */ 00542 00543 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00544 { MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA256, "TLS-DHE-RSA-WITH-AES-128-CBC-SHA256", 00545 MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA, 00546 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00547 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00548 0 }, 00549 00550 { MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA256, "TLS-DHE-RSA-WITH-AES-256-CBC-SHA256", 00551 MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA, 00552 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00553 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00554 0 }, 00555 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00556 #endif /* MBEDTLS_SHA256_C */ 00557 00558 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00559 #if defined(MBEDTLS_SHA1_C) 00560 { MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA, "TLS-DHE-RSA-WITH-AES-128-CBC-SHA", 00561 MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_RSA, 00562 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 00563 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00564 0 }, 00565 00566 { MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA, "TLS-DHE-RSA-WITH-AES-256-CBC-SHA", 00567 MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_RSA, 00568 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 00569 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00570 0 }, 00571 #endif /* MBEDTLS_SHA1_C */ 00572 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00573 #if defined(MBEDTLS_CCM_C) 00574 { MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CCM, "TLS-DHE-RSA-WITH-AES-256-CCM", 00575 MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA, 00576 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00577 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00578 0 }, 00579 { MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CCM_8, "TLS-DHE-RSA-WITH-AES-256-CCM-8", 00580 MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA, 00581 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00582 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00583 MBEDTLS_CIPHERSUITE_SHORT_TAG }, 00584 { MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CCM, "TLS-DHE-RSA-WITH-AES-128-CCM", 00585 MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA, 00586 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00587 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00588 0 }, 00589 { MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CCM_8, "TLS-DHE-RSA-WITH-AES-128-CCM-8", 00590 MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA, 00591 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00592 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00593 MBEDTLS_CIPHERSUITE_SHORT_TAG }, 00594 #endif /* MBEDTLS_CCM_C */ 00595 #endif /* MBEDTLS_AES_C */ 00596 00597 #if defined(MBEDTLS_CAMELLIA_C) 00598 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00599 #if defined(MBEDTLS_SHA256_C) 00600 { MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256, "TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256", 00601 MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA, 00602 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00603 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00604 0 }, 00605 00606 { MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256, "TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256", 00607 MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA, 00608 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00609 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00610 0 }, 00611 #endif /* MBEDTLS_SHA256_C */ 00612 00613 #if defined(MBEDTLS_SHA1_C) 00614 { MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA, "TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA", 00615 MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_RSA, 00616 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 00617 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00618 0 }, 00619 00620 { MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA, "TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA", 00621 MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_RSA, 00622 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 00623 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00624 0 }, 00625 #endif /* MBEDTLS_SHA1_C */ 00626 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00627 #if defined(MBEDTLS_GCM_C) 00628 #if defined(MBEDTLS_SHA256_C) 00629 { MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_GCM_SHA256, "TLS-DHE-RSA-WITH-CAMELLIA-128-GCM-SHA256", 00630 MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA, 00631 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00632 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00633 0 }, 00634 #endif /* MBEDTLS_SHA256_C */ 00635 00636 #if defined(MBEDTLS_SHA512_C) 00637 { MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_GCM_SHA384, "TLS-DHE-RSA-WITH-CAMELLIA-256-GCM-SHA384", 00638 MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_RSA, 00639 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00640 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00641 0 }, 00642 #endif /* MBEDTLS_SHA512_C */ 00643 #endif /* MBEDTLS_GCM_C */ 00644 #endif /* MBEDTLS_CAMELLIA_C */ 00645 00646 #if defined(MBEDTLS_DES_C) 00647 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00648 #if defined(MBEDTLS_SHA1_C) 00649 { MBEDTLS_TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA, "TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA", 00650 MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_RSA, 00651 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 00652 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00653 0 }, 00654 #endif /* MBEDTLS_SHA1_C */ 00655 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00656 #endif /* MBEDTLS_DES_C */ 00657 #endif /* MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED */ 00658 00659 #if defined(MBEDTLS_KEY_EXCHANGE_RSA_ENABLED) 00660 #if defined(MBEDTLS_AES_C) 00661 #if defined(MBEDTLS_SHA512_C) && defined(MBEDTLS_GCM_C) 00662 { MBEDTLS_TLS_RSA_WITH_AES_256_GCM_SHA384, "TLS-RSA-WITH-AES-256-GCM-SHA384", 00663 MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA, 00664 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00665 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00666 0 }, 00667 #endif /* MBEDTLS_SHA512_C && MBEDTLS_GCM_C */ 00668 00669 #if defined(MBEDTLS_SHA256_C) 00670 #if defined(MBEDTLS_GCM_C) 00671 { MBEDTLS_TLS_RSA_WITH_AES_128_GCM_SHA256, "TLS-RSA-WITH-AES-128-GCM-SHA256", 00672 MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA, 00673 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00674 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00675 0 }, 00676 #endif /* MBEDTLS_GCM_C */ 00677 00678 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00679 { MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA256, "TLS-RSA-WITH-AES-128-CBC-SHA256", 00680 MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA, 00681 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00682 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00683 0 }, 00684 00685 { MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA256, "TLS-RSA-WITH-AES-256-CBC-SHA256", 00686 MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA, 00687 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00688 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00689 0 }, 00690 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00691 #endif /* MBEDTLS_SHA256_C */ 00692 00693 #if defined(MBEDTLS_SHA1_C) 00694 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00695 { MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA, "TLS-RSA-WITH-AES-128-CBC-SHA", 00696 MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA, 00697 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 00698 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00699 0 }, 00700 00701 { MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA, "TLS-RSA-WITH-AES-256-CBC-SHA", 00702 MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA, 00703 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 00704 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00705 0 }, 00706 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00707 #endif /* MBEDTLS_SHA1_C */ 00708 #if defined(MBEDTLS_CCM_C) 00709 { MBEDTLS_TLS_RSA_WITH_AES_256_CCM, "TLS-RSA-WITH-AES-256-CCM", 00710 MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA, 00711 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00712 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00713 0 }, 00714 { MBEDTLS_TLS_RSA_WITH_AES_256_CCM_8, "TLS-RSA-WITH-AES-256-CCM-8", 00715 MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA, 00716 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00717 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00718 MBEDTLS_CIPHERSUITE_SHORT_TAG }, 00719 { MBEDTLS_TLS_RSA_WITH_AES_128_CCM, "TLS-RSA-WITH-AES-128-CCM", 00720 MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA, 00721 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00722 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00723 0 }, 00724 { MBEDTLS_TLS_RSA_WITH_AES_128_CCM_8, "TLS-RSA-WITH-AES-128-CCM-8", 00725 MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA, 00726 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00727 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00728 MBEDTLS_CIPHERSUITE_SHORT_TAG }, 00729 #endif /* MBEDTLS_CCM_C */ 00730 #endif /* MBEDTLS_AES_C */ 00731 00732 #if defined(MBEDTLS_CAMELLIA_C) 00733 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00734 #if defined(MBEDTLS_SHA256_C) 00735 { MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256, "TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256", 00736 MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA, 00737 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00738 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00739 0 }, 00740 00741 { MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256, "TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256", 00742 MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA, 00743 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00744 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00745 0 }, 00746 #endif /* MBEDTLS_SHA256_C */ 00747 00748 #if defined(MBEDTLS_SHA1_C) 00749 { MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA, "TLS-RSA-WITH-CAMELLIA-128-CBC-SHA", 00750 MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA, 00751 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 00752 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00753 0 }, 00754 00755 { MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA, "TLS-RSA-WITH-CAMELLIA-256-CBC-SHA", 00756 MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA, 00757 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 00758 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00759 0 }, 00760 #endif /* MBEDTLS_SHA1_C */ 00761 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00762 00763 #if defined(MBEDTLS_GCM_C) 00764 #if defined(MBEDTLS_SHA256_C) 00765 { MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_GCM_SHA256, "TLS-RSA-WITH-CAMELLIA-128-GCM-SHA256", 00766 MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA, 00767 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00768 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00769 0 }, 00770 #endif /* MBEDTLS_SHA256_C */ 00771 00772 #if defined(MBEDTLS_SHA1_C) 00773 { MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_GCM_SHA384, "TLS-RSA-WITH-CAMELLIA-256-GCM-SHA384", 00774 MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA, 00775 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00776 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00777 0 }, 00778 #endif /* MBEDTLS_SHA1_C */ 00779 #endif /* MBEDTLS_GCM_C */ 00780 #endif /* MBEDTLS_CAMELLIA_C */ 00781 00782 #if defined(MBEDTLS_DES_C) 00783 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00784 #if defined(MBEDTLS_SHA1_C) 00785 { MBEDTLS_TLS_RSA_WITH_3DES_EDE_CBC_SHA, "TLS-RSA-WITH-3DES-EDE-CBC-SHA", 00786 MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA, 00787 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 00788 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00789 0 }, 00790 #endif /* MBEDTLS_SHA1_C */ 00791 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00792 #endif /* MBEDTLS_DES_C */ 00793 00794 #if defined(MBEDTLS_ARC4_C) 00795 #if defined(MBEDTLS_MD5_C) 00796 { MBEDTLS_TLS_RSA_WITH_RC4_128_MD5, "TLS-RSA-WITH-RC4-128-MD5", 00797 MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_MD5, MBEDTLS_KEY_EXCHANGE_RSA, 00798 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 00799 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00800 MBEDTLS_CIPHERSUITE_NODTLS }, 00801 #endif 00802 00803 #if defined(MBEDTLS_SHA1_C) 00804 { MBEDTLS_TLS_RSA_WITH_RC4_128_SHA, "TLS-RSA-WITH-RC4-128-SHA", 00805 MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA, 00806 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 00807 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00808 MBEDTLS_CIPHERSUITE_NODTLS }, 00809 #endif 00810 #endif /* MBEDTLS_ARC4_C */ 00811 #endif /* MBEDTLS_KEY_EXCHANGE_RSA_ENABLED */ 00812 00813 #if defined(MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED) 00814 #if defined(MBEDTLS_AES_C) 00815 #if defined(MBEDTLS_SHA1_C) 00816 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00817 { MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA, "TLS-ECDH-RSA-WITH-AES-128-CBC-SHA", 00818 MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_RSA, 00819 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00820 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00821 0 }, 00822 { MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA, "TLS-ECDH-RSA-WITH-AES-256-CBC-SHA", 00823 MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_RSA, 00824 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00825 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00826 0 }, 00827 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00828 #endif /* MBEDTLS_SHA1_C */ 00829 #if defined(MBEDTLS_SHA256_C) 00830 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00831 { MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256, "TLS-ECDH-RSA-WITH-AES-128-CBC-SHA256", 00832 MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_RSA, 00833 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00834 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00835 0 }, 00836 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00837 #if defined(MBEDTLS_GCM_C) 00838 { MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256, "TLS-ECDH-RSA-WITH-AES-128-GCM-SHA256", 00839 MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_RSA, 00840 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00841 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00842 0 }, 00843 #endif /* MBEDTLS_GCM_C */ 00844 #endif /* MBEDTLS_SHA256_C */ 00845 #if defined(MBEDTLS_SHA512_C) 00846 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00847 { MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384, "TLS-ECDH-RSA-WITH-AES-256-CBC-SHA384", 00848 MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_RSA, 00849 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00850 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00851 0 }, 00852 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00853 #if defined(MBEDTLS_GCM_C) 00854 { MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384, "TLS-ECDH-RSA-WITH-AES-256-GCM-SHA384", 00855 MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_RSA, 00856 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00857 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00858 0 }, 00859 #endif /* MBEDTLS_GCM_C */ 00860 #endif /* MBEDTLS_SHA512_C */ 00861 #endif /* MBEDTLS_AES_C */ 00862 00863 #if defined(MBEDTLS_CAMELLIA_C) 00864 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00865 #if defined(MBEDTLS_SHA256_C) 00866 { MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256, "TLS-ECDH-RSA-WITH-CAMELLIA-128-CBC-SHA256", 00867 MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_RSA, 00868 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00869 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00870 0 }, 00871 #endif /* MBEDTLS_SHA256_C */ 00872 #if defined(MBEDTLS_SHA512_C) 00873 { MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384, "TLS-ECDH-RSA-WITH-CAMELLIA-256-CBC-SHA384", 00874 MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_RSA, 00875 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00876 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00877 0 }, 00878 #endif /* MBEDTLS_SHA512_C */ 00879 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00880 00881 #if defined(MBEDTLS_GCM_C) 00882 #if defined(MBEDTLS_SHA256_C) 00883 { MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256, "TLS-ECDH-RSA-WITH-CAMELLIA-128-GCM-SHA256", 00884 MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_RSA, 00885 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00886 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00887 0 }, 00888 #endif /* MBEDTLS_SHA256_C */ 00889 #if defined(MBEDTLS_SHA512_C) 00890 { MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384, "TLS-ECDH-RSA-WITH-CAMELLIA-256-GCM-SHA384", 00891 MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_RSA, 00892 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00893 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00894 0 }, 00895 #endif /* MBEDTLS_SHA512_C */ 00896 #endif /* MBEDTLS_GCM_C */ 00897 #endif /* MBEDTLS_CAMELLIA_C */ 00898 00899 #if defined(MBEDTLS_DES_C) 00900 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00901 #if defined(MBEDTLS_SHA1_C) 00902 { MBEDTLS_TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA, "TLS-ECDH-RSA-WITH-3DES-EDE-CBC-SHA", 00903 MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_RSA, 00904 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00905 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00906 0 }, 00907 #endif /* MBEDTLS_SHA1_C */ 00908 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00909 #endif /* MBEDTLS_DES_C */ 00910 00911 #if defined(MBEDTLS_ARC4_C) 00912 #if defined(MBEDTLS_SHA1_C) 00913 { MBEDTLS_TLS_ECDH_RSA_WITH_RC4_128_SHA, "TLS-ECDH-RSA-WITH-RC4-128-SHA", 00914 MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_RSA, 00915 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00916 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00917 MBEDTLS_CIPHERSUITE_NODTLS }, 00918 #endif /* MBEDTLS_SHA1_C */ 00919 #endif /* MBEDTLS_ARC4_C */ 00920 00921 #if defined(MBEDTLS_CIPHER_NULL_CIPHER) 00922 #if defined(MBEDTLS_SHA1_C) 00923 { MBEDTLS_TLS_ECDH_RSA_WITH_NULL_SHA, "TLS-ECDH-RSA-WITH-NULL-SHA", 00924 MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_RSA, 00925 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00926 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00927 MBEDTLS_CIPHERSUITE_WEAK }, 00928 #endif /* MBEDTLS_SHA1_C */ 00929 #endif /* MBEDTLS_CIPHER_NULL_CIPHER */ 00930 #endif /* MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED */ 00931 00932 #if defined(MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED) 00933 #if defined(MBEDTLS_AES_C) 00934 #if defined(MBEDTLS_SHA1_C) 00935 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00936 { MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA, "TLS-ECDH-ECDSA-WITH-AES-128-CBC-SHA", 00937 MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA, 00938 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00939 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00940 0 }, 00941 { MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA, "TLS-ECDH-ECDSA-WITH-AES-256-CBC-SHA", 00942 MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA, 00943 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00944 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00945 0 }, 00946 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00947 #endif /* MBEDTLS_SHA1_C */ 00948 #if defined(MBEDTLS_SHA256_C) 00949 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00950 { MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256, "TLS-ECDH-ECDSA-WITH-AES-128-CBC-SHA256", 00951 MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA, 00952 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00953 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00954 0 }, 00955 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00956 #if defined(MBEDTLS_GCM_C) 00957 { MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256, "TLS-ECDH-ECDSA-WITH-AES-128-GCM-SHA256", 00958 MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA, 00959 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00960 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00961 0 }, 00962 #endif /* MBEDTLS_GCM_C */ 00963 #endif /* MBEDTLS_SHA256_C */ 00964 #if defined(MBEDTLS_SHA512_C) 00965 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00966 { MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384, "TLS-ECDH-ECDSA-WITH-AES-256-CBC-SHA384", 00967 MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA, 00968 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00969 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00970 0 }, 00971 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00972 #if defined(MBEDTLS_GCM_C) 00973 { MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384, "TLS-ECDH-ECDSA-WITH-AES-256-GCM-SHA384", 00974 MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA, 00975 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00976 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00977 0 }, 00978 #endif /* MBEDTLS_GCM_C */ 00979 #endif /* MBEDTLS_SHA512_C */ 00980 #endif /* MBEDTLS_AES_C */ 00981 00982 #if defined(MBEDTLS_CAMELLIA_C) 00983 #if defined(MBEDTLS_CIPHER_MODE_CBC) 00984 #if defined(MBEDTLS_SHA256_C) 00985 { MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256, "TLS-ECDH-ECDSA-WITH-CAMELLIA-128-CBC-SHA256", 00986 MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA, 00987 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00988 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00989 0 }, 00990 #endif /* MBEDTLS_SHA256_C */ 00991 #if defined(MBEDTLS_SHA512_C) 00992 { MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384, "TLS-ECDH-ECDSA-WITH-CAMELLIA-256-CBC-SHA384", 00993 MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA, 00994 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 00995 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 00996 0 }, 00997 #endif /* MBEDTLS_SHA512_C */ 00998 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 00999 01000 #if defined(MBEDTLS_GCM_C) 01001 #if defined(MBEDTLS_SHA256_C) 01002 { MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256, "TLS-ECDH-ECDSA-WITH-CAMELLIA-128-GCM-SHA256", 01003 MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA, 01004 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01005 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01006 0 }, 01007 #endif /* MBEDTLS_SHA256_C */ 01008 #if defined(MBEDTLS_SHA512_C) 01009 { MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384, "TLS-ECDH-ECDSA-WITH-CAMELLIA-256-GCM-SHA384", 01010 MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA, 01011 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01012 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01013 0 }, 01014 #endif /* MBEDTLS_SHA512_C */ 01015 #endif /* MBEDTLS_GCM_C */ 01016 #endif /* MBEDTLS_CAMELLIA_C */ 01017 01018 #if defined(MBEDTLS_DES_C) 01019 #if defined(MBEDTLS_CIPHER_MODE_CBC) 01020 #if defined(MBEDTLS_SHA1_C) 01021 { MBEDTLS_TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA, "TLS-ECDH-ECDSA-WITH-3DES-EDE-CBC-SHA", 01022 MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA, 01023 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01024 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01025 0 }, 01026 #endif /* MBEDTLS_SHA1_C */ 01027 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 01028 #endif /* MBEDTLS_DES_C */ 01029 01030 #if defined(MBEDTLS_ARC4_C) 01031 #if defined(MBEDTLS_SHA1_C) 01032 { MBEDTLS_TLS_ECDH_ECDSA_WITH_RC4_128_SHA, "TLS-ECDH-ECDSA-WITH-RC4-128-SHA", 01033 MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA, 01034 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01035 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01036 MBEDTLS_CIPHERSUITE_NODTLS }, 01037 #endif /* MBEDTLS_SHA1_C */ 01038 #endif /* MBEDTLS_ARC4_C */ 01039 01040 #if defined(MBEDTLS_CIPHER_NULL_CIPHER) 01041 #if defined(MBEDTLS_SHA1_C) 01042 { MBEDTLS_TLS_ECDH_ECDSA_WITH_NULL_SHA, "TLS-ECDH-ECDSA-WITH-NULL-SHA", 01043 MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA, 01044 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01045 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01046 MBEDTLS_CIPHERSUITE_WEAK }, 01047 #endif /* MBEDTLS_SHA1_C */ 01048 #endif /* MBEDTLS_CIPHER_NULL_CIPHER */ 01049 #endif /* MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED */ 01050 01051 #if defined(MBEDTLS_KEY_EXCHANGE_PSK_ENABLED) 01052 #if defined(MBEDTLS_AES_C) 01053 #if defined(MBEDTLS_GCM_C) 01054 #if defined(MBEDTLS_SHA256_C) 01055 { MBEDTLS_TLS_PSK_WITH_AES_128_GCM_SHA256, "TLS-PSK-WITH-AES-128-GCM-SHA256", 01056 MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK, 01057 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01058 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01059 0 }, 01060 #endif /* MBEDTLS_SHA256_C */ 01061 01062 #if defined(MBEDTLS_SHA512_C) 01063 { MBEDTLS_TLS_PSK_WITH_AES_256_GCM_SHA384, "TLS-PSK-WITH-AES-256-GCM-SHA384", 01064 MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_PSK, 01065 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01066 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01067 0 }, 01068 #endif /* MBEDTLS_SHA512_C */ 01069 #endif /* MBEDTLS_GCM_C */ 01070 01071 #if defined(MBEDTLS_CIPHER_MODE_CBC) 01072 #if defined(MBEDTLS_SHA256_C) 01073 { MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA256, "TLS-PSK-WITH-AES-128-CBC-SHA256", 01074 MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK, 01075 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01076 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01077 0 }, 01078 #endif /* MBEDTLS_SHA256_C */ 01079 01080 #if defined(MBEDTLS_SHA512_C) 01081 { MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA384, "TLS-PSK-WITH-AES-256-CBC-SHA384", 01082 MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_PSK, 01083 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01084 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01085 0 }, 01086 #endif /* MBEDTLS_SHA512_C */ 01087 01088 #if defined(MBEDTLS_SHA1_C) 01089 { MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA, "TLS-PSK-WITH-AES-128-CBC-SHA", 01090 MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_PSK, 01091 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 01092 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01093 0 }, 01094 01095 { MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA, "TLS-PSK-WITH-AES-256-CBC-SHA", 01096 MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_PSK, 01097 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 01098 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01099 0 }, 01100 #endif /* MBEDTLS_SHA1_C */ 01101 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 01102 #if defined(MBEDTLS_CCM_C) 01103 { MBEDTLS_TLS_PSK_WITH_AES_256_CCM, "TLS-PSK-WITH-AES-256-CCM", 01104 MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK, 01105 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01106 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01107 0 }, 01108 { MBEDTLS_TLS_PSK_WITH_AES_256_CCM_8, "TLS-PSK-WITH-AES-256-CCM-8", 01109 MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK, 01110 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01111 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01112 MBEDTLS_CIPHERSUITE_SHORT_TAG }, 01113 { MBEDTLS_TLS_PSK_WITH_AES_128_CCM, "TLS-PSK-WITH-AES-128-CCM", 01114 MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK, 01115 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01116 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01117 0 }, 01118 { MBEDTLS_TLS_PSK_WITH_AES_128_CCM_8, "TLS-PSK-WITH-AES-128-CCM-8", 01119 MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK, 01120 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01121 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01122 MBEDTLS_CIPHERSUITE_SHORT_TAG }, 01123 #endif /* MBEDTLS_CCM_C */ 01124 #endif /* MBEDTLS_AES_C */ 01125 01126 #if defined(MBEDTLS_CAMELLIA_C) 01127 #if defined(MBEDTLS_CIPHER_MODE_CBC) 01128 #if defined(MBEDTLS_SHA256_C) 01129 { MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256, "TLS-PSK-WITH-CAMELLIA-128-CBC-SHA256", 01130 MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK, 01131 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01132 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01133 0 }, 01134 #endif /* MBEDTLS_SHA256_C */ 01135 01136 #if defined(MBEDTLS_SHA512_C) 01137 { MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_CBC_SHA384, "TLS-PSK-WITH-CAMELLIA-256-CBC-SHA384", 01138 MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_PSK, 01139 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01140 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01141 0 }, 01142 #endif /* MBEDTLS_SHA512_C */ 01143 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 01144 01145 #if defined(MBEDTLS_GCM_C) 01146 #if defined(MBEDTLS_SHA256_C) 01147 { MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_GCM_SHA256, "TLS-PSK-WITH-CAMELLIA-128-GCM-SHA256", 01148 MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK, 01149 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01150 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01151 0 }, 01152 #endif /* MBEDTLS_SHA256_C */ 01153 01154 #if defined(MBEDTLS_SHA512_C) 01155 { MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_GCM_SHA384, "TLS-PSK-WITH-CAMELLIA-256-GCM-SHA384", 01156 MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_PSK, 01157 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01158 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01159 0 }, 01160 #endif /* MBEDTLS_SHA512_C */ 01161 #endif /* MBEDTLS_GCM_C */ 01162 #endif /* MBEDTLS_CAMELLIA_C */ 01163 01164 #if defined(MBEDTLS_DES_C) 01165 #if defined(MBEDTLS_CIPHER_MODE_CBC) 01166 #if defined(MBEDTLS_SHA1_C) 01167 { MBEDTLS_TLS_PSK_WITH_3DES_EDE_CBC_SHA, "TLS-PSK-WITH-3DES-EDE-CBC-SHA", 01168 MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_PSK, 01169 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 01170 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01171 0 }, 01172 #endif /* MBEDTLS_SHA1_C */ 01173 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 01174 #endif /* MBEDTLS_DES_C */ 01175 01176 #if defined(MBEDTLS_ARC4_C) 01177 #if defined(MBEDTLS_SHA1_C) 01178 { MBEDTLS_TLS_PSK_WITH_RC4_128_SHA, "TLS-PSK-WITH-RC4-128-SHA", 01179 MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_PSK, 01180 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 01181 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01182 MBEDTLS_CIPHERSUITE_NODTLS }, 01183 #endif /* MBEDTLS_SHA1_C */ 01184 #endif /* MBEDTLS_ARC4_C */ 01185 #endif /* MBEDTLS_KEY_EXCHANGE_PSK_ENABLED */ 01186 01187 #if defined(MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED) 01188 #if defined(MBEDTLS_AES_C) 01189 #if defined(MBEDTLS_GCM_C) 01190 #if defined(MBEDTLS_SHA256_C) 01191 { MBEDTLS_TLS_DHE_PSK_WITH_AES_128_GCM_SHA256, "TLS-DHE-PSK-WITH-AES-128-GCM-SHA256", 01192 MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK, 01193 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01194 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01195 0 }, 01196 #endif /* MBEDTLS_SHA256_C */ 01197 01198 #if defined(MBEDTLS_SHA512_C) 01199 { MBEDTLS_TLS_DHE_PSK_WITH_AES_256_GCM_SHA384, "TLS-DHE-PSK-WITH-AES-256-GCM-SHA384", 01200 MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_PSK, 01201 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01202 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01203 0 }, 01204 #endif /* MBEDTLS_SHA512_C */ 01205 #endif /* MBEDTLS_GCM_C */ 01206 01207 #if defined(MBEDTLS_CIPHER_MODE_CBC) 01208 #if defined(MBEDTLS_SHA256_C) 01209 { MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA256, "TLS-DHE-PSK-WITH-AES-128-CBC-SHA256", 01210 MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK, 01211 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01212 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01213 0 }, 01214 #endif /* MBEDTLS_SHA256_C */ 01215 01216 #if defined(MBEDTLS_SHA512_C) 01217 { MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA384, "TLS-DHE-PSK-WITH-AES-256-CBC-SHA384", 01218 MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_PSK, 01219 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01220 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01221 0 }, 01222 #endif /* MBEDTLS_SHA512_C */ 01223 01224 #if defined(MBEDTLS_SHA1_C) 01225 { MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA, "TLS-DHE-PSK-WITH-AES-128-CBC-SHA", 01226 MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_PSK, 01227 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 01228 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01229 0 }, 01230 01231 { MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA, "TLS-DHE-PSK-WITH-AES-256-CBC-SHA", 01232 MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_PSK, 01233 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 01234 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01235 0 }, 01236 #endif /* MBEDTLS_SHA1_C */ 01237 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 01238 #if defined(MBEDTLS_CCM_C) 01239 { MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CCM, "TLS-DHE-PSK-WITH-AES-256-CCM", 01240 MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK, 01241 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01242 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01243 0 }, 01244 { MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CCM_8, "TLS-DHE-PSK-WITH-AES-256-CCM-8", 01245 MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK, 01246 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01247 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01248 MBEDTLS_CIPHERSUITE_SHORT_TAG }, 01249 { MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CCM, "TLS-DHE-PSK-WITH-AES-128-CCM", 01250 MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK, 01251 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01252 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01253 0 }, 01254 { MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CCM_8, "TLS-DHE-PSK-WITH-AES-128-CCM-8", 01255 MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK, 01256 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01257 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01258 MBEDTLS_CIPHERSUITE_SHORT_TAG }, 01259 #endif /* MBEDTLS_CCM_C */ 01260 #endif /* MBEDTLS_AES_C */ 01261 01262 #if defined(MBEDTLS_CAMELLIA_C) 01263 #if defined(MBEDTLS_CIPHER_MODE_CBC) 01264 #if defined(MBEDTLS_SHA256_C) 01265 { MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256, "TLS-DHE-PSK-WITH-CAMELLIA-128-CBC-SHA256", 01266 MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK, 01267 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01268 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01269 0 }, 01270 #endif /* MBEDTLS_SHA256_C */ 01271 01272 #if defined(MBEDTLS_SHA512_C) 01273 { MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384, "TLS-DHE-PSK-WITH-CAMELLIA-256-CBC-SHA384", 01274 MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_PSK, 01275 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01276 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01277 0 }, 01278 #endif /* MBEDTLS_SHA512_C */ 01279 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 01280 01281 #if defined(MBEDTLS_GCM_C) 01282 #if defined(MBEDTLS_SHA256_C) 01283 { MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_GCM_SHA256, "TLS-DHE-PSK-WITH-CAMELLIA-128-GCM-SHA256", 01284 MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK, 01285 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01286 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01287 0 }, 01288 #endif /* MBEDTLS_SHA256_C */ 01289 01290 #if defined(MBEDTLS_SHA512_C) 01291 { MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_GCM_SHA384, "TLS-DHE-PSK-WITH-CAMELLIA-256-GCM-SHA384", 01292 MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_PSK, 01293 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01294 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01295 0 }, 01296 #endif /* MBEDTLS_SHA512_C */ 01297 #endif /* MBEDTLS_GCM_C */ 01298 #endif /* MBEDTLS_CAMELLIA_C */ 01299 01300 #if defined(MBEDTLS_DES_C) 01301 #if defined(MBEDTLS_CIPHER_MODE_CBC) 01302 #if defined(MBEDTLS_SHA1_C) 01303 { MBEDTLS_TLS_DHE_PSK_WITH_3DES_EDE_CBC_SHA, "TLS-DHE-PSK-WITH-3DES-EDE-CBC-SHA", 01304 MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_PSK, 01305 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 01306 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01307 0 }, 01308 #endif /* MBEDTLS_SHA1_C */ 01309 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 01310 #endif /* MBEDTLS_DES_C */ 01311 01312 #if defined(MBEDTLS_ARC4_C) 01313 #if defined(MBEDTLS_SHA1_C) 01314 { MBEDTLS_TLS_DHE_PSK_WITH_RC4_128_SHA, "TLS-DHE-PSK-WITH-RC4-128-SHA", 01315 MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_PSK, 01316 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 01317 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01318 MBEDTLS_CIPHERSUITE_NODTLS }, 01319 #endif /* MBEDTLS_SHA1_C */ 01320 #endif /* MBEDTLS_ARC4_C */ 01321 #endif /* MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED */ 01322 01323 #if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED) 01324 #if defined(MBEDTLS_AES_C) 01325 01326 #if defined(MBEDTLS_CIPHER_MODE_CBC) 01327 #if defined(MBEDTLS_SHA256_C) 01328 { MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256, "TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA256", 01329 MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK, 01330 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01331 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01332 0 }, 01333 #endif /* MBEDTLS_SHA256_C */ 01334 01335 #if defined(MBEDTLS_SHA512_C) 01336 { MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA384, "TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384", 01337 MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK, 01338 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01339 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01340 0 }, 01341 #endif /* MBEDTLS_SHA512_C */ 01342 01343 #if defined(MBEDTLS_SHA1_C) 01344 { MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA, "TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA", 01345 MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK, 01346 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01347 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01348 0 }, 01349 01350 { MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA, "TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA", 01351 MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK, 01352 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01353 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01354 0 }, 01355 #endif /* MBEDTLS_SHA1_C */ 01356 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 01357 #endif /* MBEDTLS_AES_C */ 01358 01359 #if defined(MBEDTLS_CAMELLIA_C) 01360 #if defined(MBEDTLS_CIPHER_MODE_CBC) 01361 #if defined(MBEDTLS_SHA256_C) 01362 { MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256, "TLS-ECDHE-PSK-WITH-CAMELLIA-128-CBC-SHA256", 01363 MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK, 01364 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01365 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01366 0 }, 01367 #endif /* MBEDTLS_SHA256_C */ 01368 01369 #if defined(MBEDTLS_SHA512_C) 01370 { MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384, "TLS-ECDHE-PSK-WITH-CAMELLIA-256-CBC-SHA384", 01371 MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK, 01372 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01373 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01374 0 }, 01375 #endif /* MBEDTLS_SHA512_C */ 01376 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 01377 #endif /* MBEDTLS_CAMELLIA_C */ 01378 01379 #if defined(MBEDTLS_DES_C) 01380 #if defined(MBEDTLS_CIPHER_MODE_CBC) 01381 #if defined(MBEDTLS_SHA1_C) 01382 { MBEDTLS_TLS_ECDHE_PSK_WITH_3DES_EDE_CBC_SHA, "TLS-ECDHE-PSK-WITH-3DES-EDE-CBC-SHA", 01383 MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK, 01384 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01385 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01386 0 }, 01387 #endif /* MBEDTLS_SHA1_C */ 01388 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 01389 #endif /* MBEDTLS_DES_C */ 01390 01391 #if defined(MBEDTLS_ARC4_C) 01392 #if defined(MBEDTLS_SHA1_C) 01393 { MBEDTLS_TLS_ECDHE_PSK_WITH_RC4_128_SHA, "TLS-ECDHE-PSK-WITH-RC4-128-SHA", 01394 MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK, 01395 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01396 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01397 MBEDTLS_CIPHERSUITE_NODTLS }, 01398 #endif /* MBEDTLS_SHA1_C */ 01399 #endif /* MBEDTLS_ARC4_C */ 01400 #endif /* MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED */ 01401 01402 #if defined(MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED) 01403 #if defined(MBEDTLS_AES_C) 01404 #if defined(MBEDTLS_GCM_C) 01405 #if defined(MBEDTLS_SHA256_C) 01406 { MBEDTLS_TLS_RSA_PSK_WITH_AES_128_GCM_SHA256, "TLS-RSA-PSK-WITH-AES-128-GCM-SHA256", 01407 MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA_PSK, 01408 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01409 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01410 0 }, 01411 #endif /* MBEDTLS_SHA256_C */ 01412 01413 #if defined(MBEDTLS_SHA512_C) 01414 { MBEDTLS_TLS_RSA_PSK_WITH_AES_256_GCM_SHA384, "TLS-RSA-PSK-WITH-AES-256-GCM-SHA384", 01415 MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA_PSK, 01416 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01417 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01418 0 }, 01419 #endif /* MBEDTLS_SHA512_C */ 01420 #endif /* MBEDTLS_GCM_C */ 01421 01422 #if defined(MBEDTLS_CIPHER_MODE_CBC) 01423 #if defined(MBEDTLS_SHA256_C) 01424 { MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA256, "TLS-RSA-PSK-WITH-AES-128-CBC-SHA256", 01425 MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA_PSK, 01426 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01427 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01428 0 }, 01429 #endif /* MBEDTLS_SHA256_C */ 01430 01431 #if defined(MBEDTLS_SHA512_C) 01432 { MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA384, "TLS-RSA-PSK-WITH-AES-256-CBC-SHA384", 01433 MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA_PSK, 01434 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01435 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01436 0 }, 01437 #endif /* MBEDTLS_SHA512_C */ 01438 01439 #if defined(MBEDTLS_SHA1_C) 01440 { MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA, "TLS-RSA-PSK-WITH-AES-128-CBC-SHA", 01441 MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA_PSK, 01442 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01443 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01444 0 }, 01445 01446 { MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA, "TLS-RSA-PSK-WITH-AES-256-CBC-SHA", 01447 MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA_PSK, 01448 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01449 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01450 0 }, 01451 #endif /* MBEDTLS_SHA1_C */ 01452 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 01453 #endif /* MBEDTLS_AES_C */ 01454 01455 #if defined(MBEDTLS_CAMELLIA_C) 01456 #if defined(MBEDTLS_CIPHER_MODE_CBC) 01457 #if defined(MBEDTLS_SHA256_C) 01458 { MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256, "TLS-RSA-PSK-WITH-CAMELLIA-128-CBC-SHA256", 01459 MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA_PSK, 01460 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01461 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01462 0 }, 01463 #endif /* MBEDTLS_SHA256_C */ 01464 01465 #if defined(MBEDTLS_SHA512_C) 01466 { MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384, "TLS-RSA-PSK-WITH-CAMELLIA-256-CBC-SHA384", 01467 MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA_PSK, 01468 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01469 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01470 0 }, 01471 #endif /* MBEDTLS_SHA512_C */ 01472 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 01473 01474 #if defined(MBEDTLS_GCM_C) 01475 #if defined(MBEDTLS_SHA256_C) 01476 { MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_GCM_SHA256, "TLS-RSA-PSK-WITH-CAMELLIA-128-GCM-SHA256", 01477 MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA_PSK, 01478 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01479 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01480 0 }, 01481 #endif /* MBEDTLS_SHA256_C */ 01482 01483 #if defined(MBEDTLS_SHA512_C) 01484 { MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_GCM_SHA384, "TLS-RSA-PSK-WITH-CAMELLIA-256-GCM-SHA384", 01485 MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA_PSK, 01486 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01487 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01488 0 }, 01489 #endif /* MBEDTLS_SHA512_C */ 01490 #endif /* MBEDTLS_GCM_C */ 01491 #endif /* MBEDTLS_CAMELLIA_C */ 01492 01493 #if defined(MBEDTLS_DES_C) 01494 #if defined(MBEDTLS_CIPHER_MODE_CBC) 01495 #if defined(MBEDTLS_SHA1_C) 01496 { MBEDTLS_TLS_RSA_PSK_WITH_3DES_EDE_CBC_SHA, "TLS-RSA-PSK-WITH-3DES-EDE-CBC-SHA", 01497 MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA_PSK, 01498 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01499 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01500 0 }, 01501 #endif /* MBEDTLS_SHA1_C */ 01502 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 01503 #endif /* MBEDTLS_DES_C */ 01504 01505 #if defined(MBEDTLS_ARC4_C) 01506 #if defined(MBEDTLS_SHA1_C) 01507 { MBEDTLS_TLS_RSA_PSK_WITH_RC4_128_SHA, "TLS-RSA-PSK-WITH-RC4-128-SHA", 01508 MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA_PSK, 01509 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01510 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01511 MBEDTLS_CIPHERSUITE_NODTLS }, 01512 #endif /* MBEDTLS_SHA1_C */ 01513 #endif /* MBEDTLS_ARC4_C */ 01514 #endif /* MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED */ 01515 01516 #if defined(MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED) 01517 #if defined(MBEDTLS_AES_C) 01518 #if defined(MBEDTLS_CCM_C) 01519 { MBEDTLS_TLS_ECJPAKE_WITH_AES_128_CCM_8, "TLS-ECJPAKE-WITH-AES-128-CCM-8", 01520 MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECJPAKE, 01521 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01522 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01523 MBEDTLS_CIPHERSUITE_SHORT_TAG }, 01524 #endif /* MBEDTLS_CCM_C */ 01525 #endif /* MBEDTLS_AES_C */ 01526 #endif /* MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED */ 01527 01528 #if defined(MBEDTLS_ENABLE_WEAK_CIPHERSUITES) 01529 #if defined(MBEDTLS_CIPHER_NULL_CIPHER) 01530 #if defined(MBEDTLS_KEY_EXCHANGE_RSA_ENABLED) 01531 #if defined(MBEDTLS_MD5_C) 01532 { MBEDTLS_TLS_RSA_WITH_NULL_MD5, "TLS-RSA-WITH-NULL-MD5", 01533 MBEDTLS_CIPHER_NULL, MBEDTLS_MD_MD5, MBEDTLS_KEY_EXCHANGE_RSA, 01534 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 01535 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01536 MBEDTLS_CIPHERSUITE_WEAK }, 01537 #endif 01538 01539 #if defined(MBEDTLS_SHA1_C) 01540 { MBEDTLS_TLS_RSA_WITH_NULL_SHA, "TLS-RSA-WITH-NULL-SHA", 01541 MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA, 01542 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 01543 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01544 MBEDTLS_CIPHERSUITE_WEAK }, 01545 #endif 01546 01547 #if defined(MBEDTLS_SHA256_C) 01548 { MBEDTLS_TLS_RSA_WITH_NULL_SHA256, "TLS-RSA-WITH-NULL-SHA256", 01549 MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA, 01550 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01551 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01552 MBEDTLS_CIPHERSUITE_WEAK }, 01553 #endif 01554 #endif /* MBEDTLS_KEY_EXCHANGE_RSA_ENABLED */ 01555 01556 #if defined(MBEDTLS_KEY_EXCHANGE_PSK_ENABLED) 01557 #if defined(MBEDTLS_SHA1_C) 01558 { MBEDTLS_TLS_PSK_WITH_NULL_SHA, "TLS-PSK-WITH-NULL-SHA", 01559 MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_PSK, 01560 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 01561 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01562 MBEDTLS_CIPHERSUITE_WEAK }, 01563 #endif /* MBEDTLS_SHA1_C */ 01564 01565 #if defined(MBEDTLS_SHA256_C) 01566 { MBEDTLS_TLS_PSK_WITH_NULL_SHA256, "TLS-PSK-WITH-NULL-SHA256", 01567 MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK, 01568 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01569 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01570 MBEDTLS_CIPHERSUITE_WEAK }, 01571 #endif 01572 01573 #if defined(MBEDTLS_SHA512_C) 01574 { MBEDTLS_TLS_PSK_WITH_NULL_SHA384, "TLS-PSK-WITH-NULL-SHA384", 01575 MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_PSK, 01576 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01577 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01578 MBEDTLS_CIPHERSUITE_WEAK }, 01579 #endif 01580 #endif /* MBEDTLS_KEY_EXCHANGE_PSK_ENABLED */ 01581 01582 #if defined(MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED) 01583 #if defined(MBEDTLS_SHA1_C) 01584 { MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA, "TLS-DHE-PSK-WITH-NULL-SHA", 01585 MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_PSK, 01586 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 01587 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01588 MBEDTLS_CIPHERSUITE_WEAK }, 01589 #endif /* MBEDTLS_SHA1_C */ 01590 01591 #if defined(MBEDTLS_SHA256_C) 01592 { MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA256, "TLS-DHE-PSK-WITH-NULL-SHA256", 01593 MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK, 01594 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01595 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01596 MBEDTLS_CIPHERSUITE_WEAK }, 01597 #endif 01598 01599 #if defined(MBEDTLS_SHA512_C) 01600 { MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA384, "TLS-DHE-PSK-WITH-NULL-SHA384", 01601 MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_PSK, 01602 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01603 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01604 MBEDTLS_CIPHERSUITE_WEAK }, 01605 #endif 01606 #endif /* MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED */ 01607 01608 #if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED) 01609 #if defined(MBEDTLS_SHA1_C) 01610 { MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA, "TLS-ECDHE-PSK-WITH-NULL-SHA", 01611 MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK, 01612 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01613 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01614 MBEDTLS_CIPHERSUITE_WEAK }, 01615 #endif /* MBEDTLS_SHA1_C */ 01616 01617 #if defined(MBEDTLS_SHA256_C) 01618 { MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA256, "TLS-ECDHE-PSK-WITH-NULL-SHA256", 01619 MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK, 01620 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01621 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01622 MBEDTLS_CIPHERSUITE_WEAK }, 01623 #endif 01624 01625 #if defined(MBEDTLS_SHA512_C) 01626 { MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA384, "TLS-ECDHE-PSK-WITH-NULL-SHA384", 01627 MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK, 01628 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01629 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01630 MBEDTLS_CIPHERSUITE_WEAK }, 01631 #endif 01632 #endif /* MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED */ 01633 01634 #if defined(MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED) 01635 #if defined(MBEDTLS_SHA1_C) 01636 { MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA, "TLS-RSA-PSK-WITH-NULL-SHA", 01637 MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA_PSK, 01638 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01639 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01640 MBEDTLS_CIPHERSUITE_WEAK }, 01641 #endif /* MBEDTLS_SHA1_C */ 01642 01643 #if defined(MBEDTLS_SHA256_C) 01644 { MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA256, "TLS-RSA-PSK-WITH-NULL-SHA256", 01645 MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA_PSK, 01646 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01647 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01648 MBEDTLS_CIPHERSUITE_WEAK }, 01649 #endif 01650 01651 #if defined(MBEDTLS_SHA512_C) 01652 { MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA384, "TLS-RSA-PSK-WITH-NULL-SHA384", 01653 MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA_PSK, 01654 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1, 01655 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01656 MBEDTLS_CIPHERSUITE_WEAK }, 01657 #endif 01658 #endif /* MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED */ 01659 #endif /* MBEDTLS_CIPHER_NULL_CIPHER */ 01660 01661 #if defined(MBEDTLS_DES_C) 01662 #if defined(MBEDTLS_CIPHER_MODE_CBC) 01663 #if defined(MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED) 01664 #if defined(MBEDTLS_SHA1_C) 01665 { MBEDTLS_TLS_DHE_RSA_WITH_DES_CBC_SHA, "TLS-DHE-RSA-WITH-DES-CBC-SHA", 01666 MBEDTLS_CIPHER_DES_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_RSA, 01667 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 01668 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01669 MBEDTLS_CIPHERSUITE_WEAK }, 01670 #endif /* MBEDTLS_SHA1_C */ 01671 #endif /* MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED */ 01672 01673 #if defined(MBEDTLS_KEY_EXCHANGE_RSA_ENABLED) 01674 #if defined(MBEDTLS_SHA1_C) 01675 { MBEDTLS_TLS_RSA_WITH_DES_CBC_SHA, "TLS-RSA-WITH-DES-CBC-SHA", 01676 MBEDTLS_CIPHER_DES_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA, 01677 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0, 01678 MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3, 01679 MBEDTLS_CIPHERSUITE_WEAK }, 01680 #endif /* MBEDTLS_SHA1_C */ 01681 #endif /* MBEDTLS_KEY_EXCHANGE_RSA_ENABLED */ 01682 #endif /* MBEDTLS_CIPHER_MODE_CBC */ 01683 #endif /* MBEDTLS_DES_C */ 01684 #endif /* MBEDTLS_ENABLE_WEAK_CIPHERSUITES */ 01685 01686 { 0, "", 01687 MBEDTLS_CIPHER_NONE, MBEDTLS_MD_NONE, MBEDTLS_KEY_EXCHANGE_NONE, 01688 0, 0, 0, 0, 0 } 01689 }; 01690 01691 #if defined(MBEDTLS_SSL_CIPHERSUITES) 01692 const int *mbedtls_ssl_list_ciphersuites( void ) 01693 { 01694 return( ciphersuite_preference ); 01695 } 01696 #else 01697 #define MAX_CIPHERSUITES sizeof( ciphersuite_definitions ) / \ 01698 sizeof( ciphersuite_definitions[0] ) 01699 static int supported_ciphersuites[MAX_CIPHERSUITES]; 01700 static int supported_init = 0; 01701 01702 const int *mbedtls_ssl_list_ciphersuites( void ) 01703 { 01704 /* 01705 * On initial call filter out all ciphersuites not supported by current 01706 * build based on presence in the ciphersuite_definitions. 01707 */ 01708 if( supported_init == 0 ) 01709 { 01710 const int *p; 01711 int *q; 01712 01713 for( p = ciphersuite_preference, q = supported_ciphersuites; 01714 *p != 0 && q < supported_ciphersuites + MAX_CIPHERSUITES - 1; 01715 p++ ) 01716 { 01717 #if defined(MBEDTLS_REMOVE_ARC4_CIPHERSUITES) 01718 const mbedtls_ssl_ciphersuite_t *cs_info; 01719 if( ( cs_info = mbedtls_ssl_ciphersuite_from_id( *p ) ) != NULL && 01720 cs_info->cipher != MBEDTLS_CIPHER_ARC4_128 ) 01721 #else 01722 if( mbedtls_ssl_ciphersuite_from_id( *p ) != NULL ) 01723 #endif 01724 *(q++) = *p; 01725 } 01726 *q = 0; 01727 01728 supported_init = 1; 01729 } 01730 01731 return( supported_ciphersuites ); 01732 } 01733 #endif /* MBEDTLS_SSL_CIPHERSUITES */ 01734 01735 const mbedtls_ssl_ciphersuite_t *mbedtls_ssl_ciphersuite_from_string( 01736 const char *ciphersuite_name ) 01737 { 01738 const mbedtls_ssl_ciphersuite_t *cur = ciphersuite_definitions; 01739 01740 if( NULL == ciphersuite_name ) 01741 return( NULL ); 01742 01743 while( cur->id != 0 ) 01744 { 01745 if( 0 == strcmp( cur->name, ciphersuite_name ) ) 01746 return( cur ); 01747 01748 cur++; 01749 } 01750 01751 return( NULL ); 01752 } 01753 01754 const mbedtls_ssl_ciphersuite_t *mbedtls_ssl_ciphersuite_from_id( int ciphersuite ) 01755 { 01756 const mbedtls_ssl_ciphersuite_t *cur = ciphersuite_definitions; 01757 01758 while( cur->id != 0 ) 01759 { 01760 if( cur->id == ciphersuite ) 01761 return( cur ); 01762 01763 cur++; 01764 } 01765 01766 return( NULL ); 01767 } 01768 01769 const char *mbedtls_ssl_get_ciphersuite_name( const int ciphersuite_id ) 01770 { 01771 const mbedtls_ssl_ciphersuite_t *cur; 01772 01773 cur = mbedtls_ssl_ciphersuite_from_id( ciphersuite_id ); 01774 01775 if( cur == NULL ) 01776 return( "unknown" ); 01777 01778 return( cur->name ); 01779 } 01780 01781 int mbedtls_ssl_get_ciphersuite_id( const char *ciphersuite_name ) 01782 { 01783 const mbedtls_ssl_ciphersuite_t *cur; 01784 01785 cur = mbedtls_ssl_ciphersuite_from_string( ciphersuite_name ); 01786 01787 if( cur == NULL ) 01788 return( 0 ); 01789 01790 return( cur->id ); 01791 } 01792 01793 #if defined(MBEDTLS_PK_C) 01794 mbedtls_pk_type_t mbedtls_ssl_get_ciphersuite_sig_pk_alg( const mbedtls_ssl_ciphersuite_t *info ) 01795 { 01796 switch( info->key_exchange ) 01797 { 01798 case MBEDTLS_KEY_EXCHANGE_RSA: 01799 case MBEDTLS_KEY_EXCHANGE_DHE_RSA: 01800 case MBEDTLS_KEY_EXCHANGE_ECDHE_RSA: 01801 case MBEDTLS_KEY_EXCHANGE_RSA_PSK: 01802 return( MBEDTLS_PK_RSA ); 01803 01804 case MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA: 01805 return( MBEDTLS_PK_ECDSA ); 01806 01807 case MBEDTLS_KEY_EXCHANGE_ECDH_RSA: 01808 case MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA: 01809 return( MBEDTLS_PK_ECKEY ); 01810 01811 default: 01812 return( MBEDTLS_PK_NONE ); 01813 } 01814 } 01815 #endif /* MBEDTLS_PK_C */ 01816 01817 #if defined(MBEDTLS_ECDH_C) || defined(MBEDTLS_ECDSA_C) 01818 int mbedtls_ssl_ciphersuite_uses_ec( const mbedtls_ssl_ciphersuite_t *info ) 01819 { 01820 switch( info->key_exchange ) 01821 { 01822 case MBEDTLS_KEY_EXCHANGE_ECDHE_RSA: 01823 case MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA: 01824 case MBEDTLS_KEY_EXCHANGE_ECDHE_PSK: 01825 case MBEDTLS_KEY_EXCHANGE_ECDH_RSA: 01826 case MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA: 01827 return( 1 ); 01828 01829 default: 01830 return( 0 ); 01831 } 01832 } 01833 #endif /* MBEDTLS_ECDH_C || MBEDTLS_ECDSA_C */ 01834 01835 #if defined(MBEDTLS_KEY_EXCHANGE__SOME__PSK_ENABLED) 01836 int mbedtls_ssl_ciphersuite_uses_psk( const mbedtls_ssl_ciphersuite_t *info ) 01837 { 01838 switch( info->key_exchange ) 01839 { 01840 case MBEDTLS_KEY_EXCHANGE_PSK: 01841 case MBEDTLS_KEY_EXCHANGE_RSA_PSK: 01842 case MBEDTLS_KEY_EXCHANGE_DHE_PSK: 01843 case MBEDTLS_KEY_EXCHANGE_ECDHE_PSK: 01844 return( 1 ); 01845 01846 default: 01847 return( 0 ); 01848 } 01849 } 01850 #endif /* MBEDTLS_KEY_EXCHANGE__SOME__PSK_ENABLED */ 01851 01852 #endif /* MBEDTLS_SSL_TLS_C */
Generated on Tue Jul 12 2022 12:52:47 by
1.7.2