Add ECDH_RSA and ECDH_ECDSA ciphersuites
(not implemented yet)
This commit is contained in:
Manuel Pégourié-Gonnard
parent
452f6ba1a6
commit
25781b22e3
3 changed files with 385 additions and 3 deletions
|
|
@ -180,6 +180,8 @@
|
|||
*
|
||||
* Requires POLARSSL_ENABLE_WEAK_CIPHERSUITES as well to enable
|
||||
* the following ciphersuites:
|
||||
* TLS_ECDH_ECDSA_WITH_NULL_SHA
|
||||
* TLS_ECDH_RSA_WITH_NULL_SHA
|
||||
* TLS_ECDHE_ECDSA_WITH_NULL_SHA
|
||||
* TLS_ECDHE_RSA_WITH_NULL_SHA
|
||||
* TLS_ECDHE_PSK_WITH_NULL_SHA384
|
||||
|
|
@ -458,6 +460,54 @@
|
|||
*/
|
||||
#define POLARSSL_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
|
||||
|
||||
/**
|
||||
* \def POLARSSL_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
|
||||
*
|
||||
* Enable the ECDH-ECDSA based ciphersuite modes in SSL / TLS.
|
||||
*
|
||||
* Requires: POLARSSL_ECDH_C, POLARSSL_X509_CRT_PARSE_C
|
||||
*
|
||||
* This enables the following ciphersuites (if other requisites are
|
||||
* enabled as well):
|
||||
* TLS_ECDH_ECDSA_WITH_RC4_128_SHA
|
||||
* TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
|
||||
* TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
|
||||
* TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
|
||||
* TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256
|
||||
* TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384
|
||||
* TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256
|
||||
* TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384
|
||||
* TLS_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256
|
||||
* TLS_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384
|
||||
* TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256
|
||||
* TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384
|
||||
*/
|
||||
#define POLARSSL_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
|
||||
|
||||
/**
|
||||
* \def POLARSSL_KEY_EXCHANGE_ECDH_RSA_ENABLED
|
||||
*
|
||||
* Enable the ECDH-RSA based ciphersuite modes in SSL / TLS.
|
||||
*
|
||||
* Requires: POLARSSL_ECDH_C, POLARSSL_X509_CRT_PARSE_C
|
||||
*
|
||||
* This enables the following ciphersuites (if other requisites are
|
||||
* enabled as well):
|
||||
* TLS_ECDH_RSA_WITH_RC4_128_SHA
|
||||
* TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
|
||||
* TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
|
||||
* TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
|
||||
* TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256
|
||||
* TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384
|
||||
* TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256
|
||||
* TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384
|
||||
* TLS_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256
|
||||
* TLS_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384
|
||||
* TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256
|
||||
* TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384
|
||||
*/
|
||||
#define POLARSSL_KEY_EXCHANGE_ECDH_RSA_ENABLED
|
||||
|
||||
/**
|
||||
* \def POLARSSL_ERROR_STRERROR_BC
|
||||
*
|
||||
|
|
@ -824,6 +874,18 @@
|
|||
*
|
||||
* This module enables the following ciphersuites (if other requisites are
|
||||
* enabled as well):
|
||||
* TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
|
||||
* TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
|
||||
* TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
|
||||
* TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
|
||||
* TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256
|
||||
* TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384
|
||||
* TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256
|
||||
* TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384
|
||||
* TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256
|
||||
* TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384
|
||||
* TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256
|
||||
* TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384
|
||||
* TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
|
||||
* TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
|
||||
* TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
|
||||
|
|
@ -885,6 +947,8 @@
|
|||
*
|
||||
* This module enables the following ciphersuites (if other requisites are
|
||||
* enabled as well):
|
||||
* TLS_ECDH_ECDSA_WITH_RC4_128_SHA
|
||||
* TLS_ECDH_RSA_WITH_RC4_128_SHA
|
||||
* TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
|
||||
* TLS_ECDHE_RSA_WITH_RC4_128_SHA
|
||||
* TLS_ECDHE_PSK_WITH_RC4_128_SHA
|
||||
|
|
@ -970,6 +1034,14 @@
|
|||
*
|
||||
* This module enables the following ciphersuites (if other requisites are
|
||||
* enabled as well):
|
||||
* TLS_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256
|
||||
* TLS_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384
|
||||
* TLS_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256
|
||||
* TLS_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384
|
||||
* TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256
|
||||
* TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384
|
||||
* TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256
|
||||
* TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384
|
||||
* TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384
|
||||
* TLS_ECDHE_RSA_WITH_CAMELLIA_256_GCM_SHA384
|
||||
* TLS_DHE_RSA_WITH_CAMELLIA_256_GCM_SHA384
|
||||
|
|
@ -1072,6 +1144,8 @@
|
|||
*
|
||||
* This module enables the following ciphersuites (if other requisites are
|
||||
* enabled as well):
|
||||
* TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
|
||||
* TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
|
||||
* TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
|
||||
* TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
|
||||
* TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
|
||||
|
|
@ -1873,6 +1947,16 @@
|
|||
#error "POLARSSL_HAVEGE_C defined, but not all prerequisites"
|
||||
#endif
|
||||
|
||||
#if defined(POLARSSL_KEY_EXCHANGE_ECDH_ECDSA_ENABLED) && \
|
||||
( !defined(POLARSSL_ECDH_C) || !defined(POLARSSL_X509_CRT_PARSE_C) )
|
||||
#error "POLARSSL_KEY_EXCHANGE_ECDH_ECDSA_ENABLED defined, but not all prerequisites"
|
||||
#endif
|
||||
|
||||
#if defined(POLARSSL_KEY_EXCHANGE_ECDH_RSA_ENABLED) && \
|
||||
( !defined(POLARSSL_ECDH_C) || !defined(POLARSSL_X509_CRT_PARSE_C) )
|
||||
#error "POLARSSL_KEY_EXCHANGE_ECDH_RSA_ENABLED defined, but not all prerequisites"
|
||||
#endif
|
||||
|
||||
#if defined(POLARSSL_KEY_EXCHANGE_DHE_PSK_ENABLED) && !defined(POLARSSL_DHM_C)
|
||||
#error "POLARSSL_KEY_EXCHANGE_DHE_PSK_ENABLED defined, but not all prerequisites"
|
||||
#endif
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue