#define GNUTLS_FALLBACK_SCSV_MAJOR 0x56
#define GNUTLS_FALLBACK_SCSV_MINOR 0x00
-/* would allow for 256 ciphersuites */
-#define MAX_CIPHERSUITE_SIZE 512
-
#define IS_EC(x) (((x)==GNUTLS_PK_ECDSA)||((x)==GNUTLS_PK_ECDHX))
/* Functions for version handling. */
gnutls_pk_algorithm_t * pk_algos,
size_t pk_algos_size);
+const gnutls_cipher_suite_entry_st
+ *cipher_suite_get(gnutls_kx_algorithm_t kx_algorithm,
+ gnutls_cipher_algorithm_t cipher_algorithm,
+ gnutls_mac_algorithm_t mac_algorithm);
+
const char *_gnutls_cipher_suite_get_name(const uint8_t suite[2]);
gnutls_kx_algorithm_t _gnutls_cipher_suite_get_kx_algo(const uint8_t
suite[2]);
}
-static const gnutls_cipher_suite_entry_st
+const gnutls_cipher_suite_entry_st
*cipher_suite_get(gnutls_kx_algorithm_t kx_algorithm,
gnutls_cipher_algorithm_t cipher_algorithm,
gnutls_mac_algorithm_t mac_algorithm)
SR_SAFE
} safe_renegotiation_t;
+#define MAX_CIPHERSUITE_SIZE 256
+
+typedef struct ciphersuite_list_st {
+ const gnutls_cipher_suite_entry_st *entry[MAX_CIPHERSUITE_SIZE];
+ unsigned int size;
+} ciphersuite_list_st;
+
/* For the external api */
struct gnutls_priority_st {
priority_st cipher;
priority_st sign_algo;
priority_st supported_ecc;
+ /* the supported ciphersuites */
+ ciphersuite_list_st cs;
+
/* to disable record padding */
bool no_extensions;
bool no_ext_master_secret;
#include <extensions.h>
#include "fips.h"
#include "errno.h"
+#include <gnutls/gnutls.h>
#define MAX_ELEMENTS 64
return ret;
}
+static void set_ciphersuite_list(gnutls_priority_t priority_cache)
+{
+ unsigned i, j, z;
+ const gnutls_cipher_suite_entry_st *ce;
+
+ priority_cache->cs.size = 0;
+
+ for (i = 0; i < priority_cache->kx.algorithms; i++) {
+ for (j=0;j<priority_cache->cipher.algorithms;j++) {
+ for (z=0;z<priority_cache->mac.algorithms;z++) {
+ ce = cipher_suite_get(
+ priority_cache->kx.priority[i],
+ priority_cache->cipher.priority[j],
+ priority_cache->mac.priority[z]);
+
+ if (ce != NULL && priority_cache->cs.size < MAX_CIPHERSUITE_SIZE) {
+ priority_cache->cs.entry[priority_cache->cs.size++] = ce;
+ }
+ }
+ }
+ }
+}
+
/**
* gnutls_priority_init:
* @priority_cache: is a #gnutls_prioritity_t type.
}
free(darg);
+
+ set_ciphersuite_list(*priority_cache);
+
return 0;
error:
projects / thirdparty / gnutls.git / commitdiff
