svn commit: r1694704 - in /tomcat/trunk/java/org/apache/tomcat/util/net/jsse/openssl: Cipher.java KeyExchange.java

Fri, 07 Aug 2015 08:52:38 -0700 

Author: markt
Date: Fri Aug  7 15:51:29 2015
New Revision: 1694704

URL: http://svn.apache.org/r1694704
Log:
OpenSSl trunk added support for RFC 4785 ciphers

Modified:
    tomcat/trunk/java/org/apache/tomcat/util/net/jsse/openssl/Cipher.java
    tomcat/trunk/java/org/apache/tomcat/util/net/jsse/openssl/KeyExchange.java

Modified: tomcat/trunk/java/org/apache/tomcat/util/net/jsse/openssl/Cipher.java
URL: 
http://svn.apache.org/viewvc/tomcat/trunk/java/org/apache/tomcat/util/net/jsse/openssl/Cipher.java?rev=1694704&r1=1694703&r2=1694704&view=diff
==============================================================================
--- tomcat/trunk/java/org/apache/tomcat/util/net/jsse/openssl/Cipher.java 
(original)
+++ tomcat/trunk/java/org/apache/tomcat/util/net/jsse/openssl/Cipher.java Fri 
Aug  7 15:51:29 2015
@@ -731,17 +731,53 @@ public enum Cipher {
             128
     ),*/
 
-    /* PSK cipher suites from RFC 4785
-     * Unsupported by both Java and OpenSSL.
+    /* PSK cipher suites from RFC 4785 */
+    // Unsupported by Java
+
     // Cipher 2C
-    TLS_PSK_WITH_NULL_SHA
+    TLS_PSK_WITH_NULL_SHA(
+            0x002c,
+            "PSK-NULL-SHA",
+            KeyExchange.PSK,
+            Authentication.PSK,
+            Encryption.eNULL,
+            MessageDigest.SHA1,
+            Protocol.TLSv1,
+            false,
+            EncryptionLevel.STRONG_NONE,
+            true,
+            0,
+            0),
 
     // Cipher 2D
-    TLS_DHE_PSK_WITH_NULL_SHA
+    TLS_DHE_PSK_WITH_NULL_SHA(
+            0x002d,
+            "DHE-PSK-NULL-SHA",
+            KeyExchange.DHEPSK,
+            Authentication.PSK,
+            Encryption.eNULL,
+            MessageDigest.SHA1,
+            Protocol.TLSv1,
+            false,
+            EncryptionLevel.STRONG_NONE,
+            true,
+            0,
+            0),
 
     // Cipher 2E
-    TLS_RSA_PSK_WITH_NULL_SHA
-    */
+    TLS_RSA_PSK_WITH_NULL_SHA(
+            0x002e,
+            "RSA-PSK-NULL-SHA",
+            KeyExchange.RSAPSK,
+            Authentication.RSA,
+            Encryption.eNULL,
+            MessageDigest.SHA1,
+            Protocol.TLSv1,
+            false,
+            EncryptionLevel.STRONG_NONE,
+            true,
+            0,
+            0),
 
     /* New AES ciphersuites */
     // Cipher 2F

Modified: 
tomcat/trunk/java/org/apache/tomcat/util/net/jsse/openssl/KeyExchange.java
URL: 
http://svn.apache.org/viewvc/tomcat/trunk/java/org/apache/tomcat/util/net/jsse/openssl/KeyExchange.java?rev=1694704&r1=1694703&r2=1694704&view=diff
==============================================================================
--- tomcat/trunk/java/org/apache/tomcat/util/net/jsse/openssl/KeyExchange.java 
(original)
+++ tomcat/trunk/java/org/apache/tomcat/util/net/jsse/openssl/KeyExchange.java 
Fri Aug  7 15:51:29 2015
@@ -29,5 +29,8 @@ enum KeyExchange {
     ECDHr /* SSL_kECDHr - ECDH cert, RSA CA cert */,
     ECDHe /* SSL_eECDHe - ECDH cert, ECDSA CA cert */,
     GOST  /* SSL_kGOST  - GOST key exchange */,
-    SRP   /* SSL_kSRP   - SRP */;
+    SRP   /* SSL_kSRP   - SRP */,
+    RSAPSK,
+    ECDHEPSK,
+    DHEPSK;
 }



---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

Reply via email to