Closed
Bug 1349278
Opened 8 years ago
Closed 8 years ago
SSL cipher enumeration
Categories
(JSS Graveyard :: Library, defect)
Tracking
(Not tracked)
RESOLVED
FIXED
4.4.1
People
(Reporter: edewata, Assigned: edewata)
Details
Attachments
(1 file, 1 obsolete file)
|
12.24 KB,
patch
|
elio.maldonado.batiz
:
review+
elio.maldonado.batiz
:
review+
|
Details | Diff | Splinter Review |
User Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0
Build ID: 20170316213829
Steps to reproduce:
Bug #118646 added SSLSocket.getImplementedCipherSuites() which returns cipher IDs. However, currently applications are still responsible for the conversion between cipher IDs and human-readable strings, causing duplicate effort and maintenance issue.
For example, see the cipherMap in the following files:
* https://github.com/dogtagpki/tomcatjss/blob/master/src/org/apache/tomcat/util/net/jss/JSSSocketFactory.java
* https://github.com/dogtagpki/tomcatjss/blob/master/src/org/apache/tomcat/util/net/jss/JSSSocketFactory.java
Expected results:
JSS should provide an enumeration class that contains all known SSL ciphers and provide a mechanism to convert between cipher ID and enumeration constant. The enumeration class itself will provide a built-in mechanism to convert between enumeration constant and human-readable string.
|
Assignee | |
Comment 1•8 years ago
|
||
Sorry, the second example should have been:
* https://github.com/dogtagpki/pki/blob/master/base/util/src/com/netscape/cmsutil/crypto/CryptoUtil.java
|
|
Assignee | |
Comment 2•8 years ago
|
||
The cipher constants in SSLSocket have been copied and converted
into SSLCipher enumeration. The enumeration provides a mechanism
to convert between cipher ID and cipher constant, also a flag to
indicate whether it is an ECC cipher.
Attachment #8849637 -
Flags: review?(emaldona)
|
||
Updated•8 years ago
|
Assignee: glenbeasley → edewata
|
|
||
Updated•8 years ago
|
Target Milestone: --- → 4.4.1
|
|
Assignee | |
Comment 3•8 years ago
|
||
The new patch is identical. I only added the bug URL into the patch description.
Attachment #8849637 -
Attachment is obsolete: true
Attachment #8849637 -
Flags: review?(emaldona)
Attachment #8849655 -
Flags: review?(emaldona)
|
|
||
Comment 4•8 years ago
|
||
Comment on attachment 8849655 [details] [diff] [review]
0001-Added-SSLCipher-enumeration.patch
Review of attachment 8849655 [details] [diff] [review]:
-----------------------------------------------------------------
This is a subset of what NSS has but I think that's fine. JSS does not yet support all of the NSS supported cipher suites and that's what Bug 1321594 is for.
Attachment #8849655 -
Flags: review+
|
|
||
Updated•8 years ago
|
Attachment #8849655 -
Flags: review?(emaldona) → review+
|
|
||
Comment 5•8 years ago
|
||
Status: UNCONFIRMED → RESOLVED
Closed: 8 years ago
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•