File Explorer

/proc/thread-self/root/proc/thread-self/root/proc/1/task/1/cwd/node24/include/node/openssl
This explorer reads the filesystem of the server it runs on, so /workspace/user isn't present here. Browsing and the terminal still work against this server's own disk from /.
1 dir
208 files
tls1.h61.8 KB · 1217 lines
1/*2 * Copyright 1995-2024 The OpenSSL Project Authors. All Rights Reserved.3 * Copyright (c) 2002, Oracle and/or its affiliates. All rights reserved4 * Copyright 2005 Nokia. All rights reserved.5 *6 * Licensed under the Apache License 2.0 (the "License").  You may not use7 * this file except in compliance with the License.  You can obtain a copy8 * in the file LICENSE in the source distribution or at9 * https://www.openssl.org/source/license.html10 */11 12#ifndef OPENSSL_TLS1_H13#define OPENSSL_TLS1_H14#pragma once15 16#include <openssl/macros.h>17#ifndef OPENSSL_NO_DEPRECATED_3_018#define HEADER_TLS1_H19#endif20 21#include <openssl/buffer.h>22#include <openssl/x509.h>23#include <openssl/prov_ssl.h>24 25#ifdef __cplusplus26extern "C" {27#endif28 29/* Default security level if not overridden at config time */30#ifndef OPENSSL_TLS_SECURITY_LEVEL31#define OPENSSL_TLS_SECURITY_LEVEL 232#endif33 34/* TLS*_VERSION constants are defined in prov_ssl.h */35#ifndef OPENSSL_NO_DEPRECATED_3_036#define TLS_MAX_VERSION TLS1_3_VERSION37#endif38 39/* Special value for method supporting multiple versions */40#define TLS_ANY_VERSION 0x1000041 42#define TLS1_VERSION_MAJOR 0x0343#define TLS1_VERSION_MINOR 0x0144 45#define TLS1_1_VERSION_MAJOR 0x0346#define TLS1_1_VERSION_MINOR 0x0247 48#define TLS1_2_VERSION_MAJOR 0x0349#define TLS1_2_VERSION_MINOR 0x0350 51#define TLS1_get_version(s) \52    ((SSL_version(s) >> 8) == TLS1_VERSION_MAJOR ? SSL_version(s) : 0)53 54#define TLS1_get_client_version(s) \55    ((SSL_client_version(s) >> 8) == TLS1_VERSION_MAJOR ? SSL_client_version(s) : 0)56 57#define TLS1_AD_DECRYPTION_FAILED 2158#define TLS1_AD_RECORD_OVERFLOW 2259#define TLS1_AD_UNKNOWN_CA 48 /* fatal */60#define TLS1_AD_ACCESS_DENIED 49 /* fatal */61#define TLS1_AD_DECODE_ERROR 50 /* fatal */62#define TLS1_AD_DECRYPT_ERROR 5163#define TLS1_AD_EXPORT_RESTRICTION 60 /* fatal */64#define TLS1_AD_PROTOCOL_VERSION 70 /* fatal */65#define TLS1_AD_INSUFFICIENT_SECURITY 71 /* fatal */66#define TLS1_AD_INTERNAL_ERROR 80 /* fatal */67#define TLS1_AD_INAPPROPRIATE_FALLBACK 86 /* fatal */68#define TLS1_AD_USER_CANCELLED 9069#define TLS1_AD_NO_RENEGOTIATION 10070/* TLSv1.3 alerts */71#define TLS13_AD_MISSING_EXTENSION 109 /* fatal */72#define TLS13_AD_CERTIFICATE_REQUIRED 116 /* fatal */73/* codes 110-114 are from RFC3546 */74#define TLS1_AD_UNSUPPORTED_EXTENSION 11075#define TLS1_AD_CERTIFICATE_UNOBTAINABLE 11176#define TLS1_AD_UNRECOGNIZED_NAME 11277#define TLS1_AD_BAD_CERTIFICATE_STATUS_RESPONSE 11378#define TLS1_AD_BAD_CERTIFICATE_HASH_VALUE 11479#define TLS1_AD_UNKNOWN_PSK_IDENTITY 115 /* fatal */80#define TLS1_AD_NO_APPLICATION_PROTOCOL 120 /* fatal */81 82/* ExtensionType values from RFC3546 / RFC4366 / RFC6066 */83#define TLSEXT_TYPE_server_name 084#define TLSEXT_TYPE_max_fragment_length 185#define TLSEXT_TYPE_client_certificate_url 286#define TLSEXT_TYPE_trusted_ca_keys 387#define TLSEXT_TYPE_truncated_hmac 488#define TLSEXT_TYPE_status_request 589/* ExtensionType values from RFC4681 */90#define TLSEXT_TYPE_user_mapping 691/* ExtensionType values from RFC5878 */92#define TLSEXT_TYPE_client_authz 793#define TLSEXT_TYPE_server_authz 894/* ExtensionType values from RFC6091 */95#define TLSEXT_TYPE_cert_type 996 97/* ExtensionType values from RFC4492 */98/*99 * Prior to TLSv1.3 the supported_groups extension was known as100 * elliptic_curves101 */102#define TLSEXT_TYPE_supported_groups 10103#define TLSEXT_TYPE_elliptic_curves TLSEXT_TYPE_supported_groups104#define TLSEXT_TYPE_ec_point_formats 11105 106/* ExtensionType value from RFC5054 */107#define TLSEXT_TYPE_srp 12108 109/* ExtensionType values from RFC5246 */110#define TLSEXT_TYPE_signature_algorithms 13111 112/* ExtensionType value from RFC5764 */113#define TLSEXT_TYPE_use_srtp 14114 115/* ExtensionType value from RFC7301 */116#define TLSEXT_TYPE_application_layer_protocol_negotiation 16117 118/*119 * Extension type for Certificate Transparency120 * https://tools.ietf.org/html/rfc6962#section-3.3.1121 */122#define TLSEXT_TYPE_signed_certificate_timestamp 18123 124/*125 * Extension type for Raw Public Keys126 * https://tools.ietf.org/html/rfc7250127 * https://www.iana.org/assignments/tls-extensiontype-values/tls-extensiontype-values.xhtml128 */129#define TLSEXT_TYPE_client_cert_type 19130#define TLSEXT_TYPE_server_cert_type 20131 132/*133 * ExtensionType value for TLS padding extension.134 * http://tools.ietf.org/html/draft-agl-tls-padding135 */136#define TLSEXT_TYPE_padding 21137 138/* ExtensionType value from RFC7366 */139#define TLSEXT_TYPE_encrypt_then_mac 22140 141/* ExtensionType value from RFC7627 */142#define TLSEXT_TYPE_extended_master_secret 23143 144/* ExtensionType value from RFC8879 */145#define TLSEXT_TYPE_compress_certificate 27146 147/* ExtensionType value from RFC4507 */148#define TLSEXT_TYPE_session_ticket 35149 150/* As defined for TLS1.3 */151#define TLSEXT_TYPE_psk 41152#define TLSEXT_TYPE_early_data 42153#define TLSEXT_TYPE_supported_versions 43154#define TLSEXT_TYPE_cookie 44155#define TLSEXT_TYPE_psk_kex_modes 45156#define TLSEXT_TYPE_certificate_authorities 47157#define TLSEXT_TYPE_post_handshake_auth 49158#define TLSEXT_TYPE_signature_algorithms_cert 50159#define TLSEXT_TYPE_key_share 51160#define TLSEXT_TYPE_quic_transport_parameters 57161 162/* Temporary extension type */163#define TLSEXT_TYPE_renegotiate 0xff01164 165#ifndef OPENSSL_NO_NEXTPROTONEG166/* This is not an IANA defined extension number */167#define TLSEXT_TYPE_next_proto_neg 13172168#endif169 170/* NameType value from RFC3546 */171#define TLSEXT_NAMETYPE_host_name 0172/* status request value from RFC3546 */173#define TLSEXT_STATUSTYPE_ocsp 1174 175/* ECPointFormat values from RFC4492 */176#define TLSEXT_ECPOINTFORMAT_first 0177#define TLSEXT_ECPOINTFORMAT_uncompressed 0178#define TLSEXT_ECPOINTFORMAT_ansiX962_compressed_prime 1179#define TLSEXT_ECPOINTFORMAT_ansiX962_compressed_char2 2180#define TLSEXT_ECPOINTFORMAT_last 2181 182/* Signature and hash algorithms from RFC5246 */183#define TLSEXT_signature_anonymous 0184#define TLSEXT_signature_rsa 1185#define TLSEXT_signature_dsa 2186#define TLSEXT_signature_ecdsa 3187#define TLSEXT_signature_gostr34102001 237188#define TLSEXT_signature_gostr34102012_256 238189#define TLSEXT_signature_gostr34102012_512 239190 191/* Total number of different signature algorithms */192#define TLSEXT_signature_num 7193 194#define TLSEXT_hash_none 0195#define TLSEXT_hash_md5 1196#define TLSEXT_hash_sha1 2197#define TLSEXT_hash_sha224 3198#define TLSEXT_hash_sha256 4199#define TLSEXT_hash_sha384 5200#define TLSEXT_hash_sha512 6201#define TLSEXT_hash_gostr3411 237202#define TLSEXT_hash_gostr34112012_256 238203#define TLSEXT_hash_gostr34112012_512 239204 205/* Total number of different digest algorithms */206 207#define TLSEXT_hash_num 10208 209/* Possible compression values from RFC8879 */210/* Not defined in RFC8879, but used internally for no-compression */211#define TLSEXT_comp_cert_none 0212#define TLSEXT_comp_cert_zlib 1213#define TLSEXT_comp_cert_brotli 2214#define TLSEXT_comp_cert_zstd 3215/* one more than the number of defined values - used as size of 0-terminated array */216#define TLSEXT_comp_cert_limit 4217 218/* Flag set for unrecognised algorithms */219#define TLSEXT_nid_unknown 0x1000000220 221/* ECC curves */222 223#define TLSEXT_curve_P_256 23224#define TLSEXT_curve_P_384 24225 226/* OpenSSL value to disable maximum fragment length extension */227#define TLSEXT_max_fragment_length_DISABLED 0228/* Allowed values for max fragment length extension */229#define TLSEXT_max_fragment_length_512 1230#define TLSEXT_max_fragment_length_1024 2231#define TLSEXT_max_fragment_length_2048 3232#define TLSEXT_max_fragment_length_4096 4233/* OpenSSL value for unset maximum fragment length extension */234#define TLSEXT_max_fragment_length_UNSPECIFIED 255235 236/*237 * TLS Certificate Type (for RFC7250)238 * https://www.iana.org/assignments/tls-extensiontype-values/tls-extensiontype-values.xhtml#tls-extensiontype-values-3239 */240#define TLSEXT_cert_type_x509 0241#define TLSEXT_cert_type_pgp 1 /* recognized, but not supported */242#define TLSEXT_cert_type_rpk 2243#define TLSEXT_cert_type_1609dot2 3 /* recognized, but not supported */244 245int SSL_CTX_set_tlsext_max_fragment_length(SSL_CTX *ctx, uint8_t mode);246int SSL_set_tlsext_max_fragment_length(SSL *ssl, uint8_t mode);247 248#define TLSEXT_MAXLEN_host_name 255249 250__owur const char *SSL_get_servername(const SSL *s, const int type);251__owur int SSL_get_servername_type(const SSL *s);252/*253 * SSL_export_keying_material exports a value derived from the master secret,254 * as specified in RFC 5705. It writes |olen| bytes to |out| given a label and255 * optional context. (Since a zero length context is allowed, the |use_context|256 * flag controls whether a context is included.) It returns 1 on success and257 * 0 or -1 otherwise.258 */259__owur int SSL_export_keying_material(SSL *s, unsigned char *out, size_t olen,260    const char *label, size_t llen,261    const unsigned char *context,262    size_t contextlen, int use_context);263 264/*265 * SSL_export_keying_material_early exports a value derived from the266 * early exporter master secret, as specified in267 * https://tools.ietf.org/html/draft-ietf-tls-tls13-23. It writes268 * |olen| bytes to |out| given a label and optional context. It269 * returns 1 on success and 0 otherwise.270 */271__owur int SSL_export_keying_material_early(SSL *s, unsigned char *out,272    size_t olen, const char *label,273    size_t llen,274    const unsigned char *context,275    size_t contextlen);276 277int SSL_get_peer_signature_type_nid(const SSL *s, int *pnid);278int SSL_get_signature_type_nid(const SSL *s, int *pnid);279 280int SSL_get_sigalgs(SSL *s, int idx,281    int *psign, int *phash, int *psignandhash,282    unsigned char *rsig, unsigned char *rhash);283 284char *SSL_get1_builtin_sigalgs(OSSL_LIB_CTX *libctx);285 286int SSL_get_shared_sigalgs(SSL *s, int idx,287    int *psign, int *phash, int *psignandhash,288    unsigned char *rsig, unsigned char *rhash);289 290__owur int SSL_check_chain(SSL *s, X509 *x, EVP_PKEY *pk, STACK_OF(X509) *chain);291 292#define SSL_set_tlsext_host_name(s, name)                                \293    SSL_ctrl(s, SSL_CTRL_SET_TLSEXT_HOSTNAME, TLSEXT_NAMETYPE_host_name, \294        (void *)name)295 296#define SSL_set_tlsext_debug_callback(ssl, cb)           \297    SSL_callback_ctrl(ssl, SSL_CTRL_SET_TLSEXT_DEBUG_CB, \298        (void (*)(void))cb)299 300#define SSL_set_tlsext_debug_arg(ssl, arg) \301    SSL_ctrl(ssl, SSL_CTRL_SET_TLSEXT_DEBUG_ARG, 0, arg)302 303#define SSL_get_tlsext_status_type(ssl) \304    SSL_ctrl(ssl, SSL_CTRL_GET_TLSEXT_STATUS_REQ_TYPE, 0, NULL)305 306#define SSL_set_tlsext_status_type(ssl, type) \307    SSL_ctrl(ssl, SSL_CTRL_SET_TLSEXT_STATUS_REQ_TYPE, type, NULL)308 309#define SSL_get_tlsext_status_exts(ssl, arg) \310    SSL_ctrl(ssl, SSL_CTRL_GET_TLSEXT_STATUS_REQ_EXTS, 0, arg)311 312#define SSL_set_tlsext_status_exts(ssl, arg) \313    SSL_ctrl(ssl, SSL_CTRL_SET_TLSEXT_STATUS_REQ_EXTS, 0, arg)314 315#define SSL_get_tlsext_status_ids(ssl, arg) \316    SSL_ctrl(ssl, SSL_CTRL_GET_TLSEXT_STATUS_REQ_IDS, 0, arg)317 318#define SSL_set_tlsext_status_ids(ssl, arg) \319    SSL_ctrl(ssl, SSL_CTRL_SET_TLSEXT_STATUS_REQ_IDS, 0, arg)320 321#define SSL_get_tlsext_status_ocsp_resp(ssl, arg) \322    SSL_ctrl(ssl, SSL_CTRL_GET_TLSEXT_STATUS_REQ_OCSP_RESP, 0, arg)323 324#define SSL_set_tlsext_status_ocsp_resp(ssl, arg, arglen) \325    SSL_ctrl(ssl, SSL_CTRL_SET_TLSEXT_STATUS_REQ_OCSP_RESP, arglen, arg)326 327#define SSL_CTX_set_tlsext_servername_callback(ctx, cb)           \328    SSL_CTX_callback_ctrl(ctx, SSL_CTRL_SET_TLSEXT_SERVERNAME_CB, \329        (void (*)(void))cb)330 331#define SSL_TLSEXT_ERR_OK 0332#define SSL_TLSEXT_ERR_ALERT_WARNING 1333#define SSL_TLSEXT_ERR_ALERT_FATAL 2334#define SSL_TLSEXT_ERR_NOACK 3335 336#define SSL_CTX_set_tlsext_servername_arg(ctx, arg) \337    SSL_CTX_ctrl(ctx, SSL_CTRL_SET_TLSEXT_SERVERNAME_ARG, 0, arg)338 339#define SSL_CTX_get_tlsext_ticket_keys(ctx, keys, keylen) \340    SSL_CTX_ctrl(ctx, SSL_CTRL_GET_TLSEXT_TICKET_KEYS, keylen, keys)341#define SSL_CTX_set_tlsext_ticket_keys(ctx, keys, keylen) \342    SSL_CTX_ctrl(ctx, SSL_CTRL_SET_TLSEXT_TICKET_KEYS, keylen, keys)343 344#define SSL_CTX_get_tlsext_status_cb(ssl, cb) \345    SSL_CTX_ctrl(ssl, SSL_CTRL_GET_TLSEXT_STATUS_REQ_CB, 0, (void *)cb)346#define SSL_CTX_set_tlsext_status_cb(ssl, cb)                     \347    SSL_CTX_callback_ctrl(ssl, SSL_CTRL_SET_TLSEXT_STATUS_REQ_CB, \348        (void (*)(void))cb)349 350#define SSL_CTX_get_tlsext_status_arg(ssl, arg) \351    SSL_CTX_ctrl(ssl, SSL_CTRL_GET_TLSEXT_STATUS_REQ_CB_ARG, 0, arg)352#define SSL_CTX_set_tlsext_status_arg(ssl, arg) \353    SSL_CTX_ctrl(ssl, SSL_CTRL_SET_TLSEXT_STATUS_REQ_CB_ARG, 0, arg)354 355#define SSL_CTX_set_tlsext_status_type(ssl, type) \356    SSL_CTX_ctrl(ssl, SSL_CTRL_SET_TLSEXT_STATUS_REQ_TYPE, type, NULL)357 358#define SSL_CTX_get_tlsext_status_type(ssl) \359    SSL_CTX_ctrl(ssl, SSL_CTRL_GET_TLSEXT_STATUS_REQ_TYPE, 0, NULL)360 361#ifndef OPENSSL_NO_DEPRECATED_3_0362#define SSL_CTX_set_tlsext_ticket_key_cb(ssl, cb)                 \363    SSL_CTX_callback_ctrl(ssl, SSL_CTRL_SET_TLSEXT_TICKET_KEY_CB, \364        (void (*)(void))cb)365#endif366int SSL_CTX_set_tlsext_ticket_key_evp_cb(SSL_CTX *ctx, int (*fp)(SSL *, unsigned char *, unsigned char *, EVP_CIPHER_CTX *, EVP_MAC_CTX *, int));367 368/* PSK ciphersuites from 4279 */369#define TLS1_CK_PSK_WITH_RC4_128_SHA 0x0300008A370#define TLS1_CK_PSK_WITH_3DES_EDE_CBC_SHA 0x0300008B371#define TLS1_CK_PSK_WITH_AES_128_CBC_SHA 0x0300008C372#define TLS1_CK_PSK_WITH_AES_256_CBC_SHA 0x0300008D373#define TLS1_CK_DHE_PSK_WITH_RC4_128_SHA 0x0300008E374#define TLS1_CK_DHE_PSK_WITH_3DES_EDE_CBC_SHA 0x0300008F375#define TLS1_CK_DHE_PSK_WITH_AES_128_CBC_SHA 0x03000090376#define TLS1_CK_DHE_PSK_WITH_AES_256_CBC_SHA 0x03000091377#define TLS1_CK_RSA_PSK_WITH_RC4_128_SHA 0x03000092378#define TLS1_CK_RSA_PSK_WITH_3DES_EDE_CBC_SHA 0x03000093379#define TLS1_CK_RSA_PSK_WITH_AES_128_CBC_SHA 0x03000094380#define TLS1_CK_RSA_PSK_WITH_AES_256_CBC_SHA 0x03000095381 382/* PSK ciphersuites from 5487 */383#define TLS1_CK_PSK_WITH_AES_128_GCM_SHA256 0x030000A8384#define TLS1_CK_PSK_WITH_AES_256_GCM_SHA384 0x030000A9385#define TLS1_CK_DHE_PSK_WITH_AES_128_GCM_SHA256 0x030000AA386#define TLS1_CK_DHE_PSK_WITH_AES_256_GCM_SHA384 0x030000AB387#define TLS1_CK_RSA_PSK_WITH_AES_128_GCM_SHA256 0x030000AC388#define TLS1_CK_RSA_PSK_WITH_AES_256_GCM_SHA384 0x030000AD389#define TLS1_CK_PSK_WITH_AES_128_CBC_SHA256 0x030000AE390#define TLS1_CK_PSK_WITH_AES_256_CBC_SHA384 0x030000AF391#define TLS1_CK_PSK_WITH_NULL_SHA256 0x030000B0392#define TLS1_CK_PSK_WITH_NULL_SHA384 0x030000B1393#define TLS1_CK_DHE_PSK_WITH_AES_128_CBC_SHA256 0x030000B2394#define TLS1_CK_DHE_PSK_WITH_AES_256_CBC_SHA384 0x030000B3395#define TLS1_CK_DHE_PSK_WITH_NULL_SHA256 0x030000B4396#define TLS1_CK_DHE_PSK_WITH_NULL_SHA384 0x030000B5397#define TLS1_CK_RSA_PSK_WITH_AES_128_CBC_SHA256 0x030000B6398#define TLS1_CK_RSA_PSK_WITH_AES_256_CBC_SHA384 0x030000B7399#define TLS1_CK_RSA_PSK_WITH_NULL_SHA256 0x030000B8400#define TLS1_CK_RSA_PSK_WITH_NULL_SHA384 0x030000B9401 402/* NULL PSK ciphersuites from RFC4785 */403#define TLS1_CK_PSK_WITH_NULL_SHA 0x0300002C404#define TLS1_CK_DHE_PSK_WITH_NULL_SHA 0x0300002D405#define TLS1_CK_RSA_PSK_WITH_NULL_SHA 0x0300002E406 407/* AES ciphersuites from RFC3268 */408#define TLS1_CK_RSA_WITH_AES_128_SHA 0x0300002F409#define TLS1_CK_DH_DSS_WITH_AES_128_SHA 0x03000030410#define TLS1_CK_DH_RSA_WITH_AES_128_SHA 0x03000031411#define TLS1_CK_DHE_DSS_WITH_AES_128_SHA 0x03000032412#define TLS1_CK_DHE_RSA_WITH_AES_128_SHA 0x03000033413#define TLS1_CK_ADH_WITH_AES_128_SHA 0x03000034414#define TLS1_CK_RSA_WITH_AES_256_SHA 0x03000035415#define TLS1_CK_DH_DSS_WITH_AES_256_SHA 0x03000036416#define TLS1_CK_DH_RSA_WITH_AES_256_SHA 0x03000037417#define TLS1_CK_DHE_DSS_WITH_AES_256_SHA 0x03000038418#define TLS1_CK_DHE_RSA_WITH_AES_256_SHA 0x03000039419#define TLS1_CK_ADH_WITH_AES_256_SHA 0x0300003A420 421/* TLS v1.2 ciphersuites */422#define TLS1_CK_RSA_WITH_NULL_SHA256 0x0300003B423#define TLS1_CK_RSA_WITH_AES_128_SHA256 0x0300003C424#define TLS1_CK_RSA_WITH_AES_256_SHA256 0x0300003D425#define TLS1_CK_DH_DSS_WITH_AES_128_SHA256 0x0300003E426#define TLS1_CK_DH_RSA_WITH_AES_128_SHA256 0x0300003F427#define TLS1_CK_DHE_DSS_WITH_AES_128_SHA256 0x03000040428 429/* Camellia ciphersuites from RFC4132 */430#define TLS1_CK_RSA_WITH_CAMELLIA_128_CBC_SHA 0x03000041431#define TLS1_CK_DH_DSS_WITH_CAMELLIA_128_CBC_SHA 0x03000042432#define TLS1_CK_DH_RSA_WITH_CAMELLIA_128_CBC_SHA 0x03000043433#define TLS1_CK_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA 0x03000044434#define TLS1_CK_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA 0x03000045435#define TLS1_CK_ADH_WITH_CAMELLIA_128_CBC_SHA 0x03000046436 437/* TLS v1.2 ciphersuites */438#define TLS1_CK_DHE_RSA_WITH_AES_128_SHA256 0x03000067439#define TLS1_CK_DH_DSS_WITH_AES_256_SHA256 0x03000068440#define TLS1_CK_DH_RSA_WITH_AES_256_SHA256 0x03000069441#define TLS1_CK_DHE_DSS_WITH_AES_256_SHA256 0x0300006A442#define TLS1_CK_DHE_RSA_WITH_AES_256_SHA256 0x0300006B443#define TLS1_CK_ADH_WITH_AES_128_SHA256 0x0300006C444#define TLS1_CK_ADH_WITH_AES_256_SHA256 0x0300006D445 446/* Camellia ciphersuites from RFC4132 */447#define TLS1_CK_RSA_WITH_CAMELLIA_256_CBC_SHA 0x03000084448#define TLS1_CK_DH_DSS_WITH_CAMELLIA_256_CBC_SHA 0x03000085449#define TLS1_CK_DH_RSA_WITH_CAMELLIA_256_CBC_SHA 0x03000086450#define TLS1_CK_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA 0x03000087451#define TLS1_CK_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA 0x03000088452#define TLS1_CK_ADH_WITH_CAMELLIA_256_CBC_SHA 0x03000089453 454/* SEED ciphersuites from RFC4162 */455#define TLS1_CK_RSA_WITH_SEED_SHA 0x03000096456#define TLS1_CK_DH_DSS_WITH_SEED_SHA 0x03000097457#define TLS1_CK_DH_RSA_WITH_SEED_SHA 0x03000098458#define TLS1_CK_DHE_DSS_WITH_SEED_SHA 0x03000099459#define TLS1_CK_DHE_RSA_WITH_SEED_SHA 0x0300009A460#define TLS1_CK_ADH_WITH_SEED_SHA 0x0300009B461 462/* TLS v1.2 GCM ciphersuites from RFC5288 */463#define TLS1_CK_RSA_WITH_AES_128_GCM_SHA256 0x0300009C464#define TLS1_CK_RSA_WITH_AES_256_GCM_SHA384 0x0300009D465#define TLS1_CK_DHE_RSA_WITH_AES_128_GCM_SHA256 0x0300009E466#define TLS1_CK_DHE_RSA_WITH_AES_256_GCM_SHA384 0x0300009F467#define TLS1_CK_DH_RSA_WITH_AES_128_GCM_SHA256 0x030000A0468#define TLS1_CK_DH_RSA_WITH_AES_256_GCM_SHA384 0x030000A1469#define TLS1_CK_DHE_DSS_WITH_AES_128_GCM_SHA256 0x030000A2470#define TLS1_CK_DHE_DSS_WITH_AES_256_GCM_SHA384 0x030000A3471#define TLS1_CK_DH_DSS_WITH_AES_128_GCM_SHA256 0x030000A4472#define TLS1_CK_DH_DSS_WITH_AES_256_GCM_SHA384 0x030000A5473#define TLS1_CK_ADH_WITH_AES_128_GCM_SHA256 0x030000A6474#define TLS1_CK_ADH_WITH_AES_256_GCM_SHA384 0x030000A7475 476/* CCM ciphersuites from RFC6655 */477#define TLS1_CK_RSA_WITH_AES_128_CCM 0x0300C09C478#define TLS1_CK_RSA_WITH_AES_256_CCM 0x0300C09D479#define TLS1_CK_DHE_RSA_WITH_AES_128_CCM 0x0300C09E480#define TLS1_CK_DHE_RSA_WITH_AES_256_CCM 0x0300C09F481#define TLS1_CK_RSA_WITH_AES_128_CCM_8 0x0300C0A0482#define TLS1_CK_RSA_WITH_AES_256_CCM_8 0x0300C0A1483#define TLS1_CK_DHE_RSA_WITH_AES_128_CCM_8 0x0300C0A2484#define TLS1_CK_DHE_RSA_WITH_AES_256_CCM_8 0x0300C0A3485#define TLS1_CK_PSK_WITH_AES_128_CCM 0x0300C0A4486#define TLS1_CK_PSK_WITH_AES_256_CCM 0x0300C0A5487#define TLS1_CK_DHE_PSK_WITH_AES_128_CCM 0x0300C0A6488#define TLS1_CK_DHE_PSK_WITH_AES_256_CCM 0x0300C0A7489#define TLS1_CK_PSK_WITH_AES_128_CCM_8 0x0300C0A8490#define TLS1_CK_PSK_WITH_AES_256_CCM_8 0x0300C0A9491#define TLS1_CK_DHE_PSK_WITH_AES_128_CCM_8 0x0300C0AA492#define TLS1_CK_DHE_PSK_WITH_AES_256_CCM_8 0x0300C0AB493 494/* CCM ciphersuites from RFC7251 */495#define TLS1_CK_ECDHE_ECDSA_WITH_AES_128_CCM 0x0300C0AC496#define TLS1_CK_ECDHE_ECDSA_WITH_AES_256_CCM 0x0300C0AD497#define TLS1_CK_ECDHE_ECDSA_WITH_AES_128_CCM_8 0x0300C0AE498#define TLS1_CK_ECDHE_ECDSA_WITH_AES_256_CCM_8 0x0300C0AF499 500/* TLS 1.2 Camellia SHA-256 ciphersuites from RFC5932 */501#define TLS1_CK_RSA_WITH_CAMELLIA_128_CBC_SHA256 0x030000BA502#define TLS1_CK_DH_DSS_WITH_CAMELLIA_128_CBC_SHA256 0x030000BB503#define TLS1_CK_DH_RSA_WITH_CAMELLIA_128_CBC_SHA256 0x030000BC504#define TLS1_CK_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA256 0x030000BD505#define TLS1_CK_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 0x030000BE506#define TLS1_CK_ADH_WITH_CAMELLIA_128_CBC_SHA256 0x030000BF507 508#define TLS1_CK_RSA_WITH_CAMELLIA_256_CBC_SHA256 0x030000C0509#define TLS1_CK_DH_DSS_WITH_CAMELLIA_256_CBC_SHA256 0x030000C1510#define TLS1_CK_DH_RSA_WITH_CAMELLIA_256_CBC_SHA256 0x030000C2511#define TLS1_CK_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA256 0x030000C3512#define TLS1_CK_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256 0x030000C4513#define TLS1_CK_ADH_WITH_CAMELLIA_256_CBC_SHA256 0x030000C5514 515/* ECC ciphersuites from RFC4492 */516#define TLS1_CK_ECDH_ECDSA_WITH_NULL_SHA 0x0300C001517#define TLS1_CK_ECDH_ECDSA_WITH_RC4_128_SHA 0x0300C002518#define TLS1_CK_ECDH_ECDSA_WITH_DES_192_CBC3_SHA 0x0300C003519#define TLS1_CK_ECDH_ECDSA_WITH_AES_128_CBC_SHA 0x0300C004520#define TLS1_CK_ECDH_ECDSA_WITH_AES_256_CBC_SHA 0x0300C005521 522#define TLS1_CK_ECDHE_ECDSA_WITH_NULL_SHA 0x0300C006523#define TLS1_CK_ECDHE_ECDSA_WITH_RC4_128_SHA 0x0300C007524#define TLS1_CK_ECDHE_ECDSA_WITH_DES_192_CBC3_SHA 0x0300C008525#define TLS1_CK_ECDHE_ECDSA_WITH_AES_128_CBC_SHA 0x0300C009526#define TLS1_CK_ECDHE_ECDSA_WITH_AES_256_CBC_SHA 0x0300C00A527 528#define TLS1_CK_ECDH_RSA_WITH_NULL_SHA 0x0300C00B529#define TLS1_CK_ECDH_RSA_WITH_RC4_128_SHA 0x0300C00C530#define TLS1_CK_ECDH_RSA_WITH_DES_192_CBC3_SHA 0x0300C00D531#define TLS1_CK_ECDH_RSA_WITH_AES_128_CBC_SHA 0x0300C00E532#define TLS1_CK_ECDH_RSA_WITH_AES_256_CBC_SHA 0x0300C00F533 534#define TLS1_CK_ECDHE_RSA_WITH_NULL_SHA 0x0300C010535#define TLS1_CK_ECDHE_RSA_WITH_RC4_128_SHA 0x0300C011536#define TLS1_CK_ECDHE_RSA_WITH_DES_192_CBC3_SHA 0x0300C012537#define TLS1_CK_ECDHE_RSA_WITH_AES_128_CBC_SHA 0x0300C013538#define TLS1_CK_ECDHE_RSA_WITH_AES_256_CBC_SHA 0x0300C014539 540#define TLS1_CK_ECDH_anon_WITH_NULL_SHA 0x0300C015541#define TLS1_CK_ECDH_anon_WITH_RC4_128_SHA 0x0300C016542#define TLS1_CK_ECDH_anon_WITH_DES_192_CBC3_SHA 0x0300C017543#define TLS1_CK_ECDH_anon_WITH_AES_128_CBC_SHA 0x0300C018544#define TLS1_CK_ECDH_anon_WITH_AES_256_CBC_SHA 0x0300C019545 546/* SRP ciphersuites from RFC 5054 */547#define TLS1_CK_SRP_SHA_WITH_3DES_EDE_CBC_SHA 0x0300C01A548#define TLS1_CK_SRP_SHA_RSA_WITH_3DES_EDE_CBC_SHA 0x0300C01B549#define TLS1_CK_SRP_SHA_DSS_WITH_3DES_EDE_CBC_SHA 0x0300C01C550#define TLS1_CK_SRP_SHA_WITH_AES_128_CBC_SHA 0x0300C01D551#define TLS1_CK_SRP_SHA_RSA_WITH_AES_128_CBC_SHA 0x0300C01E552#define TLS1_CK_SRP_SHA_DSS_WITH_AES_128_CBC_SHA 0x0300C01F553#define TLS1_CK_SRP_SHA_WITH_AES_256_CBC_SHA 0x0300C020554#define TLS1_CK_SRP_SHA_RSA_WITH_AES_256_CBC_SHA 0x0300C021555#define TLS1_CK_SRP_SHA_DSS_WITH_AES_256_CBC_SHA 0x0300C022556 557/* ECDH HMAC based ciphersuites from RFC5289 */558#define TLS1_CK_ECDHE_ECDSA_WITH_AES_128_SHA256 0x0300C023559#define TLS1_CK_ECDHE_ECDSA_WITH_AES_256_SHA384 0x0300C024560#define TLS1_CK_ECDH_ECDSA_WITH_AES_128_SHA256 0x0300C025561#define TLS1_CK_ECDH_ECDSA_WITH_AES_256_SHA384 0x0300C026562#define TLS1_CK_ECDHE_RSA_WITH_AES_128_SHA256 0x0300C027563#define TLS1_CK_ECDHE_RSA_WITH_AES_256_SHA384 0x0300C028564#define TLS1_CK_ECDH_RSA_WITH_AES_128_SHA256 0x0300C029565#define TLS1_CK_ECDH_RSA_WITH_AES_256_SHA384 0x0300C02A566 567/* ECDH GCM based ciphersuites from RFC5289 */568#define TLS1_CK_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 0x0300C02B569#define TLS1_CK_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 0x0300C02C570#define TLS1_CK_ECDH_ECDSA_WITH_AES_128_GCM_SHA256 0x0300C02D571#define TLS1_CK_ECDH_ECDSA_WITH_AES_256_GCM_SHA384 0x0300C02E572#define TLS1_CK_ECDHE_RSA_WITH_AES_128_GCM_SHA256 0x0300C02F573#define TLS1_CK_ECDHE_RSA_WITH_AES_256_GCM_SHA384 0x0300C030574#define TLS1_CK_ECDH_RSA_WITH_AES_128_GCM_SHA256 0x0300C031575#define TLS1_CK_ECDH_RSA_WITH_AES_256_GCM_SHA384 0x0300C032576 577/* ECDHE PSK ciphersuites from RFC5489 */578#define TLS1_CK_ECDHE_PSK_WITH_RC4_128_SHA 0x0300C033579#define TLS1_CK_ECDHE_PSK_WITH_3DES_EDE_CBC_SHA 0x0300C034580#define TLS1_CK_ECDHE_PSK_WITH_AES_128_CBC_SHA 0x0300C035581#define TLS1_CK_ECDHE_PSK_WITH_AES_256_CBC_SHA 0x0300C036582 583#define TLS1_CK_ECDHE_PSK_WITH_AES_128_CBC_SHA256 0x0300C037584#define TLS1_CK_ECDHE_PSK_WITH_AES_256_CBC_SHA384 0x0300C038585 586/* NULL PSK ciphersuites from RFC4785 */587#define TLS1_CK_ECDHE_PSK_WITH_NULL_SHA 0x0300C039588#define TLS1_CK_ECDHE_PSK_WITH_NULL_SHA256 0x0300C03A589#define TLS1_CK_ECDHE_PSK_WITH_NULL_SHA384 0x0300C03B590 591/* Camellia-CBC ciphersuites from RFC6367 */592#define TLS1_CK_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256 0x0300C072593#define TLS1_CK_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384 0x0300C073594#define TLS1_CK_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256 0x0300C074595#define TLS1_CK_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384 0x0300C075596#define TLS1_CK_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 0x0300C076597#define TLS1_CK_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384 0x0300C077598#define TLS1_CK_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256 0x0300C078599#define TLS1_CK_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384 0x0300C079600 601#define TLS1_CK_PSK_WITH_CAMELLIA_128_CBC_SHA256 0x0300C094602#define TLS1_CK_PSK_WITH_CAMELLIA_256_CBC_SHA384 0x0300C095603#define TLS1_CK_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256 0x0300C096604#define TLS1_CK_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384 0x0300C097605#define TLS1_CK_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256 0x0300C098606#define TLS1_CK_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384 0x0300C099607#define TLS1_CK_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256 0x0300C09A608#define TLS1_CK_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384 0x0300C09B609 610/* draft-ietf-tls-chacha20-poly1305-03 */611#define TLS1_CK_ECDHE_RSA_WITH_CHACHA20_POLY1305 0x0300CCA8612#define TLS1_CK_ECDHE_ECDSA_WITH_CHACHA20_POLY1305 0x0300CCA9613#define TLS1_CK_DHE_RSA_WITH_CHACHA20_POLY1305 0x0300CCAA614#define TLS1_CK_PSK_WITH_CHACHA20_POLY1305 0x0300CCAB615#define TLS1_CK_ECDHE_PSK_WITH_CHACHA20_POLY1305 0x0300CCAC616#define TLS1_CK_DHE_PSK_WITH_CHACHA20_POLY1305 0x0300CCAD617#define TLS1_CK_RSA_PSK_WITH_CHACHA20_POLY1305 0x0300CCAE618 619/* TLS v1.3 ciphersuites */620#define TLS1_3_CK_AES_128_GCM_SHA256 0x03001301621#define TLS1_3_CK_AES_256_GCM_SHA384 0x03001302622#define TLS1_3_CK_CHACHA20_POLY1305_SHA256 0x03001303623#define TLS1_3_CK_AES_128_CCM_SHA256 0x03001304624#define TLS1_3_CK_AES_128_CCM_8_SHA256 0x03001305625 626/* Integrity-only ciphersuites from RFC 9150 */627#define TLS1_3_CK_SHA256_SHA256 0x0300C0B4628#define TLS1_3_CK_SHA384_SHA384 0x0300C0B5629 630/* Aria ciphersuites from RFC6209 */631#define TLS1_CK_RSA_WITH_ARIA_128_GCM_SHA256 0x0300C050632#define TLS1_CK_RSA_WITH_ARIA_256_GCM_SHA384 0x0300C051633#define TLS1_CK_DHE_RSA_WITH_ARIA_128_GCM_SHA256 0x0300C052634#define TLS1_CK_DHE_RSA_WITH_ARIA_256_GCM_SHA384 0x0300C053635#define TLS1_CK_DH_RSA_WITH_ARIA_128_GCM_SHA256 0x0300C054636#define TLS1_CK_DH_RSA_WITH_ARIA_256_GCM_SHA384 0x0300C055637#define TLS1_CK_DHE_DSS_WITH_ARIA_128_GCM_SHA256 0x0300C056638#define TLS1_CK_DHE_DSS_WITH_ARIA_256_GCM_SHA384 0x0300C057639#define TLS1_CK_DH_DSS_WITH_ARIA_128_GCM_SHA256 0x0300C058640#define TLS1_CK_DH_DSS_WITH_ARIA_256_GCM_SHA384 0x0300C059641#define TLS1_CK_DH_anon_WITH_ARIA_128_GCM_SHA256 0x0300C05A642#define TLS1_CK_DH_anon_WITH_ARIA_256_GCM_SHA384 0x0300C05B643#define TLS1_CK_ECDHE_ECDSA_WITH_ARIA_128_GCM_SHA256 0x0300C05C644#define TLS1_CK_ECDHE_ECDSA_WITH_ARIA_256_GCM_SHA384 0x0300C05D645#define TLS1_CK_ECDH_ECDSA_WITH_ARIA_128_GCM_SHA256 0x0300C05E646#define TLS1_CK_ECDH_ECDSA_WITH_ARIA_256_GCM_SHA384 0x0300C05F647#define TLS1_CK_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256 0x0300C060648#define TLS1_CK_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384 0x0300C061649#define TLS1_CK_ECDH_RSA_WITH_ARIA_128_GCM_SHA256 0x0300C062650#define TLS1_CK_ECDH_RSA_WITH_ARIA_256_GCM_SHA384 0x0300C063651#define TLS1_CK_PSK_WITH_ARIA_128_GCM_SHA256 0x0300C06A652#define TLS1_CK_PSK_WITH_ARIA_256_GCM_SHA384 0x0300C06B653#define TLS1_CK_DHE_PSK_WITH_ARIA_128_GCM_SHA256 0x0300C06C654#define TLS1_CK_DHE_PSK_WITH_ARIA_256_GCM_SHA384 0x0300C06D655#define TLS1_CK_RSA_PSK_WITH_ARIA_128_GCM_SHA256 0x0300C06E656#define TLS1_CK_RSA_PSK_WITH_ARIA_256_GCM_SHA384 0x0300C06F657 658/* a bundle of RFC standard cipher names, generated from ssl3_ciphers[] */659#define TLS1_RFC_RSA_WITH_AES_128_SHA "TLS_RSA_WITH_AES_128_CBC_SHA"660#define TLS1_RFC_DHE_DSS_WITH_AES_128_SHA "TLS_DHE_DSS_WITH_AES_128_CBC_SHA"661#define TLS1_RFC_DHE_RSA_WITH_AES_128_SHA "TLS_DHE_RSA_WITH_AES_128_CBC_SHA"662#define TLS1_RFC_ADH_WITH_AES_128_SHA "TLS_DH_anon_WITH_AES_128_CBC_SHA"663#define TLS1_RFC_RSA_WITH_AES_256_SHA "TLS_RSA_WITH_AES_256_CBC_SHA"664#define TLS1_RFC_DHE_DSS_WITH_AES_256_SHA "TLS_DHE_DSS_WITH_AES_256_CBC_SHA"665#define TLS1_RFC_DHE_RSA_WITH_AES_256_SHA "TLS_DHE_RSA_WITH_AES_256_CBC_SHA"666#define TLS1_RFC_ADH_WITH_AES_256_SHA "TLS_DH_anon_WITH_AES_256_CBC_SHA"667#define TLS1_RFC_RSA_WITH_NULL_SHA256 "TLS_RSA_WITH_NULL_SHA256"668#define TLS1_RFC_RSA_WITH_AES_128_SHA256 "TLS_RSA_WITH_AES_128_CBC_SHA256"669#define TLS1_RFC_RSA_WITH_AES_256_SHA256 "TLS_RSA_WITH_AES_256_CBC_SHA256"670#define TLS1_RFC_DHE_DSS_WITH_AES_128_SHA256 "TLS_DHE_DSS_WITH_AES_128_CBC_SHA256"671#define TLS1_RFC_DHE_RSA_WITH_AES_128_SHA256 "TLS_DHE_RSA_WITH_AES_128_CBC_SHA256"672#define TLS1_RFC_DHE_DSS_WITH_AES_256_SHA256 "TLS_DHE_DSS_WITH_AES_256_CBC_SHA256"673#define TLS1_RFC_DHE_RSA_WITH_AES_256_SHA256 "TLS_DHE_RSA_WITH_AES_256_CBC_SHA256"674#define TLS1_RFC_ADH_WITH_AES_128_SHA256 "TLS_DH_anon_WITH_AES_128_CBC_SHA256"675#define TLS1_RFC_ADH_WITH_AES_256_SHA256 "TLS_DH_anon_WITH_AES_256_CBC_SHA256"676#define TLS1_RFC_RSA_WITH_AES_128_GCM_SHA256 "TLS_RSA_WITH_AES_128_GCM_SHA256"677#define TLS1_RFC_RSA_WITH_AES_256_GCM_SHA384 "TLS_RSA_WITH_AES_256_GCM_SHA384"678#define TLS1_RFC_DHE_RSA_WITH_AES_128_GCM_SHA256 "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256"679#define TLS1_RFC_DHE_RSA_WITH_AES_256_GCM_SHA384 "TLS_DHE_RSA_WITH_AES_256_GCM_SHA384"680#define TLS1_RFC_DHE_DSS_WITH_AES_128_GCM_SHA256 "TLS_DHE_DSS_WITH_AES_128_GCM_SHA256"681#define TLS1_RFC_DHE_DSS_WITH_AES_256_GCM_SHA384 "TLS_DHE_DSS_WITH_AES_256_GCM_SHA384"682#define TLS1_RFC_ADH_WITH_AES_128_GCM_SHA256 "TLS_DH_anon_WITH_AES_128_GCM_SHA256"683#define TLS1_RFC_ADH_WITH_AES_256_GCM_SHA384 "TLS_DH_anon_WITH_AES_256_GCM_SHA384"684#define TLS1_RFC_RSA_WITH_AES_128_CCM "TLS_RSA_WITH_AES_128_CCM"685#define TLS1_RFC_RSA_WITH_AES_256_CCM "TLS_RSA_WITH_AES_256_CCM"686#define TLS1_RFC_DHE_RSA_WITH_AES_128_CCM "TLS_DHE_RSA_WITH_AES_128_CCM"687#define TLS1_RFC_DHE_RSA_WITH_AES_256_CCM "TLS_DHE_RSA_WITH_AES_256_CCM"688#define TLS1_RFC_RSA_WITH_AES_128_CCM_8 "TLS_RSA_WITH_AES_128_CCM_8"689#define TLS1_RFC_RSA_WITH_AES_256_CCM_8 "TLS_RSA_WITH_AES_256_CCM_8"690#define TLS1_RFC_DHE_RSA_WITH_AES_128_CCM_8 "TLS_DHE_RSA_WITH_AES_128_CCM_8"691#define TLS1_RFC_DHE_RSA_WITH_AES_256_CCM_8 "TLS_DHE_RSA_WITH_AES_256_CCM_8"692#define TLS1_RFC_PSK_WITH_AES_128_CCM "TLS_PSK_WITH_AES_128_CCM"693#define TLS1_RFC_PSK_WITH_AES_256_CCM "TLS_PSK_WITH_AES_256_CCM"694#define TLS1_RFC_DHE_PSK_WITH_AES_128_CCM "TLS_DHE_PSK_WITH_AES_128_CCM"695#define TLS1_RFC_DHE_PSK_WITH_AES_256_CCM "TLS_DHE_PSK_WITH_AES_256_CCM"696#define TLS1_RFC_PSK_WITH_AES_128_CCM_8 "TLS_PSK_WITH_AES_128_CCM_8"697#define TLS1_RFC_PSK_WITH_AES_256_CCM_8 "TLS_PSK_WITH_AES_256_CCM_8"698#define TLS1_RFC_DHE_PSK_WITH_AES_128_CCM_8 "TLS_PSK_DHE_WITH_AES_128_CCM_8"699#define TLS1_RFC_DHE_PSK_WITH_AES_256_CCM_8 "TLS_PSK_DHE_WITH_AES_256_CCM_8"700#define TLS1_RFC_ECDHE_ECDSA_WITH_AES_128_CCM "TLS_ECDHE_ECDSA_WITH_AES_128_CCM"701#define TLS1_RFC_ECDHE_ECDSA_WITH_AES_256_CCM "TLS_ECDHE_ECDSA_WITH_AES_256_CCM"702#define TLS1_RFC_ECDHE_ECDSA_WITH_AES_128_CCM_8 "TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8"703#define TLS1_RFC_ECDHE_ECDSA_WITH_AES_256_CCM_8 "TLS_ECDHE_ECDSA_WITH_AES_256_CCM_8"704#define TLS1_3_RFC_AES_128_GCM_SHA256 "TLS_AES_128_GCM_SHA256"705#define TLS1_3_RFC_AES_256_GCM_SHA384 "TLS_AES_256_GCM_SHA384"706#define TLS1_3_RFC_CHACHA20_POLY1305_SHA256 "TLS_CHACHA20_POLY1305_SHA256"707#define TLS1_3_RFC_SHA256_SHA256 "TLS_SHA256_SHA256"708#define TLS1_3_RFC_SHA384_SHA384 "TLS_SHA384_SHA384"709#define TLS1_3_RFC_AES_128_CCM_SHA256 "TLS_AES_128_CCM_SHA256"710#define TLS1_3_RFC_AES_128_CCM_8_SHA256 "TLS_AES_128_CCM_8_SHA256"711#define TLS1_RFC_ECDHE_ECDSA_WITH_NULL_SHA "TLS_ECDHE_ECDSA_WITH_NULL_SHA"712#define TLS1_RFC_ECDHE_ECDSA_WITH_DES_192_CBC3_SHA "TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA"713#define TLS1_RFC_ECDHE_ECDSA_WITH_AES_128_CBC_SHA "TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA"714#define TLS1_RFC_ECDHE_ECDSA_WITH_AES_256_CBC_SHA "TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA"715#define TLS1_RFC_ECDHE_RSA_WITH_NULL_SHA "TLS_ECDHE_RSA_WITH_NULL_SHA"716#define TLS1_RFC_ECDHE_RSA_WITH_DES_192_CBC3_SHA "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA"717#define TLS1_RFC_ECDHE_RSA_WITH_AES_128_CBC_SHA "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA"718#define TLS1_RFC_ECDHE_RSA_WITH_AES_256_CBC_SHA "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA"719#define TLS1_RFC_ECDH_anon_WITH_NULL_SHA "TLS_ECDH_anon_WITH_NULL_SHA"720#define TLS1_RFC_ECDH_anon_WITH_DES_192_CBC3_SHA "TLS_ECDH_anon_WITH_3DES_EDE_CBC_SHA"721#define TLS1_RFC_ECDH_anon_WITH_AES_128_CBC_SHA "TLS_ECDH_anon_WITH_AES_128_CBC_SHA"722#define TLS1_RFC_ECDH_anon_WITH_AES_256_CBC_SHA "TLS_ECDH_anon_WITH_AES_256_CBC_SHA"723#define TLS1_RFC_ECDHE_ECDSA_WITH_AES_128_SHA256 "TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256"724#define TLS1_RFC_ECDHE_ECDSA_WITH_AES_256_SHA384 "TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384"725#define TLS1_RFC_ECDHE_RSA_WITH_AES_128_SHA256 "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256"726#define TLS1_RFC_ECDHE_RSA_WITH_AES_256_SHA384 "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384"727#define TLS1_RFC_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 "TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256"728#define TLS1_RFC_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 "TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384"729#define TLS1_RFC_ECDHE_RSA_WITH_AES_128_GCM_SHA256 "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256"730#define TLS1_RFC_ECDHE_RSA_WITH_AES_256_GCM_SHA384 "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384"731#define TLS1_RFC_PSK_WITH_NULL_SHA "TLS_PSK_WITH_NULL_SHA"732#define TLS1_RFC_DHE_PSK_WITH_NULL_SHA "TLS_DHE_PSK_WITH_NULL_SHA"733#define TLS1_RFC_RSA_PSK_WITH_NULL_SHA "TLS_RSA_PSK_WITH_NULL_SHA"734#define TLS1_RFC_PSK_WITH_3DES_EDE_CBC_SHA "TLS_PSK_WITH_3DES_EDE_CBC_SHA"735#define TLS1_RFC_PSK_WITH_AES_128_CBC_SHA "TLS_PSK_WITH_AES_128_CBC_SHA"736#define TLS1_RFC_PSK_WITH_AES_256_CBC_SHA "TLS_PSK_WITH_AES_256_CBC_SHA"737#define TLS1_RFC_DHE_PSK_WITH_3DES_EDE_CBC_SHA "TLS_DHE_PSK_WITH_3DES_EDE_CBC_SHA"738#define TLS1_RFC_DHE_PSK_WITH_AES_128_CBC_SHA "TLS_DHE_PSK_WITH_AES_128_CBC_SHA"739#define TLS1_RFC_DHE_PSK_WITH_AES_256_CBC_SHA "TLS_DHE_PSK_WITH_AES_256_CBC_SHA"740#define TLS1_RFC_RSA_PSK_WITH_3DES_EDE_CBC_SHA "TLS_RSA_PSK_WITH_3DES_EDE_CBC_SHA"741#define TLS1_RFC_RSA_PSK_WITH_AES_128_CBC_SHA "TLS_RSA_PSK_WITH_AES_128_CBC_SHA"742#define TLS1_RFC_RSA_PSK_WITH_AES_256_CBC_SHA "TLS_RSA_PSK_WITH_AES_256_CBC_SHA"743#define TLS1_RFC_PSK_WITH_AES_128_GCM_SHA256 "TLS_PSK_WITH_AES_128_GCM_SHA256"744#define TLS1_RFC_PSK_WITH_AES_256_GCM_SHA384 "TLS_PSK_WITH_AES_256_GCM_SHA384"745#define TLS1_RFC_DHE_PSK_WITH_AES_128_GCM_SHA256 "TLS_DHE_PSK_WITH_AES_128_GCM_SHA256"746#define TLS1_RFC_DHE_PSK_WITH_AES_256_GCM_SHA384 "TLS_DHE_PSK_WITH_AES_256_GCM_SHA384"747#define TLS1_RFC_RSA_PSK_WITH_AES_128_GCM_SHA256 "TLS_RSA_PSK_WITH_AES_128_GCM_SHA256"748#define TLS1_RFC_RSA_PSK_WITH_AES_256_GCM_SHA384 "TLS_RSA_PSK_WITH_AES_256_GCM_SHA384"749#define TLS1_RFC_PSK_WITH_AES_128_CBC_SHA256 "TLS_PSK_WITH_AES_128_CBC_SHA256"750#define TLS1_RFC_PSK_WITH_AES_256_CBC_SHA384 "TLS_PSK_WITH_AES_256_CBC_SHA384"751#define TLS1_RFC_PSK_WITH_NULL_SHA256 "TLS_PSK_WITH_NULL_SHA256"752#define TLS1_RFC_PSK_WITH_NULL_SHA384 "TLS_PSK_WITH_NULL_SHA384"753#define TLS1_RFC_DHE_PSK_WITH_AES_128_CBC_SHA256 "TLS_DHE_PSK_WITH_AES_128_CBC_SHA256"754#define TLS1_RFC_DHE_PSK_WITH_AES_256_CBC_SHA384 "TLS_DHE_PSK_WITH_AES_256_CBC_SHA384"755#define TLS1_RFC_DHE_PSK_WITH_NULL_SHA256 "TLS_DHE_PSK_WITH_NULL_SHA256"756#define TLS1_RFC_DHE_PSK_WITH_NULL_SHA384 "TLS_DHE_PSK_WITH_NULL_SHA384"757#define TLS1_RFC_RSA_PSK_WITH_AES_128_CBC_SHA256 "TLS_RSA_PSK_WITH_AES_128_CBC_SHA256"758#define TLS1_RFC_RSA_PSK_WITH_AES_256_CBC_SHA384 "TLS_RSA_PSK_WITH_AES_256_CBC_SHA384"759#define TLS1_RFC_RSA_PSK_WITH_NULL_SHA256 "TLS_RSA_PSK_WITH_NULL_SHA256"760#define TLS1_RFC_RSA_PSK_WITH_NULL_SHA384 "TLS_RSA_PSK_WITH_NULL_SHA384"761#define TLS1_RFC_ECDHE_PSK_WITH_3DES_EDE_CBC_SHA "TLS_ECDHE_PSK_WITH_3DES_EDE_CBC_SHA"762#define TLS1_RFC_ECDHE_PSK_WITH_AES_128_CBC_SHA "TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA"763#define TLS1_RFC_ECDHE_PSK_WITH_AES_256_CBC_SHA "TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA"764#define TLS1_RFC_ECDHE_PSK_WITH_AES_128_CBC_SHA256 "TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256"765#define TLS1_RFC_ECDHE_PSK_WITH_AES_256_CBC_SHA384 "TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA384"766#define TLS1_RFC_ECDHE_PSK_WITH_NULL_SHA "TLS_ECDHE_PSK_WITH_NULL_SHA"767#define TLS1_RFC_ECDHE_PSK_WITH_NULL_SHA256 "TLS_ECDHE_PSK_WITH_NULL_SHA256"768#define TLS1_RFC_ECDHE_PSK_WITH_NULL_SHA384 "TLS_ECDHE_PSK_WITH_NULL_SHA384"769#define TLS1_RFC_SRP_SHA_WITH_3DES_EDE_CBC_SHA "TLS_SRP_SHA_WITH_3DES_EDE_CBC_SHA"770#define TLS1_RFC_SRP_SHA_RSA_WITH_3DES_EDE_CBC_SHA "TLS_SRP_SHA_RSA_WITH_3DES_EDE_CBC_SHA"771#define TLS1_RFC_SRP_SHA_DSS_WITH_3DES_EDE_CBC_SHA "TLS_SRP_SHA_DSS_WITH_3DES_EDE_CBC_SHA"772#define TLS1_RFC_SRP_SHA_WITH_AES_128_CBC_SHA "TLS_SRP_SHA_WITH_AES_128_CBC_SHA"773#define TLS1_RFC_SRP_SHA_RSA_WITH_AES_128_CBC_SHA "TLS_SRP_SHA_RSA_WITH_AES_128_CBC_SHA"774#define TLS1_RFC_SRP_SHA_DSS_WITH_AES_128_CBC_SHA "TLS_SRP_SHA_DSS_WITH_AES_128_CBC_SHA"775#define TLS1_RFC_SRP_SHA_WITH_AES_256_CBC_SHA "TLS_SRP_SHA_WITH_AES_256_CBC_SHA"776#define TLS1_RFC_SRP_SHA_RSA_WITH_AES_256_CBC_SHA "TLS_SRP_SHA_RSA_WITH_AES_256_CBC_SHA"777#define TLS1_RFC_SRP_SHA_DSS_WITH_AES_256_CBC_SHA "TLS_SRP_SHA_DSS_WITH_AES_256_CBC_SHA"778#define TLS1_RFC_DHE_RSA_WITH_CHACHA20_POLY1305 "TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256"779#define TLS1_RFC_ECDHE_RSA_WITH_CHACHA20_POLY1305 "TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256"780#define TLS1_RFC_ECDHE_ECDSA_WITH_CHACHA20_POLY1305 "TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256"781#define TLS1_RFC_PSK_WITH_CHACHA20_POLY1305 "TLS_PSK_WITH_CHACHA20_POLY1305_SHA256"782#define TLS1_RFC_ECDHE_PSK_WITH_CHACHA20_POLY1305 "TLS_ECDHE_PSK_WITH_CHACHA20_POLY1305_SHA256"783#define TLS1_RFC_DHE_PSK_WITH_CHACHA20_POLY1305 "TLS_DHE_PSK_WITH_CHACHA20_POLY1305_SHA256"784#define TLS1_RFC_RSA_PSK_WITH_CHACHA20_POLY1305 "TLS_RSA_PSK_WITH_CHACHA20_POLY1305_SHA256"785#define TLS1_RFC_RSA_WITH_CAMELLIA_128_CBC_SHA256 "TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256"786#define TLS1_RFC_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA256 "TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA256"787#define TLS1_RFC_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 "TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256"788#define TLS1_RFC_ADH_WITH_CAMELLIA_128_CBC_SHA256 "TLS_DH_anon_WITH_CAMELLIA_128_CBC_SHA256"789#define TLS1_RFC_RSA_WITH_CAMELLIA_256_CBC_SHA256 "TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256"790#define TLS1_RFC_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA256 "TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA256"791#define TLS1_RFC_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256 "TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256"792#define TLS1_RFC_ADH_WITH_CAMELLIA_256_CBC_SHA256 "TLS_DH_anon_WITH_CAMELLIA_256_CBC_SHA256"793#define TLS1_RFC_RSA_WITH_CAMELLIA_256_CBC_SHA "TLS_RSA_WITH_CAMELLIA_256_CBC_SHA"794#define TLS1_RFC_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA "TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA"795#define TLS1_RFC_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA "TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA"796#define TLS1_RFC_ADH_WITH_CAMELLIA_256_CBC_SHA "TLS_DH_anon_WITH_CAMELLIA_256_CBC_SHA"797#define TLS1_RFC_RSA_WITH_CAMELLIA_128_CBC_SHA "TLS_RSA_WITH_CAMELLIA_128_CBC_SHA"798#define TLS1_RFC_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA "TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA"799#define TLS1_RFC_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA "TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA"800#define TLS1_RFC_ADH_WITH_CAMELLIA_128_CBC_SHA "TLS_DH_anon_WITH_CAMELLIA_128_CBC_SHA"801#define TLS1_RFC_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256 "TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256"802#define TLS1_RFC_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384 "TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384"803#define TLS1_RFC_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 "TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256"804#define TLS1_RFC_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384 "TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384"805#define TLS1_RFC_PSK_WITH_CAMELLIA_128_CBC_SHA256 "TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256"806#define TLS1_RFC_PSK_WITH_CAMELLIA_256_CBC_SHA384 "TLS_PSK_WITH_CAMELLIA_256_CBC_SHA384"807#define TLS1_RFC_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256 "TLS_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256"808#define TLS1_RFC_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384 "TLS_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384"809#define TLS1_RFC_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256 "TLS_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256"810#define TLS1_RFC_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384 "TLS_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384"811#define TLS1_RFC_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256 "TLS_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256"812#define TLS1_RFC_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384 "TLS_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384"813#define TLS1_RFC_RSA_WITH_SEED_SHA "TLS_RSA_WITH_SEED_CBC_SHA"814#define TLS1_RFC_DHE_DSS_WITH_SEED_SHA "TLS_DHE_DSS_WITH_SEED_CBC_SHA"815#define TLS1_RFC_DHE_RSA_WITH_SEED_SHA "TLS_DHE_RSA_WITH_SEED_CBC_SHA"816#define TLS1_RFC_ADH_WITH_SEED_SHA "TLS_DH_anon_WITH_SEED_CBC_SHA"817#define TLS1_RFC_ECDHE_PSK_WITH_RC4_128_SHA "TLS_ECDHE_PSK_WITH_RC4_128_SHA"818#define TLS1_RFC_ECDH_anon_WITH_RC4_128_SHA "TLS_ECDH_anon_WITH_RC4_128_SHA"819#define TLS1_RFC_ECDHE_ECDSA_WITH_RC4_128_SHA "TLS_ECDHE_ECDSA_WITH_RC4_128_SHA"820#define TLS1_RFC_ECDHE_RSA_WITH_RC4_128_SHA "TLS_ECDHE_RSA_WITH_RC4_128_SHA"821#define TLS1_RFC_PSK_WITH_RC4_128_SHA "TLS_PSK_WITH_RC4_128_SHA"822#define TLS1_RFC_RSA_PSK_WITH_RC4_128_SHA "TLS_RSA_PSK_WITH_RC4_128_SHA"823#define TLS1_RFC_DHE_PSK_WITH_RC4_128_SHA "TLS_DHE_PSK_WITH_RC4_128_SHA"824#define TLS1_RFC_RSA_WITH_ARIA_128_GCM_SHA256 "TLS_RSA_WITH_ARIA_128_GCM_SHA256"825#define TLS1_RFC_RSA_WITH_ARIA_256_GCM_SHA384 "TLS_RSA_WITH_ARIA_256_GCM_SHA384"826#define TLS1_RFC_DHE_RSA_WITH_ARIA_128_GCM_SHA256 "TLS_DHE_RSA_WITH_ARIA_128_GCM_SHA256"827#define TLS1_RFC_DHE_RSA_WITH_ARIA_256_GCM_SHA384 "TLS_DHE_RSA_WITH_ARIA_256_GCM_SHA384"828#define TLS1_RFC_DH_RSA_WITH_ARIA_128_GCM_SHA256 "TLS_DH_RSA_WITH_ARIA_128_GCM_SHA256"829#define TLS1_RFC_DH_RSA_WITH_ARIA_256_GCM_SHA384 "TLS_DH_RSA_WITH_ARIA_256_GCM_SHA384"830#define TLS1_RFC_DHE_DSS_WITH_ARIA_128_GCM_SHA256 "TLS_DHE_DSS_WITH_ARIA_128_GCM_SHA256"831#define TLS1_RFC_DHE_DSS_WITH_ARIA_256_GCM_SHA384 "TLS_DHE_DSS_WITH_ARIA_256_GCM_SHA384"832#define TLS1_RFC_DH_DSS_WITH_ARIA_128_GCM_SHA256 "TLS_DH_DSS_WITH_ARIA_128_GCM_SHA256"833#define TLS1_RFC_DH_DSS_WITH_ARIA_256_GCM_SHA384 "TLS_DH_DSS_WITH_ARIA_256_GCM_SHA384"834#define TLS1_RFC_DH_anon_WITH_ARIA_128_GCM_SHA256 "TLS_DH_anon_WITH_ARIA_128_GCM_SHA256"835#define TLS1_RFC_DH_anon_WITH_ARIA_256_GCM_SHA384 "TLS_DH_anon_WITH_ARIA_256_GCM_SHA384"836#define TLS1_RFC_ECDHE_ECDSA_WITH_ARIA_128_GCM_SHA256 "TLS_ECDHE_ECDSA_WITH_ARIA_128_GCM_SHA256"837#define TLS1_RFC_ECDHE_ECDSA_WITH_ARIA_256_GCM_SHA384 "TLS_ECDHE_ECDSA_WITH_ARIA_256_GCM_SHA384"838#define TLS1_RFC_ECDH_ECDSA_WITH_ARIA_128_GCM_SHA256 "TLS_ECDH_ECDSA_WITH_ARIA_128_GCM_SHA256"839#define TLS1_RFC_ECDH_ECDSA_WITH_ARIA_256_GCM_SHA384 "TLS_ECDH_ECDSA_WITH_ARIA_256_GCM_SHA384"840#define TLS1_RFC_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256 "TLS_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256"841#define TLS1_RFC_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384 "TLS_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384"842#define TLS1_RFC_ECDH_RSA_WITH_ARIA_128_GCM_SHA256 "TLS_ECDH_RSA_WITH_ARIA_128_GCM_SHA256"843#define TLS1_RFC_ECDH_RSA_WITH_ARIA_256_GCM_SHA384 "TLS_ECDH_RSA_WITH_ARIA_256_GCM_SHA384"844#define TLS1_RFC_PSK_WITH_ARIA_128_GCM_SHA256 "TLS_PSK_WITH_ARIA_128_GCM_SHA256"845#define TLS1_RFC_PSK_WITH_ARIA_256_GCM_SHA384 "TLS_PSK_WITH_ARIA_256_GCM_SHA384"846#define TLS1_RFC_DHE_PSK_WITH_ARIA_128_GCM_SHA256 "TLS_DHE_PSK_WITH_ARIA_128_GCM_SHA256"847#define TLS1_RFC_DHE_PSK_WITH_ARIA_256_GCM_SHA384 "TLS_DHE_PSK_WITH_ARIA_256_GCM_SHA384"848#define TLS1_RFC_RSA_PSK_WITH_ARIA_128_GCM_SHA256 "TLS_RSA_PSK_WITH_ARIA_128_GCM_SHA256"849#define TLS1_RFC_RSA_PSK_WITH_ARIA_256_GCM_SHA384 "TLS_RSA_PSK_WITH_ARIA_256_GCM_SHA384"850 851/*852 * XXX Backward compatibility alert: Older versions of OpenSSL gave some DHE853 * ciphers names with "EDH" instead of "DHE".  Going forward, we should be854 * using DHE everywhere, though we may indefinitely maintain aliases for855 * users or configurations that used "EDH"856 */857#define TLS1_TXT_DHE_DSS_WITH_RC4_128_SHA "DHE-DSS-RC4-SHA"858 859#define TLS1_TXT_PSK_WITH_NULL_SHA "PSK-NULL-SHA"860#define TLS1_TXT_DHE_PSK_WITH_NULL_SHA "DHE-PSK-NULL-SHA"861#define TLS1_TXT_RSA_PSK_WITH_NULL_SHA "RSA-PSK-NULL-SHA"862 863/* AES ciphersuites from RFC3268 */864#define TLS1_TXT_RSA_WITH_AES_128_SHA "AES128-SHA"865#define TLS1_TXT_DH_DSS_WITH_AES_128_SHA "DH-DSS-AES128-SHA"866#define TLS1_TXT_DH_RSA_WITH_AES_128_SHA "DH-RSA-AES128-SHA"867#define TLS1_TXT_DHE_DSS_WITH_AES_128_SHA "DHE-DSS-AES128-SHA"868#define TLS1_TXT_DHE_RSA_WITH_AES_128_SHA "DHE-RSA-AES128-SHA"869#define TLS1_TXT_ADH_WITH_AES_128_SHA "ADH-AES128-SHA"870 871#define TLS1_TXT_RSA_WITH_AES_256_SHA "AES256-SHA"872#define TLS1_TXT_DH_DSS_WITH_AES_256_SHA "DH-DSS-AES256-SHA"873#define TLS1_TXT_DH_RSA_WITH_AES_256_SHA "DH-RSA-AES256-SHA"874#define TLS1_TXT_DHE_DSS_WITH_AES_256_SHA "DHE-DSS-AES256-SHA"875#define TLS1_TXT_DHE_RSA_WITH_AES_256_SHA "DHE-RSA-AES256-SHA"876#define TLS1_TXT_ADH_WITH_AES_256_SHA "ADH-AES256-SHA"877 878/* ECC ciphersuites from RFC4492 */879#define TLS1_TXT_ECDH_ECDSA_WITH_NULL_SHA "ECDH-ECDSA-NULL-SHA"880#define TLS1_TXT_ECDH_ECDSA_WITH_RC4_128_SHA "ECDH-ECDSA-RC4-SHA"881#define TLS1_TXT_ECDH_ECDSA_WITH_DES_192_CBC3_SHA "ECDH-ECDSA-DES-CBC3-SHA"882#define TLS1_TXT_ECDH_ECDSA_WITH_AES_128_CBC_SHA "ECDH-ECDSA-AES128-SHA"883#define TLS1_TXT_ECDH_ECDSA_WITH_AES_256_CBC_SHA "ECDH-ECDSA-AES256-SHA"884 885#define TLS1_TXT_ECDHE_ECDSA_WITH_NULL_SHA "ECDHE-ECDSA-NULL-SHA"886#define TLS1_TXT_ECDHE_ECDSA_WITH_RC4_128_SHA "ECDHE-ECDSA-RC4-SHA"887#define TLS1_TXT_ECDHE_ECDSA_WITH_DES_192_CBC3_SHA "ECDHE-ECDSA-DES-CBC3-SHA"888#define TLS1_TXT_ECDHE_ECDSA_WITH_AES_128_CBC_SHA "ECDHE-ECDSA-AES128-SHA"889#define TLS1_TXT_ECDHE_ECDSA_WITH_AES_256_CBC_SHA "ECDHE-ECDSA-AES256-SHA"890 891#define TLS1_TXT_ECDH_RSA_WITH_NULL_SHA "ECDH-RSA-NULL-SHA"892#define TLS1_TXT_ECDH_RSA_WITH_RC4_128_SHA "ECDH-RSA-RC4-SHA"893#define TLS1_TXT_ECDH_RSA_WITH_DES_192_CBC3_SHA "ECDH-RSA-DES-CBC3-SHA"894#define TLS1_TXT_ECDH_RSA_WITH_AES_128_CBC_SHA "ECDH-RSA-AES128-SHA"895#define TLS1_TXT_ECDH_RSA_WITH_AES_256_CBC_SHA "ECDH-RSA-AES256-SHA"896 897#define TLS1_TXT_ECDHE_RSA_WITH_NULL_SHA "ECDHE-RSA-NULL-SHA"898#define TLS1_TXT_ECDHE_RSA_WITH_RC4_128_SHA "ECDHE-RSA-RC4-SHA"899#define TLS1_TXT_ECDHE_RSA_WITH_DES_192_CBC3_SHA "ECDHE-RSA-DES-CBC3-SHA"900#define TLS1_TXT_ECDHE_RSA_WITH_AES_128_CBC_SHA "ECDHE-RSA-AES128-SHA"901#define TLS1_TXT_ECDHE_RSA_WITH_AES_256_CBC_SHA "ECDHE-RSA-AES256-SHA"902 903#define TLS1_TXT_ECDH_anon_WITH_NULL_SHA "AECDH-NULL-SHA"904#define TLS1_TXT_ECDH_anon_WITH_RC4_128_SHA "AECDH-RC4-SHA"905#define TLS1_TXT_ECDH_anon_WITH_DES_192_CBC3_SHA "AECDH-DES-CBC3-SHA"906#define TLS1_TXT_ECDH_anon_WITH_AES_128_CBC_SHA "AECDH-AES128-SHA"907#define TLS1_TXT_ECDH_anon_WITH_AES_256_CBC_SHA "AECDH-AES256-SHA"908 909/* PSK ciphersuites from RFC 4279 */910#define TLS1_TXT_PSK_WITH_RC4_128_SHA "PSK-RC4-SHA"911#define TLS1_TXT_PSK_WITH_3DES_EDE_CBC_SHA "PSK-3DES-EDE-CBC-SHA"912#define TLS1_TXT_PSK_WITH_AES_128_CBC_SHA "PSK-AES128-CBC-SHA"913#define TLS1_TXT_PSK_WITH_AES_256_CBC_SHA "PSK-AES256-CBC-SHA"914 915#define TLS1_TXT_DHE_PSK_WITH_RC4_128_SHA "DHE-PSK-RC4-SHA"916#define TLS1_TXT_DHE_PSK_WITH_3DES_EDE_CBC_SHA "DHE-PSK-3DES-EDE-CBC-SHA"917#define TLS1_TXT_DHE_PSK_WITH_AES_128_CBC_SHA "DHE-PSK-AES128-CBC-SHA"918#define TLS1_TXT_DHE_PSK_WITH_AES_256_CBC_SHA "DHE-PSK-AES256-CBC-SHA"919#define TLS1_TXT_RSA_PSK_WITH_RC4_128_SHA "RSA-PSK-RC4-SHA"920#define TLS1_TXT_RSA_PSK_WITH_3DES_EDE_CBC_SHA "RSA-PSK-3DES-EDE-CBC-SHA"921#define TLS1_TXT_RSA_PSK_WITH_AES_128_CBC_SHA "RSA-PSK-AES128-CBC-SHA"922#define TLS1_TXT_RSA_PSK_WITH_AES_256_CBC_SHA "RSA-PSK-AES256-CBC-SHA"923 924/* PSK ciphersuites from RFC 5487 */925#define TLS1_TXT_PSK_WITH_AES_128_GCM_SHA256 "PSK-AES128-GCM-SHA256"926#define TLS1_TXT_PSK_WITH_AES_256_GCM_SHA384 "PSK-AES256-GCM-SHA384"927#define TLS1_TXT_DHE_PSK_WITH_AES_128_GCM_SHA256 "DHE-PSK-AES128-GCM-SHA256"928#define TLS1_TXT_DHE_PSK_WITH_AES_256_GCM_SHA384 "DHE-PSK-AES256-GCM-SHA384"929#define TLS1_TXT_RSA_PSK_WITH_AES_128_GCM_SHA256 "RSA-PSK-AES128-GCM-SHA256"930#define TLS1_TXT_RSA_PSK_WITH_AES_256_GCM_SHA384 "RSA-PSK-AES256-GCM-SHA384"931 932#define TLS1_TXT_PSK_WITH_AES_128_CBC_SHA256 "PSK-AES128-CBC-SHA256"933#define TLS1_TXT_PSK_WITH_AES_256_CBC_SHA384 "PSK-AES256-CBC-SHA384"934#define TLS1_TXT_PSK_WITH_NULL_SHA256 "PSK-NULL-SHA256"935#define TLS1_TXT_PSK_WITH_NULL_SHA384 "PSK-NULL-SHA384"936 937#define TLS1_TXT_DHE_PSK_WITH_AES_128_CBC_SHA256 "DHE-PSK-AES128-CBC-SHA256"938#define TLS1_TXT_DHE_PSK_WITH_AES_256_CBC_SHA384 "DHE-PSK-AES256-CBC-SHA384"939#define TLS1_TXT_DHE_PSK_WITH_NULL_SHA256 "DHE-PSK-NULL-SHA256"940#define TLS1_TXT_DHE_PSK_WITH_NULL_SHA384 "DHE-PSK-NULL-SHA384"941 942#define TLS1_TXT_RSA_PSK_WITH_AES_128_CBC_SHA256 "RSA-PSK-AES128-CBC-SHA256"943#define TLS1_TXT_RSA_PSK_WITH_AES_256_CBC_SHA384 "RSA-PSK-AES256-CBC-SHA384"944#define TLS1_TXT_RSA_PSK_WITH_NULL_SHA256 "RSA-PSK-NULL-SHA256"945#define TLS1_TXT_RSA_PSK_WITH_NULL_SHA384 "RSA-PSK-NULL-SHA384"946 947/* SRP ciphersuite from RFC 5054 */948#define TLS1_TXT_SRP_SHA_WITH_3DES_EDE_CBC_SHA "SRP-3DES-EDE-CBC-SHA"949#define TLS1_TXT_SRP_SHA_RSA_WITH_3DES_EDE_CBC_SHA "SRP-RSA-3DES-EDE-CBC-SHA"950#define TLS1_TXT_SRP_SHA_DSS_WITH_3DES_EDE_CBC_SHA "SRP-DSS-3DES-EDE-CBC-SHA"951#define TLS1_TXT_SRP_SHA_WITH_AES_128_CBC_SHA "SRP-AES-128-CBC-SHA"952#define TLS1_TXT_SRP_SHA_RSA_WITH_AES_128_CBC_SHA "SRP-RSA-AES-128-CBC-SHA"953#define TLS1_TXT_SRP_SHA_DSS_WITH_AES_128_CBC_SHA "SRP-DSS-AES-128-CBC-SHA"954#define TLS1_TXT_SRP_SHA_WITH_AES_256_CBC_SHA "SRP-AES-256-CBC-SHA"955#define TLS1_TXT_SRP_SHA_RSA_WITH_AES_256_CBC_SHA "SRP-RSA-AES-256-CBC-SHA"956#define TLS1_TXT_SRP_SHA_DSS_WITH_AES_256_CBC_SHA "SRP-DSS-AES-256-CBC-SHA"957 958/* Camellia ciphersuites from RFC4132 */959#define TLS1_TXT_RSA_WITH_CAMELLIA_128_CBC_SHA "CAMELLIA128-SHA"960#define TLS1_TXT_DH_DSS_WITH_CAMELLIA_128_CBC_SHA "DH-DSS-CAMELLIA128-SHA"961#define TLS1_TXT_DH_RSA_WITH_CAMELLIA_128_CBC_SHA "DH-RSA-CAMELLIA128-SHA"962#define TLS1_TXT_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA "DHE-DSS-CAMELLIA128-SHA"963#define TLS1_TXT_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA "DHE-RSA-CAMELLIA128-SHA"964#define TLS1_TXT_ADH_WITH_CAMELLIA_128_CBC_SHA "ADH-CAMELLIA128-SHA"965 966#define TLS1_TXT_RSA_WITH_CAMELLIA_256_CBC_SHA "CAMELLIA256-SHA"967#define TLS1_TXT_DH_DSS_WITH_CAMELLIA_256_CBC_SHA "DH-DSS-CAMELLIA256-SHA"968#define TLS1_TXT_DH_RSA_WITH_CAMELLIA_256_CBC_SHA "DH-RSA-CAMELLIA256-SHA"969#define TLS1_TXT_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA "DHE-DSS-CAMELLIA256-SHA"970#define TLS1_TXT_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA "DHE-RSA-CAMELLIA256-SHA"971#define TLS1_TXT_ADH_WITH_CAMELLIA_256_CBC_SHA "ADH-CAMELLIA256-SHA"972 973/* TLS 1.2 Camellia SHA-256 ciphersuites from RFC5932 */974#define TLS1_TXT_RSA_WITH_CAMELLIA_128_CBC_SHA256 "CAMELLIA128-SHA256"975#define TLS1_TXT_DH_DSS_WITH_CAMELLIA_128_CBC_SHA256 "DH-DSS-CAMELLIA128-SHA256"976#define TLS1_TXT_DH_RSA_WITH_CAMELLIA_128_CBC_SHA256 "DH-RSA-CAMELLIA128-SHA256"977#define TLS1_TXT_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA256 "DHE-DSS-CAMELLIA128-SHA256"978#define TLS1_TXT_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 "DHE-RSA-CAMELLIA128-SHA256"979#define TLS1_TXT_ADH_WITH_CAMELLIA_128_CBC_SHA256 "ADH-CAMELLIA128-SHA256"980 981#define TLS1_TXT_RSA_WITH_CAMELLIA_256_CBC_SHA256 "CAMELLIA256-SHA256"982#define TLS1_TXT_DH_DSS_WITH_CAMELLIA_256_CBC_SHA256 "DH-DSS-CAMELLIA256-SHA256"983#define TLS1_TXT_DH_RSA_WITH_CAMELLIA_256_CBC_SHA256 "DH-RSA-CAMELLIA256-SHA256"984#define TLS1_TXT_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA256 "DHE-DSS-CAMELLIA256-SHA256"985#define TLS1_TXT_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256 "DHE-RSA-CAMELLIA256-SHA256"986#define TLS1_TXT_ADH_WITH_CAMELLIA_256_CBC_SHA256 "ADH-CAMELLIA256-SHA256"987 988#define TLS1_TXT_PSK_WITH_CAMELLIA_128_CBC_SHA256 "PSK-CAMELLIA128-SHA256"989#define TLS1_TXT_PSK_WITH_CAMELLIA_256_CBC_SHA384 "PSK-CAMELLIA256-SHA384"990#define TLS1_TXT_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256 "DHE-PSK-CAMELLIA128-SHA256"991#define TLS1_TXT_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384 "DHE-PSK-CAMELLIA256-SHA384"992#define TLS1_TXT_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256 "RSA-PSK-CAMELLIA128-SHA256"993#define TLS1_TXT_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384 "RSA-PSK-CAMELLIA256-SHA384"994#define TLS1_TXT_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256 "ECDHE-PSK-CAMELLIA128-SHA256"995#define TLS1_TXT_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384 "ECDHE-PSK-CAMELLIA256-SHA384"996 997/* SEED ciphersuites from RFC4162 */998#define TLS1_TXT_RSA_WITH_SEED_SHA "SEED-SHA"999#define TLS1_TXT_DH_DSS_WITH_SEED_SHA "DH-DSS-SEED-SHA"1000#define TLS1_TXT_DH_RSA_WITH_SEED_SHA "DH-RSA-SEED-SHA"1001#define TLS1_TXT_DHE_DSS_WITH_SEED_SHA "DHE-DSS-SEED-SHA"1002#define TLS1_TXT_DHE_RSA_WITH_SEED_SHA "DHE-RSA-SEED-SHA"1003#define TLS1_TXT_ADH_WITH_SEED_SHA "ADH-SEED-SHA"1004 1005/* TLS v1.2 ciphersuites */1006#define TLS1_TXT_RSA_WITH_NULL_SHA256 "NULL-SHA256"1007#define TLS1_TXT_RSA_WITH_AES_128_SHA256 "AES128-SHA256"1008#define TLS1_TXT_RSA_WITH_AES_256_SHA256 "AES256-SHA256"1009#define TLS1_TXT_DH_DSS_WITH_AES_128_SHA256 "DH-DSS-AES128-SHA256"1010#define TLS1_TXT_DH_RSA_WITH_AES_128_SHA256 "DH-RSA-AES128-SHA256"1011#define TLS1_TXT_DHE_DSS_WITH_AES_128_SHA256 "DHE-DSS-AES128-SHA256"1012#define TLS1_TXT_DHE_RSA_WITH_AES_128_SHA256 "DHE-RSA-AES128-SHA256"1013#define TLS1_TXT_DH_DSS_WITH_AES_256_SHA256 "DH-DSS-AES256-SHA256"1014#define TLS1_TXT_DH_RSA_WITH_AES_256_SHA256 "DH-RSA-AES256-SHA256"1015#define TLS1_TXT_DHE_DSS_WITH_AES_256_SHA256 "DHE-DSS-AES256-SHA256"1016#define TLS1_TXT_DHE_RSA_WITH_AES_256_SHA256 "DHE-RSA-AES256-SHA256"1017#define TLS1_TXT_ADH_WITH_AES_128_SHA256 "ADH-AES128-SHA256"1018#define TLS1_TXT_ADH_WITH_AES_256_SHA256 "ADH-AES256-SHA256"1019 1020/* TLS v1.2 GCM ciphersuites from RFC5288 */1021#define TLS1_TXT_RSA_WITH_AES_128_GCM_SHA256 "AES128-GCM-SHA256"1022#define TLS1_TXT_RSA_WITH_AES_256_GCM_SHA384 "AES256-GCM-SHA384"1023#define TLS1_TXT_DHE_RSA_WITH_AES_128_GCM_SHA256 "DHE-RSA-AES128-GCM-SHA256"1024#define TLS1_TXT_DHE_RSA_WITH_AES_256_GCM_SHA384 "DHE-RSA-AES256-GCM-SHA384"1025#define TLS1_TXT_DH_RSA_WITH_AES_128_GCM_SHA256 "DH-RSA-AES128-GCM-SHA256"1026#define TLS1_TXT_DH_RSA_WITH_AES_256_GCM_SHA384 "DH-RSA-AES256-GCM-SHA384"1027#define TLS1_TXT_DHE_DSS_WITH_AES_128_GCM_SHA256 "DHE-DSS-AES128-GCM-SHA256"1028#define TLS1_TXT_DHE_DSS_WITH_AES_256_GCM_SHA384 "DHE-DSS-AES256-GCM-SHA384"1029#define TLS1_TXT_DH_DSS_WITH_AES_128_GCM_SHA256 "DH-DSS-AES128-GCM-SHA256"1030#define TLS1_TXT_DH_DSS_WITH_AES_256_GCM_SHA384 "DH-DSS-AES256-GCM-SHA384"1031#define TLS1_TXT_ADH_WITH_AES_128_GCM_SHA256 "ADH-AES128-GCM-SHA256"1032#define TLS1_TXT_ADH_WITH_AES_256_GCM_SHA384 "ADH-AES256-GCM-SHA384"1033 1034/* CCM ciphersuites from RFC6655 */1035#define TLS1_TXT_RSA_WITH_AES_128_CCM "AES128-CCM"1036#define TLS1_TXT_RSA_WITH_AES_256_CCM "AES256-CCM"1037#define TLS1_TXT_DHE_RSA_WITH_AES_128_CCM "DHE-RSA-AES128-CCM"1038#define TLS1_TXT_DHE_RSA_WITH_AES_256_CCM "DHE-RSA-AES256-CCM"1039 1040#define TLS1_TXT_RSA_WITH_AES_128_CCM_8 "AES128-CCM8"1041#define TLS1_TXT_RSA_WITH_AES_256_CCM_8 "AES256-CCM8"1042#define TLS1_TXT_DHE_RSA_WITH_AES_128_CCM_8 "DHE-RSA-AES128-CCM8"1043#define TLS1_TXT_DHE_RSA_WITH_AES_256_CCM_8 "DHE-RSA-AES256-CCM8"1044 1045#define TLS1_TXT_PSK_WITH_AES_128_CCM "PSK-AES128-CCM"1046#define TLS1_TXT_PSK_WITH_AES_256_CCM "PSK-AES256-CCM"1047#define TLS1_TXT_DHE_PSK_WITH_AES_128_CCM "DHE-PSK-AES128-CCM"1048#define TLS1_TXT_DHE_PSK_WITH_AES_256_CCM "DHE-PSK-AES256-CCM"1049 1050#define TLS1_TXT_PSK_WITH_AES_128_CCM_8 "PSK-AES128-CCM8"1051#define TLS1_TXT_PSK_WITH_AES_256_CCM_8 "PSK-AES256-CCM8"1052#define TLS1_TXT_DHE_PSK_WITH_AES_128_CCM_8 "DHE-PSK-AES128-CCM8"1053#define TLS1_TXT_DHE_PSK_WITH_AES_256_CCM_8 "DHE-PSK-AES256-CCM8"1054 1055/* CCM ciphersuites from RFC7251 */1056#define TLS1_TXT_ECDHE_ECDSA_WITH_AES_128_CCM "ECDHE-ECDSA-AES128-CCM"1057#define TLS1_TXT_ECDHE_ECDSA_WITH_AES_256_CCM "ECDHE-ECDSA-AES256-CCM"1058#define TLS1_TXT_ECDHE_ECDSA_WITH_AES_128_CCM_8 "ECDHE-ECDSA-AES128-CCM8"1059#define TLS1_TXT_ECDHE_ECDSA_WITH_AES_256_CCM_8 "ECDHE-ECDSA-AES256-CCM8"1060 1061/* ECDH HMAC based ciphersuites from RFC5289 */1062#define TLS1_TXT_ECDHE_ECDSA_WITH_AES_128_SHA256 "ECDHE-ECDSA-AES128-SHA256"1063#define TLS1_TXT_ECDHE_ECDSA_WITH_AES_256_SHA384 "ECDHE-ECDSA-AES256-SHA384"1064#define TLS1_TXT_ECDH_ECDSA_WITH_AES_128_SHA256 "ECDH-ECDSA-AES128-SHA256"1065#define TLS1_TXT_ECDH_ECDSA_WITH_AES_256_SHA384 "ECDH-ECDSA-AES256-SHA384"1066#define TLS1_TXT_ECDHE_RSA_WITH_AES_128_SHA256 "ECDHE-RSA-AES128-SHA256"1067#define TLS1_TXT_ECDHE_RSA_WITH_AES_256_SHA384 "ECDHE-RSA-AES256-SHA384"1068#define TLS1_TXT_ECDH_RSA_WITH_AES_128_SHA256 "ECDH-RSA-AES128-SHA256"1069#define TLS1_TXT_ECDH_RSA_WITH_AES_256_SHA384 "ECDH-RSA-AES256-SHA384"1070 1071/* ECDH GCM based ciphersuites from RFC5289 */1072#define TLS1_TXT_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 "ECDHE-ECDSA-AES128-GCM-SHA256"1073#define TLS1_TXT_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 "ECDHE-ECDSA-AES256-GCM-SHA384"1074#define TLS1_TXT_ECDH_ECDSA_WITH_AES_128_GCM_SHA256 "ECDH-ECDSA-AES128-GCM-SHA256"1075#define TLS1_TXT_ECDH_ECDSA_WITH_AES_256_GCM_SHA384 "ECDH-ECDSA-AES256-GCM-SHA384"1076#define TLS1_TXT_ECDHE_RSA_WITH_AES_128_GCM_SHA256 "ECDHE-RSA-AES128-GCM-SHA256"1077#define TLS1_TXT_ECDHE_RSA_WITH_AES_256_GCM_SHA384 "ECDHE-RSA-AES256-GCM-SHA384"1078#define TLS1_TXT_ECDH_RSA_WITH_AES_128_GCM_SHA256 "ECDH-RSA-AES128-GCM-SHA256"1079#define TLS1_TXT_ECDH_RSA_WITH_AES_256_GCM_SHA384 "ECDH-RSA-AES256-GCM-SHA384"1080 1081/* TLS v1.2 PSK GCM ciphersuites from RFC5487 */1082#define TLS1_TXT_PSK_WITH_AES_128_GCM_SHA256 "PSK-AES128-GCM-SHA256"1083#define TLS1_TXT_PSK_WITH_AES_256_GCM_SHA384 "PSK-AES256-GCM-SHA384"1084 1085/* ECDHE PSK ciphersuites from RFC 5489 */1086#define TLS1_TXT_ECDHE_PSK_WITH_RC4_128_SHA "ECDHE-PSK-RC4-SHA"1087#define TLS1_TXT_ECDHE_PSK_WITH_3DES_EDE_CBC_SHA "ECDHE-PSK-3DES-EDE-CBC-SHA"1088#define TLS1_TXT_ECDHE_PSK_WITH_AES_128_CBC_SHA "ECDHE-PSK-AES128-CBC-SHA"1089#define TLS1_TXT_ECDHE_PSK_WITH_AES_256_CBC_SHA "ECDHE-PSK-AES256-CBC-SHA"1090 1091#define TLS1_TXT_ECDHE_PSK_WITH_AES_128_CBC_SHA256 "ECDHE-PSK-AES128-CBC-SHA256"1092#define TLS1_TXT_ECDHE_PSK_WITH_AES_256_CBC_SHA384 "ECDHE-PSK-AES256-CBC-SHA384"1093 1094#define TLS1_TXT_ECDHE_PSK_WITH_NULL_SHA "ECDHE-PSK-NULL-SHA"1095#define TLS1_TXT_ECDHE_PSK_WITH_NULL_SHA256 "ECDHE-PSK-NULL-SHA256"1096#define TLS1_TXT_ECDHE_PSK_WITH_NULL_SHA384 "ECDHE-PSK-NULL-SHA384"1097 1098/* Camellia-CBC ciphersuites from RFC6367 */1099#define TLS1_TXT_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256 "ECDHE-ECDSA-CAMELLIA128-SHA256"1100#define TLS1_TXT_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384 "ECDHE-ECDSA-CAMELLIA256-SHA384"1101#define TLS1_TXT_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256 "ECDH-ECDSA-CAMELLIA128-SHA256"1102#define TLS1_TXT_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384 "ECDH-ECDSA-CAMELLIA256-SHA384"1103#define TLS1_TXT_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 "ECDHE-RSA-CAMELLIA128-SHA256"1104#define TLS1_TXT_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384 "ECDHE-RSA-CAMELLIA256-SHA384"1105#define TLS1_TXT_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256 "ECDH-RSA-CAMELLIA128-SHA256"1106#define TLS1_TXT_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384 "ECDH-RSA-CAMELLIA256-SHA384"1107 1108/* draft-ietf-tls-chacha20-poly1305-03 */1109#define TLS1_TXT_ECDHE_RSA_WITH_CHACHA20_POLY1305 "ECDHE-RSA-CHACHA20-POLY1305"1110#define TLS1_TXT_ECDHE_ECDSA_WITH_CHACHA20_POLY1305 "ECDHE-ECDSA-CHACHA20-POLY1305"1111#define TLS1_TXT_DHE_RSA_WITH_CHACHA20_POLY1305 "DHE-RSA-CHACHA20-POLY1305"1112#define TLS1_TXT_PSK_WITH_CHACHA20_POLY1305 "PSK-CHACHA20-POLY1305"1113#define TLS1_TXT_ECDHE_PSK_WITH_CHACHA20_POLY1305 "ECDHE-PSK-CHACHA20-POLY1305"1114#define TLS1_TXT_DHE_PSK_WITH_CHACHA20_POLY1305 "DHE-PSK-CHACHA20-POLY1305"1115#define TLS1_TXT_RSA_PSK_WITH_CHACHA20_POLY1305 "RSA-PSK-CHACHA20-POLY1305"1116 1117/* Aria ciphersuites from RFC6209 */1118#define TLS1_TXT_RSA_WITH_ARIA_128_GCM_SHA256 "ARIA128-GCM-SHA256"1119#define TLS1_TXT_RSA_WITH_ARIA_256_GCM_SHA384 "ARIA256-GCM-SHA384"1120#define TLS1_TXT_DHE_RSA_WITH_ARIA_128_GCM_SHA256 "DHE-RSA-ARIA128-GCM-SHA256"1121#define TLS1_TXT_DHE_RSA_WITH_ARIA_256_GCM_SHA384 "DHE-RSA-ARIA256-GCM-SHA384"1122#define TLS1_TXT_DH_RSA_WITH_ARIA_128_GCM_SHA256 "DH-RSA-ARIA128-GCM-SHA256"1123#define TLS1_TXT_DH_RSA_WITH_ARIA_256_GCM_SHA384 "DH-RSA-ARIA256-GCM-SHA384"1124#define TLS1_TXT_DHE_DSS_WITH_ARIA_128_GCM_SHA256 "DHE-DSS-ARIA128-GCM-SHA256"1125#define TLS1_TXT_DHE_DSS_WITH_ARIA_256_GCM_SHA384 "DHE-DSS-ARIA256-GCM-SHA384"1126#define TLS1_TXT_DH_DSS_WITH_ARIA_128_GCM_SHA256 "DH-DSS-ARIA128-GCM-SHA256"1127#define TLS1_TXT_DH_DSS_WITH_ARIA_256_GCM_SHA384 "DH-DSS-ARIA256-GCM-SHA384"1128#define TLS1_TXT_DH_anon_WITH_ARIA_128_GCM_SHA256 "ADH-ARIA128-GCM-SHA256"1129#define TLS1_TXT_DH_anon_WITH_ARIA_256_GCM_SHA384 "ADH-ARIA256-GCM-SHA384"1130#define TLS1_TXT_ECDHE_ECDSA_WITH_ARIA_128_GCM_SHA256 "ECDHE-ECDSA-ARIA128-GCM-SHA256"1131#define TLS1_TXT_ECDHE_ECDSA_WITH_ARIA_256_GCM_SHA384 "ECDHE-ECDSA-ARIA256-GCM-SHA384"1132#define TLS1_TXT_ECDH_ECDSA_WITH_ARIA_128_GCM_SHA256 "ECDH-ECDSA-ARIA128-GCM-SHA256"1133#define TLS1_TXT_ECDH_ECDSA_WITH_ARIA_256_GCM_SHA384 "ECDH-ECDSA-ARIA256-GCM-SHA384"1134#define TLS1_TXT_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256 "ECDHE-ARIA128-GCM-SHA256"1135#define TLS1_TXT_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384 "ECDHE-ARIA256-GCM-SHA384"1136#define TLS1_TXT_ECDH_RSA_WITH_ARIA_128_GCM_SHA256 "ECDH-ARIA128-GCM-SHA256"1137#define TLS1_TXT_ECDH_RSA_WITH_ARIA_256_GCM_SHA384 "ECDH-ARIA256-GCM-SHA384"1138#define TLS1_TXT_PSK_WITH_ARIA_128_GCM_SHA256 "PSK-ARIA128-GCM-SHA256"1139#define TLS1_TXT_PSK_WITH_ARIA_256_GCM_SHA384 "PSK-ARIA256-GCM-SHA384"1140#define TLS1_TXT_DHE_PSK_WITH_ARIA_128_GCM_SHA256 "DHE-PSK-ARIA128-GCM-SHA256"1141#define TLS1_TXT_DHE_PSK_WITH_ARIA_256_GCM_SHA384 "DHE-PSK-ARIA256-GCM-SHA384"1142#define TLS1_TXT_RSA_PSK_WITH_ARIA_128_GCM_SHA256 "RSA-PSK-ARIA128-GCM-SHA256"1143#define TLS1_TXT_RSA_PSK_WITH_ARIA_256_GCM_SHA384 "RSA-PSK-ARIA256-GCM-SHA384"1144 1145#define TLS_CT_RSA_SIGN 11146#define TLS_CT_DSS_SIGN 21147#define TLS_CT_RSA_FIXED_DH 31148#define TLS_CT_DSS_FIXED_DH 41149#define TLS_CT_ECDSA_SIGN 641150#define TLS_CT_RSA_FIXED_ECDH 651151#define TLS_CT_ECDSA_FIXED_ECDH 661152#define TLS_CT_GOST01_SIGN 221153#define TLS_CT_GOST12_IANA_SIGN 671154#define TLS_CT_GOST12_IANA_512_SIGN 681155#define TLS_CT_GOST12_LEGACY_SIGN 2381156#define TLS_CT_GOST12_LEGACY_512_SIGN 2391157 1158#ifndef OPENSSL_NO_DEPRECATED_3_01159#define TLS_CT_GOST12_SIGN TLS_CT_GOST12_LEGACY_SIGN1160#define TLS_CT_GOST12_512_SIGN TLS_CT_GOST12_LEGACY_512_SIGN1161#endif1162 1163/*1164 * when correcting this number, correct also SSL3_CT_NUMBER in ssl3.h (see1165 * comment there)1166 */1167#define TLS_CT_NUMBER 121168 1169#if defined(SSL3_CT_NUMBER)1170#if TLS_CT_NUMBER != SSL3_CT_NUMBER1171#error "SSL/TLS CT_NUMBER values do not match"1172#endif1173#endif1174 1175#define TLS1_FINISH_MAC_LENGTH 121176 1177#define TLS_MD_MAX_CONST_SIZE 221178 1179/* ASCII: "client finished", in hex for EBCDIC compatibility */1180#define TLS_MD_CLIENT_FINISH_CONST "\x63\x6c\x69\x65\x6e\x74\x20\x66\x69\x6e\x69\x73\x68\x65\x64"1181#define TLS_MD_CLIENT_FINISH_CONST_SIZE 151182/* ASCII: "server finished", in hex for EBCDIC compatibility */1183#define TLS_MD_SERVER_FINISH_CONST "\x73\x65\x72\x76\x65\x72\x20\x66\x69\x6e\x69\x73\x68\x65\x64"1184#define TLS_MD_SERVER_FINISH_CONST_SIZE 151185/* ASCII: "server write key", in hex for EBCDIC compatibility */1186#define TLS_MD_SERVER_WRITE_KEY_CONST "\x73\x65\x72\x76\x65\x72\x20\x77\x72\x69\x74\x65\x20\x6b\x65\x79"1187#define TLS_MD_SERVER_WRITE_KEY_CONST_SIZE 161188/* ASCII: "key expansion", in hex for EBCDIC compatibility */1189#define TLS_MD_KEY_EXPANSION_CONST "\x6b\x65\x79\x20\x65\x78\x70\x61\x6e\x73\x69\x6f\x6e"1190#define TLS_MD_KEY_EXPANSION_CONST_SIZE 131191/* ASCII: "client write key", in hex for EBCDIC compatibility */1192#define TLS_MD_CLIENT_WRITE_KEY_CONST "\x63\x6c\x69\x65\x6e\x74\x20\x77\x72\x69\x74\x65\x20\x6b\x65\x79"1193#define TLS_MD_CLIENT_WRITE_KEY_CONST_SIZE 161194/* ASCII: "server write key", in hex for EBCDIC compatibility */1195#define TLS_MD_SERVER_WRITE_KEY_CONST "\x73\x65\x72\x76\x65\x72\x20\x77\x72\x69\x74\x65\x20\x6b\x65\x79"1196#define TLS_MD_SERVER_WRITE_KEY_CONST_SIZE 161197/* ASCII: "IV block", in hex for EBCDIC compatibility */1198#define TLS_MD_IV_BLOCK_CONST "\x49\x56\x20\x62\x6c\x6f\x63\x6b"1199#define TLS_MD_IV_BLOCK_CONST_SIZE 81200/* ASCII: "master secret", in hex for EBCDIC compatibility */1201#define TLS_MD_MASTER_SECRET_CONST "\x6d\x61\x73\x74\x65\x72\x20\x73\x65\x63\x72\x65\x74"1202#define TLS_MD_MASTER_SECRET_CONST_SIZE 131203/* ASCII: "extended master secret", in hex for EBCDIC compatibility */1204#define TLS_MD_EXTENDED_MASTER_SECRET_CONST "\x65\x78\x74\x65\x6e\x64\x65\x64\x20\x6d\x61\x73\x74\x65\x72\x20\x73\x65\x63\x72\x65\x74"1205#define TLS_MD_EXTENDED_MASTER_SECRET_CONST_SIZE 221206 1207/* TLS Session Ticket extension struct */1208struct tls_session_ticket_ext_st {1209    unsigned short length;1210    void *data;1211};1212 1213#ifdef __cplusplus1214}1215#endif1216#endif1217