Wireshark-bugs: [Wireshark-bugs] [Bug 6688] Add decryption for TLS 1.2

Date Prev · Date Next · Thread Prev · Thread Next
Date Index · Thread Index · Other Months · All Mailing Lists
From: bugzilla-daemon@xxxxxxxxxxxxx
Date: Fri, 13 Sep 2013 09:12:40 +0000

Comment # 4 on bug 6688 from 
By comparing the Wireshark cipher list to the TLS Cipher Suite Registry[1], I
can note the following:

- Camellia is not yet supported (patch available).
- GCM is not supported (libgcrypt 1.5.3 does not support it)
- 6 SEED suites are not yet supported (libgcrypt supports it)
- 75 PSK suites are not yet supported
- 8 suites using CCM mode are not supported
- 60 suites using GCM mode are not supported
- 9 suites using SRP are not supported
- 14 suites using KRB5 are not supported
- 20 suites using ARIA cipher are not supported (not supported by libgcrypt)
- 32 ECDH(E) suites
- NULL cipher

The following cipher suites are not supported (besides Camellia):

0 TLS_NULL_WITH_NULL_NULL
30 TLS_KRB5_WITH_DES_CBC_SHA
31 TLS_KRB5_WITH_3DES_EDE_CBC_SHA
32 TLS_KRB5_WITH_RC4_128_SHA
33 TLS_KRB5_WITH_IDEA_CBC_SHA
34 TLS_KRB5_WITH_DES_CBC_MD5
35 TLS_KRB5_WITH_3DES_EDE_CBC_MD5
36 TLS_KRB5_WITH_RC4_128_MD5
37 TLS_KRB5_WITH_IDEA_CBC_MD5
38 TLS_KRB5_EXPORT_WITH_DES_CBC_40_SHA
39 TLS_KRB5_EXPORT_WITH_RC2_CBC_40_SHA
40 TLS_KRB5_EXPORT_WITH_RC4_40_SHA
41 TLS_KRB5_EXPORT_WITH_DES_CBC_40_MD5
42 TLS_KRB5_EXPORT_WITH_RC2_CBC_40_MD5
43 TLS_KRB5_EXPORT_WITH_RC4_40_MD5
44 TLS_PSK_WITH_NULL_SHA
45 TLS_DHE_PSK_WITH_NULL_SHA
46 TLS_RSA_PSK_WITH_NULL_SHA
138 TLS_PSK_WITH_RC4_128_SHA
142 TLS_DHE_PSK_WITH_RC4_128_SHA
143 TLS_DHE_PSK_WITH_3DES_EDE_CBC_SHA
144 TLS_DHE_PSK_WITH_AES_128_CBC_SHA
145 TLS_DHE_PSK_WITH_AES_256_CBC_SHA
146 TLS_RSA_PSK_WITH_RC4_128_SHA
147 TLS_RSA_PSK_WITH_3DES_EDE_CBC_SHA
148 TLS_RSA_PSK_WITH_AES_128_CBC_SHA
149 TLS_RSA_PSK_WITH_AES_256_CBC_SHA
150 TLS_RSA_WITH_SEED_CBC_SHA
151 TLS_DH_DSS_WITH_SEED_CBC_SHA
152 TLS_DH_RSA_WITH_SEED_CBC_SHA
153 TLS_DHE_DSS_WITH_SEED_CBC_SHA
154 TLS_DHE_RSA_WITH_SEED_CBC_SHA
155 TLS_DH_anon_WITH_SEED_CBC_SHA
156 TLS_RSA_WITH_AES_128_GCM_SHA256
157 TLS_RSA_WITH_AES_256_GCM_SHA384
158 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
159 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
160 TLS_DH_RSA_WITH_AES_128_GCM_SHA256
161 TLS_DH_RSA_WITH_AES_256_GCM_SHA384
162 TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
163 TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
164 TLS_DH_DSS_WITH_AES_128_GCM_SHA256
165 TLS_DH_DSS_WITH_AES_256_GCM_SHA384
166 TLS_DH_anon_WITH_AES_128_GCM_SHA256
167 TLS_DH_anon_WITH_AES_256_GCM_SHA384
168 TLS_PSK_WITH_AES_128_GCM_SHA256
169 TLS_PSK_WITH_AES_256_GCM_SHA384
170 TLS_DHE_PSK_WITH_AES_128_GCM_SHA256
171 TLS_DHE_PSK_WITH_AES_256_GCM_SHA384
172 TLS_RSA_PSK_WITH_AES_128_GCM_SHA256
173 TLS_RSA_PSK_WITH_AES_256_GCM_SHA384
174 TLS_PSK_WITH_AES_128_CBC_SHA256
175 TLS_PSK_WITH_AES_256_CBC_SHA384
176 TLS_PSK_WITH_NULL_SHA256
177 TLS_PSK_WITH_NULL_SHA384
178 TLS_DHE_PSK_WITH_AES_128_CBC_SHA256
179 TLS_DHE_PSK_WITH_AES_256_CBC_SHA384
180 TLS_DHE_PSK_WITH_NULL_SHA256
181 TLS_DHE_PSK_WITH_NULL_SHA384
182 TLS_RSA_PSK_WITH_AES_128_CBC_SHA256
183 TLS_RSA_PSK_WITH_AES_256_CBC_SHA384
184 TLS_RSA_PSK_WITH_NULL_SHA256
185 TLS_RSA_PSK_WITH_NULL_SHA384
49153 TLS_ECDH_ECDSA_WITH_NULL_SHA
49154 TLS_ECDH_ECDSA_WITH_RC4_128_SHA
49155 TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
49156 TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
49157 TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
49158 TLS_ECDHE_ECDSA_WITH_NULL_SHA
49159 TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
49160 TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
49161 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
49162 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
49163 TLS_ECDH_RSA_WITH_NULL_SHA
49164 TLS_ECDH_RSA_WITH_RC4_128_SHA
49165 TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
49166 TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
49167 TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
49168 TLS_ECDHE_RSA_WITH_NULL_SHA
49170 TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
49171 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
49172 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
49173 TLS_ECDH_anon_WITH_NULL_SHA
49174 TLS_ECDH_anon_WITH_RC4_128_SHA
49175 TLS_ECDH_anon_WITH_3DES_EDE_CBC_SHA
49176 TLS_ECDH_anon_WITH_AES_128_CBC_SHA
49177 TLS_ECDH_anon_WITH_AES_256_CBC_SHA
49178 TLS_SRP_SHA_WITH_3DES_EDE_CBC_SHA
49179 TLS_SRP_SHA_RSA_WITH_3DES_EDE_CBC_SHA
49180 TLS_SRP_SHA_DSS_WITH_3DES_EDE_CBC_SHA
49181 TLS_SRP_SHA_WITH_AES_128_CBC_SHA
49182 TLS_SRP_SHA_RSA_WITH_AES_128_CBC_SHA
49183 TLS_SRP_SHA_DSS_WITH_AES_128_CBC_SHA
49184 TLS_SRP_SHA_WITH_AES_256_CBC_SHA
49185 TLS_SRP_SHA_RSA_WITH_AES_256_CBC_SHA
49186 TLS_SRP_SHA_DSS_WITH_AES_256_CBC_SHA
49195 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
49196 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
49197 TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256
49198 TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384
49199 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
49200 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
49201 TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256
49202 TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384
49203 TLS_ECDHE_PSK_WITH_RC4_128_SHA
49204 TLS_ECDHE_PSK_WITH_3DES_EDE_CBC_SHA
49205 TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA
49206 TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA
49207 TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256
49208 TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA384
49209 TLS_ECDHE_PSK_WITH_NULL_SHA
49210 TLS_ECDHE_PSK_WITH_NULL_SHA256
49211 TLS_ECDHE_PSK_WITH_NULL_SHA384
49212 TLS_RSA_WITH_ARIA_128_CBC_SHA256
49213 TLS_RSA_WITH_ARIA_256_CBC_SHA384
49214 TLS_DH_DSS_WITH_ARIA_128_CBC_SHA256
49215 TLS_DH_DSS_WITH_ARIA_256_CBC_SHA384
49216 TLS_DH_RSA_WITH_ARIA_128_CBC_SHA256
49217 TLS_DH_RSA_WITH_ARIA_256_CBC_SHA384
49218 TLS_DHE_DSS_WITH_ARIA_128_CBC_SHA256
49219 TLS_DHE_DSS_WITH_ARIA_256_CBC_SHA384
49220 TLS_DHE_RSA_WITH_ARIA_128_CBC_SHA256
49221 TLS_DHE_RSA_WITH_ARIA_256_CBC_SHA384
49222 TLS_DH_anon_WITH_ARIA_128_CBC_SHA256
49223 TLS_DH_anon_WITH_ARIA_256_CBC_SHA384
49224 TLS_ECDHE_ECDSA_WITH_ARIA_128_CBC_SHA256
49225 TLS_ECDHE_ECDSA_WITH_ARIA_256_CBC_SHA384
49226 TLS_ECDH_ECDSA_WITH_ARIA_128_CBC_SHA256
49227 TLS_ECDH_ECDSA_WITH_ARIA_256_CBC_SHA384
49228 TLS_ECDHE_RSA_WITH_ARIA_128_CBC_SHA256
49229 TLS_ECDHE_RSA_WITH_ARIA_256_CBC_SHA384
49230 TLS_ECDH_RSA_WITH_ARIA_128_CBC_SHA256
49231 TLS_ECDH_RSA_WITH_ARIA_256_CBC_SHA384
49232 TLS_RSA_WITH_ARIA_128_GCM_SHA256
49233 TLS_RSA_WITH_ARIA_256_GCM_SHA384
49234 TLS_DHE_RSA_WITH_ARIA_128_GCM_SHA256
49235 TLS_DHE_RSA_WITH_ARIA_256_GCM_SHA384
49236 TLS_DH_RSA_WITH_ARIA_128_GCM_SHA256
49237 TLS_DH_RSA_WITH_ARIA_256_GCM_SHA384
49238 TLS_DHE_DSS_WITH_ARIA_128_GCM_SHA256
49239 TLS_DHE_DSS_WITH_ARIA_256_GCM_SHA384
49240 TLS_DH_DSS_WITH_ARIA_128_GCM_SHA256
49241 TLS_DH_DSS_WITH_ARIA_256_GCM_SHA384
49242 TLS_DH_anon_WITH_ARIA_128_GCM_SHA256
49243 TLS_DH_anon_WITH_ARIA_256_GCM_SHA384
49244 TLS_ECDHE_ECDSA_WITH_ARIA_128_GCM_SHA256
49245 TLS_ECDHE_ECDSA_WITH_ARIA_256_GCM_SHA384
49246 TLS_ECDH_ECDSA_WITH_ARIA_128_GCM_SHA256
49247 TLS_ECDH_ECDSA_WITH_ARIA_256_GCM_SHA384
49248 TLS_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256
49249 TLS_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384
49250 TLS_ECDH_RSA_WITH_ARIA_128_GCM_SHA256
49251 TLS_ECDH_RSA_WITH_ARIA_256_GCM_SHA384
49252 TLS_PSK_WITH_ARIA_128_CBC_SHA256
49253 TLS_PSK_WITH_ARIA_256_CBC_SHA384
49254 TLS_DHE_PSK_WITH_ARIA_128_CBC_SHA256
49255 TLS_DHE_PSK_WITH_ARIA_256_CBC_SHA384
49256 TLS_RSA_PSK_WITH_ARIA_128_CBC_SHA256
49257 TLS_RSA_PSK_WITH_ARIA_256_CBC_SHA384
49258 TLS_PSK_WITH_ARIA_128_GCM_SHA256
49259 TLS_PSK_WITH_ARIA_256_GCM_SHA384
49260 TLS_DHE_PSK_WITH_ARIA_128_GCM_SHA256
49261 TLS_DHE_PSK_WITH_ARIA_256_GCM_SHA384
49262 TLS_RSA_PSK_WITH_ARIA_128_GCM_SHA256
49263 TLS_RSA_PSK_WITH_ARIA_256_GCM_SHA384
49264 TLS_ECDHE_PSK_WITH_ARIA_128_CBC_SHA256
49265 TLS_ECDHE_PSK_WITH_ARIA_256_CBC_SHA384
49266 TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256
49267 TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384
49268 TLS_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256
49269 TLS_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384
49270 TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
49271 TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384
49272 TLS_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256
49273 TLS_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384
49274 TLS_RSA_WITH_CAMELLIA_128_GCM_SHA256
49275 TLS_RSA_WITH_CAMELLIA_256_GCM_SHA384
49276 TLS_DHE_RSA_WITH_CAMELLIA_128_GCM_SHA256
49277 TLS_DHE_RSA_WITH_CAMELLIA_256_GCM_SHA384
49278 TLS_DH_RSA_WITH_CAMELLIA_128_GCM_SHA256
49279 TLS_DH_RSA_WITH_CAMELLIA_256_GCM_SHA384
49280 TLS_DHE_DSS_WITH_CAMELLIA_128_GCM_SHA256
49281 TLS_DHE_DSS_WITH_CAMELLIA_256_GCM_SHA384
49282 TLS_DH_DSS_WITH_CAMELLIA_128_GCM_SHA256
49283 TLS_DH_DSS_WITH_CAMELLIA_256_GCM_SHA384
49284 TLS_DH_anon_WITH_CAMELLIA_128_GCM_SHA256
49285 TLS_DH_anon_WITH_CAMELLIA_256_GCM_SHA384
49286 TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_GCM_SHA256
49287 TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384
49288 TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256
49289 TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384
49290 TLS_ECDHE_RSA_WITH_CAMELLIA_128_GCM_SHA256
49291 TLS_ECDHE_RSA_WITH_CAMELLIA_256_GCM_SHA384
49292 TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256
49293 TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384
49294 TLS_PSK_WITH_CAMELLIA_128_GCM_SHA256
49295 TLS_PSK_WITH_CAMELLIA_256_GCM_SHA384
49296 TLS_DHE_PSK_WITH_CAMELLIA_128_GCM_SHA256
49297 TLS_DHE_PSK_WITH_CAMELLIA_256_GCM_SHA384
49298 TLS_RSA_PSK_WITH_CAMELLIA_128_GCM_SHA256
49299 TLS_RSA_PSK_WITH_CAMELLIA_256_GCM_SHA384
49300 TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256
49301 TLS_PSK_WITH_CAMELLIA_256_CBC_SHA384
49302 TLS_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256
49303 TLS_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384
49304 TLS_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256
49305 TLS_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384
49306 TLS_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256
49307 TLS_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384
49308 TLS_RSA_WITH_AES_128_CCM
49309 TLS_RSA_WITH_AES_256_CCM
49310 TLS_DHE_RSA_WITH_AES_128_CCM
49311 TLS_DHE_RSA_WITH_AES_256_CCM
49312 TLS_RSA_WITH_AES_128_CCM_8
49313 TLS_RSA_WITH_AES_256_CCM_8
49314 TLS_DHE_RSA_WITH_AES_128_CCM_8
49315 TLS_DHE_RSA_WITH_AES_256_CCM_8
49316 TLS_PSK_WITH_AES_128_CCM
49317 TLS_PSK_WITH_AES_256_CCM
49318 TLS_DHE_PSK_WITH_AES_128_CCM
49319 TLS_DHE_PSK_WITH_AES_256_CCM
49320 TLS_PSK_WITH_AES_128_CCM_8
49321 TLS_PSK_WITH_AES_256_CCM_8
49322 TLS_PSK_DHE_WITH_AES_128_CCM_8
49323 TLS_PSK_DHE_WITH_AES_256_CCM_8

 [1]:
http://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-4

You are receiving this mail because:
  • You are watching all bug changes.