summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
Diffstat
-rw-r--r--src/lib/libssl/s3_lib.c8
-rw-r--r--src/lib/libssl/ssl_ciphers.c22
-rw-r--r--src/lib/libssl/tls1.h8
3 files changed, 22 insertions, 16 deletions
diff --git a/src/lib/libssl/s3_lib.c b/src/lib/libssl/s3_lib.c
index 916ed4935c..683a550ad8 100644
--- a/src/lib/libssl/s3_lib.c
+++ b/src/lib/libssl/s3_lib.c
@@ -1,4 +1,4 @@
1/* $OpenBSD: s3_lib.c,v 1.226 2022/02/05 14:54:10 jsing Exp $ */ 1/* $OpenBSD: s3_lib.c,v 1.227 2022/02/05 18:18:18 tb Exp $ */
2/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) 2/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3 * All rights reserved. 3 * All rights reserved.
4 * 4 *
@@ -882,7 +882,7 @@ const SSL_CIPHER ssl3_ciphers[] = {
882 /* Cipher 1301 */ 882 /* Cipher 1301 */
883 { 883 {
884 .valid = 1, 884 .valid = 1,
885 .name = TLS1_3_TXT_AES_128_GCM_SHA256, 885 .name = TLS1_3_RFC_AES_128_GCM_SHA256,
886 .id = TLS1_3_CK_AES_128_GCM_SHA256, 886 .id = TLS1_3_CK_AES_128_GCM_SHA256,
887 .algorithm_mkey = SSL_kTLS1_3, 887 .algorithm_mkey = SSL_kTLS1_3,
888 .algorithm_auth = SSL_aTLS1_3, 888 .algorithm_auth = SSL_aTLS1_3,
@@ -898,7 +898,7 @@ const SSL_CIPHER ssl3_ciphers[] = {
898 /* Cipher 1302 */ 898 /* Cipher 1302 */
899 { 899 {
900 .valid = 1, 900 .valid = 1,
901 .name = TLS1_3_TXT_AES_256_GCM_SHA384, 901 .name = TLS1_3_RFC_AES_256_GCM_SHA384,
902 .id = TLS1_3_CK_AES_256_GCM_SHA384, 902 .id = TLS1_3_CK_AES_256_GCM_SHA384,
903 .algorithm_mkey = SSL_kTLS1_3, 903 .algorithm_mkey = SSL_kTLS1_3,
904 .algorithm_auth = SSL_aTLS1_3, 904 .algorithm_auth = SSL_aTLS1_3,
@@ -914,7 +914,7 @@ const SSL_CIPHER ssl3_ciphers[] = {
914 /* Cipher 1303 */ 914 /* Cipher 1303 */
915 { 915 {
916 .valid = 1, 916 .valid = 1,
917 .name = TLS1_3_TXT_CHACHA20_POLY1305_SHA256, 917 .name = TLS1_3_RFC_CHACHA20_POLY1305_SHA256,
918 .id = TLS1_3_CK_CHACHA20_POLY1305_SHA256, 918 .id = TLS1_3_CK_CHACHA20_POLY1305_SHA256,
919 .algorithm_mkey = SSL_kTLS1_3, 919 .algorithm_mkey = SSL_kTLS1_3,
920 .algorithm_auth = SSL_aTLS1_3, 920 .algorithm_auth = SSL_aTLS1_3,
diff --git a/src/lib/libssl/ssl_ciphers.c b/src/lib/libssl/ssl_ciphers.c
index 7ac40126ed..3174ae9c26 100644
--- a/src/lib/libssl/ssl_ciphers.c
+++ b/src/lib/libssl/ssl_ciphers.c
@@ -1,4 +1,4 @@
1/* $OpenBSD: ssl_ciphers.c,v 1.12 2022/02/05 14:54:10 jsing Exp $ */ 1/* $OpenBSD: ssl_ciphers.c,v 1.13 2022/02/05 18:18:18 tb Exp $ */
2/* 2/*
3 * Copyright (c) 2015-2017 Doug Hogan <doug@openbsd.org> 3 * Copyright (c) 2015-2017 Doug Hogan <doug@openbsd.org>
4 * Copyright (c) 2015-2018, 2020 Joel Sing <jsing@openbsd.org> 4 * Copyright (c) 2015-2018, 2020 Joel Sing <jsing@openbsd.org>
@@ -168,28 +168,28 @@ struct ssl_tls13_ciphersuite {
168 168
169static const struct ssl_tls13_ciphersuite ssl_tls13_ciphersuites[] = { 169static const struct ssl_tls13_ciphersuite ssl_tls13_ciphersuites[] = {
170 { 170 {
171 .name = TLS1_3_TXT_AES_128_GCM_SHA256, 171 .name = TLS1_3_RFC_AES_128_GCM_SHA256,
172 .alias = "TLS_AES_128_GCM_SHA256", 172 .alias = TLS1_3_TXT_AES_128_GCM_SHA256,
173 .cid = TLS1_3_CK_AES_128_GCM_SHA256, 173 .cid = TLS1_3_CK_AES_128_GCM_SHA256,
174 }, 174 },
175 { 175 {
176 .name = TLS1_3_TXT_AES_256_GCM_SHA384, 176 .name = TLS1_3_RFC_AES_256_GCM_SHA384,
177 .alias = "TLS_AES_256_GCM_SHA384", 177 .alias = TLS1_3_TXT_AES_256_GCM_SHA384,
178 .cid = TLS1_3_CK_AES_256_GCM_SHA384, 178 .cid = TLS1_3_CK_AES_256_GCM_SHA384,
179 }, 179 },
180 { 180 {
181 .name = TLS1_3_TXT_CHACHA20_POLY1305_SHA256, 181 .name = TLS1_3_RFC_CHACHA20_POLY1305_SHA256,
182 .alias = "TLS_CHACHA20_POLY1305_SHA256", 182 .alias = TLS1_3_TXT_CHACHA20_POLY1305_SHA256,
183 .cid = TLS1_3_CK_CHACHA20_POLY1305_SHA256, 183 .cid = TLS1_3_CK_CHACHA20_POLY1305_SHA256,
184 }, 184 },
185 { 185 {
186 .name = TLS1_3_TXT_AES_128_CCM_SHA256, 186 .name = TLS1_3_RFC_AES_128_CCM_SHA256,
187 .alias = "TLS_AES_128_CCM_SHA256", 187 .alias = TLS1_3_TXT_AES_128_CCM_SHA256,
188 .cid = TLS1_3_CK_AES_128_CCM_SHA256, 188 .cid = TLS1_3_CK_AES_128_CCM_SHA256,
189 }, 189 },
190 { 190 {
191 .name = TLS1_3_TXT_AES_128_CCM_8_SHA256, 191 .name = TLS1_3_RFC_AES_128_CCM_8_SHA256,
192 .alias = "TLS_AES_128_CCM_8_SHA256", 192 .alias = TLS1_3_TXT_AES_128_CCM_8_SHA256,
193 .cid = TLS1_3_CK_AES_128_CCM_8_SHA256, 193 .cid = TLS1_3_CK_AES_128_CCM_8_SHA256,
194 }, 194 },
195 { 195 {
diff --git a/src/lib/libssl/tls1.h b/src/lib/libssl/tls1.h
index 90523dd0f9..547fb86e5d 100644
--- a/src/lib/libssl/tls1.h
+++ b/src/lib/libssl/tls1.h
@@ -1,4 +1,4 @@
1/* $OpenBSD: tls1.h,v 1.50 2021/10/15 16:48:47 jsing Exp $ */ 1/* $OpenBSD: tls1.h,v 1.51 2022/02/05 18:18:18 tb Exp $ */
2/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) 2/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3 * All rights reserved. 3 * All rights reserved.
4 * 4 *
@@ -722,6 +722,12 @@ SSL_CTX_callback_ctrl(ssl,SSL_CTRL_SET_TLSEXT_TICKET_KEY_CB,(void (*)(void))cb)
722#define TLS1_3_TXT_CHACHA20_POLY1305_SHA256 "AEAD-CHACHA20-POLY1305-SHA256" 722#define TLS1_3_TXT_CHACHA20_POLY1305_SHA256 "AEAD-CHACHA20-POLY1305-SHA256"
723#define TLS1_3_TXT_AES_128_CCM_SHA256 "AEAD-AES128-CCM-SHA256" 723#define TLS1_3_TXT_AES_128_CCM_SHA256 "AEAD-AES128-CCM-SHA256"
724#define TLS1_3_TXT_AES_128_CCM_8_SHA256 "AEAD-AES128-CCM-8-SHA256" 724#define TLS1_3_TXT_AES_128_CCM_8_SHA256 "AEAD-AES128-CCM-8-SHA256"
725
726#define TLS1_3_RFC_AES_128_GCM_SHA256 "TLS_AES_128_GCM_SHA256"
727#define TLS1_3_RFC_AES_256_GCM_SHA384 "TLS_AES_256_GCM_SHA384"
728#define TLS1_3_RFC_CHACHA20_POLY1305_SHA256 "TLS_CHACHA20_POLY1305_SHA256"
729#define TLS1_3_RFC_AES_128_CCM_SHA256 "TLS_AES_128_CCM_SHA256"
730#define TLS1_3_RFC_AES_128_CCM_8_SHA256 "TLS_AES_128_CCM_8_SHA256"
725#endif 731#endif
726 732
727#define TLS_CT_RSA_SIGN 1 733#define TLS_CT_RSA_SIGN 1
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-03-20 23:26:24 +0000