src/crypto/tls/boring.go - go - Git at Google

 // Copyright 2017 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.

 //go:build boringcrypto

 package tls

 import (
 	"crypto/internal/boring/fipstls"
 )

 // needFIPS returns fipstls.Required(); it avoids a new import in common.go.
 func needFIPS() bool {
 	return fipstls.Required()
 }

 // fipsMinVersion replaces c.minVersion in FIPS-only mode.
 func fipsMinVersion(c *Config) uint16 {
 	// FIPS requires TLS 1.2.
 	return VersionTLS12
 }

 // fipsMaxVersion replaces c.maxVersion in FIPS-only mode.
 func fipsMaxVersion(c *Config) uint16 {
 	// FIPS requires TLS 1.2.
 	return VersionTLS12
 }

 // default defaultFIPSCurvePreferences is the FIPS-allowed curves,
 // in preference order (most preferable first).
 var defaultFIPSCurvePreferences = []CurveID{CurveP256, CurveP384, CurveP521}

 // fipsCurvePreferences replaces c.curvePreferences in FIPS-only mode.
 func fipsCurvePreferences(c *Config) []CurveID {
 	if c == nil || len(c.CurvePreferences) == 0 {
 		return defaultFIPSCurvePreferences
 	}
 	var list []CurveID
 	for _, id := range c.CurvePreferences {
 		for _, allowed := range defaultFIPSCurvePreferences {
 			if id == allowed {
 				list = append(list, id)
 				break
 			}
 		}
 	}
 	return list
 }

 // defaultCipherSuitesFIPS are the FIPS-allowed cipher suites.
 var defaultCipherSuitesFIPS = []uint16{
 	TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,
 	TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,
 	TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,
 	TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,
 	TLS_RSA_WITH_AES_128_GCM_SHA256,
 	TLS_RSA_WITH_AES_256_GCM_SHA384,
 }

 // fipsCipherSuites replaces c.cipherSuites in FIPS-only mode.
 func fipsCipherSuites(c *Config) []uint16 {
 	if c == nil || c.CipherSuites == nil {
 		return defaultCipherSuitesFIPS
 	}
 	list := make([]uint16, 0, len(defaultCipherSuitesFIPS))
 	for _, id := range c.CipherSuites {
 		for _, allowed := range defaultCipherSuitesFIPS {
 			if id == allowed {
 				list = append(list, id)
 				break
 			}
 		}
 	}
 	return list
 }

 // fipsSupportedSignatureAlgorithms currently are a subset of
 // defaultSupportedSignatureAlgorithms without Ed25519 and SHA-1.
 var fipsSupportedSignatureAlgorithms = []SignatureScheme{
 	PSSWithSHA256,
 	PSSWithSHA384,
 	PSSWithSHA512,
 	PKCS1WithSHA256,
 	ECDSAWithP256AndSHA256,
 	PKCS1WithSHA384,
 	ECDSAWithP384AndSHA384,
 	PKCS1WithSHA512,
 	ECDSAWithP521AndSHA512,
 }

 // supportedSignatureAlgorithms returns the supported signature algorithms.
 func supportedSignatureAlgorithms() []SignatureScheme {
 	if !needFIPS() {
 		return defaultSupportedSignatureAlgorithms
 	}
 	return fipsSupportedSignatureAlgorithms
 }
	// Copyright 2017 The Go Authors. All rights reserved.
	// Use of this source code is governed by a BSD-style
	// license that can be found in the LICENSE file.

	//go:build boringcrypto

	package tls

	import (
	"crypto/internal/boring/fipstls"
	)

	// needFIPS returns fipstls.Required(); it avoids a new import in common.go.
	func needFIPS() bool {
	return fipstls.Required()
	}

	// fipsMinVersion replaces c.minVersion in FIPS-only mode.
	func fipsMinVersion(c *Config) uint16 {
	// FIPS requires TLS 1.2.
	return VersionTLS12
	}

	// fipsMaxVersion replaces c.maxVersion in FIPS-only mode.
	func fipsMaxVersion(c *Config) uint16 {
	// FIPS requires TLS 1.2.
	return VersionTLS12
	}

	// default defaultFIPSCurvePreferences is the FIPS-allowed curves,
	// in preference order (most preferable first).
	var defaultFIPSCurvePreferences = []CurveID{CurveP256, CurveP384, CurveP521}

	// fipsCurvePreferences replaces c.curvePreferences in FIPS-only mode.
	func fipsCurvePreferences(c *Config) []CurveID {
	if c == nil \|\| len(c.CurvePreferences) == 0 {
	return defaultFIPSCurvePreferences
	}
	var list []CurveID
	for _, id := range c.CurvePreferences {
	for _, allowed := range defaultFIPSCurvePreferences {
	if id == allowed {
	list = append(list, id)
	break
	}
	}
	}
	return list
	}

	// defaultCipherSuitesFIPS are the FIPS-allowed cipher suites.
	var defaultCipherSuitesFIPS = []uint16{
	TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,
	TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,
	TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,
	TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,
	TLS_RSA_WITH_AES_128_GCM_SHA256,
	TLS_RSA_WITH_AES_256_GCM_SHA384,
	}

	// fipsCipherSuites replaces c.cipherSuites in FIPS-only mode.
	func fipsCipherSuites(c *Config) []uint16 {
	if c == nil \|\| c.CipherSuites == nil {
	return defaultCipherSuitesFIPS
	}
	list := make([]uint16, 0, len(defaultCipherSuitesFIPS))
	for _, id := range c.CipherSuites {
	for _, allowed := range defaultCipherSuitesFIPS {
	if id == allowed {
	list = append(list, id)
	break
	}
	}
	}
	return list
	}

	// fipsSupportedSignatureAlgorithms currently are a subset of
	// defaultSupportedSignatureAlgorithms without Ed25519 and SHA-1.
	var fipsSupportedSignatureAlgorithms = []SignatureScheme{
	PSSWithSHA256,
	PSSWithSHA384,
	PSSWithSHA512,
	PKCS1WithSHA256,
	ECDSAWithP256AndSHA256,
	PKCS1WithSHA384,
	ECDSAWithP384AndSHA384,
	PKCS1WithSHA512,
	ECDSAWithP521AndSHA512,
	}

	// supportedSignatureAlgorithms returns the supported signature algorithms.
	func supportedSignatureAlgorithms() []SignatureScheme {
	if !needFIPS() {
	return defaultSupportedSignatureAlgorithms
	}
	return fipsSupportedSignatureAlgorithms
	}