Enable TLS 1.2 ciphers in DTLS 1.2. Port TLS 1.2 GCM code to DTLS. Enable use of TLS 1.2 only ciphers when in DTLS 1.2 mode too.

commit: 4221c0dd3004117c63b182af5e8ab345b7265902 [log] [tgz]
author: Dr. Stephen Henson <steve@openssl.org> Wed Mar 27 19:54:48 2013 +0000
committer: Dr. Stephen Henson <steve@openssl.org> Thu Mar 28 14:14:27 2013 +0000
tree: acd595e322ae6155ca4fe4d68139f2bd07614854
parent: fbbaaccaca32742f09dfb02e5e28dcd20f64a17f [diff] [blame]
diff --git a/ssl/ssl_locl.h b/ssl/ssl_locl.h
index 13680cb..101f4e9 100644
--- a/ssl/ssl_locl.h
+++ b/ssl/ssl_locl.h

@@ -448,6 +448,11 @@
  */
 #define SSL_USE_SIGALGS(s)	\
 			(s->method->ssl3_enc->enc_flags & SSL_ENC_FLAG_SIGALGS)
+/* Allow TLS 1.2 ciphersuites: applies to DTLS 1.2 as well as TLS 1.2:
+ * may apply to others in future.
+ */
+#define SSL_USE_TLS1_2_CIPHERS(s)	\
+		(s->method->ssl3_enc->enc_flags & SSL_ENC_FLAG_TLS1_2_CIPHERS)
 
 /* Mostly for SSLv3 */
 #define SSL_PKEY_RSA_ENC	0
@@ -713,6 +718,10 @@
 #define SSL_ENC_FLAG_SHA256_PRF		0x4
 /* Is DTLS */
 #define SSL_ENC_FLAG_DTLS		0x8
+/* Allow TLS 1.2 ciphersuites: applies to DTLS 1.2 as well as TLS 1.2:
+ * may apply to others in future.
+ */
+#define SSL_ENC_FLAG_TLS1_2_CIPHERS	0x10
 
 #ifndef OPENSSL_NO_COMP
 /* Used for holding the relevant compression methods loaded into SSL_CTX */
commit	4221c0dd3004117c63b182af5e8ab345b7265902	[log] [tgz]
author	Dr. Stephen Henson <steve@openssl.org>	Wed Mar 27 19:54:48 2013 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	Thu Mar 28 14:14:27 2013 +0000
tree	acd595e322ae6155ca4fe4d68139f2bd07614854
parent	fbbaaccaca32742f09dfb02e5e28dcd20f64a17f [diff] [blame]