diff options
| author | miod <> | 2014-11-18 05:33:43 +0000 |
|---|---|---|
| committer | miod <> | 2014-11-18 05:33:43 +0000 |
| commit | 0c986de0d047d74ccf3708c551b93f60ed6bfafb (patch) | |
| tree | 1ff6097d67d8f3a7af1e40761e736566bcd71b7d /src/lib/libssl/ssl_locl.h | |
| parent | 9555aff2e872287755e956f3b44930bf7de0cdda (diff) | |
| download | openbsd-0c986de0d047d74ccf3708c551b93f60ed6bfafb.tar.gz openbsd-0c986de0d047d74ccf3708c551b93f60ed6bfafb.tar.bz2 openbsd-0c986de0d047d74ccf3708c551b93f60ed6bfafb.zip | |
Update the GOST code in libssl, as contributed by Dmitry Eremin-Solenikov.
This causes a libssl major version bump as this affects the layout of some
internal-but-unfortunately-made-visible structs.
Diffstat (limited to '')
| -rw-r--r-- | src/lib/libssl/ssl_locl.h | 9 |
1 files changed, 7 insertions, 2 deletions
diff --git a/src/lib/libssl/ssl_locl.h b/src/lib/libssl/ssl_locl.h index ec8f96e645..74cacd4eec 100644 --- a/src/lib/libssl/ssl_locl.h +++ b/src/lib/libssl/ssl_locl.h | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: ssl_locl.h,v 1.76 2014/11/16 14:12:47 jsing Exp $ */ | 1 | /* $OpenBSD: ssl_locl.h,v 1.77 2014/11/18 05:33:43 miod Exp $ */ |
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
| 3 | * All rights reserved. | 3 | * All rights reserved. |
| 4 | * | 4 | * |
| @@ -299,6 +299,8 @@ | |||
| 299 | #define SSL_SHA384 0x00000020L | 299 | #define SSL_SHA384 0x00000020L |
| 300 | /* Not a real MAC, just an indication it is part of cipher */ | 300 | /* Not a real MAC, just an indication it is part of cipher */ |
| 301 | #define SSL_AEAD 0x00000040L | 301 | #define SSL_AEAD 0x00000040L |
| 302 | #define SSL_STREEBOG256 0x00000080L | ||
| 303 | #define SSL_STREEBOG512 0x00000100L | ||
| 302 | 304 | ||
| 303 | /* Bits for algorithm_ssl (protocol version) */ | 305 | /* Bits for algorithm_ssl (protocol version) */ |
| 304 | #define SSL_SSLV3 0x00000002L | 306 | #define SSL_SSLV3 0x00000002L |
| @@ -313,11 +315,13 @@ | |||
| 313 | #define SSL_HANDSHAKE_MAC_GOST94 0x40 | 315 | #define SSL_HANDSHAKE_MAC_GOST94 0x40 |
| 314 | #define SSL_HANDSHAKE_MAC_SHA256 0x80 | 316 | #define SSL_HANDSHAKE_MAC_SHA256 0x80 |
| 315 | #define SSL_HANDSHAKE_MAC_SHA384 0x100 | 317 | #define SSL_HANDSHAKE_MAC_SHA384 0x100 |
| 318 | #define SSL_HANDSHAKE_MAC_STREEBOG256 0x200 | ||
| 319 | #define SSL_HANDSHAKE_MAC_STREEBOG512 0x400 | ||
| 316 | #define SSL_HANDSHAKE_MAC_DEFAULT (SSL_HANDSHAKE_MAC_MD5 | SSL_HANDSHAKE_MAC_SHA) | 320 | #define SSL_HANDSHAKE_MAC_DEFAULT (SSL_HANDSHAKE_MAC_MD5 | SSL_HANDSHAKE_MAC_SHA) |
| 317 | 321 | ||
| 318 | /* When adding new digest in the ssl_ciph.c and increment SSM_MD_NUM_IDX | 322 | /* When adding new digest in the ssl_ciph.c and increment SSM_MD_NUM_IDX |
| 319 | * make sure to update this constant too */ | 323 | * make sure to update this constant too */ |
| 320 | #define SSL_MAX_DIGEST 6 | 324 | #define SSL_MAX_DIGEST 8 |
| 321 | 325 | ||
| 322 | #define SSL3_CK_ID 0x03000000 | 326 | #define SSL3_CK_ID 0x03000000 |
| 323 | #define SSL3_CK_VALUE_MASK 0x0000ffff | 327 | #define SSL3_CK_VALUE_MASK 0x0000ffff |
| @@ -330,6 +334,7 @@ | |||
| 330 | #define TLS1_PRF_SHA256 (SSL_HANDSHAKE_MAC_SHA256 << TLS1_PRF_DGST_SHIFT) | 334 | #define TLS1_PRF_SHA256 (SSL_HANDSHAKE_MAC_SHA256 << TLS1_PRF_DGST_SHIFT) |
| 331 | #define TLS1_PRF_SHA384 (SSL_HANDSHAKE_MAC_SHA384 << TLS1_PRF_DGST_SHIFT) | 335 | #define TLS1_PRF_SHA384 (SSL_HANDSHAKE_MAC_SHA384 << TLS1_PRF_DGST_SHIFT) |
| 332 | #define TLS1_PRF_GOST94 (SSL_HANDSHAKE_MAC_GOST94 << TLS1_PRF_DGST_SHIFT) | 336 | #define TLS1_PRF_GOST94 (SSL_HANDSHAKE_MAC_GOST94 << TLS1_PRF_DGST_SHIFT) |
| 337 | #define TLS1_PRF_STREEBOG256 (SSL_HANDSHAKE_MAC_STREEBOG256 << TLS1_PRF_DGST_SHIFT) | ||
| 333 | #define TLS1_PRF (TLS1_PRF_MD5 | TLS1_PRF_SHA1) | 338 | #define TLS1_PRF (TLS1_PRF_MD5 | TLS1_PRF_SHA1) |
| 334 | 339 | ||
| 335 | /* Stream MAC for GOST ciphersuites from cryptopro draft | 340 | /* Stream MAC for GOST ciphersuites from cryptopro draft |