mirror of https://github.com/wolfSSL/wolfssl
add EDH-RSA-AES256-SHA, used in one mysql test
This commit is contained in:
parent
bd4e8ac714
commit
38bbd41f99
|
@ -1300,6 +1300,13 @@ void InitSuites(Suites* suites, ProtocolVersion pv, word16 haveRSA,
|
||||||
}
|
}
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
|
#ifdef BUILD_TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
|
||||||
|
if (tls && haveDH && haveRSA) {
|
||||||
|
suites->suites[idx++] = 0;
|
||||||
|
suites->suites[idx++] = TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA;
|
||||||
|
}
|
||||||
|
#endif
|
||||||
|
|
||||||
#ifdef BUILD_TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
|
#ifdef BUILD_TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
|
||||||
if (tls1_2 && haveDH && haveRSA) {
|
if (tls1_2 && haveDH && haveRSA) {
|
||||||
suites->suites[idx++] = 0;
|
suites->suites[idx++] = 0;
|
||||||
|
@ -4731,6 +4738,15 @@ static int BuildFinished(WOLFSSL* ssl, Hashes* hashes, const byte* sender)
|
||||||
if (requirement == REQUIRES_DHE)
|
if (requirement == REQUIRES_DHE)
|
||||||
return 1;
|
return 1;
|
||||||
break;
|
break;
|
||||||
|
|
||||||
|
case TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA:
|
||||||
|
if (requirement == REQUIRES_RSA)
|
||||||
|
return 1;
|
||||||
|
if (requirement == REQUIRES_RSA_SIG)
|
||||||
|
return 1;
|
||||||
|
if (requirement == REQUIRES_DHE)
|
||||||
|
return 1;
|
||||||
|
break;
|
||||||
#endif
|
#endif
|
||||||
#ifdef HAVE_ANON
|
#ifdef HAVE_ANON
|
||||||
case TLS_DH_anon_WITH_AES_128_CBC_SHA :
|
case TLS_DH_anon_WITH_AES_128_CBC_SHA :
|
||||||
|
@ -10667,6 +10683,10 @@ static const char* const cipher_names[] =
|
||||||
#ifdef BUILD_TLS_DHE_PSK_WITH_CHACHA20_POLY1305_SHA256
|
#ifdef BUILD_TLS_DHE_PSK_WITH_CHACHA20_POLY1305_SHA256
|
||||||
"DHE-PSK-CHACHA20-POLY1305",
|
"DHE-PSK-CHACHA20-POLY1305",
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
|
#ifdef BUILD_TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
|
||||||
|
"EDH-RSA-DES-CBC3-SHA",
|
||||||
|
#endif
|
||||||
};
|
};
|
||||||
|
|
||||||
|
|
||||||
|
@ -11105,6 +11125,10 @@ static int cipher_name_idx[] =
|
||||||
#ifdef BUILD_TLS_DHE_PSK_WITH_CHACHA20_POLY1305_SHA256
|
#ifdef BUILD_TLS_DHE_PSK_WITH_CHACHA20_POLY1305_SHA256
|
||||||
TLS_DHE_PSK_WITH_CHACHA20_POLY1305_SHA256,
|
TLS_DHE_PSK_WITH_CHACHA20_POLY1305_SHA256,
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
|
#ifdef BUILD_TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
|
||||||
|
TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA,
|
||||||
|
#endif
|
||||||
};
|
};
|
||||||
|
|
||||||
|
|
||||||
|
|
17
src/keys.c
17
src/keys.c
|
@ -1551,6 +1551,23 @@ int SetCipherSpecs(WOLFSSL* ssl)
|
||||||
break;
|
break;
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
|
#ifdef BUILD_TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
|
||||||
|
case TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA :
|
||||||
|
ssl->specs.bulk_cipher_algorithm = wolfssl_triple_des;
|
||||||
|
ssl->specs.cipher_type = block;
|
||||||
|
ssl->specs.mac_algorithm = sha_mac;
|
||||||
|
ssl->specs.kea = diffie_hellman_kea;
|
||||||
|
ssl->specs.sig_algo = rsa_sa_algo;
|
||||||
|
ssl->specs.hash_size = SHA_DIGEST_SIZE;
|
||||||
|
ssl->specs.pad_size = PAD_SHA;
|
||||||
|
ssl->specs.static_ecdh = 0;
|
||||||
|
ssl->specs.key_size = DES3_KEY_SIZE;
|
||||||
|
ssl->specs.block_size = DES_BLOCK_SIZE;
|
||||||
|
ssl->specs.iv_size = DES_IV_SIZE;
|
||||||
|
|
||||||
|
break;
|
||||||
|
#endif
|
||||||
|
|
||||||
#ifdef BUILD_TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
|
#ifdef BUILD_TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
|
||||||
case TLS_DHE_RSA_WITH_AES_256_CBC_SHA256 :
|
case TLS_DHE_RSA_WITH_AES_256_CBC_SHA256 :
|
||||||
ssl->specs.bulk_cipher_algorithm = wolfssl_aes;
|
ssl->specs.bulk_cipher_algorithm = wolfssl_aes;
|
||||||
|
|
|
@ -1126,6 +1126,22 @@
|
||||||
-v 2
|
-v 2
|
||||||
-l DHE-RSA-AES256-SHA256
|
-l DHE-RSA-AES256-SHA256
|
||||||
|
|
||||||
|
# server TLSv1.1 DHE 3DES
|
||||||
|
-v 2
|
||||||
|
-l EDH-RSA-DES-CBC3-SHA
|
||||||
|
|
||||||
|
# client TLSv1.1 DHE 3DES
|
||||||
|
-v 2
|
||||||
|
-l EDH-RSA-DES-CBC3-SHA
|
||||||
|
|
||||||
|
# server TLSv1.2 DHE 3DES
|
||||||
|
-v 3
|
||||||
|
-l EDH-RSA-DES-CBC3-SHA
|
||||||
|
|
||||||
|
# client TLSv1.2 DHE 3DES
|
||||||
|
-v 3
|
||||||
|
-l EDH-RSA-DES-CBC3-SHA
|
||||||
|
|
||||||
# server TLSv1.2 DHE AES128
|
# server TLSv1.2 DHE AES128
|
||||||
-v 3
|
-v 3
|
||||||
-l DHE-RSA-AES128-SHA
|
-l DHE-RSA-AES128-SHA
|
||||||
|
|
|
@ -398,6 +398,9 @@ typedef byte word24[3];
|
||||||
#if !defined(NO_SHA)
|
#if !defined(NO_SHA)
|
||||||
#define BUILD_TLS_DHE_RSA_WITH_AES_128_CBC_SHA
|
#define BUILD_TLS_DHE_RSA_WITH_AES_128_CBC_SHA
|
||||||
#define BUILD_TLS_DHE_RSA_WITH_AES_256_CBC_SHA
|
#define BUILD_TLS_DHE_RSA_WITH_AES_256_CBC_SHA
|
||||||
|
#if !defined(NO_DES3)
|
||||||
|
#define BUILD_TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
|
||||||
|
#endif
|
||||||
#endif
|
#endif
|
||||||
#if !defined(NO_SHA256)
|
#if !defined(NO_SHA256)
|
||||||
#define BUILD_TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
|
#define BUILD_TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
|
||||||
|
@ -703,6 +706,7 @@ typedef byte word24[3];
|
||||||
|
|
||||||
/* actual cipher values, 2nd byte */
|
/* actual cipher values, 2nd byte */
|
||||||
enum {
|
enum {
|
||||||
|
TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA = 0x16,
|
||||||
TLS_DHE_RSA_WITH_AES_256_CBC_SHA = 0x39,
|
TLS_DHE_RSA_WITH_AES_256_CBC_SHA = 0x39,
|
||||||
TLS_DHE_RSA_WITH_AES_128_CBC_SHA = 0x33,
|
TLS_DHE_RSA_WITH_AES_128_CBC_SHA = 0x33,
|
||||||
TLS_DH_anon_WITH_AES_128_CBC_SHA = 0x34,
|
TLS_DH_anon_WITH_AES_128_CBC_SHA = 0x34,
|
||||||
|
|
Loading…
Reference in New Issue