Merge pull request #15 from Whissi/update-ciphers

Update ciphers
2024-09-18 08:46:25 +00:00 · 2018-01-14 15:41:28 +01:00 · 2018-01-14 15:41:28 +01:00 · 430d57af39
commit 430d57af39
parent af19c316ca f5a73a61bc
2 changed files with 426 additions and 359 deletions
--- a/ssl/ssl.enums
+++ b/ssl/ssl.enums
@ -648,6 +648,21 @@ ClientKeyExchange(16)
    CipherSuite TLS_ECDHE_ECDSA_WITH_AES_256_CCM              = { 0xC0,0xAD };
    CipherSuite TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8            = { 0xC0,0xAE };
    CipherSuite TLS_ECDHE_ECDSA_WITH_AES_256_CCM_8            = { 0xC0,0xAF };
+    CipherSuite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256   = { 0xCC,0xA8 };
+    CipherSuite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 = { 0xCC,0xA9 };
+    CipherSuite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256     = { 0xCC,0xAA };
+    CipherSuite TLS_PSK_WITH_CHACHA20_POLY1305_SHA256         = { 0xCC,0xAB };
+    CipherSuite TLS_ECDHE_PSK_WITH_CHACHA20_POLY1305_SHA256   = { 0xCC,0xAC };
+    CipherSuite TLS_DHE_PSK_WITH_CHACHA20_POLY1305_SHA256     = { 0xCC,0xAD };
+    CipherSuite TLS_RSA_PSK_WITH_CHACHA20_POLY1305_SHA256     = { 0xCC,0xAE };
+    CipherSuite TLS_FALLBACK_SCSV                             = { 0x56,0x00 };
+    // New PSK ciphers introduced by TLS 1.3
+    // https://tlswg.github.io/tls13-spec/#rfc.appendix.A.4
+    CipherSuite TLS_AES_128_GCM_SHA256                        = { 0x13,0x01 };
+    CipherSuite TLS_AES_256_GCM_SHA384                        = { 0x13,0x02 };
+    CipherSuite TLS_CHACHA20_POLY1305_SHA256                  = { 0x13,0x03 };
+    CipherSuite TLS_AES_128_CCM_SHA256                        = { 0x13,0x04 };
+    CipherSuite TLS_AES_128_CCM_8_SHA256                      = { 0x13,0x05 };
    // DRAFT-IETF-TLS-ECC
    CipherSuite TLS_ECDH_ECDSA_WITH_NULL_SHA                  = { 0x00,0x47 };
    CipherSuite TLS_ECDH_ECDSA_WITH_RC4_128_SHA               = { 0x00,0x48 };
--- a/ssl/ssl.enums.c
+++ b/ssl/ssl.enums.c
@ -1083,6 +1083,30 @@ decoder cipher_suite_decoder[]={
 		255,
 		"TLS_EMPTY_RENEGOTIATION_INFO_SCSV",
 		0	},
+	{
+		4865,
+		"TLS_AES_128_GCM_SHA256",
+		0	},
+	{
+		4866,
+		"TLS_AES_256_GCM_SHA384",
+		0	},
+	{
+		4867,
+		"TLS_CHACHA20_POLY1305_SHA256",
+		0	},
+	{
+		4868,
+		"TLS_AES_128_CCM_SHA256",
+		0	},
+	{
+		4869,
+		"TLS_AES_128_CCM_8_SHA256",
+		0	},
+	{
+		22016,
+		"TLS_FALLBACK_SCSV",
+		0	},
 	{
 		49153,
 		"TLS_ECDH_ECDSA_WITH_NULL_SHA",
@ -1783,6 +1807,34 @@ decoder cipher_suite_decoder[]={
 		49327,
 		"TLS_ECDHE_ECDSA_WITH_AES_256_CCM_8",
 		0	},
+	{
+		52392,
+		"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256",
+		0	},
+	{
+		52393,
+		"TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256",
+		0	},
+	{
+		52394,
+		"TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256",
+		0	},
+	{
+		52395,
+		"TLS_PSK_WITH_CHACHA20_POLY1305_SHA256",
+		0	},
+	{
+		52396,
+		"TLS_ECDHE_PSK_WITH_CHACHA20_POLY1305_SHA256",
+		0	},
+	{
+		52397,
+		"TLS_DHE_PSK_WITH_CHACHA20_POLY1305_SHA256",
+		0	},
+	{
+		52398,
+		"TLS_RSA_PSK_WITH_CHACHA20_POLY1305_SHA256",
+		0	},
        // DRAFT-IETF-TLS-ECC
 	{
 		71,