Blame - library/ssl_ciphersuites.c - third_party/github/ARMmbed/mbedtls

blob: 59cdc7a8069cd7492000e068d416de0c4df558d5 [file] [log] [blame]

Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	1	/**
				2	* \file ssl_ciphersuites.c
				3	*
Manuel Pégourié-Gonnard	b4fe3cb	2015-01-22 16:11:05 +0000	[diff] [blame]	4	* \brief SSL ciphersuites for mbed TLS
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	5	*
Manuel Pégourié-Gonnard	6fb8187	2015-07-27 11:11:48 +0200	[diff] [blame]	6	* Copyright (C) 2006-2015, ARM Limited, All Rights Reserved
Manuel Pégourié-Gonnard	37ff140	2015-09-04 14:21:07 +0200	[diff] [blame]	7	* SPDX-License-Identifier: Apache-2.0
				8	*
				9	* Licensed under the Apache License, Version 2.0 (the "License"); you may
				10	* not use this file except in compliance with the License.
				11	* You may obtain a copy of the License at
				12	*
				13	* http://www.apache.org/licenses/LICENSE-2.0
				14	*
				15	* Unless required by applicable law or agreed to in writing, software
				16	* distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
				17	* WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
				18	* See the License for the specific language governing permissions and
				19	* limitations under the License.
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	20	*
Manuel Pégourié-Gonnard	fe44643	2015-03-06 13:17:10 +0000	[diff] [blame]	21	* This file is part of mbed TLS (https://tls.mbed.org)
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	22	*/
				23
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	24	#if !defined(MBEDTLS_CONFIG_FILE)
Manuel Pégourié-Gonnard	7f80997	2015-03-09 17:05:11 +0000	[diff] [blame]	25	#include "mbedtls/config.h"
Manuel Pégourié-Gonnard	cef4ad2	2014-04-29 12:39:06 +0200	[diff] [blame]	26	#else
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	27	#include MBEDTLS_CONFIG_FILE
Manuel Pégourié-Gonnard	cef4ad2	2014-04-29 12:39:06 +0200	[diff] [blame]	28	#endif
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	29
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	30	#if defined(MBEDTLS_SSL_TLS_C)
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	31
SimonB	d5800b7	2016-04-26 07:43:27 +0100	[diff] [blame]	32	#if defined(MBEDTLS_PLATFORM_C)
				33	#include "mbedtls/platform.h"
				34	#else
				35	#include <stdlib.h>
SimonB	d5800b7	2016-04-26 07:43:27 +0100	[diff] [blame]	36	#endif
				37
Manuel Pégourié-Gonnard	7f80997	2015-03-09 17:05:11 +0000	[diff] [blame]	38	#include "mbedtls/ssl_ciphersuites.h"
				39	#include "mbedtls/ssl.h"
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	40
Rich Evans	00ab470	2015-02-06 13:43:58 +0000	[diff] [blame]	41	#include <string.h>
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	42
Paul Bakker	41c83d3	2013-03-20 14:39:14 +0100	[diff] [blame]	43	/*
				44	* Ordered from most preferred to least preferred in terms of security.
Manuel Pégourié-Gonnard	6fb0f74	2013-10-25 17:08:15 +0200	[diff] [blame]	45	*
Manuel Pégourié-Gonnard	c16f4e1	2014-04-29 18:23:07 +0200	[diff] [blame]	46	* Current rule (except rc4, weak and null which come last):
Manuel Pégourié-Gonnard	6fb0f74	2013-10-25 17:08:15 +0200	[diff] [blame]	47	* 1. By key exchange:
Manuel Pégourié-Gonnard	538cb7b	2015-09-15 18:03:28 +0200	[diff] [blame]	48	* Forward-secure non-PSK > forward-secure PSK > ECJPAKE > other non-PSK > other PSK
Manuel Pégourié-Gonnard	6fb0f74	2013-10-25 17:08:15 +0200	[diff] [blame]	49	* 2. By key length and cipher:
Manuel Pégourié-Gonnard	ce66d5e	2018-06-14 11:11:15 +0200	[diff] [blame]	50	* ChaCha > AES-256 > Camellia-256 > ARIA-256 > AES-128 > Camellia-128 > ARIA-128 > 3DES
Manuel Pégourié-Gonnard	42b5374	2014-06-19 16:18:26 +0200	[diff] [blame]	51	* 3. By cipher mode when relevant GCM > CCM > CBC > CCM_8
Manuel Pégourié-Gonnard	6768da9	2014-05-14 12:26:51 +0200	[diff] [blame]	52	* 4. By hash function used when relevant
Manuel Pégourié-Gonnard	6fb0f74	2013-10-25 17:08:15 +0200	[diff] [blame]	53	* 5. By key exchange/auth again: EC > non-EC
Paul Bakker	41c83d3	2013-03-20 14:39:14 +0100	[diff] [blame]	54	*/
				55	static const int ciphersuite_preference[] =
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	56	{
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	57	#if defined(MBEDTLS_SSL_CIPHERSUITES)
				58	MBEDTLS_SSL_CIPHERSUITES,
Manuel Pégourié-Gonnard	dfc7df0	2014-06-30 17:59:55 +0200	[diff] [blame]	59	#else
Manuel Pégourié-Gonnard	ce66d5e	2018-06-14 11:11:15 +0200	[diff] [blame]	60	/* Chacha-Poly ephemeral suites */
				61	MBEDTLS_TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256,
				62	MBEDTLS_TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256,
				63	MBEDTLS_TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256,
				64
Paul Bakker	27714b1	2013-04-07 23:07:12 +0200	[diff] [blame]	65	/* All AES-256 ephemeral suites */
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	66	MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,
				67	MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,
				68	MBEDTLS_TLS_DHE_RSA_WITH_AES_256_GCM_SHA384,
				69	MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CCM,
				70	MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CCM,
				71	MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384,
				72	MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384,
				73	MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA256,
				74	MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA,
				75	MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,
				76	MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA,
				77	MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CCM_8,
				78	MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CCM_8,
Paul Bakker	27714b1	2013-04-07 23:07:12 +0200	[diff] [blame]	79
				80	/* All CAMELLIA-256 ephemeral suites */
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	81	MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384,
				82	MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_GCM_SHA384,
				83	MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_GCM_SHA384,
				84	MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384,
				85	MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384,
				86	MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256,
				87	MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA,
Paul Bakker	27714b1	2013-04-07 23:07:12 +0200	[diff] [blame]	88
Markku-Juhani O. Saarinen	c06e101	2017-12-07 11:51:13 +0000	[diff] [blame]	89	/* All ARIA-256 ephemeral suites */
				90	MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_256_GCM_SHA384,
				91	MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384,
				92	MBEDTLS_TLS_DHE_RSA_WITH_ARIA_256_GCM_SHA384,
				93	MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_256_CBC_SHA384,
				94	MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_256_CBC_SHA384,
				95	MBEDTLS_TLS_DHE_RSA_WITH_ARIA_256_CBC_SHA384,
				96
Paul Bakker	27714b1	2013-04-07 23:07:12 +0200	[diff] [blame]	97	/* All AES-128 ephemeral suites */
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	98	MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,
				99	MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,
				100	MBEDTLS_TLS_DHE_RSA_WITH_AES_128_GCM_SHA256,
				101	MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CCM,
				102	MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CCM,
				103	MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256,
				104	MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,
				105	MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA256,
				106	MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA,
				107	MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,
				108	MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA,
				109	MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8,
				110	MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CCM_8,
Paul Bakker	27714b1	2013-04-07 23:07:12 +0200	[diff] [blame]	111
				112	/* All CAMELLIA-128 ephemeral suites */
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	113	MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_GCM_SHA256,
				114	MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_GCM_SHA256,
				115	MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_GCM_SHA256,
				116	MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256,
				117	MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256,
				118	MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256,
				119	MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA,
Paul Bakker	27714b1	2013-04-07 23:07:12 +0200	[diff] [blame]	120
Markku-Juhani O. Saarinen	c06e101	2017-12-07 11:51:13 +0000	[diff] [blame]	121	/* All ARIA-128 ephemeral suites */
				122	MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_128_GCM_SHA256,
				123	MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256,
				124	MBEDTLS_TLS_DHE_RSA_WITH_ARIA_128_GCM_SHA256,
				125	MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_128_CBC_SHA256,
				126	MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_128_CBC_SHA256,
				127	MBEDTLS_TLS_DHE_RSA_WITH_ARIA_128_CBC_SHA256,
				128
Manuel Pégourié-Gonnard	225d6aa	2013-10-11 19:07:56 +0200	[diff] [blame]	129	/* All remaining >= 128-bit ephemeral suites */
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	130	MBEDTLS_TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA,
				131	MBEDTLS_TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA,
				132	MBEDTLS_TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA,
Paul Bakker	27714b1	2013-04-07 23:07:12 +0200	[diff] [blame]	133
Paul Bakker	d4a56ec	2013-04-16 18:05:29 +0200	[diff] [blame]	134	/* The PSK ephemeral suites */
Manuel Pégourié-Gonnard	ce66d5e	2018-06-14 11:11:15 +0200	[diff] [blame]	135	MBEDTLS_TLS_ECDHE_PSK_WITH_CHACHA20_POLY1305_SHA256,
				136	MBEDTLS_TLS_DHE_PSK_WITH_CHACHA20_POLY1305_SHA256,
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	137	MBEDTLS_TLS_DHE_PSK_WITH_AES_256_GCM_SHA384,
				138	MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CCM,
				139	MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA384,
				140	MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA384,
				141	MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA,
				142	MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA,
				143	MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_GCM_SHA384,
				144	MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384,
				145	MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384,
				146	MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CCM_8,
Manuel Pégourié-Gonnard	af37f0f	2018-02-20 11:03:40 +0100	[diff] [blame]	147	MBEDTLS_TLS_DHE_PSK_WITH_ARIA_256_GCM_SHA384,
				148	MBEDTLS_TLS_ECDHE_PSK_WITH_ARIA_256_CBC_SHA384,
				149	MBEDTLS_TLS_DHE_PSK_WITH_ARIA_256_CBC_SHA384,
Manuel Pégourié-Gonnard	6fb0f74	2013-10-25 17:08:15 +0200	[diff] [blame]	150
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	151	MBEDTLS_TLS_DHE_PSK_WITH_AES_128_GCM_SHA256,
				152	MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CCM,
				153	MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256,
				154	MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA256,
				155	MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA,
				156	MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA,
				157	MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_GCM_SHA256,
				158	MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256,
				159	MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256,
				160	MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CCM_8,
Manuel Pégourié-Gonnard	af37f0f	2018-02-20 11:03:40 +0100	[diff] [blame]	161	MBEDTLS_TLS_DHE_PSK_WITH_ARIA_128_GCM_SHA256,
				162	MBEDTLS_TLS_ECDHE_PSK_WITH_ARIA_128_CBC_SHA256,
				163	MBEDTLS_TLS_DHE_PSK_WITH_ARIA_128_CBC_SHA256,
Manuel Pégourié-Gonnard	6fb0f74	2013-10-25 17:08:15 +0200	[diff] [blame]	164
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	165	MBEDTLS_TLS_ECDHE_PSK_WITH_3DES_EDE_CBC_SHA,
				166	MBEDTLS_TLS_DHE_PSK_WITH_3DES_EDE_CBC_SHA,
Paul Bakker	d4a56ec	2013-04-16 18:05:29 +0200	[diff] [blame]	167
Manuel Pégourié-Gonnard	538cb7b	2015-09-15 18:03:28 +0200	[diff] [blame]	168	/* The ECJPAKE suite */
				169	MBEDTLS_TLS_ECJPAKE_WITH_AES_128_CCM_8,
				170
Paul Bakker	27714b1	2013-04-07 23:07:12 +0200	[diff] [blame]	171	/* All AES-256 suites */
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	172	MBEDTLS_TLS_RSA_WITH_AES_256_GCM_SHA384,
				173	MBEDTLS_TLS_RSA_WITH_AES_256_CCM,
				174	MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA256,
				175	MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA,
				176	MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384,
				177	MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384,
				178	MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA,
				179	MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384,
				180	MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384,
				181	MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA,
				182	MBEDTLS_TLS_RSA_WITH_AES_256_CCM_8,
Paul Bakker	27714b1	2013-04-07 23:07:12 +0200	[diff] [blame]	183
				184	/* All CAMELLIA-256 suites */
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	185	MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_GCM_SHA384,
				186	MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256,
				187	MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA,
				188	MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384,
				189	MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384,
				190	MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384,
				191	MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384,
Paul Bakker	27714b1	2013-04-07 23:07:12 +0200	[diff] [blame]	192
Manuel Pégourié-Gonnard	af37f0f	2018-02-20 11:03:40 +0100	[diff] [blame]	193	/* All ARIA-256 suites */
				194	MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_256_GCM_SHA384,
				195	MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_256_GCM_SHA384,
				196	MBEDTLS_TLS_RSA_WITH_ARIA_256_GCM_SHA384,
				197	MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_256_CBC_SHA384,
				198	MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_256_CBC_SHA384,
				199	MBEDTLS_TLS_RSA_WITH_ARIA_256_CBC_SHA384,
				200
Paul Bakker	27714b1	2013-04-07 23:07:12 +0200	[diff] [blame]	201	/* All AES-128 suites */
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	202	MBEDTLS_TLS_RSA_WITH_AES_128_GCM_SHA256,
				203	MBEDTLS_TLS_RSA_WITH_AES_128_CCM,
				204	MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA256,
				205	MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA,
				206	MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256,
				207	MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256,
				208	MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA,
				209	MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256,
				210	MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256,
				211	MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA,
				212	MBEDTLS_TLS_RSA_WITH_AES_128_CCM_8,
Paul Bakker	27714b1	2013-04-07 23:07:12 +0200	[diff] [blame]	213
				214	/* All CAMELLIA-128 suites */
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	215	MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_GCM_SHA256,
				216	MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256,
				217	MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA,
				218	MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256,
				219	MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256,
				220	MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256,
				221	MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256,
Paul Bakker	27714b1	2013-04-07 23:07:12 +0200	[diff] [blame]	222
Manuel Pégourié-Gonnard	af37f0f	2018-02-20 11:03:40 +0100	[diff] [blame]	223	/* All ARIA-128 suites */
				224	MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_128_GCM_SHA256,
				225	MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_128_GCM_SHA256,
				226	MBEDTLS_TLS_RSA_WITH_ARIA_128_GCM_SHA256,
				227	MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_128_CBC_SHA256,
				228	MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_128_CBC_SHA256,
				229	MBEDTLS_TLS_RSA_WITH_ARIA_128_CBC_SHA256,
				230
Manuel Pégourié-Gonnard	225d6aa	2013-10-11 19:07:56 +0200	[diff] [blame]	231	/* All remaining >= 128-bit suites */
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	232	MBEDTLS_TLS_RSA_WITH_3DES_EDE_CBC_SHA,
				233	MBEDTLS_TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA,
				234	MBEDTLS_TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA,
Paul Bakker	27714b1	2013-04-07 23:07:12 +0200	[diff] [blame]	235
Paul Bakker	d4a56ec	2013-04-16 18:05:29 +0200	[diff] [blame]	236	/* The RSA PSK suites */
Manuel Pégourié-Gonnard	ce66d5e	2018-06-14 11:11:15 +0200	[diff] [blame]	237	MBEDTLS_TLS_RSA_PSK_WITH_CHACHA20_POLY1305_SHA256,
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	238	MBEDTLS_TLS_RSA_PSK_WITH_AES_256_GCM_SHA384,
				239	MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA384,
				240	MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA,
				241	MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_GCM_SHA384,
				242	MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384,
Markku-Juhani O. Saarinen	c06e101	2017-12-07 11:51:13 +0000	[diff] [blame]	243	MBEDTLS_TLS_RSA_PSK_WITH_ARIA_256_GCM_SHA384,
				244	MBEDTLS_TLS_RSA_PSK_WITH_ARIA_256_CBC_SHA384,
Manuel Pégourié-Gonnard	6fb0f74	2013-10-25 17:08:15 +0200	[diff] [blame]	245
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	246	MBEDTLS_TLS_RSA_PSK_WITH_AES_128_GCM_SHA256,
				247	MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA256,
				248	MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA,
				249	MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_GCM_SHA256,
				250	MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256,
Markku-Juhani O. Saarinen	c06e101	2017-12-07 11:51:13 +0000	[diff] [blame]	251	MBEDTLS_TLS_RSA_PSK_WITH_ARIA_128_GCM_SHA256,
				252	MBEDTLS_TLS_RSA_PSK_WITH_ARIA_128_CBC_SHA256,
Manuel Pégourié-Gonnard	6fb0f74	2013-10-25 17:08:15 +0200	[diff] [blame]	253
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	254	MBEDTLS_TLS_RSA_PSK_WITH_3DES_EDE_CBC_SHA,
Paul Bakker	d4a56ec	2013-04-16 18:05:29 +0200	[diff] [blame]	255
				256	/* The PSK suites */
Manuel Pégourié-Gonnard	ce66d5e	2018-06-14 11:11:15 +0200	[diff] [blame]	257	MBEDTLS_TLS_PSK_WITH_CHACHA20_POLY1305_SHA256,
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	258	MBEDTLS_TLS_PSK_WITH_AES_256_GCM_SHA384,
				259	MBEDTLS_TLS_PSK_WITH_AES_256_CCM,
				260	MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA384,
				261	MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA,
				262	MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_GCM_SHA384,
				263	MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_CBC_SHA384,
				264	MBEDTLS_TLS_PSK_WITH_AES_256_CCM_8,
Markku-Juhani O. Saarinen	c06e101	2017-12-07 11:51:13 +0000	[diff] [blame]	265	MBEDTLS_TLS_PSK_WITH_ARIA_256_GCM_SHA384,
				266	MBEDTLS_TLS_PSK_WITH_ARIA_256_CBC_SHA384,
Manuel Pégourié-Gonnard	6fb0f74	2013-10-25 17:08:15 +0200	[diff] [blame]	267
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	268	MBEDTLS_TLS_PSK_WITH_AES_128_GCM_SHA256,
				269	MBEDTLS_TLS_PSK_WITH_AES_128_CCM,
				270	MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA256,
				271	MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA,
				272	MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_GCM_SHA256,
				273	MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256,
				274	MBEDTLS_TLS_PSK_WITH_AES_128_CCM_8,
Markku-Juhani O. Saarinen	c06e101	2017-12-07 11:51:13 +0000	[diff] [blame]	275	MBEDTLS_TLS_PSK_WITH_ARIA_128_GCM_SHA256,
				276	MBEDTLS_TLS_PSK_WITH_ARIA_128_CBC_SHA256,
Manuel Pégourié-Gonnard	6fb0f74	2013-10-25 17:08:15 +0200	[diff] [blame]	277
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	278	MBEDTLS_TLS_PSK_WITH_3DES_EDE_CBC_SHA,
Manuel Pégourié-Gonnard	c16f4e1	2014-04-29 18:23:07 +0200	[diff] [blame]	279
				280	/* RC4 suites */
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	281	MBEDTLS_TLS_ECDHE_ECDSA_WITH_RC4_128_SHA,
				282	MBEDTLS_TLS_ECDHE_RSA_WITH_RC4_128_SHA,
				283	MBEDTLS_TLS_ECDHE_PSK_WITH_RC4_128_SHA,
				284	MBEDTLS_TLS_DHE_PSK_WITH_RC4_128_SHA,
				285	MBEDTLS_TLS_RSA_WITH_RC4_128_SHA,
				286	MBEDTLS_TLS_RSA_WITH_RC4_128_MD5,
				287	MBEDTLS_TLS_ECDH_RSA_WITH_RC4_128_SHA,
				288	MBEDTLS_TLS_ECDH_ECDSA_WITH_RC4_128_SHA,
				289	MBEDTLS_TLS_RSA_PSK_WITH_RC4_128_SHA,
				290	MBEDTLS_TLS_PSK_WITH_RC4_128_SHA,
Paul Bakker	d4a56ec	2013-04-16 18:05:29 +0200	[diff] [blame]	291
Manuel Pégourié-Gonnard	225d6aa	2013-10-11 19:07:56 +0200	[diff] [blame]	292	/* Weak suites */
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	293	MBEDTLS_TLS_DHE_RSA_WITH_DES_CBC_SHA,
				294	MBEDTLS_TLS_RSA_WITH_DES_CBC_SHA,
Manuel Pégourié-Gonnard	225d6aa	2013-10-11 19:07:56 +0200	[diff] [blame]	295
				296	/* NULL suites */
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	297	MBEDTLS_TLS_ECDHE_ECDSA_WITH_NULL_SHA,
				298	MBEDTLS_TLS_ECDHE_RSA_WITH_NULL_SHA,
				299	MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA384,
				300	MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA256,
				301	MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA,
				302	MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA384,
				303	MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA256,
				304	MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA,
Manuel Pégourié-Gonnard	6fb0f74	2013-10-25 17:08:15 +0200	[diff] [blame]	305
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	306	MBEDTLS_TLS_RSA_WITH_NULL_SHA256,
				307	MBEDTLS_TLS_RSA_WITH_NULL_SHA,
				308	MBEDTLS_TLS_RSA_WITH_NULL_MD5,
				309	MBEDTLS_TLS_ECDH_RSA_WITH_NULL_SHA,
				310	MBEDTLS_TLS_ECDH_ECDSA_WITH_NULL_SHA,
				311	MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA384,
				312	MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA256,
				313	MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA,
				314	MBEDTLS_TLS_PSK_WITH_NULL_SHA384,
				315	MBEDTLS_TLS_PSK_WITH_NULL_SHA256,
				316	MBEDTLS_TLS_PSK_WITH_NULL_SHA,
Paul Bakker	27714b1	2013-04-07 23:07:12 +0200	[diff] [blame]	317
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	318	#endif /* MBEDTLS_SSL_CIPHERSUITES */
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	319	0
				320	};
				321
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	322	static const mbedtls_ssl_ciphersuite_t ciphersuite_definitions[] =
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	323	{
Manuel Pégourié-Gonnard	ce66d5e	2018-06-14 11:11:15 +0200	[diff] [blame]	324	#if defined(MBEDTLS_CHACHAPOLY_C) && \
				325	defined(MBEDTLS_SHA256_C) && \
				326	defined(MBEDTLS_SSL_PROTO_TLS1_2)
				327	#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED)
				328	{ MBEDTLS_TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256,
				329	"TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256",
				330	MBEDTLS_CIPHER_CHACHA20_POLY1305, MBEDTLS_MD_SHA256,
				331	MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,
				332	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				333	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				334	0 },
				335	#endif
				336	#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED)
				337	{ MBEDTLS_TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256,
				338	"TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256",
				339	MBEDTLS_CIPHER_CHACHA20_POLY1305, MBEDTLS_MD_SHA256,
				340	MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,
				341	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				342	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				343	0 },
				344	#endif
				345	#if defined(MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED)
				346	{ MBEDTLS_TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256,
				347	"TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256",
				348	MBEDTLS_CIPHER_CHACHA20_POLY1305, MBEDTLS_MD_SHA256,
				349	MBEDTLS_KEY_EXCHANGE_DHE_RSA,
				350	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				351	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				352	0 },
				353	#endif
				354	#if defined(MBEDTLS_KEY_EXCHANGE_PSK_ENABLED)
				355	{ MBEDTLS_TLS_PSK_WITH_CHACHA20_POLY1305_SHA256,
				356	"TLS-PSK-WITH-CHACHA20-POLY1305-SHA256",
				357	MBEDTLS_CIPHER_CHACHA20_POLY1305, MBEDTLS_MD_SHA256,
				358	MBEDTLS_KEY_EXCHANGE_PSK,
				359	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				360	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				361	0 },
				362	#endif
				363	#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED)
				364	{ MBEDTLS_TLS_ECDHE_PSK_WITH_CHACHA20_POLY1305_SHA256,
				365	"TLS-ECDHE-PSK-WITH-CHACHA20-POLY1305-SHA256",
				366	MBEDTLS_CIPHER_CHACHA20_POLY1305, MBEDTLS_MD_SHA256,
				367	MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,
				368	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				369	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				370	0 },
				371	#endif
				372	#if defined(MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED)
				373	{ MBEDTLS_TLS_DHE_PSK_WITH_CHACHA20_POLY1305_SHA256,
				374	"TLS-DHE-PSK-WITH-CHACHA20-POLY1305-SHA256",
				375	MBEDTLS_CIPHER_CHACHA20_POLY1305, MBEDTLS_MD_SHA256,
				376	MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				377	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				378	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				379	0 },
				380	#endif
				381	#if defined(MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED)
				382	{ MBEDTLS_TLS_RSA_PSK_WITH_CHACHA20_POLY1305_SHA256,
				383	"TLS-RSA-PSK-WITH-CHACHA20-POLY1305-SHA256",
				384	MBEDTLS_CIPHER_CHACHA20_POLY1305, MBEDTLS_MD_SHA256,
				385	MBEDTLS_KEY_EXCHANGE_RSA_PSK,
				386	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				387	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				388	0 },
				389	#endif
				390	#endif /* MBEDTLS_CHACHAPOLY_C &&
				391	MBEDTLS_SHA256_C &&
				392	MBEDTLS_SSL_PROTO_TLS1_2 */
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	393	#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED)
				394	#if defined(MBEDTLS_AES_C)
				395	#if defined(MBEDTLS_SHA1_C)
				396	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				397	{ MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, "TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA",
				398	MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,
				399	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				400	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	51451f8	2013-09-17 12:06:25 +0200	[diff] [blame]	401	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	402	{ MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, "TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA",
				403	MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,
				404	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				405	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	51451f8	2013-09-17 12:06:25 +0200	[diff] [blame]	406	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	407	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				408	#endif /* MBEDTLS_SHA1_C */
				409	#if defined(MBEDTLS_SHA256_C)
				410	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				411	{ MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, "TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256",
				412	MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,
				413	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				414	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	51451f8	2013-09-17 12:06:25 +0200	[diff] [blame]	415	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	416	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				417	#if defined(MBEDTLS_GCM_C)
				418	{ MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, "TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256",
				419	MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,
				420	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				421	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	51451f8	2013-09-17 12:06:25 +0200	[diff] [blame]	422	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	423	#endif /* MBEDTLS_GCM_C */
				424	#endif /* MBEDTLS_SHA256_C */
				425	#if defined(MBEDTLS_SHA512_C)
				426	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				427	{ MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, "TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384",
				428	MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,
				429	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				430	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	51451f8	2013-09-17 12:06:25 +0200	[diff] [blame]	431	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	432	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				433	#if defined(MBEDTLS_GCM_C)
				434	{ MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, "TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384",
				435	MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,
				436	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				437	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	51451f8	2013-09-17 12:06:25 +0200	[diff] [blame]	438	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	439	#endif /* MBEDTLS_GCM_C */
				440	#endif /* MBEDTLS_SHA512_C */
				441	#if defined(MBEDTLS_CCM_C)
				442	{ MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CCM, "TLS-ECDHE-ECDSA-WITH-AES-256-CCM",
				443	MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,
				444	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				445	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	6768da9	2014-05-14 12:26:51 +0200	[diff] [blame]	446	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	447	{ MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CCM_8, "TLS-ECDHE-ECDSA-WITH-AES-256-CCM-8",
				448	MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,
				449	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				450	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				451	MBEDTLS_CIPHERSUITE_SHORT_TAG },
				452	{ MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CCM, "TLS-ECDHE-ECDSA-WITH-AES-128-CCM",
				453	MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,
				454	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				455	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	6768da9	2014-05-14 12:26:51 +0200	[diff] [blame]	456	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	457	{ MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8, "TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8",
				458	MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,
				459	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				460	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				461	MBEDTLS_CIPHERSUITE_SHORT_TAG },
				462	#endif /* MBEDTLS_CCM_C */
				463	#endif /* MBEDTLS_AES_C */
Manuel Pégourié-Gonnard	32ea60a	2013-08-17 17:39:04 +0200	[diff] [blame]	464
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	465	#if defined(MBEDTLS_CAMELLIA_C)
				466	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				467	#if defined(MBEDTLS_SHA256_C)
				468	{ MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256, "TLS-ECDHE-ECDSA-WITH-CAMELLIA-128-CBC-SHA256",
				469	MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,
				470	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				471	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	51451f8	2013-09-17 12:06:25 +0200	[diff] [blame]	472	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	473	#endif /* MBEDTLS_SHA256_C */
				474	#if defined(MBEDTLS_SHA512_C)
				475	{ MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384, "TLS-ECDHE-ECDSA-WITH-CAMELLIA-256-CBC-SHA384",
				476	MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,
				477	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				478	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	51451f8	2013-09-17 12:06:25 +0200	[diff] [blame]	479	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	480	#endif /* MBEDTLS_SHA512_C */
				481	#endif /* MBEDTLS_CIPHER_MODE_CBC */
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	482
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	483	#if defined(MBEDTLS_GCM_C)
				484	#if defined(MBEDTLS_SHA256_C)
				485	{ MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_GCM_SHA256, "TLS-ECDHE-ECDSA-WITH-CAMELLIA-128-GCM-SHA256",
				486	MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,
				487	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				488	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	489	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	490	#endif /* MBEDTLS_SHA256_C */
				491	#if defined(MBEDTLS_SHA512_C)
				492	{ MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384, "TLS-ECDHE-ECDSA-WITH-CAMELLIA-256-GCM-SHA384",
				493	MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,
				494	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				495	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	496	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	497	#endif /* MBEDTLS_SHA512_C */
				498	#endif /* MBEDTLS_GCM_C */
				499	#endif /* MBEDTLS_CAMELLIA_C */
Manuel Pégourié-Gonnard	32ea60a	2013-08-17 17:39:04 +0200	[diff] [blame]	500
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	501	#if defined(MBEDTLS_DES_C)
				502	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				503	#if defined(MBEDTLS_SHA1_C)
				504	{ MBEDTLS_TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA, "TLS-ECDHE-ECDSA-WITH-3DES-EDE-CBC-SHA",
				505	MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,
				506	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				507	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	51451f8	2013-09-17 12:06:25 +0200	[diff] [blame]	508	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	509	#endif /* MBEDTLS_SHA1_C */
				510	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				511	#endif /* MBEDTLS_DES_C */
Manuel Pégourié-Gonnard	32ea60a	2013-08-17 17:39:04 +0200	[diff] [blame]	512
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	513	#if defined(MBEDTLS_ARC4_C)
				514	#if defined(MBEDTLS_SHA1_C)
				515	{ MBEDTLS_TLS_ECDHE_ECDSA_WITH_RC4_128_SHA, "TLS-ECDHE-ECDSA-WITH-RC4-128-SHA",
				516	MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,
				517	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				518	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				519	MBEDTLS_CIPHERSUITE_NODTLS },
				520	#endif /* MBEDTLS_SHA1_C */
				521	#endif /* MBEDTLS_ARC4_C */
Manuel Pégourié-Gonnard	32ea60a	2013-08-17 17:39:04 +0200	[diff] [blame]	522
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	523	#if defined(MBEDTLS_CIPHER_NULL_CIPHER)
				524	#if defined(MBEDTLS_SHA1_C)
				525	{ MBEDTLS_TLS_ECDHE_ECDSA_WITH_NULL_SHA, "TLS-ECDHE-ECDSA-WITH-NULL-SHA",
				526	MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,
				527	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				528	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				529	MBEDTLS_CIPHERSUITE_WEAK },
				530	#endif /* MBEDTLS_SHA1_C */
				531	#endif /* MBEDTLS_CIPHER_NULL_CIPHER */
				532	#endif /* MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED */
Manuel Pégourié-Gonnard	32ea60a	2013-08-17 17:39:04 +0200	[diff] [blame]	533
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	534	#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED)
				535	#if defined(MBEDTLS_AES_C)
				536	#if defined(MBEDTLS_SHA1_C)
				537	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				538	{ MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, "TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA",
				539	MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,
				540	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				541	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	51451f8	2013-09-17 12:06:25 +0200	[diff] [blame]	542	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	543	{ MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, "TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA",
				544	MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,
				545	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				546	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	51451f8	2013-09-17 12:06:25 +0200	[diff] [blame]	547	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	548	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				549	#endif /* MBEDTLS_SHA1_C */
				550	#if defined(MBEDTLS_SHA256_C)
				551	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				552	{ MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, "TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256",
				553	MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,
				554	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				555	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	51451f8	2013-09-17 12:06:25 +0200	[diff] [blame]	556	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	557	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				558	#if defined(MBEDTLS_GCM_C)
				559	{ MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, "TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256",
				560	MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,
				561	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				562	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	51451f8	2013-09-17 12:06:25 +0200	[diff] [blame]	563	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	564	#endif /* MBEDTLS_GCM_C */
				565	#endif /* MBEDTLS_SHA256_C */
				566	#if defined(MBEDTLS_SHA512_C)
				567	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				568	{ MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, "TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384",
				569	MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,
				570	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				571	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	51451f8	2013-09-17 12:06:25 +0200	[diff] [blame]	572	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	573	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				574	#if defined(MBEDTLS_GCM_C)
				575	{ MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, "TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384",
				576	MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,
				577	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				578	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	51451f8	2013-09-17 12:06:25 +0200	[diff] [blame]	579	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	580	#endif /* MBEDTLS_GCM_C */
				581	#endif /* MBEDTLS_SHA512_C */
				582	#endif /* MBEDTLS_AES_C */
Paul Bakker	27714b1	2013-04-07 23:07:12 +0200	[diff] [blame]	583
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	584	#if defined(MBEDTLS_CAMELLIA_C)
				585	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				586	#if defined(MBEDTLS_SHA256_C)
				587	{ MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256, "TLS-ECDHE-RSA-WITH-CAMELLIA-128-CBC-SHA256",
				588	MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,
				589	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				590	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	51451f8	2013-09-17 12:06:25 +0200	[diff] [blame]	591	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	592	#endif /* MBEDTLS_SHA256_C */
				593	#if defined(MBEDTLS_SHA512_C)
				594	{ MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384, "TLS-ECDHE-RSA-WITH-CAMELLIA-256-CBC-SHA384",
				595	MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,
				596	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				597	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	51451f8	2013-09-17 12:06:25 +0200	[diff] [blame]	598	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	599	#endif /* MBEDTLS_SHA512_C */
				600	#endif /* MBEDTLS_CIPHER_MODE_CBC */
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	601
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	602	#if defined(MBEDTLS_GCM_C)
				603	#if defined(MBEDTLS_SHA256_C)
				604	{ MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_GCM_SHA256, "TLS-ECDHE-RSA-WITH-CAMELLIA-128-GCM-SHA256",
				605	MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,
				606	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				607	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	608	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	609	#endif /* MBEDTLS_SHA256_C */
				610	#if defined(MBEDTLS_SHA512_C)
				611	{ MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_GCM_SHA384, "TLS-ECDHE-RSA-WITH-CAMELLIA-256-GCM-SHA384",
				612	MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,
				613	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				614	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	615	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	616	#endif /* MBEDTLS_SHA512_C */
				617	#endif /* MBEDTLS_GCM_C */
				618	#endif /* MBEDTLS_CAMELLIA_C */
Paul Bakker	27714b1	2013-04-07 23:07:12 +0200	[diff] [blame]	619
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	620	#if defined(MBEDTLS_DES_C)
				621	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				622	#if defined(MBEDTLS_SHA1_C)
				623	{ MBEDTLS_TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, "TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA",
				624	MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,
				625	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				626	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	51451f8	2013-09-17 12:06:25 +0200	[diff] [blame]	627	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	628	#endif /* MBEDTLS_SHA1_C */
				629	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				630	#endif /* MBEDTLS_DES_C */
Paul Bakker	27714b1	2013-04-07 23:07:12 +0200	[diff] [blame]	631
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	632	#if defined(MBEDTLS_ARC4_C)
				633	#if defined(MBEDTLS_SHA1_C)
				634	{ MBEDTLS_TLS_ECDHE_RSA_WITH_RC4_128_SHA, "TLS-ECDHE-RSA-WITH-RC4-128-SHA",
				635	MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,
				636	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				637	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				638	MBEDTLS_CIPHERSUITE_NODTLS },
				639	#endif /* MBEDTLS_SHA1_C */
				640	#endif /* MBEDTLS_ARC4_C */
Paul Bakker	27714b1	2013-04-07 23:07:12 +0200	[diff] [blame]	641
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	642	#if defined(MBEDTLS_CIPHER_NULL_CIPHER)
				643	#if defined(MBEDTLS_SHA1_C)
				644	{ MBEDTLS_TLS_ECDHE_RSA_WITH_NULL_SHA, "TLS-ECDHE-RSA-WITH-NULL-SHA",
				645	MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,
				646	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				647	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				648	MBEDTLS_CIPHERSUITE_WEAK },
				649	#endif /* MBEDTLS_SHA1_C */
				650	#endif /* MBEDTLS_CIPHER_NULL_CIPHER */
				651	#endif /* MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED */
Paul Bakker	41c83d3	2013-03-20 14:39:14 +0100	[diff] [blame]	652
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	653	#if defined(MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED)
				654	#if defined(MBEDTLS_AES_C)
				655	#if defined(MBEDTLS_SHA512_C) && defined(MBEDTLS_GCM_C)
				656	{ MBEDTLS_TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, "TLS-DHE-RSA-WITH-AES-256-GCM-SHA384",
				657	MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_RSA,
				658	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				659	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	660	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	661	#endif /* MBEDTLS_SHA512_C && MBEDTLS_GCM_C */
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	662
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	663	#if defined(MBEDTLS_SHA256_C)
				664	#if defined(MBEDTLS_GCM_C)
				665	{ MBEDTLS_TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, "TLS-DHE-RSA-WITH-AES-128-GCM-SHA256",
				666	MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,
				667	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				668	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	669	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	670	#endif /* MBEDTLS_GCM_C */
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	671
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	672	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				673	{ MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA256, "TLS-DHE-RSA-WITH-AES-128-CBC-SHA256",
				674	MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,
				675	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				676	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	677	0 },
				678
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	679	{ MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA256, "TLS-DHE-RSA-WITH-AES-256-CBC-SHA256",
				680	MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,
				681	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				682	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	683	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	684	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				685	#endif /* MBEDTLS_SHA256_C */
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	686
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	687	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				688	#if defined(MBEDTLS_SHA1_C)
				689	{ MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA, "TLS-DHE-RSA-WITH-AES-128-CBC-SHA",
				690	MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_RSA,
				691	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				692	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	693	0 },
				694
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	695	{ MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA, "TLS-DHE-RSA-WITH-AES-256-CBC-SHA",
				696	MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_RSA,
				697	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				698	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	699	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	700	#endif /* MBEDTLS_SHA1_C */
				701	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				702	#if defined(MBEDTLS_CCM_C)
				703	{ MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CCM, "TLS-DHE-RSA-WITH-AES-256-CCM",
				704	MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,
				705	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				706	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	6768da9	2014-05-14 12:26:51 +0200	[diff] [blame]	707	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	708	{ MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CCM_8, "TLS-DHE-RSA-WITH-AES-256-CCM-8",
				709	MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,
				710	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				711	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				712	MBEDTLS_CIPHERSUITE_SHORT_TAG },
				713	{ MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CCM, "TLS-DHE-RSA-WITH-AES-128-CCM",
				714	MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,
				715	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				716	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	6768da9	2014-05-14 12:26:51 +0200	[diff] [blame]	717	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	718	{ MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CCM_8, "TLS-DHE-RSA-WITH-AES-128-CCM-8",
				719	MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,
				720	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				721	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				722	MBEDTLS_CIPHERSUITE_SHORT_TAG },
				723	#endif /* MBEDTLS_CCM_C */
				724	#endif /* MBEDTLS_AES_C */
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	725
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	726	#if defined(MBEDTLS_CAMELLIA_C)
				727	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				728	#if defined(MBEDTLS_SHA256_C)
				729	{ MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256, "TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256",
				730	MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,
				731	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				732	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	733	0 },
				734
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	735	{ MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256, "TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256",
				736	MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,
				737	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				738	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	739	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	740	#endif /* MBEDTLS_SHA256_C */
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	741
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	742	#if defined(MBEDTLS_SHA1_C)
				743	{ MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA, "TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA",
				744	MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_RSA,
				745	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				746	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	747	0 },
				748
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	749	{ MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA, "TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA",
				750	MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_RSA,
				751	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				752	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	753	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	754	#endif /* MBEDTLS_SHA1_C */
				755	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				756	#if defined(MBEDTLS_GCM_C)
				757	#if defined(MBEDTLS_SHA256_C)
				758	{ MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_GCM_SHA256, "TLS-DHE-RSA-WITH-CAMELLIA-128-GCM-SHA256",
				759	MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,
				760	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				761	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	762	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	763	#endif /* MBEDTLS_SHA256_C */
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	764
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	765	#if defined(MBEDTLS_SHA512_C)
				766	{ MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_GCM_SHA384, "TLS-DHE-RSA-WITH-CAMELLIA-256-GCM-SHA384",
				767	MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_RSA,
				768	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				769	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	770	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	771	#endif /* MBEDTLS_SHA512_C */
				772	#endif /* MBEDTLS_GCM_C */
				773	#endif /* MBEDTLS_CAMELLIA_C */
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	774
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	775	#if defined(MBEDTLS_DES_C)
				776	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				777	#if defined(MBEDTLS_SHA1_C)
				778	{ MBEDTLS_TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA, "TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA",
				779	MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_RSA,
				780	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				781	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	782	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	783	#endif /* MBEDTLS_SHA1_C */
				784	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				785	#endif /* MBEDTLS_DES_C */
				786	#endif /* MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED */
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	787
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	788	#if defined(MBEDTLS_KEY_EXCHANGE_RSA_ENABLED)
				789	#if defined(MBEDTLS_AES_C)
				790	#if defined(MBEDTLS_SHA512_C) && defined(MBEDTLS_GCM_C)
				791	{ MBEDTLS_TLS_RSA_WITH_AES_256_GCM_SHA384, "TLS-RSA-WITH-AES-256-GCM-SHA384",
				792	MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA,
				793	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				794	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	795	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	796	#endif /* MBEDTLS_SHA512_C && MBEDTLS_GCM_C */
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	797
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	798	#if defined(MBEDTLS_SHA256_C)
				799	#if defined(MBEDTLS_GCM_C)
				800	{ MBEDTLS_TLS_RSA_WITH_AES_128_GCM_SHA256, "TLS-RSA-WITH-AES-128-GCM-SHA256",
				801	MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,
				802	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				803	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	804	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	805	#endif /* MBEDTLS_GCM_C */
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	806
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	807	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				808	{ MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA256, "TLS-RSA-WITH-AES-128-CBC-SHA256",
				809	MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,
				810	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				811	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	812	0 },
				813
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	814	{ MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA256, "TLS-RSA-WITH-AES-256-CBC-SHA256",
				815	MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,
				816	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				817	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	818	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	819	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				820	#endif /* MBEDTLS_SHA256_C */
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	821
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	822	#if defined(MBEDTLS_SHA1_C)
				823	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				824	{ MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA, "TLS-RSA-WITH-AES-128-CBC-SHA",
				825	MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA,
				826	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				827	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	828	0 },
				829
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	830	{ MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA, "TLS-RSA-WITH-AES-256-CBC-SHA",
				831	MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA,
				832	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				833	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	834	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	835	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				836	#endif /* MBEDTLS_SHA1_C */
				837	#if defined(MBEDTLS_CCM_C)
				838	{ MBEDTLS_TLS_RSA_WITH_AES_256_CCM, "TLS-RSA-WITH-AES-256-CCM",
				839	MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,
				840	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				841	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	6768da9	2014-05-14 12:26:51 +0200	[diff] [blame]	842	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	843	{ MBEDTLS_TLS_RSA_WITH_AES_256_CCM_8, "TLS-RSA-WITH-AES-256-CCM-8",
				844	MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,
				845	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				846	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				847	MBEDTLS_CIPHERSUITE_SHORT_TAG },
				848	{ MBEDTLS_TLS_RSA_WITH_AES_128_CCM, "TLS-RSA-WITH-AES-128-CCM",
				849	MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,
				850	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				851	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	6768da9	2014-05-14 12:26:51 +0200	[diff] [blame]	852	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	853	{ MBEDTLS_TLS_RSA_WITH_AES_128_CCM_8, "TLS-RSA-WITH-AES-128-CCM-8",
				854	MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,
				855	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				856	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				857	MBEDTLS_CIPHERSUITE_SHORT_TAG },
				858	#endif /* MBEDTLS_CCM_C */
				859	#endif /* MBEDTLS_AES_C */
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	860
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	861	#if defined(MBEDTLS_CAMELLIA_C)
				862	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				863	#if defined(MBEDTLS_SHA256_C)
				864	{ MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256, "TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256",
				865	MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,
				866	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				867	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	868	0 },
				869
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	870	{ MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256, "TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256",
				871	MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,
				872	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				873	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	874	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	875	#endif /* MBEDTLS_SHA256_C */
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	876
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	877	#if defined(MBEDTLS_SHA1_C)
				878	{ MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA, "TLS-RSA-WITH-CAMELLIA-128-CBC-SHA",
				879	MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA,
				880	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				881	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	882	0 },
				883
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	884	{ MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA, "TLS-RSA-WITH-CAMELLIA-256-CBC-SHA",
				885	MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA,
				886	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				887	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	888	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	889	#endif /* MBEDTLS_SHA1_C */
				890	#endif /* MBEDTLS_CIPHER_MODE_CBC */
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	891
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	892	#if defined(MBEDTLS_GCM_C)
				893	#if defined(MBEDTLS_SHA256_C)
				894	{ MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_GCM_SHA256, "TLS-RSA-WITH-CAMELLIA-128-GCM-SHA256",
				895	MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,
				896	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				897	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	898	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	899	#endif /* MBEDTLS_SHA256_C */
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	900
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	901	#if defined(MBEDTLS_SHA1_C)
				902	{ MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_GCM_SHA384, "TLS-RSA-WITH-CAMELLIA-256-GCM-SHA384",
				903	MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA,
				904	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				905	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	906	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	907	#endif /* MBEDTLS_SHA1_C */
				908	#endif /* MBEDTLS_GCM_C */
				909	#endif /* MBEDTLS_CAMELLIA_C */
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	910
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	911	#if defined(MBEDTLS_DES_C)
				912	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				913	#if defined(MBEDTLS_SHA1_C)
				914	{ MBEDTLS_TLS_RSA_WITH_3DES_EDE_CBC_SHA, "TLS-RSA-WITH-3DES-EDE-CBC-SHA",
				915	MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA,
				916	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				917	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	918	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	919	#endif /* MBEDTLS_SHA1_C */
				920	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				921	#endif /* MBEDTLS_DES_C */
Paul Bakker	e07f41d	2013-04-19 09:08:57 +0200	[diff] [blame]	922
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	923	#if defined(MBEDTLS_ARC4_C)
				924	#if defined(MBEDTLS_MD5_C)
				925	{ MBEDTLS_TLS_RSA_WITH_RC4_128_MD5, "TLS-RSA-WITH-RC4-128-MD5",
				926	MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_MD5, MBEDTLS_KEY_EXCHANGE_RSA,
				927	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				928	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				929	MBEDTLS_CIPHERSUITE_NODTLS },
Manuel Pégourié-Gonnard	057e0cf	2013-10-14 14:19:31 +0200	[diff] [blame]	930	#endif
Paul Bakker	e07f41d	2013-04-19 09:08:57 +0200	[diff] [blame]	931
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	932	#if defined(MBEDTLS_SHA1_C)
				933	{ MBEDTLS_TLS_RSA_WITH_RC4_128_SHA, "TLS-RSA-WITH-RC4-128-SHA",
				934	MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA,
				935	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				936	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				937	MBEDTLS_CIPHERSUITE_NODTLS },
Manuel Pégourié-Gonnard	057e0cf	2013-10-14 14:19:31 +0200	[diff] [blame]	938	#endif
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	939	#endif /* MBEDTLS_ARC4_C */
				940	#endif /* MBEDTLS_KEY_EXCHANGE_RSA_ENABLED */
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	941
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	942	#if defined(MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED)
				943	#if defined(MBEDTLS_AES_C)
				944	#if defined(MBEDTLS_SHA1_C)
				945	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				946	{ MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA, "TLS-ECDH-RSA-WITH-AES-128-CBC-SHA",
				947	MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,
				948	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				949	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	950	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	951	{ MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA, "TLS-ECDH-RSA-WITH-AES-256-CBC-SHA",
				952	MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,
				953	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				954	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	955	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	956	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				957	#endif /* MBEDTLS_SHA1_C */
				958	#if defined(MBEDTLS_SHA256_C)
				959	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				960	{ MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256, "TLS-ECDH-RSA-WITH-AES-128-CBC-SHA256",
				961	MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,
				962	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				963	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	964	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	965	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				966	#if defined(MBEDTLS_GCM_C)
				967	{ MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256, "TLS-ECDH-RSA-WITH-AES-128-GCM-SHA256",
				968	MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,
				969	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				970	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	971	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	972	#endif /* MBEDTLS_GCM_C */
				973	#endif /* MBEDTLS_SHA256_C */
				974	#if defined(MBEDTLS_SHA512_C)
				975	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				976	{ MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384, "TLS-ECDH-RSA-WITH-AES-256-CBC-SHA384",
				977	MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,
				978	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				979	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	980	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	981	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				982	#if defined(MBEDTLS_GCM_C)
				983	{ MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384, "TLS-ECDH-RSA-WITH-AES-256-GCM-SHA384",
				984	MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,
				985	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				986	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	987	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	988	#endif /* MBEDTLS_GCM_C */
				989	#endif /* MBEDTLS_SHA512_C */
				990	#endif /* MBEDTLS_AES_C */
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	991
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	992	#if defined(MBEDTLS_CAMELLIA_C)
				993	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				994	#if defined(MBEDTLS_SHA256_C)
				995	{ MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256, "TLS-ECDH-RSA-WITH-CAMELLIA-128-CBC-SHA256",
				996	MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,
				997	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				998	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	999	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1000	#endif /* MBEDTLS_SHA256_C */
				1001	#if defined(MBEDTLS_SHA512_C)
				1002	{ MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384, "TLS-ECDH-RSA-WITH-CAMELLIA-256-CBC-SHA384",
				1003	MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,
				1004	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1005	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1006	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1007	#endif /* MBEDTLS_SHA512_C */
				1008	#endif /* MBEDTLS_CIPHER_MODE_CBC */
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1009
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1010	#if defined(MBEDTLS_GCM_C)
				1011	#if defined(MBEDTLS_SHA256_C)
				1012	{ MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256, "TLS-ECDH-RSA-WITH-CAMELLIA-128-GCM-SHA256",
				1013	MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,
				1014	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1015	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1016	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1017	#endif /* MBEDTLS_SHA256_C */
				1018	#if defined(MBEDTLS_SHA512_C)
				1019	{ MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384, "TLS-ECDH-RSA-WITH-CAMELLIA-256-GCM-SHA384",
				1020	MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,
				1021	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1022	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1023	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1024	#endif /* MBEDTLS_SHA512_C */
				1025	#endif /* MBEDTLS_GCM_C */
				1026	#endif /* MBEDTLS_CAMELLIA_C */
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1027
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1028	#if defined(MBEDTLS_DES_C)
				1029	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				1030	#if defined(MBEDTLS_SHA1_C)
				1031	{ MBEDTLS_TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA, "TLS-ECDH-RSA-WITH-3DES-EDE-CBC-SHA",
				1032	MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,
				1033	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1034	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1035	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1036	#endif /* MBEDTLS_SHA1_C */
				1037	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				1038	#endif /* MBEDTLS_DES_C */
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1039
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1040	#if defined(MBEDTLS_ARC4_C)
				1041	#if defined(MBEDTLS_SHA1_C)
				1042	{ MBEDTLS_TLS_ECDH_RSA_WITH_RC4_128_SHA, "TLS-ECDH-RSA-WITH-RC4-128-SHA",
				1043	MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,
				1044	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1045	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1046	MBEDTLS_CIPHERSUITE_NODTLS },
				1047	#endif /* MBEDTLS_SHA1_C */
				1048	#endif /* MBEDTLS_ARC4_C */
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1049
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1050	#if defined(MBEDTLS_CIPHER_NULL_CIPHER)
				1051	#if defined(MBEDTLS_SHA1_C)
				1052	{ MBEDTLS_TLS_ECDH_RSA_WITH_NULL_SHA, "TLS-ECDH-RSA-WITH-NULL-SHA",
				1053	MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,
				1054	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1055	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1056	MBEDTLS_CIPHERSUITE_WEAK },
				1057	#endif /* MBEDTLS_SHA1_C */
				1058	#endif /* MBEDTLS_CIPHER_NULL_CIPHER */
				1059	#endif /* MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED */
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1060
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1061	#if defined(MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED)
				1062	#if defined(MBEDTLS_AES_C)
				1063	#if defined(MBEDTLS_SHA1_C)
				1064	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				1065	{ MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA, "TLS-ECDH-ECDSA-WITH-AES-128-CBC-SHA",
				1066	MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,
				1067	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1068	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1069	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1070	{ MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA, "TLS-ECDH-ECDSA-WITH-AES-256-CBC-SHA",
				1071	MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,
				1072	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1073	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1074	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1075	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				1076	#endif /* MBEDTLS_SHA1_C */
				1077	#if defined(MBEDTLS_SHA256_C)
				1078	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				1079	{ MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256, "TLS-ECDH-ECDSA-WITH-AES-128-CBC-SHA256",
				1080	MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,
				1081	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1082	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1083	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1084	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				1085	#if defined(MBEDTLS_GCM_C)
				1086	{ MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256, "TLS-ECDH-ECDSA-WITH-AES-128-GCM-SHA256",
				1087	MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,
				1088	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1089	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1090	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1091	#endif /* MBEDTLS_GCM_C */
				1092	#endif /* MBEDTLS_SHA256_C */
				1093	#if defined(MBEDTLS_SHA512_C)
				1094	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				1095	{ MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384, "TLS-ECDH-ECDSA-WITH-AES-256-CBC-SHA384",
				1096	MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,
				1097	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1098	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1099	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1100	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				1101	#if defined(MBEDTLS_GCM_C)
				1102	{ MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384, "TLS-ECDH-ECDSA-WITH-AES-256-GCM-SHA384",
				1103	MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,
				1104	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1105	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1106	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1107	#endif /* MBEDTLS_GCM_C */
				1108	#endif /* MBEDTLS_SHA512_C */
				1109	#endif /* MBEDTLS_AES_C */
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1110
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1111	#if defined(MBEDTLS_CAMELLIA_C)
				1112	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				1113	#if defined(MBEDTLS_SHA256_C)
				1114	{ MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256, "TLS-ECDH-ECDSA-WITH-CAMELLIA-128-CBC-SHA256",
				1115	MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,
				1116	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1117	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1118	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1119	#endif /* MBEDTLS_SHA256_C */
				1120	#if defined(MBEDTLS_SHA512_C)
				1121	{ MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384, "TLS-ECDH-ECDSA-WITH-CAMELLIA-256-CBC-SHA384",
				1122	MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,
				1123	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1124	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1125	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1126	#endif /* MBEDTLS_SHA512_C */
				1127	#endif /* MBEDTLS_CIPHER_MODE_CBC */
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1128
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1129	#if defined(MBEDTLS_GCM_C)
				1130	#if defined(MBEDTLS_SHA256_C)
				1131	{ MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256, "TLS-ECDH-ECDSA-WITH-CAMELLIA-128-GCM-SHA256",
				1132	MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,
				1133	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1134	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1135	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1136	#endif /* MBEDTLS_SHA256_C */
				1137	#if defined(MBEDTLS_SHA512_C)
				1138	{ MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384, "TLS-ECDH-ECDSA-WITH-CAMELLIA-256-GCM-SHA384",
				1139	MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,
				1140	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1141	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1142	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1143	#endif /* MBEDTLS_SHA512_C */
				1144	#endif /* MBEDTLS_GCM_C */
				1145	#endif /* MBEDTLS_CAMELLIA_C */
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1146
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1147	#if defined(MBEDTLS_DES_C)
				1148	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				1149	#if defined(MBEDTLS_SHA1_C)
				1150	{ MBEDTLS_TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA, "TLS-ECDH-ECDSA-WITH-3DES-EDE-CBC-SHA",
				1151	MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,
				1152	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1153	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1154	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1155	#endif /* MBEDTLS_SHA1_C */
				1156	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				1157	#endif /* MBEDTLS_DES_C */
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1158
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1159	#if defined(MBEDTLS_ARC4_C)
				1160	#if defined(MBEDTLS_SHA1_C)
				1161	{ MBEDTLS_TLS_ECDH_ECDSA_WITH_RC4_128_SHA, "TLS-ECDH-ECDSA-WITH-RC4-128-SHA",
				1162	MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,
				1163	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1164	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1165	MBEDTLS_CIPHERSUITE_NODTLS },
				1166	#endif /* MBEDTLS_SHA1_C */
				1167	#endif /* MBEDTLS_ARC4_C */
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1168
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1169	#if defined(MBEDTLS_CIPHER_NULL_CIPHER)
				1170	#if defined(MBEDTLS_SHA1_C)
				1171	{ MBEDTLS_TLS_ECDH_ECDSA_WITH_NULL_SHA, "TLS-ECDH-ECDSA-WITH-NULL-SHA",
				1172	MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,
				1173	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1174	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1175	MBEDTLS_CIPHERSUITE_WEAK },
				1176	#endif /* MBEDTLS_SHA1_C */
				1177	#endif /* MBEDTLS_CIPHER_NULL_CIPHER */
				1178	#endif /* MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED */
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	1179
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1180	#if defined(MBEDTLS_KEY_EXCHANGE_PSK_ENABLED)
				1181	#if defined(MBEDTLS_AES_C)
				1182	#if defined(MBEDTLS_GCM_C)
				1183	#if defined(MBEDTLS_SHA256_C)
				1184	{ MBEDTLS_TLS_PSK_WITH_AES_128_GCM_SHA256, "TLS-PSK-WITH-AES-128-GCM-SHA256",
				1185	MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK,
				1186	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1187	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1188	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1189	#endif /* MBEDTLS_SHA256_C */
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1190
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1191	#if defined(MBEDTLS_SHA512_C)
				1192	{ MBEDTLS_TLS_PSK_WITH_AES_256_GCM_SHA384, "TLS-PSK-WITH-AES-256-GCM-SHA384",
				1193	MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_PSK,
				1194	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1195	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1196	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1197	#endif /* MBEDTLS_SHA512_C */
				1198	#endif /* MBEDTLS_GCM_C */
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1199
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1200	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				1201	#if defined(MBEDTLS_SHA256_C)
				1202	{ MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA256, "TLS-PSK-WITH-AES-128-CBC-SHA256",
				1203	MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK,
				1204	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1205	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1206	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1207	#endif /* MBEDTLS_SHA256_C */
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1208
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1209	#if defined(MBEDTLS_SHA512_C)
				1210	{ MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA384, "TLS-PSK-WITH-AES-256-CBC-SHA384",
				1211	MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_PSK,
				1212	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1213	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1214	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1215	#endif /* MBEDTLS_SHA512_C */
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1216
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1217	#if defined(MBEDTLS_SHA1_C)
				1218	{ MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA, "TLS-PSK-WITH-AES-128-CBC-SHA",
				1219	MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_PSK,
				1220	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				1221	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	d4a56ec	2013-04-16 18:05:29 +0200	[diff] [blame]	1222	0 },
				1223
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1224	{ MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA, "TLS-PSK-WITH-AES-256-CBC-SHA",
				1225	MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_PSK,
				1226	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				1227	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	d4a56ec	2013-04-16 18:05:29 +0200	[diff] [blame]	1228	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1229	#endif /* MBEDTLS_SHA1_C */
				1230	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				1231	#if defined(MBEDTLS_CCM_C)
				1232	{ MBEDTLS_TLS_PSK_WITH_AES_256_CCM, "TLS-PSK-WITH-AES-256-CCM",
				1233	MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK,
				1234	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1235	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	6768da9	2014-05-14 12:26:51 +0200	[diff] [blame]	1236	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1237	{ MBEDTLS_TLS_PSK_WITH_AES_256_CCM_8, "TLS-PSK-WITH-AES-256-CCM-8",
				1238	MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK,
				1239	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1240	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1241	MBEDTLS_CIPHERSUITE_SHORT_TAG },
				1242	{ MBEDTLS_TLS_PSK_WITH_AES_128_CCM, "TLS-PSK-WITH-AES-128-CCM",
				1243	MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK,
				1244	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1245	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	6768da9	2014-05-14 12:26:51 +0200	[diff] [blame]	1246	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1247	{ MBEDTLS_TLS_PSK_WITH_AES_128_CCM_8, "TLS-PSK-WITH-AES-128-CCM-8",
				1248	MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK,
				1249	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1250	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1251	MBEDTLS_CIPHERSUITE_SHORT_TAG },
				1252	#endif /* MBEDTLS_CCM_C */
				1253	#endif /* MBEDTLS_AES_C */
Paul Bakker	d4a56ec	2013-04-16 18:05:29 +0200	[diff] [blame]	1254
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1255	#if defined(MBEDTLS_CAMELLIA_C)
				1256	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				1257	#if defined(MBEDTLS_SHA256_C)
				1258	{ MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256, "TLS-PSK-WITH-CAMELLIA-128-CBC-SHA256",
				1259	MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK,
				1260	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1261	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	0f2f0bf	2013-07-26 15:03:31 +0200	[diff] [blame]	1262	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1263	#endif /* MBEDTLS_SHA256_C */
Paul Bakker	0f2f0bf	2013-07-26 15:03:31 +0200	[diff] [blame]	1264
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1265	#if defined(MBEDTLS_SHA512_C)
				1266	{ MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_CBC_SHA384, "TLS-PSK-WITH-CAMELLIA-256-CBC-SHA384",
				1267	MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_PSK,
				1268	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1269	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	0f2f0bf	2013-07-26 15:03:31 +0200	[diff] [blame]	1270	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1271	#endif /* MBEDTLS_SHA512_C */
				1272	#endif /* MBEDTLS_CIPHER_MODE_CBC */
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	1273
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1274	#if defined(MBEDTLS_GCM_C)
				1275	#if defined(MBEDTLS_SHA256_C)
				1276	{ MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_GCM_SHA256, "TLS-PSK-WITH-CAMELLIA-128-GCM-SHA256",
				1277	MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK,
				1278	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1279	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	1280	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1281	#endif /* MBEDTLS_SHA256_C */
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	1282
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1283	#if defined(MBEDTLS_SHA512_C)
				1284	{ MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_GCM_SHA384, "TLS-PSK-WITH-CAMELLIA-256-GCM-SHA384",
				1285	MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_PSK,
				1286	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1287	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	1288	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1289	#endif /* MBEDTLS_SHA512_C */
				1290	#endif /* MBEDTLS_GCM_C */
				1291	#endif /* MBEDTLS_CAMELLIA_C */
Paul Bakker	0f2f0bf	2013-07-26 15:03:31 +0200	[diff] [blame]	1292
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1293	#if defined(MBEDTLS_DES_C)
				1294	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				1295	#if defined(MBEDTLS_SHA1_C)
				1296	{ MBEDTLS_TLS_PSK_WITH_3DES_EDE_CBC_SHA, "TLS-PSK-WITH-3DES-EDE-CBC-SHA",
				1297	MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_PSK,
				1298	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				1299	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	d4a56ec	2013-04-16 18:05:29 +0200	[diff] [blame]	1300	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1301	#endif /* MBEDTLS_SHA1_C */
				1302	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				1303	#endif /* MBEDTLS_DES_C */
Paul Bakker	d4a56ec	2013-04-16 18:05:29 +0200	[diff] [blame]	1304
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1305	#if defined(MBEDTLS_ARC4_C)
				1306	#if defined(MBEDTLS_SHA1_C)
				1307	{ MBEDTLS_TLS_PSK_WITH_RC4_128_SHA, "TLS-PSK-WITH-RC4-128-SHA",
				1308	MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_PSK,
				1309	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				1310	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1311	MBEDTLS_CIPHERSUITE_NODTLS },
				1312	#endif /* MBEDTLS_SHA1_C */
				1313	#endif /* MBEDTLS_ARC4_C */
				1314	#endif /* MBEDTLS_KEY_EXCHANGE_PSK_ENABLED */
Paul Bakker	d4a56ec	2013-04-16 18:05:29 +0200	[diff] [blame]	1315
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1316	#if defined(MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED)
				1317	#if defined(MBEDTLS_AES_C)
				1318	#if defined(MBEDTLS_GCM_C)
				1319	#if defined(MBEDTLS_SHA256_C)
				1320	{ MBEDTLS_TLS_DHE_PSK_WITH_AES_128_GCM_SHA256, "TLS-DHE-PSK-WITH-AES-128-GCM-SHA256",
				1321	MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				1322	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1323	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1324	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1325	#endif /* MBEDTLS_SHA256_C */
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1326
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1327	#if defined(MBEDTLS_SHA512_C)
				1328	{ MBEDTLS_TLS_DHE_PSK_WITH_AES_256_GCM_SHA384, "TLS-DHE-PSK-WITH-AES-256-GCM-SHA384",
				1329	MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				1330	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1331	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1332	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1333	#endif /* MBEDTLS_SHA512_C */
				1334	#endif /* MBEDTLS_GCM_C */
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1335
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1336	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				1337	#if defined(MBEDTLS_SHA256_C)
				1338	{ MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA256, "TLS-DHE-PSK-WITH-AES-128-CBC-SHA256",
				1339	MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				1340	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1341	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1342	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1343	#endif /* MBEDTLS_SHA256_C */
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1344
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1345	#if defined(MBEDTLS_SHA512_C)
				1346	{ MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA384, "TLS-DHE-PSK-WITH-AES-256-CBC-SHA384",
				1347	MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				1348	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1349	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1350	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1351	#endif /* MBEDTLS_SHA512_C */
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1352
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1353	#if defined(MBEDTLS_SHA1_C)
				1354	{ MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA, "TLS-DHE-PSK-WITH-AES-128-CBC-SHA",
				1355	MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				1356	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				1357	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	d4a56ec	2013-04-16 18:05:29 +0200	[diff] [blame]	1358	0 },
				1359
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1360	{ MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA, "TLS-DHE-PSK-WITH-AES-256-CBC-SHA",
				1361	MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				1362	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				1363	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	d4a56ec	2013-04-16 18:05:29 +0200	[diff] [blame]	1364	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1365	#endif /* MBEDTLS_SHA1_C */
				1366	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				1367	#if defined(MBEDTLS_CCM_C)
				1368	{ MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CCM, "TLS-DHE-PSK-WITH-AES-256-CCM",
				1369	MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				1370	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1371	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	6768da9	2014-05-14 12:26:51 +0200	[diff] [blame]	1372	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1373	{ MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CCM_8, "TLS-DHE-PSK-WITH-AES-256-CCM-8",
				1374	MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				1375	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1376	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1377	MBEDTLS_CIPHERSUITE_SHORT_TAG },
				1378	{ MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CCM, "TLS-DHE-PSK-WITH-AES-128-CCM",
				1379	MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				1380	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1381	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	6768da9	2014-05-14 12:26:51 +0200	[diff] [blame]	1382	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1383	{ MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CCM_8, "TLS-DHE-PSK-WITH-AES-128-CCM-8",
				1384	MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				1385	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1386	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1387	MBEDTLS_CIPHERSUITE_SHORT_TAG },
				1388	#endif /* MBEDTLS_CCM_C */
				1389	#endif /* MBEDTLS_AES_C */
Paul Bakker	d4a56ec	2013-04-16 18:05:29 +0200	[diff] [blame]	1390
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1391	#if defined(MBEDTLS_CAMELLIA_C)
				1392	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				1393	#if defined(MBEDTLS_SHA256_C)
				1394	{ MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256, "TLS-DHE-PSK-WITH-CAMELLIA-128-CBC-SHA256",
				1395	MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				1396	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1397	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	0f2f0bf	2013-07-26 15:03:31 +0200	[diff] [blame]	1398	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1399	#endif /* MBEDTLS_SHA256_C */
Paul Bakker	0f2f0bf	2013-07-26 15:03:31 +0200	[diff] [blame]	1400
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1401	#if defined(MBEDTLS_SHA512_C)
				1402	{ MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384, "TLS-DHE-PSK-WITH-CAMELLIA-256-CBC-SHA384",
				1403	MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				1404	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1405	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	0f2f0bf	2013-07-26 15:03:31 +0200	[diff] [blame]	1406	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1407	#endif /* MBEDTLS_SHA512_C */
				1408	#endif /* MBEDTLS_CIPHER_MODE_CBC */
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	1409
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1410	#if defined(MBEDTLS_GCM_C)
				1411	#if defined(MBEDTLS_SHA256_C)
				1412	{ MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_GCM_SHA256, "TLS-DHE-PSK-WITH-CAMELLIA-128-GCM-SHA256",
				1413	MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				1414	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1415	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	1416	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1417	#endif /* MBEDTLS_SHA256_C */
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	1418
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1419	#if defined(MBEDTLS_SHA512_C)
				1420	{ MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_GCM_SHA384, "TLS-DHE-PSK-WITH-CAMELLIA-256-GCM-SHA384",
				1421	MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				1422	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1423	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	1424	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1425	#endif /* MBEDTLS_SHA512_C */
				1426	#endif /* MBEDTLS_GCM_C */
				1427	#endif /* MBEDTLS_CAMELLIA_C */
Paul Bakker	0f2f0bf	2013-07-26 15:03:31 +0200	[diff] [blame]	1428
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1429	#if defined(MBEDTLS_DES_C)
				1430	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				1431	#if defined(MBEDTLS_SHA1_C)
				1432	{ MBEDTLS_TLS_DHE_PSK_WITH_3DES_EDE_CBC_SHA, "TLS-DHE-PSK-WITH-3DES-EDE-CBC-SHA",
				1433	MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				1434	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				1435	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	d4a56ec	2013-04-16 18:05:29 +0200	[diff] [blame]	1436	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1437	#endif /* MBEDTLS_SHA1_C */
				1438	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				1439	#endif /* MBEDTLS_DES_C */
Paul Bakker	d4a56ec	2013-04-16 18:05:29 +0200	[diff] [blame]	1440
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1441	#if defined(MBEDTLS_ARC4_C)
				1442	#if defined(MBEDTLS_SHA1_C)
				1443	{ MBEDTLS_TLS_DHE_PSK_WITH_RC4_128_SHA, "TLS-DHE-PSK-WITH-RC4-128-SHA",
				1444	MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				1445	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				1446	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1447	MBEDTLS_CIPHERSUITE_NODTLS },
				1448	#endif /* MBEDTLS_SHA1_C */
				1449	#endif /* MBEDTLS_ARC4_C */
				1450	#endif /* MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED */
Paul Bakker	d4a56ec	2013-04-16 18:05:29 +0200	[diff] [blame]	1451
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1452	#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED)
				1453	#if defined(MBEDTLS_AES_C)
Manuel Pégourié-Gonnard	225d6aa	2013-10-11 19:07:56 +0200	[diff] [blame]	1454
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1455	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				1456	#if defined(MBEDTLS_SHA256_C)
				1457	{ MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256, "TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA256",
				1458	MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,
				1459	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1460	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	225d6aa	2013-10-11 19:07:56 +0200	[diff] [blame]	1461	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1462	#endif /* MBEDTLS_SHA256_C */
Manuel Pégourié-Gonnard	225d6aa	2013-10-11 19:07:56 +0200	[diff] [blame]	1463
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1464	#if defined(MBEDTLS_SHA512_C)
				1465	{ MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA384, "TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384",
				1466	MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,
				1467	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1468	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	225d6aa	2013-10-11 19:07:56 +0200	[diff] [blame]	1469	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1470	#endif /* MBEDTLS_SHA512_C */
Manuel Pégourié-Gonnard	225d6aa	2013-10-11 19:07:56 +0200	[diff] [blame]	1471
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1472	#if defined(MBEDTLS_SHA1_C)
				1473	{ MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA, "TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA",
				1474	MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,
				1475	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1476	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	225d6aa	2013-10-11 19:07:56 +0200	[diff] [blame]	1477	0 },
				1478
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1479	{ MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA, "TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA",
				1480	MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,
				1481	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1482	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	225d6aa	2013-10-11 19:07:56 +0200	[diff] [blame]	1483	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1484	#endif /* MBEDTLS_SHA1_C */
				1485	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				1486	#endif /* MBEDTLS_AES_C */
Manuel Pégourié-Gonnard	225d6aa	2013-10-11 19:07:56 +0200	[diff] [blame]	1487
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1488	#if defined(MBEDTLS_CAMELLIA_C)
				1489	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				1490	#if defined(MBEDTLS_SHA256_C)
				1491	{ MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256, "TLS-ECDHE-PSK-WITH-CAMELLIA-128-CBC-SHA256",
				1492	MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,
				1493	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1494	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	225d6aa	2013-10-11 19:07:56 +0200	[diff] [blame]	1495	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1496	#endif /* MBEDTLS_SHA256_C */
Manuel Pégourié-Gonnard	225d6aa	2013-10-11 19:07:56 +0200	[diff] [blame]	1497
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1498	#if defined(MBEDTLS_SHA512_C)
				1499	{ MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384, "TLS-ECDHE-PSK-WITH-CAMELLIA-256-CBC-SHA384",
				1500	MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,
				1501	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1502	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	225d6aa	2013-10-11 19:07:56 +0200	[diff] [blame]	1503	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1504	#endif /* MBEDTLS_SHA512_C */
				1505	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				1506	#endif /* MBEDTLS_CAMELLIA_C */
Manuel Pégourié-Gonnard	225d6aa	2013-10-11 19:07:56 +0200	[diff] [blame]	1507
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1508	#if defined(MBEDTLS_DES_C)
				1509	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				1510	#if defined(MBEDTLS_SHA1_C)
				1511	{ MBEDTLS_TLS_ECDHE_PSK_WITH_3DES_EDE_CBC_SHA, "TLS-ECDHE-PSK-WITH-3DES-EDE-CBC-SHA",
				1512	MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,
				1513	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1514	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	225d6aa	2013-10-11 19:07:56 +0200	[diff] [blame]	1515	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1516	#endif /* MBEDTLS_SHA1_C */
				1517	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				1518	#endif /* MBEDTLS_DES_C */
Manuel Pégourié-Gonnard	225d6aa	2013-10-11 19:07:56 +0200	[diff] [blame]	1519
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1520	#if defined(MBEDTLS_ARC4_C)
				1521	#if defined(MBEDTLS_SHA1_C)
				1522	{ MBEDTLS_TLS_ECDHE_PSK_WITH_RC4_128_SHA, "TLS-ECDHE-PSK-WITH-RC4-128-SHA",
				1523	MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,
				1524	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1525	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1526	MBEDTLS_CIPHERSUITE_NODTLS },
				1527	#endif /* MBEDTLS_SHA1_C */
				1528	#endif /* MBEDTLS_ARC4_C */
				1529	#endif /* MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED */
Manuel Pégourié-Gonnard	225d6aa	2013-10-11 19:07:56 +0200	[diff] [blame]	1530
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1531	#if defined(MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED)
				1532	#if defined(MBEDTLS_AES_C)
				1533	#if defined(MBEDTLS_GCM_C)
				1534	#if defined(MBEDTLS_SHA256_C)
				1535	{ MBEDTLS_TLS_RSA_PSK_WITH_AES_128_GCM_SHA256, "TLS-RSA-PSK-WITH-AES-128-GCM-SHA256",
				1536	MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA_PSK,
				1537	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1538	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1539	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1540	#endif /* MBEDTLS_SHA256_C */
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1541
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1542	#if defined(MBEDTLS_SHA512_C)
				1543	{ MBEDTLS_TLS_RSA_PSK_WITH_AES_256_GCM_SHA384, "TLS-RSA-PSK-WITH-AES-256-GCM-SHA384",
				1544	MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA_PSK,
				1545	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1546	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1547	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1548	#endif /* MBEDTLS_SHA512_C */
				1549	#endif /* MBEDTLS_GCM_C */
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1550
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1551	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				1552	#if defined(MBEDTLS_SHA256_C)
				1553	{ MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA256, "TLS-RSA-PSK-WITH-AES-128-CBC-SHA256",
				1554	MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA_PSK,
				1555	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1556	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1557	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1558	#endif /* MBEDTLS_SHA256_C */
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1559
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1560	#if defined(MBEDTLS_SHA512_C)
				1561	{ MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA384, "TLS-RSA-PSK-WITH-AES-256-CBC-SHA384",
				1562	MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA_PSK,
				1563	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1564	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1565	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1566	#endif /* MBEDTLS_SHA512_C */
Paul Bakker	40afb4b	2013-04-19 22:03:30 +0200	[diff] [blame]	1567
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1568	#if defined(MBEDTLS_SHA1_C)
				1569	{ MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA, "TLS-RSA-PSK-WITH-AES-128-CBC-SHA",
				1570	MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA_PSK,
				1571	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1572	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	d4a56ec	2013-04-16 18:05:29 +0200	[diff] [blame]	1573	0 },
				1574
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1575	{ MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA, "TLS-RSA-PSK-WITH-AES-256-CBC-SHA",
				1576	MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA_PSK,
				1577	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1578	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	d4a56ec	2013-04-16 18:05:29 +0200	[diff] [blame]	1579	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1580	#endif /* MBEDTLS_SHA1_C */
				1581	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				1582	#endif /* MBEDTLS_AES_C */
Paul Bakker	d4a56ec	2013-04-16 18:05:29 +0200	[diff] [blame]	1583
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1584	#if defined(MBEDTLS_CAMELLIA_C)
				1585	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				1586	#if defined(MBEDTLS_SHA256_C)
				1587	{ MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256, "TLS-RSA-PSK-WITH-CAMELLIA-128-CBC-SHA256",
				1588	MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA_PSK,
				1589	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1590	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	0f2f0bf	2013-07-26 15:03:31 +0200	[diff] [blame]	1591	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1592	#endif /* MBEDTLS_SHA256_C */
Paul Bakker	0f2f0bf	2013-07-26 15:03:31 +0200	[diff] [blame]	1593
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1594	#if defined(MBEDTLS_SHA512_C)
				1595	{ MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384, "TLS-RSA-PSK-WITH-CAMELLIA-256-CBC-SHA384",
				1596	MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA_PSK,
				1597	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1598	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	0f2f0bf	2013-07-26 15:03:31 +0200	[diff] [blame]	1599	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1600	#endif /* MBEDTLS_SHA512_C */
				1601	#endif /* MBEDTLS_CIPHER_MODE_CBC */
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	1602
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1603	#if defined(MBEDTLS_GCM_C)
				1604	#if defined(MBEDTLS_SHA256_C)
				1605	{ MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_GCM_SHA256, "TLS-RSA-PSK-WITH-CAMELLIA-128-GCM-SHA256",
				1606	MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA_PSK,
				1607	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1608	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	1609	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1610	#endif /* MBEDTLS_SHA256_C */
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	1611
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1612	#if defined(MBEDTLS_SHA512_C)
				1613	{ MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_GCM_SHA384, "TLS-RSA-PSK-WITH-CAMELLIA-256-GCM-SHA384",
				1614	MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA_PSK,
				1615	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1616	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Manuel Pégourié-Gonnard	8d01eea	2013-10-24 19:49:07 +0200	[diff] [blame]	1617	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1618	#endif /* MBEDTLS_SHA512_C */
				1619	#endif /* MBEDTLS_GCM_C */
				1620	#endif /* MBEDTLS_CAMELLIA_C */
Paul Bakker	0f2f0bf	2013-07-26 15:03:31 +0200	[diff] [blame]	1621
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1622	#if defined(MBEDTLS_DES_C)
				1623	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				1624	#if defined(MBEDTLS_SHA1_C)
				1625	{ MBEDTLS_TLS_RSA_PSK_WITH_3DES_EDE_CBC_SHA, "TLS-RSA-PSK-WITH-3DES-EDE-CBC-SHA",
				1626	MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA_PSK,
				1627	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1628	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
Paul Bakker	d4a56ec	2013-04-16 18:05:29 +0200	[diff] [blame]	1629	0 },
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1630	#endif /* MBEDTLS_SHA1_C */
				1631	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				1632	#endif /* MBEDTLS_DES_C */
Paul Bakker	d4a56ec	2013-04-16 18:05:29 +0200	[diff] [blame]	1633
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1634	#if defined(MBEDTLS_ARC4_C)
				1635	#if defined(MBEDTLS_SHA1_C)
				1636	{ MBEDTLS_TLS_RSA_PSK_WITH_RC4_128_SHA, "TLS-RSA-PSK-WITH-RC4-128-SHA",
				1637	MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA_PSK,
				1638	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1639	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1640	MBEDTLS_CIPHERSUITE_NODTLS },
				1641	#endif /* MBEDTLS_SHA1_C */
				1642	#endif /* MBEDTLS_ARC4_C */
				1643	#endif /* MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED */
Paul Bakker	d4a56ec	2013-04-16 18:05:29 +0200	[diff] [blame]	1644
Manuel Pégourié-Gonnard	538cb7b	2015-09-15 18:03:28 +0200	[diff] [blame]	1645	#if defined(MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED)
				1646	#if defined(MBEDTLS_AES_C)
				1647	#if defined(MBEDTLS_CCM_C)
				1648	{ MBEDTLS_TLS_ECJPAKE_WITH_AES_128_CCM_8, "TLS-ECJPAKE-WITH-AES-128-CCM-8",
				1649	MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECJPAKE,
				1650	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1651	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1652	MBEDTLS_CIPHERSUITE_SHORT_TAG },
				1653	#endif /* MBEDTLS_CCM_C */
				1654	#endif /* MBEDTLS_AES_C */
				1655	#endif /* MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED */
				1656
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1657	#if defined(MBEDTLS_ENABLE_WEAK_CIPHERSUITES)
				1658	#if defined(MBEDTLS_CIPHER_NULL_CIPHER)
				1659	#if defined(MBEDTLS_KEY_EXCHANGE_RSA_ENABLED)
				1660	#if defined(MBEDTLS_MD5_C)
				1661	{ MBEDTLS_TLS_RSA_WITH_NULL_MD5, "TLS-RSA-WITH-NULL-MD5",
				1662	MBEDTLS_CIPHER_NULL, MBEDTLS_MD_MD5, MBEDTLS_KEY_EXCHANGE_RSA,
				1663	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				1664	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1665	MBEDTLS_CIPHERSUITE_WEAK },
Manuel Pégourié-Gonnard	057e0cf	2013-10-14 14:19:31 +0200	[diff] [blame]	1666	#endif
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	1667
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1668	#if defined(MBEDTLS_SHA1_C)
				1669	{ MBEDTLS_TLS_RSA_WITH_NULL_SHA, "TLS-RSA-WITH-NULL-SHA",
				1670	MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA,
				1671	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				1672	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1673	MBEDTLS_CIPHERSUITE_WEAK },
Manuel Pégourié-Gonnard	057e0cf	2013-10-14 14:19:31 +0200	[diff] [blame]	1674	#endif
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	1675
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1676	#if defined(MBEDTLS_SHA256_C)
				1677	{ MBEDTLS_TLS_RSA_WITH_NULL_SHA256, "TLS-RSA-WITH-NULL-SHA256",
				1678	MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,
				1679	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1680	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1681	MBEDTLS_CIPHERSUITE_WEAK },
Manuel Pégourié-Gonnard	057e0cf	2013-10-14 14:19:31 +0200	[diff] [blame]	1682	#endif
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1683	#endif /* MBEDTLS_KEY_EXCHANGE_RSA_ENABLED */
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	1684
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1685	#if defined(MBEDTLS_KEY_EXCHANGE_PSK_ENABLED)
				1686	#if defined(MBEDTLS_SHA1_C)
				1687	{ MBEDTLS_TLS_PSK_WITH_NULL_SHA, "TLS-PSK-WITH-NULL-SHA",
				1688	MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_PSK,
				1689	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				1690	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1691	MBEDTLS_CIPHERSUITE_WEAK },
				1692	#endif /* MBEDTLS_SHA1_C */
Manuel Pégourié-Gonnard	98d9a2c	2013-10-25 18:03:18 +0200	[diff] [blame]	1693
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1694	#if defined(MBEDTLS_SHA256_C)
				1695	{ MBEDTLS_TLS_PSK_WITH_NULL_SHA256, "TLS-PSK-WITH-NULL-SHA256",
				1696	MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK,
				1697	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1698	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1699	MBEDTLS_CIPHERSUITE_WEAK },
Manuel Pégourié-Gonnard	98d9a2c	2013-10-25 18:03:18 +0200	[diff] [blame]	1700	#endif
				1701
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1702	#if defined(MBEDTLS_SHA512_C)
				1703	{ MBEDTLS_TLS_PSK_WITH_NULL_SHA384, "TLS-PSK-WITH-NULL-SHA384",
				1704	MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_PSK,
				1705	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1706	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1707	MBEDTLS_CIPHERSUITE_WEAK },
Manuel Pégourié-Gonnard	98d9a2c	2013-10-25 18:03:18 +0200	[diff] [blame]	1708	#endif
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1709	#endif /* MBEDTLS_KEY_EXCHANGE_PSK_ENABLED */
Paul Bakker	a1bf92d	2013-04-19 19:48:45 +0200	[diff] [blame]	1710
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1711	#if defined(MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED)
				1712	#if defined(MBEDTLS_SHA1_C)
				1713	{ MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA, "TLS-DHE-PSK-WITH-NULL-SHA",
				1714	MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				1715	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				1716	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1717	MBEDTLS_CIPHERSUITE_WEAK },
				1718	#endif /* MBEDTLS_SHA1_C */
Manuel Pégourié-Gonnard	98d9a2c	2013-10-25 18:03:18 +0200	[diff] [blame]	1719
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1720	#if defined(MBEDTLS_SHA256_C)
				1721	{ MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA256, "TLS-DHE-PSK-WITH-NULL-SHA256",
				1722	MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				1723	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1724	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1725	MBEDTLS_CIPHERSUITE_WEAK },
Manuel Pégourié-Gonnard	98d9a2c	2013-10-25 18:03:18 +0200	[diff] [blame]	1726	#endif
				1727
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1728	#if defined(MBEDTLS_SHA512_C)
				1729	{ MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA384, "TLS-DHE-PSK-WITH-NULL-SHA384",
				1730	MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				1731	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1732	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1733	MBEDTLS_CIPHERSUITE_WEAK },
Manuel Pégourié-Gonnard	98d9a2c	2013-10-25 18:03:18 +0200	[diff] [blame]	1734	#endif
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1735	#endif /* MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED */
Paul Bakker	a1bf92d	2013-04-19 19:48:45 +0200	[diff] [blame]	1736
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1737	#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED)
				1738	#if defined(MBEDTLS_SHA1_C)
				1739	{ MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA, "TLS-ECDHE-PSK-WITH-NULL-SHA",
				1740	MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,
				1741	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1742	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1743	MBEDTLS_CIPHERSUITE_WEAK },
				1744	#endif /* MBEDTLS_SHA1_C */
Manuel Pégourié-Gonnard	225d6aa	2013-10-11 19:07:56 +0200	[diff] [blame]	1745
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1746	#if defined(MBEDTLS_SHA256_C)
				1747	{ MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA256, "TLS-ECDHE-PSK-WITH-NULL-SHA256",
				1748	MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,
				1749	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1750	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1751	MBEDTLS_CIPHERSUITE_WEAK },
Manuel Pégourié-Gonnard	225d6aa	2013-10-11 19:07:56 +0200	[diff] [blame]	1752	#endif
				1753
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1754	#if defined(MBEDTLS_SHA512_C)
				1755	{ MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA384, "TLS-ECDHE-PSK-WITH-NULL-SHA384",
				1756	MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,
				1757	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1758	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1759	MBEDTLS_CIPHERSUITE_WEAK },
Manuel Pégourié-Gonnard	225d6aa	2013-10-11 19:07:56 +0200	[diff] [blame]	1760	#endif
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1761	#endif /* MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED */
Manuel Pégourié-Gonnard	225d6aa	2013-10-11 19:07:56 +0200	[diff] [blame]	1762
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1763	#if defined(MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED)
				1764	#if defined(MBEDTLS_SHA1_C)
				1765	{ MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA, "TLS-RSA-PSK-WITH-NULL-SHA",
				1766	MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA_PSK,
				1767	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1768	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1769	MBEDTLS_CIPHERSUITE_WEAK },
				1770	#endif /* MBEDTLS_SHA1_C */
Manuel Pégourié-Gonnard	ef0eb1e	2013-10-14 19:29:19 +0200	[diff] [blame]	1771
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1772	#if defined(MBEDTLS_SHA256_C)
				1773	{ MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA256, "TLS-RSA-PSK-WITH-NULL-SHA256",
				1774	MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA_PSK,
				1775	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1776	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1777	MBEDTLS_CIPHERSUITE_WEAK },
Manuel Pégourié-Gonnard	98d9a2c	2013-10-25 18:03:18 +0200	[diff] [blame]	1778	#endif
Manuel Pégourié-Gonnard	ef0eb1e	2013-10-14 19:29:19 +0200	[diff] [blame]	1779
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1780	#if defined(MBEDTLS_SHA512_C)
				1781	{ MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA384, "TLS-RSA-PSK-WITH-NULL-SHA384",
				1782	MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA_PSK,
				1783	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,
				1784	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1785	MBEDTLS_CIPHERSUITE_WEAK },
Manuel Pégourié-Gonnard	98d9a2c	2013-10-25 18:03:18 +0200	[diff] [blame]	1786	#endif
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1787	#endif /* MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED */
				1788	#endif /* MBEDTLS_CIPHER_NULL_CIPHER */
Paul Bakker	a1bf92d	2013-04-19 19:48:45 +0200	[diff] [blame]	1789
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1790	#if defined(MBEDTLS_DES_C)
				1791	#if defined(MBEDTLS_CIPHER_MODE_CBC)
				1792	#if defined(MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED)
				1793	#if defined(MBEDTLS_SHA1_C)
				1794	{ MBEDTLS_TLS_DHE_RSA_WITH_DES_CBC_SHA, "TLS-DHE-RSA-WITH-DES-CBC-SHA",
				1795	MBEDTLS_CIPHER_DES_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_RSA,
				1796	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				1797	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1798	MBEDTLS_CIPHERSUITE_WEAK },
				1799	#endif /* MBEDTLS_SHA1_C */
				1800	#endif /* MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED */
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	1801
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	1802	#if defined(MBEDTLS_KEY_EXCHANGE_RSA_ENABLED)
				1803	#if defined(MBEDTLS_SHA1_C)
				1804	{ MBEDTLS_TLS_RSA_WITH_DES_CBC_SHA, "TLS-RSA-WITH-DES-CBC-SHA",
				1805	MBEDTLS_CIPHER_DES_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA,
				1806	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,
				1807	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1808	MBEDTLS_CIPHERSUITE_WEAK },
				1809	#endif /* MBEDTLS_SHA1_C */
				1810	#endif /* MBEDTLS_KEY_EXCHANGE_RSA_ENABLED */
				1811	#endif /* MBEDTLS_CIPHER_MODE_CBC */
				1812	#endif /* MBEDTLS_DES_C */
				1813	#endif /* MBEDTLS_ENABLE_WEAK_CIPHERSUITES */
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	1814
Markku-Juhani O. Saarinen	c06e101	2017-12-07 11:51:13 +0000	[diff] [blame]	1815	#if defined(MBEDTLS_ARIA_C)
				1816
				1817	#if defined(MBEDTLS_KEY_EXCHANGE_RSA_ENABLED)
				1818
				1819	#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA512_C))
				1820	{ MBEDTLS_TLS_RSA_WITH_ARIA_256_GCM_SHA384,
				1821	"TLS-RSA-WITH-ARIA-256-GCM-SHA384",
				1822	MBEDTLS_CIPHER_ARIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA,
				1823	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1824	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1825	0 },
				1826	#endif
				1827	#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA512_C))
				1828	{ MBEDTLS_TLS_RSA_WITH_ARIA_256_CBC_SHA384,
				1829	"TLS-RSA-WITH-ARIA-256-CBC-SHA384",
				1830	MBEDTLS_CIPHER_ARIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA,
				1831	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1832	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1833	0 },
				1834	#endif
				1835	#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA256_C))
				1836	{ MBEDTLS_TLS_RSA_WITH_ARIA_128_GCM_SHA256,
				1837	"TLS-RSA-WITH-ARIA-128-GCM-SHA256",
				1838	MBEDTLS_CIPHER_ARIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,
				1839	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1840	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1841	0 },
				1842	#endif
				1843	#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA256_C))
				1844	{ MBEDTLS_TLS_RSA_WITH_ARIA_128_CBC_SHA256,
				1845	"TLS-RSA-WITH-ARIA-128-CBC-SHA256",
				1846	MBEDTLS_CIPHER_ARIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,
				1847	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1848	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1849	0 },
				1850	#endif
				1851
				1852	#endif /* MBEDTLS_KEY_EXCHANGE_RSA_ENABLED */
				1853
				1854	#if defined(MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED)
				1855
				1856	#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA512_C))
				1857	{ MBEDTLS_TLS_RSA_PSK_WITH_ARIA_256_GCM_SHA384,
				1858	"TLS-RSA-PSK-WITH-ARIA-256-GCM-SHA384",
				1859	MBEDTLS_CIPHER_ARIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA_PSK,
				1860	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1861	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1862	0 },
				1863	#endif
				1864	#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA512_C))
				1865	{ MBEDTLS_TLS_RSA_PSK_WITH_ARIA_256_CBC_SHA384,
				1866	"TLS-RSA-PSK-WITH-ARIA-256-CBC-SHA384",
				1867	MBEDTLS_CIPHER_ARIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA_PSK,
				1868	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1869	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1870	0 },
				1871	#endif
				1872	#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA256_C))
				1873	{ MBEDTLS_TLS_RSA_PSK_WITH_ARIA_128_GCM_SHA256,
				1874	"TLS-RSA-PSK-WITH-ARIA-128-GCM-SHA256",
				1875	MBEDTLS_CIPHER_ARIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA_PSK,
				1876	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1877	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1878	0 },
				1879	#endif
				1880	#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA256_C))
				1881	{ MBEDTLS_TLS_RSA_PSK_WITH_ARIA_128_CBC_SHA256,
				1882	"TLS-RSA-PSK-WITH-ARIA-128-CBC-SHA256",
				1883	MBEDTLS_CIPHER_ARIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA_PSK,
				1884	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1885	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1886	0 },
				1887	#endif
				1888
				1889	#endif /* MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED */
				1890
				1891	#if defined(MBEDTLS_KEY_EXCHANGE_PSK_ENABLED)
				1892
				1893	#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA512_C))
				1894	{ MBEDTLS_TLS_PSK_WITH_ARIA_256_GCM_SHA384,
				1895	"TLS-PSK-WITH-ARIA-256-GCM-SHA384",
				1896	MBEDTLS_CIPHER_ARIA_256_GCM, MBEDTLS_MD_SHA384,MBEDTLS_KEY_EXCHANGE_PSK,
				1897	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1898	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1899	0 },
				1900	#endif
				1901	#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA512_C))
				1902	{ MBEDTLS_TLS_PSK_WITH_ARIA_256_CBC_SHA384,
				1903	"TLS-PSK-WITH-ARIA-256-CBC-SHA384",
				1904	MBEDTLS_CIPHER_ARIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_PSK,
				1905	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1906	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1907	0 },
				1908	#endif
				1909	#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA256_C))
				1910	{ MBEDTLS_TLS_PSK_WITH_ARIA_128_GCM_SHA256,
				1911	"TLS-PSK-WITH-ARIA-128-GCM-SHA256",
				1912	MBEDTLS_CIPHER_ARIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK,
				1913	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1914	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1915	0 },
				1916	#endif
				1917	#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA256_C))
				1918	{ MBEDTLS_TLS_PSK_WITH_ARIA_128_CBC_SHA256,
				1919	"TLS-PSK-WITH-ARIA-128-CBC-SHA256",
				1920	MBEDTLS_CIPHER_ARIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK,
				1921	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1922	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1923	0 },
				1924	#endif
				1925
				1926	#endif /* MBEDTLS_KEY_EXCHANGE_PSK_ENABLED */
				1927
				1928	#if defined(MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED)
				1929
				1930	#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA512_C))
				1931	{ MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_256_GCM_SHA384,
				1932	"TLS-ECDH-RSA-WITH-ARIA-256-GCM-SHA384",
				1933	MBEDTLS_CIPHER_ARIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,
				1934	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1935	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1936	0 },
				1937	#endif
				1938	#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA512_C))
				1939	{ MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_256_CBC_SHA384,
				1940	"TLS-ECDH-RSA-WITH-ARIA-256-CBC-SHA384",
				1941	MBEDTLS_CIPHER_ARIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,
				1942	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1943	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1944	0 },
				1945	#endif
				1946	#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA256_C))
				1947	{ MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_128_GCM_SHA256,
				1948	"TLS-ECDH-RSA-WITH-ARIA-128-GCM-SHA256",
				1949	MBEDTLS_CIPHER_ARIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,
				1950	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1951	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1952	0 },
				1953	#endif
				1954	#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA256_C))
				1955	{ MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_128_CBC_SHA256,
				1956	"TLS-ECDH-RSA-WITH-ARIA-128-CBC-SHA256",
				1957	MBEDTLS_CIPHER_ARIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,
				1958	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1959	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1960	0 },
				1961	#endif
				1962
				1963	#endif /* MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED */
				1964
				1965	#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED)
				1966
				1967	#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA512_C))
				1968	{ MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384,
				1969	"TLS-ECDHE-RSA-WITH-ARIA-256-GCM-SHA384",
				1970	MBEDTLS_CIPHER_ARIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,
				1971	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1972	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1973	0 },
				1974	#endif
				1975	#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA512_C))
				1976	{ MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_256_CBC_SHA384,
				1977	"TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384",
				1978	MBEDTLS_CIPHER_ARIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,
				1979	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1980	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1981	0 },
				1982	#endif
				1983	#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA256_C))
				1984	{ MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256,
				1985	"TLS-ECDHE-RSA-WITH-ARIA-128-GCM-SHA256",
				1986	MBEDTLS_CIPHER_ARIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,
				1987	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1988	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1989	0 },
				1990	#endif
				1991	#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA256_C))
				1992	{ MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_128_CBC_SHA256,
				1993	"TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256",
				1994	MBEDTLS_CIPHER_ARIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,
				1995	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1996	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				1997	0 },
				1998	#endif
				1999
				2000	#endif /* MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED */
				2001
				2002	#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED)
				2003
				2004	#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA512_C))
				2005	{ MBEDTLS_TLS_ECDHE_PSK_WITH_ARIA_256_CBC_SHA384,
				2006	"TLS-ECDHE-PSK-WITH-ARIA-256-CBC-SHA384",
				2007	MBEDTLS_CIPHER_ARIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,
				2008	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2009	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2010	0 },
				2011	#endif
				2012	#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA256_C))
				2013	{ MBEDTLS_TLS_ECDHE_PSK_WITH_ARIA_128_CBC_SHA256,
				2014	"TLS-ECDHE-PSK-WITH-ARIA-128-CBC-SHA256",
				2015	MBEDTLS_CIPHER_ARIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,
				2016	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2017	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2018	0 },
				2019	#endif
				2020
				2021	#endif /* MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED */
				2022
				2023	#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED)
				2024
				2025	#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA512_C))
				2026	{ MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_256_GCM_SHA384,
				2027	"TLS-ECDHE-ECDSA-WITH-ARIA-256-GCM-SHA384",
				2028	MBEDTLS_CIPHER_ARIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,
				2029	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2030	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2031	0 },
				2032	#endif
				2033	#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA512_C))
				2034	{ MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_256_CBC_SHA384,
				2035	"TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384",
				2036	MBEDTLS_CIPHER_ARIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,
				2037	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2038	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2039	0 },
				2040	#endif
				2041	#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA256_C))
				2042	{ MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_128_GCM_SHA256,
				2043	"TLS-ECDHE-ECDSA-WITH-ARIA-128-GCM-SHA256",
				2044	MBEDTLS_CIPHER_ARIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,
				2045	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2046	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2047	0 },
				2048	#endif
				2049	#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA256_C))
				2050	{ MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_128_CBC_SHA256,
				2051	"TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256",
				2052	MBEDTLS_CIPHER_ARIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,
				2053	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2054	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2055	0 },
				2056	#endif
				2057
				2058	#endif /* MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED */
				2059
				2060	#if defined(MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED)
				2061
				2062	#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA512_C))
				2063	{ MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_256_GCM_SHA384,
				2064	"TLS-ECDH-ECDSA-WITH-ARIA-256-GCM-SHA384",
				2065	MBEDTLS_CIPHER_ARIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,
				2066	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2067	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2068	0 },
				2069	#endif
				2070	#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA512_C))
				2071	{ MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_256_CBC_SHA384,
				2072	"TLS-ECDH-ECDSA-WITH-ARIA-256-CBC-SHA384",
				2073	MBEDTLS_CIPHER_ARIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,
				2074	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2075	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2076	0 },
				2077	#endif
				2078	#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA256_C))
				2079	{ MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_128_GCM_SHA256,
				2080	"TLS-ECDH-ECDSA-WITH-ARIA-128-GCM-SHA256",
				2081	MBEDTLS_CIPHER_ARIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,
				2082	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2083	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2084	0 },
				2085	#endif
				2086	#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA256_C))
				2087	{ MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_128_CBC_SHA256,
				2088	"TLS-ECDH-ECDSA-WITH-ARIA-128-CBC-SHA256",
				2089	MBEDTLS_CIPHER_ARIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,
				2090	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2091	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2092	0 },
				2093	#endif
				2094
				2095	#endif /* MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED */
				2096
				2097	#if defined(MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED)
				2098
				2099	#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA512_C))
				2100	{ MBEDTLS_TLS_DHE_RSA_WITH_ARIA_256_GCM_SHA384,
				2101	"TLS-DHE-RSA-WITH-ARIA-256-GCM-SHA384",
				2102	MBEDTLS_CIPHER_ARIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_RSA,
				2103	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2104	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2105	0 },
				2106	#endif
				2107	#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA512_C))
				2108	{ MBEDTLS_TLS_DHE_RSA_WITH_ARIA_256_CBC_SHA384,
				2109	"TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384",
				2110	MBEDTLS_CIPHER_ARIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_RSA,
				2111	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2112	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2113	0 },
				2114	#endif
				2115	#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA256_C))
				2116	{ MBEDTLS_TLS_DHE_RSA_WITH_ARIA_128_GCM_SHA256,
				2117	"TLS-DHE-RSA-WITH-ARIA-128-GCM-SHA256",
				2118	MBEDTLS_CIPHER_ARIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,
				2119	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2120	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2121	0 },
				2122	#endif
				2123	#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA256_C))
				2124	{ MBEDTLS_TLS_DHE_RSA_WITH_ARIA_128_CBC_SHA256,
				2125	"TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256",
				2126	MBEDTLS_CIPHER_ARIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,
				2127	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2128	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2129	0 },
				2130	#endif
				2131
				2132	#endif /* MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED */
				2133
				2134	#if defined(MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED)
				2135
				2136	#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA512_C))
				2137	{ MBEDTLS_TLS_DHE_PSK_WITH_ARIA_256_GCM_SHA384,
				2138	"TLS-DHE-PSK-WITH-ARIA-256-GCM-SHA384",
				2139	MBEDTLS_CIPHER_ARIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				2140	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2141	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2142	0 },
				2143	#endif
				2144	#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA512_C))
				2145	{ MBEDTLS_TLS_DHE_PSK_WITH_ARIA_256_CBC_SHA384,
				2146	"TLS-DHE-PSK-WITH-ARIA-256-CBC-SHA384",
				2147	MBEDTLS_CIPHER_ARIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				2148	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2149	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2150	0 },
				2151	#endif
				2152	#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA256_C))
				2153	{ MBEDTLS_TLS_DHE_PSK_WITH_ARIA_128_GCM_SHA256,
				2154	"TLS-DHE-PSK-WITH-ARIA-128-GCM-SHA256",
				2155	MBEDTLS_CIPHER_ARIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				2156	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2157	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2158	0 },
				2159	#endif
				2160	#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA256_C))
				2161	{ MBEDTLS_TLS_DHE_PSK_WITH_ARIA_128_CBC_SHA256,
				2162	"TLS-DHE-PSK-WITH-ARIA-128-CBC-SHA256",
				2163	MBEDTLS_CIPHER_ARIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK,
				2164	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2165	MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,
				2166	0 },
				2167	#endif
				2168
				2169	#endif /* MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED */
				2170
				2171	#endif /* MBEDTLS_ARIA_C */
				2172
				2173
Manuel Pégourié-Gonnard	a273371	2015-02-10 17:32:14 +0100	[diff] [blame]	2174	{ 0, "",
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	2175	MBEDTLS_CIPHER_NONE, MBEDTLS_MD_NONE, MBEDTLS_KEY_EXCHANGE_NONE,
Manuel Pégourié-Gonnard	a273371	2015-02-10 17:32:14 +0100	[diff] [blame]	2176	0, 0, 0, 0, 0 }
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	2177	};
				2178
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	2179	#if defined(MBEDTLS_SSL_CIPHERSUITES)
				2180	const int *mbedtls_ssl_list_ciphersuites( void )
Manuel Pégourié-Gonnard	dfc7df0	2014-06-30 17:59:55 +0200	[diff] [blame]	2181	{
				2182	return( ciphersuite_preference );
				2183	}
				2184	#else
Manuel Pégourié-Gonnard	791684c	2014-06-30 17:38:22 +0200	[diff] [blame]	2185	#define MAX_CIPHERSUITES sizeof( ciphersuite_definitions ) / \
				2186	sizeof( ciphersuite_definitions[0] )
				2187	static int supported_ciphersuites[MAX_CIPHERSUITES];
				2188	static int supported_init = 0;
				2189
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	2190	const int *mbedtls_ssl_list_ciphersuites( void )
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	2191	{
Paul Bakker	41c83d3	2013-03-20 14:39:14 +0100	[diff] [blame]	2192	/*
				2193	* On initial call filter out all ciphersuites not supported by current
				2194	* build based on presence in the ciphersuite_definitions.
				2195	*/
				2196	if( supported_init == 0 )
				2197	{
Manuel Pégourié-Gonnard	791684c	2014-06-30 17:38:22 +0200	[diff] [blame]	2198	const int *p;
				2199	int *q;
Paul Bakker	41c83d3	2013-03-20 14:39:14 +0100	[diff] [blame]	2200
Manuel Pégourié-Gonnard	791684c	2014-06-30 17:38:22 +0200	[diff] [blame]	2201	for( p = ciphersuite_preference, q = supported_ciphersuites;
				2202	*p != 0 && q < supported_ciphersuites + MAX_CIPHERSUITES - 1;
				2203	p++ )
Paul Bakker	41c83d3	2013-03-20 14:39:14 +0100	[diff] [blame]	2204	{
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	2205	#if defined(MBEDTLS_REMOVE_ARC4_CIPHERSUITES)
				2206	const mbedtls_ssl_ciphersuite_t *cs_info;
				2207	if( ( cs_info = mbedtls_ssl_ciphersuite_from_id( *p ) ) != NULL &&
				2208	cs_info->cipher != MBEDTLS_CIPHER_ARC4_128 )
Manuel Pégourié-Gonnard	01edb10	2014-06-24 22:42:34 +0200	[diff] [blame]	2209	#else
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	2210	if( mbedtls_ssl_ciphersuite_from_id( *p ) != NULL )
Manuel Pégourié-Gonnard	01edb10	2014-06-24 22:42:34 +0200	[diff] [blame]	2211	#endif
Manuel Pégourié-Gonnard	791684c	2014-06-30 17:38:22 +0200	[diff] [blame]	2212	(q++) = p;
Paul Bakker	41c83d3	2013-03-20 14:39:14 +0100	[diff] [blame]	2213	}
Manuel Pégourié-Gonnard	bc4b7f0	2013-09-07 15:04:26 +0200	[diff] [blame]	2214	*q = 0;
Manuel Pégourié-Gonnard	32ea60a	2013-08-17 17:39:04 +0200	[diff] [blame]	2215
Paul Bakker	41c83d3	2013-03-20 14:39:14 +0100	[diff] [blame]	2216	supported_init = 1;
				2217	}
				2218
Paul Bakker	d8bb826	2014-06-17 14:06:49 +0200	[diff] [blame]	2219	return( supported_ciphersuites );
Manuel Pégourié-Gonnard	f78e4de	2015-05-29 10:52:14 +0200	[diff] [blame]	2220	}
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	2221	#endif /* MBEDTLS_SSL_CIPHERSUITES */
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	2222
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	2223	const mbedtls_ssl_ciphersuite_t *mbedtls_ssl_ciphersuite_from_string(
Paul Bakker	b9e4e2c	2014-05-01 14:18:25 +0200	[diff] [blame]	2224	const char *ciphersuite_name )
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	2225	{
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	2226	const mbedtls_ssl_ciphersuite_t *cur = ciphersuite_definitions;
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	2227
				2228	if( NULL == ciphersuite_name )
				2229	return( NULL );
				2230
				2231	while( cur->id != 0 )
				2232	{
Manuel Pégourié-Gonnard	cb46fd8	2015-05-28 17:06:07 +0200	[diff] [blame]	2233	if( 0 == strcmp( cur->name, ciphersuite_name ) )
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	2234	return( cur );
				2235
				2236	cur++;
				2237	}
				2238
				2239	return( NULL );
				2240	}
				2241
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	2242	const mbedtls_ssl_ciphersuite_t *mbedtls_ssl_ciphersuite_from_id( int ciphersuite )
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	2243	{
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	2244	const mbedtls_ssl_ciphersuite_t *cur = ciphersuite_definitions;
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	2245
				2246	while( cur->id != 0 )
				2247	{
				2248	if( cur->id == ciphersuite )
				2249	return( cur );
				2250
				2251	cur++;
				2252	}
				2253
				2254	return( NULL );
				2255	}
				2256
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	2257	const char *mbedtls_ssl_get_ciphersuite_name( const int ciphersuite_id )
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	2258	{
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	2259	const mbedtls_ssl_ciphersuite_t *cur;
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	2260
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	2261	cur = mbedtls_ssl_ciphersuite_from_id( ciphersuite_id );
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	2262
				2263	if( cur == NULL )
				2264	return( "unknown" );
				2265
				2266	return( cur->name );
				2267	}
				2268
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	2269	int mbedtls_ssl_get_ciphersuite_id( const char *ciphersuite_name )
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	2270	{
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	2271	const mbedtls_ssl_ciphersuite_t *cur;
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	2272
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	2273	cur = mbedtls_ssl_ciphersuite_from_string( ciphersuite_name );
Paul Bakker	68884e3	2013-01-07 18:20:04 +0100	[diff] [blame]	2274
				2275	if( cur == NULL )
				2276	return( 0 );
				2277
				2278	return( cur->id );
				2279	}
				2280
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	2281	#if defined(MBEDTLS_PK_C)
				2282	mbedtls_pk_type_t mbedtls_ssl_get_ciphersuite_sig_pk_alg( const mbedtls_ssl_ciphersuite_t *info )
Manuel Pégourié-Gonnard	09edda8	2013-08-19 13:50:33 +0200	[diff] [blame]	2283	{
				2284	switch( info->key_exchange )
				2285	{
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	2286	case MBEDTLS_KEY_EXCHANGE_RSA:
				2287	case MBEDTLS_KEY_EXCHANGE_DHE_RSA:
				2288	case MBEDTLS_KEY_EXCHANGE_ECDHE_RSA:
				2289	case MBEDTLS_KEY_EXCHANGE_RSA_PSK:
				2290	return( MBEDTLS_PK_RSA );
Manuel Pégourié-Gonnard	09edda8	2013-08-19 13:50:33 +0200	[diff] [blame]	2291
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	2292	case MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA:
				2293	return( MBEDTLS_PK_ECDSA );
Manuel Pégourié-Gonnard	09edda8	2013-08-19 13:50:33 +0200	[diff] [blame]	2294
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	2295	case MBEDTLS_KEY_EXCHANGE_ECDH_RSA:
				2296	case MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA:
				2297	return( MBEDTLS_PK_ECKEY );
Manuel Pégourié-Gonnard	25781b2	2013-12-11 16:17:10 +0100	[diff] [blame]	2298
Manuel Pégourié-Gonnard	09edda8	2013-08-19 13:50:33 +0200	[diff] [blame]	2299	default:
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	2300	return( MBEDTLS_PK_NONE );
Manuel Pégourié-Gonnard	09edda8	2013-08-19 13:50:33 +0200	[diff] [blame]	2301	}
				2302	}
Hanno Becker	7e5437a	2017-04-28 17:15:26 +0100	[diff] [blame]	2303
				2304	mbedtls_pk_type_t mbedtls_ssl_get_ciphersuite_sig_alg( const mbedtls_ssl_ciphersuite_t *info )
				2305	{
				2306	switch( info->key_exchange )
				2307	{
				2308	case MBEDTLS_KEY_EXCHANGE_RSA:
				2309	case MBEDTLS_KEY_EXCHANGE_DHE_RSA:
				2310	case MBEDTLS_KEY_EXCHANGE_ECDHE_RSA:
				2311	return( MBEDTLS_PK_RSA );
				2312
				2313	case MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA:
				2314	return( MBEDTLS_PK_ECDSA );
				2315
				2316	default:
				2317	return( MBEDTLS_PK_NONE );
				2318	}
				2319	}
Hanno Becker	d300a57	2017-06-20 14:31:29 +0100	[diff] [blame]	2320
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	2321	#endif /* MBEDTLS_PK_C */
Manuel Pégourié-Gonnard	09edda8	2013-08-19 13:50:33 +0200	[diff] [blame]	2322
Hanno Becker	d300a57	2017-06-20 14:31:29 +0100	[diff] [blame]	2323	#if defined(MBEDTLS_ECDH_C) \|\| defined(MBEDTLS_ECDSA_C)
				2324	int mbedtls_ssl_ciphersuite_uses_ec( const mbedtls_ssl_ciphersuite_t *info )
				2325	{
				2326	switch( info->key_exchange )
				2327	{
				2328	case MBEDTLS_KEY_EXCHANGE_ECDHE_RSA:
				2329	case MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA:
				2330	case MBEDTLS_KEY_EXCHANGE_ECDHE_PSK:
				2331	case MBEDTLS_KEY_EXCHANGE_ECDH_RSA:
				2332	case MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA:
				2333	return( 1 );
				2334
				2335	default:
				2336	return( 0 );
				2337	}
				2338	}
				2339	#endif /* MBEDTLS_ECDH_C \|\| MBEDTLS_ECDSA_C */
				2340
				2341	#if defined(MBEDTLS_KEY_EXCHANGE__SOME__PSK_ENABLED)
				2342	int mbedtls_ssl_ciphersuite_uses_psk( const mbedtls_ssl_ciphersuite_t *info )
				2343	{
				2344	switch( info->key_exchange )
				2345	{
				2346	case MBEDTLS_KEY_EXCHANGE_PSK:
				2347	case MBEDTLS_KEY_EXCHANGE_RSA_PSK:
				2348	case MBEDTLS_KEY_EXCHANGE_DHE_PSK:
				2349	case MBEDTLS_KEY_EXCHANGE_ECDHE_PSK:
				2350	return( 1 );
				2351
				2352	default:
				2353	return( 0 );
				2354	}
				2355	}
				2356	#endif /* MBEDTLS_KEY_EXCHANGE__SOME__PSK_ENABLED */
				2357
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	2358	#endif /* MBEDTLS_SSL_TLS_C */