From 1efb3db19fe1b79fae3a4b461286c512a4fcffa9 Mon Sep 17 00:00:00 2001 From: David Cantu Date: Wed, 24 Jul 2019 14:08:22 -0700 Subject: [PATCH 1/3] Adding documentation for new CipherSuitesPolicy, SslStream.NegotiatedCipherSuite and TlsCipherSuite. --- .../CipherSuitesPolicy.xml | 32 +- xml/System.Net.Security/SslStream.xml | 14 +- xml/System.Net.Security/TlsCipherSuite.xml | 685 +++++++++--------- 3 files changed, 383 insertions(+), 348 deletions(-) diff --git a/xml/System.Net.Security/CipherSuitesPolicy.xml b/xml/System.Net.Security/CipherSuitesPolicy.xml index 13bea8950c1..d161873ce0d 100644 --- a/xml/System.Net.Security/CipherSuitesPolicy.xml +++ b/xml/System.Net.Security/CipherSuitesPolicy.xml @@ -39,9 +39,19 @@ - To be added. - To be added. - To be added. + The collection of cipher suites allowed in this policy for negotiation. + Initializes a cipher suite policy that can be used on a client or server authentication. + + [!NOTE] +> Defining a chipher suite policy on authentication will prevent the OS of the ability to decide which are the best cipher suites to negotiate with and will need of your attention to manually check and update this code. It is strongly recommended to hold off the use of this property and rely on your constantly updated OS policy. + +## Remarks +Unlike the OS underlying SSL/TLS implementation, the order of the elements in `allowedCipherSuites` does not determine their priority in the client-server negotiation. It is required to use OSX or Unix-based systems with OpenSSL 1.1.1 in order to initialize an instance of this class. + + ]]> + + Platform does not meet the requirements to setup a policy. @@ -65,9 +75,19 @@ System.Collections.Generic.IEnumerable<System.Net.Security.TlsCipherSuite> - To be added. - To be added. - To be added. + Gets the collection of cipher suites passed through , which are the ones allowed to negotiate with on a client or server authentication. + The collection of cipher suites allowed in this policy for negotiation. + + + [!NOTE] +> Defining a chipher suite policy on authentication will prevent the OS of the ability to decide which are the best cipher suites to negotiate with and will need of your attention to manually check and update this code. It is strongly recommended to hold off the use of this property and rely on your constantly updated OS policy. + +## Remarks +Unlike the OS underlying SSL/TLS implementation, the order of the elements in this property does not determine their priority in the client-server negotiation. It is required to use OSX or Unix-based systems with OpenSSL 1.1.1 in order to initialize an instance of this class. + + ]]> + diff --git a/xml/System.Net.Security/SslStream.xml b/xml/System.Net.Security/SslStream.xml index a79974a04cc..4a2809e0577 100644 --- a/xml/System.Net.Security/SslStream.xml +++ b/xml/System.Net.Security/SslStream.xml @@ -3453,9 +3453,17 @@ Authentication has not occurred. System.Net.Security.TlsCipherSuite - To be added. - To be added. - To be added. + Gets the cipher suite resolved to use by this . + The cipher suite resolved to use by this . + + or . + + ]]> + + The property was accessed before the completion of the authentication process or the authentication process failed. diff --git a/xml/System.Net.Security/TlsCipherSuite.xml b/xml/System.Net.Security/TlsCipherSuite.xml index 3094d6d6d3c..33ec429e140 100644 --- a/xml/System.Net.Security/TlsCipherSuite.xml +++ b/xml/System.Net.Security/TlsCipherSuite.xml @@ -18,8 +18,15 @@ - To be added. - To be added. + Specifies the possible cipher suite values to negotiate with in a client-server authentication that uses the TLS/SSL protocols. + + + @@ -39,7 +46,7 @@ 4869 - To be added. + Represents the TLS_AES_128_CCM_8_SHA256 cipher suite. @@ -59,7 +66,7 @@ 4868 - To be added. + Represents the TLS_AES_128_CCM_SHA256 cipher suite. @@ -79,7 +86,7 @@ 4865 - To be added. + Represents the TLS_AES_128_GCM_SHA256 cipher suite. @@ -99,7 +106,7 @@ 4866 - To be added. + Represents the TLS_AES_256_GCM_SHA384 cipher suite. @@ -119,7 +126,7 @@ 4867 - To be added. + Represents the TLS_CHACHA20_POLY1305_SHA256 cipher suite. @@ -139,7 +146,7 @@ 25 - To be added. + Represents the TLS_DH_anon_EXPORT_WITH_DES40_CBC_SHA cipher suite. @@ -159,7 +166,7 @@ 23 - To be added. + Represents the TLS_DH_anon_EXPORT_WITH_RC4_40_MD5 cipher suite. @@ -179,7 +186,7 @@ 27 - To be added. + Represents the TLS_DH_anon_WITH_3DES_EDE_CBC_SHA cipher suite. @@ -199,7 +206,7 @@ 52 - To be added. + Represents the TLS_DH_anon_WITH_AES_128_CBC_SHA cipher suite. @@ -219,7 +226,7 @@ 108 - To be added. + Represents the TLS_DH_anon_WITH_AES_128_CBC_SHA256 cipher suite. @@ -239,7 +246,7 @@ 166 - To be added. + Represents the TLS_DH_anon_WITH_AES_128_GCM_SHA256 cipher suite. @@ -259,7 +266,7 @@ 58 - To be added. + Represents the TLS_DH_anon_WITH_AES_256_CBC_SHA cipher suite. @@ -279,7 +286,7 @@ 109 - To be added. + Represents the TLS_DH_anon_WITH_AES_256_CBC_SHA256 cipher suite. @@ -299,7 +306,7 @@ 167 - To be added. + Represents the TLS_DH_anon_WITH_AES_256_GCM_SHA384 cipher suite. @@ -319,7 +326,7 @@ 49222 - To be added. + Represents the TLS_DH_anon_WITH_ARIA_128_CBC_SHA256 cipher suite. @@ -339,7 +346,7 @@ 49242 - To be added. + Represents the TLS_DH_anon_WITH_ARIA_128_GCM_SHA256 cipher suite. @@ -359,7 +366,7 @@ 49223 - To be added. + Represents the TLS_DH_anon_WITH_ARIA_256_CBC_SHA384 cipher suite. @@ -379,7 +386,7 @@ 49243 - To be added. + Represents the TLS_DH_anon_WITH_ARIA_256_GCM_SHA384 cipher suite. @@ -399,7 +406,7 @@ 70 - To be added. + Represents the TLS_DH_anon_WITH_CAMELLIA_128_CBC_SHA cipher suite. @@ -419,7 +426,7 @@ 191 - To be added. + Represents the TLS_DH_anon_WITH_CAMELLIA_128_CBC_SHA256 cipher suite. @@ -439,7 +446,7 @@ 49284 - To be added. + Represents the TLS_DH_anon_WITH_CAMELLIA_128_GCM_SHA256 cipher suite. @@ -459,7 +466,7 @@ 137 - To be added. + Represents the TLS_DH_anon_WITH_CAMELLIA_256_CBC_SHA cipher suite. @@ -479,7 +486,7 @@ 197 - To be added. + Represents the TLS_DH_anon_WITH_CAMELLIA_256_CBC_SHA256 cipher suite. @@ -499,7 +506,7 @@ 49285 - To be added. + Represents the TLS_DH_anon_WITH_CAMELLIA_256_GCM_SHA384 cipher suite. @@ -519,7 +526,7 @@ 26 - To be added. + Represents the TLS_DH_anon_WITH_DES_CBC_SHA cipher suite. @@ -539,7 +546,7 @@ 24 - To be added. + Represents the TLS_DH_anon_WITH_RC4_128_MD5 cipher suite. @@ -559,7 +566,7 @@ 155 - To be added. + Represents the TLS_DH_anon_WITH_SEED_CBC_SHA cipher suite. @@ -579,7 +586,7 @@ 11 - To be added. + Represents the TLS_DH_DSS_EXPORT_WITH_DES40_CBC_SHA cipher suite. @@ -599,7 +606,7 @@ 13 - To be added. + Represents the TLS_DH_DSS_WITH_3DES_EDE_CBC_SHA cipher suite. @@ -619,7 +626,7 @@ 48 - To be added. + Represents the TLS_DH_DSS_WITH_AES_128_CBC_SHA cipher suite. @@ -639,7 +646,7 @@ 62 - To be added. + Represents the TLS_DH_DSS_WITH_AES_128_CBC_SHA256 cipher suite. @@ -659,7 +666,7 @@ 164 - To be added. + Represents the TLS_DH_DSS_WITH_AES_128_GCM_SHA256 cipher suite. @@ -679,7 +686,7 @@ 54 - To be added. + Represents the TLS_DH_DSS_WITH_AES_256_CBC_SHA cipher suite. @@ -699,7 +706,7 @@ 104 - To be added. + Represents the TLS_DH_DSS_WITH_AES_256_CBC_SHA256 cipher suite. @@ -719,7 +726,7 @@ 165 - To be added. + Represents the TLS_DH_DSS_WITH_AES_256_GCM_SHA384 cipher suite. @@ -739,7 +746,7 @@ 49214 - To be added. + Represents the TLS_DH_DSS_WITH_ARIA_128_CBC_SHA256 cipher suite. @@ -759,7 +766,7 @@ 49240 - To be added. + Represents the TLS_DH_DSS_WITH_ARIA_128_GCM_SHA256 cipher suite. @@ -779,7 +786,7 @@ 49215 - To be added. + Represents the TLS_DH_DSS_WITH_ARIA_256_CBC_SHA384 cipher suite. @@ -799,7 +806,7 @@ 49241 - To be added. + Represents the TLS_DH_DSS_WITH_ARIA_256_GCM_SHA384 cipher suite. @@ -819,7 +826,7 @@ 66 - To be added. + Represents the TLS_DH_DSS_WITH_CAMELLIA_128_CBC_SHA cipher suite. @@ -839,7 +846,7 @@ 187 - To be added. + Represents the TLS_DH_DSS_WITH_CAMELLIA_128_CBC_SHA256 cipher suite. @@ -859,7 +866,7 @@ 49282 - To be added. + Represents the TLS_DH_DSS_WITH_CAMELLIA_128_GCM_SHA256 cipher suite. @@ -879,7 +886,7 @@ 133 - To be added. + Represents the TLS_DH_DSS_WITH_CAMELLIA_256_CBC_SHA cipher suite. @@ -899,7 +906,7 @@ 193 - To be added. + Represents the TLS_DH_DSS_WITH_CAMELLIA_256_CBC_SHA256 cipher suite. @@ -919,7 +926,7 @@ 49283 - To be added. + Represents the TLS_DH_DSS_WITH_CAMELLIA_256_GCM_SHA384 cipher suite. @@ -939,7 +946,7 @@ 12 - To be added. + Represents the TLS_DH_DSS_WITH_DES_CBC_SHA cipher suite. @@ -959,7 +966,7 @@ 151 - To be added. + Represents the TLS_DH_DSS_WITH_SEED_CBC_SHA cipher suite. @@ -979,7 +986,7 @@ 14 - To be added. + Represents the TLS_DH_RSA_EXPORT_WITH_DES40_CBC_SHA cipher suite. @@ -999,7 +1006,7 @@ 16 - To be added. + Represents the TLS_DH_RSA_WITH_3DES_EDE_CBC_SHA cipher suite. @@ -1019,7 +1026,7 @@ 49 - To be added. + Represents the TLS_DH_RSA_WITH_AES_128_CBC_SHA cipher suite. @@ -1039,7 +1046,7 @@ 63 - To be added. + Represents the TLS_DH_RSA_WITH_AES_128_CBC_SHA256 cipher suite. @@ -1059,7 +1066,7 @@ 160 - To be added. + Represents the TLS_DH_RSA_WITH_AES_128_GCM_SHA256 cipher suite. @@ -1079,7 +1086,7 @@ 55 - To be added. + Represents the TLS_DH_RSA_WITH_AES_256_CBC_SHA cipher suite. @@ -1099,7 +1106,7 @@ 105 - To be added. + Represents the TLS_DH_RSA_WITH_AES_256_CBC_SHA256 cipher suite. @@ -1119,7 +1126,7 @@ 161 - To be added. + Represents the TLS_DH_RSA_WITH_AES_256_GCM_SHA384 cipher suite. @@ -1139,7 +1146,7 @@ 49216 - To be added. + Represents the TLS_DH_RSA_WITH_ARIA_128_CBC_SHA256 cipher suite. @@ -1159,7 +1166,7 @@ 49236 - To be added. + Represents the TLS_DH_RSA_WITH_ARIA_128_GCM_SHA256 cipher suite. @@ -1179,7 +1186,7 @@ 49217 - To be added. + Represents the TLS_DH_RSA_WITH_ARIA_256_CBC_SHA384 cipher suite. @@ -1199,7 +1206,7 @@ 49237 - To be added. + Represents the TLS_DH_RSA_WITH_ARIA_256_GCM_SHA384 cipher suite. @@ -1219,7 +1226,7 @@ 67 - To be added. + Represents the TLS_DH_RSA_WITH_CAMELLIA_128_CBC_SHA cipher suite. @@ -1239,7 +1246,7 @@ 188 - To be added. + Represents the TLS_DH_RSA_WITH_CAMELLIA_128_CBC_SHA256 cipher suite. @@ -1259,7 +1266,7 @@ 49278 - To be added. + Represents the TLS_DH_RSA_WITH_CAMELLIA_128_GCM_SHA256 cipher suite. @@ -1279,7 +1286,7 @@ 134 - To be added. + Represents the TLS_DH_RSA_WITH_CAMELLIA_256_CBC_SHA cipher suite. @@ -1299,7 +1306,7 @@ 194 - To be added. + Represents the TLS_DH_RSA_WITH_CAMELLIA_256_CBC_SHA256 cipher suite. @@ -1319,7 +1326,7 @@ 49279 - To be added. + Represents the TLS_DH_RSA_WITH_CAMELLIA_256_GCM_SHA384 cipher suite. @@ -1339,7 +1346,7 @@ 15 - To be added. + Represents the TLS_DH_RSA_WITH_DES_CBC_SHA cipher suite. @@ -1359,7 +1366,7 @@ 152 - To be added. + Represents the TLS_DH_RSA_WITH_SEED_CBC_SHA cipher suite. @@ -1379,7 +1386,7 @@ 17 - To be added. + Represents the TLS_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA cipher suite. @@ -1399,7 +1406,7 @@ 19 - To be added. + Represents the TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA cipher suite. @@ -1419,7 +1426,7 @@ 50 - To be added. + Represents the TLS_DHE_DSS_WITH_AES_128_CBC_SHA cipher suite. @@ -1439,7 +1446,7 @@ 64 - To be added. + Represents the TLS_DHE_DSS_WITH_AES_128_CBC_SHA256 cipher suite. @@ -1459,7 +1466,7 @@ 162 - To be added. + Represents the TLS_DHE_DSS_WITH_AES_128_GCM_SHA256 cipher suite. @@ -1479,7 +1486,7 @@ 56 - To be added. + Represents the TLS_DHE_DSS_WITH_AES_256_CBC_SHA cipher suite. @@ -1499,7 +1506,7 @@ 106 - To be added. + Represents the TLS_DHE_DSS_WITH_AES_256_CBC_SHA256 cipher suite. @@ -1519,7 +1526,7 @@ 163 - To be added. + Represents the TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 cipher suite. @@ -1539,7 +1546,7 @@ 49218 - To be added. + Represents the TLS_DHE_DSS_WITH_ARIA_128_CBC_SHA256 cipher suite. @@ -1559,7 +1566,7 @@ 49238 - To be added. + Represents the TLS_DHE_DSS_WITH_ARIA_128_GCM_SHA256 cipher suite. @@ -1579,7 +1586,7 @@ 49219 - To be added. + Represents the TLS_DHE_DSS_WITH_ARIA_256_CBC_SHA384 cipher suite. @@ -1599,7 +1606,7 @@ 49239 - To be added. + Represents the TLS_DHE_DSS_WITH_ARIA_256_GCM_SHA384 cipher suite. @@ -1619,7 +1626,7 @@ 68 - To be added. + Represents the TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA cipher suite. @@ -1639,7 +1646,7 @@ 189 - To be added. + Represents the TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA256 cipher suite. @@ -1659,7 +1666,7 @@ 49280 - To be added. + Represents the TLS_DHE_DSS_WITH_CAMELLIA_128_GCM_SHA256 cipher suite. @@ -1679,7 +1686,7 @@ 135 - To be added. + Represents the TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA cipher suite. @@ -1699,7 +1706,7 @@ 195 - To be added. + Represents the TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA256 cipher suite. @@ -1719,7 +1726,7 @@ 49281 - To be added. + Represents the TLS_DHE_DSS_WITH_CAMELLIA_256_GCM_SHA384 cipher suite. @@ -1739,7 +1746,7 @@ 18 - To be added. + Represents the TLS_DHE_DSS_WITH_DES_CBC_SHA cipher suite. @@ -1759,7 +1766,7 @@ 153 - To be added. + Represents the TLS_DHE_DSS_WITH_SEED_CBC_SHA cipher suite. @@ -1779,7 +1786,7 @@ 143 - To be added. + Represents the TLS_DHE_PSK_WITH_3DES_EDE_CBC_SHA cipher suite. @@ -1799,7 +1806,7 @@ 144 - To be added. + Represents the TLS_DHE_PSK_WITH_AES_128_CBC_SHA cipher suite. @@ -1819,7 +1826,7 @@ 178 - To be added. + Represents the TLS_DHE_PSK_WITH_AES_128_CBC_SHA256 cipher suite. @@ -1839,7 +1846,7 @@ 49318 - To be added. + Represents the TLS_DHE_PSK_WITH_AES_128_CCM cipher suite. @@ -1859,7 +1866,7 @@ 170 - To be added. + Represents the TLS_DHE_PSK_WITH_AES_128_GCM_SHA256 cipher suite. @@ -1879,7 +1886,7 @@ 145 - To be added. + Represents the TLS_DHE_PSK_WITH_AES_256_CBC_SHA cipher suite. @@ -1899,7 +1906,7 @@ 179 - To be added. + Represents the TLS_DHE_PSK_WITH_AES_256_CBC_SHA384 cipher suite. @@ -1919,7 +1926,7 @@ 49319 - To be added. + Represents the TLS_DHE_PSK_WITH_AES_256_CCM cipher suite. @@ -1939,7 +1946,7 @@ 171 - To be added. + Represents the TLS_DHE_PSK_WITH_AES_256_GCM_SHA384 cipher suite. @@ -1959,7 +1966,7 @@ 49254 - To be added. + Represents the TLS_DHE_PSK_WITH_ARIA_128_CBC_SHA256 cipher suite. @@ -1979,7 +1986,7 @@ 49260 - To be added. + Represents the TLS_DHE_PSK_WITH_ARIA_128_GCM_SHA256 cipher suite. @@ -1999,7 +2006,7 @@ 49255 - To be added. + Represents the TLS_DHE_PSK_WITH_ARIA_256_CBC_SHA384 cipher suite. @@ -2019,7 +2026,7 @@ 49261 - To be added. + Represents the TLS_DHE_PSK_WITH_ARIA_256_GCM_SHA384 cipher suite. @@ -2039,7 +2046,7 @@ 49302 - To be added. + Represents the TLS_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256 cipher suite. @@ -2059,7 +2066,7 @@ 49296 - To be added. + Represents the TLS_DHE_PSK_WITH_CAMELLIA_128_GCM_SHA256 cipher suite. @@ -2079,7 +2086,7 @@ 49303 - To be added. + Represents the TLS_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384 cipher suite. @@ -2099,7 +2106,7 @@ 49297 - To be added. + Represents the TLS_DHE_PSK_WITH_CAMELLIA_256_GCM_SHA384 cipher suite. @@ -2119,7 +2126,7 @@ 52397 - To be added. + Represents the TLS_DHE_PSK_WITH_CHACHA20_POLY1305_SHA256 cipher suite. @@ -2139,7 +2146,7 @@ 45 - To be added. + Represents the TLS_DHE_PSK_WITH_NULL_SHA cipher suite. @@ -2159,7 +2166,7 @@ 180 - To be added. + Represents the TLS_DHE_PSK_WITH_NULL_SHA256 cipher suite. @@ -2179,7 +2186,7 @@ 181 - To be added. + Represents the TLS_DHE_PSK_WITH_NULL_SHA384 cipher suite. @@ -2199,7 +2206,7 @@ 142 - To be added. + Represents the TLS_DHE_PSK_WITH_RC4_128_SHA cipher suite. @@ -2219,7 +2226,7 @@ 20 - To be added. + Represents the TLS_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA cipher suite. @@ -2239,7 +2246,7 @@ 22 - To be added. + Represents the TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA cipher suite. @@ -2259,7 +2266,7 @@ 51 - To be added. + Represents the TLS_DHE_RSA_WITH_AES_128_CBC_SHA cipher suite. @@ -2279,7 +2286,7 @@ 103 - To be added. + Represents the TLS_DHE_RSA_WITH_AES_128_CBC_SHA256 cipher suite. @@ -2299,7 +2306,7 @@ 49310 - To be added. + Represents the TLS_DHE_RSA_WITH_AES_128_CCM cipher suite. @@ -2319,7 +2326,7 @@ 49314 - To be added. + Represents the TLS_DHE_RSA_WITH_AES_128_CCM_8 cipher suite. @@ -2339,7 +2346,7 @@ 158 - To be added. + Represents the TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 cipher suite. @@ -2359,7 +2366,7 @@ 57 - To be added. + Represents the TLS_DHE_RSA_WITH_AES_256_CBC_SHA cipher suite. @@ -2379,7 +2386,7 @@ 107 - To be added. + Represents the TLS_DHE_RSA_WITH_AES_256_CBC_SHA256 cipher suite. @@ -2399,7 +2406,7 @@ 49311 - To be added. + Represents the TLS_DHE_RSA_WITH_AES_256_CCM cipher suite. @@ -2419,7 +2426,7 @@ 49315 - To be added. + Represents the TLS_DHE_RSA_WITH_AES_256_CCM_8 cipher suite. @@ -2439,7 +2446,7 @@ 159 - To be added. + Represents the TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 cipher suite. @@ -2459,7 +2466,7 @@ 49220 - To be added. + Represents the TLS_DHE_RSA_WITH_ARIA_128_CBC_SHA256 cipher suite. @@ -2479,7 +2486,7 @@ 49234 - To be added. + Represents the TLS_DHE_RSA_WITH_ARIA_128_GCM_SHA256 cipher suite. @@ -2499,7 +2506,7 @@ 49221 - To be added. + Represents the TLS_DHE_RSA_WITH_ARIA_256_CBC_SHA384 cipher suite. @@ -2519,7 +2526,7 @@ 49235 - To be added. + Represents the TLS_DHE_RSA_WITH_ARIA_256_GCM_SHA384 cipher suite. @@ -2539,7 +2546,7 @@ 69 - To be added. + Represents the TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA cipher suite. @@ -2559,7 +2566,7 @@ 190 - To be added. + Represents the TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 cipher suite. @@ -2579,7 +2586,7 @@ 49276 - To be added. + Represents the TLS_DHE_RSA_WITH_CAMELLIA_128_GCM_SHA256 cipher suite. @@ -2599,7 +2606,7 @@ 136 - To be added. + Represents the TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA cipher suite. @@ -2619,7 +2626,7 @@ 196 - To be added. + Represents the TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256 cipher suite. @@ -2639,7 +2646,7 @@ 49277 - To be added. + Represents the TLS_DHE_RSA_WITH_CAMELLIA_256_GCM_SHA384 cipher suite. @@ -2659,7 +2666,7 @@ 52394 - To be added. + Represents the TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 cipher suite. @@ -2679,7 +2686,7 @@ 21 - To be added. + Represents the TLS_DHE_RSA_WITH_DES_CBC_SHA cipher suite. @@ -2699,7 +2706,7 @@ 154 - To be added. + Represents the TLS_DHE_RSA_WITH_SEED_CBC_SHA cipher suite. @@ -2719,7 +2726,7 @@ 49330 - To be added. + Represents the TLS_ECCPWD_WITH_AES_128_CCM_SHA256 cipher suite. @@ -2739,7 +2746,7 @@ 49328 - To be added. + Represents the TLS_ECCPWD_WITH_AES_128_GCM_SHA256 cipher suite. @@ -2759,7 +2766,7 @@ 49331 - To be added. + Represents the TLS_ECCPWD_WITH_AES_256_CCM_SHA384 cipher suite. @@ -2779,7 +2786,7 @@ 49329 - To be added. + Represents the TLS_ECCPWD_WITH_AES_256_GCM_SHA384 cipher suite. @@ -2799,7 +2806,7 @@ 49175 - To be added. + Represents the TLS_ECDH_anon_WITH_3DES_EDE_CBC_SHA cipher suite. @@ -2819,7 +2826,7 @@ 49176 - To be added. + Represents the TLS_ECDH_anon_WITH_AES_128_CBC_SHA cipher suite. @@ -2839,7 +2846,7 @@ 49177 - To be added. + Represents the TLS_ECDH_anon_WITH_AES_256_CBC_SHA cipher suite. @@ -2859,7 +2866,7 @@ 49173 - To be added. + Represents the TLS_ECDH_anon_WITH_NULL_SHA cipher suite. @@ -2879,7 +2886,7 @@ 49174 - To be added. + Represents the TLS_ECDH_anon_WITH_RC4_128_SHA cipher suite. @@ -2899,7 +2906,7 @@ 49155 - To be added. + Represents the TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA cipher suite. @@ -2919,7 +2926,7 @@ 49156 - To be added. + Represents the TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA cipher suite. @@ -2939,7 +2946,7 @@ 49189 - To be added. + Represents the TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256 cipher suite. @@ -2959,7 +2966,7 @@ 49197 - To be added. + Represents the TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256 cipher suite. @@ -2979,7 +2986,7 @@ 49157 - To be added. + Represents the TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA cipher suite. @@ -2999,7 +3006,7 @@ 49190 - To be added. + Represents the TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384 cipher suite. @@ -3019,7 +3026,7 @@ 49198 - To be added. + Represents the TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384 cipher suite. @@ -3039,7 +3046,7 @@ 49226 - To be added. + Represents the TLS_ECDH_ECDSA_WITH_ARIA_128_CBC_SHA256 cipher suite. @@ -3059,7 +3066,7 @@ 49246 - To be added. + Represents the TLS_ECDH_ECDSA_WITH_ARIA_128_GCM_SHA256 cipher suite. @@ -3079,7 +3086,7 @@ 49227 - To be added. + Represents the TLS_ECDH_ECDSA_WITH_ARIA_256_CBC_SHA384 cipher suite. @@ -3099,7 +3106,7 @@ 49247 - To be added. + Represents the TLS_ECDH_ECDSA_WITH_ARIA_256_GCM_SHA384 cipher suite. @@ -3119,7 +3126,7 @@ 49268 - To be added. + Represents the TLS_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256 cipher suite. @@ -3139,7 +3146,7 @@ 49288 - To be added. + Represents the TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256 cipher suite. @@ -3159,7 +3166,7 @@ 49269 - To be added. + Represents the TLS_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384 cipher suite. @@ -3179,7 +3186,7 @@ 49289 - To be added. + Represents the TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384 cipher suite. @@ -3199,7 +3206,7 @@ 49153 - To be added. + Represents the TLS_ECDH_ECDSA_WITH_NULL_SHA cipher suite. @@ -3219,7 +3226,7 @@ 49154 - To be added. + Represents the TLS_ECDH_ECDSA_WITH_RC4_128_SHA cipher suite. @@ -3239,7 +3246,7 @@ 49165 - To be added. + Represents the TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA cipher suite. @@ -3259,7 +3266,7 @@ 49166 - To be added. + Represents the TLS_ECDH_RSA_WITH_AES_128_CBC_SHA cipher suite. @@ -3279,7 +3286,7 @@ 49193 - To be added. + Represents the TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256 cipher suite. @@ -3299,7 +3306,7 @@ 49201 - To be added. + Represents the TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256 cipher suite. @@ -3319,7 +3326,7 @@ 49167 - To be added. + Represents the TLS_ECDH_RSA_WITH_AES_256_CBC_SHA cipher suite. @@ -3339,7 +3346,7 @@ 49194 - To be added. + Represents the TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384 cipher suite. @@ -3359,7 +3366,7 @@ 49202 - To be added. + Represents the TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384 cipher suite. @@ -3379,7 +3386,7 @@ 49230 - To be added. + Represents the TLS_ECDH_RSA_WITH_ARIA_128_CBC_SHA256 cipher suite. @@ -3399,7 +3406,7 @@ 49250 - To be added. + Represents the TLS_ECDH_RSA_WITH_ARIA_128_GCM_SHA256 cipher suite. @@ -3419,7 +3426,7 @@ 49231 - To be added. + Represents the TLS_ECDH_RSA_WITH_ARIA_256_CBC_SHA384 cipher suite. @@ -3439,7 +3446,7 @@ 49251 - To be added. + Represents the TLS_ECDH_RSA_WITH_ARIA_256_GCM_SHA384 cipher suite. @@ -3459,7 +3466,7 @@ 49272 - To be added. + Represents the TLS_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256 cipher suite. @@ -3479,7 +3486,7 @@ 49292 - To be added. + Represents the TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256 cipher suite. @@ -3499,7 +3506,7 @@ 49273 - To be added. + Represents the TLS_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384 cipher suite. @@ -3519,7 +3526,7 @@ 49293 - To be added. + Represents the TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384 cipher suite. @@ -3539,7 +3546,7 @@ 49163 - To be added. + Represents the TLS_ECDH_RSA_WITH_NULL_SHA cipher suite. @@ -3559,7 +3566,7 @@ 49164 - To be added. + Represents the TLS_ECDH_RSA_WITH_RC4_128_SHA cipher suite. @@ -3579,7 +3586,7 @@ 49160 - To be added. + Represents the TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA cipher suite. @@ -3599,7 +3606,7 @@ 49161 - To be added. + Represents the TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA cipher suite. @@ -3619,7 +3626,7 @@ 49187 - To be added. + Represents the TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 cipher suite. @@ -3639,7 +3646,7 @@ 49324 - To be added. + Represents the TLS_ECDHE_ECDSA_WITH_AES_128_CCM cipher suite. @@ -3659,7 +3666,7 @@ 49326 - To be added. + Represents the TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8 cipher suite. @@ -3679,7 +3686,7 @@ 49195 - To be added. + Represents the TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 cipher suite. @@ -3699,7 +3706,7 @@ 49162 - To be added. + Represents the TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA cipher suite. @@ -3719,7 +3726,7 @@ 49188 - To be added. + Represents the TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 cipher suite. @@ -3739,7 +3746,7 @@ 49325 - To be added. + Represents the TLS_ECDHE_ECDSA_WITH_AES_256_CCM cipher suite. @@ -3759,7 +3766,7 @@ 49327 - To be added. + Represents the TLS_ECDHE_ECDSA_WITH_AES_256_CCM_8 cipher suite. @@ -3779,7 +3786,7 @@ 49196 - To be added. + Represents the TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 cipher suite. @@ -3799,7 +3806,7 @@ 49224 - To be added. + Represents the TLS_ECDHE_ECDSA_WITH_ARIA_128_CBC_SHA256 cipher suite. @@ -3819,7 +3826,7 @@ 49244 - To be added. + Represents the TLS_ECDHE_ECDSA_WITH_ARIA_128_GCM_SHA256 cipher suite. @@ -3839,7 +3846,7 @@ 49225 - To be added. + Represents the TLS_ECDHE_ECDSA_WITH_ARIA_256_CBC_SHA384 cipher suite. @@ -3859,7 +3866,7 @@ 49245 - To be added. + Represents the TLS_ECDHE_ECDSA_WITH_ARIA_256_GCM_SHA384 cipher suite. @@ -3879,7 +3886,7 @@ 49266 - To be added. + Represents the TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256 cipher suite. @@ -3899,7 +3906,7 @@ 49286 - To be added. + Represents the TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_GCM_SHA256 cipher suite. @@ -3919,7 +3926,7 @@ 49267 - To be added. + Represents the TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384 cipher suite. @@ -3939,7 +3946,7 @@ 49287 - To be added. + Represents the TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384 cipher suite. @@ -3959,7 +3966,7 @@ 52393 - To be added. + Represents the TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 cipher suite. @@ -3979,7 +3986,7 @@ 49158 - To be added. + Represents the TLS_ECDHE_ECDSA_WITH_NULL_SHA cipher suite. @@ -3999,7 +4006,7 @@ 49159 - To be added. + Represents the TLS_ECDHE_ECDSA_WITH_RC4_128_SHA cipher suite. @@ -4019,7 +4026,7 @@ 49204 - To be added. + Represents the TLS_ECDHE_PSK_WITH_3DES_EDE_CBC_SHA cipher suite. @@ -4039,7 +4046,7 @@ 49205 - To be added. + Represents the TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA cipher suite. @@ -4059,7 +4066,7 @@ 49207 - To be added. + Represents the TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256 cipher suite. @@ -4079,7 +4086,7 @@ 53251 - To be added. + Represents the TLS_ECDHE_PSK_WITH_AES_128_CCM_8_SHA256 cipher suite. @@ -4099,7 +4106,7 @@ 53253 - To be added. + Represents the TLS_ECDHE_PSK_WITH_AES_128_CCM_SHA256 cipher suite. @@ -4119,7 +4126,7 @@ 53249 - To be added. + Represents the TLS_ECDHE_PSK_WITH_AES_128_GCM_SHA256 cipher suite. @@ -4139,7 +4146,7 @@ 49206 - To be added. + Represents the TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA cipher suite. @@ -4159,7 +4166,7 @@ 49208 - To be added. + Represents the TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA384 cipher suite. @@ -4179,7 +4186,7 @@ 53250 - To be added. + Represents the TLS_ECDHE_PSK_WITH_AES_256_GCM_SHA384 cipher suite. @@ -4199,7 +4206,7 @@ 49264 - To be added. + Represents the TLS_ECDHE_PSK_WITH_ARIA_128_CBC_SHA256 cipher suite. @@ -4219,7 +4226,7 @@ 49265 - To be added. + Represents the TLS_ECDHE_PSK_WITH_ARIA_256_CBC_SHA384 cipher suite. @@ -4239,7 +4246,7 @@ 49306 - To be added. + Represents the TLS_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256 cipher suite. @@ -4259,7 +4266,7 @@ 49307 - To be added. + Represents the TLS_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384 cipher suite. @@ -4279,7 +4286,7 @@ 52396 - To be added. + Represents the TLS_ECDHE_PSK_WITH_CHACHA20_POLY1305_SHA256 cipher suite. @@ -4299,7 +4306,7 @@ 49209 - To be added. + Represents the TLS_ECDHE_PSK_WITH_NULL_SHA cipher suite. @@ -4319,7 +4326,7 @@ 49210 - To be added. + Represents the TLS_ECDHE_PSK_WITH_NULL_SHA256 cipher suite. @@ -4339,7 +4346,7 @@ 49211 - To be added. + Represents the TLS_ECDHE_PSK_WITH_NULL_SHA384 cipher suite. @@ -4359,7 +4366,7 @@ 49203 - To be added. + Represents the TLS_ECDHE_PSK_WITH_RC4_128_SHA cipher suite. @@ -4379,7 +4386,7 @@ 49170 - To be added. + Represents the TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA cipher suite. @@ -4399,7 +4406,7 @@ 49171 - To be added. + Represents the TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA cipher suite. @@ -4419,7 +4426,7 @@ 49191 - To be added. + Represents the TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 cipher suite. @@ -4439,7 +4446,7 @@ 49199 - To be added. + Represents the TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 cipher suite. @@ -4459,7 +4466,7 @@ 49172 - To be added. + Represents the TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA cipher suite. @@ -4479,7 +4486,7 @@ 49192 - To be added. + Represents the TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 cipher suite. @@ -4499,7 +4506,7 @@ 49200 - To be added. + Represents the TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 cipher suite. @@ -4519,7 +4526,7 @@ 49228 - To be added. + Represents the TLS_ECDHE_RSA_WITH_ARIA_128_CBC_SHA256 cipher suite. @@ -4539,7 +4546,7 @@ 49248 - To be added. + Represents the TLS_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256 cipher suite. @@ -4559,7 +4566,7 @@ 49229 - To be added. + Represents the TLS_ECDHE_RSA_WITH_ARIA_256_CBC_SHA384 cipher suite. @@ -4579,7 +4586,7 @@ 49249 - To be added. + Represents the TLS_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384 cipher suite. @@ -4599,7 +4606,7 @@ 49270 - To be added. + Represents the TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 cipher suite. @@ -4619,7 +4626,7 @@ 49290 - To be added. + Represents the TLS_ECDHE_RSA_WITH_CAMELLIA_128_GCM_SHA256 cipher suite. @@ -4639,7 +4646,7 @@ 49271 - To be added. + Represents the TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384 cipher suite. @@ -4659,7 +4666,7 @@ 49291 - To be added. + Represents the TLS_ECDHE_RSA_WITH_CAMELLIA_256_GCM_SHA384 cipher suite. @@ -4679,7 +4686,7 @@ 52392 - To be added. + Represents the TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 cipher suite. @@ -4699,7 +4706,7 @@ 49168 - To be added. + Represents the TLS_ECDHE_RSA_WITH_NULL_SHA cipher suite. @@ -4719,7 +4726,7 @@ 49169 - To be added. + Represents the TLS_ECDHE_RSA_WITH_RC4_128_SHA cipher suite. @@ -4739,7 +4746,7 @@ 41 - To be added. + Represents the TLS_KRB5_EXPORT_WITH_DES_CBC_40_MD5 cipher suite. @@ -4759,7 +4766,7 @@ 38 - To be added. + Represents the TLS_KRB5_EXPORT_WITH_DES_CBC_40_SHA cipher suite. @@ -4779,7 +4786,7 @@ 42 - To be added. + Represents the TLS_KRB5_EXPORT_WITH_RC2_CBC_40_MD5 cipher suite. @@ -4799,7 +4806,7 @@ 39 - To be added. + Represents the TLS_KRB5_EXPORT_WITH_RC2_CBC_40_SHA cipher suite. @@ -4819,7 +4826,7 @@ 43 - To be added. + Represents the TLS_KRB5_EXPORT_WITH_RC4_40_MD5 cipher suite. @@ -4839,7 +4846,7 @@ 40 - To be added. + Represents the TLS_KRB5_EXPORT_WITH_RC4_40_SHA cipher suite. @@ -4859,7 +4866,7 @@ 35 - To be added. + Represents the TLS_KRB5_WITH_3DES_EDE_CBC_MD5 cipher suite. @@ -4879,7 +4886,7 @@ 31 - To be added. + Represents the TLS_KRB5_WITH_3DES_EDE_CBC_SHA cipher suite. @@ -4899,7 +4906,7 @@ 34 - To be added. + Represents the TLS_KRB5_WITH_DES_CBC_MD5 cipher suite. @@ -4919,7 +4926,7 @@ 30 - To be added. + Represents the TLS_KRB5_WITH_DES_CBC_SHA cipher suite. @@ -4939,7 +4946,7 @@ 37 - To be added. + Represents the TLS_KRB5_WITH_IDEA_CBC_MD5 cipher suite. @@ -4959,7 +4966,7 @@ 33 - To be added. + Represents the TLS_KRB5_WITH_IDEA_CBC_SHA cipher suite. @@ -4979,7 +4986,7 @@ 36 - To be added. + Represents the TLS_KRB5_WITH_RC4_128_MD5 cipher suite. @@ -4999,7 +5006,7 @@ 32 - To be added. + Represents the TLS_KRB5_WITH_RC4_128_SHA cipher suite. @@ -5019,7 +5026,7 @@ 0 - To be added. + Represents the TLS_NULL_WITH_NULL_NULL cipher suite; this is the default value. @@ -5039,7 +5046,7 @@ 49322 - To be added. + Represents the TLS_PSK_DHE_WITH_AES_128_CCM_8 cipher suite. @@ -5059,7 +5066,7 @@ 49323 - To be added. + Represents the TLS_PSK_DHE_WITH_AES_256_CCM_8 cipher suite. @@ -5079,7 +5086,7 @@ 139 - To be added. + Represents the TLS_PSK_WITH_3DES_EDE_CBC_SHA cipher suite. @@ -5099,7 +5106,7 @@ 140 - To be added. + Represents the TLS_PSK_WITH_AES_128_CBC_SHA cipher suite. @@ -5119,7 +5126,7 @@ 174 - To be added. + Represents the TLS_PSK_WITH_AES_128_CBC_SHA256 cipher suite. @@ -5139,7 +5146,7 @@ 49316 - To be added. + Represents the TLS_PSK_WITH_AES_128_CCM cipher suite. @@ -5159,7 +5166,7 @@ 49320 - To be added. + Represents the TLS_PSK_WITH_AES_128_CCM_8 cipher suite. @@ -5179,7 +5186,7 @@ 168 - To be added. + Represents the TLS_PSK_WITH_AES_128_GCM_SHA256 cipher suite. @@ -5199,7 +5206,7 @@ 141 - To be added. + Represents the TLS_PSK_WITH_AES_256_CBC_SHA cipher suite. @@ -5219,7 +5226,7 @@ 175 - To be added. + Represents the TLS_PSK_WITH_AES_256_CBC_SHA384 cipher suite. @@ -5239,7 +5246,7 @@ 49317 - To be added. + Represents the TLS_PSK_WITH_AES_256_CCM cipher suite. @@ -5259,7 +5266,7 @@ 49321 - To be added. + Represents the TLS_PSK_WITH_AES_256_CCM_8 cipher suite. @@ -5279,7 +5286,7 @@ 169 - To be added. + Represents the TLS_PSK_WITH_AES_256_GCM_SHA384 cipher suite. @@ -5299,7 +5306,7 @@ 49252 - To be added. + Represents the TLS_PSK_WITH_ARIA_128_CBC_SHA256 cipher suite. @@ -5319,7 +5326,7 @@ 49258 - To be added. + Represents the TLS_PSK_WITH_ARIA_128_GCM_SHA256 cipher suite. @@ -5339,7 +5346,7 @@ 49253 - To be added. + Represents the TLS_PSK_WITH_ARIA_256_CBC_SHA384 cipher suite. @@ -5359,7 +5366,7 @@ 49259 - To be added. + Represents the TLS_PSK_WITH_ARIA_256_GCM_SHA384 cipher suite. @@ -5379,7 +5386,7 @@ 49300 - To be added. + Represents the TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256 cipher suite. @@ -5399,7 +5406,7 @@ 49294 - To be added. + Represents the TLS_PSK_WITH_CAMELLIA_128_GCM_SHA256 cipher suite. @@ -5419,7 +5426,7 @@ 49301 - To be added. + Represents the TLS_PSK_WITH_CAMELLIA_256_CBC_SHA384 cipher suite. @@ -5439,7 +5446,7 @@ 49295 - To be added. + Represents the TLS_PSK_WITH_CAMELLIA_256_GCM_SHA384 cipher suite. @@ -5459,7 +5466,7 @@ 52395 - To be added. + Represents the TLS_PSK_WITH_CHACHA20_POLY1305_SHA256 cipher suite. @@ -5479,7 +5486,7 @@ 44 - To be added. + Represents the TLS_PSK_WITH_NULL_SHA cipher suite. @@ -5499,7 +5506,7 @@ 176 - To be added. + Represents the TLS_PSK_WITH_NULL_SHA256 cipher suite. @@ -5519,7 +5526,7 @@ 177 - To be added. + Represents the TLS_PSK_WITH_NULL_SHA384 cipher suite. @@ -5539,7 +5546,7 @@ 138 - To be added. + Represents the TLS_PSK_WITH_RC4_128_SHA cipher suite. @@ -5559,7 +5566,7 @@ 8 - To be added. + Represents the TLS_RSA_EXPORT_WITH_DES40_CBC_SHA cipher suite. @@ -5579,7 +5586,7 @@ 6 - To be added. + Represents the TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5 cipher suite. @@ -5599,7 +5606,7 @@ 3 - To be added. + Represents the TLS_RSA_EXPORT_WITH_RC4_40_MD5 cipher suite. @@ -5619,7 +5626,7 @@ 147 - To be added. + Represents the TLS_RSA_PSK_WITH_3DES_EDE_CBC_SHA cipher suite. @@ -5639,7 +5646,7 @@ 148 - To be added. + Represents the TLS_RSA_PSK_WITH_AES_128_CBC_SHA cipher suite. @@ -5659,7 +5666,7 @@ 182 - To be added. + Represents the TLS_RSA_PSK_WITH_AES_128_CBC_SHA256 cipher suite. @@ -5679,7 +5686,7 @@ 172 - To be added. + Represents the TLS_RSA_PSK_WITH_AES_128_GCM_SHA256 cipher suite. @@ -5699,7 +5706,7 @@ 149 - To be added. + Represents the TLS_RSA_PSK_WITH_AES_256_CBC_SHA cipher suite. @@ -5719,7 +5726,7 @@ 183 - To be added. + Represents the TLS_RSA_PSK_WITH_AES_256_CBC_SHA384 cipher suite. @@ -5739,7 +5746,7 @@ 173 - To be added. + Represents the TLS_RSA_PSK_WITH_AES_256_GCM_SHA384 cipher suite. @@ -5759,7 +5766,7 @@ 49256 - To be added. + Represents the TLS_RSA_PSK_WITH_ARIA_128_CBC_SHA256 cipher suite. @@ -5779,7 +5786,7 @@ 49262 - To be added. + Represents the TLS_RSA_PSK_WITH_ARIA_128_GCM_SHA256 cipher suite. @@ -5799,7 +5806,7 @@ 49257 - To be added. + Represents the TLS_RSA_PSK_WITH_ARIA_256_CBC_SHA384 cipher suite. @@ -5819,7 +5826,7 @@ 49263 - To be added. + Represents the TLS_RSA_PSK_WITH_ARIA_256_GCM_SHA384 cipher suite. @@ -5839,7 +5846,7 @@ 49304 - To be added. + Represents the TLS_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256 cipher suite. @@ -5859,7 +5866,7 @@ 49298 - To be added. + Represents the TLS_RSA_PSK_WITH_CAMELLIA_128_GCM_SHA256 cipher suite. @@ -5879,7 +5886,7 @@ 49305 - To be added. + Represents the TLS_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384 cipher suite. @@ -5899,7 +5906,7 @@ 49299 - To be added. + Represents the TLS_RSA_PSK_WITH_CAMELLIA_256_GCM_SHA384 cipher suite. @@ -5919,7 +5926,7 @@ 52398 - To be added. + Represents the TLS_RSA_PSK_WITH_CHACHA20_POLY1305_SHA256 cipher suite. @@ -5939,7 +5946,7 @@ 46 - To be added. + Represents the TLS_RSA_PSK_WITH_NULL_SHA cipher suite. @@ -5959,7 +5966,7 @@ 184 - To be added. + Represents the TLS_RSA_PSK_WITH_NULL_SHA256 cipher suite. @@ -5979,7 +5986,7 @@ 185 - To be added. + Represents the TLS_RSA_PSK_WITH_NULL_SHA384 cipher suite. @@ -5999,7 +6006,7 @@ 146 - To be added. + Represents the TLS_RSA_PSK_WITH_RC4_128_SHA cipher suite. @@ -6019,7 +6026,7 @@ 10 - To be added. + Represents the TLS_RSA_WITH_3DES_EDE_CBC_SHA cipher suite. @@ -6039,7 +6046,7 @@ 47 - To be added. + Represents the TLS_RSA_WITH_AES_128_CBC_SHA cipher suite. @@ -6059,7 +6066,7 @@ 60 - To be added. + Represents the TLS_RSA_WITH_AES_128_CBC_SHA256 cipher suite. @@ -6079,7 +6086,7 @@ 49308 - To be added. + Represents the TLS_RSA_WITH_AES_128_CCM cipher suite. @@ -6099,7 +6106,7 @@ 49312 - To be added. + Represents the TLS_RSA_WITH_AES_128_CCM_8 cipher suite. @@ -6119,7 +6126,7 @@ 156 - To be added. + Represents the TLS_RSA_WITH_AES_128_GCM_SHA256 cipher suite. @@ -6139,7 +6146,7 @@ 53 - To be added. + Represents the TLS_RSA_WITH_AES_256_CBC_SHA cipher suite. @@ -6159,7 +6166,7 @@ 61 - To be added. + Represents the TLS_RSA_WITH_AES_256_CBC_SHA256 cipher suite. @@ -6179,7 +6186,7 @@ 49309 - To be added. + Represents the TLS_RSA_WITH_AES_256_CCM cipher suite. @@ -6199,7 +6206,7 @@ 49313 - To be added. + Represents the TLS_RSA_WITH_AES_256_CCM_8 cipher suite. @@ -6219,7 +6226,7 @@ 157 - To be added. + Represents the TLS_RSA_WITH_AES_256_GCM_SHA384 cipher suite. @@ -6239,7 +6246,7 @@ 49212 - To be added. + Represents the TLS_RSA_WITH_ARIA_128_CBC_SHA256 cipher suite. @@ -6259,7 +6266,7 @@ 49232 - To be added. + Represents the TLS_RSA_WITH_ARIA_128_GCM_SHA256 cipher suite. @@ -6279,7 +6286,7 @@ 49213 - To be added. + Represents the TLS_RSA_WITH_ARIA_256_CBC_SHA384 cipher suite. @@ -6299,7 +6306,7 @@ 49233 - To be added. + Represents the TLS_RSA_WITH_ARIA_256_GCM_SHA384 cipher suite. @@ -6319,7 +6326,7 @@ 65 - To be added. + Represents the TLS_RSA_WITH_CAMELLIA_128_CBC_SHA cipher suite. @@ -6339,7 +6346,7 @@ 186 - To be added. + Represents the TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256 cipher suite. @@ -6359,7 +6366,7 @@ 49274 - To be added. + Represents the TLS_RSA_WITH_CAMELLIA_128_GCM_SHA256 cipher suite. @@ -6379,7 +6386,7 @@ 132 - To be added. + Represents the TLS_RSA_WITH_CAMELLIA_256_CBC_SHA cipher suite. @@ -6399,7 +6406,7 @@ 192 - To be added. + Represents the TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256 cipher suite. @@ -6419,7 +6426,7 @@ 49275 - To be added. + Represents the TLS_RSA_WITH_CAMELLIA_256_GCM_SHA384 cipher suite. @@ -6439,7 +6446,7 @@ 9 - To be added. + Represents the TLS_RSA_WITH_DES_CBC_SHA cipher suite. @@ -6459,7 +6466,7 @@ 7 - To be added. + Represents the TLS_RSA_WITH_IDEA_CBC_SHA cipher suite. @@ -6479,7 +6486,7 @@ 1 - To be added. + Represents the TLS_RSA_WITH_NULL_MD5 cipher suite. @@ -6499,7 +6506,7 @@ 2 - To be added. + Represents the TLS_RSA_WITH_NULL_SHA cipher suite. @@ -6519,7 +6526,7 @@ 59 - To be added. + Represents the TLS_RSA_WITH_NULL_SHA256 cipher suite. @@ -6539,7 +6546,7 @@ 4 - To be added. + Represents the TLS_RSA_WITH_RC4_128_MD5 cipher suite. @@ -6559,7 +6566,7 @@ 5 - To be added. + Represents the TLS_RSA_WITH_RC4_128_SHA cipher suite. @@ -6579,7 +6586,7 @@ 150 - To be added. + Represents the TLS_RSA_WITH_SEED_CBC_SHA cipher suite. @@ -6599,7 +6606,7 @@ 49180 - To be added. + Represents the TLS_SRP_SHA_DSS_WITH_3DES_EDE_CBC_SHA cipher suite. @@ -6619,7 +6626,7 @@ 49183 - To be added. + Represents the TLS_SRP_SHA_DSS_WITH_AES_128_CBC_SHA cipher suite. @@ -6639,7 +6646,7 @@ 49186 - To be added. + Represents the TLS_SRP_SHA_DSS_WITH_AES_256_CBC_SHA cipher suite. @@ -6659,7 +6666,7 @@ 49179 - To be added. + Represents the TLS_SRP_SHA_RSA_WITH_3DES_EDE_CBC_SHA cipher suite. @@ -6679,7 +6686,7 @@ 49182 - To be added. + Represents the TLS_SRP_SHA_RSA_WITH_AES_128_CBC_SHA cipher suite. @@ -6699,7 +6706,7 @@ 49185 - To be added. + Represents the TLS_SRP_SHA_RSA_WITH_AES_256_CBC_SHA cipher suite. @@ -6719,7 +6726,7 @@ 49178 - To be added. + Represents the TLS_SRP_SHA_WITH_3DES_EDE_CBC_SHA cipher suite. @@ -6739,7 +6746,7 @@ 49181 - To be added. + Represents the TLS_SRP_SHA_WITH_AES_128_CBC_SHA cipher suite. @@ -6759,7 +6766,7 @@ 49184 - To be added. + Represents the TLS_SRP_SHA_WITH_AES_256_CBC_SHA cipher suite. From 5f283d59a9749a36e99fe9af2c54c1efc8ea10ee Mon Sep 17 00:00:00 2001 From: David Cantu Date: Thu, 25 Jul 2019 10:19:03 -0700 Subject: [PATCH 2/3] Apply suggestions from code review * Adding some changes of my own as well. Co-Authored-By: Maira Wenzel Co-Authored-By: Jeremy Barton --- .../CipherSuitesPolicy.xml | 21 +++++++++++-------- xml/System.Net.Security/SslStream.xml | 5 +++-- xml/System.Net.Security/TlsCipherSuite.xml | 10 +++++---- 3 files changed, 21 insertions(+), 15 deletions(-) diff --git a/xml/System.Net.Security/CipherSuitesPolicy.xml b/xml/System.Net.Security/CipherSuitesPolicy.xml index d161873ce0d..5dccbfa2e87 100644 --- a/xml/System.Net.Security/CipherSuitesPolicy.xml +++ b/xml/System.Net.Security/CipherSuitesPolicy.xml @@ -40,18 +40,19 @@ The collection of cipher suites allowed in this policy for negotiation. - Initializes a cipher suite policy that can be used on a client or server authentication. + Initializes a new instance of the class that can be used on a client or server authentication. [!NOTE] -> Defining a chipher suite policy on authentication will prevent the OS of the ability to decide which are the best cipher suites to negotiate with and will need of your attention to manually check and update this code. It is strongly recommended to hold off the use of this property and rely on your constantly updated OS policy. +> Defining a cipher suite policy on authentication will prevent the OS of the ability to decide which are the best cipher suites to negotiate with and will need of your attention to manually check and update this code. It is strongly recommended to avoid the use of this property and rely on your constantly updated OS policy. ## Remarks -Unlike the OS underlying SSL/TLS implementation, the order of the elements in `allowedCipherSuites` does not determine their priority in the client-server negotiation. It is required to use OSX or Unix-based systems with OpenSSL 1.1.1 in order to initialize an instance of this class. + +Unlike the OS underlying SSL/TLS implementation, the order of the elements in `allowedCipherSuites` doesn't guarantee their priority in the client-server negotiation. You can only initialize an instance of this class if you're using Linux systems with OpenSSL 1.1.1 or higher or macOS . ]]> - Platform does not meet the requirements to setup a policy. + Platform is not a Linux system with OpenSSL 1.1.1 or higher or a macOS. @@ -75,13 +76,15 @@ Unlike the OS underlying SSL/TLS implementation, the order of the System.Collections.Generic.IEnumerable<System.Net.Security.TlsCipherSuite> - Gets the collection of cipher suites passed through , which are the ones allowed to negotiate with on a client or server authentication. + Gets a subset of valid cipher suites passed into constructor as a collection of cipher suites allowed in this policy for negotiation. The collection of cipher suites allowed in this policy for negotiation. - - [!NOTE] -> Defining a chipher suite policy on authentication will prevent the OS of the ability to decide which are the best cipher suites to negotiate with and will need of your attention to manually check and update this code. It is strongly recommended to hold off the use of this property and rely on your constantly updated OS policy. +> Defining a cipher suite policy on authentication will prevent the OS of the ability to decide which are the best cipher suites to negotiate with and will need of your attention to manually check and update this code. It is strongly recommended to avoid the use of this property and rely on your constantly updated OS policy. ## Remarks Unlike the OS underlying SSL/TLS implementation, the order of the elements in this property does not determine their priority in the client-server negotiation. It is required to use OSX or Unix-based systems with OpenSSL 1.1.1 in order to initialize an instance of this class. @@ -91,4 +94,4 @@ Unlike the OS underlying SSL/TLS implementation, the order of the - \ No newline at end of file + diff --git a/xml/System.Net.Security/SslStream.xml b/xml/System.Net.Security/SslStream.xml index 4a2809e0577..826af56c7e2 100644 --- a/xml/System.Net.Security/SslStream.xml +++ b/xml/System.Net.Security/SslStream.xml @@ -3453,12 +3453,13 @@ Authentication has not occurred. System.Net.Security.TlsCipherSuite - Gets the cipher suite resolved to use by this . - The cipher suite resolved to use by this . + Gets the cipher suite which was negotiated for this connection. + One of the enumeration values that identifies the cipher suite which was negotiated for this connection. or . ]]> diff --git a/xml/System.Net.Security/TlsCipherSuite.xml b/xml/System.Net.Security/TlsCipherSuite.xml index 33ec429e140..b6cb0a73b25 100644 --- a/xml/System.Net.Security/TlsCipherSuite.xml +++ b/xml/System.Net.Security/TlsCipherSuite.xml @@ -18,12 +18,14 @@ - Specifies the possible cipher suite values to negotiate with in a client-server authentication that uses the TLS/SSL protocols. + Represents cipher suite values for the TLS (formerly SSL) protocol. @@ -5026,7 +5028,7 @@ Both, field names and values are based on the [TLS Cipher Suites list](https://w 0 - Represents the TLS_NULL_WITH_NULL_NULL cipher suite; this is the default value. + Represents the TLS_NULL_WITH_NULL_NULL cipher suite. @@ -6770,4 +6772,4 @@ Both, field names and values are based on the [TLS Cipher Suites list](https://w - \ No newline at end of file + From 4b4276c2f7a350e9063df503719c80ac10350eb4 Mon Sep 17 00:00:00 2001 From: David Cantu Date: Tue, 6 Aug 2019 16:12:07 -0700 Subject: [PATCH 3/3] Apply suggestions from code review Co-Authored-By: Ron Petrusha --- xml/System.Net.Security/CipherSuitesPolicy.xml | 12 ++++++------ xml/System.Net.Security/SslStream.xml | 2 +- xml/System.Net.Security/TlsCipherSuite.xml | 2 +- 3 files changed, 8 insertions(+), 8 deletions(-) diff --git a/xml/System.Net.Security/CipherSuitesPolicy.xml b/xml/System.Net.Security/CipherSuitesPolicy.xml index 5dccbfa2e87..69410e2f23c 100644 --- a/xml/System.Net.Security/CipherSuitesPolicy.xml +++ b/xml/System.Net.Security/CipherSuitesPolicy.xml @@ -40,15 +40,16 @@ The collection of cipher suites allowed in this policy for negotiation. - Initializes a new instance of the class that can be used on a client or server authentication. + Initializes a new instance of the class that can be used for client or server authentication. [!NOTE] -> Defining a cipher suite policy on authentication will prevent the OS of the ability to decide which are the best cipher suites to negotiate with and will need of your attention to manually check and update this code. It is strongly recommended to avoid the use of this property and rely on your constantly updated OS policy. +> Defining a cipher suite policy on authentication will prevent the OS from deciding which are the best cipher suites to negotiate with and requires that you manually check and update this code. We strongly recommend that you avoid using this feature and rely on your constantly updated OS policy. ## Remarks -Unlike the OS underlying SSL/TLS implementation, the order of the elements in `allowedCipherSuites` doesn't guarantee their priority in the client-server negotiation. You can only initialize an instance of this class if you're using Linux systems with OpenSSL 1.1.1 or higher or macOS . +Unlike the operating system's underlying SSL/TLS implementation, the order of the elements in `allowedCipherSuites` doesn't guarantee their priority in client-server negotiation. You can only initialize an instance of this class if you're using Linux systems with OpenSSL 1.1.1 or higher or macOS. + ]]> @@ -81,13 +82,12 @@ Unlike the OS underlying SSL/TLS implementation, the order of the [!NOTE] -> Defining a cipher suite policy on authentication will prevent the OS of the ability to decide which are the best cipher suites to negotiate with and will need of your attention to manually check and update this code. It is strongly recommended to avoid the use of this property and rely on your constantly updated OS policy. +> Defining a cipher suite policy on authentication will prevent the OS from deciding which are the best cipher suites to negotiate with and requires that you manually check and update this code. We strongly recommend that you avoid using this feature and rely on your constantly updated OS policy. ## Remarks -Unlike the OS underlying SSL/TLS implementation, the order of the elements in this property does not determine their priority in the client-server negotiation. It is required to use OSX or Unix-based systems with OpenSSL 1.1.1 in order to initialize an instance of this class. +Unlike the operating system's underlying SSL/TLS implementation, the order of the elements in `allowedCipherSuites` doesn't guarantee their priority in client-server negotiation. You can only initialize an instance of this class if you're using Linux systems with OpenSSL 1.1.1 or higher or macOS. ]]> diff --git a/xml/System.Net.Security/SslStream.xml b/xml/System.Net.Security/SslStream.xml index 826af56c7e2..53edd5e04a5 100644 --- a/xml/System.Net.Security/SslStream.xml +++ b/xml/System.Net.Security/SslStream.xml @@ -3460,7 +3460,7 @@ Authentication has not occurred. ## Remarks -This property gets the cipher suite that is going to be used in the communication between a client and server by the underlying SSL/TLS implementation. This property is only available after a successful call to or . +This property gets the cipher suite that is going to be used in the communication between a client and server by the underlying SSL/TLS implementation. It is only available after a successful call to or . ]]> diff --git a/xml/System.Net.Security/TlsCipherSuite.xml b/xml/System.Net.Security/TlsCipherSuite.xml index b6cb0a73b25..387d67ac762 100644 --- a/xml/System.Net.Security/TlsCipherSuite.xml +++ b/xml/System.Net.Security/TlsCipherSuite.xml @@ -24,7 +24,7 @@ ## Remarks Both field names and values are based on the [TLS Cipher Suites list](https://www.iana.org/assignments/tls-parameters/tls-parameters.xml#tls-parameters-4) from the Internet Assigned Numbers Authority (IANA). -This enumeration represents values that were known at the time a specific version of .NET was released. Unmapped values may be returned by properties or methods, and methods should generally not verify that a given input was defined within the enum, as the value may be transparently passed from or to the system underlying TLS implementation. +This enumeration represents values that were known at the time a specific version of .NET was released. Unmapped values may be returned by properties or methods, and methods should generally not verify that a given input was defined within the enum, as the value may be transparently passed from or to the system's underlying TLS implementation. Inclusion in this enumeration does not indicate that a .NET platform supports a particular cipher suite. ]]>