/*-------------------------------------------------------------------------- * LuaSec 1.0.2 * * Copyright (C) 2006-2021 Bruno Silvestre * *--------------------------------------------------------------------------*/ #include #include "options.h" /* If you need to generate these options again, see options.lua */ /* OpenSSL version: OpenSSL 3.0.0-beta2 */ static lsec_ssl_option_t ssl_options[] = { #if defined(SSL_OP_ALL) {"all", SSL_OP_ALL}, #endif #if defined(SSL_OP_ALLOW_CLIENT_RENEGOTIATION) {"allow_client_renegotiation", SSL_OP_ALLOW_CLIENT_RENEGOTIATION}, #endif #if defined(SSL_OP_ALLOW_NO_DHE_KEX) {"allow_no_dhe_kex", SSL_OP_ALLOW_NO_DHE_KEX}, #endif #if defined(SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION) {"allow_unsafe_legacy_renegotiation", SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION}, #endif #if defined(SSL_OP_CIPHER_SERVER_PREFERENCE) {"cipher_server_preference", SSL_OP_CIPHER_SERVER_PREFERENCE}, #endif #if defined(SSL_OP_CISCO_ANYCONNECT) {"cisco_anyconnect", SSL_OP_CISCO_ANYCONNECT}, #endif #if defined(SSL_OP_CLEANSE_PLAINTEXT) {"cleanse_plaintext", SSL_OP_CLEANSE_PLAINTEXT}, #endif #if defined(SSL_OP_COOKIE_EXCHANGE) {"cookie_exchange", SSL_OP_COOKIE_EXCHANGE}, #endif #if defined(SSL_OP_CRYPTOPRO_TLSEXT_BUG) {"cryptopro_tlsext_bug", SSL_OP_CRYPTOPRO_TLSEXT_BUG}, #endif #if defined(SSL_OP_DISABLE_TLSEXT_CA_NAMES) {"disable_tlsext_ca_names", SSL_OP_DISABLE_TLSEXT_CA_NAMES}, #endif #if defined(SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS) {"dont_insert_empty_fragments", SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS}, #endif #if defined(SSL_OP_ENABLE_KTLS) {"enable_ktls", SSL_OP_ENABLE_KTLS}, #endif #if defined(SSL_OP_ENABLE_MIDDLEBOX_COMPAT) {"enable_middlebox_compat", SSL_OP_ENABLE_MIDDLEBOX_COMPAT}, #endif #if defined(SSL_OP_EPHEMERAL_RSA) {"ephemeral_rsa", SSL_OP_EPHEMERAL_RSA}, #endif #if defined(SSL_OP_IGNORE_UNEXPECTED_EOF) {"ignore_unexpected_eof", SSL_OP_IGNORE_UNEXPECTED_EOF}, #endif #if defined(SSL_OP_LEGACY_SERVER_CONNECT) {"legacy_server_connect", SSL_OP_LEGACY_SERVER_CONNECT}, #endif #if defined(SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER) {"microsoft_big_sslv3_buffer", SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER}, #endif #if defined(SSL_OP_MICROSOFT_SESS_ID_BUG) {"microsoft_sess_id_bug", SSL_OP_MICROSOFT_SESS_ID_BUG}, #endif #if defined(SSL_OP_MSIE_SSLV2_RSA_PADDING) {"msie_sslv2_rsa_padding", SSL_OP_MSIE_SSLV2_RSA_PADDING}, #endif #if defined(SSL_OP_NETSCAPE_CA_DN_BUG) {"netscape_ca_dn_bug", SSL_OP_NETSCAPE_CA_DN_BUG}, #endif #if defined(SSL_OP_NETSCAPE_CHALLENGE_BUG) {"netscape_challenge_bug", SSL_OP_NETSCAPE_CHALLENGE_BUG}, #endif #if defined(SSL_OP_NETSCAPE_DEMO_CIPHER_CHANGE_BUG) {"netscape_demo_cipher_change_bug", SSL_OP_NETSCAPE_DEMO_CIPHER_CHANGE_BUG}, #endif #if defined(SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG) {"netscape_reuse_cipher_change_bug", SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG}, #endif #if defined(SSL_OP_NO_ANTI_REPLAY) {"no_anti_replay", SSL_OP_NO_ANTI_REPLAY}, #endif #if defined(SSL_OP_NO_COMPRESSION) {"no_compression", SSL_OP_NO_COMPRESSION}, #endif #if defined(SSL_OP_NO_DTLS_MASK) {"no_dtls_mask", SSL_OP_NO_DTLS_MASK}, #endif #if defined(SSL_OP_NO_DTLSv1) {"no_dtlsv1", SSL_OP_NO_DTLSv1}, #endif #if defined(SSL_OP_NO_DTLSv1_2) {"no_dtlsv1_2", SSL_OP_NO_DTLSv1_2}, #endif #if defined(SSL_OP_NO_ENCRYPT_THEN_MAC) {"no_encrypt_then_mac", SSL_OP_NO_ENCRYPT_THEN_MAC}, #endif #if defined(SSL_OP_NO_EXTENDED_MASTER_SECRET) {"no_extended_master_secret", SSL_OP_NO_EXTENDED_MASTER_SECRET}, #endif #if defined(SSL_OP_NO_QUERY_MTU) {"no_query_mtu", SSL_OP_NO_QUERY_MTU}, #endif #if defined(SSL_OP_NO_RENEGOTIATION) {"no_renegotiation", SSL_OP_NO_RENEGOTIATION}, #endif #if defined(SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION) {"no_session_resumption_on_renegotiation", SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION}, #endif #if defined(SSL_OP_NO_SSL_MASK) {"no_ssl_mask", SSL_OP_NO_SSL_MASK}, #endif #if defined(SSL_OP_NO_SSLv2) {"no_sslv2", SSL_OP_NO_SSLv2}, #endif #if defined(SSL_OP_NO_SSLv3) {"no_sslv3", SSL_OP_NO_SSLv3}, #endif #if defined(SSL_OP_NO_TICKET) {"no_ticket", SSL_OP_NO_TICKET}, #endif #if defined(SSL_OP_NO_TLSv1) {"no_tlsv1", SSL_OP_NO_TLSv1}, #endif #if defined(SSL_OP_NO_TLSv1_1) {"no_tlsv1_1", SSL_OP_NO_TLSv1_1}, #endif #if defined(SSL_OP_NO_TLSv1_2) {"no_tlsv1_2", SSL_OP_NO_TLSv1_2}, #endif #if defined(SSL_OP_NO_TLSv1_3) {"no_tlsv1_3", SSL_OP_NO_TLSv1_3}, #endif #if defined(SSL_OP_PKCS1_CHECK_1) {"pkcs1_check_1", SSL_OP_PKCS1_CHECK_1}, #endif #if defined(SSL_OP_PKCS1_CHECK_2) {"pkcs1_check_2", SSL_OP_PKCS1_CHECK_2}, #endif #if defined(SSL_OP_PRIORITIZE_CHACHA) {"prioritize_chacha", SSL_OP_PRIORITIZE_CHACHA}, #endif #if defined(SSL_OP_SAFARI_ECDHE_ECDSA_BUG) {"safari_ecdhe_ecdsa_bug", SSL_OP_SAFARI_ECDHE_ECDSA_BUG}, #endif #if defined(SSL_OP_SINGLE_DH_USE) {"single_dh_use", SSL_OP_SINGLE_DH_USE}, #endif #if defined(SSL_OP_SINGLE_ECDH_USE) {"single_ecdh_use", SSL_OP_SINGLE_ECDH_USE}, #endif #if defined(SSL_OP_SSLEAY_080_CLIENT_DH_BUG) {"ssleay_080_client_dh_bug", SSL_OP_SSLEAY_080_CLIENT_DH_BUG}, #endif #if defined(SSL_OP_SSLREF2_REUSE_CERT_TYPE_BUG) {"sslref2_reuse_cert_type_bug", SSL_OP_SSLREF2_REUSE_CERT_TYPE_BUG}, #endif #if defined(SSL_OP_TLSEXT_PADDING) {"tlsext_padding", SSL_OP_TLSEXT_PADDING}, #endif #if defined(SSL_OP_TLS_BLOCK_PADDING_BUG) {"tls_block_padding_bug", SSL_OP_TLS_BLOCK_PADDING_BUG}, #endif #if defined(SSL_OP_TLS_D5_BUG) {"tls_d5_bug", SSL_OP_TLS_D5_BUG}, #endif #if defined(SSL_OP_TLS_ROLLBACK_BUG) {"tls_rollback_bug", SSL_OP_TLS_ROLLBACK_BUG}, #endif {NULL, 0L} }; LSEC_API lsec_ssl_option_t* lsec_get_ssl_options() { return ssl_options; }