[openssl-dev] [openssl.org #4497] openssl ciphers app possible bug

Daniel Gruszczyk via RT Sat, 02 Apr 2016 07:06:18 -0700

Hi,I was playing with a ciphers app to create example list of suites. Looking 
at the website (https://openssl.org/docs/manmaster/apps/ciphers.html) if I run 
one of the examples there:
openssl ciphers -v '3DES:+RSA'I supposed to get a list of 3DES ciphers with any 
RSA ones at the end of the list (if I can read correctly). What I get instead 
is:
$ openssl ciphers -v '3DES:+RSA'ECDHE-RSA-DES-CBC3-SHA  SSLv3 Kx=ECDH     
Au=RSA  Enc=3DES(168) Mac=SHA1ECDHE-ECDSA-DES-CBC3-SHA SSLv3 Kx=ECDH     
Au=ECDSA Enc=3DES(168) Mac=SHA1SRP-DSS-3DES-EDE-CBC-SHA SSLv3 Kx=SRP      
Au=DSS  Enc=3DES(168) Mac=SHA1SRP-RSA-3DES-EDE-CBC-SHA SSLv3 Kx=SRP      Au=RSA 
 Enc=3DES(168) Mac=SHA1SRP-3DES-EDE-CBC-SHA    SSLv3 Kx=SRP      Au=SRP  
Enc=3DES(168) Mac=SHA1EDH-RSA-DES-CBC3-SHA    SSLv3 Kx=DH       Au=RSA  
Enc=3DES(168) Mac=SHA1EDH-DSS-DES-CBC3-SHA    SSLv3 Kx=DH       Au=DSS  
Enc=3DES(168) Mac=SHA1DH-RSA-DES-CBC3-SHA     SSLv3 Kx=DH/RSA   Au=DH   
Enc=3DES(168) Mac=SHA1DH-DSS-DES-CBC3-SHA     SSLv3 Kx=DH/DSS   Au=DH   
Enc=3DES(168) Mac=SHA1AECDH-DES-CBC3-SHA      SSLv3 Kx=ECDH     Au=None 
Enc=3DES(168) Mac=SHA1ADH-DES-CBC3-SHA        SSLv3 Kx=DH       Au=None 
Enc=3DES(168) Mac=SHA1ECDH-RSA-DES-CBC3-SHA   SSLv3 Kx=ECDH/RSA Au=ECDH 
Enc=3DES(168) Mac=SHA1ECDH-ECDSA-DES-CBC3-SHA SSLv3 Kx=ECDH/ECDSA Au=ECDH 
Enc=3DES(168) Mac=SHA1PSK-3DES-EDE-CBC-SHA    
 SSLv3 Kx=PSK      Au=PSK  Enc=3DES(168) Mac=SHA1DES-CBC3-SHA            SSLv3 
Kx=RSA      Au=RSA  Enc=3DES(168) Mac=SHA1
Clearly, RSA ciphers are not at the end. I have a similar situation with 
excluding ECDSA ciphers. Let's say I run the following:
$ openssl ciphers -v 'AESGCM'ECDHE-RSA-AES256-GCM-SHA384 TLSv1.2 Kx=ECDH     
Au=RSA  Enc=AESGCM(256) Mac=AEADECDHE-ECDSA-AES256-GCM-SHA384 TLSv1.2 Kx=ECDH   
  Au=ECDSA Enc=AESGCM(256) Mac=AEADDH-DSS-AES256-GCM-SHA384 TLSv1.2 Kx=DH/DSS   
Au=DH   Enc=AESGCM(256) Mac=AEADDHE-DSS-AES256-GCM-SHA384 TLSv1.2 Kx=DH       
Au=DSS  Enc=AESGCM(256) Mac=AEADDH-RSA-AES256-GCM-SHA384 TLSv1.2 Kx=DH/RSA   
Au=DH   Enc=AESGCM(256) Mac=AEADDHE-RSA-AES256-GCM-SHA384 TLSv1.2 Kx=DH       
Au=RSA  Enc=AESGCM(256) Mac=AEADADH-AES256-GCM-SHA384   TLSv1.2 Kx=DH       
Au=None Enc=AESGCM(256) Mac=AEADECDH-RSA-AES256-GCM-SHA384 TLSv1.2 Kx=ECDH/RSA 
Au=ECDH Enc=AESGCM(256) Mac=AEADECDH-ECDSA-AES256-GCM-SHA384 TLSv1.2 
Kx=ECDH/ECDSA Au=ECDH Enc=AESGCM(256) Mac=AEADAES256-GCM-SHA384       TLSv1.2 
Kx=RSA      Au=RSA  Enc=AESGCM(256) Mac=AEADECDHE-RSA-AES128-GCM-SHA256 TLSv1.2 
Kx=ECDH     Au=RSA  Enc=AESGCM(128) Mac=AEADECDHE-ECDSA-AES128-GCM-SHA256 
TLSv1.2 Kx=ECDH     Au=ECDSA Enc=AESGCM(128) Mac=AEADDH-DSS-AES128-GCM-S
 HA256 TLSv1.2 Kx=DH/DSS   Au=DH   Enc=AESGCM(128) 
Mac=AEADDHE-DSS-AES128-GCM-SHA256 TLSv1.2 Kx=DH       Au=DSS  Enc=AESGCM(128) 
Mac=AEADDH-RSA-AES128-GCM-SHA256 TLSv1.2 Kx=DH/RSA   Au=DH   Enc=AESGCM(128) 
Mac=AEADDHE-RSA-AES128-GCM-SHA256 TLSv1.2 Kx=DH       Au=RSA  Enc=AESGCM(128) 
Mac=AEADADH-AES128-GCM-SHA256   TLSv1.2 Kx=DH       Au=None Enc=AESGCM(128) 
Mac=AEADECDH-RSA-AES128-GCM-SHA256 TLSv1.2 Kx=ECDH/RSA Au=ECDH Enc=AESGCM(128) 
Mac=AEADECDH-ECDSA-AES128-GCM-SHA256 TLSv1.2 Kx=ECDH/ECDSA Au=ECDH 
Enc=AESGCM(128) Mac=AEADAES128-GCM-SHA256       TLSv1.2 Kx=RSA      Au=RSA  
Enc=AESGCM(128) Mac=AEAD
Now if I try to exclude all ECDSA ciphers:
$ openssl ciphers -v 'AESGCM:!ECDSA'ECDHE-RSA-AES256-GCM-SHA384 TLSv1.2 Kx=ECDH 
    Au=RSA  Enc=AESGCM(256) Mac=AEADDH-DSS-AES256-GCM-SHA384 TLSv1.2 Kx=DH/DSS  
 Au=DH   Enc=AESGCM(256) Mac=AEADDHE-DSS-AES256-GCM-SHA384 TLSv1.2 Kx=DH       
Au=DSS  Enc=AESGCM(256) Mac=AEADDH-RSA-AES256-GCM-SHA384 TLSv1.2 Kx=DH/RSA   
Au=DH   Enc=AESGCM(256) Mac=AEADDHE-RSA-AES256-GCM-SHA384 TLSv1.2 Kx=DH       
Au=RSA  Enc=AESGCM(256) Mac=AEADADH-AES256-GCM-SHA384   TLSv1.2 Kx=DH       
Au=None Enc=AESGCM(256) Mac=AEADECDH-RSA-AES256-GCM-SHA384 TLSv1.2 Kx=ECDH/RSA 
Au=ECDH Enc=AESGCM(256) Mac=AEADECDH-ECDSA-AES256-GCM-SHA384 TLSv1.2 
Kx=ECDH/ECDSA Au=ECDH Enc=AESGCM(256) Mac=AEADAES256-GCM-SHA384       TLSv1.2 
Kx=RSA      Au=RSA  Enc=AESGCM(256) Mac=AEADECDHE-RSA-AES128-GCM-SHA256 TLSv1.2 
Kx=ECDH     Au=RSA  Enc=AESGCM(128) Mac=AEADDH-DSS-AES128-GCM-SHA256 TLSv1.2 
Kx=DH/DSS   Au=DH   Enc=AESGCM(128) Mac=AEADDHE-DSS-AES128-GCM-SHA256 TLSv1.2 
Kx=DH       Au=DSS  Enc=AESGCM(128) Mac=AEADDH-RSA-AES128-GCM-SHA25
 6 TLSv1.2 Kx=DH/RSA   Au=DH   Enc=AESGCM(128) 
Mac=AEADDHE-RSA-AES128-GCM-SHA256 TLSv1.2 Kx=DH       Au=RSA  Enc=AESGCM(128) 
Mac=AEADADH-AES128-GCM-SHA256   TLSv1.2 Kx=DH       Au=None Enc=AESGCM(128) 
Mac=AEADECDH-RSA-AES128-GCM-SHA256 TLSv1.2 Kx=ECDH/RSA Au=ECDH Enc=AESGCM(128) 
Mac=AEADECDH-ECDSA-AES128-GCM-SHA256 TLSv1.2 Kx=ECDH/ECDSA Au=ECDH 
Enc=AESGCM(128) Mac=AEADAES128-GCM-SHA256       TLSv1.2 Kx=RSA      Au=RSA  
Enc=AESGCM(128) Mac=AEAD
I still get 2 ECDSA ciphers on the list.
Is that a bug, or is it just my ignorance? I am using openssl 1.0.2g.Here are 
posts I made about that on community forums, with people confirming they run 
into the same 
issue:http://stackoverflow.com/questions/36204245/select-all-cipher-suites-except-those-using-ecdsahttp://security.stackexchange.com/questions/118470/openssl-ciphers-list-sorting-and-removing
Cheers,
Daniel Gruszczyk

                                          
-- 
Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4497
Please log in as guest with password guest if prompted

-- 
openssl-dev mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
[openssl-dev] [openssl.org #4497] openssl ciphers app possible bug

Reply via email to
