/*

 * Copyright (c) 2002, 2019, Oracle and/or its affiliates. All rights reserved.

 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.

 *

 * This code is free software; you can redistribute it and/or modify it

 * under the terms of the GNU General Public License version 2 only, as

 * published by the Free Software Foundation.  Oracle designates this

 * particular file as subject to the "Classpath" exception as provided

 * by Oracle in the LICENSE file that accompanied this code.

 *

 * This code is distributed in the hope that it will be useful, but WITHOUT

 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or

 * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License

 * version 2 for more details (a copy is included in the LICENSE file that

 * accompanied this code).

 *

 * You should have received a copy of the GNU General Public License version

 * 2 along with this work; if not, write to the Free Software Foundation,

 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.

 *

 * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA

 * or visit www.oracle.com if you need additional information or have any

 * questions.

 */

package sun.security.ssl;

import java.util.ArrayList;

import java.util.Arrays;

import java.util.Collection;

import java.util.Collections;

import java.util.LinkedList;

import java.util.List;

import static sun.security.ssl.CipherSuite.HashAlg.*;

import static sun.security.ssl.CipherSuite.KeyExchange.*;

import static sun.security.ssl.CipherSuite.MacAlg.*;

import static sun.security.ssl.SSLCipher.*;

import sun.security.ssl.NamedGroup.NamedGroupSpec;

import static sun.security.ssl.NamedGroup.NamedGroupSpec.*;

/**

 * Enum for SSL/(D)TLS cipher suites.

 *

 * Please refer to the "TLS Cipher Suite Registry" section for more details

 * about each cipher suite:

 *     https://www.iana.org/assignments/tls-parameters/tls-parameters.xml

 */

enum CipherSuite {

    //

    // in preference order

    //

    // Definition of the CipherSuites that are enabled by default.

    //

    // They are listed in preference order, most preferred first, using

    // the following criteria:

    // 1. Prefer Suite B compliant cipher suites, see RFC6460 (To be

    //    changed later, see below).

    // 2. Prefer forward secrecy cipher suites.

    // 3. Prefer the stronger bulk cipher, in the order of AES_256(GCM),

    //    AES_128(GCM), AES_256, AES_128, 3DES-EDE.

    // 4. Prefer the stronger MAC algorithm, in the order of SHA384,

    //    SHA256, SHA, MD5.

    // 5. Prefer the better performance of key exchange and digital

    //    signature algorithm, in the order of ECDHE-ECDSA, ECDHE-RSA,

    //    DHE-RSA, DHE-DSS, ECDH-ECDSA, ECDH-RSA, RSA.

    // TLS 1.3 cipher suites.

    TLS_AES_256_GCM_SHA384(

            0x1302, true, "TLS_AES_256_GCM_SHA384",

            ProtocolVersion.PROTOCOLS_OF_13, B_AES_256_GCM_IV, H_SHA384),

    TLS_AES_128_GCM_SHA256(

            0x1301, true, "TLS_AES_128_GCM_SHA256",

            ProtocolVersion.PROTOCOLS_OF_13, B_AES_128_GCM_IV, H_SHA256),

    TLS_CHACHA20_POLY1305_SHA256(

            0x1303, true, "TLS_CHACHA20_POLY1305_SHA256",

            ProtocolVersion.PROTOCOLS_OF_13, B_CC20_P1305, H_SHA256),

    // Suite B compliant cipher suites, see RFC 6460.

    //

    // Note that, at present this provider is not Suite B compliant. The

    // preference order of the GCM cipher suites does not follow the spec

    // of RFC 6460.  In this section, only two cipher suites are listed

    // so that applications can make use of Suite-B compliant cipher

    // suite firstly.

    TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384(

            0xC02C, true, "TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_ECDHE_ECDSA, B_AES_256_GCM, M_NULL, H_SHA384),

    TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256(

            0xC02B, true, "TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_ECDHE_ECDSA, B_AES_128_GCM, M_NULL, H_SHA256),

    // Not suite B, but we want it to position the suite early in the list

    // of 1.2 suites.

    TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256(

            0xCCA9, true, "TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_ECDHE_ECDSA, B_CC20_P1305, M_NULL, H_SHA256),

    //

    // Forward screcy cipher suites.

    //

    // AES_256(GCM) - ECDHE

    TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384(

            0xC030, true, "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_ECDHE_RSA, B_AES_256_GCM, M_NULL, H_SHA384),

    TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256(

            0xCCA8, true, "TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_ECDHE_RSA, B_CC20_P1305, M_NULL, H_SHA256),

    // AES_128(GCM) - ECDHE

    TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256(

            0xC02F, true, "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_ECDHE_RSA, B_AES_128_GCM, M_NULL, H_SHA256),

    // AES_256(GCM) - DHE

    TLS_DHE_RSA_WITH_AES_256_GCM_SHA384(

            0x009F, true, "TLS_DHE_RSA_WITH_AES_256_GCM_SHA384", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_DHE_RSA, B_AES_256_GCM, M_NULL, H_SHA384),

    TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256(

            0xCCAA, true, "TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_DHE_RSA, B_CC20_P1305, M_NULL, H_SHA256),

    TLS_DHE_DSS_WITH_AES_256_GCM_SHA384(

            0x00A3, true, "TLS_DHE_DSS_WITH_AES_256_GCM_SHA384", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_DHE_DSS, B_AES_256_GCM, M_NULL, H_SHA384),

    // AES_128(GCM) - DHE

    TLS_DHE_RSA_WITH_AES_128_GCM_SHA256(

            0x009E, true, "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_DHE_RSA, B_AES_128_GCM, M_NULL, H_SHA256),

    TLS_DHE_DSS_WITH_AES_128_GCM_SHA256(

            0x00A2, true, "TLS_DHE_DSS_WITH_AES_128_GCM_SHA256", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_DHE_DSS, B_AES_128_GCM, M_NULL, H_SHA256),

    // AES_256(CBC) - ECDHE

    TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384(

            0xC024, true, "TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_ECDHE_ECDSA, B_AES_256, M_SHA384, H_SHA384),

    TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384(

            0xC028, true, "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_ECDHE_RSA, B_AES_256, M_SHA384, H_SHA384),

    // AES_128(CBC) - ECDHE

    TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256(

            0xC023, true, "TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_ECDHE_ECDSA, B_AES_128, M_SHA256, H_SHA256),

    TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256(

            0xC027, true, "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_ECDHE_RSA, B_AES_128, M_SHA256, H_SHA256),

    // AES_256(CBC) - DHE

    TLS_DHE_RSA_WITH_AES_256_CBC_SHA256(

            0x006B, true, "TLS_DHE_RSA_WITH_AES_256_CBC_SHA256", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_DHE_RSA, B_AES_256, M_SHA256, H_SHA256),

    TLS_DHE_DSS_WITH_AES_256_CBC_SHA256(

            0x006A, true, "TLS_DHE_DSS_WITH_AES_256_CBC_SHA256", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_DHE_DSS, B_AES_256, M_SHA256, H_SHA256),

    // AES_128(CBC) - DHE

    TLS_DHE_RSA_WITH_AES_128_CBC_SHA256(

            0x0067, true, "TLS_DHE_RSA_WITH_AES_128_CBC_SHA256", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_DHE_RSA, B_AES_128, M_SHA256, H_SHA256),

    TLS_DHE_DSS_WITH_AES_128_CBC_SHA256(

            0x0040, true, "TLS_DHE_DSS_WITH_AES_128_CBC_SHA256", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_DHE_DSS, B_AES_128, M_SHA256, H_SHA256),

    //

    // not forward secret cipher suites.

    //

    // AES_256(GCM)

    TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384(

            0xC02E, true, "TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_ECDH_ECDSA, B_AES_256_GCM, M_NULL, H_SHA384),

    TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384(

            0xC032, true, "TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_ECDH_RSA, B_AES_256_GCM, M_NULL, H_SHA384),

    // AES_128(GCM)

    TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256(

            0xC02D, true, "TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_ECDH_ECDSA, B_AES_128_GCM, M_NULL, H_SHA256),

    TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256(

            0xC031, true, "TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_ECDH_RSA, B_AES_128_GCM, M_NULL, H_SHA256),

    // AES_256(CBC)

    TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384(

            0xC026, true, "TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_ECDH_ECDSA, B_AES_256, M_SHA384, H_SHA384),

    TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384(

            0xC02A, true, "TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_ECDH_RSA, B_AES_256, M_SHA384, H_SHA384),

    // AES_128(CBC)

    TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256(

            0xC025, true, "TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_ECDH_ECDSA, B_AES_128, M_SHA256, H_SHA256),

    TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256(

            0xC029, true, "TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_ECDH_RSA, B_AES_128, M_SHA256, H_SHA256),

    //

    // Legacy, used for compatibility

    //

    // AES_256(CBC) - ECDHE - Using SHA

    TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA(

            0xC00A, true, "TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_ECDHE_ECDSA, B_AES_256, M_SHA, H_SHA256),

    TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA(

            0xC014, true, "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_ECDHE_RSA, B_AES_256, M_SHA, H_SHA256),

    // AES_128(CBC) - ECDHE - using SHA

    TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA(

            0xC009, true, "TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_ECDHE_ECDSA, B_AES_128, M_SHA, H_SHA256),

    TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA(

            0xC013, true, "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_ECDHE_RSA, B_AES_128, M_SHA, H_SHA256),

    // AES_256(CBC) - DHE - Using SHA

    TLS_DHE_RSA_WITH_AES_256_CBC_SHA(

            0x0039, true, "TLS_DHE_RSA_WITH_AES_256_CBC_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_DHE_RSA, B_AES_256, M_SHA, H_SHA256),

    TLS_DHE_DSS_WITH_AES_256_CBC_SHA(

            0x0038, true, "TLS_DHE_DSS_WITH_AES_256_CBC_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_DHE_DSS, B_AES_256, M_SHA, H_SHA256),

    // AES_128(CBC) - DHE - using SHA

    TLS_DHE_RSA_WITH_AES_128_CBC_SHA(

            0x0033, true, "TLS_DHE_RSA_WITH_AES_128_CBC_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_DHE_RSA, B_AES_128, M_SHA, H_SHA256),

    TLS_DHE_DSS_WITH_AES_128_CBC_SHA(

            0x0032, true, "TLS_DHE_DSS_WITH_AES_128_CBC_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_DHE_DSS, B_AES_128, M_SHA, H_SHA256),

    // AES_256(CBC) - using SHA, not forward screcy

    TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA(

            0xC005, true, "TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_ECDH_ECDSA, B_AES_256, M_SHA, H_SHA256),

    TLS_ECDH_RSA_WITH_AES_256_CBC_SHA(

            0xC00F, true, "TLS_ECDH_RSA_WITH_AES_256_CBC_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_ECDH_RSA, B_AES_256, M_SHA, H_SHA256),

    // AES_128(CBC) - using SHA, not forward screcy

    TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA(

            0xC004, true, "TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_ECDH_ECDSA, B_AES_128, M_SHA, H_SHA256),

    TLS_ECDH_RSA_WITH_AES_128_CBC_SHA(

            0xC00E, true, "TLS_ECDH_RSA_WITH_AES_128_CBC_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_ECDH_RSA, B_AES_128, M_SHA, H_SHA256),

    //

    // deprecated, used for compatibility

    //

    // RSA, AES_256(GCM)

    TLS_RSA_WITH_AES_256_GCM_SHA384(

            0x009D, true, "TLS_RSA_WITH_AES_256_GCM_SHA384", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_RSA, B_AES_256_GCM, M_NULL, H_SHA384),

    // RSA, AES_128(GCM)

    TLS_RSA_WITH_AES_128_GCM_SHA256(

            0x009C, true, "TLS_RSA_WITH_AES_128_GCM_SHA256", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_RSA, B_AES_128_GCM, M_NULL, H_SHA256),

    // RSA, AES_256(CBC)

    TLS_RSA_WITH_AES_256_CBC_SHA256(

            0x003D, true, "TLS_RSA_WITH_AES_256_CBC_SHA256", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_RSA, B_AES_256, M_SHA256, H_SHA256),

    // RSA, AES_128(CBC)

    TLS_RSA_WITH_AES_128_CBC_SHA256(

            0x003C, true, "TLS_RSA_WITH_AES_128_CBC_SHA256", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_RSA, B_AES_128, M_SHA256, H_SHA256),

    // RSA, AES_256(CBC) - using SHA, not forward screcy

    TLS_RSA_WITH_AES_256_CBC_SHA(

            0x0035, true, "TLS_RSA_WITH_AES_256_CBC_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_RSA, B_AES_256, M_SHA, H_SHA256),

    // RSA, AES_128(CBC) - using SHA, not forward screcy

    TLS_RSA_WITH_AES_128_CBC_SHA(

            0x002F, true, "TLS_RSA_WITH_AES_128_CBC_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_RSA, B_AES_128, M_SHA, H_SHA256),

    // 3DES_EDE, forward secrecy.

    TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA(

            0xC008, true, "TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_ECDHE_ECDSA, B_3DES, M_SHA, H_SHA256),

    TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA(

            0xC012, true, "TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_ECDHE_RSA, B_3DES, M_SHA, H_SHA256),

    SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA(

            0x0016, true, "SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA",

                          "TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_DHE_RSA, B_3DES, M_SHA, H_SHA256),

    SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA(

            0x0013, true, "SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA",

                          "TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_DHE_DSS, B_3DES, M_SHA, H_SHA256),

    // 3DES_EDE, not forward secrecy.

    TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA(

            0xC003, true, "TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_ECDH_ECDSA, B_3DES, M_SHA, H_SHA256),

    TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA(

            0xC00D, true, "TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_ECDH_RSA, B_3DES, M_SHA, H_SHA256),

    SSL_RSA_WITH_3DES_EDE_CBC_SHA(

            0x000A, true, "SSL_RSA_WITH_3DES_EDE_CBC_SHA",

                          "TLS_RSA_WITH_3DES_EDE_CBC_SHA",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_RSA, B_3DES, M_SHA, H_SHA256),

    // Renegotiation protection request Signalling Cipher Suite Value (SCSV).

    TLS_EMPTY_RENEGOTIATION_INFO_SCSV(        //  RFC 5746, TLS 1.2 and prior

            0x00FF, true, "TLS_EMPTY_RENEGOTIATION_INFO_SCSV", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_SCSV, B_NULL, M_NULL, H_NONE),

    // Definition of the CipherSuites that are supported but not enabled

    // by default.

    // They are listed in preference order, preferred first, using the

    // following criteria:

    // 1. If a cipher suite has been obsoleted, we put it at the end of

    //    the list.

    // 2. Prefer the stronger bulk cipher, in the order of AES_256,

    //    AES_128, 3DES-EDE, RC-4, DES, DES40, RC4_40, NULL.

    // 3. Prefer the stronger MAC algorithm, in the order of SHA384,

    //    SHA256, SHA, MD5.

    // 4. Prefer the better performance of key exchange and digital

    //    signature algorithm, in the order of ECDHE-ECDSA, ECDHE-RSA,

    //    RSA, ECDH-ECDSA, ECDH-RSA, DHE-RSA, DHE-DSS, anonymous.

    TLS_DH_anon_WITH_AES_256_GCM_SHA384(

            0x00A7, false, "TLS_DH_anon_WITH_AES_256_GCM_SHA384", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_DH_ANON, B_AES_256_GCM, M_NULL, H_SHA384),

    TLS_DH_anon_WITH_AES_128_GCM_SHA256(

            0x00A6, false, "TLS_DH_anon_WITH_AES_128_GCM_SHA256", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_DH_ANON, B_AES_128_GCM, M_NULL, H_SHA256),

    TLS_DH_anon_WITH_AES_256_CBC_SHA256(

            0x006D, false, "TLS_DH_anon_WITH_AES_256_CBC_SHA256", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_DH_ANON, B_AES_256, M_SHA256, H_SHA256),

    TLS_ECDH_anon_WITH_AES_256_CBC_SHA(

            0xC019, false, "TLS_ECDH_anon_WITH_AES_256_CBC_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_ECDH_ANON, B_AES_256, M_SHA, H_SHA256),

    TLS_DH_anon_WITH_AES_256_CBC_SHA(

            0x003A, false, "TLS_DH_anon_WITH_AES_256_CBC_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_DH_ANON, B_AES_256, M_SHA, H_SHA256),

    TLS_DH_anon_WITH_AES_128_CBC_SHA256(

            0x006C, false, "TLS_DH_anon_WITH_AES_128_CBC_SHA256", "",

            ProtocolVersion.PROTOCOLS_OF_12,

            K_DH_ANON, B_AES_128, M_SHA256, H_SHA256),

    TLS_ECDH_anon_WITH_AES_128_CBC_SHA(

            0xC018, false, "TLS_ECDH_anon_WITH_AES_128_CBC_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_ECDH_ANON, B_AES_128, M_SHA, H_SHA256),

    TLS_DH_anon_WITH_AES_128_CBC_SHA(

            0x0034, false, "TLS_DH_anon_WITH_AES_128_CBC_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_DH_ANON, B_AES_128, M_SHA, H_SHA256),

    TLS_ECDH_anon_WITH_3DES_EDE_CBC_SHA(

            0xC017, false, "TLS_ECDH_anon_WITH_3DES_EDE_CBC_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_ECDH_ANON, B_3DES, M_SHA, H_SHA256),

    SSL_DH_anon_WITH_3DES_EDE_CBC_SHA(

            0x001B, false, "SSL_DH_anon_WITH_3DES_EDE_CBC_SHA",

                           "TLS_DH_anon_WITH_3DES_EDE_CBC_SHA",

            ProtocolVersion.PROTOCOLS_TO_12,

            K_DH_ANON, B_3DES, M_SHA, H_SHA256),

    // RC4

    TLS_ECDHE_ECDSA_WITH_RC4_128_SHA(

            0xC007, false, "TLS_ECDHE_ECDSA_WITH_RC4_128_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_TLS12,

            K_ECDHE_ECDSA, B_RC4_128, M_SHA, H_SHA256),

    TLS_ECDHE_RSA_WITH_RC4_128_SHA(

            0xC011, false, "TLS_ECDHE_RSA_WITH_RC4_128_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_TLS12,

            K_ECDHE_RSA, B_RC4_128, M_SHA, H_SHA256),

    SSL_RSA_WITH_RC4_128_SHA(

            0x0005, false, "SSL_RSA_WITH_RC4_128_SHA",

                           "TLS_RSA_WITH_RC4_128_SHA",

            ProtocolVersion.PROTOCOLS_TO_TLS12,

            K_RSA, B_RC4_128, M_SHA, H_SHA256),

    TLS_ECDH_ECDSA_WITH_RC4_128_SHA(

            0xC002, false, "TLS_ECDH_ECDSA_WITH_RC4_128_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_TLS12,

            K_ECDH_ECDSA, B_RC4_128, M_SHA, H_SHA256),

    TLS_ECDH_RSA_WITH_RC4_128_SHA(

            0xC00C, false, "TLS_ECDH_RSA_WITH_RC4_128_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_TLS12,

            K_ECDH_RSA, B_RC4_128, M_SHA, H_SHA256),

    SSL_RSA_WITH_RC4_128_MD5(

            0x0004, false, "SSL_RSA_WITH_RC4_128_MD5",

                           "TLS_RSA_WITH_RC4_128_MD5",

            ProtocolVersion.PROTOCOLS_TO_TLS12,

            K_RSA, B_RC4_128, M_MD5, H_SHA256),

    TLS_ECDH_anon_WITH_RC4_128_SHA(

            0xC016, false, "TLS_ECDH_anon_WITH_RC4_128_SHA", "",

            ProtocolVersion.PROTOCOLS_TO_TLS12,

            K_ECDH_ANON, B_RC4_128, M_SHA, H_SHA256),

    SSL_DH_anon_WITH_RC4_128_MD5(

            0x0018, false, "SSL_DH_anon_WITH_RC4_128_MD5",

                           "TLS_DH_anon_WITH_RC4_128_MD5",

            ProtocolVersion.PROTOCOLS_TO_TLS12,

            K_DH_ANON, B_RC4_128, M_MD5, H_SHA256),

    // weak cipher suites obsoleted in TLS 1.2 [RFC 5246]

    SSL_RSA_WITH_DES_CBC_SHA(

            0x0009, false, "SSL_RSA_WITH_DES_CBC_SHA",

                           "TLS_RSA_WITH_DES_CBC_SHA",

            ProtocolVersion.PROTOCOLS_TO_11,

            K_RSA, B_DES, M_SHA, H_NONE),

    SSL_DHE_RSA_WITH_DES_CBC_SHA(

            0x0015, false, "SSL_DHE_RSA_WITH_DES_CBC_SHA",

                           "TLS_DHE_RSA_WITH_DES_CBC_SHA",

            ProtocolVersion.PROTOCOLS_TO_11,

            K_DHE_RSA, B_DES, M_SHA, H_NONE),

    SSL_DHE_DSS_WITH_DES_CBC_SHA(

            0x0012, false, "SSL_DHE_DSS_WITH_DES_CBC_SHA",

                           "TLS_DHE_DSS_WITH_DES_CBC_SHA",

            ProtocolVersion.PROTOCOLS_TO_11,

            K_DHE_DSS, B_DES, M_SHA, H_NONE),

    SSL_DH_anon_WITH_DES_CBC_SHA(

            0x001A, false, "SSL_DH_anon_WITH_DES_CBC_SHA",

                           "TLS_DH_anon_WITH_DES_CBC_SHA",

            ProtocolVersion.PROTOCOLS_TO_11,

            K_DH_ANON, B_DES, M_SHA, H_NONE),

    // weak cipher suites obsoleted in TLS 1.1  [RFC 4346]

    SSL_RSA_EXPORT_WITH_DES40_CBC_SHA(

            0x0008, false, "SSL_RSA_EXPORT_WITH_DES40_CBC_SHA",

                           "TLS_RSA_EXPORT_WITH_DES40_CBC_SHA",

            ProtocolVersion.PROTOCOLS_TO_10,