--- /dev/null
+/**\r
+ * \file ssl_ciphersuites.c\r
+ *\r
+ * \brief SSL ciphersuites for mbed TLS\r
+ *\r
+ * Copyright (C) 2006-2015, ARM Limited, All Rights Reserved\r
+ * SPDX-License-Identifier: Apache-2.0\r
+ *\r
+ * Licensed under the Apache License, Version 2.0 (the "License"); you may\r
+ * not use this file except in compliance with the License.\r
+ * You may obtain a copy of the License at\r
+ *\r
+ * http://www.apache.org/licenses/LICENSE-2.0\r
+ *\r
+ * Unless required by applicable law or agreed to in writing, software\r
+ * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT\r
+ * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\r
+ * See the License for the specific language governing permissions and\r
+ * limitations under the License.\r
+ *\r
+ * This file is part of mbed TLS (https://tls.mbed.org)\r
+ */\r
+\r
+#if !defined(MBEDTLS_CONFIG_FILE)\r
+#include "mbedtls/config.h"\r
+#else\r
+#include MBEDTLS_CONFIG_FILE\r
+#endif\r
+\r
+#if defined(MBEDTLS_SSL_TLS_C)\r
+\r
+#if defined(MBEDTLS_PLATFORM_C)\r
+#include "mbedtls/platform.h"\r
+#else\r
+#include <stdlib.h>\r
+#endif\r
+\r
+#include "mbedtls/ssl_ciphersuites.h"\r
+#include "mbedtls/ssl.h"\r
+\r
+#include <string.h>\r
+\r
+/*\r
+ * Ordered from most preferred to least preferred in terms of security.\r
+ *\r
+ * Current rule (except RC4 and 3DES, weak and null which come last):\r
+ * 1. By key exchange:\r
+ * Forward-secure non-PSK > forward-secure PSK > ECJPAKE > other non-PSK > other PSK\r
+ * 2. By key length and cipher:\r
+ * ChaCha > AES-256 > Camellia-256 > ARIA-256 > AES-128 > Camellia-128 > ARIA-128\r
+ * 3. By cipher mode when relevant GCM > CCM > CBC > CCM_8\r
+ * 4. By hash function used when relevant\r
+ * 5. By key exchange/auth again: EC > non-EC\r
+ */\r
+static const int ciphersuite_preference[] =\r
+{\r
+#if defined(MBEDTLS_SSL_CIPHERSUITES)\r
+ MBEDTLS_SSL_CIPHERSUITES,\r
+#else\r
+ /* Chacha-Poly ephemeral suites */\r
+ MBEDTLS_TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256,\r
+ MBEDTLS_TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256,\r
+ MBEDTLS_TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256,\r
+\r
+ /* All AES-256 ephemeral suites */\r
+ MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,\r
+ MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,\r
+ MBEDTLS_TLS_DHE_RSA_WITH_AES_256_GCM_SHA384,\r
+ MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CCM,\r
+ MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CCM,\r
+ MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384,\r
+ MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384,\r
+ MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA256,\r
+ MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA,\r
+ MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,\r
+ MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA,\r
+ MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CCM_8,\r
+ MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CCM_8,\r
+\r
+ /* All CAMELLIA-256 ephemeral suites */\r
+ MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384,\r
+ MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_GCM_SHA384,\r
+ MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_GCM_SHA384,\r
+ MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384,\r
+ MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384,\r
+ MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256,\r
+ MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA,\r
+\r
+ /* All ARIA-256 ephemeral suites */\r
+ MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_256_GCM_SHA384,\r
+ MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384,\r
+ MBEDTLS_TLS_DHE_RSA_WITH_ARIA_256_GCM_SHA384,\r
+ MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_256_CBC_SHA384,\r
+ MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_256_CBC_SHA384,\r
+ MBEDTLS_TLS_DHE_RSA_WITH_ARIA_256_CBC_SHA384,\r
+\r
+ /* All AES-128 ephemeral suites */\r
+ MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,\r
+ MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,\r
+ MBEDTLS_TLS_DHE_RSA_WITH_AES_128_GCM_SHA256,\r
+ MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CCM,\r
+ MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CCM,\r
+ MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256,\r
+ MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,\r
+ MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA256,\r
+ MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA,\r
+ MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,\r
+ MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA,\r
+ MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8,\r
+ MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CCM_8,\r
+\r
+ /* All CAMELLIA-128 ephemeral suites */\r
+ MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_GCM_SHA256,\r
+ MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_GCM_SHA256,\r
+ MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_GCM_SHA256,\r
+ MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256,\r
+ MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256,\r
+ MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256,\r
+ MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA,\r
+\r
+ /* All ARIA-128 ephemeral suites */\r
+ MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_128_GCM_SHA256,\r
+ MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256,\r
+ MBEDTLS_TLS_DHE_RSA_WITH_ARIA_128_GCM_SHA256,\r
+ MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_128_CBC_SHA256,\r
+ MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_128_CBC_SHA256,\r
+ MBEDTLS_TLS_DHE_RSA_WITH_ARIA_128_CBC_SHA256,\r
+\r
+ /* The PSK ephemeral suites */\r
+ MBEDTLS_TLS_ECDHE_PSK_WITH_CHACHA20_POLY1305_SHA256,\r
+ MBEDTLS_TLS_DHE_PSK_WITH_CHACHA20_POLY1305_SHA256,\r
+ MBEDTLS_TLS_DHE_PSK_WITH_AES_256_GCM_SHA384,\r
+ MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CCM,\r
+ MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA384,\r
+ MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA384,\r
+ MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA,\r
+ MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA,\r
+ MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_GCM_SHA384,\r
+ MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384,\r
+ MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384,\r
+ MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CCM_8,\r
+ MBEDTLS_TLS_DHE_PSK_WITH_ARIA_256_GCM_SHA384,\r
+ MBEDTLS_TLS_ECDHE_PSK_WITH_ARIA_256_CBC_SHA384,\r
+ MBEDTLS_TLS_DHE_PSK_WITH_ARIA_256_CBC_SHA384,\r
+\r
+ MBEDTLS_TLS_DHE_PSK_WITH_AES_128_GCM_SHA256,\r
+ MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CCM,\r
+ MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256,\r
+ MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA256,\r
+ MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA,\r
+ MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA,\r
+ MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_GCM_SHA256,\r
+ MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256,\r
+ MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256,\r
+ MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CCM_8,\r
+ MBEDTLS_TLS_DHE_PSK_WITH_ARIA_128_GCM_SHA256,\r
+ MBEDTLS_TLS_ECDHE_PSK_WITH_ARIA_128_CBC_SHA256,\r
+ MBEDTLS_TLS_DHE_PSK_WITH_ARIA_128_CBC_SHA256,\r
+\r
+ /* The ECJPAKE suite */\r
+ MBEDTLS_TLS_ECJPAKE_WITH_AES_128_CCM_8,\r
+\r
+ /* All AES-256 suites */\r
+ MBEDTLS_TLS_RSA_WITH_AES_256_GCM_SHA384,\r
+ MBEDTLS_TLS_RSA_WITH_AES_256_CCM,\r
+ MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA256,\r
+ MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA,\r
+ MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384,\r
+ MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384,\r
+ MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA,\r
+ MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384,\r
+ MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384,\r
+ MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA,\r
+ MBEDTLS_TLS_RSA_WITH_AES_256_CCM_8,\r
+\r
+ /* All CAMELLIA-256 suites */\r
+ MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_GCM_SHA384,\r
+ MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256,\r
+ MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA,\r
+ MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384,\r
+ MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384,\r
+ MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384,\r
+ MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384,\r
+\r
+ /* All ARIA-256 suites */\r
+ MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_256_GCM_SHA384,\r
+ MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_256_GCM_SHA384,\r
+ MBEDTLS_TLS_RSA_WITH_ARIA_256_GCM_SHA384,\r
+ MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_256_CBC_SHA384,\r
+ MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_256_CBC_SHA384,\r
+ MBEDTLS_TLS_RSA_WITH_ARIA_256_CBC_SHA384,\r
+\r
+ /* All AES-128 suites */\r
+ MBEDTLS_TLS_RSA_WITH_AES_128_GCM_SHA256,\r
+ MBEDTLS_TLS_RSA_WITH_AES_128_CCM,\r
+ MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA256,\r
+ MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA,\r
+ MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256,\r
+ MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256,\r
+ MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA,\r
+ MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256,\r
+ MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256,\r
+ MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA,\r
+ MBEDTLS_TLS_RSA_WITH_AES_128_CCM_8,\r
+\r
+ /* All CAMELLIA-128 suites */\r
+ MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_GCM_SHA256,\r
+ MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256,\r
+ MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA,\r
+ MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256,\r
+ MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256,\r
+ MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256,\r
+ MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256,\r
+\r
+ /* All ARIA-128 suites */\r
+ MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_128_GCM_SHA256,\r
+ MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_128_GCM_SHA256,\r
+ MBEDTLS_TLS_RSA_WITH_ARIA_128_GCM_SHA256,\r
+ MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_128_CBC_SHA256,\r
+ MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_128_CBC_SHA256,\r
+ MBEDTLS_TLS_RSA_WITH_ARIA_128_CBC_SHA256,\r
+\r
+ /* The RSA PSK suites */\r
+ MBEDTLS_TLS_RSA_PSK_WITH_CHACHA20_POLY1305_SHA256,\r
+ MBEDTLS_TLS_RSA_PSK_WITH_AES_256_GCM_SHA384,\r
+ MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA384,\r
+ MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA,\r
+ MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_GCM_SHA384,\r
+ MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384,\r
+ MBEDTLS_TLS_RSA_PSK_WITH_ARIA_256_GCM_SHA384,\r
+ MBEDTLS_TLS_RSA_PSK_WITH_ARIA_256_CBC_SHA384,\r
+\r
+ MBEDTLS_TLS_RSA_PSK_WITH_AES_128_GCM_SHA256,\r
+ MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA256,\r
+ MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA,\r
+ MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_GCM_SHA256,\r
+ MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256,\r
+ MBEDTLS_TLS_RSA_PSK_WITH_ARIA_128_GCM_SHA256,\r
+ MBEDTLS_TLS_RSA_PSK_WITH_ARIA_128_CBC_SHA256,\r
+\r
+ /* The PSK suites */\r
+ MBEDTLS_TLS_PSK_WITH_CHACHA20_POLY1305_SHA256,\r
+ MBEDTLS_TLS_PSK_WITH_AES_256_GCM_SHA384,\r
+ MBEDTLS_TLS_PSK_WITH_AES_256_CCM,\r
+ MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA384,\r
+ MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA,\r
+ MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_GCM_SHA384,\r
+ MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_CBC_SHA384,\r
+ MBEDTLS_TLS_PSK_WITH_AES_256_CCM_8,\r
+ MBEDTLS_TLS_PSK_WITH_ARIA_256_GCM_SHA384,\r
+ MBEDTLS_TLS_PSK_WITH_ARIA_256_CBC_SHA384,\r
+\r
+ MBEDTLS_TLS_PSK_WITH_AES_128_GCM_SHA256,\r
+ MBEDTLS_TLS_PSK_WITH_AES_128_CCM,\r
+ MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA256,\r
+ MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA,\r
+ MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_GCM_SHA256,\r
+ MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256,\r
+ MBEDTLS_TLS_PSK_WITH_AES_128_CCM_8,\r
+ MBEDTLS_TLS_PSK_WITH_ARIA_128_GCM_SHA256,\r
+ MBEDTLS_TLS_PSK_WITH_ARIA_128_CBC_SHA256,\r
+\r
+ /* 3DES suites */\r
+ MBEDTLS_TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA,\r
+ MBEDTLS_TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA,\r
+ MBEDTLS_TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA,\r
+ MBEDTLS_TLS_ECDHE_PSK_WITH_3DES_EDE_CBC_SHA,\r
+ MBEDTLS_TLS_DHE_PSK_WITH_3DES_EDE_CBC_SHA,\r
+ MBEDTLS_TLS_RSA_WITH_3DES_EDE_CBC_SHA,\r
+ MBEDTLS_TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA,\r
+ MBEDTLS_TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA,\r
+ MBEDTLS_TLS_RSA_PSK_WITH_3DES_EDE_CBC_SHA,\r
+ MBEDTLS_TLS_PSK_WITH_3DES_EDE_CBC_SHA,\r
+\r
+ /* RC4 suites */\r
+ MBEDTLS_TLS_ECDHE_ECDSA_WITH_RC4_128_SHA,\r
+ MBEDTLS_TLS_ECDHE_RSA_WITH_RC4_128_SHA,\r
+ MBEDTLS_TLS_ECDHE_PSK_WITH_RC4_128_SHA,\r
+ MBEDTLS_TLS_DHE_PSK_WITH_RC4_128_SHA,\r
+ MBEDTLS_TLS_RSA_WITH_RC4_128_SHA,\r
+ MBEDTLS_TLS_RSA_WITH_RC4_128_MD5,\r
+ MBEDTLS_TLS_ECDH_RSA_WITH_RC4_128_SHA,\r
+ MBEDTLS_TLS_ECDH_ECDSA_WITH_RC4_128_SHA,\r
+ MBEDTLS_TLS_RSA_PSK_WITH_RC4_128_SHA,\r
+ MBEDTLS_TLS_PSK_WITH_RC4_128_SHA,\r
+\r
+ /* Weak suites */\r
+ MBEDTLS_TLS_DHE_RSA_WITH_DES_CBC_SHA,\r
+ MBEDTLS_TLS_RSA_WITH_DES_CBC_SHA,\r
+\r
+ /* NULL suites */\r
+ MBEDTLS_TLS_ECDHE_ECDSA_WITH_NULL_SHA,\r
+ MBEDTLS_TLS_ECDHE_RSA_WITH_NULL_SHA,\r
+ MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA384,\r
+ MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA256,\r
+ MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA,\r
+ MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA384,\r
+ MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA256,\r
+ MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA,\r
+\r
+ MBEDTLS_TLS_RSA_WITH_NULL_SHA256,\r
+ MBEDTLS_TLS_RSA_WITH_NULL_SHA,\r
+ MBEDTLS_TLS_RSA_WITH_NULL_MD5,\r
+ MBEDTLS_TLS_ECDH_RSA_WITH_NULL_SHA,\r
+ MBEDTLS_TLS_ECDH_ECDSA_WITH_NULL_SHA,\r
+ MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA384,\r
+ MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA256,\r
+ MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA,\r
+ MBEDTLS_TLS_PSK_WITH_NULL_SHA384,\r
+ MBEDTLS_TLS_PSK_WITH_NULL_SHA256,\r
+ MBEDTLS_TLS_PSK_WITH_NULL_SHA,\r
+\r
+#endif /* MBEDTLS_SSL_CIPHERSUITES */\r
+ 0\r
+};\r
+\r
+static const mbedtls_ssl_ciphersuite_t ciphersuite_definitions[] =\r
+{\r
+#if defined(MBEDTLS_CHACHAPOLY_C) && \\r
+ defined(MBEDTLS_SHA256_C) && \\r
+ defined(MBEDTLS_SSL_PROTO_TLS1_2)\r
+#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED)\r
+ { MBEDTLS_TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256,\r
+ "TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256",\r
+ MBEDTLS_CIPHER_CHACHA20_POLY1305, MBEDTLS_MD_SHA256,\r
+ MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED)\r
+ { MBEDTLS_TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256,\r
+ "TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256",\r
+ MBEDTLS_CIPHER_CHACHA20_POLY1305, MBEDTLS_MD_SHA256,\r
+ MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if defined(MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED)\r
+ { MBEDTLS_TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256,\r
+ "TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256",\r
+ MBEDTLS_CIPHER_CHACHA20_POLY1305, MBEDTLS_MD_SHA256,\r
+ MBEDTLS_KEY_EXCHANGE_DHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if defined(MBEDTLS_KEY_EXCHANGE_PSK_ENABLED)\r
+ { MBEDTLS_TLS_PSK_WITH_CHACHA20_POLY1305_SHA256,\r
+ "TLS-PSK-WITH-CHACHA20-POLY1305-SHA256",\r
+ MBEDTLS_CIPHER_CHACHA20_POLY1305, MBEDTLS_MD_SHA256,\r
+ MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED)\r
+ { MBEDTLS_TLS_ECDHE_PSK_WITH_CHACHA20_POLY1305_SHA256,\r
+ "TLS-ECDHE-PSK-WITH-CHACHA20-POLY1305-SHA256",\r
+ MBEDTLS_CIPHER_CHACHA20_POLY1305, MBEDTLS_MD_SHA256,\r
+ MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if defined(MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED)\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_CHACHA20_POLY1305_SHA256,\r
+ "TLS-DHE-PSK-WITH-CHACHA20-POLY1305-SHA256",\r
+ MBEDTLS_CIPHER_CHACHA20_POLY1305, MBEDTLS_MD_SHA256,\r
+ MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if defined(MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED)\r
+ { MBEDTLS_TLS_RSA_PSK_WITH_CHACHA20_POLY1305_SHA256,\r
+ "TLS-RSA-PSK-WITH-CHACHA20-POLY1305-SHA256",\r
+ MBEDTLS_CIPHER_CHACHA20_POLY1305, MBEDTLS_MD_SHA256,\r
+ MBEDTLS_KEY_EXCHANGE_RSA_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#endif /* MBEDTLS_CHACHAPOLY_C &&\r
+ MBEDTLS_SHA256_C &&\r
+ MBEDTLS_SSL_PROTO_TLS1_2 */\r
+#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED)\r
+#if defined(MBEDTLS_AES_C)\r
+#if defined(MBEDTLS_SHA1_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+ { MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, "TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA",\r
+ MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+ { MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, "TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA",\r
+ MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#endif /* MBEDTLS_SHA1_C */\r
+#if defined(MBEDTLS_SHA256_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+ { MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, "TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#if defined(MBEDTLS_GCM_C)\r
+ { MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, "TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_GCM_C */\r
+#endif /* MBEDTLS_SHA256_C */\r
+#if defined(MBEDTLS_SHA512_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+ { MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, "TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#if defined(MBEDTLS_GCM_C)\r
+ { MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, "TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_GCM_C */\r
+#endif /* MBEDTLS_SHA512_C */\r
+#if defined(MBEDTLS_CCM_C)\r
+ { MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CCM, "TLS-ECDHE-ECDSA-WITH-AES-256-CCM",\r
+ MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+ { MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CCM_8, "TLS-ECDHE-ECDSA-WITH-AES-256-CCM-8",\r
+ MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_SHORT_TAG },\r
+ { MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CCM, "TLS-ECDHE-ECDSA-WITH-AES-128-CCM",\r
+ MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+ { MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8, "TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8",\r
+ MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_SHORT_TAG },\r
+#endif /* MBEDTLS_CCM_C */\r
+#endif /* MBEDTLS_AES_C */\r
+\r
+#if defined(MBEDTLS_CAMELLIA_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256, "TLS-ECDHE-ECDSA-WITH-CAMELLIA-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384, "TLS-ECDHE-ECDSA-WITH-CAMELLIA-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+\r
+#if defined(MBEDTLS_GCM_C)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_GCM_SHA256, "TLS-ECDHE-ECDSA-WITH-CAMELLIA-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384, "TLS-ECDHE-ECDSA-WITH-CAMELLIA-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C */\r
+#endif /* MBEDTLS_GCM_C */\r
+#endif /* MBEDTLS_CAMELLIA_C */\r
+\r
+#if defined(MBEDTLS_DES_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA, "TLS-ECDHE-ECDSA-WITH-3DES-EDE-CBC-SHA",\r
+ MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#endif /* MBEDTLS_DES_C */\r
+\r
+#if defined(MBEDTLS_ARC4_C)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_ECDHE_ECDSA_WITH_RC4_128_SHA, "TLS-ECDHE-ECDSA-WITH-RC4-128-SHA",\r
+ MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_NODTLS },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_ARC4_C */\r
+\r
+#if defined(MBEDTLS_CIPHER_NULL_CIPHER)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_ECDHE_ECDSA_WITH_NULL_SHA, "TLS-ECDHE-ECDSA-WITH-NULL-SHA",\r
+ MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_WEAK },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_CIPHER_NULL_CIPHER */\r
+#endif /* MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED)\r
+#if defined(MBEDTLS_AES_C)\r
+#if defined(MBEDTLS_SHA1_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+ { MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, "TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA",\r
+ MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+ { MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, "TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA",\r
+ MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#endif /* MBEDTLS_SHA1_C */\r
+#if defined(MBEDTLS_SHA256_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+ { MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, "TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#if defined(MBEDTLS_GCM_C)\r
+ { MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, "TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_GCM_C */\r
+#endif /* MBEDTLS_SHA256_C */\r
+#if defined(MBEDTLS_SHA512_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+ { MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, "TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#if defined(MBEDTLS_GCM_C)\r
+ { MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, "TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_GCM_C */\r
+#endif /* MBEDTLS_SHA512_C */\r
+#endif /* MBEDTLS_AES_C */\r
+\r
+#if defined(MBEDTLS_CAMELLIA_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256, "TLS-ECDHE-RSA-WITH-CAMELLIA-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384, "TLS-ECDHE-RSA-WITH-CAMELLIA-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+\r
+#if defined(MBEDTLS_GCM_C)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_GCM_SHA256, "TLS-ECDHE-RSA-WITH-CAMELLIA-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_GCM_SHA384, "TLS-ECDHE-RSA-WITH-CAMELLIA-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C */\r
+#endif /* MBEDTLS_GCM_C */\r
+#endif /* MBEDTLS_CAMELLIA_C */\r
+\r
+#if defined(MBEDTLS_DES_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, "TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA",\r
+ MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#endif /* MBEDTLS_DES_C */\r
+\r
+#if defined(MBEDTLS_ARC4_C)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_ECDHE_RSA_WITH_RC4_128_SHA, "TLS-ECDHE-RSA-WITH-RC4-128-SHA",\r
+ MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_NODTLS },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_ARC4_C */\r
+\r
+#if defined(MBEDTLS_CIPHER_NULL_CIPHER)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_ECDHE_RSA_WITH_NULL_SHA, "TLS-ECDHE-RSA-WITH-NULL-SHA",\r
+ MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_WEAK },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_CIPHER_NULL_CIPHER */\r
+#endif /* MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED)\r
+#if defined(MBEDTLS_AES_C)\r
+#if defined(MBEDTLS_SHA512_C) && defined(MBEDTLS_GCM_C)\r
+ { MBEDTLS_TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, "TLS-DHE-RSA-WITH-AES-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C && MBEDTLS_GCM_C */\r
+\r
+#if defined(MBEDTLS_SHA256_C)\r
+#if defined(MBEDTLS_GCM_C)\r
+ { MBEDTLS_TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, "TLS-DHE-RSA-WITH-AES-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_GCM_C */\r
+\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+ { MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA256, "TLS-DHE-RSA-WITH-AES-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+\r
+ { MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA256, "TLS-DHE-RSA-WITH-AES-256-CBC-SHA256",\r
+ MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#endif /* MBEDTLS_SHA256_C */\r
+\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA, "TLS-DHE-RSA-WITH-AES-128-CBC-SHA",\r
+ MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+\r
+ { MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA, "TLS-DHE-RSA-WITH-AES-256-CBC-SHA",\r
+ MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#if defined(MBEDTLS_CCM_C)\r
+ { MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CCM, "TLS-DHE-RSA-WITH-AES-256-CCM",\r
+ MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+ { MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CCM_8, "TLS-DHE-RSA-WITH-AES-256-CCM-8",\r
+ MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_SHORT_TAG },\r
+ { MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CCM, "TLS-DHE-RSA-WITH-AES-128-CCM",\r
+ MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+ { MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CCM_8, "TLS-DHE-RSA-WITH-AES-128-CCM-8",\r
+ MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_SHORT_TAG },\r
+#endif /* MBEDTLS_CCM_C */\r
+#endif /* MBEDTLS_AES_C */\r
+\r
+#if defined(MBEDTLS_CAMELLIA_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256, "TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+\r
+ { MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256, "TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA256",\r
+ MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA, "TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA",\r
+ MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+\r
+ { MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA, "TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA",\r
+ MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#if defined(MBEDTLS_GCM_C)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_GCM_SHA256, "TLS-DHE-RSA-WITH-CAMELLIA-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_GCM_SHA384, "TLS-DHE-RSA-WITH-CAMELLIA-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C */\r
+#endif /* MBEDTLS_GCM_C */\r
+#endif /* MBEDTLS_CAMELLIA_C */\r
+\r
+#if defined(MBEDTLS_DES_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA, "TLS-DHE-RSA-WITH-3DES-EDE-CBC-SHA",\r
+ MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#endif /* MBEDTLS_DES_C */\r
+#endif /* MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_RSA_ENABLED)\r
+#if defined(MBEDTLS_AES_C)\r
+#if defined(MBEDTLS_SHA512_C) && defined(MBEDTLS_GCM_C)\r
+ { MBEDTLS_TLS_RSA_WITH_AES_256_GCM_SHA384, "TLS-RSA-WITH-AES-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C && MBEDTLS_GCM_C */\r
+\r
+#if defined(MBEDTLS_SHA256_C)\r
+#if defined(MBEDTLS_GCM_C)\r
+ { MBEDTLS_TLS_RSA_WITH_AES_128_GCM_SHA256, "TLS-RSA-WITH-AES-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_GCM_C */\r
+\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+ { MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA256, "TLS-RSA-WITH-AES-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+\r
+ { MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA256, "TLS-RSA-WITH-AES-256-CBC-SHA256",\r
+ MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#endif /* MBEDTLS_SHA256_C */\r
+\r
+#if defined(MBEDTLS_SHA1_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+ { MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA, "TLS-RSA-WITH-AES-128-CBC-SHA",\r
+ MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+\r
+ { MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA, "TLS-RSA-WITH-AES-256-CBC-SHA",\r
+ MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#endif /* MBEDTLS_SHA1_C */\r
+#if defined(MBEDTLS_CCM_C)\r
+ { MBEDTLS_TLS_RSA_WITH_AES_256_CCM, "TLS-RSA-WITH-AES-256-CCM",\r
+ MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+ { MBEDTLS_TLS_RSA_WITH_AES_256_CCM_8, "TLS-RSA-WITH-AES-256-CCM-8",\r
+ MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_SHORT_TAG },\r
+ { MBEDTLS_TLS_RSA_WITH_AES_128_CCM, "TLS-RSA-WITH-AES-128-CCM",\r
+ MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+ { MBEDTLS_TLS_RSA_WITH_AES_128_CCM_8, "TLS-RSA-WITH-AES-128-CCM-8",\r
+ MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_SHORT_TAG },\r
+#endif /* MBEDTLS_CCM_C */\r
+#endif /* MBEDTLS_AES_C */\r
+\r
+#if defined(MBEDTLS_CAMELLIA_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256, "TLS-RSA-WITH-CAMELLIA-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+\r
+ { MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256, "TLS-RSA-WITH-CAMELLIA-256-CBC-SHA256",\r
+ MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA, "TLS-RSA-WITH-CAMELLIA-128-CBC-SHA",\r
+ MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+\r
+ { MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA, "TLS-RSA-WITH-CAMELLIA-256-CBC-SHA",\r
+ MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+\r
+#if defined(MBEDTLS_GCM_C)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_GCM_SHA256, "TLS-RSA-WITH-CAMELLIA-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_GCM_SHA384, "TLS-RSA-WITH-CAMELLIA-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_GCM_C */\r
+#endif /* MBEDTLS_CAMELLIA_C */\r
+\r
+#if defined(MBEDTLS_DES_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_RSA_WITH_3DES_EDE_CBC_SHA, "TLS-RSA-WITH-3DES-EDE-CBC-SHA",\r
+ MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#endif /* MBEDTLS_DES_C */\r
+\r
+#if defined(MBEDTLS_ARC4_C)\r
+#if defined(MBEDTLS_MD5_C)\r
+ { MBEDTLS_TLS_RSA_WITH_RC4_128_MD5, "TLS-RSA-WITH-RC4-128-MD5",\r
+ MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_MD5, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_NODTLS },\r
+#endif\r
+\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_RSA_WITH_RC4_128_SHA, "TLS-RSA-WITH-RC4-128-SHA",\r
+ MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_NODTLS },\r
+#endif\r
+#endif /* MBEDTLS_ARC4_C */\r
+#endif /* MBEDTLS_KEY_EXCHANGE_RSA_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED)\r
+#if defined(MBEDTLS_AES_C)\r
+#if defined(MBEDTLS_SHA1_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+ { MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA, "TLS-ECDH-RSA-WITH-AES-128-CBC-SHA",\r
+ MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+ { MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA, "TLS-ECDH-RSA-WITH-AES-256-CBC-SHA",\r
+ MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#endif /* MBEDTLS_SHA1_C */\r
+#if defined(MBEDTLS_SHA256_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+ { MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256, "TLS-ECDH-RSA-WITH-AES-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#if defined(MBEDTLS_GCM_C)\r
+ { MBEDTLS_TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256, "TLS-ECDH-RSA-WITH-AES-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_GCM_C */\r
+#endif /* MBEDTLS_SHA256_C */\r
+#if defined(MBEDTLS_SHA512_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+ { MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384, "TLS-ECDH-RSA-WITH-AES-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#if defined(MBEDTLS_GCM_C)\r
+ { MBEDTLS_TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384, "TLS-ECDH-RSA-WITH-AES-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_GCM_C */\r
+#endif /* MBEDTLS_SHA512_C */\r
+#endif /* MBEDTLS_AES_C */\r
+\r
+#if defined(MBEDTLS_CAMELLIA_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256, "TLS-ECDH-RSA-WITH-CAMELLIA-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384, "TLS-ECDH-RSA-WITH-CAMELLIA-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+\r
+#if defined(MBEDTLS_GCM_C)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256, "TLS-ECDH-RSA-WITH-CAMELLIA-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384, "TLS-ECDH-RSA-WITH-CAMELLIA-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C */\r
+#endif /* MBEDTLS_GCM_C */\r
+#endif /* MBEDTLS_CAMELLIA_C */\r
+\r
+#if defined(MBEDTLS_DES_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA, "TLS-ECDH-RSA-WITH-3DES-EDE-CBC-SHA",\r
+ MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#endif /* MBEDTLS_DES_C */\r
+\r
+#if defined(MBEDTLS_ARC4_C)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_ECDH_RSA_WITH_RC4_128_SHA, "TLS-ECDH-RSA-WITH-RC4-128-SHA",\r
+ MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_NODTLS },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_ARC4_C */\r
+\r
+#if defined(MBEDTLS_CIPHER_NULL_CIPHER)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_ECDH_RSA_WITH_NULL_SHA, "TLS-ECDH-RSA-WITH-NULL-SHA",\r
+ MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_WEAK },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_CIPHER_NULL_CIPHER */\r
+#endif /* MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED)\r
+#if defined(MBEDTLS_AES_C)\r
+#if defined(MBEDTLS_SHA1_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+ { MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA, "TLS-ECDH-ECDSA-WITH-AES-128-CBC-SHA",\r
+ MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+ { MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA, "TLS-ECDH-ECDSA-WITH-AES-256-CBC-SHA",\r
+ MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#endif /* MBEDTLS_SHA1_C */\r
+#if defined(MBEDTLS_SHA256_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+ { MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256, "TLS-ECDH-ECDSA-WITH-AES-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#if defined(MBEDTLS_GCM_C)\r
+ { MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256, "TLS-ECDH-ECDSA-WITH-AES-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_GCM_C */\r
+#endif /* MBEDTLS_SHA256_C */\r
+#if defined(MBEDTLS_SHA512_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+ { MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384, "TLS-ECDH-ECDSA-WITH-AES-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#if defined(MBEDTLS_GCM_C)\r
+ { MBEDTLS_TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384, "TLS-ECDH-ECDSA-WITH-AES-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_GCM_C */\r
+#endif /* MBEDTLS_SHA512_C */\r
+#endif /* MBEDTLS_AES_C */\r
+\r
+#if defined(MBEDTLS_CAMELLIA_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256, "TLS-ECDH-ECDSA-WITH-CAMELLIA-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384, "TLS-ECDH-ECDSA-WITH-CAMELLIA-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+\r
+#if defined(MBEDTLS_GCM_C)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256, "TLS-ECDH-ECDSA-WITH-CAMELLIA-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384, "TLS-ECDH-ECDSA-WITH-CAMELLIA-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C */\r
+#endif /* MBEDTLS_GCM_C */\r
+#endif /* MBEDTLS_CAMELLIA_C */\r
+\r
+#if defined(MBEDTLS_DES_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA, "TLS-ECDH-ECDSA-WITH-3DES-EDE-CBC-SHA",\r
+ MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#endif /* MBEDTLS_DES_C */\r
+\r
+#if defined(MBEDTLS_ARC4_C)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_ECDH_ECDSA_WITH_RC4_128_SHA, "TLS-ECDH-ECDSA-WITH-RC4-128-SHA",\r
+ MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_NODTLS },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_ARC4_C */\r
+\r
+#if defined(MBEDTLS_CIPHER_NULL_CIPHER)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_ECDH_ECDSA_WITH_NULL_SHA, "TLS-ECDH-ECDSA-WITH-NULL-SHA",\r
+ MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_WEAK },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_CIPHER_NULL_CIPHER */\r
+#endif /* MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_PSK_ENABLED)\r
+#if defined(MBEDTLS_AES_C)\r
+#if defined(MBEDTLS_GCM_C)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_PSK_WITH_AES_128_GCM_SHA256, "TLS-PSK-WITH-AES-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_PSK_WITH_AES_256_GCM_SHA384, "TLS-PSK-WITH-AES-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C */\r
+#endif /* MBEDTLS_GCM_C */\r
+\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA256, "TLS-PSK-WITH-AES-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA384, "TLS-PSK-WITH-AES-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C */\r
+\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_PSK_WITH_AES_128_CBC_SHA, "TLS-PSK-WITH-AES-128-CBC-SHA",\r
+ MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+\r
+ { MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA, "TLS-PSK-WITH-AES-256-CBC-SHA",\r
+ MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#if defined(MBEDTLS_CCM_C)\r
+ { MBEDTLS_TLS_PSK_WITH_AES_256_CCM, "TLS-PSK-WITH-AES-256-CCM",\r
+ MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+ { MBEDTLS_TLS_PSK_WITH_AES_256_CCM_8, "TLS-PSK-WITH-AES-256-CCM-8",\r
+ MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_SHORT_TAG },\r
+ { MBEDTLS_TLS_PSK_WITH_AES_128_CCM, "TLS-PSK-WITH-AES-128-CCM",\r
+ MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+ { MBEDTLS_TLS_PSK_WITH_AES_128_CCM_8, "TLS-PSK-WITH-AES-128-CCM-8",\r
+ MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_SHORT_TAG },\r
+#endif /* MBEDTLS_CCM_C */\r
+#endif /* MBEDTLS_AES_C */\r
+\r
+#if defined(MBEDTLS_CAMELLIA_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256, "TLS-PSK-WITH-CAMELLIA-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_CBC_SHA384, "TLS-PSK-WITH-CAMELLIA-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+\r
+#if defined(MBEDTLS_GCM_C)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_GCM_SHA256, "TLS-PSK-WITH-CAMELLIA-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_PSK_WITH_CAMELLIA_256_GCM_SHA384, "TLS-PSK-WITH-CAMELLIA-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C */\r
+#endif /* MBEDTLS_GCM_C */\r
+#endif /* MBEDTLS_CAMELLIA_C */\r
+\r
+#if defined(MBEDTLS_DES_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_PSK_WITH_3DES_EDE_CBC_SHA, "TLS-PSK-WITH-3DES-EDE-CBC-SHA",\r
+ MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#endif /* MBEDTLS_DES_C */\r
+\r
+#if defined(MBEDTLS_ARC4_C)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_PSK_WITH_RC4_128_SHA, "TLS-PSK-WITH-RC4-128-SHA",\r
+ MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_NODTLS },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_ARC4_C */\r
+#endif /* MBEDTLS_KEY_EXCHANGE_PSK_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED)\r
+#if defined(MBEDTLS_AES_C)\r
+#if defined(MBEDTLS_GCM_C)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_AES_128_GCM_SHA256, "TLS-DHE-PSK-WITH-AES-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_AES_256_GCM_SHA384, "TLS-DHE-PSK-WITH-AES-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C */\r
+#endif /* MBEDTLS_GCM_C */\r
+\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA256, "TLS-DHE-PSK-WITH-AES-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA384, "TLS-DHE-PSK-WITH-AES-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C */\r
+\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CBC_SHA, "TLS-DHE-PSK-WITH-AES-128-CBC-SHA",\r
+ MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CBC_SHA, "TLS-DHE-PSK-WITH-AES-256-CBC-SHA",\r
+ MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#if defined(MBEDTLS_CCM_C)\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CCM, "TLS-DHE-PSK-WITH-AES-256-CCM",\r
+ MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_AES_256_CCM_8, "TLS-DHE-PSK-WITH-AES-256-CCM-8",\r
+ MBEDTLS_CIPHER_AES_256_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_SHORT_TAG },\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CCM, "TLS-DHE-PSK-WITH-AES-128-CCM",\r
+ MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_AES_128_CCM_8, "TLS-DHE-PSK-WITH-AES-128-CCM-8",\r
+ MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_SHORT_TAG },\r
+#endif /* MBEDTLS_CCM_C */\r
+#endif /* MBEDTLS_AES_C */\r
+\r
+#if defined(MBEDTLS_CAMELLIA_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256, "TLS-DHE-PSK-WITH-CAMELLIA-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384, "TLS-DHE-PSK-WITH-CAMELLIA-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+\r
+#if defined(MBEDTLS_GCM_C)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_128_GCM_SHA256, "TLS-DHE-PSK-WITH-CAMELLIA-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_CAMELLIA_256_GCM_SHA384, "TLS-DHE-PSK-WITH-CAMELLIA-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C */\r
+#endif /* MBEDTLS_GCM_C */\r
+#endif /* MBEDTLS_CAMELLIA_C */\r
+\r
+#if defined(MBEDTLS_DES_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_3DES_EDE_CBC_SHA, "TLS-DHE-PSK-WITH-3DES-EDE-CBC-SHA",\r
+ MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#endif /* MBEDTLS_DES_C */\r
+\r
+#if defined(MBEDTLS_ARC4_C)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_RC4_128_SHA, "TLS-DHE-PSK-WITH-RC4-128-SHA",\r
+ MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_NODTLS },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_ARC4_C */\r
+#endif /* MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED)\r
+#if defined(MBEDTLS_AES_C)\r
+\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256, "TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA384, "TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C */\r
+\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA, "TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA",\r
+ MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+\r
+ { MBEDTLS_TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA, "TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA",\r
+ MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#endif /* MBEDTLS_AES_C */\r
+\r
+#if defined(MBEDTLS_CAMELLIA_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256, "TLS-ECDHE-PSK-WITH-CAMELLIA-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384, "TLS-ECDHE-PSK-WITH-CAMELLIA-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#endif /* MBEDTLS_CAMELLIA_C */\r
+\r
+#if defined(MBEDTLS_DES_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_ECDHE_PSK_WITH_3DES_EDE_CBC_SHA, "TLS-ECDHE-PSK-WITH-3DES-EDE-CBC-SHA",\r
+ MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#endif /* MBEDTLS_DES_C */\r
+\r
+#if defined(MBEDTLS_ARC4_C)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_ECDHE_PSK_WITH_RC4_128_SHA, "TLS-ECDHE-PSK-WITH-RC4-128-SHA",\r
+ MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_NODTLS },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_ARC4_C */\r
+#endif /* MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED)\r
+#if defined(MBEDTLS_AES_C)\r
+#if defined(MBEDTLS_GCM_C)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_RSA_PSK_WITH_AES_128_GCM_SHA256, "TLS-RSA-PSK-WITH-AES-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_AES_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_RSA_PSK_WITH_AES_256_GCM_SHA384, "TLS-RSA-PSK-WITH-AES-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_AES_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C */\r
+#endif /* MBEDTLS_GCM_C */\r
+\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA256, "TLS-RSA-PSK-WITH-AES-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA384, "TLS-RSA-PSK-WITH-AES-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C */\r
+\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_RSA_PSK_WITH_AES_128_CBC_SHA, "TLS-RSA-PSK-WITH-AES-128-CBC-SHA",\r
+ MBEDTLS_CIPHER_AES_128_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+\r
+ { MBEDTLS_TLS_RSA_PSK_WITH_AES_256_CBC_SHA, "TLS-RSA-PSK-WITH-AES-256-CBC-SHA",\r
+ MBEDTLS_CIPHER_AES_256_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#endif /* MBEDTLS_AES_C */\r
+\r
+#if defined(MBEDTLS_CAMELLIA_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256, "TLS-RSA-PSK-WITH-CAMELLIA-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_CAMELLIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384, "TLS-RSA-PSK-WITH-CAMELLIA-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_CAMELLIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+\r
+#if defined(MBEDTLS_GCM_C)\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_128_GCM_SHA256, "TLS-RSA-PSK-WITH-CAMELLIA-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_CAMELLIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA256_C */\r
+\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_RSA_PSK_WITH_CAMELLIA_256_GCM_SHA384, "TLS-RSA-PSK-WITH-CAMELLIA-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_CAMELLIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA512_C */\r
+#endif /* MBEDTLS_GCM_C */\r
+#endif /* MBEDTLS_CAMELLIA_C */\r
+\r
+#if defined(MBEDTLS_DES_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_RSA_PSK_WITH_3DES_EDE_CBC_SHA, "TLS-RSA-PSK-WITH-3DES-EDE-CBC-SHA",\r
+ MBEDTLS_CIPHER_DES_EDE3_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#endif /* MBEDTLS_DES_C */\r
+\r
+#if defined(MBEDTLS_ARC4_C)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_RSA_PSK_WITH_RC4_128_SHA, "TLS-RSA-PSK-WITH-RC4-128-SHA",\r
+ MBEDTLS_CIPHER_ARC4_128, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_NODTLS },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_ARC4_C */\r
+#endif /* MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED)\r
+#if defined(MBEDTLS_AES_C)\r
+#if defined(MBEDTLS_CCM_C)\r
+ { MBEDTLS_TLS_ECJPAKE_WITH_AES_128_CCM_8, "TLS-ECJPAKE-WITH-AES-128-CCM-8",\r
+ MBEDTLS_CIPHER_AES_128_CCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECJPAKE,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_SHORT_TAG },\r
+#endif /* MBEDTLS_CCM_C */\r
+#endif /* MBEDTLS_AES_C */\r
+#endif /* MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED */\r
+\r
+#if defined(MBEDTLS_ENABLE_WEAK_CIPHERSUITES)\r
+#if defined(MBEDTLS_CIPHER_NULL_CIPHER)\r
+#if defined(MBEDTLS_KEY_EXCHANGE_RSA_ENABLED)\r
+#if defined(MBEDTLS_MD5_C)\r
+ { MBEDTLS_TLS_RSA_WITH_NULL_MD5, "TLS-RSA-WITH-NULL-MD5",\r
+ MBEDTLS_CIPHER_NULL, MBEDTLS_MD_MD5, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_WEAK },\r
+#endif\r
+\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_RSA_WITH_NULL_SHA, "TLS-RSA-WITH-NULL-SHA",\r
+ MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_WEAK },\r
+#endif\r
+\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_RSA_WITH_NULL_SHA256, "TLS-RSA-WITH-NULL-SHA256",\r
+ MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_WEAK },\r
+#endif\r
+#endif /* MBEDTLS_KEY_EXCHANGE_RSA_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_PSK_ENABLED)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_PSK_WITH_NULL_SHA, "TLS-PSK-WITH-NULL-SHA",\r
+ MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_WEAK },\r
+#endif /* MBEDTLS_SHA1_C */\r
+\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_PSK_WITH_NULL_SHA256, "TLS-PSK-WITH-NULL-SHA256",\r
+ MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_WEAK },\r
+#endif\r
+\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_PSK_WITH_NULL_SHA384, "TLS-PSK-WITH-NULL-SHA384",\r
+ MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_WEAK },\r
+#endif\r
+#endif /* MBEDTLS_KEY_EXCHANGE_PSK_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA, "TLS-DHE-PSK-WITH-NULL-SHA",\r
+ MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_WEAK },\r
+#endif /* MBEDTLS_SHA1_C */\r
+\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA256, "TLS-DHE-PSK-WITH-NULL-SHA256",\r
+ MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_WEAK },\r
+#endif\r
+\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_NULL_SHA384, "TLS-DHE-PSK-WITH-NULL-SHA384",\r
+ MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_WEAK },\r
+#endif\r
+#endif /* MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA, "TLS-ECDHE-PSK-WITH-NULL-SHA",\r
+ MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_WEAK },\r
+#endif /* MBEDTLS_SHA1_C */\r
+\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA256, "TLS-ECDHE-PSK-WITH-NULL-SHA256",\r
+ MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_WEAK },\r
+#endif\r
+\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_ECDHE_PSK_WITH_NULL_SHA384, "TLS-ECDHE-PSK-WITH-NULL-SHA384",\r
+ MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_WEAK },\r
+#endif\r
+#endif /* MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA, "TLS-RSA-PSK-WITH-NULL-SHA",\r
+ MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_WEAK },\r
+#endif /* MBEDTLS_SHA1_C */\r
+\r
+#if defined(MBEDTLS_SHA256_C)\r
+ { MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA256, "TLS-RSA-PSK-WITH-NULL-SHA256",\r
+ MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_WEAK },\r
+#endif\r
+\r
+#if defined(MBEDTLS_SHA512_C)\r
+ { MBEDTLS_TLS_RSA_PSK_WITH_NULL_SHA384, "TLS-RSA-PSK-WITH-NULL-SHA384",\r
+ MBEDTLS_CIPHER_NULL, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_1,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_WEAK },\r
+#endif\r
+#endif /* MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED */\r
+#endif /* MBEDTLS_CIPHER_NULL_CIPHER */\r
+\r
+#if defined(MBEDTLS_DES_C)\r
+#if defined(MBEDTLS_CIPHER_MODE_CBC)\r
+#if defined(MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_DHE_RSA_WITH_DES_CBC_SHA, "TLS-DHE-RSA-WITH-DES-CBC-SHA",\r
+ MBEDTLS_CIPHER_DES_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_DHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_WEAK },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_RSA_ENABLED)\r
+#if defined(MBEDTLS_SHA1_C)\r
+ { MBEDTLS_TLS_RSA_WITH_DES_CBC_SHA, "TLS-RSA-WITH-DES-CBC-SHA",\r
+ MBEDTLS_CIPHER_DES_CBC, MBEDTLS_MD_SHA1, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_0,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_CIPHERSUITE_WEAK },\r
+#endif /* MBEDTLS_SHA1_C */\r
+#endif /* MBEDTLS_KEY_EXCHANGE_RSA_ENABLED */\r
+#endif /* MBEDTLS_CIPHER_MODE_CBC */\r
+#endif /* MBEDTLS_DES_C */\r
+#endif /* MBEDTLS_ENABLE_WEAK_CIPHERSUITES */\r
+\r
+#if defined(MBEDTLS_ARIA_C)\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_RSA_ENABLED)\r
+\r
+#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA512_C))\r
+ { MBEDTLS_TLS_RSA_WITH_ARIA_256_GCM_SHA384,\r
+ "TLS-RSA-WITH-ARIA-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_ARIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA512_C))\r
+ { MBEDTLS_TLS_RSA_WITH_ARIA_256_CBC_SHA384,\r
+ "TLS-RSA-WITH-ARIA-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_ARIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA256_C))\r
+ { MBEDTLS_TLS_RSA_WITH_ARIA_128_GCM_SHA256,\r
+ "TLS-RSA-WITH-ARIA-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_ARIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA256_C))\r
+ { MBEDTLS_TLS_RSA_WITH_ARIA_128_CBC_SHA256,\r
+ "TLS-RSA-WITH-ARIA-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_ARIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+\r
+#endif /* MBEDTLS_KEY_EXCHANGE_RSA_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED)\r
+\r
+#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA512_C))\r
+ { MBEDTLS_TLS_RSA_PSK_WITH_ARIA_256_GCM_SHA384,\r
+ "TLS-RSA-PSK-WITH-ARIA-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_ARIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA512_C))\r
+ { MBEDTLS_TLS_RSA_PSK_WITH_ARIA_256_CBC_SHA384,\r
+ "TLS-RSA-PSK-WITH-ARIA-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_ARIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_RSA_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA256_C))\r
+ { MBEDTLS_TLS_RSA_PSK_WITH_ARIA_128_GCM_SHA256,\r
+ "TLS-RSA-PSK-WITH-ARIA-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_ARIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA256_C))\r
+ { MBEDTLS_TLS_RSA_PSK_WITH_ARIA_128_CBC_SHA256,\r
+ "TLS-RSA-PSK-WITH-ARIA-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_ARIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_RSA_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+\r
+#endif /* MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_PSK_ENABLED)\r
+\r
+#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA512_C))\r
+ { MBEDTLS_TLS_PSK_WITH_ARIA_256_GCM_SHA384,\r
+ "TLS-PSK-WITH-ARIA-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_ARIA_256_GCM, MBEDTLS_MD_SHA384,MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA512_C))\r
+ { MBEDTLS_TLS_PSK_WITH_ARIA_256_CBC_SHA384,\r
+ "TLS-PSK-WITH-ARIA-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_ARIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA256_C))\r
+ { MBEDTLS_TLS_PSK_WITH_ARIA_128_GCM_SHA256,\r
+ "TLS-PSK-WITH-ARIA-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_ARIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA256_C))\r
+ { MBEDTLS_TLS_PSK_WITH_ARIA_128_CBC_SHA256,\r
+ "TLS-PSK-WITH-ARIA-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_ARIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+\r
+#endif /* MBEDTLS_KEY_EXCHANGE_PSK_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED)\r
+\r
+#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA512_C))\r
+ { MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_256_GCM_SHA384,\r
+ "TLS-ECDH-RSA-WITH-ARIA-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_ARIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA512_C))\r
+ { MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_256_CBC_SHA384,\r
+ "TLS-ECDH-RSA-WITH-ARIA-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_ARIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA256_C))\r
+ { MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_128_GCM_SHA256,\r
+ "TLS-ECDH-RSA-WITH-ARIA-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_ARIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA256_C))\r
+ { MBEDTLS_TLS_ECDH_RSA_WITH_ARIA_128_CBC_SHA256,\r
+ "TLS-ECDH-RSA-WITH-ARIA-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_ARIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+\r
+#endif /* MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED)\r
+\r
+#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA512_C))\r
+ { MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384,\r
+ "TLS-ECDHE-RSA-WITH-ARIA-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_ARIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA512_C))\r
+ { MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_256_CBC_SHA384,\r
+ "TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_ARIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA256_C))\r
+ { MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256,\r
+ "TLS-ECDHE-RSA-WITH-ARIA-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_ARIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA256_C))\r
+ { MBEDTLS_TLS_ECDHE_RSA_WITH_ARIA_128_CBC_SHA256,\r
+ "TLS-ECDHE-RSA-WITH-ARIA-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_ARIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+\r
+#endif /* MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED)\r
+\r
+#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA512_C))\r
+ { MBEDTLS_TLS_ECDHE_PSK_WITH_ARIA_256_CBC_SHA384,\r
+ "TLS-ECDHE-PSK-WITH-ARIA-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_ARIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA256_C))\r
+ { MBEDTLS_TLS_ECDHE_PSK_WITH_ARIA_128_CBC_SHA256,\r
+ "TLS-ECDHE-PSK-WITH-ARIA-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_ARIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+\r
+#endif /* MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED)\r
+\r
+#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA512_C))\r
+ { MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_256_GCM_SHA384,\r
+ "TLS-ECDHE-ECDSA-WITH-ARIA-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_ARIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA512_C))\r
+ { MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_256_CBC_SHA384,\r
+ "TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_ARIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA256_C))\r
+ { MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_128_GCM_SHA256,\r
+ "TLS-ECDHE-ECDSA-WITH-ARIA-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_ARIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA256_C))\r
+ { MBEDTLS_TLS_ECDHE_ECDSA_WITH_ARIA_128_CBC_SHA256,\r
+ "TLS-ECDHE-ECDSA-WITH-ARIA-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_ARIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+\r
+#endif /* MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED)\r
+\r
+#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA512_C))\r
+ { MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_256_GCM_SHA384,\r
+ "TLS-ECDH-ECDSA-WITH-ARIA-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_ARIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA512_C))\r
+ { MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_256_CBC_SHA384,\r
+ "TLS-ECDH-ECDSA-WITH-ARIA-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_ARIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA256_C))\r
+ { MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_128_GCM_SHA256,\r
+ "TLS-ECDH-ECDSA-WITH-ARIA-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_ARIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA256_C))\r
+ { MBEDTLS_TLS_ECDH_ECDSA_WITH_ARIA_128_CBC_SHA256,\r
+ "TLS-ECDH-ECDSA-WITH-ARIA-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_ARIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+\r
+#endif /* MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED)\r
+\r
+#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA512_C))\r
+ { MBEDTLS_TLS_DHE_RSA_WITH_ARIA_256_GCM_SHA384,\r
+ "TLS-DHE-RSA-WITH-ARIA-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_ARIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA512_C))\r
+ { MBEDTLS_TLS_DHE_RSA_WITH_ARIA_256_CBC_SHA384,\r
+ "TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_ARIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA256_C))\r
+ { MBEDTLS_TLS_DHE_RSA_WITH_ARIA_128_GCM_SHA256,\r
+ "TLS-DHE-RSA-WITH-ARIA-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_ARIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA256_C))\r
+ { MBEDTLS_TLS_DHE_RSA_WITH_ARIA_128_CBC_SHA256,\r
+ "TLS-DHE-RSA-WITH-ARIA-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_ARIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_RSA,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+\r
+#endif /* MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED */\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED)\r
+\r
+#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA512_C))\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_ARIA_256_GCM_SHA384,\r
+ "TLS-DHE-PSK-WITH-ARIA-256-GCM-SHA384",\r
+ MBEDTLS_CIPHER_ARIA_256_GCM, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA512_C))\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_ARIA_256_CBC_SHA384,\r
+ "TLS-DHE-PSK-WITH-ARIA-256-CBC-SHA384",\r
+ MBEDTLS_CIPHER_ARIA_256_CBC, MBEDTLS_MD_SHA384, MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_GCM_C) && defined(MBEDTLS_SHA256_C))\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_ARIA_128_GCM_SHA256,\r
+ "TLS-DHE-PSK-WITH-ARIA-128-GCM-SHA256",\r
+ MBEDTLS_CIPHER_ARIA_128_GCM, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+#if (defined(MBEDTLS_CIPHER_MODE_CBC) && defined(MBEDTLS_SHA256_C))\r
+ { MBEDTLS_TLS_DHE_PSK_WITH_ARIA_128_CBC_SHA256,\r
+ "TLS-DHE-PSK-WITH-ARIA-128-CBC-SHA256",\r
+ MBEDTLS_CIPHER_ARIA_128_CBC, MBEDTLS_MD_SHA256, MBEDTLS_KEY_EXCHANGE_DHE_PSK,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ MBEDTLS_SSL_MAJOR_VERSION_3, MBEDTLS_SSL_MINOR_VERSION_3,\r
+ 0 },\r
+#endif\r
+\r
+#endif /* MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED */\r
+\r
+#endif /* MBEDTLS_ARIA_C */\r
+\r
+\r
+ { 0, "",\r
+ MBEDTLS_CIPHER_NONE, MBEDTLS_MD_NONE, MBEDTLS_KEY_EXCHANGE_NONE,\r
+ 0, 0, 0, 0, 0 }\r
+};\r
+\r
+#if defined(MBEDTLS_SSL_CIPHERSUITES)\r
+const int *mbedtls_ssl_list_ciphersuites( void )\r
+{\r
+ return( ciphersuite_preference );\r
+}\r
+#else\r
+#define MAX_CIPHERSUITES sizeof( ciphersuite_definitions ) / \\r
+ sizeof( ciphersuite_definitions[0] )\r
+static int supported_ciphersuites[MAX_CIPHERSUITES];\r
+static int supported_init = 0;\r
+\r
+static int ciphersuite_is_removed( const mbedtls_ssl_ciphersuite_t *cs_info )\r
+{\r
+ (void)cs_info;\r
+\r
+#if defined(MBEDTLS_REMOVE_ARC4_CIPHERSUITES)\r
+ if( cs_info->cipher == MBEDTLS_CIPHER_ARC4_128 )\r
+ return( 1 );\r
+#endif /* MBEDTLS_REMOVE_ARC4_CIPHERSUITES */\r
+\r
+#if defined(MBEDTLS_REMOVE_3DES_CIPHERSUITES)\r
+ if( cs_info->cipher == MBEDTLS_CIPHER_DES_EDE3_ECB ||\r
+ cs_info->cipher == MBEDTLS_CIPHER_DES_EDE3_CBC )\r
+ {\r
+ return( 1 );\r
+ }\r
+#endif /* MBEDTLS_REMOVE_3DES_CIPHERSUITES */\r
+\r
+ return( 0 );\r
+}\r
+\r
+const int *mbedtls_ssl_list_ciphersuites( void )\r
+{\r
+ /*\r
+ * On initial call filter out all ciphersuites not supported by current\r
+ * build based on presence in the ciphersuite_definitions.\r
+ */\r
+ if( supported_init == 0 )\r
+ {\r
+ const int *p;\r
+ int *q;\r
+\r
+ for( p = ciphersuite_preference, q = supported_ciphersuites;\r
+ *p != 0 && q < supported_ciphersuites + MAX_CIPHERSUITES - 1;\r
+ p++ )\r
+ {\r
+ const mbedtls_ssl_ciphersuite_t *cs_info;\r
+ if( ( cs_info = mbedtls_ssl_ciphersuite_from_id( *p ) ) != NULL &&\r
+ !ciphersuite_is_removed( cs_info ) )\r
+ {\r
+ *(q++) = *p;\r
+ }\r
+ }\r
+ *q = 0;\r
+\r
+ supported_init = 1;\r
+ }\r
+\r
+ return( supported_ciphersuites );\r
+}\r
+#endif /* MBEDTLS_SSL_CIPHERSUITES */\r
+\r
+const mbedtls_ssl_ciphersuite_t *mbedtls_ssl_ciphersuite_from_string(\r
+ const char *ciphersuite_name )\r
+{\r
+ const mbedtls_ssl_ciphersuite_t *cur = ciphersuite_definitions;\r
+\r
+ if( NULL == ciphersuite_name )\r
+ return( NULL );\r
+\r
+ while( cur->id != 0 )\r
+ {\r
+ if( 0 == strcmp( cur->name, ciphersuite_name ) )\r
+ return( cur );\r
+\r
+ cur++;\r
+ }\r
+\r
+ return( NULL );\r
+}\r
+\r
+const mbedtls_ssl_ciphersuite_t *mbedtls_ssl_ciphersuite_from_id( int ciphersuite )\r
+{\r
+ const mbedtls_ssl_ciphersuite_t *cur = ciphersuite_definitions;\r
+\r
+ while( cur->id != 0 )\r
+ {\r
+ if( cur->id == ciphersuite )\r
+ return( cur );\r
+\r
+ cur++;\r
+ }\r
+\r
+ return( NULL );\r
+}\r
+\r
+const char *mbedtls_ssl_get_ciphersuite_name( const int ciphersuite_id )\r
+{\r
+ const mbedtls_ssl_ciphersuite_t *cur;\r
+\r
+ cur = mbedtls_ssl_ciphersuite_from_id( ciphersuite_id );\r
+\r
+ if( cur == NULL )\r
+ return( "unknown" );\r
+\r
+ return( cur->name );\r
+}\r
+\r
+int mbedtls_ssl_get_ciphersuite_id( const char *ciphersuite_name )\r
+{\r
+ const mbedtls_ssl_ciphersuite_t *cur;\r
+\r
+ cur = mbedtls_ssl_ciphersuite_from_string( ciphersuite_name );\r
+\r
+ if( cur == NULL )\r
+ return( 0 );\r
+\r
+ return( cur->id );\r
+}\r
+\r
+#if defined(MBEDTLS_PK_C)\r
+mbedtls_pk_type_t mbedtls_ssl_get_ciphersuite_sig_pk_alg( const mbedtls_ssl_ciphersuite_t *info )\r
+{\r
+ switch( info->key_exchange )\r
+ {\r
+ case MBEDTLS_KEY_EXCHANGE_RSA:\r
+ case MBEDTLS_KEY_EXCHANGE_DHE_RSA:\r
+ case MBEDTLS_KEY_EXCHANGE_ECDHE_RSA:\r
+ case MBEDTLS_KEY_EXCHANGE_RSA_PSK:\r
+ return( MBEDTLS_PK_RSA );\r
+\r
+ case MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA:\r
+ return( MBEDTLS_PK_ECDSA );\r
+\r
+ case MBEDTLS_KEY_EXCHANGE_ECDH_RSA:\r
+ case MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA:\r
+ return( MBEDTLS_PK_ECKEY );\r
+\r
+ default:\r
+ return( MBEDTLS_PK_NONE );\r
+ }\r
+}\r
+\r
+mbedtls_pk_type_t mbedtls_ssl_get_ciphersuite_sig_alg( const mbedtls_ssl_ciphersuite_t *info )\r
+{\r
+ switch( info->key_exchange )\r
+ {\r
+ case MBEDTLS_KEY_EXCHANGE_RSA:\r
+ case MBEDTLS_KEY_EXCHANGE_DHE_RSA:\r
+ case MBEDTLS_KEY_EXCHANGE_ECDHE_RSA:\r
+ return( MBEDTLS_PK_RSA );\r
+\r
+ case MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA:\r
+ return( MBEDTLS_PK_ECDSA );\r
+\r
+ default:\r
+ return( MBEDTLS_PK_NONE );\r
+ }\r
+}\r
+\r
+#endif /* MBEDTLS_PK_C */\r
+\r
+#if defined(MBEDTLS_ECDH_C) || defined(MBEDTLS_ECDSA_C) || \\r
+ defined(MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED)\r
+int mbedtls_ssl_ciphersuite_uses_ec( const mbedtls_ssl_ciphersuite_t *info )\r
+{\r
+ switch( info->key_exchange )\r
+ {\r
+ case MBEDTLS_KEY_EXCHANGE_ECDHE_RSA:\r
+ case MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA:\r
+ case MBEDTLS_KEY_EXCHANGE_ECDHE_PSK:\r
+ case MBEDTLS_KEY_EXCHANGE_ECDH_RSA:\r
+ case MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA:\r
+ case MBEDTLS_KEY_EXCHANGE_ECJPAKE:\r
+ return( 1 );\r
+\r
+ default:\r
+ return( 0 );\r
+ }\r
+}\r
+#endif /* MBEDTLS_ECDH_C || MBEDTLS_ECDSA_C || MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED*/\r
+\r
+#if defined(MBEDTLS_KEY_EXCHANGE__SOME__PSK_ENABLED)\r
+int mbedtls_ssl_ciphersuite_uses_psk( const mbedtls_ssl_ciphersuite_t *info )\r
+{\r
+ switch( info->key_exchange )\r
+ {\r
+ case MBEDTLS_KEY_EXCHANGE_PSK:\r
+ case MBEDTLS_KEY_EXCHANGE_RSA_PSK:\r
+ case MBEDTLS_KEY_EXCHANGE_DHE_PSK:\r
+ case MBEDTLS_KEY_EXCHANGE_ECDHE_PSK:\r
+ return( 1 );\r
+\r
+ default:\r
+ return( 0 );\r
+ }\r
+}\r
+#endif /* MBEDTLS_KEY_EXCHANGE__SOME__PSK_ENABLED */\r
+\r
+#endif /* MBEDTLS_SSL_TLS_C */\r