mirror of
https://github.com/cuberite/polarssl.git
synced 2025-10-03 10:34:16 -04:00
Removed redundant mode checks
As anything below (D)TLS 1.2 is no longer supported, checks for the minor version will always be true, and have therefore been removed Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
This commit is contained in:
Joe Subbiani
Manuel Pégourié-Gonnard
parent
6c242a01f7
commit
9f84761c66
@ -245,24 +245,17 @@ add_common_ciphersuites()
|
|||||||
case $TYPE in
|
case $TYPE in
|
||||||
|
|
||||||
"ECDSA")
|
"ECDSA")
|
||||||
if [ `minor_ver "$MODE"` -gt 0 ]
|
|
||||||
then
|
|
||||||
CIPHERS="$CIPHERS \
|
CIPHERS="$CIPHERS \
|
||||||
TLS-ECDHE-ECDSA-WITH-NULL-SHA \
|
TLS-ECDHE-ECDSA-WITH-NULL-SHA \
|
||||||
TLS-ECDHE-ECDSA-WITH-3DES-EDE-CBC-SHA \
|
TLS-ECDHE-ECDSA-WITH-3DES-EDE-CBC-SHA \
|
||||||
TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA \
|
TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA \
|
||||||
TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA \
|
TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA \
|
||||||
"
|
|
||||||
fi
|
|
||||||
if [ `minor_ver "$MODE"` -ge 3 ]
|
|
||||||
then
|
|
||||||
CIPHERS="$CIPHERS \
|
|
||||||
TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256 \
|
TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256 \
|
||||||
TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384 \
|
TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384 \
|
||||||
TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
|
TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
|
||||||
TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384 \
|
TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384 \
|
||||||
"
|
"
|
||||||
fi
|
|
||||||
;;
|
;;
|
||||||
|
|
||||||
"RSA")
|
"RSA")
|
||||||
@ -279,19 +272,12 @@ add_common_ciphersuites()
|
|||||||
TLS-RSA-WITH-3DES-EDE-CBC-SHA \
|
TLS-RSA-WITH-3DES-EDE-CBC-SHA \
|
||||||
TLS-RSA-WITH-NULL-MD5 \
|
TLS-RSA-WITH-NULL-MD5 \
|
||||||
TLS-RSA-WITH-NULL-SHA \
|
TLS-RSA-WITH-NULL-SHA \
|
||||||
"
|
|
||||||
if [ `minor_ver "$MODE"` -gt 0 ]
|
|
||||||
then
|
|
||||||
CIPHERS="$CIPHERS \
|
|
||||||
TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA \
|
TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA \
|
||||||
TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA \
|
TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA \
|
||||||
TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA \
|
TLS-ECDHE-RSA-WITH-3DES-EDE-CBC-SHA \
|
||||||
TLS-ECDHE-RSA-WITH-NULL-SHA \
|
TLS-ECDHE-RSA-WITH-NULL-SHA \
|
||||||
"
|
|
||||||
fi
|
|
||||||
if [ `minor_ver "$MODE"` -ge 3 ]
|
|
||||||
then
|
|
||||||
CIPHERS="$CIPHERS \
|
|
||||||
TLS-RSA-WITH-AES-128-CBC-SHA256 \
|
TLS-RSA-WITH-AES-128-CBC-SHA256 \
|
||||||
TLS-DHE-RSA-WITH-AES-128-CBC-SHA256 \
|
TLS-DHE-RSA-WITH-AES-128-CBC-SHA256 \
|
||||||
TLS-RSA-WITH-AES-256-CBC-SHA256 \
|
TLS-RSA-WITH-AES-256-CBC-SHA256 \
|
||||||
@ -304,9 +290,9 @@ add_common_ciphersuites()
|
|||||||
TLS-DHE-RSA-WITH-AES-256-GCM-SHA384 \
|
TLS-DHE-RSA-WITH-AES-256-GCM-SHA384 \
|
||||||
TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256 \
|
TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256 \
|
||||||
TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384 \
|
TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384 \
|
||||||
|
|
||||||
TLS-RSA-WITH-NULL-SHA256 \
|
TLS-RSA-WITH-NULL-SHA256 \
|
||||||
"
|
"
|
||||||
fi
|
|
||||||
;;
|
;;
|
||||||
|
|
||||||
"PSK")
|
"PSK")
|
||||||
@ -347,18 +333,12 @@ add_openssl_ciphersuites()
|
|||||||
case $TYPE in
|
case $TYPE in
|
||||||
|
|
||||||
"ECDSA")
|
"ECDSA")
|
||||||
if [ `minor_ver "$MODE"` -gt 0 ]
|
|
||||||
then
|
|
||||||
CIPHERS="$CIPHERS \
|
CIPHERS="$CIPHERS \
|
||||||
TLS-ECDH-ECDSA-WITH-NULL-SHA \
|
TLS-ECDH-ECDSA-WITH-NULL-SHA \
|
||||||
TLS-ECDH-ECDSA-WITH-3DES-EDE-CBC-SHA \
|
TLS-ECDH-ECDSA-WITH-3DES-EDE-CBC-SHA \
|
||||||
TLS-ECDH-ECDSA-WITH-AES-128-CBC-SHA \
|
TLS-ECDH-ECDSA-WITH-AES-128-CBC-SHA \
|
||||||
TLS-ECDH-ECDSA-WITH-AES-256-CBC-SHA \
|
TLS-ECDH-ECDSA-WITH-AES-256-CBC-SHA \
|
||||||
"
|
|
||||||
fi
|
|
||||||
if [ `minor_ver "$MODE"` -ge 3 ]
|
|
||||||
then
|
|
||||||
CIPHERS="$CIPHERS \
|
|
||||||
TLS-ECDH-ECDSA-WITH-AES-128-CBC-SHA256 \
|
TLS-ECDH-ECDSA-WITH-AES-128-CBC-SHA256 \
|
||||||
TLS-ECDH-ECDSA-WITH-AES-256-CBC-SHA384 \
|
TLS-ECDH-ECDSA-WITH-AES-256-CBC-SHA384 \
|
||||||
TLS-ECDH-ECDSA-WITH-AES-128-GCM-SHA256 \
|
TLS-ECDH-ECDSA-WITH-AES-128-GCM-SHA256 \
|
||||||
@ -367,17 +347,13 @@ add_openssl_ciphersuites()
|
|||||||
TLS-ECDHE-ECDSA-WITH-ARIA-128-GCM-SHA256 \
|
TLS-ECDHE-ECDSA-WITH-ARIA-128-GCM-SHA256 \
|
||||||
TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256 \
|
TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256 \
|
||||||
"
|
"
|
||||||
fi
|
|
||||||
;;
|
;;
|
||||||
|
|
||||||
"RSA")
|
"RSA")
|
||||||
CIPHERS="$CIPHERS \
|
CIPHERS="$CIPHERS \
|
||||||
TLS-RSA-WITH-DES-CBC-SHA \
|
TLS-RSA-WITH-DES-CBC-SHA \
|
||||||
TLS-DHE-RSA-WITH-DES-CBC-SHA \
|
TLS-DHE-RSA-WITH-DES-CBC-SHA \
|
||||||
"
|
|
||||||
if [ `minor_ver "$MODE"` -ge 3 ]
|
|
||||||
then
|
|
||||||
CIPHERS="$CIPHERS \
|
|
||||||
TLS-ECDHE-RSA-WITH-ARIA-256-GCM-SHA384 \
|
TLS-ECDHE-RSA-WITH-ARIA-256-GCM-SHA384 \
|
||||||
TLS-DHE-RSA-WITH-ARIA-256-GCM-SHA384 \
|
TLS-DHE-RSA-WITH-ARIA-256-GCM-SHA384 \
|
||||||
TLS-RSA-WITH-ARIA-256-GCM-SHA384 \
|
TLS-RSA-WITH-ARIA-256-GCM-SHA384 \
|
||||||
@ -387,12 +363,9 @@ add_openssl_ciphersuites()
|
|||||||
TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256 \
|
TLS-DHE-RSA-WITH-CHACHA20-POLY1305-SHA256 \
|
||||||
TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256 \
|
TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256 \
|
||||||
"
|
"
|
||||||
fi
|
|
||||||
;;
|
;;
|
||||||
|
|
||||||
"PSK")
|
"PSK")
|
||||||
if [ `minor_ver "$MODE"` -ge 3 ]
|
|
||||||
then
|
|
||||||
CIPHERS="$CIPHERS \
|
CIPHERS="$CIPHERS \
|
||||||
TLS-DHE-PSK-WITH-ARIA-256-GCM-SHA384 \
|
TLS-DHE-PSK-WITH-ARIA-256-GCM-SHA384 \
|
||||||
TLS-DHE-PSK-WITH-ARIA-128-GCM-SHA256 \
|
TLS-DHE-PSK-WITH-ARIA-128-GCM-SHA256 \
|
||||||
@ -402,7 +375,6 @@ add_openssl_ciphersuites()
|
|||||||
TLS-ECDHE-PSK-WITH-CHACHA20-POLY1305-SHA256 \
|
TLS-ECDHE-PSK-WITH-CHACHA20-POLY1305-SHA256 \
|
||||||
TLS-DHE-PSK-WITH-CHACHA20-POLY1305-SHA256 \
|
TLS-DHE-PSK-WITH-CHACHA20-POLY1305-SHA256 \
|
||||||
"
|
"
|
||||||
fi
|
|
||||||
;;
|
;;
|
||||||
esac
|
esac
|
||||||
|
|
||||||
@ -424,8 +396,6 @@ add_gnutls_ciphersuites()
|
|||||||
case $TYPE in
|
case $TYPE in
|
||||||
|
|
||||||
"ECDSA")
|
"ECDSA")
|
||||||
if [ `minor_ver "$MODE"` -ge 3 ]
|
|
||||||
then
|
|
||||||
CIPHERS="$CIPHERS \
|
CIPHERS="$CIPHERS \
|
||||||
TLS-ECDHE-ECDSA-WITH-CAMELLIA-128-CBC-SHA256 \
|
TLS-ECDHE-ECDSA-WITH-CAMELLIA-128-CBC-SHA256 \
|
||||||
TLS-ECDHE-ECDSA-WITH-CAMELLIA-256-CBC-SHA384 \
|
TLS-ECDHE-ECDSA-WITH-CAMELLIA-256-CBC-SHA384 \
|
||||||
@ -436,12 +406,9 @@ add_gnutls_ciphersuites()
|
|||||||
TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8 \
|
TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8 \
|
||||||
TLS-ECDHE-ECDSA-WITH-AES-256-CCM-8 \
|
TLS-ECDHE-ECDSA-WITH-AES-256-CCM-8 \
|
||||||
"
|
"
|
||||||
fi
|
|
||||||
;;
|
;;
|
||||||
|
|
||||||
"RSA")
|
"RSA")
|
||||||
if [ `minor_ver "$MODE"` -ge 3 ]
|
|
||||||
then
|
|
||||||
CIPHERS="$CIPHERS \
|
CIPHERS="$CIPHERS \
|
||||||
TLS-ECDHE-RSA-WITH-CAMELLIA-128-CBC-SHA256 \
|
TLS-ECDHE-RSA-WITH-CAMELLIA-128-CBC-SHA256 \
|
||||||
TLS-ECDHE-RSA-WITH-CAMELLIA-256-CBC-SHA384 \
|
TLS-ECDHE-RSA-WITH-CAMELLIA-256-CBC-SHA384 \
|
||||||
@ -464,7 +431,6 @@ add_gnutls_ciphersuites()
|
|||||||
TLS-DHE-RSA-WITH-AES-128-CCM-8 \
|
TLS-DHE-RSA-WITH-AES-128-CCM-8 \
|
||||||
TLS-DHE-RSA-WITH-AES-256-CCM-8 \
|
TLS-DHE-RSA-WITH-AES-256-CCM-8 \
|
||||||
"
|
"
|
||||||
fi
|
|
||||||
;;
|
;;
|
||||||
|
|
||||||
"PSK")
|
"PSK")
|
||||||
@ -472,21 +438,14 @@ add_gnutls_ciphersuites()
|
|||||||
TLS-DHE-PSK-WITH-3DES-EDE-CBC-SHA \
|
TLS-DHE-PSK-WITH-3DES-EDE-CBC-SHA \
|
||||||
TLS-DHE-PSK-WITH-AES-128-CBC-SHA \
|
TLS-DHE-PSK-WITH-AES-128-CBC-SHA \
|
||||||
TLS-DHE-PSK-WITH-AES-256-CBC-SHA \
|
TLS-DHE-PSK-WITH-AES-256-CBC-SHA \
|
||||||
"
|
|
||||||
if [ `minor_ver "$MODE"` -gt 0 ]
|
|
||||||
then
|
|
||||||
CIPHERS="$CIPHERS \
|
|
||||||
TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA \
|
TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA \
|
||||||
TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA \
|
TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA \
|
||||||
TLS-ECDHE-PSK-WITH-3DES-EDE-CBC-SHA \
|
TLS-ECDHE-PSK-WITH-3DES-EDE-CBC-SHA \
|
||||||
TLS-RSA-PSK-WITH-3DES-EDE-CBC-SHA \
|
TLS-RSA-PSK-WITH-3DES-EDE-CBC-SHA \
|
||||||
TLS-RSA-PSK-WITH-AES-256-CBC-SHA \
|
TLS-RSA-PSK-WITH-AES-256-CBC-SHA \
|
||||||
TLS-RSA-PSK-WITH-AES-128-CBC-SHA \
|
TLS-RSA-PSK-WITH-AES-128-CBC-SHA \
|
||||||
"
|
|
||||||
fi
|
|
||||||
if [ `minor_ver "$MODE"` -ge 3 ]
|
|
||||||
then
|
|
||||||
CIPHERS="$CIPHERS \
|
|
||||||
TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384 \
|
TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384 \
|
||||||
TLS-ECDHE-PSK-WITH-CAMELLIA-256-CBC-SHA384 \
|
TLS-ECDHE-PSK-WITH-CAMELLIA-256-CBC-SHA384 \
|
||||||
TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA256 \
|
TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA256 \
|
||||||
@ -532,7 +491,6 @@ add_gnutls_ciphersuites()
|
|||||||
TLS-RSA-PSK-WITH-AES-256-GCM-SHA384 \
|
TLS-RSA-PSK-WITH-AES-256-GCM-SHA384 \
|
||||||
TLS-RSA-PSK-WITH-AES-128-GCM-SHA256 \
|
TLS-RSA-PSK-WITH-AES-128-GCM-SHA256 \
|
||||||
"
|
"
|
||||||
fi
|
|
||||||
;;
|
;;
|
||||||
esac
|
esac
|
||||||
|
|
||||||
@ -551,16 +509,10 @@ add_mbedtls_ciphersuites()
|
|||||||
case $TYPE in
|
case $TYPE in
|
||||||
|
|
||||||
"ECDSA")
|
"ECDSA")
|
||||||
if [ `minor_ver "$MODE"` -gt 0 ]
|
|
||||||
then
|
|
||||||
M_CIPHERS="$M_CIPHERS \
|
M_CIPHERS="$M_CIPHERS \
|
||||||
TLS-ECDH-ECDSA-WITH-CAMELLIA-128-CBC-SHA256 \
|
TLS-ECDH-ECDSA-WITH-CAMELLIA-128-CBC-SHA256 \
|
||||||
TLS-ECDH-ECDSA-WITH-CAMELLIA-256-CBC-SHA384 \
|
TLS-ECDH-ECDSA-WITH-CAMELLIA-256-CBC-SHA384 \
|
||||||
"
|
|
||||||
fi
|
|
||||||
if [ `minor_ver "$MODE"` -ge 3 ]
|
|
||||||
then
|
|
||||||
M_CIPHERS="$M_CIPHERS \
|
|
||||||
TLS-ECDH-ECDSA-WITH-CAMELLIA-128-GCM-SHA256 \
|
TLS-ECDH-ECDSA-WITH-CAMELLIA-128-GCM-SHA256 \
|
||||||
TLS-ECDH-ECDSA-WITH-CAMELLIA-256-GCM-SHA384 \
|
TLS-ECDH-ECDSA-WITH-CAMELLIA-256-GCM-SHA384 \
|
||||||
TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384 \
|
TLS-ECDHE-ECDSA-WITH-ARIA-256-CBC-SHA384 \
|
||||||
@ -570,12 +522,9 @@ add_mbedtls_ciphersuites()
|
|||||||
TLS-ECDH-ECDSA-WITH-ARIA-256-CBC-SHA384 \
|
TLS-ECDH-ECDSA-WITH-ARIA-256-CBC-SHA384 \
|
||||||
TLS-ECDH-ECDSA-WITH-ARIA-128-CBC-SHA256 \
|
TLS-ECDH-ECDSA-WITH-ARIA-128-CBC-SHA256 \
|
||||||
"
|
"
|
||||||
fi
|
|
||||||
;;
|
;;
|
||||||
|
|
||||||
"RSA")
|
"RSA")
|
||||||
if [ `minor_ver "$MODE"` -ge 3 ]
|
|
||||||
then
|
|
||||||
M_CIPHERS="$M_CIPHERS \
|
M_CIPHERS="$M_CIPHERS \
|
||||||
TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384 \
|
TLS-ECDHE-RSA-WITH-ARIA-256-CBC-SHA384 \
|
||||||
TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384 \
|
TLS-DHE-RSA-WITH-ARIA-256-CBC-SHA384 \
|
||||||
@ -584,7 +533,6 @@ add_mbedtls_ciphersuites()
|
|||||||
TLS-RSA-WITH-ARIA-256-CBC-SHA384 \
|
TLS-RSA-WITH-ARIA-256-CBC-SHA384 \
|
||||||
TLS-RSA-WITH-ARIA-128-CBC-SHA256 \
|
TLS-RSA-WITH-ARIA-128-CBC-SHA256 \
|
||||||
"
|
"
|
||||||
fi
|
|
||||||
;;
|
;;
|
||||||
|
|
||||||
"PSK")
|
"PSK")
|
||||||
@ -592,17 +540,10 @@ add_mbedtls_ciphersuites()
|
|||||||
M_CIPHERS="$M_CIPHERS \
|
M_CIPHERS="$M_CIPHERS \
|
||||||
TLS-PSK-WITH-NULL-SHA \
|
TLS-PSK-WITH-NULL-SHA \
|
||||||
TLS-DHE-PSK-WITH-NULL-SHA \
|
TLS-DHE-PSK-WITH-NULL-SHA \
|
||||||
"
|
|
||||||
if [ `minor_ver "$MODE"` -gt 0 ]
|
|
||||||
then
|
|
||||||
M_CIPHERS="$M_CIPHERS \
|
|
||||||
TLS-ECDHE-PSK-WITH-NULL-SHA \
|
TLS-ECDHE-PSK-WITH-NULL-SHA \
|
||||||
TLS-RSA-PSK-WITH-NULL-SHA \
|
TLS-RSA-PSK-WITH-NULL-SHA \
|
||||||
"
|
|
||||||
fi
|
|
||||||
if [ `minor_ver "$MODE"` -ge 3 ]
|
|
||||||
then
|
|
||||||
M_CIPHERS="$M_CIPHERS \
|
|
||||||
TLS-RSA-PSK-WITH-ARIA-256-CBC-SHA384 \
|
TLS-RSA-PSK-WITH-ARIA-256-CBC-SHA384 \
|
||||||
TLS-RSA-PSK-WITH-ARIA-128-CBC-SHA256 \
|
TLS-RSA-PSK-WITH-ARIA-128-CBC-SHA256 \
|
||||||
TLS-PSK-WITH-ARIA-256-CBC-SHA384 \
|
TLS-PSK-WITH-ARIA-256-CBC-SHA384 \
|
||||||
@ -615,7 +556,6 @@ add_mbedtls_ciphersuites()
|
|||||||
TLS-DHE-PSK-WITH-ARIA-128-CBC-SHA256 \
|
TLS-DHE-PSK-WITH-ARIA-128-CBC-SHA256 \
|
||||||
TLS-RSA-PSK-WITH-CHACHA20-POLY1305-SHA256 \
|
TLS-RSA-PSK-WITH-CHACHA20-POLY1305-SHA256 \
|
||||||
"
|
"
|
||||||
fi
|
|
||||||
;;
|
;;
|
||||||
esac
|
esac
|
||||||
}
|
}
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user