diff options
| author | jsing <> | 2014-10-15 13:57:21 +0000 |
|---|---|---|
| committer | jsing <> | 2014-10-15 13:57:21 +0000 |
| commit | d1ef05b60b0377a5eac02b3693ea5a0161a51731 (patch) | |
| tree | c7e09c4c29be3fd313c47424c46965466428c717 /src/lib | |
| parent | dcf0c85a37d1b2da6424029201cb837c14348dc0 (diff) | |
| download | openbsd-d1ef05b60b0377a5eac02b3693ea5a0161a51731.tar.gz openbsd-d1ef05b60b0377a5eac02b3693ea5a0161a51731.tar.bz2 openbsd-d1ef05b60b0377a5eac02b3693ea5a0161a51731.zip | |
Add cipher aliases for DHE (the correct name for EDH) and ECDHE (the
correct name for EECDH). The EDH and EECDH aliases remain for backwards
compatibility.
Diffstat (limited to 'src/lib')
| -rw-r--r-- | src/lib/libssl/src/ssl/ssl.h | 8 | ||||
| -rw-r--r-- | src/lib/libssl/src/ssl/ssl_ciph.c | 12 | ||||
| -rw-r--r-- | src/lib/libssl/ssl.h | 8 | ||||
| -rw-r--r-- | src/lib/libssl/ssl_ciph.c | 12 |
4 files changed, 32 insertions, 8 deletions
diff --git a/src/lib/libssl/src/ssl/ssl.h b/src/lib/libssl/src/ssl/ssl.h index 1e9e846195..2b1ceaf2c7 100644 --- a/src/lib/libssl/src/ssl/ssl.h +++ b/src/lib/libssl/src/ssl/ssl.h | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: ssl.h,v 1.67 2014/10/03 13:58:18 jsing Exp $ */ | 1 | /* $OpenBSD: ssl.h,v 1.68 2014/10/15 13:57:21 jsing Exp $ */ |
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
| 3 | * All rights reserved. | 3 | * All rights reserved. |
| 4 | * | 4 | * |
| @@ -259,11 +259,13 @@ extern "C" { | |||
| 259 | 259 | ||
| 260 | #define SSL_TXT_DSS "DSS" | 260 | #define SSL_TXT_DSS "DSS" |
| 261 | #define SSL_TXT_DH "DH" | 261 | #define SSL_TXT_DH "DH" |
| 262 | #define SSL_TXT_EDH "EDH" /* same as "kEDH:-ADH" */ | 262 | #define SSL_TXT_DHE "DHE" /* same as "kDHE:-ADH" */ |
| 263 | #define SSL_TXT_EDH "EDH" /* previous name for DHE */ | ||
| 263 | #define SSL_TXT_ADH "ADH" | 264 | #define SSL_TXT_ADH "ADH" |
| 264 | #define SSL_TXT_RSA "RSA" | 265 | #define SSL_TXT_RSA "RSA" |
| 265 | #define SSL_TXT_ECDH "ECDH" | 266 | #define SSL_TXT_ECDH "ECDH" |
| 266 | #define SSL_TXT_EECDH "EECDH" /* same as "kEECDH:-AECDH" */ | 267 | #define SSL_TXT_ECDHE "ECDHE" /* same as "kECDHE:-AECDH" */ |
| 268 | #define SSL_TXT_EECDH "EECDH" /* previous name for ECDHE */ | ||
| 267 | #define SSL_TXT_AECDH "AECDH" | 269 | #define SSL_TXT_AECDH "AECDH" |
| 268 | #define SSL_TXT_ECDSA "ECDSA" | 270 | #define SSL_TXT_ECDSA "ECDSA" |
| 269 | #define SSL_TXT_KRB5 "KRB5" | 271 | #define SSL_TXT_KRB5 "KRB5" |
diff --git a/src/lib/libssl/src/ssl/ssl_ciph.c b/src/lib/libssl/src/ssl/ssl_ciph.c index 35e81e18f1..4bd085310f 100644 --- a/src/lib/libssl/src/ssl/ssl_ciph.c +++ b/src/lib/libssl/src/ssl/ssl_ciph.c | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: ssl_ciph.c,v 1.69 2014/10/03 06:02:38 doug Exp $ */ | 1 | /* $OpenBSD: ssl_ciph.c,v 1.70 2014/10/15 13:57:21 jsing Exp $ */ |
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
| 3 | * All rights reserved. | 3 | * All rights reserved. |
| 4 | * | 4 | * |
| @@ -327,11 +327,21 @@ static const SSL_CIPHER cipher_aliases[] = { | |||
| 327 | 327 | ||
| 328 | /* aliases combining key exchange and server authentication */ | 328 | /* aliases combining key exchange and server authentication */ |
| 329 | { | 329 | { |
| 330 | .name = SSL_TXT_DHE, | ||
| 331 | .algorithm_mkey = SSL_kDHE, | ||
| 332 | .algorithm_auth = ~SSL_aNULL, | ||
| 333 | }, | ||
| 334 | { | ||
| 330 | .name = SSL_TXT_EDH, | 335 | .name = SSL_TXT_EDH, |
| 331 | .algorithm_mkey = SSL_kDHE, | 336 | .algorithm_mkey = SSL_kDHE, |
| 332 | .algorithm_auth = ~SSL_aNULL, | 337 | .algorithm_auth = ~SSL_aNULL, |
| 333 | }, | 338 | }, |
| 334 | { | 339 | { |
| 340 | .name = SSL_TXT_ECDHE, | ||
| 341 | .algorithm_mkey = SSL_kECDHE, | ||
| 342 | .algorithm_auth = ~SSL_aNULL, | ||
| 343 | }, | ||
| 344 | { | ||
| 335 | .name = SSL_TXT_EECDH, | 345 | .name = SSL_TXT_EECDH, |
| 336 | .algorithm_mkey = SSL_kECDHE, | 346 | .algorithm_mkey = SSL_kECDHE, |
| 337 | .algorithm_auth = ~SSL_aNULL, | 347 | .algorithm_auth = ~SSL_aNULL, |
diff --git a/src/lib/libssl/ssl.h b/src/lib/libssl/ssl.h index 1e9e846195..2b1ceaf2c7 100644 --- a/src/lib/libssl/ssl.h +++ b/src/lib/libssl/ssl.h | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: ssl.h,v 1.67 2014/10/03 13:58:18 jsing Exp $ */ | 1 | /* $OpenBSD: ssl.h,v 1.68 2014/10/15 13:57:21 jsing Exp $ */ |
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
| 3 | * All rights reserved. | 3 | * All rights reserved. |
| 4 | * | 4 | * |
| @@ -259,11 +259,13 @@ extern "C" { | |||
| 259 | 259 | ||
| 260 | #define SSL_TXT_DSS "DSS" | 260 | #define SSL_TXT_DSS "DSS" |
| 261 | #define SSL_TXT_DH "DH" | 261 | #define SSL_TXT_DH "DH" |
| 262 | #define SSL_TXT_EDH "EDH" /* same as "kEDH:-ADH" */ | 262 | #define SSL_TXT_DHE "DHE" /* same as "kDHE:-ADH" */ |
| 263 | #define SSL_TXT_EDH "EDH" /* previous name for DHE */ | ||
| 263 | #define SSL_TXT_ADH "ADH" | 264 | #define SSL_TXT_ADH "ADH" |
| 264 | #define SSL_TXT_RSA "RSA" | 265 | #define SSL_TXT_RSA "RSA" |
| 265 | #define SSL_TXT_ECDH "ECDH" | 266 | #define SSL_TXT_ECDH "ECDH" |
| 266 | #define SSL_TXT_EECDH "EECDH" /* same as "kEECDH:-AECDH" */ | 267 | #define SSL_TXT_ECDHE "ECDHE" /* same as "kECDHE:-AECDH" */ |
| 268 | #define SSL_TXT_EECDH "EECDH" /* previous name for ECDHE */ | ||
| 267 | #define SSL_TXT_AECDH "AECDH" | 269 | #define SSL_TXT_AECDH "AECDH" |
| 268 | #define SSL_TXT_ECDSA "ECDSA" | 270 | #define SSL_TXT_ECDSA "ECDSA" |
| 269 | #define SSL_TXT_KRB5 "KRB5" | 271 | #define SSL_TXT_KRB5 "KRB5" |
diff --git a/src/lib/libssl/ssl_ciph.c b/src/lib/libssl/ssl_ciph.c index 35e81e18f1..4bd085310f 100644 --- a/src/lib/libssl/ssl_ciph.c +++ b/src/lib/libssl/ssl_ciph.c | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: ssl_ciph.c,v 1.69 2014/10/03 06:02:38 doug Exp $ */ | 1 | /* $OpenBSD: ssl_ciph.c,v 1.70 2014/10/15 13:57:21 jsing Exp $ */ |
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
| 3 | * All rights reserved. | 3 | * All rights reserved. |
| 4 | * | 4 | * |
| @@ -327,11 +327,21 @@ static const SSL_CIPHER cipher_aliases[] = { | |||
| 327 | 327 | ||
| 328 | /* aliases combining key exchange and server authentication */ | 328 | /* aliases combining key exchange and server authentication */ |
| 329 | { | 329 | { |
| 330 | .name = SSL_TXT_DHE, | ||
| 331 | .algorithm_mkey = SSL_kDHE, | ||
| 332 | .algorithm_auth = ~SSL_aNULL, | ||
| 333 | }, | ||
| 334 | { | ||
| 330 | .name = SSL_TXT_EDH, | 335 | .name = SSL_TXT_EDH, |
| 331 | .algorithm_mkey = SSL_kDHE, | 336 | .algorithm_mkey = SSL_kDHE, |
| 332 | .algorithm_auth = ~SSL_aNULL, | 337 | .algorithm_auth = ~SSL_aNULL, |
| 333 | }, | 338 | }, |
| 334 | { | 339 | { |
| 340 | .name = SSL_TXT_ECDHE, | ||
| 341 | .algorithm_mkey = SSL_kECDHE, | ||
| 342 | .algorithm_auth = ~SSL_aNULL, | ||
| 343 | }, | ||
| 344 | { | ||
| 335 | .name = SSL_TXT_EECDH, | 345 | .name = SSL_TXT_EECDH, |
| 336 | .algorithm_mkey = SSL_kECDHE, | 346 | .algorithm_mkey = SSL_kECDHE, |
| 337 | .algorithm_auth = ~SSL_aNULL, | 347 | .algorithm_auth = ~SSL_aNULL, |