From nobody Sun Feb 8 22:52:09 2026 Delivered-To: importer@patchew.org Authentication-Results: mx.zohomail.com; spf=none (zoho.com: 198.145.21.10 is neither permitted nor denied by domain of lists.01.org) smtp.mailfrom=edk2-devel-bounces@lists.01.org Return-Path: Received: from ml01.01.org (ml01.01.org [198.145.21.10]) by mx.zohomail.com with SMTPS id 1522767151527596.7716758045307; Tue, 3 Apr 2018 07:52:31 -0700 (PDT) Received: from [127.0.0.1] (localhost [IPv6:::1]) by ml01.01.org (Postfix) with ESMTP id DC1CC226C7C28; Tue, 3 Apr 2018 07:52:13 -0700 (PDT) Received: from mx1.redhat.com (mx3-rdu2.redhat.com [66.187.233.73]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ml01.01.org (Postfix) with ESMTPS id D472C226C7C20 for ; Tue, 3 Apr 2018 07:52:12 -0700 (PDT) Received: from smtp.corp.redhat.com (int-mx04.intmail.prod.int.rdu2.redhat.com [10.11.54.4]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by mx1.redhat.com (Postfix) with ESMTPS id 2B2628011462; Tue, 3 Apr 2018 14:52:12 +0000 (UTC) Received: from lacos-laptop-7.usersys.redhat.com (ovpn-120-185.rdu2.redhat.com [10.10.120.185]) by smtp.corp.redhat.com (Postfix) with ESMTP id 7ADE72026E0E; Tue, 3 Apr 2018 14:52:10 +0000 (UTC) X-Original-To: edk2-devel@lists.01.org Received-SPF: none (zoho.com: 198.145.21.10 is neither permitted nor denied by domain of lists.01.org) client-ip=198.145.21.10; envelope-from=edk2-devel-bounces@lists.01.org; helo=ml01.01.org; Received-SPF: Pass (sender SPF authorized) identity=mailfrom; client-ip=66.187.233.73; helo=mx1.redhat.com; envelope-from=lersek@redhat.com; receiver=edk2-devel@lists.01.org From: Laszlo Ersek To: edk2-devel-01 Date: Tue, 3 Apr 2018 16:51:45 +0200 Message-Id: <20180403145149.8925-10-lersek@redhat.com> In-Reply-To: <20180403145149.8925-1-lersek@redhat.com> References: <20180403145149.8925-1-lersek@redhat.com> X-Scanned-By: MIMEDefang 2.78 on 10.11.54.4 X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.5.16 (mx1.redhat.com [10.11.55.8]); Tue, 03 Apr 2018 14:52:12 +0000 (UTC) X-Greylist: inspected by milter-greylist-4.5.16 (mx1.redhat.com [10.11.55.8]); Tue, 03 Apr 2018 14:52:12 +0000 (UTC) for IP:'10.11.54.4' DOMAIN:'int-mx04.intmail.prod.int.rdu2.redhat.com' HELO:'smtp.corp.redhat.com' FROM:'lersek@redhat.com' RCPT:'' Subject: [edk2] [PATCH 09/13] CryptoPkg/TlsLib: extend "TlsCipherMappingTable" X-BeenThere: edk2-devel@lists.01.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: EDK II Development List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Cc: Ting Ye , Siyuan Fu , Jiaxin Wu , Qin Long MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Errors-To: edk2-devel-bounces@lists.01.org Sender: "edk2-devel" X-ZohoMail: RSF_4 Z_629925259 SPT_0 Content-Type: text/plain; charset="utf-8" Add mapping entries printed by "TlsMappingTable.sh" to "TlsCipherMappingTable". This allows HTTPS / TLS clients to get a good match for their EFI_TLS_CIPHER lists. Cc: Jiaxin Wu Cc: Qin Long Cc: Siyuan Fu Cc: Ting Ye Ref: https://bugzilla.tianocore.org/show_bug.cgi?id=3D915 Contributed-under: TianoCore Contribution Agreement 1.1 Signed-off-by: Laszlo Ersek --- CryptoPkg/Library/TlsLib/TlsConfig.c | 169 ++++++++++++++++++++ 1 file changed, 169 insertions(+) diff --git a/CryptoPkg/Library/TlsLib/TlsConfig.c b/CryptoPkg/Library/TlsLi= b/TlsConfig.c index e2f819b9035f..9d21e6c1466d 100644 --- a/CryptoPkg/Library/TlsLib/TlsConfig.c +++ b/CryptoPkg/Library/TlsLib/TlsConfig.c @@ -46,31 +46,200 @@ typedef struct { // STATIC CONST TLS_CIPHER_MAPPING TlsCipherMappingTable[] =3D { MAP ( 0x0001, "NULL-MD5" ), /// TLS_RSA_WITH_NULL_= MD5 MAP ( 0x0002, "NULL-SHA" ), /// TLS_RSA_WITH_NULL_= SHA MAP ( 0x0004, "RC4-MD5" ), /// TLS_RSA_WITH_RC4_1= 28_MD5 MAP ( 0x0005, "RC4-SHA" ), /// TLS_RSA_WITH_RC4_1= 28_SHA + MAP ( 0x0007, "IDEA-CBC-SHA" ), /// TLS_RSA_WITH_IDEA_= CBC_SHA MAP ( 0x000A, "DES-CBC3-SHA" ), /// TLS_RSA_WITH_3DES_= EDE_CBC_SHA, mandatory TLS 1.1 + MAP ( 0x000D, "DH-DSS-DES-CBC3-SHA" ), /// TLS_DH_DSS_WITH_3D= ES_EDE_CBC_SHA + MAP ( 0x0010, "DH-RSA-DES-CBC3-SHA" ), /// TLS_DH_RSA_WITH_3D= ES_EDE_CBC_SHA + MAP ( 0x0013, "DHE-DSS-DES-CBC3-SHA" ), /// TLS_DHE_DSS_WITH_3= DES_EDE_CBC_SHA MAP ( 0x0016, "DHE-RSA-DES-CBC3-SHA" ), /// TLS_DHE_RSA_WITH_3= DES_EDE_CBC_SHA + MAP ( 0x0018, "ADH-RC4-MD5" ), /// TLS_DH_anon_WITH_R= C4_128_MD5 + MAP ( 0x001B, "ADH-DES-CBC3-SHA" ), /// TLS_DH_anon_WITH_3= DES_EDE_CBC_SHA + MAP ( 0x001F, "KRB5-DES-CBC3-SHA" ), /// TLS_KRB5_WITH_3DES= _EDE_CBC_SHA + MAP ( 0x0020, "KRB5-RC4-SHA" ), /// TLS_KRB5_WITH_RC4_= 128_SHA + MAP ( 0x0021, "KRB5-IDEA-CBC-SHA" ), /// TLS_KRB5_WITH_IDEA= _CBC_SHA + MAP ( 0x0023, "KRB5-DES-CBC3-MD5" ), /// TLS_KRB5_WITH_3DES= _EDE_CBC_MD5 + MAP ( 0x0024, "KRB5-RC4-MD5" ), /// TLS_KRB5_WITH_RC4_= 128_MD5 + MAP ( 0x0025, "KRB5-IDEA-CBC-MD5" ), /// TLS_KRB5_WITH_IDEA= _CBC_MD5 MAP ( 0x002F, "AES128-SHA" ), /// TLS_RSA_WITH_AES_1= 28_CBC_SHA, mandatory TLS 1.2 MAP ( 0x0030, "DH-DSS-AES128-SHA" ), /// TLS_DH_DSS_WITH_AE= S_128_CBC_SHA MAP ( 0x0031, "DH-RSA-AES128-SHA" ), /// TLS_DH_RSA_WITH_AE= S_128_CBC_SHA + MAP ( 0x0032, "DHE-DSS-AES128-SHA" ), /// TLS_DHE_DSS_WITH_A= ES_128_CBC_SHA MAP ( 0x0033, "DHE-RSA-AES128-SHA" ), /// TLS_DHE_RSA_WITH_A= ES_128_CBC_SHA + MAP ( 0x0034, "ADH-AES128-SHA" ), /// TLS_DH_anon_WITH_A= ES_128_CBC_SHA MAP ( 0x0035, "AES256-SHA" ), /// TLS_RSA_WITH_AES_2= 56_CBC_SHA MAP ( 0x0036, "DH-DSS-AES256-SHA" ), /// TLS_DH_DSS_WITH_AE= S_256_CBC_SHA MAP ( 0x0037, "DH-RSA-AES256-SHA" ), /// TLS_DH_RSA_WITH_AE= S_256_CBC_SHA + MAP ( 0x0038, "DHE-DSS-AES256-SHA" ), /// TLS_DHE_DSS_WITH_A= ES_256_CBC_SHA MAP ( 0x0039, "DHE-RSA-AES256-SHA" ), /// TLS_DHE_RSA_WITH_A= ES_256_CBC_SHA + MAP ( 0x003A, "ADH-AES256-SHA" ), /// TLS_DH_anon_WITH_A= ES_256_CBC_SHA MAP ( 0x003B, "NULL-SHA256" ), /// TLS_RSA_WITH_NULL_= SHA256 MAP ( 0x003C, "AES128-SHA256" ), /// TLS_RSA_WITH_AES_1= 28_CBC_SHA256 MAP ( 0x003D, "AES256-SHA256" ), /// TLS_RSA_WITH_AES_2= 56_CBC_SHA256 MAP ( 0x003E, "DH-DSS-AES128-SHA256" ), /// TLS_DH_DSS_WITH_AE= S_128_CBC_SHA256 MAP ( 0x003F, "DH-RSA-AES128-SHA256" ), /// TLS_DH_RSA_WITH_AE= S_128_CBC_SHA256 + MAP ( 0x0040, "DHE-DSS-AES128-SHA256" ), /// TLS_DHE_DSS_WITH_A= ES_128_CBC_SHA256 + MAP ( 0x0041, "CAMELLIA128-SHA" ), /// TLS_RSA_WITH_CAMEL= LIA_128_CBC_SHA + MAP ( 0x0042, "DH-DSS-CAMELLIA128-SHA" ), /// TLS_DH_DSS_WITH_CA= MELLIA_128_CBC_SHA + MAP ( 0x0043, "DH-RSA-CAMELLIA128-SHA" ), /// TLS_DH_RSA_WITH_CA= MELLIA_128_CBC_SHA + MAP ( 0x0044, "DHE-DSS-CAMELLIA128-SHA" ), /// TLS_DHE_DSS_WITH_C= AMELLIA_128_CBC_SHA + MAP ( 0x0045, "DHE-RSA-CAMELLIA128-SHA" ), /// TLS_DHE_RSA_WITH_C= AMELLIA_128_CBC_SHA + MAP ( 0x0046, "ADH-CAMELLIA128-SHA" ), /// TLS_DH_anon_WITH_C= AMELLIA_128_CBC_SHA MAP ( 0x0067, "DHE-RSA-AES128-SHA256" ), /// TLS_DHE_RSA_WITH_A= ES_128_CBC_SHA256 MAP ( 0x0068, "DH-DSS-AES256-SHA256" ), /// TLS_DH_DSS_WITH_AE= S_256_CBC_SHA256 MAP ( 0x0069, "DH-RSA-AES256-SHA256" ), /// TLS_DH_RSA_WITH_AE= S_256_CBC_SHA256 + MAP ( 0x006A, "DHE-DSS-AES256-SHA256" ), /// TLS_DHE_DSS_WITH_A= ES_256_CBC_SHA256 MAP ( 0x006B, "DHE-RSA-AES256-SHA256" ), /// TLS_DHE_RSA_WITH_A= ES_256_CBC_SHA256 + MAP ( 0x006C, "ADH-AES128-SHA256" ), /// TLS_DH_anon_WITH_A= ES_128_CBC_SHA256 + MAP ( 0x006D, "ADH-AES256-SHA256" ), /// TLS_DH_anon_WITH_A= ES_256_CBC_SHA256 + MAP ( 0x0084, "CAMELLIA256-SHA" ), /// TLS_RSA_WITH_CAMEL= LIA_256_CBC_SHA + MAP ( 0x0085, "DH-DSS-CAMELLIA256-SHA" ), /// TLS_DH_DSS_WITH_CA= MELLIA_256_CBC_SHA + MAP ( 0x0086, "DH-RSA-CAMELLIA256-SHA" ), /// TLS_DH_RSA_WITH_CA= MELLIA_256_CBC_SHA + MAP ( 0x0087, "DHE-DSS-CAMELLIA256-SHA" ), /// TLS_DHE_DSS_WITH_C= AMELLIA_256_CBC_SHA + MAP ( 0x0088, "DHE-RSA-CAMELLIA256-SHA" ), /// TLS_DHE_RSA_WITH_C= AMELLIA_256_CBC_SHA + MAP ( 0x0089, "ADH-CAMELLIA256-SHA" ), /// TLS_DH_anon_WITH_C= AMELLIA_256_CBC_SHA + MAP ( 0x008A, "PSK-RC4-SHA" ), /// TLS_PSK_WITH_RC4_1= 28_SHA + MAP ( 0x008B, "PSK-3DES-EDE-CBC-SHA" ), /// TLS_PSK_WITH_3DES_= EDE_CBC_SHA + MAP ( 0x008C, "PSK-AES128-CBC-SHA" ), /// TLS_PSK_WITH_AES_1= 28_CBC_SHA + MAP ( 0x008D, "PSK-AES256-CBC-SHA" ), /// TLS_PSK_WITH_AES_2= 56_CBC_SHA + MAP ( 0x008F, "DHE-PSK-3DES-EDE-CBC-SHA" ), /// TLS_DHE_PSK_WITH_3= DES_EDE_CBC_SHA + MAP ( 0x0090, "DHE-PSK-AES128-CBC-SHA" ), /// TLS_DHE_PSK_WITH_A= ES_128_CBC_SHA + MAP ( 0x0091, "DHE-PSK-AES256-CBC-SHA" ), /// TLS_DHE_PSK_WITH_A= ES_256_CBC_SHA + MAP ( 0x0093, "RSA-PSK-3DES-EDE-CBC-SHA" ), /// TLS_RSA_PSK_WITH_3= DES_EDE_CBC_SHA + MAP ( 0x0094, "RSA-PSK-AES128-CBC-SHA" ), /// TLS_RSA_PSK_WITH_A= ES_128_CBC_SHA + MAP ( 0x0095, "RSA-PSK-AES256-CBC-SHA" ), /// TLS_RSA_PSK_WITH_A= ES_256_CBC_SHA + MAP ( 0x0096, "SEED-SHA" ), /// TLS_RSA_WITH_SEED_= CBC_SHA + MAP ( 0x0097, "DH-DSS-SEED-SHA" ), /// TLS_DH_DSS_WITH_SE= ED_CBC_SHA + MAP ( 0x0098, "DH-RSA-SEED-SHA" ), /// TLS_DH_RSA_WITH_SE= ED_CBC_SHA + MAP ( 0x0099, "DHE-DSS-SEED-SHA" ), /// TLS_DHE_DSS_WITH_S= EED_CBC_SHA + MAP ( 0x009A, "DHE-RSA-SEED-SHA" ), /// TLS_DHE_RSA_WITH_S= EED_CBC_SHA + MAP ( 0x009B, "ADH-SEED-SHA" ), /// TLS_DH_anon_WITH_S= EED_CBC_SHA + MAP ( 0x009C, "AES128-GCM-SHA256" ), /// TLS_RSA_WITH_AES_1= 28_GCM_SHA256 + MAP ( 0x009D, "AES256-GCM-SHA384" ), /// TLS_RSA_WITH_AES_2= 56_GCM_SHA384 + MAP ( 0x009E, "DHE-RSA-AES128-GCM-SHA256" ), /// TLS_DHE_RSA_WITH_A= ES_128_GCM_SHA256 + MAP ( 0x009F, "DHE-RSA-AES256-GCM-SHA384" ), /// TLS_DHE_RSA_WITH_A= ES_256_GCM_SHA384 + MAP ( 0x00A0, "DH-RSA-AES128-GCM-SHA256" ), /// TLS_DH_RSA_WITH_AE= S_128_GCM_SHA256 + MAP ( 0x00A1, "DH-RSA-AES256-GCM-SHA384" ), /// TLS_DH_RSA_WITH_AE= S_256_GCM_SHA384 + MAP ( 0x00A2, "DHE-DSS-AES128-GCM-SHA256" ), /// TLS_DHE_DSS_WITH_A= ES_128_GCM_SHA256 + MAP ( 0x00A3, "DHE-DSS-AES256-GCM-SHA384" ), /// TLS_DHE_DSS_WITH_A= ES_256_GCM_SHA384 + MAP ( 0x00A4, "DH-DSS-AES128-GCM-SHA256" ), /// TLS_DH_DSS_WITH_AE= S_128_GCM_SHA256 + MAP ( 0x00A5, "DH-DSS-AES256-GCM-SHA384" ), /// TLS_DH_DSS_WITH_AE= S_256_GCM_SHA384 + MAP ( 0x00A6, "ADH-AES128-GCM-SHA256" ), /// TLS_DH_anon_WITH_A= ES_128_GCM_SHA256 + MAP ( 0x00A7, "ADH-AES256-GCM-SHA384" ), /// TLS_DH_anon_WITH_A= ES_256_GCM_SHA384 + MAP ( 0x00A8, "PSK-AES128-GCM-SHA256" ), /// TLS_PSK_WITH_AES_1= 28_GCM_SHA256 + MAP ( 0x00A9, "PSK-AES256-GCM-SHA384" ), /// TLS_PSK_WITH_AES_2= 56_GCM_SHA384 + MAP ( 0x00AA, "DHE-PSK-AES128-GCM-SHA256" ), /// TLS_DHE_PSK_WITH_A= ES_128_GCM_SHA256 + MAP ( 0x00AB, "DHE-PSK-AES256-GCM-SHA384" ), /// TLS_DHE_PSK_WITH_A= ES_256_GCM_SHA384 + MAP ( 0x00AC, "RSA-PSK-AES128-GCM-SHA256" ), /// TLS_RSA_PSK_WITH_A= ES_128_GCM_SHA256 + MAP ( 0x00AD, "RSA-PSK-AES256-GCM-SHA384" ), /// TLS_RSA_PSK_WITH_A= ES_256_GCM_SHA384 + MAP ( 0x00AE, "PSK-AES128-CBC-SHA256" ), /// TLS_PSK_WITH_AES_1= 28_CBC_SHA256 + MAP ( 0x00AF, "PSK-AES256-CBC-SHA384" ), /// TLS_PSK_WITH_AES_2= 56_CBC_SHA384 + MAP ( 0x00B2, "DHE-PSK-AES128-CBC-SHA256" ), /// TLS_DHE_PSK_WITH_A= ES_128_CBC_SHA256 + MAP ( 0x00B3, "DHE-PSK-AES256-CBC-SHA384" ), /// TLS_DHE_PSK_WITH_A= ES_256_CBC_SHA384 + MAP ( 0x00B6, "RSA-PSK-AES128-CBC-SHA256" ), /// TLS_RSA_PSK_WITH_A= ES_128_CBC_SHA256 + MAP ( 0x00B7, "RSA-PSK-AES256-CBC-SHA384" ), /// TLS_RSA_PSK_WITH_A= ES_256_CBC_SHA384 + MAP ( 0x00BA, "CAMELLIA128-SHA256" ), /// TLS_RSA_WITH_CAMEL= LIA_128_CBC_SHA256 + MAP ( 0x00BD, "DHE-DSS-CAMELLIA128-SHA256" ), /// TLS_DHE_DSS_WITH_C= AMELLIA_128_CBC_SHA256 + MAP ( 0x00BE, "DHE-RSA-CAMELLIA128-SHA256" ), /// TLS_DHE_RSA_WITH_C= AMELLIA_128_CBC_SHA256 + MAP ( 0x00BF, "ADH-CAMELLIA128-SHA256" ), /// TLS_DH_anon_WITH_C= AMELLIA_128_CBC_SHA256 + MAP ( 0x00C0, "CAMELLIA256-SHA256" ), /// TLS_RSA_WITH_CAMEL= LIA_256_CBC_SHA256 + MAP ( 0x00C3, "DHE-DSS-CAMELLIA256-SHA256" ), /// TLS_DHE_DSS_WITH_C= AMELLIA_256_CBC_SHA256 + MAP ( 0x00C4, "DHE-RSA-CAMELLIA256-SHA256" ), /// TLS_DHE_RSA_WITH_C= AMELLIA_256_CBC_SHA256 + MAP ( 0x00C5, "ADH-CAMELLIA256-SHA256" ), /// TLS_DH_anon_WITH_C= AMELLIA_256_CBC_SHA256 + MAP ( 0xC002, "ECDH-ECDSA-RC4-SHA" ), /// TLS_ECDH_ECDSA_WIT= H_RC4_128_SHA + MAP ( 0xC003, "ECDH-ECDSA-DES-CBC3-SHA" ), /// TLS_ECDH_ECDSA_WIT= H_3DES_EDE_CBC_SHA + MAP ( 0xC004, "ECDH-ECDSA-AES128-SHA" ), /// TLS_ECDH_ECDSA_WIT= H_AES_128_CBC_SHA + MAP ( 0xC005, "ECDH-ECDSA-AES256-SHA" ), /// TLS_ECDH_ECDSA_WIT= H_AES_256_CBC_SHA + MAP ( 0xC007, "ECDHE-ECDSA-RC4-SHA" ), /// TLS_ECDHE_ECDSA_WI= TH_RC4_128_SHA + MAP ( 0xC008, "ECDHE-ECDSA-DES-CBC3-SHA" ), /// TLS_ECDHE_ECDSA_WI= TH_3DES_EDE_CBC_SHA + MAP ( 0xC009, "ECDHE-ECDSA-AES128-SHA" ), /// TLS_ECDHE_ECDSA_WI= TH_AES_128_CBC_SHA + MAP ( 0xC00A, "ECDHE-ECDSA-AES256-SHA" ), /// TLS_ECDHE_ECDSA_WI= TH_AES_256_CBC_SHA + MAP ( 0xC00C, "ECDH-RSA-RC4-SHA" ), /// TLS_ECDH_RSA_WITH_= RC4_128_SHA + MAP ( 0xC00D, "ECDH-RSA-DES-CBC3-SHA" ), /// TLS_ECDH_RSA_WITH_= 3DES_EDE_CBC_SHA + MAP ( 0xC00E, "ECDH-RSA-AES128-SHA" ), /// TLS_ECDH_RSA_WITH_= AES_128_CBC_SHA + MAP ( 0xC00F, "ECDH-RSA-AES256-SHA" ), /// TLS_ECDH_RSA_WITH_= AES_256_CBC_SHA + MAP ( 0xC011, "ECDHE-RSA-RC4-SHA" ), /// TLS_ECDHE_RSA_WITH= _RC4_128_SHA + MAP ( 0xC012, "ECDHE-RSA-DES-CBC3-SHA" ), /// TLS_ECDHE_RSA_WITH= _3DES_EDE_CBC_SHA + MAP ( 0xC013, "ECDHE-RSA-AES128-SHA" ), /// TLS_ECDHE_RSA_WITH= _AES_128_CBC_SHA + MAP ( 0xC014, "ECDHE-RSA-AES256-SHA" ), /// TLS_ECDHE_RSA_WITH= _AES_256_CBC_SHA + MAP ( 0xC016, "AECDH-RC4-SHA" ), /// TLS_ECDH_anon_WITH= _RC4_128_SHA + MAP ( 0xC017, "AECDH-DES-CBC3-SHA" ), /// TLS_ECDH_anon_WITH= _3DES_EDE_CBC_SHA + MAP ( 0xC018, "AECDH-AES128-SHA" ), /// TLS_ECDH_anon_WITH= _AES_128_CBC_SHA + MAP ( 0xC019, "AECDH-AES256-SHA" ), /// TLS_ECDH_anon_WITH= _AES_256_CBC_SHA + MAP ( 0xC01A, "SRP-3DES-EDE-CBC-SHA" ), /// TLS_SRP_SHA_WITH_3= DES_EDE_CBC_SHA + MAP ( 0xC01B, "SRP-RSA-3DES-EDE-CBC-SHA" ), /// TLS_SRP_SHA_RSA_WI= TH_3DES_EDE_CBC_SHA + MAP ( 0xC01C, "SRP-DSS-3DES-EDE-CBC-SHA" ), /// TLS_SRP_SHA_DSS_WI= TH_3DES_EDE_CBC_SHA + MAP ( 0xC01D, "SRP-AES-128-CBC-SHA" ), /// TLS_SRP_SHA_WITH_A= ES_128_CBC_SHA + MAP ( 0xC01E, "SRP-RSA-AES-128-CBC-SHA" ), /// TLS_SRP_SHA_RSA_WI= TH_AES_128_CBC_SHA + MAP ( 0xC01F, "SRP-DSS-AES-128-CBC-SHA" ), /// TLS_SRP_SHA_DSS_WI= TH_AES_128_CBC_SHA + MAP ( 0xC020, "SRP-AES-256-CBC-SHA" ), /// TLS_SRP_SHA_WITH_A= ES_256_CBC_SHA + MAP ( 0xC021, "SRP-RSA-AES-256-CBC-SHA" ), /// TLS_SRP_SHA_RSA_WI= TH_AES_256_CBC_SHA + MAP ( 0xC022, "SRP-DSS-AES-256-CBC-SHA" ), /// TLS_SRP_SHA_DSS_WI= TH_AES_256_CBC_SHA + MAP ( 0xC023, "ECDHE-ECDSA-AES128-SHA256" ), /// TLS_ECDHE_ECDSA_WI= TH_AES_128_CBC_SHA256 + MAP ( 0xC024, "ECDHE-ECDSA-AES256-SHA384" ), /// TLS_ECDHE_ECDSA_WI= TH_AES_256_CBC_SHA384 + MAP ( 0xC025, "ECDH-ECDSA-AES128-SHA256" ), /// TLS_ECDH_ECDSA_WIT= H_AES_128_CBC_SHA256 + MAP ( 0xC026, "ECDH-ECDSA-AES256-SHA384" ), /// TLS_ECDH_ECDSA_WIT= H_AES_256_CBC_SHA384 + MAP ( 0xC027, "ECDHE-RSA-AES128-SHA256" ), /// TLS_ECDHE_RSA_WITH= _AES_128_CBC_SHA256 + MAP ( 0xC028, "ECDHE-RSA-AES256-SHA384" ), /// TLS_ECDHE_RSA_WITH= _AES_256_CBC_SHA384 + MAP ( 0xC029, "ECDH-RSA-AES128-SHA256" ), /// TLS_ECDH_RSA_WITH_= AES_128_CBC_SHA256 + MAP ( 0xC02A, "ECDH-RSA-AES256-SHA384" ), /// TLS_ECDH_RSA_WITH_= AES_256_CBC_SHA384 + MAP ( 0xC02B, "ECDHE-ECDSA-AES128-GCM-SHA256" ), /// TLS_ECDHE_ECDSA_WI= TH_AES_128_GCM_SHA256 + MAP ( 0xC02C, "ECDHE-ECDSA-AES256-GCM-SHA384" ), /// TLS_ECDHE_ECDSA_WI= TH_AES_256_GCM_SHA384 + MAP ( 0xC02D, "ECDH-ECDSA-AES128-GCM-SHA256" ), /// TLS_ECDH_ECDSA_WIT= H_AES_128_GCM_SHA256 + MAP ( 0xC02E, "ECDH-ECDSA-AES256-GCM-SHA384" ), /// TLS_ECDH_ECDSA_WIT= H_AES_256_GCM_SHA384 + MAP ( 0xC02F, "ECDHE-RSA-AES128-GCM-SHA256" ), /// TLS_ECDHE_RSA_WITH= _AES_128_GCM_SHA256 + MAP ( 0xC030, "ECDHE-RSA-AES256-GCM-SHA384" ), /// TLS_ECDHE_RSA_WITH= _AES_256_GCM_SHA384 + MAP ( 0xC031, "ECDH-RSA-AES128-GCM-SHA256" ), /// TLS_ECDH_RSA_WITH_= AES_128_GCM_SHA256 + MAP ( 0xC032, "ECDH-RSA-AES256-GCM-SHA384" ), /// TLS_ECDH_RSA_WITH_= AES_256_GCM_SHA384 + MAP ( 0xC034, "ECDHE-PSK-3DES-EDE-CBC-SHA" ), /// TLS_ECDHE_PSK_WITH= _3DES_EDE_CBC_SHA + MAP ( 0xC035, "ECDHE-PSK-AES128-CBC-SHA" ), /// TLS_ECDHE_PSK_WITH= _AES_128_CBC_SHA + MAP ( 0xC036, "ECDHE-PSK-AES256-CBC-SHA" ), /// TLS_ECDHE_PSK_WITH= _AES_256_CBC_SHA + MAP ( 0xC037, "ECDHE-PSK-AES128-CBC-SHA256" ), /// TLS_ECDHE_PSK_WITH= _AES_128_CBC_SHA256 + MAP ( 0xC038, "ECDHE-PSK-AES256-CBC-SHA384" ), /// TLS_ECDHE_PSK_WITH= _AES_256_CBC_SHA384 + MAP ( 0xC072, "ECDHE-ECDSA-CAMELLIA128-SHA256" ), /// TLS_ECDHE_ECDSA_WI= TH_CAMELLIA_128_CBC_SHA256 + MAP ( 0xC073, "ECDHE-ECDSA-CAMELLIA256-SHA384" ), /// TLS_ECDHE_ECDSA_WI= TH_CAMELLIA_256_CBC_SHA384 + MAP ( 0xC076, "ECDHE-RSA-CAMELLIA128-SHA256" ), /// TLS_ECDHE_RSA_WITH= _CAMELLIA_128_CBC_SHA256 + MAP ( 0xC077, "ECDHE-RSA-CAMELLIA256-SHA384" ), /// TLS_ECDHE_RSA_WITH= _CAMELLIA_256_CBC_SHA384 + MAP ( 0xC094, "PSK-CAMELLIA128-SHA256" ), /// TLS_PSK_WITH_CAMEL= LIA_128_CBC_SHA256 + MAP ( 0xC095, "PSK-CAMELLIA256-SHA384" ), /// TLS_PSK_WITH_CAMEL= LIA_256_CBC_SHA384 + MAP ( 0xC096, "DHE-PSK-CAMELLIA128-SHA256" ), /// TLS_DHE_PSK_WITH_C= AMELLIA_128_CBC_SHA256 + MAP ( 0xC097, "DHE-PSK-CAMELLIA256-SHA384" ), /// TLS_DHE_PSK_WITH_C= AMELLIA_256_CBC_SHA384 + MAP ( 0xC098, "RSA-PSK-CAMELLIA128-SHA256" ), /// TLS_RSA_PSK_WITH_C= AMELLIA_128_CBC_SHA256 + MAP ( 0xC099, "RSA-PSK-CAMELLIA256-SHA384" ), /// TLS_RSA_PSK_WITH_C= AMELLIA_256_CBC_SHA384 + MAP ( 0xC09A, "ECDHE-PSK-CAMELLIA128-SHA256" ), /// TLS_ECDHE_PSK_WITH= _CAMELLIA_128_CBC_SHA256 + MAP ( 0xC09B, "ECDHE-PSK-CAMELLIA256-SHA384" ), /// TLS_ECDHE_PSK_WITH= _CAMELLIA_256_CBC_SHA384 + MAP ( 0xC09C, "AES128-CCM" ), /// TLS_RSA_WITH_AES_1= 28_CCM + MAP ( 0xC09D, "AES256-CCM" ), /// TLS_RSA_WITH_AES_2= 56_CCM + MAP ( 0xC09E, "DHE-RSA-AES128-CCM" ), /// TLS_DHE_RSA_WITH_A= ES_128_CCM + MAP ( 0xC09F, "DHE-RSA-AES256-CCM" ), /// TLS_DHE_RSA_WITH_A= ES_256_CCM + MAP ( 0xC0A0, "AES128-CCM8" ), /// TLS_RSA_WITH_AES_1= 28_CCM_8 + MAP ( 0xC0A1, "AES256-CCM8" ), /// TLS_RSA_WITH_AES_2= 56_CCM_8 + MAP ( 0xC0A2, "DHE-RSA-AES128-CCM8" ), /// TLS_DHE_RSA_WITH_A= ES_128_CCM_8 + MAP ( 0xC0A3, "DHE-RSA-AES256-CCM8" ), /// TLS_DHE_RSA_WITH_A= ES_256_CCM_8 + MAP ( 0xC0A4, "PSK-AES128-CCM" ), /// TLS_PSK_WITH_AES_1= 28_CCM + MAP ( 0xC0A5, "PSK-AES256-CCM" ), /// TLS_PSK_WITH_AES_2= 56_CCM + MAP ( 0xC0A6, "DHE-PSK-AES128-CCM" ), /// TLS_DHE_PSK_WITH_A= ES_128_CCM + MAP ( 0xC0A7, "DHE-PSK-AES256-CCM" ), /// TLS_DHE_PSK_WITH_A= ES_256_CCM + MAP ( 0xC0A8, "PSK-AES128-CCM8" ), /// TLS_PSK_WITH_AES_1= 28_CCM_8 + MAP ( 0xC0A9, "PSK-AES256-CCM8" ), /// TLS_PSK_WITH_AES_2= 56_CCM_8 + MAP ( 0xC0AA, "DHE-PSK-AES128-CCM8" ), /// TLS_PSK_DHE_WITH_A= ES_128_CCM_8 + MAP ( 0xC0AB, "DHE-PSK-AES256-CCM8" ), /// TLS_PSK_DHE_WITH_A= ES_256_CCM_8 + MAP ( 0xC0AC, "ECDHE-ECDSA-AES128-CCM" ), /// TLS_ECDHE_ECDSA_WI= TH_AES_128_CCM + MAP ( 0xC0AD, "ECDHE-ECDSA-AES256-CCM" ), /// TLS_ECDHE_ECDSA_WI= TH_AES_256_CCM + MAP ( 0xC0AE, "ECDHE-ECDSA-AES128-CCM8" ), /// TLS_ECDHE_ECDSA_WI= TH_AES_128_CCM_8 + MAP ( 0xC0AF, "ECDHE-ECDSA-AES256-CCM8" ), /// TLS_ECDHE_ECDSA_WI= TH_AES_256_CCM_8 + MAP ( 0xCCA8, "ECDHE-RSA-CHACHA20-POLY1305" ), /// TLS_ECDHE_RSA_WITH= _CHACHA20_POLY1305_SHA256 + MAP ( 0xCCA9, "ECDHE-ECDSA-CHACHA20-POLY1305" ), /// TLS_ECDHE_ECDSA_WI= TH_CHACHA20_POLY1305_SHA256 + MAP ( 0xCCAA, "DHE-RSA-CHACHA20-POLY1305" ), /// TLS_DHE_RSA_WITH_C= HACHA20_POLY1305_SHA256 + MAP ( 0xCCAB, "PSK-CHACHA20-POLY1305" ), /// TLS_PSK_WITH_CHACH= A20_POLY1305_SHA256 + MAP ( 0xCCAC, "ECDHE-PSK-CHACHA20-POLY1305" ), /// TLS_ECDHE_PSK_WITH= _CHACHA20_POLY1305_SHA256 + MAP ( 0xCCAD, "DHE-PSK-CHACHA20-POLY1305" ), /// TLS_DHE_PSK_WITH_C= HACHA20_POLY1305_SHA256 + MAP ( 0xCCAE, "RSA-PSK-CHACHA20-POLY1305" ), /// TLS_RSA_PSK_WITH_C= HACHA20_POLY1305_SHA256 }; =20 /** Gets the OpenSSL cipher suite mapping for the supplied IANA TLS cipher s= uite. =20 @param[in] CipherId The supplied IANA TLS cipher suite ID. --=20 2.14.1.3.gb7cf6e02401b _______________________________________________ edk2-devel mailing list edk2-devel@lists.01.org https://lists.01.org/mailman/listinfo/edk2-devel