[prev in list] [next in list] [prev in thread] [next in thread]
List: kde-core-devel
Subject: Re: Question about QSslCipher::protocolString
From: Dawit A <adawit () kde ! org>
Date: 2014-10-21 19:24:33
Message-ID: CALa28R4ci2EU4BaxpBDHQDf82w0ixfqZDLO3Jx3TzkDg_CE-qw () mail ! gmail ! com
[Download RAW message or body]
I think this whole problem came about as a result of a misunderstanding?
More specifically a misreading of what the protocol information in the
cipher itself was meant to convey. The OpenSSL documentation for
SSL_CIPHER_get_version,
http://www.openssl.org/docs/ssl/SSL_CIPHER_get_name.html, states the
following:
"returns string which indicates the SSL/TLS protocol version that first
defined the cipher. This is currently *SSLv2* or *TLSv1/SSLv3*. In some
cases it should possibly return ``TLSv1.2'' but does not; use
SSL_CIPHER_description() instead. If *cipher* is NULL, ``(NONE)'' is
returned."
So the protocol string in the cipher is merely a historical information as
to when that cipher was first defined and not meant to convey the current
connection's protocol! What this means for the example case of
blog.mozilla.org is that a valid TLSv1.1 connection was established using a
cipher that was first defined under SSL/TLS protocol SSLv3.
2014-10-21 10:35 GMT-04:00 Thomas Lübking <thomas.luebking@gmail.com>:
> On Montag, 20. Oktober 2014 01:13:35 CEST, Thiago Macieira wrote:
>
>> On Sunday 19 October 2014 18:14:36 Thomas Lübking wrote:
>>
>>> On Sonntag, 19. Oktober 2014 16:35:35 CEST, Dawit A wrote: ...
>>>
>>
>> This is looking like a Qt bug instead. Can you investigate QSslSocket
>> instead?
>>
>
> This is the list of ciphers as reported by q_SSL_get_ciphers(), there's no
> "invalid" nor a NULL cipher.
> Second line is the split list.
> There's no "TLSv1.1" among them, nor anything that remotely looks like one.
>
>
> Cheers,
> Thomas
>
> ----------
>
> "ECDHE-RSA-AES256-GCM-SHA384 TLSv1.2 Kx=ECDH Au=RSA Enc=AESGCM(256)
> Mac=AEAD
> "("ECDHE-RSA-AES256-GCM-SHA384", "TLSv1.2", "Kx=ECDH", "Au=RSA",
> "Enc=AESGCM(256)", "Mac=AEAD")
>
> "ECDHE-ECDSA-AES256-GCM-SHA384 TLSv1.2 Kx=ECDH Au=ECDSA
> Enc=AESGCM(256) Mac=AEAD
> "("ECDHE-ECDSA-AES256-GCM-SHA384", "TLSv1.2", "Kx=ECDH", "Au=ECDSA",
> "Enc=AESGCM(256)", "Mac=AEAD")
>
> "ECDHE-RSA-AES256-SHA384 TLSv1.2 Kx=ECDH Au=RSA Enc=AES(256)
> Mac=SHA384
> "("ECDHE-RSA-AES256-SHA384", "TLSv1.2", "Kx=ECDH", "Au=RSA",
> "Enc=AES(256)", "Mac=SHA384")
>
> "ECDHE-ECDSA-AES256-SHA384 TLSv1.2 Kx=ECDH Au=ECDSA Enc=AES(256)
> Mac=SHA384
> "("ECDHE-ECDSA-AES256-SHA384", "TLSv1.2", "Kx=ECDH", "Au=ECDSA",
> "Enc=AES(256)", "Mac=SHA384")
>
> "ECDHE-RSA-AES256-SHA SSLv3 Kx=ECDH Au=RSA Enc=AES(256) Mac=SHA1
> "("ECDHE-RSA-AES256-SHA", "SSLv3", "Kx=ECDH", "Au=RSA", "Enc=AES(256)",
> "Mac=SHA1")
>
> "ECDHE-ECDSA-AES256-SHA SSLv3 Kx=ECDH Au=ECDSA Enc=AES(256) Mac=SHA1
> "("ECDHE-ECDSA-AES256-SHA", "SSLv3", "Kx=ECDH", "Au=ECDSA",
> "Enc=AES(256)", "Mac=SHA1")
>
> "SRP-DSS-AES-256-CBC-SHA SSLv3 Kx=SRP Au=DSS Enc=AES(256) Mac=SHA1
> "("SRP-DSS-AES-256-CBC-SHA", "SSLv3", "Kx=SRP", "Au=DSS", "Enc=AES(256)",
> "Mac=SHA1")
>
> "SRP-RSA-AES-256-CBC-SHA SSLv3 Kx=SRP Au=RSA Enc=AES(256) Mac=SHA1
> "("SRP-RSA-AES-256-CBC-SHA", "SSLv3", "Kx=SRP", "Au=RSA", "Enc=AES(256)",
> "Mac=SHA1")
>
> "SRP-AES-256-CBC-SHA SSLv3 Kx=SRP Au=SRP Enc=AES(256) Mac=SHA1
> "("SRP-AES-256-CBC-SHA", "SSLv3", "Kx=SRP", "Au=SRP", "Enc=AES(256)",
> "Mac=SHA1")
>
> "DHE-DSS-AES256-GCM-SHA384 TLSv1.2 Kx=DH Au=DSS Enc=AESGCM(256)
> Mac=AEAD
> "("DHE-DSS-AES256-GCM-SHA384", "TLSv1.2", "Kx=DH", "Au=DSS",
> "Enc=AESGCM(256)", "Mac=AEAD")
>
> "DHE-RSA-AES256-GCM-SHA384 TLSv1.2 Kx=DH Au=RSA Enc=AESGCM(256)
> Mac=AEAD
> "("DHE-RSA-AES256-GCM-SHA384", "TLSv1.2", "Kx=DH", "Au=RSA",
> "Enc=AESGCM(256)", "Mac=AEAD")
>
> "DHE-RSA-AES256-SHA256 TLSv1.2 Kx=DH Au=RSA Enc=AES(256)
> Mac=SHA256
> "("DHE-RSA-AES256-SHA256", "TLSv1.2", "Kx=DH", "Au=RSA", "Enc=AES(256)",
> "Mac=SHA256")
>
> "DHE-DSS-AES256-SHA256 TLSv1.2 Kx=DH Au=DSS Enc=AES(256)
> Mac=SHA256
> "("DHE-DSS-AES256-SHA256", "TLSv1.2", "Kx=DH", "Au=DSS", "Enc=AES(256)",
> "Mac=SHA256")
>
> "DHE-RSA-AES256-SHA SSLv3 Kx=DH Au=RSA Enc=AES(256) Mac=SHA1
> "("DHE-RSA-AES256-SHA", "SSLv3", "Kx=DH", "Au=RSA", "Enc=AES(256)",
> "Mac=SHA1")
>
> "DHE-DSS-AES256-SHA SSLv3 Kx=DH Au=DSS Enc=AES(256) Mac=SHA1
> "("DHE-DSS-AES256-SHA", "SSLv3", "Kx=DH", "Au=DSS", "Enc=AES(256)",
> "Mac=SHA1")
>
> "DHE-RSA-CAMELLIA256-SHA SSLv3 Kx=DH Au=RSA Enc=Camellia(256)
> Mac=SHA1
> "("DHE-RSA-CAMELLIA256-SHA", "SSLv3", "Kx=DH", "Au=RSA",
> "Enc=Camellia(256)", "Mac=SHA1")
>
> "DHE-DSS-CAMELLIA256-SHA SSLv3 Kx=DH Au=DSS Enc=Camellia(256)
> Mac=SHA1
> "("DHE-DSS-CAMELLIA256-SHA", "SSLv3", "Kx=DH", "Au=DSS",
> "Enc=Camellia(256)", "Mac=SHA1")
>
> "ECDH-RSA-AES256-GCM-SHA384 TLSv1.2 Kx=ECDH/RSA Au=ECDH Enc=AESGCM(256)
> Mac=AEAD
> "("ECDH-RSA-AES256-GCM-SHA384", "TLSv1.2", "Kx=ECDH/RSA", "Au=ECDH",
> "Enc=AESGCM(256)", "Mac=AEAD")
>
> "ECDH-ECDSA-AES256-GCM-SHA384 TLSv1.2 Kx=ECDH/ECDSA Au=ECDH
> Enc=AESGCM(256) Mac=AEAD
> "("ECDH-ECDSA-AES256-GCM-SHA384", "TLSv1.2", "Kx=ECDH/ECDSA", "Au=ECDH",
> "Enc=AESGCM(256)", "Mac=AEAD")
>
> "ECDH-RSA-AES256-SHA384 TLSv1.2 Kx=ECDH/RSA Au=ECDH Enc=AES(256)
> Mac=SHA384
> "("ECDH-RSA-AES256-SHA384", "TLSv1.2", "Kx=ECDH/RSA", "Au=ECDH",
> "Enc=AES(256)", "Mac=SHA384")
>
> "ECDH-ECDSA-AES256-SHA384 TLSv1.2 Kx=ECDH/ECDSA Au=ECDH Enc=AES(256)
> Mac=SHA384
> "("ECDH-ECDSA-AES256-SHA384", "TLSv1.2", "Kx=ECDH/ECDSA", "Au=ECDH",
> "Enc=AES(256)", "Mac=SHA384")
>
> "ECDH-RSA-AES256-SHA SSLv3 Kx=ECDH/RSA Au=ECDH Enc=AES(256) Mac=SHA1
> "("ECDH-RSA-AES256-SHA", "SSLv3", "Kx=ECDH/RSA", "Au=ECDH",
> "Enc=AES(256)", "Mac=SHA1")
>
> "ECDH-ECDSA-AES256-SHA SSLv3 Kx=ECDH/ECDSA Au=ECDH Enc=AES(256) Mac=SHA1
> "("ECDH-ECDSA-AES256-SHA", "SSLv3", "Kx=ECDH/ECDSA", "Au=ECDH",
> "Enc=AES(256)", "Mac=SHA1")
>
> "AES256-GCM-SHA384 TLSv1.2 Kx=RSA Au=RSA Enc=AESGCM(256)
> Mac=AEAD
> "("AES256-GCM-SHA384", "TLSv1.2", "Kx=RSA", "Au=RSA", "Enc=AESGCM(256)",
> "Mac=AEAD")
>
> "AES256-SHA256 TLSv1.2 Kx=RSA Au=RSA Enc=AES(256)
> Mac=SHA256
> "("AES256-SHA256", "TLSv1.2", "Kx=RSA", "Au=RSA", "Enc=AES(256)",
> "Mac=SHA256")
>
> "AES256-SHA SSLv3 Kx=RSA Au=RSA Enc=AES(256) Mac=SHA1
> "("AES256-SHA", "SSLv3", "Kx=RSA", "Au=RSA", "Enc=AES(256)", "Mac=SHA1")
>
> "CAMELLIA256-SHA SSLv3 Kx=RSA Au=RSA Enc=Camellia(256)
> Mac=SHA1
> "("CAMELLIA256-SHA", "SSLv3", "Kx=RSA", "Au=RSA", "Enc=Camellia(256)",
> "Mac=SHA1")
>
> "PSK-AES256-CBC-SHA SSLv3 Kx=PSK Au=PSK Enc=AES(256) Mac=SHA1
> "("PSK-AES256-CBC-SHA", "SSLv3", "Kx=PSK", "Au=PSK", "Enc=AES(256)",
> "Mac=SHA1")
>
> "ECDHE-RSA-AES128-GCM-SHA256 TLSv1.2 Kx=ECDH Au=RSA Enc=AESGCM(128)
> Mac=AEAD
> "("ECDHE-RSA-AES128-GCM-SHA256", "TLSv1.2", "Kx=ECDH", "Au=RSA",
> "Enc=AESGCM(128)", "Mac=AEAD")
>
> "ECDHE-ECDSA-AES128-GCM-SHA256 TLSv1.2 Kx=ECDH Au=ECDSA
> Enc=AESGCM(128) Mac=AEAD
> "("ECDHE-ECDSA-AES128-GCM-SHA256", "TLSv1.2", "Kx=ECDH", "Au=ECDSA",
> "Enc=AESGCM(128)", "Mac=AEAD")
>
> "ECDHE-RSA-AES128-SHA256 TLSv1.2 Kx=ECDH Au=RSA Enc=AES(128)
> Mac=SHA256
> "("ECDHE-RSA-AES128-SHA256", "TLSv1.2", "Kx=ECDH", "Au=RSA",
> "Enc=AES(128)", "Mac=SHA256")
>
> "ECDHE-ECDSA-AES128-SHA256 TLSv1.2 Kx=ECDH Au=ECDSA Enc=AES(128)
> Mac=SHA256
> "("ECDHE-ECDSA-AES128-SHA256", "TLSv1.2", "Kx=ECDH", "Au=ECDSA",
> "Enc=AES(128)", "Mac=SHA256")
>
> "ECDHE-RSA-AES128-SHA SSLv3 Kx=ECDH Au=RSA Enc=AES(128) Mac=SHA1
> "("ECDHE-RSA-AES128-SHA", "SSLv3", "Kx=ECDH", "Au=RSA", "Enc=AES(128)",
> "Mac=SHA1")
>
> "ECDHE-ECDSA-AES128-SHA SSLv3 Kx=ECDH Au=ECDSA Enc=AES(128) Mac=SHA1
> "("ECDHE-ECDSA-AES128-SHA", "SSLv3", "Kx=ECDH", "Au=ECDSA",
> "Enc=AES(128)", "Mac=SHA1")
>
> "SRP-DSS-AES-128-CBC-SHA SSLv3 Kx=SRP Au=DSS Enc=AES(128) Mac=SHA1
> "("SRP-DSS-AES-128-CBC-SHA", "SSLv3", "Kx=SRP", "Au=DSS", "Enc=AES(128)",
> "Mac=SHA1")
>
> "SRP-RSA-AES-128-CBC-SHA SSLv3 Kx=SRP Au=RSA Enc=AES(128) Mac=SHA1
> "("SRP-RSA-AES-128-CBC-SHA", "SSLv3", "Kx=SRP", "Au=RSA", "Enc=AES(128)",
> "Mac=SHA1")
>
> "SRP-AES-128-CBC-SHA SSLv3 Kx=SRP Au=SRP Enc=AES(128) Mac=SHA1
> "("SRP-AES-128-CBC-SHA", "SSLv3", "Kx=SRP", "Au=SRP", "Enc=AES(128)",
> "Mac=SHA1")
>
> "DHE-DSS-AES128-GCM-SHA256 TLSv1.2 Kx=DH Au=DSS Enc=AESGCM(128)
> Mac=AEAD
> "("DHE-DSS-AES128-GCM-SHA256", "TLSv1.2", "Kx=DH", "Au=DSS",
> "Enc=AESGCM(128)", "Mac=AEAD")
>
> "DHE-RSA-AES128-GCM-SHA256 TLSv1.2 Kx=DH Au=RSA Enc=AESGCM(128)
> Mac=AEAD
> "("DHE-RSA-AES128-GCM-SHA256", "TLSv1.2", "Kx=DH", "Au=RSA",
> "Enc=AESGCM(128)", "Mac=AEAD")
>
> "DHE-RSA-AES128-SHA256 TLSv1.2 Kx=DH Au=RSA Enc=AES(128)
> Mac=SHA256
> "("DHE-RSA-AES128-SHA256", "TLSv1.2", "Kx=DH", "Au=RSA", "Enc=AES(128)",
> "Mac=SHA256")
>
> "DHE-DSS-AES128-SHA256 TLSv1.2 Kx=DH Au=DSS Enc=AES(128)
> Mac=SHA256
> "("DHE-DSS-AES128-SHA256", "TLSv1.2", "Kx=DH", "Au=DSS", "Enc=AES(128)",
> "Mac=SHA256")
>
> "DHE-RSA-AES128-SHA SSLv3 Kx=DH Au=RSA Enc=AES(128) Mac=SHA1
> "("DHE-RSA-AES128-SHA", "SSLv3", "Kx=DH", "Au=RSA", "Enc=AES(128)",
> "Mac=SHA1")
>
> "DHE-DSS-AES128-SHA SSLv3 Kx=DH Au=DSS Enc=AES(128) Mac=SHA1
> "("DHE-DSS-AES128-SHA", "SSLv3", "Kx=DH", "Au=DSS", "Enc=AES(128)",
> "Mac=SHA1")
>
> "DHE-RSA-SEED-SHA SSLv3 Kx=DH Au=RSA Enc=SEED(128) Mac=SHA1
> "("DHE-RSA-SEED-SHA", "SSLv3", "Kx=DH", "Au=RSA", "Enc=SEED(128)",
> "Mac=SHA1")
>
> "DHE-DSS-SEED-SHA SSLv3 Kx=DH Au=DSS Enc=SEED(128) Mac=SHA1
> "("DHE-DSS-SEED-SHA", "SSLv3", "Kx=DH", "Au=DSS", "Enc=SEED(128)",
> "Mac=SHA1")
>
> "DHE-RSA-CAMELLIA128-SHA SSLv3 Kx=DH Au=RSA Enc=Camellia(128)
> Mac=SHA1
> "("DHE-RSA-CAMELLIA128-SHA", "SSLv3", "Kx=DH", "Au=RSA",
> "Enc=Camellia(128)", "Mac=SHA1")
>
> "DHE-DSS-CAMELLIA128-SHA SSLv3 Kx=DH Au=DSS Enc=Camellia(128)
> Mac=SHA1
> "("DHE-DSS-CAMELLIA128-SHA", "SSLv3", "Kx=DH", "Au=DSS",
> "Enc=Camellia(128)", "Mac=SHA1")
>
> "ECDH-RSA-AES128-GCM-SHA256 TLSv1.2 Kx=ECDH/RSA Au=ECDH Enc=AESGCM(128)
> Mac=AEAD
> "("ECDH-RSA-AES128-GCM-SHA256", "TLSv1.2", "Kx=ECDH/RSA", "Au=ECDH",
> "Enc=AESGCM(128)", "Mac=AEAD")
>
> "ECDH-ECDSA-AES128-GCM-SHA256 TLSv1.2 Kx=ECDH/ECDSA Au=ECDH
> Enc=AESGCM(128) Mac=AEAD
> "("ECDH-ECDSA-AES128-GCM-SHA256", "TLSv1.2", "Kx=ECDH/ECDSA", "Au=ECDH",
> "Enc=AESGCM(128)", "Mac=AEAD")
>
> "ECDH-RSA-AES128-SHA256 TLSv1.2 Kx=ECDH/RSA Au=ECDH Enc=AES(128)
> Mac=SHA256
> "("ECDH-RSA-AES128-SHA256", "TLSv1.2", "Kx=ECDH/RSA", "Au=ECDH",
> "Enc=AES(128)", "Mac=SHA256")
>
> "ECDH-ECDSA-AES128-SHA256 TLSv1.2 Kx=ECDH/ECDSA Au=ECDH Enc=AES(128)
> Mac=SHA256
> "("ECDH-ECDSA-AES128-SHA256", "TLSv1.2", "Kx=ECDH/ECDSA", "Au=ECDH",
> "Enc=AES(128)", "Mac=SHA256")
>
> "ECDH-RSA-AES128-SHA SSLv3 Kx=ECDH/RSA Au=ECDH Enc=AES(128) Mac=SHA1
> "("ECDH-RSA-AES128-SHA", "SSLv3", "Kx=ECDH/RSA", "Au=ECDH",
> "Enc=AES(128)", "Mac=SHA1")
>
> "ECDH-ECDSA-AES128-SHA SSLv3 Kx=ECDH/ECDSA Au=ECDH Enc=AES(128) Mac=SHA1
> "("ECDH-ECDSA-AES128-SHA", "SSLv3", "Kx=ECDH/ECDSA", "Au=ECDH",
> "Enc=AES(128)", "Mac=SHA1")
>
> "AES128-GCM-SHA256 TLSv1.2 Kx=RSA Au=RSA Enc=AESGCM(128)
> Mac=AEAD
> "("AES128-GCM-SHA256", "TLSv1.2", "Kx=RSA", "Au=RSA", "Enc=AESGCM(128)",
> "Mac=AEAD")
>
> "AES128-SHA256 TLSv1.2 Kx=RSA Au=RSA Enc=AES(128)
> Mac=SHA256
> "("AES128-SHA256", "TLSv1.2", "Kx=RSA", "Au=RSA", "Enc=AES(128)",
> "Mac=SHA256")
>
> "AES128-SHA SSLv3 Kx=RSA Au=RSA Enc=AES(128) Mac=SHA1
> "("AES128-SHA", "SSLv3", "Kx=RSA", "Au=RSA", "Enc=AES(128)", "Mac=SHA1")
>
> "SEED-SHA SSLv3 Kx=RSA Au=RSA Enc=SEED(128) Mac=SHA1
> "("SEED-SHA", "SSLv3", "Kx=RSA", "Au=RSA", "Enc=SEED(128)", "Mac=SHA1")
>
> "CAMELLIA128-SHA SSLv3 Kx=RSA Au=RSA Enc=Camellia(128)
> Mac=SHA1
> "("CAMELLIA128-SHA", "SSLv3", "Kx=RSA", "Au=RSA", "Enc=Camellia(128)",
> "Mac=SHA1")
>
> "IDEA-CBC-SHA SSLv3 Kx=RSA Au=RSA Enc=IDEA(128) Mac=SHA1
> "("IDEA-CBC-SHA", "SSLv3", "Kx=RSA", "Au=RSA", "Enc=IDEA(128)", "Mac=SHA1")
>
> "PSK-AES128-CBC-SHA SSLv3 Kx=PSK Au=PSK Enc=AES(128) Mac=SHA1
> "("PSK-AES128-CBC-SHA", "SSLv3", "Kx=PSK", "Au=PSK", "Enc=AES(128)",
> "Mac=SHA1")
>
> "ECDHE-RSA-RC4-SHA SSLv3 Kx=ECDH Au=RSA Enc=RC4(128) Mac=SHA1
> "("ECDHE-RSA-RC4-SHA", "SSLv3", "Kx=ECDH", "Au=RSA", "Enc=RC4(128)",
> "Mac=SHA1")
>
> "ECDHE-ECDSA-RC4-SHA SSLv3 Kx=ECDH Au=ECDSA Enc=RC4(128) Mac=SHA1
> "("ECDHE-ECDSA-RC4-SHA", "SSLv3", "Kx=ECDH", "Au=ECDSA", "Enc=RC4(128)",
> "Mac=SHA1")
>
> "ECDH-RSA-RC4-SHA SSLv3 Kx=ECDH/RSA Au=ECDH Enc=RC4(128) Mac=SHA1
> "("ECDH-RSA-RC4-SHA", "SSLv3", "Kx=ECDH/RSA", "Au=ECDH", "Enc=RC4(128)",
> "Mac=SHA1")
>
> "ECDH-ECDSA-RC4-SHA SSLv3 Kx=ECDH/ECDSA Au=ECDH Enc=RC4(128) Mac=SHA1
> "("ECDH-ECDSA-RC4-SHA", "SSLv3", "Kx=ECDH/ECDSA", "Au=ECDH",
> "Enc=RC4(128)", "Mac=SHA1")
>
> "RC4-SHA SSLv3 Kx=RSA Au=RSA Enc=RC4(128) Mac=SHA1
> "("RC4-SHA", "SSLv3", "Kx=RSA", "Au=RSA", "Enc=RC4(128)", "Mac=SHA1")
>
> "RC4-MD5 SSLv3 Kx=RSA Au=RSA Enc=RC4(128) Mac=MD5
> "("RC4-MD5", "SSLv3", "Kx=RSA", "Au=RSA", "Enc=RC4(128)", "Mac=MD5", "")
>
> "PSK-RC4-SHA SSLv3 Kx=PSK Au=PSK Enc=RC4(128) Mac=SHA1
> "("PSK-RC4-SHA", "SSLv3", "Kx=PSK", "Au=PSK", "Enc=RC4(128)", "Mac=SHA1")
>
> "ECDHE-RSA-DES-CBC3-SHA SSLv3 Kx=ECDH Au=RSA Enc=3DES(168) Mac=SHA1
> "("ECDHE-RSA-DES-CBC3-SHA", "SSLv3", "Kx=ECDH", "Au=RSA", "Enc=3DES(168)",
> "Mac=SHA1")
>
> "ECDHE-ECDSA-DES-CBC3-SHA SSLv3 Kx=ECDH Au=ECDSA Enc=3DES(168) Mac=SHA1
> "("ECDHE-ECDSA-DES-CBC3-SHA", "SSLv3", "Kx=ECDH", "Au=ECDSA",
> "Enc=3DES(168)", "Mac=SHA1")
>
> "SRP-DSS-3DES-EDE-CBC-SHA SSLv3 Kx=SRP Au=DSS Enc=3DES(168) Mac=SHA1
> "("SRP-DSS-3DES-EDE-CBC-SHA", "SSLv3", "Kx=SRP", "Au=DSS",
> "Enc=3DES(168)", "Mac=SHA1")
>
> "SRP-RSA-3DES-EDE-CBC-SHA SSLv3 Kx=SRP Au=RSA Enc=3DES(168) Mac=SHA1
> "("SRP-RSA-3DES-EDE-CBC-SHA", "SSLv3", "Kx=SRP", "Au=RSA",
> "Enc=3DES(168)", "Mac=SHA1")
>
> "SRP-3DES-EDE-CBC-SHA SSLv3 Kx=SRP Au=SRP Enc=3DES(168) Mac=SHA1
> "("SRP-3DES-EDE-CBC-SHA", "SSLv3", "Kx=SRP", "Au=SRP", "Enc=3DES(168)",
> "Mac=SHA1")
>
> "EDH-RSA-DES-CBC3-SHA SSLv3 Kx=DH Au=RSA Enc=3DES(168) Mac=SHA1
> "("EDH-RSA-DES-CBC3-SHA", "SSLv3", "Kx=DH", "Au=RSA", "Enc=3DES(168)",
> "Mac=SHA1")
>
> "EDH-DSS-DES-CBC3-SHA SSLv3 Kx=DH Au=DSS Enc=3DES(168) Mac=SHA1
> "("EDH-DSS-DES-CBC3-SHA", "SSLv3", "Kx=DH", "Au=DSS", "Enc=3DES(168)",
> "Mac=SHA1")
>
> "ECDH-RSA-DES-CBC3-SHA SSLv3 Kx=ECDH/RSA Au=ECDH Enc=3DES(168) Mac=SHA1
> "("ECDH-RSA-DES-CBC3-SHA", "SSLv3", "Kx=ECDH/RSA", "Au=ECDH",
> "Enc=3DES(168)", "Mac=SHA1")
>
> "ECDH-ECDSA-DES-CBC3-SHA SSLv3 Kx=ECDH/ECDSA Au=ECDH Enc=3DES(168) Mac=SHA1
> "("ECDH-ECDSA-DES-CBC3-SHA", "SSLv3", "Kx=ECDH/ECDSA", "Au=ECDH",
> "Enc=3DES(168)", "Mac=SHA1")
>
> "DES-CBC3-SHA SSLv3 Kx=RSA Au=RSA Enc=3DES(168) Mac=SHA1
> "("DES-CBC3-SHA", "SSLv3", "Kx=RSA", "Au=RSA", "Enc=3DES(168)", "Mac=SHA1")
>
> "PSK-3DES-EDE-CBC-SHA SSLv3 Kx=PSK Au=PSK Enc=3DES(168) Mac=SHA1
> "("PSK-3DES-EDE-CBC-SHA", "SSLv3", "Kx=PSK", "Au=PSK", "Enc=3DES(168)",
> "Mac=SHA1")
>
> "EDH-RSA-DES-CBC-SHA SSLv3 Kx=DH Au=RSA Enc=DES(56) Mac=SHA1
> "("EDH-RSA-DES-CBC-SHA", "SSLv3", "Kx=DH", "Au=RSA", "Enc=DES(56)",
> "Mac=SHA1")
>
> "EDH-DSS-DES-CBC-SHA SSLv3 Kx=DH Au=DSS Enc=DES(56) Mac=SHA1
> "("EDH-DSS-DES-CBC-SHA", "SSLv3", "Kx=DH", "Au=DSS", "Enc=DES(56)",
> "Mac=SHA1")
>
> "DES-CBC-SHA SSLv3 Kx=RSA Au=RSA Enc=DES(56) Mac=SHA1
> "("DES-CBC-SHA", "SSLv3", "Kx=RSA", "Au=RSA", "Enc=DES(56)", "Mac=SHA1")
>
> "EXP-EDH-RSA-DES-CBC-SHA SSLv3 Kx=DH(512) Au=RSA Enc=DES(40) Mac=SHA1
> export
> "("EXP-EDH-RSA-DES-CBC-SHA", "SSLv3", "Kx=DH(512)", "Au=RSA",
> "Enc=DES(40)", "Mac=SHA1", "export")
>
> "EXP-EDH-DSS-DES-CBC-SHA SSLv3 Kx=DH(512) Au=DSS Enc=DES(40) Mac=SHA1
> export
> "("EXP-EDH-DSS-DES-CBC-SHA", "SSLv3", "Kx=DH(512)", "Au=DSS",
> "Enc=DES(40)", "Mac=SHA1", "export")
>
> "EXP-DES-CBC-SHA SSLv3 Kx=RSA(512) Au=RSA Enc=DES(40) Mac=SHA1
> export
> "("EXP-DES-CBC-SHA", "SSLv3", "Kx=RSA(512)", "Au=RSA", "Enc=DES(40)",
> "Mac=SHA1", "export")
>
> "EXP-RC2-CBC-MD5 SSLv3 Kx=RSA(512) Au=RSA Enc=RC2(40) Mac=MD5
> export
> "("EXP-RC2-CBC-MD5", "SSLv3", "Kx=RSA(512)", "Au=RSA", "Enc=RC2(40)",
> "Mac=MD5", "export")
>
> "EXP-RC4-MD5 SSLv3 Kx=RSA(512) Au=RSA Enc=RC4(40) Mac=MD5
> export
> "("EXP-RC4-MD5", "SSLv3", "Kx=RSA(512)", "Au=RSA", "Enc=RC4(40)",
> "Mac=MD5", "export")
>
>
>
[Attachment #3 (text/html)]
<div dir="ltr"><div><div>I think this whole problem came about as a result of a \
misunderstanding? More specifically a misreading of what the protocol information in the cipher \
itself was meant to convey. The OpenSSL documentation for <code>SSL_CIPHER_get_version, <a \
href="http://www.openssl.org/docs/ssl/SSL_CIPHER_get_name.html">http://www.openssl.org/docs/ssl/SSL_CIPHER_get_name.html</a>, \
</code>states the following:<br><br>"returns string which indicates the SSL/TLS protocol \
version that first defined the cipher. This is currently <b>SSLv2</b> or <b>TLSv1/SSLv3</b>. In \
some cases it should possibly return ``TLSv1.2'' but does not; use \
<code>SSL_CIPHER_description()</code> instead. If <b>cipher</b> is NULL, ``(NONE)'' is \
returned."<br><br></div>So the protocol string in the cipher is merely a historical \
information as to when that cipher was first defined and not meant to convey the current \
connection's protocol! What this means for the example case of <a \
href="http://blog.mozilla.org">blog.mozilla.org</a> is that a valid TLSv1.1 connection was \
established using a cipher that was first defined under SSL/TLS protocol \
SSLv3.<br><br></div><div><div class="gmail_extra"><br><div class="gmail_quote">2014-10-21 10:35 \
GMT-04:00 Thomas Lübking <span dir="ltr"><<a href="mailto:thomas.luebking@gmail.com" \
target="_blank">thomas.luebking@gmail.com</a>></span>:<br><blockquote class="gmail_quote" \
style="margin:0px 0px 0px 0.8ex;border-left:1px solid \
rgb(204,204,204);padding-left:1ex"><span>On Montag, 20. Oktober 2014 01:13:35 CEST, Thiago \
Macieira wrote:<br> </span><blockquote class="gmail_quote" style="margin:0px 0px 0px \
0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><span> On Sunday 19 October 2014 \
18:14:36 Thomas Lübking wrote:<br> </span><blockquote class="gmail_quote" style="margin:0px \
0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"> On Sonntag, 19. Oktober \
2014 16:35:35 CEST, Dawit A wrote: ...<br> </blockquote><span>
<br>
This is looking like a Qt bug instead. Can you investigate QSslSocket instead?<br>
</span></blockquote>
<br>
This is the list of ciphers as reported by q_SSL_get_ciphers(), there's no \
"invalid" nor a NULL cipher.<br> Second line is the split list.<br>
There's no "TLSv1.1" among them, nor anything that remotely looks like one.<br>
<br>
<br>
Cheers,<br>
Thomas<br>
<br>
----------<br>
<br>
"ECDHE-RSA-AES256-GCM-SHA384 TLSv1.2 Kx=ECDH Au=RSA Enc=AESGCM(256) Mac=AEAD<br>
"("ECDHE-RSA-AES256-GCM-<u></u>SHA384", "TLSv1.2", \
"Kx=ECDH", "Au=RSA", "Enc=AESGCM(256)", "Mac=AEAD")<br> \
<br> "ECDHE-ECDSA-AES256-GCM-SHA384 TLSv1.2 Kx=ECDH Au=ECDSA Enc=AESGCM(256) \
Mac=AEAD<br> "("ECDHE-ECDSA-AES256-GCM-<u></u>SHA384", "TLSv1.2", \
"Kx=ECDH", "Au=ECDSA", "Enc=AESGCM(256)", \
"Mac=AEAD")<br> <br>
"ECDHE-RSA-AES256-SHA384 TLSv1.2 Kx=ECDH Au=RSA Enc=AES(256) Mac=SHA384<br>
"("ECDHE-RSA-AES256-SHA384", "TLSv1.2", "Kx=ECDH", \
"Au=RSA", "Enc=AES(256)", "Mac=SHA384")<br> <br>
"ECDHE-ECDSA-AES256-SHA384 TLSv1.2 Kx=ECDH Au=ECDSA Enc=AES(256) Mac=SHA384<br>
"("ECDHE-ECDSA-AES256-SHA384", "TLSv1.2", "Kx=ECDH", \
"Au=ECDSA", "Enc=AES(256)", "Mac=SHA384")<br> <br>
"ECDHE-RSA-AES256-SHA SSLv3 Kx=ECDH Au=RSA Enc=AES(256) Mac=SHA1<br>
"("ECDHE-RSA-AES256-SHA", "SSLv3", "Kx=ECDH", \
"Au=RSA", "Enc=AES(256)", "Mac=SHA1")<br> <br>
"ECDHE-ECDSA-AES256-SHA SSLv3 Kx=ECDH Au=ECDSA Enc=AES(256) Mac=SHA1<br>
"("ECDHE-ECDSA-AES256-SHA", "SSLv3", "Kx=ECDH", \
"Au=ECDSA", "Enc=AES(256)", "Mac=SHA1")<br> <br>
"SRP-DSS-AES-256-CBC-SHA SSLv3 Kx=SRP Au=DSS Enc=AES(256) Mac=SHA1<br>
"("SRP-DSS-AES-256-CBC-SHA", "SSLv3", "Kx=SRP", \
"Au=DSS", "Enc=AES(256)", "Mac=SHA1")<br> <br>
"SRP-RSA-AES-256-CBC-SHA SSLv3 Kx=SRP Au=RSA Enc=AES(256) Mac=SHA1<br>
"("SRP-RSA-AES-256-CBC-SHA", "SSLv3", "Kx=SRP", \
"Au=RSA", "Enc=AES(256)", "Mac=SHA1")<br> <br>
"SRP-AES-256-CBC-SHA SSLv3 Kx=SRP Au=SRP Enc=AES(256) Mac=SHA1<br>
"("SRP-AES-256-CBC-SHA", "SSLv3", "Kx=SRP", \
"Au=SRP", "Enc=AES(256)", "Mac=SHA1")<br> <br>
"DHE-DSS-AES256-GCM-SHA384 TLSv1.2 Kx=DH Au=DSS Enc=AESGCM(256) Mac=AEAD<br>
"("DHE-DSS-AES256-GCM-SHA384", "TLSv1.2", "Kx=DH", \
"Au=DSS", "Enc=AESGCM(256)", "Mac=AEAD")<br> <br>
"DHE-RSA-AES256-GCM-SHA384 TLSv1.2 Kx=DH Au=RSA Enc=AESGCM(256) Mac=AEAD<br>
"("DHE-RSA-AES256-GCM-SHA384", "TLSv1.2", "Kx=DH", \
"Au=RSA", "Enc=AESGCM(256)", "Mac=AEAD")<br> <br>
"DHE-RSA-AES256-SHA256 TLSv1.2 Kx=DH Au=RSA Enc=AES(256) Mac=SHA256<br>
"("DHE-RSA-AES256-SHA256", "TLSv1.2", "Kx=DH", \
"Au=RSA", "Enc=AES(256)", "Mac=SHA256")<br> <br>
"DHE-DSS-AES256-SHA256 TLSv1.2 Kx=DH Au=DSS Enc=AES(256) Mac=SHA256<br>
"("DHE-DSS-AES256-SHA256", "TLSv1.2", "Kx=DH", \
"Au=DSS", "Enc=AES(256)", "Mac=SHA256")<br> <br>
"DHE-RSA-AES256-SHA SSLv3 Kx=DH Au=RSA Enc=AES(256) Mac=SHA1<br>
"("DHE-RSA-AES256-SHA", "SSLv3", "Kx=DH", \
"Au=RSA", "Enc=AES(256)", "Mac=SHA1")<br> <br>
"DHE-DSS-AES256-SHA SSLv3 Kx=DH Au=DSS Enc=AES(256) Mac=SHA1<br>
"("DHE-DSS-AES256-SHA", "SSLv3", "Kx=DH", \
"Au=DSS", "Enc=AES(256)", "Mac=SHA1")<br> <br>
"DHE-RSA-CAMELLIA256-SHA SSLv3 Kx=DH Au=RSA Enc=Camellia(256) Mac=SHA1<br>
"("DHE-RSA-CAMELLIA256-SHA", "SSLv3", "Kx=DH", \
"Au=RSA", "Enc=Camellia(256)", "Mac=SHA1")<br> <br>
"DHE-DSS-CAMELLIA256-SHA SSLv3 Kx=DH Au=DSS Enc=Camellia(256) Mac=SHA1<br>
"("DHE-DSS-CAMELLIA256-SHA", "SSLv3", "Kx=DH", \
"Au=DSS", "Enc=Camellia(256)", "Mac=SHA1")<br> <br>
"ECDH-RSA-AES256-GCM-SHA384 TLSv1.2 Kx=ECDH/RSA Au=ECDH Enc=AESGCM(256) Mac=AEAD<br>
"("ECDH-RSA-AES256-GCM-SHA384"<u></u>, "TLSv1.2", \
"Kx=ECDH/RSA", "Au=ECDH", "Enc=AESGCM(256)", \
"Mac=AEAD")<br> <br>
"ECDH-ECDSA-AES256-GCM-SHA384 TLSv1.2 Kx=ECDH/ECDSA Au=ECDH Enc=AESGCM(256) Mac=AEAD<br>
"("ECDH-ECDSA-AES256-GCM-<u></u>SHA384", "TLSv1.2", \
"Kx=ECDH/ECDSA", "Au=ECDH", "Enc=AESGCM(256)", \
"Mac=AEAD")<br> <br>
"ECDH-RSA-AES256-SHA384 TLSv1.2 Kx=ECDH/RSA Au=ECDH Enc=AES(256) Mac=SHA384<br>
"("ECDH-RSA-AES256-SHA384", "TLSv1.2", "Kx=ECDH/RSA", \
"Au=ECDH", "Enc=AES(256)", "Mac=SHA384")<br> <br>
"ECDH-ECDSA-AES256-SHA384 TLSv1.2 Kx=ECDH/ECDSA Au=ECDH Enc=AES(256) Mac=SHA384<br>
"("ECDH-ECDSA-AES256-SHA384", "TLSv1.2", "Kx=ECDH/ECDSA", \
"Au=ECDH", "Enc=AES(256)", "Mac=SHA384")<br> <br>
"ECDH-RSA-AES256-SHA SSLv3 Kx=ECDH/RSA Au=ECDH Enc=AES(256) Mac=SHA1<br>
"("ECDH-RSA-AES256-SHA", "SSLv3", "Kx=ECDH/RSA", \
"Au=ECDH", "Enc=AES(256)", "Mac=SHA1")<br> <br>
"ECDH-ECDSA-AES256-SHA SSLv3 Kx=ECDH/ECDSA Au=ECDH Enc=AES(256) Mac=SHA1<br>
"("ECDH-ECDSA-AES256-SHA", "SSLv3", "Kx=ECDH/ECDSA", \
"Au=ECDH", "Enc=AES(256)", "Mac=SHA1")<br> <br>
"AES256-GCM-SHA384 TLSv1.2 Kx=RSA Au=RSA Enc=AESGCM(256) Mac=AEAD<br>
"("AES256-GCM-SHA384", "TLSv1.2", "Kx=RSA", \
"Au=RSA", "Enc=AESGCM(256)", "Mac=AEAD")<br> <br>
"AES256-SHA256 TLSv1.2 Kx=RSA Au=RSA Enc=AES(256) \
Mac=SHA256<br> "("AES256-SHA256", "TLSv1.2", "Kx=RSA", \
"Au=RSA", "Enc=AES(256)", "Mac=SHA256")<br> <br>
"AES256-SHA SSLv3 Kx=RSA Au=RSA Enc=AES(256) Mac=SHA1<br>
"("AES256-SHA", "SSLv3", "Kx=RSA", "Au=RSA", \
"Enc=AES(256)", "Mac=SHA1")<br> <br>
"CAMELLIA256-SHA SSLv3 Kx=RSA Au=RSA Enc=Camellia(256) Mac=SHA1<br>
"("CAMELLIA256-SHA", "SSLv3", "Kx=RSA", "Au=RSA", \
"Enc=Camellia(256)", "Mac=SHA1")<br> <br>
"PSK-AES256-CBC-SHA SSLv3 Kx=PSK Au=PSK Enc=AES(256) Mac=SHA1<br>
"("PSK-AES256-CBC-SHA", "SSLv3", "Kx=PSK", \
"Au=PSK", "Enc=AES(256)", "Mac=SHA1")<br> <br>
"ECDHE-RSA-AES128-GCM-SHA256 TLSv1.2 Kx=ECDH Au=RSA Enc=AESGCM(128) Mac=AEAD<br>
"("ECDHE-RSA-AES128-GCM-<u></u>SHA256", "TLSv1.2", \
"Kx=ECDH", "Au=RSA", "Enc=AESGCM(128)", "Mac=AEAD")<br> \
<br> "ECDHE-ECDSA-AES128-GCM-SHA256 TLSv1.2 Kx=ECDH Au=ECDSA Enc=AESGCM(128) \
Mac=AEAD<br> "("ECDHE-ECDSA-AES128-GCM-<u></u>SHA256", "TLSv1.2", \
"Kx=ECDH", "Au=ECDSA", "Enc=AESGCM(128)", \
"Mac=AEAD")<br> <br>
"ECDHE-RSA-AES128-SHA256 TLSv1.2 Kx=ECDH Au=RSA Enc=AES(128) Mac=SHA256<br>
"("ECDHE-RSA-AES128-SHA256", "TLSv1.2", "Kx=ECDH", \
"Au=RSA", "Enc=AES(128)", "Mac=SHA256")<br> <br>
"ECDHE-ECDSA-AES128-SHA256 TLSv1.2 Kx=ECDH Au=ECDSA Enc=AES(128) Mac=SHA256<br>
"("ECDHE-ECDSA-AES128-SHA256", "TLSv1.2", "Kx=ECDH", \
"Au=ECDSA", "Enc=AES(128)", "Mac=SHA256")<br> <br>
"ECDHE-RSA-AES128-SHA SSLv3 Kx=ECDH Au=RSA Enc=AES(128) Mac=SHA1<br>
"("ECDHE-RSA-AES128-SHA", "SSLv3", "Kx=ECDH", \
"Au=RSA", "Enc=AES(128)", "Mac=SHA1")<br> <br>
"ECDHE-ECDSA-AES128-SHA SSLv3 Kx=ECDH Au=ECDSA Enc=AES(128) Mac=SHA1<br>
"("ECDHE-ECDSA-AES128-SHA", "SSLv3", "Kx=ECDH", \
"Au=ECDSA", "Enc=AES(128)", "Mac=SHA1")<br> <br>
"SRP-DSS-AES-128-CBC-SHA SSLv3 Kx=SRP Au=DSS Enc=AES(128) Mac=SHA1<br>
"("SRP-DSS-AES-128-CBC-SHA", "SSLv3", "Kx=SRP", \
"Au=DSS", "Enc=AES(128)", "Mac=SHA1")<br> <br>
"SRP-RSA-AES-128-CBC-SHA SSLv3 Kx=SRP Au=RSA Enc=AES(128) Mac=SHA1<br>
"("SRP-RSA-AES-128-CBC-SHA", "SSLv3", "Kx=SRP", \
"Au=RSA", "Enc=AES(128)", "Mac=SHA1")<br> <br>
"SRP-AES-128-CBC-SHA SSLv3 Kx=SRP Au=SRP Enc=AES(128) Mac=SHA1<br>
"("SRP-AES-128-CBC-SHA", "SSLv3", "Kx=SRP", \
"Au=SRP", "Enc=AES(128)", "Mac=SHA1")<br> <br>
"DHE-DSS-AES128-GCM-SHA256 TLSv1.2 Kx=DH Au=DSS Enc=AESGCM(128) Mac=AEAD<br>
"("DHE-DSS-AES128-GCM-SHA256", "TLSv1.2", "Kx=DH", \
"Au=DSS", "Enc=AESGCM(128)", "Mac=AEAD")<br> <br>
"DHE-RSA-AES128-GCM-SHA256 TLSv1.2 Kx=DH Au=RSA Enc=AESGCM(128) Mac=AEAD<br>
"("DHE-RSA-AES128-GCM-SHA256", "TLSv1.2", "Kx=DH", \
"Au=RSA", "Enc=AESGCM(128)", "Mac=AEAD")<br> <br>
"DHE-RSA-AES128-SHA256 TLSv1.2 Kx=DH Au=RSA Enc=AES(128) Mac=SHA256<br>
"("DHE-RSA-AES128-SHA256", "TLSv1.2", "Kx=DH", \
"Au=RSA", "Enc=AES(128)", "Mac=SHA256")<br> <br>
"DHE-DSS-AES128-SHA256 TLSv1.2 Kx=DH Au=DSS Enc=AES(128) Mac=SHA256<br>
"("DHE-DSS-AES128-SHA256", "TLSv1.2", "Kx=DH", \
"Au=DSS", "Enc=AES(128)", "Mac=SHA256")<br> <br>
"DHE-RSA-AES128-SHA SSLv3 Kx=DH Au=RSA Enc=AES(128) Mac=SHA1<br>
"("DHE-RSA-AES128-SHA", "SSLv3", "Kx=DH", \
"Au=RSA", "Enc=AES(128)", "Mac=SHA1")<br> <br>
"DHE-DSS-AES128-SHA SSLv3 Kx=DH Au=DSS Enc=AES(128) Mac=SHA1<br>
"("DHE-DSS-AES128-SHA", "SSLv3", "Kx=DH", \
"Au=DSS", "Enc=AES(128)", "Mac=SHA1")<br> <br>
"DHE-RSA-SEED-SHA SSLv3 Kx=DH Au=RSA Enc=SEED(128) Mac=SHA1<br>
"("DHE-RSA-SEED-SHA", "SSLv3", "Kx=DH", "Au=RSA", \
"Enc=SEED(128)", "Mac=SHA1")<br> <br>
"DHE-DSS-SEED-SHA SSLv3 Kx=DH Au=DSS Enc=SEED(128) Mac=SHA1<br>
"("DHE-DSS-SEED-SHA", "SSLv3", "Kx=DH", "Au=DSS", \
"Enc=SEED(128)", "Mac=SHA1")<br> <br>
"DHE-RSA-CAMELLIA128-SHA SSLv3 Kx=DH Au=RSA Enc=Camellia(128) Mac=SHA1<br>
"("DHE-RSA-CAMELLIA128-SHA", "SSLv3", "Kx=DH", \
"Au=RSA", "Enc=Camellia(128)", "Mac=SHA1")<br> <br>
"DHE-DSS-CAMELLIA128-SHA SSLv3 Kx=DH Au=DSS Enc=Camellia(128) Mac=SHA1<br>
"("DHE-DSS-CAMELLIA128-SHA", "SSLv3", "Kx=DH", \
"Au=DSS", "Enc=Camellia(128)", "Mac=SHA1")<br> <br>
"ECDH-RSA-AES128-GCM-SHA256 TLSv1.2 Kx=ECDH/RSA Au=ECDH Enc=AESGCM(128) Mac=AEAD<br>
"("ECDH-RSA-AES128-GCM-SHA256"<u></u>, "TLSv1.2", \
"Kx=ECDH/RSA", "Au=ECDH", "Enc=AESGCM(128)", \
"Mac=AEAD")<br> <br>
"ECDH-ECDSA-AES128-GCM-SHA256 TLSv1.2 Kx=ECDH/ECDSA Au=ECDH Enc=AESGCM(128) Mac=AEAD<br>
"("ECDH-ECDSA-AES128-GCM-<u></u>SHA256", "TLSv1.2", \
"Kx=ECDH/ECDSA", "Au=ECDH", "Enc=AESGCM(128)", \
"Mac=AEAD")<br> <br>
"ECDH-RSA-AES128-SHA256 TLSv1.2 Kx=ECDH/RSA Au=ECDH Enc=AES(128) Mac=SHA256<br>
"("ECDH-RSA-AES128-SHA256", "TLSv1.2", "Kx=ECDH/RSA", \
"Au=ECDH", "Enc=AES(128)", "Mac=SHA256")<br> <br>
"ECDH-ECDSA-AES128-SHA256 TLSv1.2 Kx=ECDH/ECDSA Au=ECDH Enc=AES(128) Mac=SHA256<br>
"("ECDH-ECDSA-AES128-SHA256", "TLSv1.2", "Kx=ECDH/ECDSA", \
"Au=ECDH", "Enc=AES(128)", "Mac=SHA256")<br> <br>
"ECDH-RSA-AES128-SHA SSLv3 Kx=ECDH/RSA Au=ECDH Enc=AES(128) Mac=SHA1<br>
"("ECDH-RSA-AES128-SHA", "SSLv3", "Kx=ECDH/RSA", \
"Au=ECDH", "Enc=AES(128)", "Mac=SHA1")<br> <br>
"ECDH-ECDSA-AES128-SHA SSLv3 Kx=ECDH/ECDSA Au=ECDH Enc=AES(128) Mac=SHA1<br>
"("ECDH-ECDSA-AES128-SHA", "SSLv3", "Kx=ECDH/ECDSA", \
"Au=ECDH", "Enc=AES(128)", "Mac=SHA1")<br> <br>
"AES128-GCM-SHA256 TLSv1.2 Kx=RSA Au=RSA Enc=AESGCM(128) Mac=AEAD<br>
"("AES128-GCM-SHA256", "TLSv1.2", "Kx=RSA", \
"Au=RSA", "Enc=AESGCM(128)", "Mac=AEAD")<br> <br>
"AES128-SHA256 TLSv1.2 Kx=RSA Au=RSA Enc=AES(128) \
Mac=SHA256<br> "("AES128-SHA256", "TLSv1.2", "Kx=RSA", \
"Au=RSA", "Enc=AES(128)", "Mac=SHA256")<br> <br>
"AES128-SHA SSLv3 Kx=RSA Au=RSA Enc=AES(128) Mac=SHA1<br>
"("AES128-SHA", "SSLv3", "Kx=RSA", "Au=RSA", \
"Enc=AES(128)", "Mac=SHA1")<br> <br>
"SEED-SHA SSLv3 Kx=RSA Au=RSA Enc=SEED(128) Mac=SHA1<br>
"("SEED-SHA", "SSLv3", "Kx=RSA", "Au=RSA", \
"Enc=SEED(128)", "Mac=SHA1")<br> <br>
"CAMELLIA128-SHA SSLv3 Kx=RSA Au=RSA Enc=Camellia(128) Mac=SHA1<br>
"("CAMELLIA128-SHA", "SSLv3", "Kx=RSA", "Au=RSA", \
"Enc=Camellia(128)", "Mac=SHA1")<br> <br>
"IDEA-CBC-SHA SSLv3 Kx=RSA Au=RSA Enc=IDEA(128) Mac=SHA1<br>
"("IDEA-CBC-SHA", "SSLv3", "Kx=RSA", "Au=RSA", \
"Enc=IDEA(128)", "Mac=SHA1")<br> <br>
"PSK-AES128-CBC-SHA SSLv3 Kx=PSK Au=PSK Enc=AES(128) Mac=SHA1<br>
"("PSK-AES128-CBC-SHA", "SSLv3", "Kx=PSK", \
"Au=PSK", "Enc=AES(128)", "Mac=SHA1")<br> <br>
"ECDHE-RSA-RC4-SHA SSLv3 Kx=ECDH Au=RSA Enc=RC4(128) Mac=SHA1<br>
"("ECDHE-RSA-RC4-SHA", "SSLv3", "Kx=ECDH", \
"Au=RSA", "Enc=RC4(128)", "Mac=SHA1")<br> <br>
"ECDHE-ECDSA-RC4-SHA SSLv3 Kx=ECDH Au=ECDSA Enc=RC4(128) Mac=SHA1<br>
"("ECDHE-ECDSA-RC4-SHA", "SSLv3", "Kx=ECDH", \
"Au=ECDSA", "Enc=RC4(128)", "Mac=SHA1")<br> <br>
"ECDH-RSA-RC4-SHA SSLv3 Kx=ECDH/RSA Au=ECDH Enc=RC4(128) Mac=SHA1<br>
"("ECDH-RSA-RC4-SHA", "SSLv3", "Kx=ECDH/RSA", \
"Au=ECDH", "Enc=RC4(128)", "Mac=SHA1")<br> <br>
"ECDH-ECDSA-RC4-SHA SSLv3 Kx=ECDH/ECDSA Au=ECDH Enc=RC4(128) Mac=SHA1<br>
"("ECDH-ECDSA-RC4-SHA", "SSLv3", "Kx=ECDH/ECDSA", \
"Au=ECDH", "Enc=RC4(128)", "Mac=SHA1")<br> <br>
"RC4-SHA SSLv3 Kx=RSA Au=RSA Enc=RC4(128) \
Mac=SHA1<br> "("RC4-SHA", "SSLv3", "Kx=RSA", \
"Au=RSA", "Enc=RC4(128)", "Mac=SHA1")<br> <br>
"RC4-MD5 SSLv3 Kx=RSA Au=RSA Enc=RC4(128) Mac=MD5 \
"("RC4-MD5", "SSLv3", "Kx=RSA", "Au=RSA", \
"Enc=RC4(128)", "Mac=MD5", "")<br> <br>
"PSK-RC4-SHA SSLv3 Kx=PSK Au=PSK Enc=RC4(128) Mac=SHA1<br>
"("PSK-RC4-SHA", "SSLv3", "Kx=PSK", "Au=PSK", \
"Enc=RC4(128)", "Mac=SHA1")<br> <br>
"ECDHE-RSA-DES-CBC3-SHA SSLv3 Kx=ECDH Au=RSA Enc=3DES(168) Mac=SHA1<br>
"("ECDHE-RSA-DES-CBC3-SHA", "SSLv3", "Kx=ECDH", \
"Au=RSA", "Enc=3DES(168)", "Mac=SHA1")<br> <br>
"ECDHE-ECDSA-DES-CBC3-SHA SSLv3 Kx=ECDH Au=ECDSA Enc=3DES(168) Mac=SHA1<br>
"("ECDHE-ECDSA-DES-CBC3-SHA", "SSLv3", "Kx=ECDH", \
"Au=ECDSA", "Enc=3DES(168)", "Mac=SHA1")<br> <br>
"SRP-DSS-3DES-EDE-CBC-SHA SSLv3 Kx=SRP Au=DSS Enc=3DES(168) Mac=SHA1<br>
"("SRP-DSS-3DES-EDE-CBC-SHA", "SSLv3", "Kx=SRP", \
"Au=DSS", "Enc=3DES(168)", "Mac=SHA1")<br> <br>
"SRP-RSA-3DES-EDE-CBC-SHA SSLv3 Kx=SRP Au=RSA Enc=3DES(168) Mac=SHA1<br>
"("SRP-RSA-3DES-EDE-CBC-SHA", "SSLv3", "Kx=SRP", \
"Au=RSA", "Enc=3DES(168)", "Mac=SHA1")<br> <br>
"SRP-3DES-EDE-CBC-SHA SSLv3 Kx=SRP Au=SRP Enc=3DES(168) Mac=SHA1<br>
"("SRP-3DES-EDE-CBC-SHA", "SSLv3", "Kx=SRP", \
"Au=SRP", "Enc=3DES(168)", "Mac=SHA1")<br> <br>
"EDH-RSA-DES-CBC3-SHA SSLv3 Kx=DH Au=RSA Enc=3DES(168) Mac=SHA1<br>
"("EDH-RSA-DES-CBC3-SHA", "SSLv3", "Kx=DH", \
"Au=RSA", "Enc=3DES(168)", "Mac=SHA1")<br> <br>
"EDH-DSS-DES-CBC3-SHA SSLv3 Kx=DH Au=DSS Enc=3DES(168) Mac=SHA1<br>
"("EDH-DSS-DES-CBC3-SHA", "SSLv3", "Kx=DH", \
"Au=DSS", "Enc=3DES(168)", "Mac=SHA1")<br> <br>
"ECDH-RSA-DES-CBC3-SHA SSLv3 Kx=ECDH/RSA Au=ECDH Enc=3DES(168) Mac=SHA1<br>
"("ECDH-RSA-DES-CBC3-SHA", "SSLv3", "Kx=ECDH/RSA", \
"Au=ECDH", "Enc=3DES(168)", "Mac=SHA1")<br> <br>
"ECDH-ECDSA-DES-CBC3-SHA SSLv3 Kx=ECDH/ECDSA Au=ECDH Enc=3DES(168) Mac=SHA1<br>
"("ECDH-ECDSA-DES-CBC3-SHA", "SSLv3", "Kx=ECDH/ECDSA", \
"Au=ECDH", "Enc=3DES(168)", "Mac=SHA1")<br> <br>
"DES-CBC3-SHA SSLv3 Kx=RSA Au=RSA Enc=3DES(168) Mac=SHA1<br>
"("DES-CBC3-SHA", "SSLv3", "Kx=RSA", "Au=RSA", \
"Enc=3DES(168)", "Mac=SHA1")<br> <br>
"PSK-3DES-EDE-CBC-SHA SSLv3 Kx=PSK Au=PSK Enc=3DES(168) Mac=SHA1<br>
"("PSK-3DES-EDE-CBC-SHA", "SSLv3", "Kx=PSK", \
"Au=PSK", "Enc=3DES(168)", "Mac=SHA1")<br> <br>
"EDH-RSA-DES-CBC-SHA SSLv3 Kx=DH Au=RSA Enc=DES(56) Mac=SHA1<br>
"("EDH-RSA-DES-CBC-SHA", "SSLv3", "Kx=DH", \
"Au=RSA", "Enc=DES(56)", "Mac=SHA1")<br> <br>
"EDH-DSS-DES-CBC-SHA SSLv3 Kx=DH Au=DSS Enc=DES(56) Mac=SHA1<br>
"("EDH-DSS-DES-CBC-SHA", "SSLv3", "Kx=DH", \
"Au=DSS", "Enc=DES(56)", "Mac=SHA1")<br> <br>
"DES-CBC-SHA SSLv3 Kx=RSA Au=RSA Enc=DES(56) Mac=SHA1<br>
"("DES-CBC-SHA", "SSLv3", "Kx=RSA", "Au=RSA", \
"Enc=DES(56)", "Mac=SHA1")<br> <br>
"EXP-EDH-RSA-DES-CBC-SHA SSLv3 Kx=DH(512) Au=RSA Enc=DES(40) Mac=SHA1 export<br>
"("EXP-EDH-RSA-DES-CBC-SHA", "SSLv3", "Kx=DH(512)", \
"Au=RSA", "Enc=DES(40)", "Mac=SHA1", "export")<br> <br>
"EXP-EDH-DSS-DES-CBC-SHA SSLv3 Kx=DH(512) Au=DSS Enc=DES(40) Mac=SHA1 export<br>
"("EXP-EDH-DSS-DES-CBC-SHA", "SSLv3", "Kx=DH(512)", \
"Au=DSS", "Enc=DES(40)", "Mac=SHA1", "export")<br> <br>
"EXP-DES-CBC-SHA SSLv3 Kx=RSA(512) Au=RSA Enc=DES(40) Mac=SHA1 \
export<br> "("EXP-DES-CBC-SHA", "SSLv3", "Kx=RSA(512)", \
"Au=RSA", "Enc=DES(40)", "Mac=SHA1", "export")<br> <br>
"EXP-RC2-CBC-MD5 SSLv3 Kx=RSA(512) Au=RSA Enc=RC2(40) Mac=MD5 \
export<br> "("EXP-RC2-CBC-MD5", "SSLv3", "Kx=RSA(512)", \
"Au=RSA", "Enc=RC2(40)", "Mac=MD5", "export")<br> <br>
"EXP-RC4-MD5 SSLv3 Kx=RSA(512) Au=RSA Enc=RC4(40) Mac=MD5 \
export<br> "("EXP-RC4-MD5", "SSLv3", "Kx=RSA(512)", \
"Au=RSA", "Enc=RC4(40)", "Mac=MD5", "export")<br> <br>
<br>
</blockquote></div><br></div></div></div>
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic