Module SSL.Constants

Description

Protocol constants

Constant ALERT_deprecated

constant SSL.Constants.ALERT_deprecated

Description

Mapping from AlertMessage to ProtocolVersion where the alert was deprecated.

Constant ALERT_descriptions

constant SSL.Constants.ALERT_descriptions

Description

Mapping from AlertMessage to a descriptive string.

Constant AUTHLEVEL_ask

constant int SSL.Constants.AUTHLEVEL_ask

Description

As a server, request a certificate, but don't require a response. This AUTHLEVEL is not relevant for clients.

Constant AUTHLEVEL_none

constant int SSL.Constants.AUTHLEVEL_none

Description

Don't request nor check any certificate.

Constant AUTHLEVEL_require

constant int SSL.Constants.AUTHLEVEL_require

Description

Require other party to send a valid certificate.

Constant AUTHLEVEL_verify

constant int SSL.Constants.AUTHLEVEL_verify

Description

Don't request, but verify any certificate.

Constant CIPHER_SUITES

constant SSL.Constants.CIPHER_SUITES

Description

A mapping from cipher suite identifier to an array defining the algorithms to be used in that suite.

Array
KeyExchangeType 0

The key exchange algorithm to be used for this suite, or 0. E.g. KE_rsa.

int 1

The cipher algorithm to be used for this suite, or 0. E.g. CIPHER_aes.

HashAlgorithm 2

The hash algorithm to be used for this suite, or 0. E.g. HASH_sha1.

CipherMode 3

Optionally for TLS 1.2 and later cipher suites the mode of operation. E.g. MODE_cbc.

Constant CIPHER_effective_keylengths

constant SSL.Constants.CIPHER_effective_keylengths

Description

Mapping from CipherAlgorithm to effective key length.

Constant ECC_CURVES

constant SSL.Constants.ECC_CURVES

Description

Lookup from NamedGroup to Pike module implementing Crypto.ECC.Curve.

See also

FFDHE_GROUPS

Constant ECC_NAME_TO_CURVE

constant SSL.Constants.ECC_NAME_TO_CURVE

Description

Lookup for Pike ECC name to NamedGroup.

Constant FFDHE_GROUPS

constant SSL.Constants.FFDHE_GROUPS

Description

Lookup from NamedGroup to Crypto.DH.Parameters object.

See also

ECC_CURVES, MODP_GROUPS

Constant HASH_lookup

constant SSL.Constants.HASH_lookup

Description

Lookup from HashAlgorithm to corresponding Crypto.Hash.

Constant KE_Anonymous

constant SSL.Constants.KE_Anonymous

Description

Lists KeyExchangeType that doesn't require certificates.

Constant MODP_GROUPS

constant SSL.Constants.MODP_GROUPS

Description

Lookup from NamedGroup to Crypto.DH.Parameters object.

These groups have equivalent strength to the FFDHE_GROUPS, but don't have codepoints of their own. As they are popular groups to use for DHE, we also allow them.

See also

FFDHE_GROUPS, ECC_CURVES

Constant PROTOCOL_TLS_MAX

constant SSL.Constants.PROTOCOL_TLS_MAX

Description

Max supported TLS version.

Variable pkcs_der_to_sign_alg

mapping(string(8bit):SignatureScheme) SSL.Constants.pkcs_der_to_sign_alg

Description

Lookup from PKCS DER encoded string to SignatureScheme.