Ana Sayfa Keşfet Yardım
Giriş Yap
zhangyang
/
zhipuzi_pos_windows
İzle 1
Yıldızla 0
Çatalla 0
Dosyalar Sorunlar 0 Değişiklik İstekleri 0 Wiki
Ağaç: f88a605bf0
Dallar Biçim İmleri
zhipuzi_pos_...
/
include
/
openssl
/
tls1.h

tls1.h 62 KB
Geçmiş Ham

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697989910010110210310410510610710810911011111211311411511611711811912012112212312412512612712812913013113213313413513613713813914014114214314414514614714814915015115215315415515615715815916016116216316416516616716816917017117217317417517617717817918018118218318418518618718818919019119219319419519619719819920020120220320420520620720820921021121221321421521621721821922022122222322422522622722822923023123223323423523623723823924024124224324424524624724824925025125225325425525625725825926026126226326426526626726826927027127227327427527627727827928028128228328428528628728828929029129229329429529629729829930030130230330430530630730830931031131231331431531631731831932032132232332432532632732832933033133233333433533633733833934034134234334434534634734834935035135235335435535635735835936036136236336436536636736836937037137237337437537637737837938038138238338438538638738838939039139239339439539639739839940040140240340440540640740840941041141241341441541641741841942042142242342442542642742842943043143243343443543643743843944044144244344444544644744844945045145245345445545645745845946046146246346446546646746846947047147247347447547647747847948048148248348448548648748848949049149249349449549649749849950050150250350450550650750850951051151251351451551651751851952052152252352452552652752852953053153253353453553653753853954054154254354454554654754854955055155255355455555655755855956056156256356456556656756856957057157257357457557657757857958058158258358458558658758858959059159259359459559659759859960060160260360460560660760860961061161261361461561661761861962062162262362462562662762862963063163263363463563663763863964064164264364464564664764864965065165265365465565665765865966066166266366466566666766866967067167267367467567667767867968068168268368468568668768868969069169269369469569669769869970070170270370470570670770870971071171271371471571671771871972072172272372472572672772872973073173273373473573673773873974074174274374474574674774874975075175275375475575675775875976076176276376476576676776876977077177277377477577677777877978078178278378478578678778878979079179279379479579679779879980080180280380480580680780880981081181281381481581681781881982082182282382482582682782882983083183283383483583683783883984084184284384484584684784884985085185285385485585685785885986086186286386486586686786886987087187287387487587687787887988088188288388488588688788888989089189289389489589689789889990090190290390490590690790890991091191291391491591691791891992092192292392492592692792892993093193293393493593693793893994094194294394494594694794894995095195295395495595695795895996096196296396496596696796896997097197297397497597697797897998098198298398498598698798898999099199299399499599699799899910001001100210031004100510061007100810091010101110121013101410151016101710181019102010211022102310241025102610271028102910301031103210331034103510361037103810391040104110421043104410451046104710481049105010511052105310541055105610571058105910601061106210631064106510661067106810691070107110721073107410751076107710781079108010811082108310841085108610871088108910901091109210931094109510961097109810991100110111021103110411051106110711081109111011111112111311141115111611171118111911201121112211231124112511261127112811291130113111321133113411351136113711381139114011411142114311441145114611471148114911501151115211531154115511561157115811591160116111621163116411651166116711681169117011711172117311741175117611771178117911801181118211831184118511861187118811891190119111921193119411951196119711981199120012011202120312041205120612071208120912101211121212131214121512161217121812191220122112221223 
  1. /*
    2. 

  2.  * Copyright 1995-2025 The OpenSSL Project Authors. All Rights Reserved.
    3. 

  3.  * Copyright (c) 2002, Oracle and/or its affiliates. All rights reserved
    4. 

  4.  * Copyright 2005 Nokia. All rights reserved.
    5. 

  5.  *
    6. 

  6.  * Licensed under the Apache License 2.0 (the "License").  You may not use
    7. 

  7.  * this file except in compliance with the License.  You can obtain a copy
    8. 

  8.  * in the file LICENSE in the source distribution or at
    9. 

  9.  * https://www.openssl.org/source/license.html
    10. 

  10.  */
    11. 

  11. 

  12. #ifndef OPENSSL_TLS1_H
    13. 

  13. #define OPENSSL_TLS1_H
    14. 

  14. #pragma once
    15. 

  15. 

  16. #include <openssl/macros.h>
    17. 

  17. #ifndef OPENSSL_NO_DEPRECATED_3_0
    18. 

  18. #define HEADER_TLS1_H
    19. 

  19. #endif
    20. 

  20. 

  21. #include <openssl/buffer.h>
    22. 

  22. #include <openssl/x509.h>
    23. 

  23. #include <openssl/prov_ssl.h>
    24. 

  24. 

  25. #ifdef __cplusplus
    26. 

  26. extern "C" {
    27. 

  27. #endif
    28. 

  28. 

  29. /* Default security level if not overridden at config time */
    30. 

  30. #ifndef OPENSSL_TLS_SECURITY_LEVEL
    31. 

  31. #define OPENSSL_TLS_SECURITY_LEVEL 2
    32. 

  32. #endif
    33. 

  33. 

  34. /* TLS*_VERSION constants are defined in prov_ssl.h */
    35. 

  35. #ifndef OPENSSL_NO_DEPRECATED_3_0
    36. 

  36. #define TLS_MAX_VERSION TLS1_3_VERSION
    37. 

  37. #endif
    38. 

  38. 

  39. /* Special value for method supporting multiple versions */
    40. 

  40. #define TLS_ANY_VERSION 0x10000
    41. 

  41. 

  42. #define TLS1_VERSION_MAJOR 0x03
    43. 

  43. #define TLS1_VERSION_MINOR 0x01
    44. 

  44. 

  45. #define TLS1_1_VERSION_MAJOR 0x03
    46. 

  46. #define TLS1_1_VERSION_MINOR 0x02
    47. 

  47. 

  48. #define TLS1_2_VERSION_MAJOR 0x03
    49. 

  49. #define TLS1_2_VERSION_MINOR 0x03
    50. 

  50. 

  51. #define TLS1_get_version(s) \
    52. 

  52.     ((SSL_version(s) >> 8) == TLS1_VERSION_MAJOR ? SSL_version(s) : 0)
    53. 

  53. 

  54. #define TLS1_get_client_version(s) \
    55. 

  55.     ((SSL_client_version(s) >> 8) == TLS1_VERSION_MAJOR ? SSL_client_version(s) : 0)
    56. 

  56. 

  57. #define TLS1_AD_DECRYPTION_FAILED 21
    58. 

  58. #define TLS1_AD_RECORD_OVERFLOW 22
    59. 

  59. #define TLS1_AD_UNKNOWN_CA 48 /* fatal */
    60. 

  60. #define TLS1_AD_ACCESS_DENIED 49 /* fatal */
    61. 

  61. #define TLS1_AD_DECODE_ERROR 50 /* fatal */
    62. 

  62. #define TLS1_AD_DECRYPT_ERROR 51
    63. 

  63. #define TLS1_AD_EXPORT_RESTRICTION 60 /* fatal */
    64. 

  64. #define TLS1_AD_PROTOCOL_VERSION 70 /* fatal */
    65. 

  65. #define TLS1_AD_INSUFFICIENT_SECURITY 71 /* fatal */
    66. 

  66. #define TLS1_AD_INTERNAL_ERROR 80 /* fatal */
    67. 

  67. #define TLS1_AD_INAPPROPRIATE_FALLBACK 86 /* fatal */
    68. 

  68. #define TLS1_AD_USER_CANCELLED 90
    69. 

  69. #define TLS1_AD_NO_RENEGOTIATION 100
    70. 

  70. /* TLSv1.3 alerts */
    71. 

  71. #define TLS13_AD_MISSING_EXTENSION 109 /* fatal */
    72. 

  72. #define TLS13_AD_CERTIFICATE_REQUIRED 116 /* fatal */
    73. 

  73. /* codes 110-114 are from RFC3546 */
    74. 

  74. #define TLS1_AD_UNSUPPORTED_EXTENSION 110
    75. 

  75. #define TLS1_AD_CERTIFICATE_UNOBTAINABLE 111
    76. 

  76. #define TLS1_AD_UNRECOGNIZED_NAME 112
    77. 

  77. #define TLS1_AD_BAD_CERTIFICATE_STATUS_RESPONSE 113
    78. 

  78. #define TLS1_AD_BAD_CERTIFICATE_HASH_VALUE 114
    79. 

  79. #define TLS1_AD_UNKNOWN_PSK_IDENTITY 115 /* fatal */
    80. 

  80. #define TLS1_AD_NO_APPLICATION_PROTOCOL 120 /* fatal */
    81. 

  81. 

  82. /* ExtensionType values from RFC3546 / RFC4366 / RFC6066 */
    83. 

  83. #define TLSEXT_TYPE_server_name 0
    84. 

  84. #define TLSEXT_TYPE_max_fragment_length 1
    85. 

  85. #define TLSEXT_TYPE_client_certificate_url 2
    86. 

  86. #define TLSEXT_TYPE_trusted_ca_keys 3
    87. 

  87. #define TLSEXT_TYPE_truncated_hmac 4
    88. 

  88. #define TLSEXT_TYPE_status_request 5
    89. 

  89. /* ExtensionType values from RFC4681 */
    90. 

  90. #define TLSEXT_TYPE_user_mapping 6
    91. 

  91. /* ExtensionType values from RFC5878 */
    92. 

  92. #define TLSEXT_TYPE_client_authz 7
    93. 

  93. #define TLSEXT_TYPE_server_authz 8
    94. 

  94. /* ExtensionType values from RFC6091 */
    95. 

  95. #define TLSEXT_TYPE_cert_type 9
    96. 

  96. 

  97. /* ExtensionType values from RFC4492 */
    98. 

  98. /*
    99. 

  99.  * Prior to TLSv1.3 the supported_groups extension was known as
    100. 

  100.  * elliptic_curves
    101. 

  101.  */
    102. 

  102. #define TLSEXT_TYPE_supported_groups 10
    103. 

  103. #define TLSEXT_TYPE_elliptic_curves TLSEXT_TYPE_supported_groups
    104. 

  104. #define TLSEXT_TYPE_ec_point_formats 11
    105. 

  105. 

  106. /* ExtensionType value from RFC5054 */
    107. 

  107. #define TLSEXT_TYPE_srp 12
    108. 

  108. 

  109. /* ExtensionType values from RFC5246 */
    110. 

  110. #define TLSEXT_TYPE_signature_algorithms 13
    111. 

  111. 

  112. /* ExtensionType value from RFC5764 */
    113. 

  113. #define TLSEXT_TYPE_use_srtp 14
    114. 

  114. 

  115. /* ExtensionType value from RFC7301 */
    116. 

  116. #define TLSEXT_TYPE_application_layer_protocol_negotiation 16
    117. 

  117. 

  118. /*
    119. 

  119.  * Extension type for Certificate Transparency
    120. 

  120.  * https://tools.ietf.org/html/rfc6962#section-3.3.1
    121. 

  121.  */
    122. 

  122. #define TLSEXT_TYPE_signed_certificate_timestamp 18
    123. 

  123. 

  124. /*
    125. 

  125.  * Extension type for Raw Public Keys
    126. 

  126.  * https://tools.ietf.org/html/rfc7250
    127. 

  127.  * https://www.iana.org/assignments/tls-extensiontype-values/tls-extensiontype-values.xhtml
    128. 

  128.  */
    129. 

  129. #define TLSEXT_TYPE_client_cert_type 19
    130. 

  130. #define TLSEXT_TYPE_server_cert_type 20
    131. 

  131. 

  132. /*
    133. 

  133.  * ExtensionType value for TLS padding extension.
    134. 

  134.  * http://tools.ietf.org/html/draft-agl-tls-padding
    135. 

  135.  */
    136. 

  136. #define TLSEXT_TYPE_padding 21
    137. 

  137. 

  138. /* ExtensionType value from RFC7366 */
    139. 

  139. #define TLSEXT_TYPE_encrypt_then_mac 22
    140. 

  140. 

  141. /* ExtensionType value from RFC7627 */
    142. 

  142. #define TLSEXT_TYPE_extended_master_secret 23
    143. 

  143. 

  144. /* ExtensionType value from RFC8879 */
    145. 

  145. #define TLSEXT_TYPE_compress_certificate 27
    146. 

  146. 

  147. /* ExtensionType value from RFC4507 */
    148. 

  148. #define TLSEXT_TYPE_session_ticket 35
    149. 

  149. 

  150. /* As defined for TLS1.3 */
    151. 

  151. #define TLSEXT_TYPE_psk 41
    152. 

  152. #define TLSEXT_TYPE_early_data 42
    153. 

  153. #define TLSEXT_TYPE_supported_versions 43
    154. 

  154. #define TLSEXT_TYPE_cookie 44
    155. 

  155. #define TLSEXT_TYPE_psk_kex_modes 45
    156. 

  156. #define TLSEXT_TYPE_certificate_authorities 47
    157. 

  157. #define TLSEXT_TYPE_post_handshake_auth 49
    158. 

  158. #define TLSEXT_TYPE_signature_algorithms_cert 50
    159. 

  159. #define TLSEXT_TYPE_key_share 51
    160. 

  160. #define TLSEXT_TYPE_quic_transport_parameters 57
    161. 

  161. 

  162. /* Temporary extension type */
    163. 

  163. #define TLSEXT_TYPE_renegotiate 0xff01
    164. 

  164. 

  165. #ifndef OPENSSL_NO_NEXTPROTONEG
    166. 

  166. /* This is not an IANA defined extension number */
    167. 

  167. #define TLSEXT_TYPE_next_proto_neg 13172
    168. 

  168. #endif
    169. 

  169. 

  170. /* NameType value from RFC3546 */
    171. 

  171. #define TLSEXT_NAMETYPE_host_name 0
    172. 

  172. /* status request value from RFC3546 */
    173. 

  173. #define TLSEXT_STATUSTYPE_ocsp 1
    174. 

  174. 

  175. /* ECPointFormat values from RFC4492 */
    176. 

  176. #define TLSEXT_ECPOINTFORMAT_first 0
    177. 

  177. #define TLSEXT_ECPOINTFORMAT_uncompressed 0
    178. 

  178. #define TLSEXT_ECPOINTFORMAT_ansiX962_compressed_prime 1
    179. 

  179. #define TLSEXT_ECPOINTFORMAT_ansiX962_compressed_char2 2
    180. 

  180. #define TLSEXT_ECPOINTFORMAT_last 2
    181. 

  181. 

  182. /* Signature and hash algorithms from RFC5246 */
    183. 

  183. #define TLSEXT_signature_anonymous 0
    184. 

  184. #define TLSEXT_signature_rsa 1
    185. 

  185. #define TLSEXT_signature_dsa 2
    186. 

  186. #define TLSEXT_signature_ecdsa 3
    187. 

  187. #define TLSEXT_signature_gostr34102001 237
    188. 

  188. #define TLSEXT_signature_gostr34102012_256 238
    189. 

  189. #define TLSEXT_signature_gostr34102012_512 239
    190. 

  190. 

  191. /* Total number of different signature algorithms */
    192. 

  192. #define TLSEXT_signature_num 7
    193. 

  193. 

  194. #define TLSEXT_hash_none 0
    195. 

  195. #define TLSEXT_hash_md5 1
    196. 

  196. #define TLSEXT_hash_sha1 2
    197. 

  197. #define TLSEXT_hash_sha224 3
    198. 

  198. #define TLSEXT_hash_sha256 4
    199. 

  199. #define TLSEXT_hash_sha384 5
    200. 

  200. #define TLSEXT_hash_sha512 6
    201. 

  201. #define TLSEXT_hash_gostr3411 237
    202. 

  202. #define TLSEXT_hash_gostr34112012_256 238
    203. 

  203. #define TLSEXT_hash_gostr34112012_512 239
    204. 

  204. 

  205. /* Total number of different digest algorithms */
    206. 

  206. 

  207. #define TLSEXT_hash_num 10
    208. 

  208. 

  209. /* Possible compression values from RFC8879 */
    210. 

  210. /* Not defined in RFC8879, but used internally for no-compression */
    211. 

  211. #define TLSEXT_comp_cert_none 0
    212. 

  212. #define TLSEXT_comp_cert_zlib 1
    213. 

  213. #define TLSEXT_comp_cert_brotli 2
    214. 

  214. #define TLSEXT_comp_cert_zstd 3
    215. 

  215. /* one more than the number of defined values - used as size of 0-terminated array */
    216. 

  216. #define TLSEXT_comp_cert_limit 4
    217. 

  217. 

  218. /* Flag set for unrecognised algorithms */
    219. 

  219. #define TLSEXT_nid_unknown 0x1000000
    220. 

  220. 

  221. /* ECC curves */
    222. 

  222. 

  223. #define TLSEXT_curve_P_256 23
    224. 

  224. #define TLSEXT_curve_P_384 24
    225. 

  225. 

  226. /* OpenSSL value to disable maximum fragment length extension */
    227. 

  227. #define TLSEXT_max_fragment_length_DISABLED 0
    228. 

  228. /* Allowed values for max fragment length extension */
    229. 

  229. #define TLSEXT_max_fragment_length_512 1
    230. 

  230. #define TLSEXT_max_fragment_length_1024 2
    231. 

  231. #define TLSEXT_max_fragment_length_2048 3
    232. 

  232. #define TLSEXT_max_fragment_length_4096 4
    233. 

  233. /* OpenSSL value for unset maximum fragment length extension */
    234. 

  234. #define TLSEXT_max_fragment_length_UNSPECIFIED 255
    235. 

  235. 

  236. /*
    237. 

  237.  * TLS Certificate Type (for RFC7250)
    238. 

  238.  * https://www.iana.org/assignments/tls-extensiontype-values/tls-extensiontype-values.xhtml#tls-extensiontype-values-3
    239. 

  239.  */
    240. 

  240. #define TLSEXT_cert_type_x509 0
    241. 

  241. #define TLSEXT_cert_type_pgp 1 /* recognized, but not supported */
    242. 

  242. #define TLSEXT_cert_type_rpk 2
    243. 

  243. #define TLSEXT_cert_type_1609dot2 3 /* recognized, but not supported */
    244. 

  244. 

  245. int SSL_CTX_set_tlsext_max_fragment_length(SSL_CTX *ctx, uint8_t mode);
    246. 

  246. int SSL_set_tlsext_max_fragment_length(SSL *ssl, uint8_t mode);
    247. 

  247. 

  248. #define TLSEXT_MAXLEN_host_name 255
    249. 

  249. 

  250. __owur const char *SSL_get_servername(const SSL *s, const int type);
    251. 

  251. __owur int SSL_get_servername_type(const SSL *s);
    252. 

  252. /*
    253. 

  253.  * SSL_export_keying_material exports a value derived from the master secret,
    254. 

  254.  * as specified in RFC 5705. It writes |olen| bytes to |out| given a label and
    255. 

  255.  * optional context. (Since a zero length context is allowed, the |use_context|
    256. 

  256.  * flag controls whether a context is included.) It returns 1 on success and
    257. 

  257.  * 0 or -1 otherwise.
    258. 

  258.  */
    259. 

  259. __owur int SSL_export_keying_material(SSL *s, unsigned char *out, size_t olen,
    260. 

  260.     const char *label, size_t llen,
    261. 

  261.     const unsigned char *context,
    262. 

  262.     size_t contextlen, int use_context);
    263. 

  263. 

  264. /*
    265. 

  265.  * SSL_export_keying_material_early exports a value derived from the
    266. 

  266.  * early exporter master secret, as specified in
    267. 

  267.  * https://tools.ietf.org/html/draft-ietf-tls-tls13-23. It writes
    268. 

  268.  * |olen| bytes to |out| given a label and optional context. It
    269. 

  269.  * returns 1 on success and 0 otherwise.
    270. 

  270.  */
    271. 

  271. __owur int SSL_export_keying_material_early(SSL *s, unsigned char *out,
    272. 

  272.     size_t olen, const char *label,
    273. 

  273.     size_t llen,
    274. 

  274.     const unsigned char *context,
    275. 

  275.     size_t contextlen);
    276. 

  276. 

  277. int SSL_get_peer_signature_type_nid(const SSL *s, int *pnid);
    278. 

  278. int SSL_get_signature_type_nid(const SSL *s, int *pnid);
    279. 

  279. 

  280. int SSL_get_sigalgs(SSL *s, int idx,
    281. 

  281.     int *psign, int *phash, int *psignandhash,
    282. 

  282.     unsigned char *rsig, unsigned char *rhash);
    283. 

  283. 

  284. char *SSL_get1_builtin_sigalgs(OSSL_LIB_CTX *libctx);
    285. 

  285. 

  286. int SSL_get_shared_sigalgs(SSL *s, int idx,
    287. 

  287.     int *psign, int *phash, int *psignandhash,
    288. 

  288.     unsigned char *rsig, unsigned char *rhash);
    289. 

  289. 

  290. __owur int SSL_check_chain(SSL *s, X509 *x, EVP_PKEY *pk, STACK_OF(X509) *chain);
    291. 

  291. 

  292. #define SSL_set_tlsext_host_name(s, name)                                \
    293. 

  293.     SSL_ctrl(s, SSL_CTRL_SET_TLSEXT_HOSTNAME, TLSEXT_NAMETYPE_host_name, \
    294. 

  294.         (void *)name)
    295. 

  295. 

  296. #define SSL_set_tlsext_debug_callback(ssl, cb)           \
    297. 

  297.     SSL_callback_ctrl(ssl, SSL_CTRL_SET_TLSEXT_DEBUG_CB, \
    298. 

  298.         (void (*)(void))cb)
    299. 

  299. 

  300. #define SSL_set_tlsext_debug_arg(ssl, arg) \
    301. 

  301.     SSL_ctrl(ssl, SSL_CTRL_SET_TLSEXT_DEBUG_ARG, 0, arg)
    302. 

  302. 

  303. #define SSL_get_tlsext_status_type(ssl) \
    304. 

  304.     SSL_ctrl(ssl, SSL_CTRL_GET_TLSEXT_STATUS_REQ_TYPE, 0, NULL)
    305. 

  305. 

  306. #define SSL_set_tlsext_status_type(ssl, type) \
    307. 

  307.     SSL_ctrl(ssl, SSL_CTRL_SET_TLSEXT_STATUS_REQ_TYPE, type, NULL)
    308. 

  308. 

  309. #define SSL_get_tlsext_status_exts(ssl, arg) \
    310. 

  310.     SSL_ctrl(ssl, SSL_CTRL_GET_TLSEXT_STATUS_REQ_EXTS, 0, arg)
    311. 

  311. 

  312. #define SSL_set_tlsext_status_exts(ssl, arg) \
    313. 

  313.     SSL_ctrl(ssl, SSL_CTRL_SET_TLSEXT_STATUS_REQ_EXTS, 0, arg)
    314. 

  314. 

  315. #define SSL_get_tlsext_status_ids(ssl, arg) \
    316. 

  316.     SSL_ctrl(ssl, SSL_CTRL_GET_TLSEXT_STATUS_REQ_IDS, 0, arg)
    317. 

  317. 

  318. #define SSL_set_tlsext_status_ids(ssl, arg) \
    319. 

  319.     SSL_ctrl(ssl, SSL_CTRL_SET_TLSEXT_STATUS_REQ_IDS, 0, arg)
    320. 

  320. 

  321. #define SSL_get_tlsext_status_ocsp_resp(ssl, arg) \
    322. 

  322.     SSL_ctrl(ssl, SSL_CTRL_GET_TLSEXT_STATUS_REQ_OCSP_RESP, 0, arg)
    323. 

  323. 

  324. #define SSL_set_tlsext_status_ocsp_resp(ssl, arg, arglen) \
    325. 

  325.     SSL_ctrl(ssl, SSL_CTRL_SET_TLSEXT_STATUS_REQ_OCSP_RESP, arglen, arg)
    326. 

  326. 

  327. #define SSL_get0_tlsext_status_ocsp_resp_ex(ssl, arg) \
    328. 

  328.     SSL_ctrl(ssl, SSL_CTRL_GET_TLSEXT_STATUS_REQ_OCSP_RESP_EX, 0, arg)
    329. 

  329. 

  330. #define SSL_set0_tlsext_status_ocsp_resp_ex(ssl, arg) \
    331. 

  331.     SSL_ctrl(ssl, SSL_CTRL_SET_TLSEXT_STATUS_REQ_OCSP_RESP_EX, 0, arg)
    332. 

  332. 

  333. #define SSL_CTX_set_tlsext_servername_callback(ctx, cb)           \
    334. 

  334.     SSL_CTX_callback_ctrl(ctx, SSL_CTRL_SET_TLSEXT_SERVERNAME_CB, \
    335. 

  335.         (void (*)(void))cb)
    336. 

  336. 

  337. #define SSL_TLSEXT_ERR_OK 0
    338. 

  338. #define SSL_TLSEXT_ERR_ALERT_WARNING 1
    339. 

  339. #define SSL_TLSEXT_ERR_ALERT_FATAL 2
    340. 

  340. #define SSL_TLSEXT_ERR_NOACK 3
    341. 

  341. 

  342. #define SSL_CTX_set_tlsext_servername_arg(ctx, arg) \
    343. 

  343.     SSL_CTX_ctrl(ctx, SSL_CTRL_SET_TLSEXT_SERVERNAME_ARG, 0, arg)
    344. 

  344. 

  345. #define SSL_CTX_get_tlsext_ticket_keys(ctx, keys, keylen) \
    346. 

  346.     SSL_CTX_ctrl(ctx, SSL_CTRL_GET_TLSEXT_TICKET_KEYS, keylen, keys)
    347. 

  347. #define SSL_CTX_set_tlsext_ticket_keys(ctx, keys, keylen) \
    348. 

  348.     SSL_CTX_ctrl(ctx, SSL_CTRL_SET_TLSEXT_TICKET_KEYS, keylen, keys)
    349. 

  349. 

  350. #define SSL_CTX_get_tlsext_status_cb(ssl, cb) \
    351. 

  351.     SSL_CTX_ctrl(ssl, SSL_CTRL_GET_TLSEXT_STATUS_REQ_CB, 0, (void *)cb)
    352. 

  352. #define SSL_CTX_set_tlsext_status_cb(ssl, cb)                     \
    353. 

  353.     SSL_CTX_callback_ctrl(ssl, SSL_CTRL_SET_TLSEXT_STATUS_REQ_CB, \
    354. 

  354.         (void (*)(void))cb)
    355. 

  355. 

  356. #define SSL_CTX_get_tlsext_status_arg(ssl, arg) \
    357. 

  357.     SSL_CTX_ctrl(ssl, SSL_CTRL_GET_TLSEXT_STATUS_REQ_CB_ARG, 0, arg)
    358. 

  358. #define SSL_CTX_set_tlsext_status_arg(ssl, arg) \
    359. 

  359.     SSL_CTX_ctrl(ssl, SSL_CTRL_SET_TLSEXT_STATUS_REQ_CB_ARG, 0, arg)
    360. 

  360. 

  361. #define SSL_CTX_set_tlsext_status_type(ssl, type) \
    362. 

  362.     SSL_CTX_ctrl(ssl, SSL_CTRL_SET_TLSEXT_STATUS_REQ_TYPE, type, NULL)
    363. 

  363. 

  364. #define SSL_CTX_get_tlsext_status_type(ssl) \
    365. 

  365.     SSL_CTX_ctrl(ssl, SSL_CTRL_GET_TLSEXT_STATUS_REQ_TYPE, 0, NULL)
    366. 

  366. 

  367. #ifndef OPENSSL_NO_DEPRECATED_3_0
    368. 

  368. #define SSL_CTX_set_tlsext_ticket_key_cb(ssl, cb)                 \
    369. 

  369.     SSL_CTX_callback_ctrl(ssl, SSL_CTRL_SET_TLSEXT_TICKET_KEY_CB, \
    370. 

  370.         (void (*)(void))cb)
    371. 

  371. #endif
    372. 

  372. int SSL_CTX_set_tlsext_ticket_key_evp_cb(SSL_CTX *ctx, int (*fp)(SSL *, unsigned char *, unsigned char *, EVP_CIPHER_CTX *, EVP_MAC_CTX *, int));
    373. 

  373. 

  374. /* PSK ciphersuites from 4279 */
    375. 

  375. #define TLS1_CK_PSK_WITH_RC4_128_SHA 0x0300008A
    376. 

  376. #define TLS1_CK_PSK_WITH_3DES_EDE_CBC_SHA 0x0300008B
    377. 

  377. #define TLS1_CK_PSK_WITH_AES_128_CBC_SHA 0x0300008C
    378. 

  378. #define TLS1_CK_PSK_WITH_AES_256_CBC_SHA 0x0300008D
    379. 

  379. #define TLS1_CK_DHE_PSK_WITH_RC4_128_SHA 0x0300008E
    380. 

  380. #define TLS1_CK_DHE_PSK_WITH_3DES_EDE_CBC_SHA 0x0300008F
    381. 

  381. #define TLS1_CK_DHE_PSK_WITH_AES_128_CBC_SHA 0x03000090
    382. 

  382. #define TLS1_CK_DHE_PSK_WITH_AES_256_CBC_SHA 0x03000091
    383. 

  383. #define TLS1_CK_RSA_PSK_WITH_RC4_128_SHA 0x03000092
    384. 

  384. #define TLS1_CK_RSA_PSK_WITH_3DES_EDE_CBC_SHA 0x03000093
    385. 

  385. #define TLS1_CK_RSA_PSK_WITH_AES_128_CBC_SHA 0x03000094
    386. 

  386. #define TLS1_CK_RSA_PSK_WITH_AES_256_CBC_SHA 0x03000095
    387. 

  387. 

  388. /* PSK ciphersuites from 5487 */
    389. 

  389. #define TLS1_CK_PSK_WITH_AES_128_GCM_SHA256 0x030000A8
    390. 

  390. #define TLS1_CK_PSK_WITH_AES_256_GCM_SHA384 0x030000A9
    391. 

  391. #define TLS1_CK_DHE_PSK_WITH_AES_128_GCM_SHA256 0x030000AA
    392. 

  392. #define TLS1_CK_DHE_PSK_WITH_AES_256_GCM_SHA384 0x030000AB
    393. 

  393. #define TLS1_CK_RSA_PSK_WITH_AES_128_GCM_SHA256 0x030000AC
    394. 

  394. #define TLS1_CK_RSA_PSK_WITH_AES_256_GCM_SHA384 0x030000AD
    395. 

  395. #define TLS1_CK_PSK_WITH_AES_128_CBC_SHA256 0x030000AE
    396. 

  396. #define TLS1_CK_PSK_WITH_AES_256_CBC_SHA384 0x030000AF
    397. 

  397. #define TLS1_CK_PSK_WITH_NULL_SHA256 0x030000B0
    398. 

  398. #define TLS1_CK_PSK_WITH_NULL_SHA384 0x030000B1
    399. 

  399. #define TLS1_CK_DHE_PSK_WITH_AES_128_CBC_SHA256 0x030000B2
    400. 

  400. #define TLS1_CK_DHE_PSK_WITH_AES_256_CBC_SHA384 0x030000B3
    401. 

  401. #define TLS1_CK_DHE_PSK_WITH_NULL_SHA256 0x030000B4
    402. 

  402. #define TLS1_CK_DHE_PSK_WITH_NULL_SHA384 0x030000B5
    403. 

  403. #define TLS1_CK_RSA_PSK_WITH_AES_128_CBC_SHA256 0x030000B6
    404. 

  404. #define TLS1_CK_RSA_PSK_WITH_AES_256_CBC_SHA384 0x030000B7
    405. 

  405. #define TLS1_CK_RSA_PSK_WITH_NULL_SHA256 0x030000B8
    406. 

  406. #define TLS1_CK_RSA_PSK_WITH_NULL_SHA384 0x030000B9
    407. 

  407. 

  408. /* NULL PSK ciphersuites from RFC4785 */
    409. 

  409. #define TLS1_CK_PSK_WITH_NULL_SHA 0x0300002C
    410. 

  410. #define TLS1_CK_DHE_PSK_WITH_NULL_SHA 0x0300002D
    411. 

  411. #define TLS1_CK_RSA_PSK_WITH_NULL_SHA 0x0300002E
    412. 

  412. 

  413. /* AES ciphersuites from RFC3268 */
    414. 

  414. #define TLS1_CK_RSA_WITH_AES_128_SHA 0x0300002F
    415. 

  415. #define TLS1_CK_DH_DSS_WITH_AES_128_SHA 0x03000030
    416. 

  416. #define TLS1_CK_DH_RSA_WITH_AES_128_SHA 0x03000031
    417. 

  417. #define TLS1_CK_DHE_DSS_WITH_AES_128_SHA 0x03000032
    418. 

  418. #define TLS1_CK_DHE_RSA_WITH_AES_128_SHA 0x03000033
    419. 

  419. #define TLS1_CK_ADH_WITH_AES_128_SHA 0x03000034
    420. 

  420. #define TLS1_CK_RSA_WITH_AES_256_SHA 0x03000035
    421. 

  421. #define TLS1_CK_DH_DSS_WITH_AES_256_SHA 0x03000036
    422. 

  422. #define TLS1_CK_DH_RSA_WITH_AES_256_SHA 0x03000037
    423. 

  423. #define TLS1_CK_DHE_DSS_WITH_AES_256_SHA 0x03000038
    424. 

  424. #define TLS1_CK_DHE_RSA_WITH_AES_256_SHA 0x03000039
    425. 

  425. #define TLS1_CK_ADH_WITH_AES_256_SHA 0x0300003A
    426. 

  426. 

  427. /* TLS v1.2 ciphersuites */
    428. 

  428. #define TLS1_CK_RSA_WITH_NULL_SHA256 0x0300003B
    429. 

  429. #define TLS1_CK_RSA_WITH_AES_128_SHA256 0x0300003C
    430. 

  430. #define TLS1_CK_RSA_WITH_AES_256_SHA256 0x0300003D
    431. 

  431. #define TLS1_CK_DH_DSS_WITH_AES_128_SHA256 0x0300003E
    432. 

  432. #define TLS1_CK_DH_RSA_WITH_AES_128_SHA256 0x0300003F
    433. 

  433. #define TLS1_CK_DHE_DSS_WITH_AES_128_SHA256 0x03000040
    434. 

  434. 

  435. /* Camellia ciphersuites from RFC4132 */
    436. 

  436. #define TLS1_CK_RSA_WITH_CAMELLIA_128_CBC_SHA 0x03000041
    437. 

  437. #define TLS1_CK_DH_DSS_WITH_CAMELLIA_128_CBC_SHA 0x03000042
    438. 

  438. #define TLS1_CK_DH_RSA_WITH_CAMELLIA_128_CBC_SHA 0x03000043
    439. 

  439. #define TLS1_CK_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA 0x03000044
    440. 

  440. #define TLS1_CK_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA 0x03000045
    441. 

  441. #define TLS1_CK_ADH_WITH_CAMELLIA_128_CBC_SHA 0x03000046
    442. 

  442. 

  443. /* TLS v1.2 ciphersuites */
    444. 

  444. #define TLS1_CK_DHE_RSA_WITH_AES_128_SHA256 0x03000067
    445. 

  445. #define TLS1_CK_DH_DSS_WITH_AES_256_SHA256 0x03000068
    446. 

  446. #define TLS1_CK_DH_RSA_WITH_AES_256_SHA256 0x03000069
    447. 

  447. #define TLS1_CK_DHE_DSS_WITH_AES_256_SHA256 0x0300006A
    448. 

  448. #define TLS1_CK_DHE_RSA_WITH_AES_256_SHA256 0x0300006B
    449. 

  449. #define TLS1_CK_ADH_WITH_AES_128_SHA256 0x0300006C
    450. 

  450. #define TLS1_CK_ADH_WITH_AES_256_SHA256 0x0300006D
    451. 

  451. 

  452. /* Camellia ciphersuites from RFC4132 */
    453. 

  453. #define TLS1_CK_RSA_WITH_CAMELLIA_256_CBC_SHA 0x03000084
    454. 

  454. #define TLS1_CK_DH_DSS_WITH_CAMELLIA_256_CBC_SHA 0x03000085
    455. 

  455. #define TLS1_CK_DH_RSA_WITH_CAMELLIA_256_CBC_SHA 0x03000086
    456. 

  456. #define TLS1_CK_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA 0x03000087
    457. 

  457. #define TLS1_CK_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA 0x03000088
    458. 

  458. #define TLS1_CK_ADH_WITH_CAMELLIA_256_CBC_SHA 0x03000089
    459. 

  459. 

  460. /* SEED ciphersuites from RFC4162 */
    461. 

  461. #define TLS1_CK_RSA_WITH_SEED_SHA 0x03000096
    462. 

  462. #define TLS1_CK_DH_DSS_WITH_SEED_SHA 0x03000097
    463. 

  463. #define TLS1_CK_DH_RSA_WITH_SEED_SHA 0x03000098
    464. 

  464. #define TLS1_CK_DHE_DSS_WITH_SEED_SHA 0x03000099
    465. 

  465. #define TLS1_CK_DHE_RSA_WITH_SEED_SHA 0x0300009A
    466. 

  466. #define TLS1_CK_ADH_WITH_SEED_SHA 0x0300009B
    467. 

  467. 

  468. /* TLS v1.2 GCM ciphersuites from RFC5288 */
    469. 

  469. #define TLS1_CK_RSA_WITH_AES_128_GCM_SHA256 0x0300009C
    470. 

  470. #define TLS1_CK_RSA_WITH_AES_256_GCM_SHA384 0x0300009D
    471. 

  471. #define TLS1_CK_DHE_RSA_WITH_AES_128_GCM_SHA256 0x0300009E
    472. 

  472. #define TLS1_CK_DHE_RSA_WITH_AES_256_GCM_SHA384 0x0300009F
    473. 

  473. #define TLS1_CK_DH_RSA_WITH_AES_128_GCM_SHA256 0x030000A0
    474. 

  474. #define TLS1_CK_DH_RSA_WITH_AES_256_GCM_SHA384 0x030000A1
    475. 

  475. #define TLS1_CK_DHE_DSS_WITH_AES_128_GCM_SHA256 0x030000A2
    476. 

  476. #define TLS1_CK_DHE_DSS_WITH_AES_256_GCM_SHA384 0x030000A3
    477. 

  477. #define TLS1_CK_DH_DSS_WITH_AES_128_GCM_SHA256 0x030000A4
    478. 

  478. #define TLS1_CK_DH_DSS_WITH_AES_256_GCM_SHA384 0x030000A5
    479. 

  479. #define TLS1_CK_ADH_WITH_AES_128_GCM_SHA256 0x030000A6
    480. 

  480. #define TLS1_CK_ADH_WITH_AES_256_GCM_SHA384 0x030000A7
    481. 

  481. 

  482. /* CCM ciphersuites from RFC6655 */
    483. 

  483. #define TLS1_CK_RSA_WITH_AES_128_CCM 0x0300C09C
    484. 

  484. #define TLS1_CK_RSA_WITH_AES_256_CCM 0x0300C09D
    485. 

  485. #define TLS1_CK_DHE_RSA_WITH_AES_128_CCM 0x0300C09E
    486. 

  486. #define TLS1_CK_DHE_RSA_WITH_AES_256_CCM 0x0300C09F
    487. 

  487. #define TLS1_CK_RSA_WITH_AES_128_CCM_8 0x0300C0A0
    488. 

  488. #define TLS1_CK_RSA_WITH_AES_256_CCM_8 0x0300C0A1
    489. 

  489. #define TLS1_CK_DHE_RSA_WITH_AES_128_CCM_8 0x0300C0A2
    490. 

  490. #define TLS1_CK_DHE_RSA_WITH_AES_256_CCM_8 0x0300C0A3
    491. 

  491. #define TLS1_CK_PSK_WITH_AES_128_CCM 0x0300C0A4
    492. 

  492. #define TLS1_CK_PSK_WITH_AES_256_CCM 0x0300C0A5
    493. 

  493. #define TLS1_CK_DHE_PSK_WITH_AES_128_CCM 0x0300C0A6
    494. 

  494. #define TLS1_CK_DHE_PSK_WITH_AES_256_CCM 0x0300C0A7
    495. 

  495. #define TLS1_CK_PSK_WITH_AES_128_CCM_8 0x0300C0A8
    496. 

  496. #define TLS1_CK_PSK_WITH_AES_256_CCM_8 0x0300C0A9
    497. 

  497. #define TLS1_CK_DHE_PSK_WITH_AES_128_CCM_8 0x0300C0AA
    498. 

  498. #define TLS1_CK_DHE_PSK_WITH_AES_256_CCM_8 0x0300C0AB
    499. 

  499. 

  500. /* CCM ciphersuites from RFC7251 */
    501. 

  501. #define TLS1_CK_ECDHE_ECDSA_WITH_AES_128_CCM 0x0300C0AC
    502. 

  502. #define TLS1_CK_ECDHE_ECDSA_WITH_AES_256_CCM 0x0300C0AD
    503. 

  503. #define TLS1_CK_ECDHE_ECDSA_WITH_AES_128_CCM_8 0x0300C0AE
    504. 

  504. #define TLS1_CK_ECDHE_ECDSA_WITH_AES_256_CCM_8 0x0300C0AF
    505. 

  505. 

  506. /* TLS 1.2 Camellia SHA-256 ciphersuites from RFC5932 */
    507. 

  507. #define TLS1_CK_RSA_WITH_CAMELLIA_128_CBC_SHA256 0x030000BA
    508. 

  508. #define TLS1_CK_DH_DSS_WITH_CAMELLIA_128_CBC_SHA256 0x030000BB
    509. 

  509. #define TLS1_CK_DH_RSA_WITH_CAMELLIA_128_CBC_SHA256 0x030000BC
    510. 

  510. #define TLS1_CK_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA256 0x030000BD
    511. 

  511. #define TLS1_CK_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 0x030000BE
    512. 

  512. #define TLS1_CK_ADH_WITH_CAMELLIA_128_CBC_SHA256 0x030000BF
    513. 

  513. 

  514. #define TLS1_CK_RSA_WITH_CAMELLIA_256_CBC_SHA256 0x030000C0
    515. 

  515. #define TLS1_CK_DH_DSS_WITH_CAMELLIA_256_CBC_SHA256 0x030000C1
    516. 

  516. #define TLS1_CK_DH_RSA_WITH_CAMELLIA_256_CBC_SHA256 0x030000C2
    517. 

  517. #define TLS1_CK_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA256 0x030000C3
    518. 

  518. #define TLS1_CK_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256 0x030000C4
    519. 

  519. #define TLS1_CK_ADH_WITH_CAMELLIA_256_CBC_SHA256 0x030000C5
    520. 

  520. 

  521. /* ECC ciphersuites from RFC4492 */
    522. 

  522. #define TLS1_CK_ECDH_ECDSA_WITH_NULL_SHA 0x0300C001
    523. 

  523. #define TLS1_CK_ECDH_ECDSA_WITH_RC4_128_SHA 0x0300C002
    524. 

  524. #define TLS1_CK_ECDH_ECDSA_WITH_DES_192_CBC3_SHA 0x0300C003
    525. 

  525. #define TLS1_CK_ECDH_ECDSA_WITH_AES_128_CBC_SHA 0x0300C004
    526. 

  526. #define TLS1_CK_ECDH_ECDSA_WITH_AES_256_CBC_SHA 0x0300C005
    527. 

  527. 

  528. #define TLS1_CK_ECDHE_ECDSA_WITH_NULL_SHA 0x0300C006
    529. 

  529. #define TLS1_CK_ECDHE_ECDSA_WITH_RC4_128_SHA 0x0300C007
    530. 

  530. #define TLS1_CK_ECDHE_ECDSA_WITH_DES_192_CBC3_SHA 0x0300C008
    531. 

  531. #define TLS1_CK_ECDHE_ECDSA_WITH_AES_128_CBC_SHA 0x0300C009
    532. 

  532. #define TLS1_CK_ECDHE_ECDSA_WITH_AES_256_CBC_SHA 0x0300C00A
    533. 

  533. 

  534. #define TLS1_CK_ECDH_RSA_WITH_NULL_SHA 0x0300C00B
    535. 

  535. #define TLS1_CK_ECDH_RSA_WITH_RC4_128_SHA 0x0300C00C
    536. 

  536. #define TLS1_CK_ECDH_RSA_WITH_DES_192_CBC3_SHA 0x0300C00D
    537. 

  537. #define TLS1_CK_ECDH_RSA_WITH_AES_128_CBC_SHA 0x0300C00E
    538. 

  538. #define TLS1_CK_ECDH_RSA_WITH_AES_256_CBC_SHA 0x0300C00F
    539. 

  539. 

  540. #define TLS1_CK_ECDHE_RSA_WITH_NULL_SHA 0x0300C010
    541. 

  541. #define TLS1_CK_ECDHE_RSA_WITH_RC4_128_SHA 0x0300C011
    542. 

  542. #define TLS1_CK_ECDHE_RSA_WITH_DES_192_CBC3_SHA 0x0300C012
    543. 

  543. #define TLS1_CK_ECDHE_RSA_WITH_AES_128_CBC_SHA 0x0300C013
    544. 

  544. #define TLS1_CK_ECDHE_RSA_WITH_AES_256_CBC_SHA 0x0300C014
    545. 

  545. 

  546. #define TLS1_CK_ECDH_anon_WITH_NULL_SHA 0x0300C015
    547. 

  547. #define TLS1_CK_ECDH_anon_WITH_RC4_128_SHA 0x0300C016
    548. 

  548. #define TLS1_CK_ECDH_anon_WITH_DES_192_CBC3_SHA 0x0300C017
    549. 

  549. #define TLS1_CK_ECDH_anon_WITH_AES_128_CBC_SHA 0x0300C018
    550. 

  550. #define TLS1_CK_ECDH_anon_WITH_AES_256_CBC_SHA 0x0300C019
    551. 

  551. 

  552. /* SRP ciphersuites from RFC 5054 */
    553. 

  553. #define TLS1_CK_SRP_SHA_WITH_3DES_EDE_CBC_SHA 0x0300C01A
    554. 

  554. #define TLS1_CK_SRP_SHA_RSA_WITH_3DES_EDE_CBC_SHA 0x0300C01B
    555. 

  555. #define TLS1_CK_SRP_SHA_DSS_WITH_3DES_EDE_CBC_SHA 0x0300C01C
    556. 

  556. #define TLS1_CK_SRP_SHA_WITH_AES_128_CBC_SHA 0x0300C01D
    557. 

  557. #define TLS1_CK_SRP_SHA_RSA_WITH_AES_128_CBC_SHA 0x0300C01E
    558. 

  558. #define TLS1_CK_SRP_SHA_DSS_WITH_AES_128_CBC_SHA 0x0300C01F
    559. 

  559. #define TLS1_CK_SRP_SHA_WITH_AES_256_CBC_SHA 0x0300C020
    560. 

  560. #define TLS1_CK_SRP_SHA_RSA_WITH_AES_256_CBC_SHA 0x0300C021
    561. 

  561. #define TLS1_CK_SRP_SHA_DSS_WITH_AES_256_CBC_SHA 0x0300C022
    562. 

  562. 

  563. /* ECDH HMAC based ciphersuites from RFC5289 */
    564. 

  564. #define TLS1_CK_ECDHE_ECDSA_WITH_AES_128_SHA256 0x0300C023
    565. 

  565. #define TLS1_CK_ECDHE_ECDSA_WITH_AES_256_SHA384 0x0300C024
    566. 

  566. #define TLS1_CK_ECDH_ECDSA_WITH_AES_128_SHA256 0x0300C025
    567. 

  567. #define TLS1_CK_ECDH_ECDSA_WITH_AES_256_SHA384 0x0300C026
    568. 

  568. #define TLS1_CK_ECDHE_RSA_WITH_AES_128_SHA256 0x0300C027
    569. 

  569. #define TLS1_CK_ECDHE_RSA_WITH_AES_256_SHA384 0x0300C028
    570. 

  570. #define TLS1_CK_ECDH_RSA_WITH_AES_128_SHA256 0x0300C029
    571. 

  571. #define TLS1_CK_ECDH_RSA_WITH_AES_256_SHA384 0x0300C02A
    572. 

  572. 

  573. /* ECDH GCM based ciphersuites from RFC5289 */
    574. 

  574. #define TLS1_CK_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 0x0300C02B
    575. 

  575. #define TLS1_CK_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 0x0300C02C
    576. 

  576. #define TLS1_CK_ECDH_ECDSA_WITH_AES_128_GCM_SHA256 0x0300C02D
    577. 

  577. #define TLS1_CK_ECDH_ECDSA_WITH_AES_256_GCM_SHA384 0x0300C02E
    578. 

  578. #define TLS1_CK_ECDHE_RSA_WITH_AES_128_GCM_SHA256 0x0300C02F
    579. 

  579. #define TLS1_CK_ECDHE_RSA_WITH_AES_256_GCM_SHA384 0x0300C030
    580. 

  580. #define TLS1_CK_ECDH_RSA_WITH_AES_128_GCM_SHA256 0x0300C031
    581. 

  581. #define TLS1_CK_ECDH_RSA_WITH_AES_256_GCM_SHA384 0x0300C032
    582. 

  582. 

  583. /* ECDHE PSK ciphersuites from RFC5489 */
    584. 

  584. #define TLS1_CK_ECDHE_PSK_WITH_RC4_128_SHA 0x0300C033
    585. 

  585. #define TLS1_CK_ECDHE_PSK_WITH_3DES_EDE_CBC_SHA 0x0300C034
    586. 

  586. #define TLS1_CK_ECDHE_PSK_WITH_AES_128_CBC_SHA 0x0300C035
    587. 

  587. #define TLS1_CK_ECDHE_PSK_WITH_AES_256_CBC_SHA 0x0300C036
    588. 

  588. 

  589. #define TLS1_CK_ECDHE_PSK_WITH_AES_128_CBC_SHA256 0x0300C037
    590. 

  590. #define TLS1_CK_ECDHE_PSK_WITH_AES_256_CBC_SHA384 0x0300C038
    591. 

  591. 

  592. /* NULL PSK ciphersuites from RFC4785 */
    593. 

  593. #define TLS1_CK_ECDHE_PSK_WITH_NULL_SHA 0x0300C039
    594. 

  594. #define TLS1_CK_ECDHE_PSK_WITH_NULL_SHA256 0x0300C03A
    595. 

  595. #define TLS1_CK_ECDHE_PSK_WITH_NULL_SHA384 0x0300C03B
    596. 

  596. 

  597. /* Camellia-CBC ciphersuites from RFC6367 */
    598. 

  598. #define TLS1_CK_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256 0x0300C072
    599. 

  599. #define TLS1_CK_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384 0x0300C073
    600. 

  600. #define TLS1_CK_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256 0x0300C074
    601. 

  601. #define TLS1_CK_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384 0x0300C075
    602. 

  602. #define TLS1_CK_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 0x0300C076
    603. 

  603. #define TLS1_CK_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384 0x0300C077
    604. 

  604. #define TLS1_CK_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256 0x0300C078
    605. 

  605. #define TLS1_CK_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384 0x0300C079
    606. 

  606. 

  607. #define TLS1_CK_PSK_WITH_CAMELLIA_128_CBC_SHA256 0x0300C094
    608. 

  608. #define TLS1_CK_PSK_WITH_CAMELLIA_256_CBC_SHA384 0x0300C095
    609. 

  609. #define TLS1_CK_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256 0x0300C096
    610. 

  610. #define TLS1_CK_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384 0x0300C097
    611. 

  611. #define TLS1_CK_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256 0x0300C098
    612. 

  612. #define TLS1_CK_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384 0x0300C099
    613. 

  613. #define TLS1_CK_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256 0x0300C09A
    614. 

  614. #define TLS1_CK_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384 0x0300C09B
    615. 

  615. 

  616. /* draft-ietf-tls-chacha20-poly1305-03 */
    617. 

  617. #define TLS1_CK_ECDHE_RSA_WITH_CHACHA20_POLY1305 0x0300CCA8
    618. 

  618. #define TLS1_CK_ECDHE_ECDSA_WITH_CHACHA20_POLY1305 0x0300CCA9
    619. 

  619. #define TLS1_CK_DHE_RSA_WITH_CHACHA20_POLY1305 0x0300CCAA
    620. 

  620. #define TLS1_CK_PSK_WITH_CHACHA20_POLY1305 0x0300CCAB
    621. 

  621. #define TLS1_CK_ECDHE_PSK_WITH_CHACHA20_POLY1305 0x0300CCAC
    622. 

  622. #define TLS1_CK_DHE_PSK_WITH_CHACHA20_POLY1305 0x0300CCAD
    623. 

  623. #define TLS1_CK_RSA_PSK_WITH_CHACHA20_POLY1305 0x0300CCAE
    624. 

  624. 

  625. /* TLS v1.3 ciphersuites */
    626. 

  626. #define TLS1_3_CK_AES_128_GCM_SHA256 0x03001301
    627. 

  627. #define TLS1_3_CK_AES_256_GCM_SHA384 0x03001302
    628. 

  628. #define TLS1_3_CK_CHACHA20_POLY1305_SHA256 0x03001303
    629. 

  629. #define TLS1_3_CK_AES_128_CCM_SHA256 0x03001304
    630. 

  630. #define TLS1_3_CK_AES_128_CCM_8_SHA256 0x03001305
    631. 

  631. 

  632. /* Integrity-only ciphersuites from RFC 9150 */
    633. 

  633. #define TLS1_3_CK_SHA256_SHA256 0x0300C0B4
    634. 

  634. #define TLS1_3_CK_SHA384_SHA384 0x0300C0B5
    635. 

  635. 

  636. /* Aria ciphersuites from RFC6209 */
    637. 

  637. #define TLS1_CK_RSA_WITH_ARIA_128_GCM_SHA256 0x0300C050
    638. 

  638. #define TLS1_CK_RSA_WITH_ARIA_256_GCM_SHA384 0x0300C051
    639. 

  639. #define TLS1_CK_DHE_RSA_WITH_ARIA_128_GCM_SHA256 0x0300C052
    640. 

  640. #define TLS1_CK_DHE_RSA_WITH_ARIA_256_GCM_SHA384 0x0300C053
    641. 

  641. #define TLS1_CK_DH_RSA_WITH_ARIA_128_GCM_SHA256 0x0300C054
    642. 

  642. #define TLS1_CK_DH_RSA_WITH_ARIA_256_GCM_SHA384 0x0300C055
    643. 

  643. #define TLS1_CK_DHE_DSS_WITH_ARIA_128_GCM_SHA256 0x0300C056
    644. 

  644. #define TLS1_CK_DHE_DSS_WITH_ARIA_256_GCM_SHA384 0x0300C057
    645. 

  645. #define TLS1_CK_DH_DSS_WITH_ARIA_128_GCM_SHA256 0x0300C058
    646. 

  646. #define TLS1_CK_DH_DSS_WITH_ARIA_256_GCM_SHA384 0x0300C059
    647. 

  647. #define TLS1_CK_DH_anon_WITH_ARIA_128_GCM_SHA256 0x0300C05A
    648. 

  648. #define TLS1_CK_DH_anon_WITH_ARIA_256_GCM_SHA384 0x0300C05B
    649. 

  649. #define TLS1_CK_ECDHE_ECDSA_WITH_ARIA_128_GCM_SHA256 0x0300C05C
    650. 

  650. #define TLS1_CK_ECDHE_ECDSA_WITH_ARIA_256_GCM_SHA384 0x0300C05D
    651. 

  651. #define TLS1_CK_ECDH_ECDSA_WITH_ARIA_128_GCM_SHA256 0x0300C05E
    652. 

  652. #define TLS1_CK_ECDH_ECDSA_WITH_ARIA_256_GCM_SHA384 0x0300C05F
    653. 

  653. #define TLS1_CK_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256 0x0300C060
    654. 

  654. #define TLS1_CK_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384 0x0300C061
    655. 

  655. #define TLS1_CK_ECDH_RSA_WITH_ARIA_128_GCM_SHA256 0x0300C062
    656. 

  656. #define TLS1_CK_ECDH_RSA_WITH_ARIA_256_GCM_SHA384 0x0300C063
    657. 

  657. #define TLS1_CK_PSK_WITH_ARIA_128_GCM_SHA256 0x0300C06A
    658. 

  658. #define TLS1_CK_PSK_WITH_ARIA_256_GCM_SHA384 0x0300C06B
    659. 

  659. #define TLS1_CK_DHE_PSK_WITH_ARIA_128_GCM_SHA256 0x0300C06C
    660. 

  660. #define TLS1_CK_DHE_PSK_WITH_ARIA_256_GCM_SHA384 0x0300C06D
    661. 

  661. #define TLS1_CK_RSA_PSK_WITH_ARIA_128_GCM_SHA256 0x0300C06E
    662. 

  662. #define TLS1_CK_RSA_PSK_WITH_ARIA_256_GCM_SHA384 0x0300C06F
    663. 

  663. 

  664. /* a bundle of RFC standard cipher names, generated from ssl3_ciphers[] */
    665. 

  665. #define TLS1_RFC_RSA_WITH_AES_128_SHA "TLS_RSA_WITH_AES_128_CBC_SHA"
    666. 

  666. #define TLS1_RFC_DHE_DSS_WITH_AES_128_SHA "TLS_DHE_DSS_WITH_AES_128_CBC_SHA"
    667. 

  667. #define TLS1_RFC_DHE_RSA_WITH_AES_128_SHA "TLS_DHE_RSA_WITH_AES_128_CBC_SHA"
    668. 

  668. #define TLS1_RFC_ADH_WITH_AES_128_SHA "TLS_DH_anon_WITH_AES_128_CBC_SHA"
    669. 

  669. #define TLS1_RFC_RSA_WITH_AES_256_SHA "TLS_RSA_WITH_AES_256_CBC_SHA"
    670. 

  670. #define TLS1_RFC_DHE_DSS_WITH_AES_256_SHA "TLS_DHE_DSS_WITH_AES_256_CBC_SHA"
    671. 

  671. #define TLS1_RFC_DHE_RSA_WITH_AES_256_SHA "TLS_DHE_RSA_WITH_AES_256_CBC_SHA"
    672. 

  672. #define TLS1_RFC_ADH_WITH_AES_256_SHA "TLS_DH_anon_WITH_AES_256_CBC_SHA"
    673. 

  673. #define TLS1_RFC_RSA_WITH_NULL_SHA256 "TLS_RSA_WITH_NULL_SHA256"
    674. 

  674. #define TLS1_RFC_RSA_WITH_AES_128_SHA256 "TLS_RSA_WITH_AES_128_CBC_SHA256"
    675. 

  675. #define TLS1_RFC_RSA_WITH_AES_256_SHA256 "TLS_RSA_WITH_AES_256_CBC_SHA256"
    676. 

  676. #define TLS1_RFC_DHE_DSS_WITH_AES_128_SHA256 "TLS_DHE_DSS_WITH_AES_128_CBC_SHA256"
    677. 

  677. #define TLS1_RFC_DHE_RSA_WITH_AES_128_SHA256 "TLS_DHE_RSA_WITH_AES_128_CBC_SHA256"
    678. 

  678. #define TLS1_RFC_DHE_DSS_WITH_AES_256_SHA256 "TLS_DHE_DSS_WITH_AES_256_CBC_SHA256"
    679. 

  679. #define TLS1_RFC_DHE_RSA_WITH_AES_256_SHA256 "TLS_DHE_RSA_WITH_AES_256_CBC_SHA256"
    680. 

  680. #define TLS1_RFC_ADH_WITH_AES_128_SHA256 "TLS_DH_anon_WITH_AES_128_CBC_SHA256"
    681. 

  681. #define TLS1_RFC_ADH_WITH_AES_256_SHA256 "TLS_DH_anon_WITH_AES_256_CBC_SHA256"
    682. 

  682. #define TLS1_RFC_RSA_WITH_AES_128_GCM_SHA256 "TLS_RSA_WITH_AES_128_GCM_SHA256"
    683. 

  683. #define TLS1_RFC_RSA_WITH_AES_256_GCM_SHA384 "TLS_RSA_WITH_AES_256_GCM_SHA384"
    684. 

  684. #define TLS1_RFC_DHE_RSA_WITH_AES_128_GCM_SHA256 "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256"
    685. 

  685. #define TLS1_RFC_DHE_RSA_WITH_AES_256_GCM_SHA384 "TLS_DHE_RSA_WITH_AES_256_GCM_SHA384"
    686. 

  686. #define TLS1_RFC_DHE_DSS_WITH_AES_128_GCM_SHA256 "TLS_DHE_DSS_WITH_AES_128_GCM_SHA256"
    687. 

  687. #define TLS1_RFC_DHE_DSS_WITH_AES_256_GCM_SHA384 "TLS_DHE_DSS_WITH_AES_256_GCM_SHA384"
    688. 

  688. #define TLS1_RFC_ADH_WITH_AES_128_GCM_SHA256 "TLS_DH_anon_WITH_AES_128_GCM_SHA256"
    689. 

  689. #define TLS1_RFC_ADH_WITH_AES_256_GCM_SHA384 "TLS_DH_anon_WITH_AES_256_GCM_SHA384"
    690. 

  690. #define TLS1_RFC_RSA_WITH_AES_128_CCM "TLS_RSA_WITH_AES_128_CCM"
    691. 

  691. #define TLS1_RFC_RSA_WITH_AES_256_CCM "TLS_RSA_WITH_AES_256_CCM"
    692. 

  692. #define TLS1_RFC_DHE_RSA_WITH_AES_128_CCM "TLS_DHE_RSA_WITH_AES_128_CCM"
    693. 

  693. #define TLS1_RFC_DHE_RSA_WITH_AES_256_CCM "TLS_DHE_RSA_WITH_AES_256_CCM"
    694. 

  694. #define TLS1_RFC_RSA_WITH_AES_128_CCM_8 "TLS_RSA_WITH_AES_128_CCM_8"
    695. 

  695. #define TLS1_RFC_RSA_WITH_AES_256_CCM_8 "TLS_RSA_WITH_AES_256_CCM_8"
    696. 

  696. #define TLS1_RFC_DHE_RSA_WITH_AES_128_CCM_8 "TLS_DHE_RSA_WITH_AES_128_CCM_8"
    697. 

  697. #define TLS1_RFC_DHE_RSA_WITH_AES_256_CCM_8 "TLS_DHE_RSA_WITH_AES_256_CCM_8"
    698. 

  698. #define TLS1_RFC_PSK_WITH_AES_128_CCM "TLS_PSK_WITH_AES_128_CCM"
    699. 

  699. #define TLS1_RFC_PSK_WITH_AES_256_CCM "TLS_PSK_WITH_AES_256_CCM"
    700. 

  700. #define TLS1_RFC_DHE_PSK_WITH_AES_128_CCM "TLS_DHE_PSK_WITH_AES_128_CCM"
    701. 

  701. #define TLS1_RFC_DHE_PSK_WITH_AES_256_CCM "TLS_DHE_PSK_WITH_AES_256_CCM"
    702. 

  702. #define TLS1_RFC_PSK_WITH_AES_128_CCM_8 "TLS_PSK_WITH_AES_128_CCM_8"
    703. 

  703. #define TLS1_RFC_PSK_WITH_AES_256_CCM_8 "TLS_PSK_WITH_AES_256_CCM_8"
    704. 

  704. #define TLS1_RFC_DHE_PSK_WITH_AES_128_CCM_8 "TLS_PSK_DHE_WITH_AES_128_CCM_8"
    705. 

  705. #define TLS1_RFC_DHE_PSK_WITH_AES_256_CCM_8 "TLS_PSK_DHE_WITH_AES_256_CCM_8"
    706. 

  706. #define TLS1_RFC_ECDHE_ECDSA_WITH_AES_128_CCM "TLS_ECDHE_ECDSA_WITH_AES_128_CCM"
    707. 

  707. #define TLS1_RFC_ECDHE_ECDSA_WITH_AES_256_CCM "TLS_ECDHE_ECDSA_WITH_AES_256_CCM"
    708. 

  708. #define TLS1_RFC_ECDHE_ECDSA_WITH_AES_128_CCM_8 "TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8"
    709. 

  709. #define TLS1_RFC_ECDHE_ECDSA_WITH_AES_256_CCM_8 "TLS_ECDHE_ECDSA_WITH_AES_256_CCM_8"
    710. 

  710. #define TLS1_3_RFC_AES_128_GCM_SHA256 "TLS_AES_128_GCM_SHA256"
    711. 

  711. #define TLS1_3_RFC_AES_256_GCM_SHA384 "TLS_AES_256_GCM_SHA384"
    712. 

  712. #define TLS1_3_RFC_CHACHA20_POLY1305_SHA256 "TLS_CHACHA20_POLY1305_SHA256"
    713. 

  713. #define TLS1_3_RFC_SHA256_SHA256 "TLS_SHA256_SHA256"
    714. 

  714. #define TLS1_3_RFC_SHA384_SHA384 "TLS_SHA384_SHA384"
    715. 

  715. #define TLS1_3_RFC_AES_128_CCM_SHA256 "TLS_AES_128_CCM_SHA256"
    716. 

  716. #define TLS1_3_RFC_AES_128_CCM_8_SHA256 "TLS_AES_128_CCM_8_SHA256"
    717. 

  717. #define TLS1_RFC_ECDHE_ECDSA_WITH_NULL_SHA "TLS_ECDHE_ECDSA_WITH_NULL_SHA"
    718. 

  718. #define TLS1_RFC_ECDHE_ECDSA_WITH_DES_192_CBC3_SHA "TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA"
    719. 

  719. #define TLS1_RFC_ECDHE_ECDSA_WITH_AES_128_CBC_SHA "TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA"
    720. 

  720. #define TLS1_RFC_ECDHE_ECDSA_WITH_AES_256_CBC_SHA "TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA"
    721. 

  721. #define TLS1_RFC_ECDHE_RSA_WITH_NULL_SHA "TLS_ECDHE_RSA_WITH_NULL_SHA"
    722. 

  722. #define TLS1_RFC_ECDHE_RSA_WITH_DES_192_CBC3_SHA "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA"
    723. 

  723. #define TLS1_RFC_ECDHE_RSA_WITH_AES_128_CBC_SHA "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA"
    724. 

  724. #define TLS1_RFC_ECDHE_RSA_WITH_AES_256_CBC_SHA "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA"
    725. 

  725. #define TLS1_RFC_ECDH_anon_WITH_NULL_SHA "TLS_ECDH_anon_WITH_NULL_SHA"
    726. 

  726. #define TLS1_RFC_ECDH_anon_WITH_DES_192_CBC3_SHA "TLS_ECDH_anon_WITH_3DES_EDE_CBC_SHA"
    727. 

  727. #define TLS1_RFC_ECDH_anon_WITH_AES_128_CBC_SHA "TLS_ECDH_anon_WITH_AES_128_CBC_SHA"
    728. 

  728. #define TLS1_RFC_ECDH_anon_WITH_AES_256_CBC_SHA "TLS_ECDH_anon_WITH_AES_256_CBC_SHA"
    729. 

  729. #define TLS1_RFC_ECDHE_ECDSA_WITH_AES_128_SHA256 "TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256"
    730. 

  730. #define TLS1_RFC_ECDHE_ECDSA_WITH_AES_256_SHA384 "TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384"
    731. 

  731. #define TLS1_RFC_ECDHE_RSA_WITH_AES_128_SHA256 "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256"
    732. 

  732. #define TLS1_RFC_ECDHE_RSA_WITH_AES_256_SHA384 "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384"
    733. 

  733. #define TLS1_RFC_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 "TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256"
    734. 

  734. #define TLS1_RFC_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 "TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384"
    735. 

  735. #define TLS1_RFC_ECDHE_RSA_WITH_AES_128_GCM_SHA256 "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256"
    736. 

  736. #define TLS1_RFC_ECDHE_RSA_WITH_AES_256_GCM_SHA384 "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384"
    737. 

  737. #define TLS1_RFC_PSK_WITH_NULL_SHA "TLS_PSK_WITH_NULL_SHA"
    738. 

  738. #define TLS1_RFC_DHE_PSK_WITH_NULL_SHA "TLS_DHE_PSK_WITH_NULL_SHA"
    739. 

  739. #define TLS1_RFC_RSA_PSK_WITH_NULL_SHA "TLS_RSA_PSK_WITH_NULL_SHA"
    740. 

  740. #define TLS1_RFC_PSK_WITH_3DES_EDE_CBC_SHA "TLS_PSK_WITH_3DES_EDE_CBC_SHA"
    741. 

  741. #define TLS1_RFC_PSK_WITH_AES_128_CBC_SHA "TLS_PSK_WITH_AES_128_CBC_SHA"
    742. 

  742. #define TLS1_RFC_PSK_WITH_AES_256_CBC_SHA "TLS_PSK_WITH_AES_256_CBC_SHA"
    743. 

  743. #define TLS1_RFC_DHE_PSK_WITH_3DES_EDE_CBC_SHA "TLS_DHE_PSK_WITH_3DES_EDE_CBC_SHA"
    744. 

  744. #define TLS1_RFC_DHE_PSK_WITH_AES_128_CBC_SHA "TLS_DHE_PSK_WITH_AES_128_CBC_SHA"
    745. 

  745. #define TLS1_RFC_DHE_PSK_WITH_AES_256_CBC_SHA "TLS_DHE_PSK_WITH_AES_256_CBC_SHA"
    746. 

  746. #define TLS1_RFC_RSA_PSK_WITH_3DES_EDE_CBC_SHA "TLS_RSA_PSK_WITH_3DES_EDE_CBC_SHA"
    747. 

  747. #define TLS1_RFC_RSA_PSK_WITH_AES_128_CBC_SHA "TLS_RSA_PSK_WITH_AES_128_CBC_SHA"
    748. 

  748. #define TLS1_RFC_RSA_PSK_WITH_AES_256_CBC_SHA "TLS_RSA_PSK_WITH_AES_256_CBC_SHA"
    749. 

  749. #define TLS1_RFC_PSK_WITH_AES_128_GCM_SHA256 "TLS_PSK_WITH_AES_128_GCM_SHA256"
    750. 

  750. #define TLS1_RFC_PSK_WITH_AES_256_GCM_SHA384 "TLS_PSK_WITH_AES_256_GCM_SHA384"
    751. 

  751. #define TLS1_RFC_DHE_PSK_WITH_AES_128_GCM_SHA256 "TLS_DHE_PSK_WITH_AES_128_GCM_SHA256"
    752. 

  752. #define TLS1_RFC_DHE_PSK_WITH_AES_256_GCM_SHA384 "TLS_DHE_PSK_WITH_AES_256_GCM_SHA384"
    753. 

  753. #define TLS1_RFC_RSA_PSK_WITH_AES_128_GCM_SHA256 "TLS_RSA_PSK_WITH_AES_128_GCM_SHA256"
    754. 

  754. #define TLS1_RFC_RSA_PSK_WITH_AES_256_GCM_SHA384 "TLS_RSA_PSK_WITH_AES_256_GCM_SHA384"
    755. 

  755. #define TLS1_RFC_PSK_WITH_AES_128_CBC_SHA256 "TLS_PSK_WITH_AES_128_CBC_SHA256"
    756. 

  756. #define TLS1_RFC_PSK_WITH_AES_256_CBC_SHA384 "TLS_PSK_WITH_AES_256_CBC_SHA384"
    757. 

  757. #define TLS1_RFC_PSK_WITH_NULL_SHA256 "TLS_PSK_WITH_NULL_SHA256"
    758. 

  758. #define TLS1_RFC_PSK_WITH_NULL_SHA384 "TLS_PSK_WITH_NULL_SHA384"
    759. 

  759. #define TLS1_RFC_DHE_PSK_WITH_AES_128_CBC_SHA256 "TLS_DHE_PSK_WITH_AES_128_CBC_SHA256"
    760. 

  760. #define TLS1_RFC_DHE_PSK_WITH_AES_256_CBC_SHA384 "TLS_DHE_PSK_WITH_AES_256_CBC_SHA384"
    761. 

  761. #define TLS1_RFC_DHE_PSK_WITH_NULL_SHA256 "TLS_DHE_PSK_WITH_NULL_SHA256"
    762. 

  762. #define TLS1_RFC_DHE_PSK_WITH_NULL_SHA384 "TLS_DHE_PSK_WITH_NULL_SHA384"
    763. 

  763. #define TLS1_RFC_RSA_PSK_WITH_AES_128_CBC_SHA256 "TLS_RSA_PSK_WITH_AES_128_CBC_SHA256"
    764. 

  764. #define TLS1_RFC_RSA_PSK_WITH_AES_256_CBC_SHA384 "TLS_RSA_PSK_WITH_AES_256_CBC_SHA384"
    765. 

  765. #define TLS1_RFC_RSA_PSK_WITH_NULL_SHA256 "TLS_RSA_PSK_WITH_NULL_SHA256"
    766. 

  766. #define TLS1_RFC_RSA_PSK_WITH_NULL_SHA384 "TLS_RSA_PSK_WITH_NULL_SHA384"
    767. 

  767. #define TLS1_RFC_ECDHE_PSK_WITH_3DES_EDE_CBC_SHA "TLS_ECDHE_PSK_WITH_3DES_EDE_CBC_SHA"
    768. 

  768. #define TLS1_RFC_ECDHE_PSK_WITH_AES_128_CBC_SHA "TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA"
    769. 

  769. #define TLS1_RFC_ECDHE_PSK_WITH_AES_256_CBC_SHA "TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA"
    770. 

  770. #define TLS1_RFC_ECDHE_PSK_WITH_AES_128_CBC_SHA256 "TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256"
    771. 

  771. #define TLS1_RFC_ECDHE_PSK_WITH_AES_256_CBC_SHA384 "TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA384"
    772. 

  772. #define TLS1_RFC_ECDHE_PSK_WITH_NULL_SHA "TLS_ECDHE_PSK_WITH_NULL_SHA"
    773. 

  773. #define TLS1_RFC_ECDHE_PSK_WITH_NULL_SHA256 "TLS_ECDHE_PSK_WITH_NULL_SHA256"
    774. 

  774. #define TLS1_RFC_ECDHE_PSK_WITH_NULL_SHA384 "TLS_ECDHE_PSK_WITH_NULL_SHA384"
    775. 

  775. #define TLS1_RFC_SRP_SHA_WITH_3DES_EDE_CBC_SHA "TLS_SRP_SHA_WITH_3DES_EDE_CBC_SHA"
    776. 

  776. #define TLS1_RFC_SRP_SHA_RSA_WITH_3DES_EDE_CBC_SHA "TLS_SRP_SHA_RSA_WITH_3DES_EDE_CBC_SHA"
    777. 

  777. #define TLS1_RFC_SRP_SHA_DSS_WITH_3DES_EDE_CBC_SHA "TLS_SRP_SHA_DSS_WITH_3DES_EDE_CBC_SHA"
    778. 

  778. #define TLS1_RFC_SRP_SHA_WITH_AES_128_CBC_SHA "TLS_SRP_SHA_WITH_AES_128_CBC_SHA"
    779. 

  779. #define TLS1_RFC_SRP_SHA_RSA_WITH_AES_128_CBC_SHA "TLS_SRP_SHA_RSA_WITH_AES_128_CBC_SHA"
    780. 

  780. #define TLS1_RFC_SRP_SHA_DSS_WITH_AES_128_CBC_SHA "TLS_SRP_SHA_DSS_WITH_AES_128_CBC_SHA"
    781. 

  781. #define TLS1_RFC_SRP_SHA_WITH_AES_256_CBC_SHA "TLS_SRP_SHA_WITH_AES_256_CBC_SHA"
    782. 

  782. #define TLS1_RFC_SRP_SHA_RSA_WITH_AES_256_CBC_SHA "TLS_SRP_SHA_RSA_WITH_AES_256_CBC_SHA"
    783. 

  783. #define TLS1_RFC_SRP_SHA_DSS_WITH_AES_256_CBC_SHA "TLS_SRP_SHA_DSS_WITH_AES_256_CBC_SHA"
    784. 

  784. #define TLS1_RFC_DHE_RSA_WITH_CHACHA20_POLY1305 "TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256"
    785. 

  785. #define TLS1_RFC_ECDHE_RSA_WITH_CHACHA20_POLY1305 "TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256"
    786. 

  786. #define TLS1_RFC_ECDHE_ECDSA_WITH_CHACHA20_POLY1305 "TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256"
    787. 

  787. #define TLS1_RFC_PSK_WITH_CHACHA20_POLY1305 "TLS_PSK_WITH_CHACHA20_POLY1305_SHA256"
    788. 

  788. #define TLS1_RFC_ECDHE_PSK_WITH_CHACHA20_POLY1305 "TLS_ECDHE_PSK_WITH_CHACHA20_POLY1305_SHA256"
    789. 

  789. #define TLS1_RFC_DHE_PSK_WITH_CHACHA20_POLY1305 "TLS_DHE_PSK_WITH_CHACHA20_POLY1305_SHA256"
    790. 

  790. #define TLS1_RFC_RSA_PSK_WITH_CHACHA20_POLY1305 "TLS_RSA_PSK_WITH_CHACHA20_POLY1305_SHA256"
    791. 

  791. #define TLS1_RFC_RSA_WITH_CAMELLIA_128_CBC_SHA256 "TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256"
    792. 

  792. #define TLS1_RFC_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA256 "TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA256"
    793. 

  793. #define TLS1_RFC_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 "TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256"
    794. 

  794. #define TLS1_RFC_ADH_WITH_CAMELLIA_128_CBC_SHA256 "TLS_DH_anon_WITH_CAMELLIA_128_CBC_SHA256"
    795. 

  795. #define TLS1_RFC_RSA_WITH_CAMELLIA_256_CBC_SHA256 "TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256"
    796. 

  796. #define TLS1_RFC_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA256 "TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA256"
    797. 

  797. #define TLS1_RFC_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256 "TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256"
    798. 

  798. #define TLS1_RFC_ADH_WITH_CAMELLIA_256_CBC_SHA256 "TLS_DH_anon_WITH_CAMELLIA_256_CBC_SHA256"
    799. 

  799. #define TLS1_RFC_RSA_WITH_CAMELLIA_256_CBC_SHA "TLS_RSA_WITH_CAMELLIA_256_CBC_SHA"
    800. 

  800. #define TLS1_RFC_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA "TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA"
    801. 

  801. #define TLS1_RFC_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA "TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA"
    802. 

  802. #define TLS1_RFC_ADH_WITH_CAMELLIA_256_CBC_SHA "TLS_DH_anon_WITH_CAMELLIA_256_CBC_SHA"
    803. 

  803. #define TLS1_RFC_RSA_WITH_CAMELLIA_128_CBC_SHA "TLS_RSA_WITH_CAMELLIA_128_CBC_SHA"
    804. 

  804. #define TLS1_RFC_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA "TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA"
    805. 

  805. #define TLS1_RFC_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA "TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA"
    806. 

  806. #define TLS1_RFC_ADH_WITH_CAMELLIA_128_CBC_SHA "TLS_DH_anon_WITH_CAMELLIA_128_CBC_SHA"
    807. 

  807. #define TLS1_RFC_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256 "TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256"
    808. 

  808. #define TLS1_RFC_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384 "TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384"
    809. 

  809. #define TLS1_RFC_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 "TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256"
    810. 

  810. #define TLS1_RFC_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384 "TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384"
    811. 

  811. #define TLS1_RFC_PSK_WITH_CAMELLIA_128_CBC_SHA256 "TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256"
    812. 

  812. #define TLS1_RFC_PSK_WITH_CAMELLIA_256_CBC_SHA384 "TLS_PSK_WITH_CAMELLIA_256_CBC_SHA384"
    813. 

  813. #define TLS1_RFC_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256 "TLS_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256"
    814. 

  814. #define TLS1_RFC_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384 "TLS_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384"
    815. 

  815. #define TLS1_RFC_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256 "TLS_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256"
    816. 

  816. #define TLS1_RFC_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384 "TLS_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384"
    817. 

  817. #define TLS1_RFC_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256 "TLS_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256"
    818. 

  818. #define TLS1_RFC_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384 "TLS_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384"
    819. 

  819. #define TLS1_RFC_RSA_WITH_SEED_SHA "TLS_RSA_WITH_SEED_CBC_SHA"
    820. 

  820. #define TLS1_RFC_DHE_DSS_WITH_SEED_SHA "TLS_DHE_DSS_WITH_SEED_CBC_SHA"
    821. 

  821. #define TLS1_RFC_DHE_RSA_WITH_SEED_SHA "TLS_DHE_RSA_WITH_SEED_CBC_SHA"
    822. 

  822. #define TLS1_RFC_ADH_WITH_SEED_SHA "TLS_DH_anon_WITH_SEED_CBC_SHA"
    823. 

  823. #define TLS1_RFC_ECDHE_PSK_WITH_RC4_128_SHA "TLS_ECDHE_PSK_WITH_RC4_128_SHA"
    824. 

  824. #define TLS1_RFC_ECDH_anon_WITH_RC4_128_SHA "TLS_ECDH_anon_WITH_RC4_128_SHA"
    825. 

  825. #define TLS1_RFC_ECDHE_ECDSA_WITH_RC4_128_SHA "TLS_ECDHE_ECDSA_WITH_RC4_128_SHA"
    826. 

  826. #define TLS1_RFC_ECDHE_RSA_WITH_RC4_128_SHA "TLS_ECDHE_RSA_WITH_RC4_128_SHA"
    827. 

  827. #define TLS1_RFC_PSK_WITH_RC4_128_SHA "TLS_PSK_WITH_RC4_128_SHA"
    828. 

  828. #define TLS1_RFC_RSA_PSK_WITH_RC4_128_SHA "TLS_RSA_PSK_WITH_RC4_128_SHA"
    829. 

  829. #define TLS1_RFC_DHE_PSK_WITH_RC4_128_SHA "TLS_DHE_PSK_WITH_RC4_128_SHA"
    830. 

  830. #define TLS1_RFC_RSA_WITH_ARIA_128_GCM_SHA256 "TLS_RSA_WITH_ARIA_128_GCM_SHA256"
    831. 

  831. #define TLS1_RFC_RSA_WITH_ARIA_256_GCM_SHA384 "TLS_RSA_WITH_ARIA_256_GCM_SHA384"
    832. 

  832. #define TLS1_RFC_DHE_RSA_WITH_ARIA_128_GCM_SHA256 "TLS_DHE_RSA_WITH_ARIA_128_GCM_SHA256"
    833. 

  833. #define TLS1_RFC_DHE_RSA_WITH_ARIA_256_GCM_SHA384 "TLS_DHE_RSA_WITH_ARIA_256_GCM_SHA384"
    834. 

  834. #define TLS1_RFC_DH_RSA_WITH_ARIA_128_GCM_SHA256 "TLS_DH_RSA_WITH_ARIA_128_GCM_SHA256"
    835. 

  835. #define TLS1_RFC_DH_RSA_WITH_ARIA_256_GCM_SHA384 "TLS_DH_RSA_WITH_ARIA_256_GCM_SHA384"
    836. 

  836. #define TLS1_RFC_DHE_DSS_WITH_ARIA_128_GCM_SHA256 "TLS_DHE_DSS_WITH_ARIA_128_GCM_SHA256"
    837. 

  837. #define TLS1_RFC_DHE_DSS_WITH_ARIA_256_GCM_SHA384 "TLS_DHE_DSS_WITH_ARIA_256_GCM_SHA384"
    838. 

  838. #define TLS1_RFC_DH_DSS_WITH_ARIA_128_GCM_SHA256 "TLS_DH_DSS_WITH_ARIA_128_GCM_SHA256"
    839. 

  839. #define TLS1_RFC_DH_DSS_WITH_ARIA_256_GCM_SHA384 "TLS_DH_DSS_WITH_ARIA_256_GCM_SHA384"
    840. 

  840. #define TLS1_RFC_DH_anon_WITH_ARIA_128_GCM_SHA256 "TLS_DH_anon_WITH_ARIA_128_GCM_SHA256"
    841. 

  841. #define TLS1_RFC_DH_anon_WITH_ARIA_256_GCM_SHA384 "TLS_DH_anon_WITH_ARIA_256_GCM_SHA384"
    842. 

  842. #define TLS1_RFC_ECDHE_ECDSA_WITH_ARIA_128_GCM_SHA256 "TLS_ECDHE_ECDSA_WITH_ARIA_128_GCM_SHA256"
    843. 

  843. #define TLS1_RFC_ECDHE_ECDSA_WITH_ARIA_256_GCM_SHA384 "TLS_ECDHE_ECDSA_WITH_ARIA_256_GCM_SHA384"
    844. 

  844. #define TLS1_RFC_ECDH_ECDSA_WITH_ARIA_128_GCM_SHA256 "TLS_ECDH_ECDSA_WITH_ARIA_128_GCM_SHA256"
    845. 

  845. #define TLS1_RFC_ECDH_ECDSA_WITH_ARIA_256_GCM_SHA384 "TLS_ECDH_ECDSA_WITH_ARIA_256_GCM_SHA384"
    846. 

  846. #define TLS1_RFC_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256 "TLS_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256"
    847. 

  847. #define TLS1_RFC_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384 "TLS_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384"
    848. 

  848. #define TLS1_RFC_ECDH_RSA_WITH_ARIA_128_GCM_SHA256 "TLS_ECDH_RSA_WITH_ARIA_128_GCM_SHA256"
    849. 

  849. #define TLS1_RFC_ECDH_RSA_WITH_ARIA_256_GCM_SHA384 "TLS_ECDH_RSA_WITH_ARIA_256_GCM_SHA384"
    850. 

  850. #define TLS1_RFC_PSK_WITH_ARIA_128_GCM_SHA256 "TLS_PSK_WITH_ARIA_128_GCM_SHA256"
    851. 

  851. #define TLS1_RFC_PSK_WITH_ARIA_256_GCM_SHA384 "TLS_PSK_WITH_ARIA_256_GCM_SHA384"
    852. 

  852. #define TLS1_RFC_DHE_PSK_WITH_ARIA_128_GCM_SHA256 "TLS_DHE_PSK_WITH_ARIA_128_GCM_SHA256"
    853. 

  853. #define TLS1_RFC_DHE_PSK_WITH_ARIA_256_GCM_SHA384 "TLS_DHE_PSK_WITH_ARIA_256_GCM_SHA384"
    854. 

  854. #define TLS1_RFC_RSA_PSK_WITH_ARIA_128_GCM_SHA256 "TLS_RSA_PSK_WITH_ARIA_128_GCM_SHA256"
    855. 

  855. #define TLS1_RFC_RSA_PSK_WITH_ARIA_256_GCM_SHA384 "TLS_RSA_PSK_WITH_ARIA_256_GCM_SHA384"
    856. 

  856. 

  857. /*
    858. 

  858.  * XXX Backward compatibility alert: Older versions of OpenSSL gave some DHE
    859. 

  859.  * ciphers names with "EDH" instead of "DHE".  Going forward, we should be
    860. 

  860.  * using DHE everywhere, though we may indefinitely maintain aliases for
    861. 

  861.  * users or configurations that used "EDH"
    862. 

  862.  */
    863. 

  863. #define TLS1_TXT_DHE_DSS_WITH_RC4_128_SHA "DHE-DSS-RC4-SHA"
    864. 

  864. 

  865. #define TLS1_TXT_PSK_WITH_NULL_SHA "PSK-NULL-SHA"
    866. 

  866. #define TLS1_TXT_DHE_PSK_WITH_NULL_SHA "DHE-PSK-NULL-SHA"
    867. 

  867. #define TLS1_TXT_RSA_PSK_WITH_NULL_SHA "RSA-PSK-NULL-SHA"
    868. 

  868. 

  869. /* AES ciphersuites from RFC3268 */
    870. 

  870. #define TLS1_TXT_RSA_WITH_AES_128_SHA "AES128-SHA"
    871. 

  871. #define TLS1_TXT_DH_DSS_WITH_AES_128_SHA "DH-DSS-AES128-SHA"
    872. 

  872. #define TLS1_TXT_DH_RSA_WITH_AES_128_SHA "DH-RSA-AES128-SHA"
    873. 

  873. #define TLS1_TXT_DHE_DSS_WITH_AES_128_SHA "DHE-DSS-AES128-SHA"
    874. 

  874. #define TLS1_TXT_DHE_RSA_WITH_AES_128_SHA "DHE-RSA-AES128-SHA"
    875. 

  875. #define TLS1_TXT_ADH_WITH_AES_128_SHA "ADH-AES128-SHA"
    876. 

  876. 

  877. #define TLS1_TXT_RSA_WITH_AES_256_SHA "AES256-SHA"
    878. 

  878. #define TLS1_TXT_DH_DSS_WITH_AES_256_SHA "DH-DSS-AES256-SHA"
    879. 

  879. #define TLS1_TXT_DH_RSA_WITH_AES_256_SHA "DH-RSA-AES256-SHA"
    880. 

  880. #define TLS1_TXT_DHE_DSS_WITH_AES_256_SHA "DHE-DSS-AES256-SHA"
    881. 

  881. #define TLS1_TXT_DHE_RSA_WITH_AES_256_SHA "DHE-RSA-AES256-SHA"
    882. 

  882. #define TLS1_TXT_ADH_WITH_AES_256_SHA "ADH-AES256-SHA"
    883. 

  883. 

  884. /* ECC ciphersuites from RFC4492 */
    885. 

  885. #define TLS1_TXT_ECDH_ECDSA_WITH_NULL_SHA "ECDH-ECDSA-NULL-SHA"
    886. 

  886. #define TLS1_TXT_ECDH_ECDSA_WITH_RC4_128_SHA "ECDH-ECDSA-RC4-SHA"
    887. 

  887. #define TLS1_TXT_ECDH_ECDSA_WITH_DES_192_CBC3_SHA "ECDH-ECDSA-DES-CBC3-SHA"
    888. 

  888. #define TLS1_TXT_ECDH_ECDSA_WITH_AES_128_CBC_SHA "ECDH-ECDSA-AES128-SHA"
    889. 

  889. #define TLS1_TXT_ECDH_ECDSA_WITH_AES_256_CBC_SHA "ECDH-ECDSA-AES256-SHA"
    890. 

  890. 

  891. #define TLS1_TXT_ECDHE_ECDSA_WITH_NULL_SHA "ECDHE-ECDSA-NULL-SHA"
    892. 

  892. #define TLS1_TXT_ECDHE_ECDSA_WITH_RC4_128_SHA "ECDHE-ECDSA-RC4-SHA"
    893. 

  893. #define TLS1_TXT_ECDHE_ECDSA_WITH_DES_192_CBC3_SHA "ECDHE-ECDSA-DES-CBC3-SHA"
    894. 

  894. #define TLS1_TXT_ECDHE_ECDSA_WITH_AES_128_CBC_SHA "ECDHE-ECDSA-AES128-SHA"
    895. 

  895. #define TLS1_TXT_ECDHE_ECDSA_WITH_AES_256_CBC_SHA "ECDHE-ECDSA-AES256-SHA"
    896. 

  896. 

  897. #define TLS1_TXT_ECDH_RSA_WITH_NULL_SHA "ECDH-RSA-NULL-SHA"
    898. 

  898. #define TLS1_TXT_ECDH_RSA_WITH_RC4_128_SHA "ECDH-RSA-RC4-SHA"
    899. 

  899. #define TLS1_TXT_ECDH_RSA_WITH_DES_192_CBC3_SHA "ECDH-RSA-DES-CBC3-SHA"
    900. 

  900. #define TLS1_TXT_ECDH_RSA_WITH_AES_128_CBC_SHA "ECDH-RSA-AES128-SHA"
    901. 

  901. #define TLS1_TXT_ECDH_RSA_WITH_AES_256_CBC_SHA "ECDH-RSA-AES256-SHA"
    902. 

  902. 

  903. #define TLS1_TXT_ECDHE_RSA_WITH_NULL_SHA "ECDHE-RSA-NULL-SHA"
    904. 

  904. #define TLS1_TXT_ECDHE_RSA_WITH_RC4_128_SHA "ECDHE-RSA-RC4-SHA"
    905. 

  905. #define TLS1_TXT_ECDHE_RSA_WITH_DES_192_CBC3_SHA "ECDHE-RSA-DES-CBC3-SHA"
    906. 

  906. #define TLS1_TXT_ECDHE_RSA_WITH_AES_128_CBC_SHA "ECDHE-RSA-AES128-SHA"
    907. 

  907. #define TLS1_TXT_ECDHE_RSA_WITH_AES_256_CBC_SHA "ECDHE-RSA-AES256-SHA"
    908. 

  908. 

  909. #define TLS1_TXT_ECDH_anon_WITH_NULL_SHA "AECDH-NULL-SHA"
    910. 

  910. #define TLS1_TXT_ECDH_anon_WITH_RC4_128_SHA "AECDH-RC4-SHA"
    911. 

  911. #define TLS1_TXT_ECDH_anon_WITH_DES_192_CBC3_SHA "AECDH-DES-CBC3-SHA"
    912. 

  912. #define TLS1_TXT_ECDH_anon_WITH_AES_128_CBC_SHA "AECDH-AES128-SHA"
    913. 

  913. #define TLS1_TXT_ECDH_anon_WITH_AES_256_CBC_SHA "AECDH-AES256-SHA"
    914. 

  914. 

  915. /* PSK ciphersuites from RFC 4279 */
    916. 

  916. #define TLS1_TXT_PSK_WITH_RC4_128_SHA "PSK-RC4-SHA"
    917. 

  917. #define TLS1_TXT_PSK_WITH_3DES_EDE_CBC_SHA "PSK-3DES-EDE-CBC-SHA"
    918. 

  918. #define TLS1_TXT_PSK_WITH_AES_128_CBC_SHA "PSK-AES128-CBC-SHA"
    919. 

  919. #define TLS1_TXT_PSK_WITH_AES_256_CBC_SHA "PSK-AES256-CBC-SHA"
    920. 

  920. 

  921. #define TLS1_TXT_DHE_PSK_WITH_RC4_128_SHA "DHE-PSK-RC4-SHA"
    922. 

  922. #define TLS1_TXT_DHE_PSK_WITH_3DES_EDE_CBC_SHA "DHE-PSK-3DES-EDE-CBC-SHA"
    923. 

  923. #define TLS1_TXT_DHE_PSK_WITH_AES_128_CBC_SHA "DHE-PSK-AES128-CBC-SHA"
    924. 

  924. #define TLS1_TXT_DHE_PSK_WITH_AES_256_CBC_SHA "DHE-PSK-AES256-CBC-SHA"
    925. 

  925. #define TLS1_TXT_RSA_PSK_WITH_RC4_128_SHA "RSA-PSK-RC4-SHA"
    926. 

  926. #define TLS1_TXT_RSA_PSK_WITH_3DES_EDE_CBC_SHA "RSA-PSK-3DES-EDE-CBC-SHA"
    927. 

  927. #define TLS1_TXT_RSA_PSK_WITH_AES_128_CBC_SHA "RSA-PSK-AES128-CBC-SHA"
    928. 

  928. #define TLS1_TXT_RSA_PSK_WITH_AES_256_CBC_SHA "RSA-PSK-AES256-CBC-SHA"
    929. 

  929. 

  930. /* PSK ciphersuites from RFC 5487 */
    931. 

  931. #define TLS1_TXT_PSK_WITH_AES_128_GCM_SHA256 "PSK-AES128-GCM-SHA256"
    932. 

  932. #define TLS1_TXT_PSK_WITH_AES_256_GCM_SHA384 "PSK-AES256-GCM-SHA384"
    933. 

  933. #define TLS1_TXT_DHE_PSK_WITH_AES_128_GCM_SHA256 "DHE-PSK-AES128-GCM-SHA256"
    934. 

  934. #define TLS1_TXT_DHE_PSK_WITH_AES_256_GCM_SHA384 "DHE-PSK-AES256-GCM-SHA384"
    935. 

  935. #define TLS1_TXT_RSA_PSK_WITH_AES_128_GCM_SHA256 "RSA-PSK-AES128-GCM-SHA256"
    936. 

  936. #define TLS1_TXT_RSA_PSK_WITH_AES_256_GCM_SHA384 "RSA-PSK-AES256-GCM-SHA384"
    937. 

  937. 

  938. #define TLS1_TXT_PSK_WITH_AES_128_CBC_SHA256 "PSK-AES128-CBC-SHA256"
    939. 

  939. #define TLS1_TXT_PSK_WITH_AES_256_CBC_SHA384 "PSK-AES256-CBC-SHA384"
    940. 

  940. #define TLS1_TXT_PSK_WITH_NULL_SHA256 "PSK-NULL-SHA256"
    941. 

  941. #define TLS1_TXT_PSK_WITH_NULL_SHA384 "PSK-NULL-SHA384"
    942. 

  942. 

  943. #define TLS1_TXT_DHE_PSK_WITH_AES_128_CBC_SHA256 "DHE-PSK-AES128-CBC-SHA256"
    944. 

  944. #define TLS1_TXT_DHE_PSK_WITH_AES_256_CBC_SHA384 "DHE-PSK-AES256-CBC-SHA384"
    945. 

  945. #define TLS1_TXT_DHE_PSK_WITH_NULL_SHA256 "DHE-PSK-NULL-SHA256"
    946. 

  946. #define TLS1_TXT_DHE_PSK_WITH_NULL_SHA384 "DHE-PSK-NULL-SHA384"
    947. 

  947. 

  948. #define TLS1_TXT_RSA_PSK_WITH_AES_128_CBC_SHA256 "RSA-PSK-AES128-CBC-SHA256"
    949. 

  949. #define TLS1_TXT_RSA_PSK_WITH_AES_256_CBC_SHA384 "RSA-PSK-AES256-CBC-SHA384"
    950. 

  950. #define TLS1_TXT_RSA_PSK_WITH_NULL_SHA256 "RSA-PSK-NULL-SHA256"
    951. 

  951. #define TLS1_TXT_RSA_PSK_WITH_NULL_SHA384 "RSA-PSK-NULL-SHA384"
    952. 

  952. 

  953. /* SRP ciphersuite from RFC 5054 */
    954. 

  954. #define TLS1_TXT_SRP_SHA_WITH_3DES_EDE_CBC_SHA "SRP-3DES-EDE-CBC-SHA"
    955. 

  955. #define TLS1_TXT_SRP_SHA_RSA_WITH_3DES_EDE_CBC_SHA "SRP-RSA-3DES-EDE-CBC-SHA"
    956. 

  956. #define TLS1_TXT_SRP_SHA_DSS_WITH_3DES_EDE_CBC_SHA "SRP-DSS-3DES-EDE-CBC-SHA"
    957. 

  957. #define TLS1_TXT_SRP_SHA_WITH_AES_128_CBC_SHA "SRP-AES-128-CBC-SHA"
    958. 

  958. #define TLS1_TXT_SRP_SHA_RSA_WITH_AES_128_CBC_SHA "SRP-RSA-AES-128-CBC-SHA"
    959. 

  959. #define TLS1_TXT_SRP_SHA_DSS_WITH_AES_128_CBC_SHA "SRP-DSS-AES-128-CBC-SHA"
    960. 

  960. #define TLS1_TXT_SRP_SHA_WITH_AES_256_CBC_SHA "SRP-AES-256-CBC-SHA"
    961. 

  961. #define TLS1_TXT_SRP_SHA_RSA_WITH_AES_256_CBC_SHA "SRP-RSA-AES-256-CBC-SHA"
    962. 

  962. #define TLS1_TXT_SRP_SHA_DSS_WITH_AES_256_CBC_SHA "SRP-DSS-AES-256-CBC-SHA"
    963. 

  963. 

  964. /* Camellia ciphersuites from RFC4132 */
    965. 

  965. #define TLS1_TXT_RSA_WITH_CAMELLIA_128_CBC_SHA "CAMELLIA128-SHA"
    966. 

  966. #define TLS1_TXT_DH_DSS_WITH_CAMELLIA_128_CBC_SHA "DH-DSS-CAMELLIA128-SHA"
    967. 

  967. #define TLS1_TXT_DH_RSA_WITH_CAMELLIA_128_CBC_SHA "DH-RSA-CAMELLIA128-SHA"
    968. 

  968. #define TLS1_TXT_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA "DHE-DSS-CAMELLIA128-SHA"
    969. 

  969. #define TLS1_TXT_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA "DHE-RSA-CAMELLIA128-SHA"
    970. 

  970. #define TLS1_TXT_ADH_WITH_CAMELLIA_128_CBC_SHA "ADH-CAMELLIA128-SHA"
    971. 

  971. 

  972. #define TLS1_TXT_RSA_WITH_CAMELLIA_256_CBC_SHA "CAMELLIA256-SHA"
    973. 

  973. #define TLS1_TXT_DH_DSS_WITH_CAMELLIA_256_CBC_SHA "DH-DSS-CAMELLIA256-SHA"
    974. 

  974. #define TLS1_TXT_DH_RSA_WITH_CAMELLIA_256_CBC_SHA "DH-RSA-CAMELLIA256-SHA"
    975. 

  975. #define TLS1_TXT_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA "DHE-DSS-CAMELLIA256-SHA"
    976. 

  976. #define TLS1_TXT_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA "DHE-RSA-CAMELLIA256-SHA"
    977. 

  977. #define TLS1_TXT_ADH_WITH_CAMELLIA_256_CBC_SHA "ADH-CAMELLIA256-SHA"
    978. 

  978. 

  979. /* TLS 1.2 Camellia SHA-256 ciphersuites from RFC5932 */
    980. 

  980. #define TLS1_TXT_RSA_WITH_CAMELLIA_128_CBC_SHA256 "CAMELLIA128-SHA256"
    981. 

  981. #define TLS1_TXT_DH_DSS_WITH_CAMELLIA_128_CBC_SHA256 "DH-DSS-CAMELLIA128-SHA256"
    982. 

  982. #define TLS1_TXT_DH_RSA_WITH_CAMELLIA_128_CBC_SHA256 "DH-RSA-CAMELLIA128-SHA256"
    983. 

  983. #define TLS1_TXT_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA256 "DHE-DSS-CAMELLIA128-SHA256"
    984. 

  984. #define TLS1_TXT_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 "DHE-RSA-CAMELLIA128-SHA256"
    985. 

  985. #define TLS1_TXT_ADH_WITH_CAMELLIA_128_CBC_SHA256 "ADH-CAMELLIA128-SHA256"
    986. 

  986. 

  987. #define TLS1_TXT_RSA_WITH_CAMELLIA_256_CBC_SHA256 "CAMELLIA256-SHA256"
    988. 

  988. #define TLS1_TXT_DH_DSS_WITH_CAMELLIA_256_CBC_SHA256 "DH-DSS-CAMELLIA256-SHA256"
    989. 

  989. #define TLS1_TXT_DH_RSA_WITH_CAMELLIA_256_CBC_SHA256 "DH-RSA-CAMELLIA256-SHA256"
    990. 

  990. #define TLS1_TXT_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA256 "DHE-DSS-CAMELLIA256-SHA256"
    991. 

  991. #define TLS1_TXT_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256 "DHE-RSA-CAMELLIA256-SHA256"
    992. 

  992. #define TLS1_TXT_ADH_WITH_CAMELLIA_256_CBC_SHA256 "ADH-CAMELLIA256-SHA256"
    993. 

  993. 

  994. #define TLS1_TXT_PSK_WITH_CAMELLIA_128_CBC_SHA256 "PSK-CAMELLIA128-SHA256"
    995. 

  995. #define TLS1_TXT_PSK_WITH_CAMELLIA_256_CBC_SHA384 "PSK-CAMELLIA256-SHA384"
    996. 

  996. #define TLS1_TXT_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256 "DHE-PSK-CAMELLIA128-SHA256"
    997. 

  997. #define TLS1_TXT_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384 "DHE-PSK-CAMELLIA256-SHA384"
    998. 

  998. #define TLS1_TXT_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256 "RSA-PSK-CAMELLIA128-SHA256"
    999. 

  999. #define TLS1_TXT_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384 "RSA-PSK-CAMELLIA256-SHA384"
    1000. 

  1000. #define TLS1_TXT_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256 "ECDHE-PSK-CAMELLIA128-SHA256"
    1001. 

  1001. #define TLS1_TXT_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384 "ECDHE-PSK-CAMELLIA256-SHA384"
    1002. 

  1002. 

  1003. /* SEED ciphersuites from RFC4162 */
    1004. 

  1004. #define TLS1_TXT_RSA_WITH_SEED_SHA "SEED-SHA"
    1005. 

  1005. #define TLS1_TXT_DH_DSS_WITH_SEED_SHA "DH-DSS-SEED-SHA"
    1006. 

  1006. #define TLS1_TXT_DH_RSA_WITH_SEED_SHA "DH-RSA-SEED-SHA"
    1007. 

  1007. #define TLS1_TXT_DHE_DSS_WITH_SEED_SHA "DHE-DSS-SEED-SHA"
    1008. 

  1008. #define TLS1_TXT_DHE_RSA_WITH_SEED_SHA "DHE-RSA-SEED-SHA"
    1009. 

  1009. #define TLS1_TXT_ADH_WITH_SEED_SHA "ADH-SEED-SHA"
    1010. 

  1010. 

  1011. /* TLS v1.2 ciphersuites */
    1012. 

  1012. #define TLS1_TXT_RSA_WITH_NULL_SHA256 "NULL-SHA256"
    1013. 

  1013. #define TLS1_TXT_RSA_WITH_AES_128_SHA256 "AES128-SHA256"
    1014. 

  1014. #define TLS1_TXT_RSA_WITH_AES_256_SHA256 "AES256-SHA256"
    1015. 

  1015. #define TLS1_TXT_DH_DSS_WITH_AES_128_SHA256 "DH-DSS-AES128-SHA256"
    1016. 

  1016. #define TLS1_TXT_DH_RSA_WITH_AES_128_SHA256 "DH-RSA-AES128-SHA256"
    1017. 

  1017. #define TLS1_TXT_DHE_DSS_WITH_AES_128_SHA256 "DHE-DSS-AES128-SHA256"
    1018. 

  1018. #define TLS1_TXT_DHE_RSA_WITH_AES_128_SHA256 "DHE-RSA-AES128-SHA256"
    1019. 

  1019. #define TLS1_TXT_DH_DSS_WITH_AES_256_SHA256 "DH-DSS-AES256-SHA256"
    1020. 

  1020. #define TLS1_TXT_DH_RSA_WITH_AES_256_SHA256 "DH-RSA-AES256-SHA256"
    1021. 

  1021. #define TLS1_TXT_DHE_DSS_WITH_AES_256_SHA256 "DHE-DSS-AES256-SHA256"
    1022. 

  1022. #define TLS1_TXT_DHE_RSA_WITH_AES_256_SHA256 "DHE-RSA-AES256-SHA256"
    1023. 

  1023. #define TLS1_TXT_ADH_WITH_AES_128_SHA256 "ADH-AES128-SHA256"
    1024. 

  1024. #define TLS1_TXT_ADH_WITH_AES_256_SHA256 "ADH-AES256-SHA256"
    1025. 

  1025. 

  1026. /* TLS v1.2 GCM ciphersuites from RFC5288 */
    1027. 

  1027. #define TLS1_TXT_RSA_WITH_AES_128_GCM_SHA256 "AES128-GCM-SHA256"
    1028. 

  1028. #define TLS1_TXT_RSA_WITH_AES_256_GCM_SHA384 "AES256-GCM-SHA384"
    1029. 

  1029. #define TLS1_TXT_DHE_RSA_WITH_AES_128_GCM_SHA256 "DHE-RSA-AES128-GCM-SHA256"
    1030. 

  1030. #define TLS1_TXT_DHE_RSA_WITH_AES_256_GCM_SHA384 "DHE-RSA-AES256-GCM-SHA384"
    1031. 

  1031. #define TLS1_TXT_DH_RSA_WITH_AES_128_GCM_SHA256 "DH-RSA-AES128-GCM-SHA256"
    1032. 

  1032. #define TLS1_TXT_DH_RSA_WITH_AES_256_GCM_SHA384 "DH-RSA-AES256-GCM-SHA384"
    1033. 

  1033. #define TLS1_TXT_DHE_DSS_WITH_AES_128_GCM_SHA256 "DHE-DSS-AES128-GCM-SHA256"
    1034. 

  1034. #define TLS1_TXT_DHE_DSS_WITH_AES_256_GCM_SHA384 "DHE-DSS-AES256-GCM-SHA384"
    1035. 

  1035. #define TLS1_TXT_DH_DSS_WITH_AES_128_GCM_SHA256 "DH-DSS-AES128-GCM-SHA256"
    1036. 

  1036. #define TLS1_TXT_DH_DSS_WITH_AES_256_GCM_SHA384 "DH-DSS-AES256-GCM-SHA384"
    1037. 

  1037. #define TLS1_TXT_ADH_WITH_AES_128_GCM_SHA256 "ADH-AES128-GCM-SHA256"
    1038. 

  1038. #define TLS1_TXT_ADH_WITH_AES_256_GCM_SHA384 "ADH-AES256-GCM-SHA384"
    1039. 

  1039. 

  1040. /* CCM ciphersuites from RFC6655 */
    1041. 

  1041. #define TLS1_TXT_RSA_WITH_AES_128_CCM "AES128-CCM"
    1042. 

  1042. #define TLS1_TXT_RSA_WITH_AES_256_CCM "AES256-CCM"
    1043. 

  1043. #define TLS1_TXT_DHE_RSA_WITH_AES_128_CCM "DHE-RSA-AES128-CCM"
    1044. 

  1044. #define TLS1_TXT_DHE_RSA_WITH_AES_256_CCM "DHE-RSA-AES256-CCM"
    1045. 

  1045. 

  1046. #define TLS1_TXT_RSA_WITH_AES_128_CCM_8 "AES128-CCM8"
    1047. 

  1047. #define TLS1_TXT_RSA_WITH_AES_256_CCM_8 "AES256-CCM8"
    1048. 

  1048. #define TLS1_TXT_DHE_RSA_WITH_AES_128_CCM_8 "DHE-RSA-AES128-CCM8"
    1049. 

  1049. #define TLS1_TXT_DHE_RSA_WITH_AES_256_CCM_8 "DHE-RSA-AES256-CCM8"
    1050. 

  1050. 

  1051. #define TLS1_TXT_PSK_WITH_AES_128_CCM "PSK-AES128-CCM"
    1052. 

  1052. #define TLS1_TXT_PSK_WITH_AES_256_CCM "PSK-AES256-CCM"
    1053. 

  1053. #define TLS1_TXT_DHE_PSK_WITH_AES_128_CCM "DHE-PSK-AES128-CCM"
    1054. 

  1054. #define TLS1_TXT_DHE_PSK_WITH_AES_256_CCM "DHE-PSK-AES256-CCM"
    1055. 

  1055. 

  1056. #define TLS1_TXT_PSK_WITH_AES_128_CCM_8 "PSK-AES128-CCM8"
    1057. 

  1057. #define TLS1_TXT_PSK_WITH_AES_256_CCM_8 "PSK-AES256-CCM8"
    1058. 

  1058. #define TLS1_TXT_DHE_PSK_WITH_AES_128_CCM_8 "DHE-PSK-AES128-CCM8"
    1059. 

  1059. #define TLS1_TXT_DHE_PSK_WITH_AES_256_CCM_8 "DHE-PSK-AES256-CCM8"
    1060. 

  1060. 

  1061. /* CCM ciphersuites from RFC7251 */
    1062. 

  1062. #define TLS1_TXT_ECDHE_ECDSA_WITH_AES_128_CCM "ECDHE-ECDSA-AES128-CCM"
    1063. 

  1063. #define TLS1_TXT_ECDHE_ECDSA_WITH_AES_256_CCM "ECDHE-ECDSA-AES256-CCM"
    1064. 

  1064. #define TLS1_TXT_ECDHE_ECDSA_WITH_AES_128_CCM_8 "ECDHE-ECDSA-AES128-CCM8"
    1065. 

  1065. #define TLS1_TXT_ECDHE_ECDSA_WITH_AES_256_CCM_8 "ECDHE-ECDSA-AES256-CCM8"
    1066. 

  1066. 

  1067. /* ECDH HMAC based ciphersuites from RFC5289 */
    1068. 

  1068. #define TLS1_TXT_ECDHE_ECDSA_WITH_AES_128_SHA256 "ECDHE-ECDSA-AES128-SHA256"
    1069. 

  1069. #define TLS1_TXT_ECDHE_ECDSA_WITH_AES_256_SHA384 "ECDHE-ECDSA-AES256-SHA384"
    1070. 

  1070. #define TLS1_TXT_ECDH_ECDSA_WITH_AES_128_SHA256 "ECDH-ECDSA-AES128-SHA256"
    1071. 

  1071. #define TLS1_TXT_ECDH_ECDSA_WITH_AES_256_SHA384 "ECDH-ECDSA-AES256-SHA384"
    1072. 

  1072. #define TLS1_TXT_ECDHE_RSA_WITH_AES_128_SHA256 "ECDHE-RSA-AES128-SHA256"
    1073. 

  1073. #define TLS1_TXT_ECDHE_RSA_WITH_AES_256_SHA384 "ECDHE-RSA-AES256-SHA384"
    1074. 

  1074. #define TLS1_TXT_ECDH_RSA_WITH_AES_128_SHA256 "ECDH-RSA-AES128-SHA256"
    1075. 

  1075. #define TLS1_TXT_ECDH_RSA_WITH_AES_256_SHA384 "ECDH-RSA-AES256-SHA384"
    1076. 

  1076. 

  1077. /* ECDH GCM based ciphersuites from RFC5289 */
    1078. 

  1078. #define TLS1_TXT_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 "ECDHE-ECDSA-AES128-GCM-SHA256"
    1079. 

  1079. #define TLS1_TXT_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 "ECDHE-ECDSA-AES256-GCM-SHA384"
    1080. 

  1080. #define TLS1_TXT_ECDH_ECDSA_WITH_AES_128_GCM_SHA256 "ECDH-ECDSA-AES128-GCM-SHA256"
    1081. 

  1081. #define TLS1_TXT_ECDH_ECDSA_WITH_AES_256_GCM_SHA384 "ECDH-ECDSA-AES256-GCM-SHA384"
    1082. 

  1082. #define TLS1_TXT_ECDHE_RSA_WITH_AES_128_GCM_SHA256 "ECDHE-RSA-AES128-GCM-SHA256"
    1083. 

  1083. #define TLS1_TXT_ECDHE_RSA_WITH_AES_256_GCM_SHA384 "ECDHE-RSA-AES256-GCM-SHA384"
    1084. 

  1084. #define TLS1_TXT_ECDH_RSA_WITH_AES_128_GCM_SHA256 "ECDH-RSA-AES128-GCM-SHA256"
    1085. 

  1085. #define TLS1_TXT_ECDH_RSA_WITH_AES_256_GCM_SHA384 "ECDH-RSA-AES256-GCM-SHA384"
    1086. 

  1086. 

  1087. /* TLS v1.2 PSK GCM ciphersuites from RFC5487 */
    1088. 

  1088. #define TLS1_TXT_PSK_WITH_AES_128_GCM_SHA256 "PSK-AES128-GCM-SHA256"
    1089. 

  1089. #define TLS1_TXT_PSK_WITH_AES_256_GCM_SHA384 "PSK-AES256-GCM-SHA384"
    1090. 

  1090. 

  1091. /* ECDHE PSK ciphersuites from RFC 5489 */
    1092. 

  1092. #define TLS1_TXT_ECDHE_PSK_WITH_RC4_128_SHA "ECDHE-PSK-RC4-SHA"
    1093. 

  1093. #define TLS1_TXT_ECDHE_PSK_WITH_3DES_EDE_CBC_SHA "ECDHE-PSK-3DES-EDE-CBC-SHA"
    1094. 

  1094. #define TLS1_TXT_ECDHE_PSK_WITH_AES_128_CBC_SHA "ECDHE-PSK-AES128-CBC-SHA"
    1095. 

  1095. #define TLS1_TXT_ECDHE_PSK_WITH_AES_256_CBC_SHA "ECDHE-PSK-AES256-CBC-SHA"
    1096. 

  1096. 

  1097. #define TLS1_TXT_ECDHE_PSK_WITH_AES_128_CBC_SHA256 "ECDHE-PSK-AES128-CBC-SHA256"
    1098. 

  1098. #define TLS1_TXT_ECDHE_PSK_WITH_AES_256_CBC_SHA384 "ECDHE-PSK-AES256-CBC-SHA384"
    1099. 

  1099. 

  1100. #define TLS1_TXT_ECDHE_PSK_WITH_NULL_SHA "ECDHE-PSK-NULL-SHA"
    1101. 

  1101. #define TLS1_TXT_ECDHE_PSK_WITH_NULL_SHA256 "ECDHE-PSK-NULL-SHA256"
    1102. 

  1102. #define TLS1_TXT_ECDHE_PSK_WITH_NULL_SHA384 "ECDHE-PSK-NULL-SHA384"
    1103. 

  1103. 

  1104. /* Camellia-CBC ciphersuites from RFC6367 */
    1105. 

  1105. #define TLS1_TXT_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256 "ECDHE-ECDSA-CAMELLIA128-SHA256"
    1106. 

  1106. #define TLS1_TXT_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384 "ECDHE-ECDSA-CAMELLIA256-SHA384"
    1107. 

  1107. #define TLS1_TXT_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256 "ECDH-ECDSA-CAMELLIA128-SHA256"
    1108. 

  1108. #define TLS1_TXT_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384 "ECDH-ECDSA-CAMELLIA256-SHA384"
    1109. 

  1109. #define TLS1_TXT_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 "ECDHE-RSA-CAMELLIA128-SHA256"
    1110. 

  1110. #define TLS1_TXT_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384 "ECDHE-RSA-CAMELLIA256-SHA384"
    1111. 

  1111. #define TLS1_TXT_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256 "ECDH-RSA-CAMELLIA128-SHA256"
    1112. 

  1112. #define TLS1_TXT_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384 "ECDH-RSA-CAMELLIA256-SHA384"
    1113. 

  1113. 

  1114. /* draft-ietf-tls-chacha20-poly1305-03 */
    1115. 

  1115. #define TLS1_TXT_ECDHE_RSA_WITH_CHACHA20_POLY1305 "ECDHE-RSA-CHACHA20-POLY1305"
    1116. 

  1116. #define TLS1_TXT_ECDHE_ECDSA_WITH_CHACHA20_POLY1305 "ECDHE-ECDSA-CHACHA20-POLY1305"
    1117. 

  1117. #define TLS1_TXT_DHE_RSA_WITH_CHACHA20_POLY1305 "DHE-RSA-CHACHA20-POLY1305"
    1118. 

  1118. #define TLS1_TXT_PSK_WITH_CHACHA20_POLY1305 "PSK-CHACHA20-POLY1305"
    1119. 

  1119. #define TLS1_TXT_ECDHE_PSK_WITH_CHACHA20_POLY1305 "ECDHE-PSK-CHACHA20-POLY1305"
    1120. 

  1120. #define TLS1_TXT_DHE_PSK_WITH_CHACHA20_POLY1305 "DHE-PSK-CHACHA20-POLY1305"
    1121. 

  1121. #define TLS1_TXT_RSA_PSK_WITH_CHACHA20_POLY1305 "RSA-PSK-CHACHA20-POLY1305"
    1122. 

  1122. 

  1123. /* Aria ciphersuites from RFC6209 */
    1124. 

  1124. #define TLS1_TXT_RSA_WITH_ARIA_128_GCM_SHA256 "ARIA128-GCM-SHA256"
    1125. 

  1125. #define TLS1_TXT_RSA_WITH_ARIA_256_GCM_SHA384 "ARIA256-GCM-SHA384"
    1126. 

  1126. #define TLS1_TXT_DHE_RSA_WITH_ARIA_128_GCM_SHA256 "DHE-RSA-ARIA128-GCM-SHA256"
    1127. 

  1127. #define TLS1_TXT_DHE_RSA_WITH_ARIA_256_GCM_SHA384 "DHE-RSA-ARIA256-GCM-SHA384"
    1128. 

  1128. #define TLS1_TXT_DH_RSA_WITH_ARIA_128_GCM_SHA256 "DH-RSA-ARIA128-GCM-SHA256"
    1129. 

  1129. #define TLS1_TXT_DH_RSA_WITH_ARIA_256_GCM_SHA384 "DH-RSA-ARIA256-GCM-SHA384"
    1130. 

  1130. #define TLS1_TXT_DHE_DSS_WITH_ARIA_128_GCM_SHA256 "DHE-DSS-ARIA128-GCM-SHA256"
    1131. 

  1131. #define TLS1_TXT_DHE_DSS_WITH_ARIA_256_GCM_SHA384 "DHE-DSS-ARIA256-GCM-SHA384"
    1132. 

  1132. #define TLS1_TXT_DH_DSS_WITH_ARIA_128_GCM_SHA256 "DH-DSS-ARIA128-GCM-SHA256"
    1133. 

  1133. #define TLS1_TXT_DH_DSS_WITH_ARIA_256_GCM_SHA384 "DH-DSS-ARIA256-GCM-SHA384"
    1134. 

  1134. #define TLS1_TXT_DH_anon_WITH_ARIA_128_GCM_SHA256 "ADH-ARIA128-GCM-SHA256"
    1135. 

  1135. #define TLS1_TXT_DH_anon_WITH_ARIA_256_GCM_SHA384 "ADH-ARIA256-GCM-SHA384"
    1136. 

  1136. #define TLS1_TXT_ECDHE_ECDSA_WITH_ARIA_128_GCM_SHA256 "ECDHE-ECDSA-ARIA128-GCM-SHA256"
    1137. 

  1137. #define TLS1_TXT_ECDHE_ECDSA_WITH_ARIA_256_GCM_SHA384 "ECDHE-ECDSA-ARIA256-GCM-SHA384"
    1138. 

  1138. #define TLS1_TXT_ECDH_ECDSA_WITH_ARIA_128_GCM_SHA256 "ECDH-ECDSA-ARIA128-GCM-SHA256"
    1139. 

  1139. #define TLS1_TXT_ECDH_ECDSA_WITH_ARIA_256_GCM_SHA384 "ECDH-ECDSA-ARIA256-GCM-SHA384"
    1140. 

  1140. #define TLS1_TXT_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256 "ECDHE-ARIA128-GCM-SHA256"
    1141. 

  1141. #define TLS1_TXT_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384 "ECDHE-ARIA256-GCM-SHA384"
    1142. 

  1142. #define TLS1_TXT_ECDH_RSA_WITH_ARIA_128_GCM_SHA256 "ECDH-ARIA128-GCM-SHA256"
    1143. 

  1143. #define TLS1_TXT_ECDH_RSA_WITH_ARIA_256_GCM_SHA384 "ECDH-ARIA256-GCM-SHA384"
    1144. 

  1144. #define TLS1_TXT_PSK_WITH_ARIA_128_GCM_SHA256 "PSK-ARIA128-GCM-SHA256"
    1145. 

  1145. #define TLS1_TXT_PSK_WITH_ARIA_256_GCM_SHA384 "PSK-ARIA256-GCM-SHA384"
    1146. 

  1146. #define TLS1_TXT_DHE_PSK_WITH_ARIA_128_GCM_SHA256 "DHE-PSK-ARIA128-GCM-SHA256"
    1147. 

  1147. #define TLS1_TXT_DHE_PSK_WITH_ARIA_256_GCM_SHA384 "DHE-PSK-ARIA256-GCM-SHA384"
    1148. 

  1148. #define TLS1_TXT_RSA_PSK_WITH_ARIA_128_GCM_SHA256 "RSA-PSK-ARIA128-GCM-SHA256"
    1149. 

  1149. #define TLS1_TXT_RSA_PSK_WITH_ARIA_256_GCM_SHA384 "RSA-PSK-ARIA256-GCM-SHA384"
    1150. 

  1150. 

  1151. #define TLS_CT_RSA_SIGN 1
    1152. 

  1152. #define TLS_CT_DSS_SIGN 2
    1153. 

  1153. #define TLS_CT_RSA_FIXED_DH 3
    1154. 

  1154. #define TLS_CT_DSS_FIXED_DH 4
    1155. 

  1155. #define TLS_CT_ECDSA_SIGN 64
    1156. 

  1156. #define TLS_CT_RSA_FIXED_ECDH 65
    1157. 

  1157. #define TLS_CT_ECDSA_FIXED_ECDH 66
    1158. 

  1158. #define TLS_CT_GOST01_SIGN 22
    1159. 

  1159. #define TLS_CT_GOST12_IANA_SIGN 67
    1160. 

  1160. #define TLS_CT_GOST12_IANA_512_SIGN 68
    1161. 

  1161. #define TLS_CT_GOST12_LEGACY_SIGN 238
    1162. 

  1162. #define TLS_CT_GOST12_LEGACY_512_SIGN 239
    1163. 

  1163. 

  1164. #ifndef OPENSSL_NO_DEPRECATED_3_0
    1165. 

  1165. #define TLS_CT_GOST12_SIGN TLS_CT_GOST12_LEGACY_SIGN
    1166. 

  1166. #define TLS_CT_GOST12_512_SIGN TLS_CT_GOST12_LEGACY_512_SIGN
    1167. 

  1167. #endif
    1168. 

  1168. 

  1169. /*
    1170. 

  1170.  * when correcting this number, correct also SSL3_CT_NUMBER in ssl3.h (see
    1171. 

  1171.  * comment there)
    1172. 

  1172.  */
    1173. 

  1173. #define TLS_CT_NUMBER 12
    1174. 

  1174. 

  1175. #if defined(SSL3_CT_NUMBER)
    1176. 

  1176. #if TLS_CT_NUMBER != SSL3_CT_NUMBER
    1177. 

  1177. #error "SSL/TLS CT_NUMBER values do not match"
    1178. 

  1178. #endif
    1179. 

  1179. #endif
    1180. 

  1180. 

  1181. #define TLS1_FINISH_MAC_LENGTH 12
    1182. 

  1182. 

  1183. #define TLS_MD_MAX_CONST_SIZE 22
    1184. 

  1184. 

  1185. /* ASCII: "client finished", in hex for EBCDIC compatibility */
    1186. 

  1186. #define TLS_MD_CLIENT_FINISH_CONST "\x63\x6c\x69\x65\x6e\x74\x20\x66\x69\x6e\x69\x73\x68\x65\x64"
    1187. 

  1187. #define TLS_MD_CLIENT_FINISH_CONST_SIZE 15
    1188. 

  1188. /* ASCII: "server finished", in hex for EBCDIC compatibility */
    1189. 

  1189. #define TLS_MD_SERVER_FINISH_CONST "\x73\x65\x72\x76\x65\x72\x20\x66\x69\x6e\x69\x73\x68\x65\x64"
    1190. 

  1190. #define TLS_MD_SERVER_FINISH_CONST_SIZE 15
    1191. 

  1191. /* ASCII: "server write key", in hex for EBCDIC compatibility */
    1192. 

  1192. #define TLS_MD_SERVER_WRITE_KEY_CONST "\x73\x65\x72\x76\x65\x72\x20\x77\x72\x69\x74\x65\x20\x6b\x65\x79"
    1193. 

  1193. #define TLS_MD_SERVER_WRITE_KEY_CONST_SIZE 16
    1194. 

  1194. /* ASCII: "key expansion", in hex for EBCDIC compatibility */
    1195. 

  1195. #define TLS_MD_KEY_EXPANSION_CONST "\x6b\x65\x79\x20\x65\x78\x70\x61\x6e\x73\x69\x6f\x6e"
    1196. 

  1196. #define TLS_MD_KEY_EXPANSION_CONST_SIZE 13
    1197. 

  1197. /* ASCII: "client write key", in hex for EBCDIC compatibility */
    1198. 

  1198. #define TLS_MD_CLIENT_WRITE_KEY_CONST "\x63\x6c\x69\x65\x6e\x74\x20\x77\x72\x69\x74\x65\x20\x6b\x65\x79"
    1199. 

  1199. #define TLS_MD_CLIENT_WRITE_KEY_CONST_SIZE 16
    1200. 

  1200. /* ASCII: "server write key", in hex for EBCDIC compatibility */
    1201. 

  1201. #define TLS_MD_SERVER_WRITE_KEY_CONST "\x73\x65\x72\x76\x65\x72\x20\x77\x72\x69\x74\x65\x20\x6b\x65\x79"
    1202. 

  1202. #define TLS_MD_SERVER_WRITE_KEY_CONST_SIZE 16
    1203. 

  1203. /* ASCII: "IV block", in hex for EBCDIC compatibility */
    1204. 

  1204. #define TLS_MD_IV_BLOCK_CONST "\x49\x56\x20\x62\x6c\x6f\x63\x6b"
    1205. 

  1205. #define TLS_MD_IV_BLOCK_CONST_SIZE 8
    1206. 

  1206. /* ASCII: "master secret", in hex for EBCDIC compatibility */
    1207. 

  1207. #define TLS_MD_MASTER_SECRET_CONST "\x6d\x61\x73\x74\x65\x72\x20\x73\x65\x63\x72\x65\x74"
    1208. 

  1208. #define TLS_MD_MASTER_SECRET_CONST_SIZE 13
    1209. 

  1209. /* ASCII: "extended master secret", in hex for EBCDIC compatibility */
    1210. 

  1210. #define TLS_MD_EXTENDED_MASTER_SECRET_CONST "\x65\x78\x74\x65\x6e\x64\x65\x64\x20\x6d\x61\x73\x74\x65\x72\x20\x73\x65\x63\x72\x65\x74"
    1211. 

  1211. #define TLS_MD_EXTENDED_MASTER_SECRET_CONST_SIZE 22
    1212. 

  1212. 

  1213. /* TLS Session Ticket extension struct */
    1214. 

  1214. struct tls_session_ticket_ext_st {
    1215. 

  1215.     unsigned short length;
    1216. 

  1216.     void *data;
    1217. 

  1217. };
    1218. 

  1218. 

  1219. #ifdef __cplusplus
    1220. 

  1220. }
    1221. 

  1221. #endif
    1222. 

  1222. #endif
    1223. 

  1223.