Home Explore Help
Sign In
GHzGlass
/
GHZLangChao
4
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 8e8601ad68
Branches Tags
GHZLangChao
/
Assets
/
LangChaoRTC
/
MediaSoup
/
Best HTTP (Pro)
/
BestHTTP
/
SecureProtocol
/
crypto
/
tls
/
TlsUtilities.cs

TlsUtilities.cs 103 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140114111421143114411451146114711481149115011511152115311541155115611571158115911601161116211631164116511661167116811691170117111721173117411751176117711781179118011811182118311841185118611871188118911901191119211931194119511961197119811991200120112021203120412051206120712081209121012111212121312141215121612171218121912201221122212231224122512261227122812291230123112321233123412351236123712381239124012411242124312441245124612471248124912501251125212531254125512561257125812591260126112621263126412651266126712681269127012711272127312741275127612771278127912801281128212831284128512861287128812891290129112921293129412951296129712981299130013011302130313041305130613071308130913101311131213131314131513161317131813191320132113221323132413251326132713281329133013311332133313341335133613371338133913401341134213431344134513461347134813491350135113521353135413551356135713581359136013611362136313641365136613671368136913701371137213731374137513761377137813791380138113821383138413851386138713881389139013911392139313941395139613971398139914001401140214031404140514061407140814091410141114121413141414151416141714181419142014211422142314241425142614271428142914301431143214331434143514361437143814391440144114421443144414451446144714481449145014511452145314541455145614571458145914601461146214631464146514661467146814691470147114721473147414751476147714781479148014811482148314841485148614871488148914901491149214931494149514961497149814991500150115021503150415051506150715081509151015111512151315141515151615171518151915201521152215231524152515261527152815291530153115321533153415351536153715381539154015411542154315441545154615471548154915501551155215531554155515561557155815591560156115621563156415651566156715681569157015711572157315741575157615771578157915801581158215831584158515861587158815891590159115921593159415951596159715981599160016011602160316041605160616071608160916101611161216131614161516161617161816191620162116221623162416251626162716281629163016311632163316341635163616371638163916401641164216431644164516461647164816491650165116521653165416551656165716581659166016611662166316641665166616671668166916701671167216731674167516761677167816791680168116821683168416851686168716881689169016911692169316941695169616971698169917001701170217031704170517061707170817091710171117121713171417151716171717181719172017211722172317241725172617271728172917301731173217331734173517361737173817391740174117421743174417451746174717481749175017511752175317541755175617571758175917601761176217631764176517661767176817691770177117721773177417751776177717781779178017811782178317841785178617871788178917901791179217931794179517961797179817991800180118021803180418051806180718081809181018111812181318141815181618171818181918201821182218231824182518261827182818291830183118321833183418351836183718381839184018411842184318441845184618471848184918501851185218531854185518561857185818591860186118621863186418651866186718681869187018711872187318741875187618771878187918801881188218831884188518861887188818891890189118921893189418951896189718981899190019011902190319041905190619071908190919101911191219131914191519161917191819191920192119221923192419251926192719281929193019311932193319341935193619371938193919401941194219431944194519461947194819491950195119521953195419551956195719581959196019611962196319641965196619671968196919701971197219731974197519761977197819791980198119821983198419851986198719881989199019911992199319941995199619971998199920002001200220032004200520062007200820092010201120122013201420152016201720182019202020212022202320242025202620272028202920302031203220332034203520362037203820392040204120422043204420452046204720482049205020512052205320542055205620572058205920602061206220632064206520662067206820692070207120722073207420752076207720782079208020812082208320842085208620872088208920902091209220932094209520962097209820992100210121022103210421052106210721082109211021112112211321142115211621172118211921202121212221232124212521262127212821292130213121322133213421352136213721382139214021412142214321442145214621472148214921502151215221532154215521562157215821592160216121622163216421652166216721682169217021712172217321742175217621772178217921802181218221832184218521862187218821892190219121922193219421952196219721982199220022012202220322042205220622072208220922102211221222132214221522162217221822192220222122222223222422252226222722282229223022312232223322342235223622372238223922402241224222432244224522462247224822492250225122522253 
  1. #if !BESTHTTP_DISABLE_ALTERNATE_SSL && (!UNITY_WEBGL || UNITY_EDITOR)
    2. 

  2. 

  3. using System;
    4. 

  4. using System.Collections;
    5. 

  5. using System.IO;
    6. 

  6. using System.Text;
    7. 

  7. 

  8. using Org.BouncyCastle.Asn1;
    9. 

  9. using Org.BouncyCastle.Asn1.Nist;
    10. 

  10. using Org.BouncyCastle.Asn1.Pkcs;
    11. 

  11. using Org.BouncyCastle.Asn1.X509;
    12. 

  12. using Org.BouncyCastle.Crypto.Digests;
    13. 

  13. using Org.BouncyCastle.Crypto.Macs;
    14. 

  14. using Org.BouncyCastle.Crypto.Parameters;
    15. 

  15. using Org.BouncyCastle.Security;
    16. 

  16. using Org.BouncyCastle.Utilities;
    17. 

  17. using Org.BouncyCastle.Utilities.Date;
    18. 

  18. using Org.BouncyCastle.Utilities.IO;
    19. 

  19. 

  20. namespace Org.BouncyCastle.Crypto.Tls
    21. 

  21. {
    22. 

  22.     /// <remarks>Some helper functions for MicroTLS.</remarks>
    23. 

  23.     public abstract class TlsUtilities
    24. 

  24.     {
    25. 

  25.         public static readonly byte[] EmptyBytes = new byte[0];
    26. 

  26.         public static readonly short[] EmptyShorts = new short[0];
    27. 

  27.         public static readonly int[] EmptyInts = new int[0];
    28. 

  28.         public static readonly long[] EmptyLongs = new long[0];
    29. 

  29. 

  30.         public static void CheckUint8(int i)
    31. 

  31.         {
    32. 

  32.             if (!IsValidUint8(i))
    33. 

  33.                 throw new TlsFatalAlert(AlertDescription.internal_error);
    34. 

  34.         }
    35. 

  35. 

  36.         public static void CheckUint8(long i)
    37. 

  37.         {
    38. 

  38.             if (!IsValidUint8(i))
    39. 

  39.                 throw new TlsFatalAlert(AlertDescription.internal_error);
    40. 

  40.         }
    41. 

  41. 

  42.         public static void CheckUint16(int i)
    43. 

  43.         {
    44. 

  44.             if (!IsValidUint16(i))
    45. 

  45.                 throw new TlsFatalAlert(AlertDescription.internal_error);
    46. 

  46.         }
    47. 

  47. 

  48.         public static void CheckUint16(long i)
    49. 

  49.         {
    50. 

  50.             if (!IsValidUint16(i))
    51. 

  51.                 throw new TlsFatalAlert(AlertDescription.internal_error);
    52. 

  52.         }
    53. 

  53. 

  54.         public static void CheckUint24(int i)
    55. 

  55.         {
    56. 

  56.             if (!IsValidUint24(i))
    57. 

  57.                 throw new TlsFatalAlert(AlertDescription.internal_error);
    58. 

  58.         }
    59. 

  59. 

  60.         public static void CheckUint24(long i)
    61. 

  61.         {
    62. 

  62.             if (!IsValidUint24(i))
    63. 

  63.                 throw new TlsFatalAlert(AlertDescription.internal_error);
    64. 

  64.         }
    65. 

  65. 

  66.         public static void CheckUint32(long i)
    67. 

  67.         {
    68. 

  68.             if (!IsValidUint32(i))
    69. 

  69.                 throw new TlsFatalAlert(AlertDescription.internal_error);
    70. 

  70.         }
    71. 

  71. 

  72.         public static void CheckUint48(long i)
    73. 

  73.         {
    74. 

  74.             if (!IsValidUint48(i))
    75. 

  75.                 throw new TlsFatalAlert(AlertDescription.internal_error);
    76. 

  76.         }
    77. 

  77. 

  78.         public static void CheckUint64(long i)
    79. 

  79.         {
    80. 

  80.             if (!IsValidUint64(i))
    81. 

  81.                 throw new TlsFatalAlert(AlertDescription.internal_error);
    82. 

  82.         }
    83. 

  83. 

  84.         public static bool IsValidUint8(int i)
    85. 

  85.         {
    86. 

  86.             return (i & 0xFF) == i;
    87. 

  87.         }
    88. 

  88. 

  89.         public static bool IsValidUint8(long i)
    90. 

  90.         {
    91. 

  91.             return (i & 0xFFL) == i;
    92. 

  92.         }
    93. 

  93. 

  94.         public static bool IsValidUint16(int i)
    95. 

  95.         {
    96. 

  96.             return (i & 0xFFFF) == i;
    97. 

  97.         }
    98. 

  98. 

  99.         public static bool IsValidUint16(long i)
    100. 

  100.         {
    101. 

  101.             return (i & 0xFFFFL) == i;
    102. 

  102.         }
    103. 

  103. 

  104.         public static bool IsValidUint24(int i)
    105. 

  105.         {
    106. 

  106.             return (i & 0xFFFFFF) == i;
    107. 

  107.         }
    108. 

  108. 

  109.         public static bool IsValidUint24(long i)
    110. 

  110.         {
    111. 

  111.             return (i & 0xFFFFFFL) == i;
    112. 

  112.         }
    113. 

  113. 

  114.         public static bool IsValidUint32(long i)
    115. 

  115.         {
    116. 

  116.             return (i & 0xFFFFFFFFL) == i;
    117. 

  117.         }
    118. 

  118. 

  119.         public static bool IsValidUint48(long i)
    120. 

  120.         {
    121. 

  121.             return (i & 0xFFFFFFFFFFFFL) == i;
    122. 

  122.         }
    123. 

  123. 

  124.         public static bool IsValidUint64(long i)
    125. 

  125.         {
    126. 

  126.             return true;
    127. 

  127.         }
    128. 

  128. 

  129.         public static bool IsSsl(TlsContext context)
    130. 

  130.         {
    131. 

  131.             return context.ServerVersion.IsSsl;
    132. 

  132.         }
    133. 

  133. 

  134.         public static bool IsTlsV11(ProtocolVersion version)
    135. 

  135.         {
    136. 

  136.             return ProtocolVersion.TLSv11.IsEqualOrEarlierVersionOf(version.GetEquivalentTLSVersion());
    137. 

  137.         }
    138. 

  138. 

  139.         public static bool IsTlsV11(TlsContext context)
    140. 

  140.         {
    141. 

  141.             return IsTlsV11(context.ServerVersion);
    142. 

  142.         }
    143. 

  143. 

  144.         public static bool IsTlsV12(ProtocolVersion version)
    145. 

  145.         {
    146. 

  146.             return ProtocolVersion.TLSv12.IsEqualOrEarlierVersionOf(version.GetEquivalentTLSVersion());
    147. 

  147.         }
    148. 

  148. 

  149.         public static bool IsTlsV12(TlsContext context)
    150. 

  150.         {
    151. 

  151.             return IsTlsV12(context.ServerVersion);
    152. 

  152.         }
    153. 

  153. 

  154.         public static void WriteUint8(byte i, Stream output)
    155. 

  155.         {
    156. 

  156.             output.WriteByte(i);
    157. 

  157.         }
    158. 

  158. 

  159.         public static void WriteUint8(byte i, byte[] buf, int offset)
    160. 

  160.         {
    161. 

  161.             buf[offset] = i;
    162. 

  162.         }
    163. 

  163. 

  164.         public static void WriteUint16(int i, Stream output)
    165. 

  165.         {
    166. 

  166.             output.WriteByte((byte)(i >> 8));
    167. 

  167.             output.WriteByte((byte)i);
    168. 

  168.         }
    169. 

  169. 

  170.         public static void WriteUint16(int i, byte[] buf, int offset)
    171. 

  171.         {
    172. 

  172.             buf[offset] = (byte)(i >> 8);
    173. 

  173.             buf[offset + 1] = (byte)i;
    174. 

  174.         }
    175. 

  175. 

  176.         public static void WriteUint24(int i, Stream output)
    177. 

  177.         {
    178. 

  178.             output.WriteByte((byte)(i >> 16));
    179. 

  179.             output.WriteByte((byte)(i >> 8));
    180. 

  180.             output.WriteByte((byte)i);
    181. 

  181.         }
    182. 

  182. 

  183.         public static void WriteUint24(int i, byte[] buf, int offset)
    184. 

  184.         {
    185. 

  185.             buf[offset] = (byte)(i >> 16);
    186. 

  186.             buf[offset + 1] = (byte)(i >> 8);
    187. 

  187.             buf[offset + 2] = (byte)i;
    188. 

  188.         }
    189. 

  189. 

  190.         public static void WriteUint32(long i, Stream output)
    191. 

  191.         {
    192. 

  192.             output.WriteByte((byte)(i >> 24));
    193. 

  193.             output.WriteByte((byte)(i >> 16));
    194. 

  194.             output.WriteByte((byte)(i >> 8));
    195. 

  195.             output.WriteByte((byte)i);
    196. 

  196.         }
    197. 

  197. 

  198.         public static void WriteUint32(long i, byte[] buf, int offset)
    199. 

  199.         {
    200. 

  200.             buf[offset] = (byte)(i >> 24);
    201. 

  201.             buf[offset + 1] = (byte)(i >> 16);
    202. 

  202.             buf[offset + 2] = (byte)(i >> 8);
    203. 

  203.             buf[offset + 3] = (byte)i;
    204. 

  204.         }
    205. 

  205. 

  206.         public static void WriteUint48(long i, Stream output)
    207. 

  207.         {
    208. 

  208.             output.WriteByte((byte)(i >> 40));
    209. 

  209.             output.WriteByte((byte)(i >> 32));
    210. 

  210.             output.WriteByte((byte)(i >> 24));
    211. 

  211.             output.WriteByte((byte)(i >> 16));
    212. 

  212.             output.WriteByte((byte)(i >> 8));
    213. 

  213.             output.WriteByte((byte)i);
    214. 

  214.         }
    215. 

  215. 

  216.         public static void WriteUint48(long i, byte[] buf, int offset)
    217. 

  217.         {
    218. 

  218.             buf[offset] = (byte)(i >> 40);
    219. 

  219.             buf[offset + 1] = (byte)(i >> 32);
    220. 

  220.             buf[offset + 2] = (byte)(i >> 24);
    221. 

  221.             buf[offset + 3] = (byte)(i >> 16);
    222. 

  222.             buf[offset + 4] = (byte)(i >> 8);
    223. 

  223.             buf[offset + 5] = (byte)i;
    224. 

  224.         }
    225. 

  225. 

  226.         public static void WriteUint64(long i, Stream output)
    227. 

  227.         {
    228. 

  228.             output.WriteByte((byte)(i >> 56));
    229. 

  229.             output.WriteByte((byte)(i >> 48));
    230. 

  230.             output.WriteByte((byte)(i >> 40));
    231. 

  231.             output.WriteByte((byte)(i >> 32));
    232. 

  232.             output.WriteByte((byte)(i >> 24));
    233. 

  233.             output.WriteByte((byte)(i >> 16));
    234. 

  234.             output.WriteByte((byte)(i >> 8));
    235. 

  235.             output.WriteByte((byte)i);
    236. 

  236.         }
    237. 

  237. 

  238.         public static void WriteUint64(long i, byte[] buf, int offset)
    239. 

  239.         {
    240. 

  240.             buf[offset] = (byte)(i >> 56);
    241. 

  241.             buf[offset + 1] = (byte)(i >> 48);
    242. 

  242.             buf[offset + 2] = (byte)(i >> 40);
    243. 

  243.             buf[offset + 3] = (byte)(i >> 32);
    244. 

  244.             buf[offset + 4] = (byte)(i >> 24);
    245. 

  245.             buf[offset + 5] = (byte)(i >> 16);
    246. 

  246.             buf[offset + 6] = (byte)(i >> 8);
    247. 

  247.             buf[offset + 7] = (byte)i;
    248. 

  248.         }
    249. 

  249. 

  250.         public static void WriteOpaque8(byte[] buf, Stream output)
    251. 

  251.         {
    252. 

  252.             WriteUint8((byte)buf.Length, output);
    253. 

  253.             output.Write(buf, 0, buf.Length);
    254. 

  254.         }
    255. 

  255. 

  256.         public static void WriteOpaque16(byte[] buf, Stream output)
    257. 

  257.         {
    258. 

  258.             WriteUint16(buf.Length, output);
    259. 

  259.             output.Write(buf, 0, buf.Length);
    260. 

  260.         }
    261. 

  261. 

  262.         public static void WriteOpaque24(byte[] buf, Stream output)
    263. 

  263.         {
    264. 

  264.             WriteUint24(buf.Length, output);
    265. 

  265.             output.Write(buf, 0, buf.Length);
    266. 

  266.         }
    267. 

  267. 

  268.         public static void WriteUint8Array(byte[] uints, Stream output)
    269. 

  269.         {
    270. 

  270.             output.Write(uints, 0, uints.Length);
    271. 

  271.         }
    272. 

  272. 

  273.         public static void WriteUint8Array(byte[] uints, byte[] buf, int offset)
    274. 

  274.         {
    275. 

  275.             for (int i = 0; i < uints.Length; ++i)
    276. 

  276.             {
    277. 

  277.                 WriteUint8(uints[i], buf, offset);
    278. 

  278.                 ++offset;
    279. 

  279.             }
    280. 

  280.         }
    281. 

  281. 

  282.         public static void WriteUint8ArrayWithUint8Length(byte[] uints, Stream output)
    283. 

  283.         {
    284. 

  284.             CheckUint8(uints.Length);
    285. 

  285.             WriteUint8((byte)uints.Length, output);
    286. 

  286.             WriteUint8Array(uints, output);
    287. 

  287.         }
    288. 

  288. 

  289.         public static void WriteUint8ArrayWithUint8Length(byte[] uints, byte[] buf, int offset)
    290. 

  290.         {
    291. 

  291.             CheckUint8(uints.Length);
    292. 

  292.             WriteUint8((byte)uints.Length, buf, offset);
    293. 

  293.             WriteUint8Array(uints, buf, offset + 1);
    294. 

  294.         }
    295. 

  295. 

  296.         public static void WriteUint16Array(int[] uints, Stream output)
    297. 

  297.         {
    298. 

  298.             for (int i = 0; i < uints.Length; ++i)
    299. 

  299.             {
    300. 

  300.                 WriteUint16(uints[i], output);
    301. 

  301.             }
    302. 

  302.         }
    303. 

  303. 

  304.         public static void WriteUint16Array(int[] uints, byte[] buf, int offset)
    305. 

  305.         {
    306. 

  306.             for (int i = 0; i < uints.Length; ++i)
    307. 

  307.             {
    308. 

  308.                 WriteUint16(uints[i], buf, offset);
    309. 

  309.                 offset += 2;
    310. 

  310.             }
    311. 

  311.         }
    312. 

  312. 

  313.         public static void WriteUint16ArrayWithUint16Length(int[] uints, Stream output)
    314. 

  314.         {
    315. 

  315.             int length = 2 * uints.Length;
    316. 

  316.             CheckUint16(length);
    317. 

  317.             WriteUint16(length, output);
    318. 

  318.             WriteUint16Array(uints, output);
    319. 

  319.         }
    320. 

  320. 

  321.         public static void WriteUint16ArrayWithUint16Length(int[] uints, byte[] buf, int offset)
    322. 

  322.         {
    323. 

  323.             int length = 2 * uints.Length;
    324. 

  324.             CheckUint16(length);
    325. 

  325.             WriteUint16(length, buf, offset);
    326. 

  326.             WriteUint16Array(uints, buf, offset + 2);
    327. 

  327.         }
    328. 

  328. 

  329.         public static byte[] EncodeOpaque8(byte[] buf)
    330. 

  330.         {
    331. 

  331.             CheckUint8(buf.Length);
    332. 

  332.             return Arrays.Prepend(buf, (byte)buf.Length);
    333. 

  333.         }
    334. 

  334. 

  335.         public static byte[] EncodeUint8ArrayWithUint8Length(byte[] uints)
    336. 

  336.         {
    337. 

  337.             byte[] result = new byte[1 + uints.Length];
    338. 

  338.             WriteUint8ArrayWithUint8Length(uints, result, 0);
    339. 

  339.             return result;
    340. 

  340.         }
    341. 

  341. 

  342.         public static byte[] EncodeUint16ArrayWithUint16Length(int[] uints)
    343. 

  343.         {
    344. 

  344.             int length = 2 * uints.Length;
    345. 

  345.             byte[] result = new byte[2 + length];
    346. 

  346.             WriteUint16ArrayWithUint16Length(uints, result, 0);
    347. 

  347.             return result;
    348. 

  348.         }
    349. 

  349. 

  350.         public static byte ReadUint8(Stream input)
    351. 

  351.         {
    352. 

  352.             int i = input.ReadByte();
    353. 

  353.             if (i < 0)
    354. 

  354.                 throw new EndOfStreamException();
    355. 

  355.             return (byte)i;
    356. 

  356.         }
    357. 

  357. 

  358.         public static byte ReadUint8(byte[] buf, int offset)
    359. 

  359.         {
    360. 

  360.             return buf[offset];
    361. 

  361.         }
    362. 

  362. 

  363.         public static int ReadUint16(Stream input)
    364. 

  364.         {
    365. 

  365.             int i1 = input.ReadByte();
    366. 

  366.             int i2 = input.ReadByte();
    367. 

  367.             if (i2 < 0)
    368. 

  368.                 throw new EndOfStreamException();
    369. 

  369.             return (i1 << 8) | i2;
    370. 

  370.         }
    371. 

  371. 

  372.         public static int ReadUint16(byte[] buf, int offset)
    373. 

  373.         {
    374. 

  374.             uint n = (uint)buf[offset] << 8;
    375. 

  375.             n |= (uint)buf[++offset];
    376. 

  376.             return (int)n;
    377. 

  377.         }
    378. 

  378. 

  379.         public static int ReadUint24(Stream input)
    380. 

  380.         {
    381. 

  381.             int i1 = input.ReadByte();
    382. 

  382.             int i2 = input.ReadByte();
    383. 

  383.             int i3 = input.ReadByte();
    384. 

  384.             if (i3 < 0)
    385. 

  385.                 throw new EndOfStreamException();
    386. 

  386.             return (i1 << 16) | (i2 << 8) | i3;
    387. 

  387.         }
    388. 

  388. 

  389.         public static int ReadUint24(byte[] buf, int offset)
    390. 

  390.         {
    391. 

  391.             uint n = (uint)buf[offset] << 16;
    392. 

  392.             n |= (uint)buf[++offset] << 8;
    393. 

  393.             n |= (uint)buf[++offset];
    394. 

  394.             return (int)n;
    395. 

  395.         }
    396. 

  396. 

  397.         public static long ReadUint32(Stream input)
    398. 

  398.         {
    399. 

  399.             int i1 = input.ReadByte();
    400. 

  400.             int i2 = input.ReadByte();
    401. 

  401.             int i3 = input.ReadByte();
    402. 

  402.             int i4 = input.ReadByte();
    403. 

  403.             if (i4 < 0)
    404. 

  404.                 throw new EndOfStreamException();
    405. 

  405.             return (long)(uint)((i1 << 24) | (i2 << 16) | (i3 << 8) | i4);
    406. 

  406.         }
    407. 

  407. 

  408.         public static long ReadUint32(byte[] buf, int offset)
    409. 

  409.         {
    410. 

  410.             uint n = (uint)buf[offset] << 24;
    411. 

  411.             n |= (uint)buf[++offset] << 16;
    412. 

  412.             n |= (uint)buf[++offset] << 8;
    413. 

  413.             n |= (uint)buf[++offset];
    414. 

  414.             return (long)n;
    415. 

  415.         }
    416. 

  416. 

  417.         public static long ReadUint48(Stream input)
    418. 

  418.         {
    419. 

  419.             int hi = ReadUint24(input);
    420. 

  420.             int lo = ReadUint24(input);
    421. 

  421.             return ((long)(hi & 0xffffffffL) << 24) | (long)(lo & 0xffffffffL);
    422. 

  422.         }
    423. 

  423. 

  424.         public static long ReadUint48(byte[] buf, int offset)
    425. 

  425.         {
    426. 

  426.             int hi = ReadUint24(buf, offset);
    427. 

  427.             int lo = ReadUint24(buf, offset + 3);
    428. 

  428.             return ((long)(hi & 0xffffffffL) << 24) | (long)(lo & 0xffffffffL);
    429. 

  429.         }
    430. 

  430. 

  431.         public static byte[] ReadAllOrNothing(int length, Stream input)
    432. 

  432.         {
    433. 

  433.             if (length < 1)
    434. 

  434.                 return EmptyBytes;
    435. 

  435.             byte[] buf = new byte[length];
    436. 

  436.             int read = Streams.ReadFully(input, buf);
    437. 

  437.             if (read == 0)
    438. 

  438.                 return null;
    439. 

  439.             if (read != length)
    440. 

  440.                 throw new EndOfStreamException();
    441. 

  441.             return buf;
    442. 

  442.         }
    443. 

  443. 

  444.         public static byte[] ReadFully(int length, Stream input)
    445. 

  445.         {
    446. 

  446.             if (length < 1)
    447. 

  447.                 return EmptyBytes;
    448. 

  448.             byte[] buf = new byte[length];
    449. 

  449.             if (length != Streams.ReadFully(input, buf))
    450. 

  450.                 throw new EndOfStreamException();
    451. 

  451.             return buf;
    452. 

  452.         }
    453. 

  453. 

  454.         public static void ReadFully(byte[] buf, Stream input)
    455. 

  455.         {
    456. 

  456.             if (Streams.ReadFully(input, buf, 0, buf.Length) < buf.Length)
    457. 

  457.                 throw new EndOfStreamException();
    458. 

  458.         }
    459. 

  459. 

  460.         public static byte[] ReadOpaque8(Stream input)
    461. 

  461.         {
    462. 

  462.             byte length = ReadUint8(input);
    463. 

  463.             byte[] bytes = new byte[length];
    464. 

  464.             ReadFully(bytes, input);
    465. 

  465.             return bytes;
    466. 

  466.         }
    467. 

  467. 

  468.         public static byte[] ReadOpaque16(Stream input)
    469. 

  469.         {
    470. 

  470.             int length = ReadUint16(input);
    471. 

  471.             byte[] bytes = new byte[length];
    472. 

  472.             ReadFully(bytes, input);
    473. 

  473.             return bytes;
    474. 

  474.         }
    475. 

  475. 

  476.         public static byte[] ReadOpaque24(Stream input)
    477. 

  477.         {
    478. 

  478.             int length = ReadUint24(input);
    479. 

  479.             return ReadFully(length, input);
    480. 

  480.         }
    481. 

  481. 

  482.         public static byte[] ReadUint8Array(int count, Stream input)
    483. 

  483.         {
    484. 

  484.             byte[] uints = new byte[count];
    485. 

  485.             for (int i = 0; i < count; ++i)
    486. 

  486.             {
    487. 

  487.                 uints[i] = ReadUint8(input);
    488. 

  488.             }
    489. 

  489.             return uints;
    490. 

  490.         }
    491. 

  491. 

  492.         public static int[] ReadUint16Array(int count, Stream input)
    493. 

  493.         {
    494. 

  494.             int[] uints = new int[count];
    495. 

  495.             for (int i = 0; i < count; ++i)
    496. 

  496.             {
    497. 

  497.                 uints[i] = ReadUint16(input);
    498. 

  498.             }
    499. 

  499.             return uints;
    500. 

  500.         }
    501. 

  501. 

  502.         public static ProtocolVersion ReadVersion(byte[] buf, int offset)
    503. 

  503.         {
    504. 

  504.             return ProtocolVersion.Get(buf[offset], buf[offset + 1]);
    505. 

  505.         }
    506. 

  506. 

  507.         public static ProtocolVersion ReadVersion(Stream input)
    508. 

  508.         {
    509. 

  509.             int i1 = input.ReadByte();
    510. 

  510.             int i2 = input.ReadByte();
    511. 

  511.             if (i2 < 0)
    512. 

  512.                 throw new EndOfStreamException();
    513. 

  513.             return ProtocolVersion.Get(i1, i2);
    514. 

  514.         }
    515. 

  515. 

  516.         public static int ReadVersionRaw(byte[] buf, int offset)
    517. 

  517.         {
    518. 

  518.             return (buf[offset] << 8) | buf[offset + 1];
    519. 

  519.         }
    520. 

  520. 

  521.         public static int ReadVersionRaw(Stream input)
    522. 

  522.         {
    523. 

  523.             int i1 = input.ReadByte();
    524. 

  524.             int i2 = input.ReadByte();
    525. 

  525.             if (i2 < 0)
    526. 

  526.                 throw new EndOfStreamException();
    527. 

  527.             return (i1 << 8) | i2;
    528. 

  528.         }
    529. 

  529. 

  530.         public static Asn1Object ReadAsn1Object(byte[] encoding)
    531. 

  531.         {
    532. 

  532.             MemoryStream input = new MemoryStream(encoding, false);
    533. 

  533.             Asn1InputStream asn1 = new Asn1InputStream(input, encoding.Length);
    534. 

  534.             Asn1Object result = asn1.ReadObject();
    535. 

  535.             if (null == result)
    536. 

  536.                 throw new TlsFatalAlert(AlertDescription.decode_error);
    537. 

  537.             if (input.Position != input.Length)
    538. 

  538.                 throw new TlsFatalAlert(AlertDescription.decode_error);
    539. 

  539.             return result;
    540. 

  540.         }
    541. 

  541. 

  542.         public static Asn1Object ReadDerObject(byte[] encoding)
    543. 

  543.         {
    544. 

  544.             /*
    545. 

  545.              * NOTE: The current ASN.1 parsing code can't enforce DER-only parsing, but since DER is
    546. 

  546.              * canonical, we can check it by re-encoding the result and comparing to the original.
    547. 

  547.              */
    548. 

  548.             Asn1Object result = ReadAsn1Object(encoding);
    549. 

  549.             byte[] check = result.GetEncoded(Asn1Encodable.Der);
    550. 

  550.             if (!Arrays.AreEqual(check, encoding))
    551. 

  551.                 throw new TlsFatalAlert(AlertDescription.decode_error);
    552. 

  552.             return result;
    553. 

  553.         }
    554. 

  554. 

  555.         public static void WriteGmtUnixTime(byte[] buf, int offset)
    556. 

  556.         {
    557. 

  557.             int t = (int)(DateTimeUtilities.CurrentUnixMs() / 1000L);
    558. 

  558.             buf[offset] = (byte)(t >> 24);
    559. 

  559.             buf[offset + 1] = (byte)(t >> 16);
    560. 

  560.             buf[offset + 2] = (byte)(t >> 8);
    561. 

  561.             buf[offset + 3] = (byte)t;
    562. 

  562.         }
    563. 

  563. 

  564.         public static void WriteVersion(ProtocolVersion version, Stream output)
    565. 

  565.         {
    566. 

  566.             output.WriteByte((byte)version.MajorVersion);
    567. 

  567.             output.WriteByte((byte)version.MinorVersion);
    568. 

  568.         }
    569. 

  569. 

  570.         public static void WriteVersion(ProtocolVersion version, byte[] buf, int offset)
    571. 

  571.         {
    572. 

  572.             buf[offset] = (byte)version.MajorVersion;
    573. 

  573.             buf[offset + 1] = (byte)version.MinorVersion;
    574. 

  574.         }
    575. 

  575. 

  576.         public static IList GetDefaultDssSignatureAlgorithms()
    577. 

  577.         {
    578. 

  578.             return VectorOfOne(new SignatureAndHashAlgorithm(HashAlgorithm.sha1, SignatureAlgorithm.dsa));
    579. 

  579.         }
    580. 

  580. 

  581.         public static IList GetDefaultECDsaSignatureAlgorithms()
    582. 

  582.         {
    583. 

  583.             return VectorOfOne(new SignatureAndHashAlgorithm(HashAlgorithm.sha1, SignatureAlgorithm.ecdsa));
    584. 

  584.         }
    585. 

  585. 

  586.         public static IList GetDefaultRsaSignatureAlgorithms()
    587. 

  587.         {
    588. 

  588.             return VectorOfOne(new SignatureAndHashAlgorithm(HashAlgorithm.sha1, SignatureAlgorithm.rsa));
    589. 

  589.         }
    590. 

  590. 

  591.         public static byte[] GetExtensionData(IDictionary extensions, int extensionType)
    592. 

  592.         {
    593. 

  593.             return extensions == null ? null : (byte[])extensions[extensionType];
    594. 

  594.         }
    595. 

  595. 

  596.         public static IList GetDefaultSupportedSignatureAlgorithms()
    597. 

  597.         {
    598. 

  598.             byte[] hashAlgorithms = new byte[]{ HashAlgorithm.sha1, HashAlgorithm.sha224, HashAlgorithm.sha256,
    599. 

  599.                 HashAlgorithm.sha384, HashAlgorithm.sha512 };
    600. 

  600.             byte[] signatureAlgorithms = new byte[]{ SignatureAlgorithm.rsa, SignatureAlgorithm.dsa,
    601. 

  601.                 SignatureAlgorithm.ecdsa };
    602. 

  602. 

  603.             IList result = Org.BouncyCastle.Utilities.Platform.CreateArrayList();
    604. 

  604.             for (int i = 0; i < signatureAlgorithms.Length; ++i)
    605. 

  605.             {
    606. 

  606.                 for (int j = 0; j < hashAlgorithms.Length; ++j)
    607. 

  607.                 {
    608. 

  608.                     result.Add(new SignatureAndHashAlgorithm(hashAlgorithms[j], signatureAlgorithms[i]));
    609. 

  609.                 }
    610. 

  610.             }
    611. 

  611.             return result;
    612. 

  612.         }
    613. 

  613. 

  614.         public static SignatureAndHashAlgorithm GetSignatureAndHashAlgorithm(TlsContext context,
    615. 

  615.             TlsSignerCredentials signerCredentials)
    616. 

  616.         {
    617. 

  617.             SignatureAndHashAlgorithm signatureAndHashAlgorithm = null;
    618. 

  618.             if (IsTlsV12(context))
    619. 

  619.             {
    620. 

  620.                 signatureAndHashAlgorithm = signerCredentials.SignatureAndHashAlgorithm;
    621. 

  621.                 if (signatureAndHashAlgorithm == null)
    622. 

  622.                     throw new TlsFatalAlert(AlertDescription.internal_error);
    623. 

  623.             }
    624. 

  624.             return signatureAndHashAlgorithm;
    625. 

  625.         }
    626. 

  626. 

  627.         public static bool HasExpectedEmptyExtensionData(IDictionary extensions, int extensionType,
    628. 

  628.             byte alertDescription)
    629. 

  629.         {
    630. 

  630.             byte[] extension_data = GetExtensionData(extensions, extensionType);
    631. 

  631.             if (extension_data == null)
    632. 

  632.                 return false;
    633. 

  633.             if (extension_data.Length != 0)
    634. 

  634.                 throw new TlsFatalAlert(alertDescription);
    635. 

  635.             return true;
    636. 

  636.         }
    637. 

  637. 

  638.         public static TlsSession ImportSession(byte[] sessionID, SessionParameters sessionParameters)
    639. 

  639.         {
    640. 

  640.             return new TlsSessionImpl(sessionID, sessionParameters);
    641. 

  641.         }
    642. 

  642. 

  643.         public static bool IsSignatureAlgorithmsExtensionAllowed(ProtocolVersion clientVersion)
    644. 

  644.         {
    645. 

  645.             return ProtocolVersion.TLSv12.IsEqualOrEarlierVersionOf(clientVersion.GetEquivalentTLSVersion());
    646. 

  646.         }
    647. 

  647. 

  648.         /**
    649. 

  649.          * Add a 'signature_algorithms' extension to existing extensions.
    650. 

  650.          *
    651. 

  651.          * @param extensions                   A {@link Hashtable} to add the extension to.
    652. 

  652.          * @param supportedSignatureAlgorithms {@link Vector} containing at least 1 {@link SignatureAndHashAlgorithm}.
    653. 

  653.          * @throws IOException
    654. 

  654.          */
    655. 

  655.         public static void AddSignatureAlgorithmsExtension(IDictionary extensions, IList supportedSignatureAlgorithms)
    656. 

  656.         {
    657. 

  657.             extensions[ExtensionType.signature_algorithms] = CreateSignatureAlgorithmsExtension(supportedSignatureAlgorithms);
    658. 

  658.         }
    659. 

  659. 

  660.         /**
    661. 

  661.          * Get a 'signature_algorithms' extension from extensions.
    662. 

  662.          *
    663. 

  663.          * @param extensions A {@link Hashtable} to get the extension from, if it is present.
    664. 

  664.          * @return A {@link Vector} containing at least 1 {@link SignatureAndHashAlgorithm}, or null.
    665. 

  665.          * @throws IOException
    666. 

  666.          */
    667. 

  667.         public static IList GetSignatureAlgorithmsExtension(IDictionary extensions)
    668. 

  668.         {
    669. 

  669.             byte[] extensionData = GetExtensionData(extensions, ExtensionType.signature_algorithms);
    670. 

  670.             return extensionData == null ? null : ReadSignatureAlgorithmsExtension(extensionData);
    671. 

  671.         }
    672. 

  672. 

  673.         /**
    674. 

  674.          * Create a 'signature_algorithms' extension value.
    675. 

  675.          *
    676. 

  676.          * @param supportedSignatureAlgorithms A {@link Vector} containing at least 1 {@link SignatureAndHashAlgorithm}.
    677. 

  677.          * @return A byte array suitable for use as an extension value.
    678. 

  678.          * @throws IOException
    679. 

  679.          */
    680. 

  680.         public static byte[] CreateSignatureAlgorithmsExtension(IList supportedSignatureAlgorithms)
    681. 

  681.         {
    682. 

  682.             MemoryStream buf = new MemoryStream();
    683. 

  683. 

  684.             // supported_signature_algorithms
    685. 

  685.             EncodeSupportedSignatureAlgorithms(supportedSignatureAlgorithms, false, buf);
    686. 

  686. 

  687.             return buf.ToArray();
    688. 

  688.         }
    689. 

  689. 

  690.         /**
    691. 

  691.          * Read 'signature_algorithms' extension data.
    692. 

  692.          *
    693. 

  693.          * @param extensionData The extension data.
    694. 

  694.          * @return A {@link Vector} containing at least 1 {@link SignatureAndHashAlgorithm}.
    695. 

  695.          * @throws IOException
    696. 

  696.          */
    697. 

  697.         public static IList ReadSignatureAlgorithmsExtension(byte[] extensionData)
    698. 

  698.         {
    699. 

  699.             if (extensionData == null)
    700. 

  700.                 throw new ArgumentNullException("extensionData");
    701. 

  701. 

  702.             MemoryStream buf = new MemoryStream(extensionData, false);
    703. 

  703. 

  704.             // supported_signature_algorithms
    705. 

  705.             IList supported_signature_algorithms = ParseSupportedSignatureAlgorithms(false, buf);
    706. 

  706. 

  707.             TlsProtocol.AssertEmpty(buf);
    708. 

  708. 

  709.             return supported_signature_algorithms;
    710. 

  710.         }
    711. 

  711. 

  712.         public static void EncodeSupportedSignatureAlgorithms(IList supportedSignatureAlgorithms, bool allowAnonymous,
    713. 

  713.             Stream output)
    714. 

  714.         {
    715. 

  715.             if (supportedSignatureAlgorithms == null)
    716. 

  716.                 throw new ArgumentNullException("supportedSignatureAlgorithms");
    717. 

  717.             if (supportedSignatureAlgorithms.Count < 1 || supportedSignatureAlgorithms.Count >= (1 << 15))
    718. 

  718.                 throw new ArgumentException("must have length from 1 to (2^15 - 1)", "supportedSignatureAlgorithms");
    719. 

  719. 

  720.             // supported_signature_algorithms
    721. 

  721.             int length = 2 * supportedSignatureAlgorithms.Count;
    722. 

  722.             CheckUint16(length);
    723. 

  723.             WriteUint16(length, output);
    724. 

  724. 

  725.             foreach (SignatureAndHashAlgorithm entry in supportedSignatureAlgorithms)
    726. 

  726.             {
    727. 

  727.                 if (!allowAnonymous && entry.Signature == SignatureAlgorithm.anonymous)
    728. 

  728.                 {
    729. 

  729.                     /*
    730. 

  730.                      * RFC 5246 7.4.1.4.1 The "anonymous" value is meaningless in this context but used
    731. 

  731.                      * in Section 7.4.3. It MUST NOT appear in this extension.
    732. 

  732.                      */
    733. 

  733.                     throw new ArgumentException(
    734. 

  734.                         "SignatureAlgorithm.anonymous MUST NOT appear in the signature_algorithms extension");
    735. 

  735.                 }
    736. 

  736.                 entry.Encode(output);
    737. 

  737.             }
    738. 

  738.         }
    739. 

  739. 

  740.         public static IList ParseSupportedSignatureAlgorithms(bool allowAnonymous, Stream input)
    741. 

  741.         {
    742. 

  742.             // supported_signature_algorithms
    743. 

  743.             int length = ReadUint16(input);
    744. 

  744.             if (length < 2 || (length & 1) != 0)
    745. 

  745.                 throw new TlsFatalAlert(AlertDescription.decode_error);
    746. 

  746.             int count = length / 2;
    747. 

  747.             IList supportedSignatureAlgorithms = Org.BouncyCastle.Utilities.Platform.CreateArrayList(count);
    748. 

  748.             for (int i = 0; i < count; ++i)
    749. 

  749.             {
    750. 

  750.                 SignatureAndHashAlgorithm entry = SignatureAndHashAlgorithm.Parse(input);
    751. 

  751.                 if (!allowAnonymous && entry.Signature == SignatureAlgorithm.anonymous)
    752. 

  752.                 {
    753. 

  753.                     /*
    754. 

  754.                      * RFC 5246 7.4.1.4.1 The "anonymous" value is meaningless in this context but used
    755. 

  755.                      * in Section 7.4.3. It MUST NOT appear in this extension.
    756. 

  756.                      */
    757. 

  757.                     throw new TlsFatalAlert(AlertDescription.illegal_parameter);
    758. 

  758.                 }
    759. 

  759.                 supportedSignatureAlgorithms.Add(entry);
    760. 

  760.             }
    761. 

  761.             return supportedSignatureAlgorithms;
    762. 

  762.         }
    763. 

  763. 

  764.         public static void VerifySupportedSignatureAlgorithm(IList supportedSignatureAlgorithms, SignatureAndHashAlgorithm signatureAlgorithm)
    765. 

  765.         {
    766. 

  766.             if (supportedSignatureAlgorithms == null)
    767. 

  767.                 throw new ArgumentNullException("supportedSignatureAlgorithms");
    768. 

  768.             if (supportedSignatureAlgorithms.Count < 1 || supportedSignatureAlgorithms.Count >= (1 << 15))
    769. 

  769.                 throw new ArgumentException("must have length from 1 to (2^15 - 1)", "supportedSignatureAlgorithms");
    770. 

  770.             if (signatureAlgorithm == null)
    771. 

  771.                 throw new ArgumentNullException("signatureAlgorithm");
    772. 

  772. 

  773.             if (signatureAlgorithm.Signature != SignatureAlgorithm.anonymous)
    774. 

  774.             {
    775. 

  775.                 foreach (SignatureAndHashAlgorithm entry in supportedSignatureAlgorithms)
    776. 

  776.                 {
    777. 

  777.                     if (entry.Hash == signatureAlgorithm.Hash && entry.Signature == signatureAlgorithm.Signature)
    778. 

  778.                         return;
    779. 

  779.                 }
    780. 

  780.             }
    781. 

  781. 

  782.             throw new TlsFatalAlert(AlertDescription.illegal_parameter);
    783. 

  783.         }
    784. 

  784. 

  785.         public static byte[] PRF(TlsContext context, byte[] secret, string asciiLabel, byte[] seed, int size)
    786. 

  786.         {
    787. 

  787.             ProtocolVersion version = context.ServerVersion;
    788. 

  788. 

  789.             if (version.IsSsl)
    790. 

  790.                 throw new InvalidOperationException("No PRF available for SSLv3 session");
    791. 

  791. 

  792.             byte[] label = Strings.ToByteArray(asciiLabel);
    793. 

  793.             byte[] labelSeed = Concat(label, seed);
    794. 

  794. 

  795.             int prfAlgorithm = context.SecurityParameters.PrfAlgorithm;
    796. 

  796. 

  797.             if (prfAlgorithm == PrfAlgorithm.tls_prf_legacy)
    798. 

  798.                 return PRF_legacy(secret, label, labelSeed, size);
    799. 

  799. 

  800.             IDigest prfDigest = CreatePrfHash(prfAlgorithm);
    801. 

  801.             byte[] buf = new byte[size];
    802. 

  802.             HMacHash(prfDigest, secret, labelSeed, buf);
    803. 

  803.             return buf;
    804. 

  804.         }
    805. 

  805. 

  806.         public static byte[] PRF_legacy(byte[] secret, string asciiLabel, byte[] seed, int size)
    807. 

  807.         {
    808. 

  808.             byte[] label = Strings.ToByteArray(asciiLabel);
    809. 

  809.             byte[] labelSeed = Concat(label, seed);
    810. 

  810. 

  811.             return PRF_legacy(secret, label, labelSeed, size);
    812. 

  812.         }
    813. 

  813. 

  814.         internal static byte[] PRF_legacy(byte[] secret, byte[] label, byte[] labelSeed, int size)
    815. 

  815.         {
    816. 

  816.             int s_half = (secret.Length + 1) / 2;
    817. 

  817.             byte[] s1 = new byte[s_half];
    818. 

  818.             byte[] s2 = new byte[s_half];
    819. 

  819.             Array.Copy(secret, 0, s1, 0, s_half);
    820. 

  820.             Array.Copy(secret, secret.Length - s_half, s2, 0, s_half);
    821. 

  821. 

  822.             byte[] b1 = new byte[size];
    823. 

  823.             byte[] b2 = new byte[size];
    824. 

  824.             HMacHash(CreateHash(HashAlgorithm.md5), s1, labelSeed, b1);
    825. 

  825.             HMacHash(CreateHash(HashAlgorithm.sha1), s2, labelSeed, b2);
    826. 

  826.             for (int i = 0; i < size; i++)
    827. 

  827.             {
    828. 

  828.                 b1[i] ^= b2[i];
    829. 

  829.             }
    830. 

  830.             return b1;
    831. 

  831.         }
    832. 

  832. 

  833.         internal static byte[] Concat(byte[] a, byte[] b)
    834. 

  834.         {
    835. 

  835.             byte[] c = new byte[a.Length + b.Length];
    836. 

  836.             Array.Copy(a, 0, c, 0, a.Length);
    837. 

  837.             Array.Copy(b, 0, c, a.Length, b.Length);
    838. 

  838.             return c;
    839. 

  839.         }
    840. 

  840. 

  841.         internal static void HMacHash(IDigest digest, byte[] secret, byte[] seed, byte[] output)
    842. 

  842.         {
    843. 

  843.             HMac mac = new HMac(digest);
    844. 

  844.             mac.Init(new KeyParameter(secret));
    845. 

  845.             byte[] a = seed;
    846. 

  846.             int size = digest.GetDigestSize();
    847. 

  847.             int iterations = (output.Length + size - 1) / size;
    848. 

  848.             byte[] buf = new byte[mac.GetMacSize()];
    849. 

  849.             byte[] buf2 = new byte[mac.GetMacSize()];
    850. 

  850.             for (int i = 0; i < iterations; i++)
    851. 

  851.             {
    852. 

  852.                 mac.BlockUpdate(a, 0, a.Length);
    853. 

  853.                 mac.DoFinal(buf, 0);
    854. 

  854.                 a = buf;
    855. 

  855.                 mac.BlockUpdate(a, 0, a.Length);
    856. 

  856.                 mac.BlockUpdate(seed, 0, seed.Length);
    857. 

  857.                 mac.DoFinal(buf2, 0);
    858. 

  858.                 Array.Copy(buf2, 0, output, (size * i), System.Math.Min(size, output.Length - (size * i)));
    859. 

  859.             }
    860. 

  860.         }
    861. 

  861. 

  862.         internal static void ValidateKeyUsage(X509CertificateStructure c, int keyUsageBits)
    863. 

  863.         {
    864. 

  864.             X509Extensions exts = c.TbsCertificate.Extensions;
    865. 

  865.             if (exts != null)
    866. 

  866.             {
    867. 

  867.                 X509Extension ext = exts.GetExtension(X509Extensions.KeyUsage);
    868. 

  868.                 if (ext != null)
    869. 

  869.                 {
    870. 

  870.                     DerBitString ku = KeyUsage.GetInstance(ext);
    871. 

  871.                     int bits = ku.GetBytes()[0];
    872. 

  872.                     if ((bits & keyUsageBits) != keyUsageBits)
    873. 

  873.                         throw new TlsFatalAlert(AlertDescription.certificate_unknown);
    874. 

  874.                 }
    875. 

  875.             }
    876. 

  876.         }
    877. 

  877. 

  878.         internal static byte[] CalculateKeyBlock(TlsContext context, int size)
    879. 

  879.         {
    880. 

  880.             SecurityParameters securityParameters = context.SecurityParameters;
    881. 

  881.             byte[] master_secret = securityParameters.MasterSecret;
    882. 

  882.             byte[] seed = Concat(securityParameters.ServerRandom, securityParameters.ClientRandom);
    883. 

  883. 

  884.             if (IsSsl(context))
    885. 

  885.                 return CalculateKeyBlock_Ssl(master_secret, seed, size);
    886. 

  886. 

  887.             return PRF(context, master_secret, ExporterLabel.key_expansion, seed, size);
    888. 

  888.         }
    889. 

  889. 

  890.         internal static byte[] CalculateKeyBlock_Ssl(byte[] master_secret, byte[] random, int size)
    891. 

  891.         {
    892. 

  892.             IDigest md5 = CreateHash(HashAlgorithm.md5);
    893. 

  893.             IDigest sha1 = CreateHash(HashAlgorithm.sha1);
    894. 

  894.             int md5Size = md5.GetDigestSize();
    895. 

  895.             byte[] shatmp = new byte[sha1.GetDigestSize()];
    896. 

  896.             byte[] tmp = new byte[size + md5Size];
    897. 

  897. 

  898.             int i = 0, pos = 0;
    899. 

  899.             while (pos < size)
    900. 

  900.             {
    901. 

  901.                 byte[] ssl3Const = SSL3_CONST[i];
    902. 

  902. 

  903.                 sha1.BlockUpdate(ssl3Const, 0, ssl3Const.Length);
    904. 

  904.                 sha1.BlockUpdate(master_secret, 0, master_secret.Length);
    905. 

  905.                 sha1.BlockUpdate(random, 0, random.Length);
    906. 

  906.                 sha1.DoFinal(shatmp, 0);
    907. 

  907. 

  908.                 md5.BlockUpdate(master_secret, 0, master_secret.Length);
    909. 

  909.                 md5.BlockUpdate(shatmp, 0, shatmp.Length);
    910. 

  910.                 md5.DoFinal(tmp, pos);
    911. 

  911. 

  912.                 pos += md5Size;
    913. 

  913.                 ++i;
    914. 

  914.             }
    915. 

  915. 

  916.             return Arrays.CopyOfRange(tmp, 0, size);
    917. 

  917.         }
    918. 

  918. 

  919.         internal static byte[] CalculateMasterSecret(TlsContext context, byte[] pre_master_secret)
    920. 

  920.         {
    921. 

  921.             SecurityParameters securityParameters = context.SecurityParameters;
    922. 

  922. 

  923.             byte[] seed = securityParameters.extendedMasterSecret
    924. 

  924.                 ?   securityParameters.SessionHash
    925. 

  925.                 :   Concat(securityParameters.ClientRandom, securityParameters.ServerRandom);
    926. 

  926. 

  927.             if (IsSsl(context))
    928. 

  928.                 return CalculateMasterSecret_Ssl(pre_master_secret, seed);
    929. 

  929. 

  930.             string asciiLabel = securityParameters.extendedMasterSecret
    931. 

  931.                 ?   ExporterLabel.extended_master_secret
    932. 

  932.                 :   ExporterLabel.master_secret;
    933. 

  933. 

  934.             return PRF(context, pre_master_secret, asciiLabel, seed, 48);
    935. 

  935.         }
    936. 

  936. 

  937.         internal static byte[] CalculateMasterSecret_Ssl(byte[] pre_master_secret, byte[] random)
    938. 

  938.         {
    939. 

  939.             IDigest md5 = CreateHash(HashAlgorithm.md5);
    940. 

  940.             IDigest sha1 = CreateHash(HashAlgorithm.sha1);
    941. 

  941.             int md5Size = md5.GetDigestSize();
    942. 

  942.             byte[] shatmp = new byte[sha1.GetDigestSize()];
    943. 

  943. 

  944.             byte[] rval = new byte[md5Size * 3];
    945. 

  945.             int pos = 0;
    946. 

  946. 

  947.             for (int i = 0; i < 3; ++i)
    948. 

  948.             {
    949. 

  949.                 byte[] ssl3Const = SSL3_CONST[i];
    950. 

  950. 

  951.                 sha1.BlockUpdate(ssl3Const, 0, ssl3Const.Length);
    952. 

  952.                 sha1.BlockUpdate(pre_master_secret, 0, pre_master_secret.Length);
    953. 

  953.                 sha1.BlockUpdate(random, 0, random.Length);
    954. 

  954.                 sha1.DoFinal(shatmp, 0);
    955. 

  955. 

  956.                 md5.BlockUpdate(pre_master_secret, 0, pre_master_secret.Length);
    957. 

  957.                 md5.BlockUpdate(shatmp, 0, shatmp.Length);
    958. 

  958.                 md5.DoFinal(rval, pos);
    959. 

  959. 

  960.                 pos += md5Size;
    961. 

  961.             }
    962. 

  962. 

  963.             return rval;
    964. 

  964.         }
    965. 

  965. 

  966.         internal static byte[] CalculateVerifyData(TlsContext context, string asciiLabel, byte[] handshakeHash)
    967. 

  967.         {
    968. 

  968.             if (IsSsl(context))
    969. 

  969.                 return handshakeHash;
    970. 

  970. 

  971.             SecurityParameters securityParameters = context.SecurityParameters;
    972. 

  972.             byte[] master_secret = securityParameters.MasterSecret;
    973. 

  973.             int verify_data_length = securityParameters.VerifyDataLength;
    974. 

  974. 

  975.             return PRF(context, master_secret, asciiLabel, handshakeHash, verify_data_length);
    976. 

  976.         }
    977. 

  977. 

  978.         public static IDigest CreateHash(byte hashAlgorithm)
    979. 

  979.         {
    980. 

  980.             switch (hashAlgorithm)
    981. 

  981.             {
    982. 

  982.             case HashAlgorithm.md5:
    983. 

  983.                 return new MD5Digest();
    984. 

  984.             case HashAlgorithm.sha1:
    985. 

  985.                 return new Sha1Digest();
    986. 

  986.             case HashAlgorithm.sha224:
    987. 

  987.                 return new Sha224Digest();
    988. 

  988.             case HashAlgorithm.sha256:
    989. 

  989.                 return new Sha256Digest();
    990. 

  990.             case HashAlgorithm.sha384:
    991. 

  991.                 return new Sha384Digest();
    992. 

  992.             case HashAlgorithm.sha512:
    993. 

  993.                 return new Sha512Digest();
    994. 

  994.             default:
    995. 

  995.                 throw new ArgumentException("unknown HashAlgorithm", "hashAlgorithm");
    996. 

  996.             }
    997. 

  997.         }
    998. 

  998. 

  999.         public static IDigest CreateHash(SignatureAndHashAlgorithm signatureAndHashAlgorithm)
    1000. 

  1000.         {
    1001. 

  1001.             return signatureAndHashAlgorithm == null
    1002. 

  1002.                 ?   new CombinedHash()
    1003. 

  1003.                 :   CreateHash(signatureAndHashAlgorithm.Hash);
    1004. 

  1004.         }
    1005. 

  1005. 

  1006.         public static IDigest CloneHash(byte hashAlgorithm, IDigest hash)
    1007. 

  1007.         {
    1008. 

  1008.             switch (hashAlgorithm)
    1009. 

  1009.             {
    1010. 

  1010.             case HashAlgorithm.md5:
    1011. 

  1011.                 return new MD5Digest((MD5Digest)hash);
    1012. 

  1012.             case HashAlgorithm.sha1:
    1013. 

  1013.                 return new Sha1Digest((Sha1Digest)hash);
    1014. 

  1014.             case HashAlgorithm.sha224:
    1015. 

  1015.                 return new Sha224Digest((Sha224Digest)hash);
    1016. 

  1016.             case HashAlgorithm.sha256:
    1017. 

  1017.                 return new Sha256Digest((Sha256Digest)hash);
    1018. 

  1018.             case HashAlgorithm.sha384:
    1019. 

  1019.                 return new Sha384Digest((Sha384Digest)hash);
    1020. 

  1020.             case HashAlgorithm.sha512:
    1021. 

  1021.                 return new Sha512Digest((Sha512Digest)hash);
    1022. 

  1022.             default:
    1023. 

  1023.                 throw new ArgumentException("unknown HashAlgorithm", "hashAlgorithm");
    1024. 

  1024.             }
    1025. 

  1025.         }
    1026. 

  1026. 

  1027.         public static IDigest CreatePrfHash(int prfAlgorithm)
    1028. 

  1028.         {
    1029. 

  1029.             switch (prfAlgorithm)
    1030. 

  1030.             {
    1031. 

  1031.                 case PrfAlgorithm.tls_prf_legacy:
    1032. 

  1032.                     return new CombinedHash();
    1033. 

  1033.                 default:
    1034. 

  1034.                     return CreateHash(GetHashAlgorithmForPrfAlgorithm(prfAlgorithm));
    1035. 

  1035.             }
    1036. 

  1036.         }
    1037. 

  1037. 

  1038.         public static IDigest ClonePrfHash(int prfAlgorithm, IDigest hash)
    1039. 

  1039.         {
    1040. 

  1040.             switch (prfAlgorithm)
    1041. 

  1041.             {
    1042. 

  1042.                 case PrfAlgorithm.tls_prf_legacy:
    1043. 

  1043.                     return new CombinedHash((CombinedHash)hash);
    1044. 

  1044.                 default:
    1045. 

  1045.                     return CloneHash(GetHashAlgorithmForPrfAlgorithm(prfAlgorithm), hash);
    1046. 

  1046.             }
    1047. 

  1047.         }
    1048. 

  1048. 

  1049.         public static byte GetHashAlgorithmForPrfAlgorithm(int prfAlgorithm)
    1050. 

  1050.         {
    1051. 

  1051.             switch (prfAlgorithm)
    1052. 

  1052.             {
    1053. 

  1053.                 case PrfAlgorithm.tls_prf_legacy:
    1054. 

  1054.                     throw new ArgumentException("legacy PRF not a valid algorithm", "prfAlgorithm");
    1055. 

  1055.                 case PrfAlgorithm.tls_prf_sha256:
    1056. 

  1056.                     return HashAlgorithm.sha256;
    1057. 

  1057.                 case PrfAlgorithm.tls_prf_sha384:
    1058. 

  1058.                     return HashAlgorithm.sha384;
    1059. 

  1059.                 default:
    1060. 

  1060.                     throw new ArgumentException("unknown PrfAlgorithm", "prfAlgorithm");
    1061. 

  1061.             }
    1062. 

  1062.         }
    1063. 

  1063. 

  1064.         public static DerObjectIdentifier GetOidForHashAlgorithm(byte hashAlgorithm)
    1065. 

  1065.         {
    1066. 

  1066.             switch (hashAlgorithm)
    1067. 

  1067.             {
    1068. 

  1068.                 case HashAlgorithm.md5:
    1069. 

  1069.                     return PkcsObjectIdentifiers.MD5;
    1070. 

  1070.                 case HashAlgorithm.sha1:
    1071. 

  1071.                     return X509ObjectIdentifiers.IdSha1;
    1072. 

  1072.                 case HashAlgorithm.sha224:
    1073. 

  1073.                     return NistObjectIdentifiers.IdSha224;
    1074. 

  1074.                 case HashAlgorithm.sha256:
    1075. 

  1075.                     return NistObjectIdentifiers.IdSha256;
    1076. 

  1076.                 case HashAlgorithm.sha384:
    1077. 

  1077.                     return NistObjectIdentifiers.IdSha384;
    1078. 

  1078.                 case HashAlgorithm.sha512:
    1079. 

  1079.                     return NistObjectIdentifiers.IdSha512;
    1080. 

  1080.                 default:
    1081. 

  1081.                     throw new ArgumentException("unknown HashAlgorithm", "hashAlgorithm");
    1082. 

  1082.             }
    1083. 

  1083.         }
    1084. 

  1084. 

  1085.         internal static short GetClientCertificateType(Certificate clientCertificate, Certificate serverCertificate)
    1086. 

  1086.         {
    1087. 

  1087.             if (clientCertificate.IsEmpty)
    1088. 

  1088.                 return -1;
    1089. 

  1089. 

  1090.             X509CertificateStructure x509Cert = clientCertificate.GetCertificateAt(0);
    1091. 

  1091.             SubjectPublicKeyInfo keyInfo = x509Cert.SubjectPublicKeyInfo;
    1092. 

  1092.             try
    1093. 

  1093.             {
    1094. 

  1094.                 AsymmetricKeyParameter publicKey = PublicKeyFactory.CreateKey(keyInfo);
    1095. 

  1095.                 if (publicKey.IsPrivate)
    1096. 

  1096.                     throw new TlsFatalAlert(AlertDescription.internal_error);
    1097. 

  1097. 

  1098.                 /*
    1099. 

  1099.                  * TODO RFC 5246 7.4.6. The certificates MUST be signed using an acceptable hash/
    1100. 

  1100.                  * signature algorithm pair, as described in Section 7.4.4. Note that this relaxes the
    1101. 

  1101.                  * constraints on certificate-signing algorithms found in prior versions of TLS.
    1102. 

  1102.                  */
    1103. 

  1103. 

  1104.                 /*
    1105. 

  1105.                  * RFC 5246 7.4.6. Client Certificate
    1106. 

  1106.                  */
    1107. 

  1107. 

  1108.                 /*
    1109. 

  1109.                  * RSA public key; the certificate MUST allow the key to be used for signing with the
    1110. 

  1110.                  * signature scheme and hash algorithm that will be employed in the certificate verify
    1111. 

  1111.                  * message.
    1112. 

  1112.                  */
    1113. 

  1113.                 if (publicKey is RsaKeyParameters)
    1114. 

  1114.                 {
    1115. 

  1115.                     ValidateKeyUsage(x509Cert, KeyUsage.DigitalSignature);
    1116. 

  1116.                     return ClientCertificateType.rsa_sign;
    1117. 

  1117.                 }
    1118. 

  1118. 

  1119.                 /*
    1120. 

  1120.                  * DSA public key; the certificate MUST allow the key to be used for signing with the
    1121. 

  1121.                  * hash algorithm that will be employed in the certificate verify message.
    1122. 

  1122.                  */
    1123. 

  1123.                 if (publicKey is DsaPublicKeyParameters)
    1124. 

  1124.                 {
    1125. 

  1125.                     ValidateKeyUsage(x509Cert, KeyUsage.DigitalSignature);
    1126. 

  1126.                     return ClientCertificateType.dss_sign;
    1127. 

  1127.                 }
    1128. 

  1128. 

  1129.                 /*
    1130. 

  1130.                  * ECDSA-capable public key; the certificate MUST allow the key to be used for signing
    1131. 

  1131.                  * with the hash algorithm that will be employed in the certificate verify message; the
    1132. 

  1132.                  * public key MUST use a curve and point format supported by the server.
    1133. 

  1133.                  */
    1134. 

  1134.                 if (publicKey is ECPublicKeyParameters)
    1135. 

  1135.                 {
    1136. 

  1136.                     ValidateKeyUsage(x509Cert, KeyUsage.DigitalSignature);
    1137. 

  1137.                     // TODO Check the curve and point format
    1138. 

  1138.                     return ClientCertificateType.ecdsa_sign;
    1139. 

  1139.                 }
    1140. 

  1140. 

  1141.                 // TODO Add support for ClientCertificateType.*_fixed_*
    1142. 

  1142. 

  1143.                 throw new TlsFatalAlert(AlertDescription.unsupported_certificate);
    1144. 

  1144.             }
    1145. 

  1145.             catch (Exception e)
    1146. 

  1146.             {
    1147. 

  1147.                 throw new TlsFatalAlert(AlertDescription.unsupported_certificate, e);
    1148. 

  1148.             }
    1149. 

  1149.         }
    1150. 

  1150. 

  1151.         internal static void TrackHashAlgorithms(TlsHandshakeHash handshakeHash, IList supportedSignatureAlgorithms)
    1152. 

  1152.         {
    1153. 

  1153.             if (supportedSignatureAlgorithms != null)
    1154. 

  1154.             {
    1155. 

  1155.                 foreach (SignatureAndHashAlgorithm signatureAndHashAlgorithm in supportedSignatureAlgorithms)
    1156. 

  1156.                 {
    1157. 

  1157.                     byte hashAlgorithm = signatureAndHashAlgorithm.Hash;
    1158. 

  1158. 

  1159.                     // TODO Support values in the "Reserved for Private Use" range
    1160. 

  1160.                     if (!HashAlgorithm.IsPrivate(hashAlgorithm))
    1161. 

  1161.                     {
    1162. 

  1162.                         handshakeHash.TrackHashAlgorithm(hashAlgorithm);
    1163. 

  1163.                     }
    1164. 

  1164.                 }
    1165. 

  1165.             }
    1166. 

  1166.         }
    1167. 

  1167. 

  1168.         public static bool HasSigningCapability(byte clientCertificateType)
    1169. 

  1169.         {
    1170. 

  1170.             switch (clientCertificateType)
    1171. 

  1171.             {
    1172. 

  1172.             case ClientCertificateType.dss_sign:
    1173. 

  1173.             case ClientCertificateType.ecdsa_sign:
    1174. 

  1174.             case ClientCertificateType.rsa_sign:
    1175. 

  1175.                 return true;
    1176. 

  1176.             default:
    1177. 

  1177.                 return false;
    1178. 

  1178.             }
    1179. 

  1179.         }
    1180. 

  1180. 

  1181.         public static TlsSigner CreateTlsSigner(byte clientCertificateType)
    1182. 

  1182.         {
    1183. 

  1183.             switch (clientCertificateType)
    1184. 

  1184.             {
    1185. 

  1185.             case ClientCertificateType.dss_sign:
    1186. 

  1186.                 return new TlsDssSigner();
    1187. 

  1187.             case ClientCertificateType.ecdsa_sign:
    1188. 

  1188.                 return new TlsECDsaSigner();
    1189. 

  1189.             case ClientCertificateType.rsa_sign:
    1190. 

  1190.                 return new TlsRsaSigner();
    1191. 

  1191.             default:
    1192. 

  1192.                 throw new ArgumentException("not a type with signing capability", "clientCertificateType");
    1193. 

  1193.             }
    1194. 

  1194.         }
    1195. 

  1195. 

  1196.         internal static readonly byte[] SSL_CLIENT = {0x43, 0x4C, 0x4E, 0x54};
    1197. 

  1197.         internal static readonly byte[] SSL_SERVER = {0x53, 0x52, 0x56, 0x52};
    1198. 

  1198. 

  1199.         // SSL3 magic mix constants ("A", "BB", "CCC", ...)
    1200. 

  1200.         internal static readonly byte[][] SSL3_CONST = GenSsl3Const();
    1201. 

  1201. 

  1202.         private static byte[][] GenSsl3Const()
    1203. 

  1203.         {
    1204. 

  1204.             int n = 10;
    1205. 

  1205.             byte[][] arr = new byte[n][];
    1206. 

  1206.             for (int i = 0; i < n; i++)
    1207. 

  1207.             {
    1208. 

  1208.                 byte[] b = new byte[i + 1];
    1209. 

  1209.                 Arrays.Fill(b, (byte)('A' + i));
    1210. 

  1210.                 arr[i] = b;
    1211. 

  1211.             }
    1212. 

  1212.             return arr;
    1213. 

  1213.         }
    1214. 

  1214. 

  1215.         private static IList VectorOfOne(object obj)
    1216. 

  1216.         {
    1217. 

  1217.             IList v = Org.BouncyCastle.Utilities.Platform.CreateArrayList(1);
    1218. 

  1218.             v.Add(obj);
    1219. 

  1219.             return v;
    1220. 

  1220.         }
    1221. 

  1221. 

  1222.         public static int GetCipherType(int ciphersuite)
    1223. 

  1223.         {
    1224. 

  1224.             switch (GetEncryptionAlgorithm(ciphersuite))
    1225. 

  1225.             {
    1226. 

  1226.             case EncryptionAlgorithm.AES_128_CCM:
    1227. 

  1227.             case EncryptionAlgorithm.AES_128_CCM_8:
    1228. 

  1228.             case EncryptionAlgorithm.AES_128_GCM:
    1229. 

  1229.             case EncryptionAlgorithm.AES_128_OCB_TAGLEN96:
    1230. 

  1230.             case EncryptionAlgorithm.AES_256_CCM:
    1231. 

  1231.             case EncryptionAlgorithm.AES_256_CCM_8:
    1232. 

  1232.             case EncryptionAlgorithm.AES_256_GCM:
    1233. 

  1233.             case EncryptionAlgorithm.AES_256_OCB_TAGLEN96:
    1234. 

  1234.             case EncryptionAlgorithm.CAMELLIA_128_GCM:
    1235. 

  1235.             case EncryptionAlgorithm.CAMELLIA_256_GCM:
    1236. 

  1236.             case EncryptionAlgorithm.CHACHA20_POLY1305:
    1237. 

  1237.                 return CipherType.aead;
    1238. 

  1238. 

  1239.             case EncryptionAlgorithm.RC2_CBC_40:
    1240. 

  1240.             case EncryptionAlgorithm.IDEA_CBC:
    1241. 

  1241.             case EncryptionAlgorithm.DES40_CBC:
    1242. 

  1242.             case EncryptionAlgorithm.DES_CBC:
    1243. 

  1243.             case EncryptionAlgorithm.cls_3DES_EDE_CBC:
    1244. 

  1244.             case EncryptionAlgorithm.AES_128_CBC:
    1245. 

  1245.             case EncryptionAlgorithm.AES_256_CBC:
    1246. 

  1246.             case EncryptionAlgorithm.CAMELLIA_128_CBC:
    1247. 

  1247.             case EncryptionAlgorithm.CAMELLIA_256_CBC:
    1248. 

  1248.             case EncryptionAlgorithm.SEED_CBC:
    1249. 

  1249.                 return CipherType.block;
    1250. 

  1250. 

  1251.             case EncryptionAlgorithm.RC4_40:
    1252. 

  1252.             case EncryptionAlgorithm.RC4_128:
    1253. 

  1253.                 return CipherType.stream;
    1254. 

  1254. 

  1255.             default:
    1256. 

  1256.                 throw new TlsFatalAlert(AlertDescription.internal_error);
    1257. 

  1257.             }
    1258. 

  1258.         }
    1259. 

  1259. 

  1260.         public static int GetEncryptionAlgorithm(int ciphersuite)
    1261. 

  1261.         {
    1262. 

  1262.             switch (ciphersuite)
    1263. 

  1263.             {
    1264. 

  1264.             case CipherSuite.TLS_DH_DSS_WITH_3DES_EDE_CBC_SHA:
    1265. 

  1265.             case CipherSuite.TLS_DH_RSA_WITH_3DES_EDE_CBC_SHA:
    1266. 

  1266.             case CipherSuite.TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA:
    1267. 

  1267.             case CipherSuite.TLS_DHE_PSK_WITH_3DES_EDE_CBC_SHA:
    1268. 

  1268.             case CipherSuite.TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA:
    1269. 

  1269.             case CipherSuite.TLS_ECDH_anon_WITH_3DES_EDE_CBC_SHA:
    1270. 

  1270.             case CipherSuite.TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA:
    1271. 

  1271.             case CipherSuite.TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA:
    1272. 

  1272.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA:
    1273. 

  1273.             case CipherSuite.TLS_ECDHE_PSK_WITH_3DES_EDE_CBC_SHA:
    1274. 

  1274.             case CipherSuite.TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA:
    1275. 

  1275.             case CipherSuite.TLS_PSK_WITH_3DES_EDE_CBC_SHA:
    1276. 

  1276.             case CipherSuite.TLS_RSA_PSK_WITH_3DES_EDE_CBC_SHA:
    1277. 

  1277.             case CipherSuite.TLS_RSA_WITH_3DES_EDE_CBC_SHA:
    1278. 

  1278.             case CipherSuite.TLS_SRP_SHA_DSS_WITH_3DES_EDE_CBC_SHA:
    1279. 

  1279.             case CipherSuite.TLS_SRP_SHA_RSA_WITH_3DES_EDE_CBC_SHA:
    1280. 

  1280.             case CipherSuite.TLS_SRP_SHA_WITH_3DES_EDE_CBC_SHA:
    1281. 

  1281.                 return EncryptionAlgorithm.cls_3DES_EDE_CBC;
    1282. 

  1282. 

  1283.             case CipherSuite.TLS_DH_DSS_WITH_AES_128_CBC_SHA:
    1284. 

  1284.             case CipherSuite.TLS_DH_DSS_WITH_AES_128_CBC_SHA256:
    1285. 

  1285.             case CipherSuite.TLS_DH_RSA_WITH_AES_128_CBC_SHA:
    1286. 

  1286.             case CipherSuite.TLS_DH_RSA_WITH_AES_128_CBC_SHA256:
    1287. 

  1287.             case CipherSuite.TLS_DHE_DSS_WITH_AES_128_CBC_SHA:
    1288. 

  1288.             case CipherSuite.TLS_DHE_DSS_WITH_AES_128_CBC_SHA256:
    1289. 

  1289.             case CipherSuite.TLS_DHE_PSK_WITH_AES_128_CBC_SHA:
    1290. 

  1290.             case CipherSuite.TLS_DHE_PSK_WITH_AES_128_CBC_SHA256:
    1291. 

  1291.             case CipherSuite.TLS_DHE_RSA_WITH_AES_128_CBC_SHA:
    1292. 

  1292.             case CipherSuite.TLS_DHE_RSA_WITH_AES_128_CBC_SHA256:
    1293. 

  1293.             case CipherSuite.TLS_ECDH_anon_WITH_AES_128_CBC_SHA:
    1294. 

  1294.             case CipherSuite.TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA:
    1295. 

  1295.             case CipherSuite.TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256:
    1296. 

  1296.             case CipherSuite.TLS_ECDH_RSA_WITH_AES_128_CBC_SHA:
    1297. 

  1297.             case CipherSuite.TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256:
    1298. 

  1298.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA:
    1299. 

  1299.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256:
    1300. 

  1300.             case CipherSuite.TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA:
    1301. 

  1301.             case CipherSuite.TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256:
    1302. 

  1302.             case CipherSuite.TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA:
    1303. 

  1303.             case CipherSuite.TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256:
    1304. 

  1304.             case CipherSuite.TLS_PSK_WITH_AES_128_CBC_SHA:
    1305. 

  1305.             case CipherSuite.TLS_PSK_WITH_AES_128_CBC_SHA256:
    1306. 

  1306.             case CipherSuite.TLS_RSA_PSK_WITH_AES_128_CBC_SHA:
    1307. 

  1307.             case CipherSuite.TLS_RSA_PSK_WITH_AES_128_CBC_SHA256:
    1308. 

  1308.             case CipherSuite.TLS_RSA_WITH_AES_128_CBC_SHA:
    1309. 

  1309.             case CipherSuite.TLS_RSA_WITH_AES_128_CBC_SHA256:
    1310. 

  1310.             case CipherSuite.TLS_SRP_SHA_DSS_WITH_AES_128_CBC_SHA:
    1311. 

  1311.             case CipherSuite.TLS_SRP_SHA_RSA_WITH_AES_128_CBC_SHA:
    1312. 

  1312.             case CipherSuite.TLS_SRP_SHA_WITH_AES_128_CBC_SHA:
    1313. 

  1313.                 return EncryptionAlgorithm.AES_128_CBC;
    1314. 

  1314. 

  1315.             case CipherSuite.TLS_DHE_PSK_WITH_AES_128_CCM:
    1316. 

  1316.             case CipherSuite.TLS_DHE_RSA_WITH_AES_128_CCM:
    1317. 

  1317.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_128_CCM:
    1318. 

  1318.             case CipherSuite.TLS_PSK_WITH_AES_128_CCM:
    1319. 

  1319.             case CipherSuite.TLS_RSA_WITH_AES_128_CCM:
    1320. 

  1320.                 return EncryptionAlgorithm.AES_128_CCM;
    1321. 

  1321. 

  1322.             case CipherSuite.TLS_DHE_RSA_WITH_AES_128_CCM_8:
    1323. 

  1323.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8:
    1324. 

  1324.             case CipherSuite.TLS_PSK_DHE_WITH_AES_128_CCM_8:
    1325. 

  1325.             case CipherSuite.TLS_PSK_WITH_AES_128_CCM_8:
    1326. 

  1326.             case CipherSuite.TLS_RSA_WITH_AES_128_CCM_8:
    1327. 

  1327.                 return EncryptionAlgorithm.AES_128_CCM_8;
    1328. 

  1328. 

  1329.             case CipherSuite.TLS_DH_DSS_WITH_AES_128_GCM_SHA256:
    1330. 

  1330.             case CipherSuite.TLS_DH_RSA_WITH_AES_128_GCM_SHA256:
    1331. 

  1331.             case CipherSuite.TLS_DHE_DSS_WITH_AES_128_GCM_SHA256:
    1332. 

  1332.             case CipherSuite.TLS_DHE_PSK_WITH_AES_128_GCM_SHA256:
    1333. 

  1333.             case CipherSuite.TLS_DHE_RSA_WITH_AES_128_GCM_SHA256:
    1334. 

  1334.             case CipherSuite.TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256:
    1335. 

  1335.             case CipherSuite.TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256:
    1336. 

  1336.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256:
    1337. 

  1337.             case CipherSuite.TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256:
    1338. 

  1338.             case CipherSuite.TLS_PSK_WITH_AES_128_GCM_SHA256:
    1339. 

  1339.             case CipherSuite.TLS_RSA_PSK_WITH_AES_128_GCM_SHA256:
    1340. 

  1340.             case CipherSuite.TLS_RSA_WITH_AES_128_GCM_SHA256:
    1341. 

  1341.                 return EncryptionAlgorithm.AES_128_GCM;
    1342. 

  1342. 

  1343.             case CipherSuite.DRAFT_TLS_DHE_PSK_WITH_AES_128_OCB:
    1344. 

  1344.             case CipherSuite.DRAFT_TLS_DHE_RSA_WITH_AES_128_OCB:
    1345. 

  1345.             case CipherSuite.DRAFT_TLS_ECDHE_ECDSA_WITH_AES_128_OCB:
    1346. 

  1346.             case CipherSuite.DRAFT_TLS_ECDHE_PSK_WITH_AES_128_OCB:
    1347. 

  1347.             case CipherSuite.DRAFT_TLS_ECDHE_RSA_WITH_AES_128_OCB:
    1348. 

  1348.             case CipherSuite.DRAFT_TLS_PSK_WITH_AES_128_OCB:
    1349. 

  1349.                 return EncryptionAlgorithm.AES_128_OCB_TAGLEN96;
    1350. 

  1350. 

  1351.             case CipherSuite.TLS_DH_DSS_WITH_AES_256_CBC_SHA:
    1352. 

  1352.             case CipherSuite.TLS_DH_DSS_WITH_AES_256_CBC_SHA256:
    1353. 

  1353.             case CipherSuite.TLS_DH_RSA_WITH_AES_256_CBC_SHA:
    1354. 

  1354.             case CipherSuite.TLS_DH_RSA_WITH_AES_256_CBC_SHA256:
    1355. 

  1355.             case CipherSuite.TLS_DHE_DSS_WITH_AES_256_CBC_SHA:
    1356. 

  1356.             case CipherSuite.TLS_DHE_DSS_WITH_AES_256_CBC_SHA256:
    1357. 

  1357.             case CipherSuite.TLS_DHE_PSK_WITH_AES_256_CBC_SHA:
    1358. 

  1358.             case CipherSuite.TLS_DHE_PSK_WITH_AES_256_CBC_SHA384:
    1359. 

  1359.             case CipherSuite.TLS_DHE_RSA_WITH_AES_256_CBC_SHA:
    1360. 

  1360.             case CipherSuite.TLS_DHE_RSA_WITH_AES_256_CBC_SHA256:
    1361. 

  1361.             case CipherSuite.TLS_ECDH_anon_WITH_AES_256_CBC_SHA:
    1362. 

  1362.             case CipherSuite.TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA:
    1363. 

  1363.             case CipherSuite.TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384:
    1364. 

  1364.             case CipherSuite.TLS_ECDH_RSA_WITH_AES_256_CBC_SHA:
    1365. 

  1365.             case CipherSuite.TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384:
    1366. 

  1366.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA:
    1367. 

  1367.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384:
    1368. 

  1368.             case CipherSuite.TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA:
    1369. 

  1369.             case CipherSuite.TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA384:
    1370. 

  1370.             case CipherSuite.TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA:
    1371. 

  1371.             case CipherSuite.TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384:
    1372. 

  1372.             case CipherSuite.TLS_PSK_WITH_AES_256_CBC_SHA:
    1373. 

  1373.             case CipherSuite.TLS_PSK_WITH_AES_256_CBC_SHA384:
    1374. 

  1374.             case CipherSuite.TLS_RSA_PSK_WITH_AES_256_CBC_SHA:
    1375. 

  1375.             case CipherSuite.TLS_RSA_PSK_WITH_AES_256_CBC_SHA384:
    1376. 

  1376.             case CipherSuite.TLS_RSA_WITH_AES_256_CBC_SHA:
    1377. 

  1377.             case CipherSuite.TLS_RSA_WITH_AES_256_CBC_SHA256:
    1378. 

  1378.             case CipherSuite.TLS_SRP_SHA_DSS_WITH_AES_256_CBC_SHA:
    1379. 

  1379.             case CipherSuite.TLS_SRP_SHA_RSA_WITH_AES_256_CBC_SHA:
    1380. 

  1380.             case CipherSuite.TLS_SRP_SHA_WITH_AES_256_CBC_SHA:
    1381. 

  1381.                 return EncryptionAlgorithm.AES_256_CBC;
    1382. 

  1382. 

  1383.             case CipherSuite.TLS_DHE_PSK_WITH_AES_256_CCM:
    1384. 

  1384.             case CipherSuite.TLS_DHE_RSA_WITH_AES_256_CCM:
    1385. 

  1385.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_256_CCM:
    1386. 

  1386.             case CipherSuite.TLS_PSK_WITH_AES_256_CCM:
    1387. 

  1387.             case CipherSuite.TLS_RSA_WITH_AES_256_CCM:
    1388. 

  1388.                 return EncryptionAlgorithm.AES_256_CCM;
    1389. 

  1389. 

  1390.             case CipherSuite.TLS_DHE_RSA_WITH_AES_256_CCM_8:
    1391. 

  1391.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_256_CCM_8:
    1392. 

  1392.             case CipherSuite.TLS_PSK_DHE_WITH_AES_256_CCM_8:
    1393. 

  1393.             case CipherSuite.TLS_PSK_WITH_AES_256_CCM_8:
    1394. 

  1394.             case CipherSuite.TLS_RSA_WITH_AES_256_CCM_8:
    1395. 

  1395.                 return EncryptionAlgorithm.AES_256_CCM_8;
    1396. 

  1396. 

  1397.             case CipherSuite.TLS_DH_DSS_WITH_AES_256_GCM_SHA384:
    1398. 

  1398.             case CipherSuite.TLS_DH_RSA_WITH_AES_256_GCM_SHA384:
    1399. 

  1399.             case CipherSuite.TLS_DHE_DSS_WITH_AES_256_GCM_SHA384:
    1400. 

  1400.             case CipherSuite.TLS_DHE_PSK_WITH_AES_256_GCM_SHA384:
    1401. 

  1401.             case CipherSuite.TLS_DHE_RSA_WITH_AES_256_GCM_SHA384:
    1402. 

  1402.             case CipherSuite.TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384:
    1403. 

  1403.             case CipherSuite.TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384:
    1404. 

  1404.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384:
    1405. 

  1405.             case CipherSuite.TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384:
    1406. 

  1406.             case CipherSuite.TLS_PSK_WITH_AES_256_GCM_SHA384:
    1407. 

  1407.             case CipherSuite.TLS_RSA_PSK_WITH_AES_256_GCM_SHA384:
    1408. 

  1408.             case CipherSuite.TLS_RSA_WITH_AES_256_GCM_SHA384:
    1409. 

  1409.                 return EncryptionAlgorithm.AES_256_GCM;
    1410. 

  1410. 

  1411.             case CipherSuite.DRAFT_TLS_DHE_PSK_WITH_AES_256_OCB:
    1412. 

  1412.             case CipherSuite.DRAFT_TLS_DHE_RSA_WITH_AES_256_OCB:
    1413. 

  1413.             case CipherSuite.DRAFT_TLS_ECDHE_ECDSA_WITH_AES_256_OCB:
    1414. 

  1414.             case CipherSuite.DRAFT_TLS_ECDHE_PSK_WITH_AES_256_OCB:
    1415. 

  1415.             case CipherSuite.DRAFT_TLS_ECDHE_RSA_WITH_AES_256_OCB:
    1416. 

  1416.             case CipherSuite.DRAFT_TLS_PSK_WITH_AES_256_OCB:
    1417. 

  1417.                 return EncryptionAlgorithm.AES_256_OCB_TAGLEN96;
    1418. 

  1418. 

  1419.             case CipherSuite.TLS_DH_DSS_WITH_CAMELLIA_128_CBC_SHA:
    1420. 

  1420.             case CipherSuite.TLS_DH_RSA_WITH_CAMELLIA_128_CBC_SHA:
    1421. 

  1421.             case CipherSuite.TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA:
    1422. 

  1422.             case CipherSuite.TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA:
    1423. 

  1423.             case CipherSuite.TLS_RSA_WITH_CAMELLIA_128_CBC_SHA:
    1424. 

  1424.                 return EncryptionAlgorithm.CAMELLIA_128_CBC;
    1425. 

  1425. 

  1426.             case CipherSuite.TLS_DH_DSS_WITH_CAMELLIA_128_CBC_SHA256:
    1427. 

  1427.             case CipherSuite.TLS_DH_RSA_WITH_CAMELLIA_128_CBC_SHA256:
    1428. 

  1428.             case CipherSuite.TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA256:
    1429. 

  1429.             case CipherSuite.TLS_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256:
    1430. 

  1430.             case CipherSuite.TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256:
    1431. 

  1431.             case CipherSuite.TLS_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256:
    1432. 

  1432.             case CipherSuite.TLS_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256:
    1433. 

  1433.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256:
    1434. 

  1434.             case CipherSuite.TLS_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256:
    1435. 

  1435.             case CipherSuite.TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256:
    1436. 

  1436.             case CipherSuite.TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256:
    1437. 

  1437.             case CipherSuite.TLS_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256:
    1438. 

  1438.             case CipherSuite.TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256:
    1439. 

  1439.                 return EncryptionAlgorithm.CAMELLIA_128_CBC;
    1440. 

  1440. 

  1441.             case CipherSuite.TLS_DH_DSS_WITH_CAMELLIA_128_GCM_SHA256:
    1442. 

  1442.             case CipherSuite.TLS_DH_RSA_WITH_CAMELLIA_128_GCM_SHA256:
    1443. 

  1443.             case CipherSuite.TLS_DHE_DSS_WITH_CAMELLIA_128_GCM_SHA256:
    1444. 

  1444.             case CipherSuite.TLS_DHE_PSK_WITH_CAMELLIA_128_GCM_SHA256:
    1445. 

  1445.             case CipherSuite.TLS_DHE_RSA_WITH_CAMELLIA_128_GCM_SHA256:
    1446. 

  1446.             case CipherSuite.TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256:
    1447. 

  1447.             case CipherSuite.TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256:
    1448. 

  1448.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_GCM_SHA256:
    1449. 

  1449.             case CipherSuite.TLS_ECDHE_RSA_WITH_CAMELLIA_128_GCM_SHA256:
    1450. 

  1450.             case CipherSuite.TLS_PSK_WITH_CAMELLIA_128_GCM_SHA256:
    1451. 

  1451.             case CipherSuite.TLS_RSA_PSK_WITH_CAMELLIA_128_GCM_SHA256:
    1452. 

  1452.             case CipherSuite.TLS_RSA_WITH_CAMELLIA_128_GCM_SHA256:
    1453. 

  1453.                 return EncryptionAlgorithm.CAMELLIA_128_GCM;
    1454. 

  1454. 

  1455.             case CipherSuite.TLS_DH_DSS_WITH_CAMELLIA_256_CBC_SHA:
    1456. 

  1456.             case CipherSuite.TLS_DH_RSA_WITH_CAMELLIA_256_CBC_SHA:
    1457. 

  1457.             case CipherSuite.TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA:
    1458. 

  1458.             case CipherSuite.TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA:
    1459. 

  1459.             case CipherSuite.TLS_RSA_WITH_CAMELLIA_256_CBC_SHA:
    1460. 

  1460.                 return EncryptionAlgorithm.CAMELLIA_256_CBC;
    1461. 

  1461. 

  1462.             case CipherSuite.TLS_DH_DSS_WITH_CAMELLIA_256_CBC_SHA256:
    1463. 

  1463.             case CipherSuite.TLS_DH_RSA_WITH_CAMELLIA_256_CBC_SHA256:
    1464. 

  1464.             case CipherSuite.TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA256:
    1465. 

  1465.             case CipherSuite.TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256:
    1466. 

  1466.             case CipherSuite.TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256:
    1467. 

  1467.                 return EncryptionAlgorithm.CAMELLIA_256_CBC;
    1468. 

  1468. 

  1469.             case CipherSuite.TLS_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384:
    1470. 

  1470.             case CipherSuite.TLS_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384:
    1471. 

  1471.             case CipherSuite.TLS_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384:
    1472. 

  1472.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384:
    1473. 

  1473.             case CipherSuite.TLS_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384:
    1474. 

  1474.             case CipherSuite.TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384:
    1475. 

  1475.             case CipherSuite.TLS_PSK_WITH_CAMELLIA_256_CBC_SHA384:
    1476. 

  1476.             case CipherSuite.TLS_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384:
    1477. 

  1477.                 return EncryptionAlgorithm.CAMELLIA_256_CBC;
    1478. 

  1478. 

  1479.             case CipherSuite.TLS_DH_DSS_WITH_CAMELLIA_256_GCM_SHA384:
    1480. 

  1480.             case CipherSuite.TLS_DH_RSA_WITH_CAMELLIA_256_GCM_SHA384:
    1481. 

  1481.             case CipherSuite.TLS_DHE_DSS_WITH_CAMELLIA_256_GCM_SHA384:
    1482. 

  1482.             case CipherSuite.TLS_DHE_PSK_WITH_CAMELLIA_256_GCM_SHA384:
    1483. 

  1483.             case CipherSuite.TLS_DHE_RSA_WITH_CAMELLIA_256_GCM_SHA384:
    1484. 

  1484.             case CipherSuite.TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384:
    1485. 

  1485.             case CipherSuite.TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384:
    1486. 

  1486.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384:
    1487. 

  1487.             case CipherSuite.TLS_ECDHE_RSA_WITH_CAMELLIA_256_GCM_SHA384:
    1488. 

  1488.             case CipherSuite.TLS_PSK_WITH_CAMELLIA_256_GCM_SHA384:
    1489. 

  1489.             case CipherSuite.TLS_RSA_PSK_WITH_CAMELLIA_256_GCM_SHA384:
    1490. 

  1490.             case CipherSuite.TLS_RSA_WITH_CAMELLIA_256_GCM_SHA384:
    1491. 

  1491.                 return EncryptionAlgorithm.CAMELLIA_256_GCM;
    1492. 

  1492. 

  1493.             case CipherSuite.DRAFT_TLS_DHE_PSK_WITH_CHACHA20_POLY1305_SHA256:
    1494. 

  1494.             case CipherSuite.DRAFT_TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256:
    1495. 

  1495.             case CipherSuite.DRAFT_TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256:
    1496. 

  1496.             case CipherSuite.DRAFT_TLS_ECDHE_PSK_WITH_CHACHA20_POLY1305_SHA256:
    1497. 

  1497.             case CipherSuite.DRAFT_TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256:
    1498. 

  1498.             case CipherSuite.DRAFT_TLS_PSK_WITH_CHACHA20_POLY1305_SHA256:
    1499. 

  1499.             case CipherSuite.DRAFT_TLS_RSA_PSK_WITH_CHACHA20_POLY1305_SHA256:
    1500. 

  1500.                 return EncryptionAlgorithm.CHACHA20_POLY1305;
    1501. 

  1501. 

  1502.             case CipherSuite.TLS_RSA_WITH_NULL_MD5:
    1503. 

  1503.                 return EncryptionAlgorithm.NULL;
    1504. 

  1504. 

  1505.             case CipherSuite.TLS_DHE_PSK_WITH_NULL_SHA:
    1506. 

  1506.             case CipherSuite.TLS_ECDH_anon_WITH_NULL_SHA:
    1507. 

  1507.             case CipherSuite.TLS_ECDH_ECDSA_WITH_NULL_SHA:
    1508. 

  1508.             case CipherSuite.TLS_ECDH_RSA_WITH_NULL_SHA:
    1509. 

  1509.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_NULL_SHA:
    1510. 

  1510.             case CipherSuite.TLS_ECDHE_PSK_WITH_NULL_SHA:
    1511. 

  1511.             case CipherSuite.TLS_ECDHE_RSA_WITH_NULL_SHA:
    1512. 

  1512.             case CipherSuite.TLS_PSK_WITH_NULL_SHA:
    1513. 

  1513.             case CipherSuite.TLS_RSA_PSK_WITH_NULL_SHA:
    1514. 

  1514.             case CipherSuite.TLS_RSA_WITH_NULL_SHA:
    1515. 

  1515.                 return EncryptionAlgorithm.NULL;
    1516. 

  1516. 

  1517.             case CipherSuite.TLS_DHE_PSK_WITH_NULL_SHA256:
    1518. 

  1518.             case CipherSuite.TLS_ECDHE_PSK_WITH_NULL_SHA256:
    1519. 

  1519.             case CipherSuite.TLS_PSK_WITH_NULL_SHA256:
    1520. 

  1520.             case CipherSuite.TLS_RSA_PSK_WITH_NULL_SHA256:
    1521. 

  1521.             case CipherSuite.TLS_RSA_WITH_NULL_SHA256:
    1522. 

  1522.                 return EncryptionAlgorithm.NULL;
    1523. 

  1523. 

  1524.             case CipherSuite.TLS_DHE_PSK_WITH_NULL_SHA384:
    1525. 

  1525.             case CipherSuite.TLS_ECDHE_PSK_WITH_NULL_SHA384:
    1526. 

  1526.             case CipherSuite.TLS_PSK_WITH_NULL_SHA384:
    1527. 

  1527.             case CipherSuite.TLS_RSA_PSK_WITH_NULL_SHA384:
    1528. 

  1528.                 return EncryptionAlgorithm.NULL;
    1529. 

  1529. 

  1530.             case CipherSuite.TLS_DH_anon_WITH_RC4_128_MD5:
    1531. 

  1531.             case CipherSuite.TLS_RSA_WITH_RC4_128_MD5:
    1532. 

  1532.                 return EncryptionAlgorithm.RC4_128;
    1533. 

  1533. 

  1534.             case CipherSuite.TLS_DHE_PSK_WITH_RC4_128_SHA:
    1535. 

  1535.             case CipherSuite.TLS_ECDH_anon_WITH_RC4_128_SHA:
    1536. 

  1536.             case CipherSuite.TLS_ECDH_ECDSA_WITH_RC4_128_SHA:
    1537. 

  1537.             case CipherSuite.TLS_ECDH_RSA_WITH_RC4_128_SHA:
    1538. 

  1538.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_RC4_128_SHA:
    1539. 

  1539.             case CipherSuite.TLS_ECDHE_PSK_WITH_RC4_128_SHA:
    1540. 

  1540.             case CipherSuite.TLS_ECDHE_RSA_WITH_RC4_128_SHA:
    1541. 

  1541.             case CipherSuite.TLS_PSK_WITH_RC4_128_SHA:
    1542. 

  1542.             case CipherSuite.TLS_RSA_WITH_RC4_128_SHA:
    1543. 

  1543.             case CipherSuite.TLS_RSA_PSK_WITH_RC4_128_SHA:
    1544. 

  1544.                 return EncryptionAlgorithm.RC4_128;
    1545. 

  1545. 

  1546.             case CipherSuite.TLS_DH_DSS_WITH_SEED_CBC_SHA:
    1547. 

  1547.             case CipherSuite.TLS_DH_RSA_WITH_SEED_CBC_SHA:
    1548. 

  1548.             case CipherSuite.TLS_DHE_DSS_WITH_SEED_CBC_SHA:
    1549. 

  1549.             case CipherSuite.TLS_DHE_RSA_WITH_SEED_CBC_SHA:
    1550. 

  1550.             case CipherSuite.TLS_RSA_WITH_SEED_CBC_SHA:
    1551. 

  1551.                 return EncryptionAlgorithm.SEED_CBC;
    1552. 

  1552. 

  1553.             default:
    1554. 

  1554.                 throw new TlsFatalAlert(AlertDescription.internal_error);
    1555. 

  1555.             }
    1556. 

  1556.         }
    1557. 

  1557. 

  1558.         public static int GetKeyExchangeAlgorithm(int ciphersuite)
    1559. 

  1559.         {
    1560. 

  1560.             switch (ciphersuite)
    1561. 

  1561.             {
    1562. 

  1562.             case CipherSuite.TLS_DH_DSS_WITH_3DES_EDE_CBC_SHA:
    1563. 

  1563.             case CipherSuite.TLS_DH_DSS_WITH_AES_128_CBC_SHA:
    1564. 

  1564.             case CipherSuite.TLS_DH_DSS_WITH_AES_128_CBC_SHA256:
    1565. 

  1565.             case CipherSuite.TLS_DH_DSS_WITH_AES_128_GCM_SHA256:
    1566. 

  1566.             case CipherSuite.TLS_DH_DSS_WITH_AES_256_CBC_SHA:
    1567. 

  1567.             case CipherSuite.TLS_DH_DSS_WITH_AES_256_CBC_SHA256:
    1568. 

  1568.             case CipherSuite.TLS_DH_DSS_WITH_AES_256_GCM_SHA384:
    1569. 

  1569.             case CipherSuite.TLS_DH_DSS_WITH_CAMELLIA_128_CBC_SHA:
    1570. 

  1570.             case CipherSuite.TLS_DH_DSS_WITH_CAMELLIA_128_CBC_SHA256:
    1571. 

  1571.             case CipherSuite.TLS_DH_DSS_WITH_CAMELLIA_128_GCM_SHA256:
    1572. 

  1572.             case CipherSuite.TLS_DH_DSS_WITH_CAMELLIA_256_CBC_SHA:
    1573. 

  1573.             case CipherSuite.TLS_DH_DSS_WITH_CAMELLIA_256_CBC_SHA256:
    1574. 

  1574.             case CipherSuite.TLS_DH_DSS_WITH_CAMELLIA_256_GCM_SHA384:
    1575. 

  1575.             case CipherSuite.TLS_DH_DSS_WITH_SEED_CBC_SHA:
    1576. 

  1576.                 return KeyExchangeAlgorithm.DH_DSS;
    1577. 

  1577. 

  1578.             case CipherSuite.TLS_DH_RSA_WITH_3DES_EDE_CBC_SHA:
    1579. 

  1579.             case CipherSuite.TLS_DH_RSA_WITH_AES_128_CBC_SHA:
    1580. 

  1580.             case CipherSuite.TLS_DH_RSA_WITH_AES_128_CBC_SHA256:
    1581. 

  1581.             case CipherSuite.TLS_DH_RSA_WITH_AES_128_GCM_SHA256:
    1582. 

  1582.             case CipherSuite.TLS_DH_RSA_WITH_AES_256_CBC_SHA:
    1583. 

  1583.             case CipherSuite.TLS_DH_RSA_WITH_AES_256_CBC_SHA256:
    1584. 

  1584.             case CipherSuite.TLS_DH_RSA_WITH_AES_256_GCM_SHA384:
    1585. 

  1585.             case CipherSuite.TLS_DH_RSA_WITH_CAMELLIA_128_CBC_SHA:
    1586. 

  1586.             case CipherSuite.TLS_DH_RSA_WITH_CAMELLIA_128_CBC_SHA256:
    1587. 

  1587.             case CipherSuite.TLS_DH_RSA_WITH_CAMELLIA_128_GCM_SHA256:
    1588. 

  1588.             case CipherSuite.TLS_DH_RSA_WITH_CAMELLIA_256_CBC_SHA:
    1589. 

  1589.             case CipherSuite.TLS_DH_RSA_WITH_CAMELLIA_256_CBC_SHA256:
    1590. 

  1590.             case CipherSuite.TLS_DH_RSA_WITH_CAMELLIA_256_GCM_SHA384:
    1591. 

  1591.             case CipherSuite.TLS_DH_RSA_WITH_SEED_CBC_SHA:
    1592. 

  1592.                 return KeyExchangeAlgorithm.DH_RSA;
    1593. 

  1593. 

  1594.             case CipherSuite.TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA:
    1595. 

  1595.             case CipherSuite.TLS_DHE_DSS_WITH_AES_128_CBC_SHA:
    1596. 

  1596.             case CipherSuite.TLS_DHE_DSS_WITH_AES_128_CBC_SHA256:
    1597. 

  1597.             case CipherSuite.TLS_DHE_DSS_WITH_AES_128_GCM_SHA256:
    1598. 

  1598.             case CipherSuite.TLS_DHE_DSS_WITH_AES_256_CBC_SHA:
    1599. 

  1599.             case CipherSuite.TLS_DHE_DSS_WITH_AES_256_CBC_SHA256:
    1600. 

  1600.             case CipherSuite.TLS_DHE_DSS_WITH_AES_256_GCM_SHA384:
    1601. 

  1601.             case CipherSuite.TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA:
    1602. 

  1602.             case CipherSuite.TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA256:
    1603. 

  1603.             case CipherSuite.TLS_DHE_DSS_WITH_CAMELLIA_128_GCM_SHA256:
    1604. 

  1604.             case CipherSuite.TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA:
    1605. 

  1605.             case CipherSuite.TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA256:
    1606. 

  1606.             case CipherSuite.TLS_DHE_DSS_WITH_CAMELLIA_256_GCM_SHA384:
    1607. 

  1607.             case CipherSuite.TLS_DHE_DSS_WITH_SEED_CBC_SHA:
    1608. 

  1608.                 return KeyExchangeAlgorithm.DHE_DSS;
    1609. 

  1609. 

  1610.             case CipherSuite.TLS_DHE_PSK_WITH_3DES_EDE_CBC_SHA:
    1611. 

  1611.             case CipherSuite.TLS_DHE_PSK_WITH_AES_128_CBC_SHA:
    1612. 

  1612.             case CipherSuite.TLS_DHE_PSK_WITH_AES_128_CBC_SHA256:
    1613. 

  1613.             case CipherSuite.TLS_DHE_PSK_WITH_AES_128_CCM:
    1614. 

  1614.             case CipherSuite.TLS_DHE_PSK_WITH_AES_128_GCM_SHA256:
    1615. 

  1615.             case CipherSuite.DRAFT_TLS_DHE_PSK_WITH_AES_128_OCB:
    1616. 

  1616.             case CipherSuite.TLS_DHE_PSK_WITH_AES_256_CBC_SHA:
    1617. 

  1617.             case CipherSuite.TLS_DHE_PSK_WITH_AES_256_CBC_SHA384:
    1618. 

  1618.             case CipherSuite.TLS_DHE_PSK_WITH_AES_256_CCM:
    1619. 

  1619.             case CipherSuite.TLS_DHE_PSK_WITH_AES_256_GCM_SHA384:
    1620. 

  1620.             case CipherSuite.DRAFT_TLS_DHE_PSK_WITH_AES_256_OCB:
    1621. 

  1621.             case CipherSuite.TLS_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256:
    1622. 

  1622.             case CipherSuite.TLS_DHE_PSK_WITH_CAMELLIA_128_GCM_SHA256:
    1623. 

  1623.             case CipherSuite.TLS_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384:
    1624. 

  1624.             case CipherSuite.TLS_DHE_PSK_WITH_CAMELLIA_256_GCM_SHA384:
    1625. 

  1625.             case CipherSuite.DRAFT_TLS_DHE_PSK_WITH_CHACHA20_POLY1305_SHA256:
    1626. 

  1626.             case CipherSuite.TLS_DHE_PSK_WITH_NULL_SHA:
    1627. 

  1627.             case CipherSuite.TLS_DHE_PSK_WITH_NULL_SHA256:
    1628. 

  1628.             case CipherSuite.TLS_DHE_PSK_WITH_NULL_SHA384:
    1629. 

  1629.             case CipherSuite.TLS_DHE_PSK_WITH_RC4_128_SHA:
    1630. 

  1630.             case CipherSuite.TLS_PSK_DHE_WITH_AES_128_CCM_8:
    1631. 

  1631.             case CipherSuite.TLS_PSK_DHE_WITH_AES_256_CCM_8:
    1632. 

  1632.                 return KeyExchangeAlgorithm.DHE_PSK;
    1633. 

  1633. 

  1634.             case CipherSuite.TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA:
    1635. 

  1635.             case CipherSuite.TLS_DHE_RSA_WITH_AES_128_CBC_SHA:
    1636. 

  1636.             case CipherSuite.TLS_DHE_RSA_WITH_AES_128_CBC_SHA256:
    1637. 

  1637.             case CipherSuite.TLS_DHE_RSA_WITH_AES_128_CCM:
    1638. 

  1638.             case CipherSuite.TLS_DHE_RSA_WITH_AES_128_CCM_8:
    1639. 

  1639.             case CipherSuite.TLS_DHE_RSA_WITH_AES_128_GCM_SHA256:
    1640. 

  1640.             case CipherSuite.DRAFT_TLS_DHE_RSA_WITH_AES_128_OCB:
    1641. 

  1641.             case CipherSuite.TLS_DHE_RSA_WITH_AES_256_CBC_SHA:
    1642. 

  1642.             case CipherSuite.TLS_DHE_RSA_WITH_AES_256_CBC_SHA256:
    1643. 

  1643.             case CipherSuite.TLS_DHE_RSA_WITH_AES_256_CCM:
    1644. 

  1644.             case CipherSuite.TLS_DHE_RSA_WITH_AES_256_CCM_8:
    1645. 

  1645.             case CipherSuite.TLS_DHE_RSA_WITH_AES_256_GCM_SHA384:
    1646. 

  1646.             case CipherSuite.DRAFT_TLS_DHE_RSA_WITH_AES_256_OCB:
    1647. 

  1647.             case CipherSuite.TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA:
    1648. 

  1648.             case CipherSuite.TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256:
    1649. 

  1649.             case CipherSuite.TLS_DHE_RSA_WITH_CAMELLIA_128_GCM_SHA256:
    1650. 

  1650.             case CipherSuite.TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA:
    1651. 

  1651.             case CipherSuite.TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256:
    1652. 

  1652.             case CipherSuite.TLS_DHE_RSA_WITH_CAMELLIA_256_GCM_SHA384:
    1653. 

  1653.             case CipherSuite.DRAFT_TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256:
    1654. 

  1654.             case CipherSuite.TLS_DHE_RSA_WITH_SEED_CBC_SHA:
    1655. 

  1655.                 return KeyExchangeAlgorithm.DHE_RSA;
    1656. 

  1656. 

  1657.             case CipherSuite.TLS_ECDH_anon_WITH_3DES_EDE_CBC_SHA:
    1658. 

  1658.             case CipherSuite.TLS_ECDH_anon_WITH_AES_128_CBC_SHA:
    1659. 

  1659.             case CipherSuite.TLS_ECDH_anon_WITH_AES_256_CBC_SHA:
    1660. 

  1660.             case CipherSuite.TLS_ECDH_anon_WITH_NULL_SHA:
    1661. 

  1661.             case CipherSuite.TLS_ECDH_anon_WITH_RC4_128_SHA:
    1662. 

  1662.                 return KeyExchangeAlgorithm.ECDH_anon;
    1663. 

  1663. 

  1664.             case CipherSuite.TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA:
    1665. 

  1665.             case CipherSuite.TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA:
    1666. 

  1666.             case CipherSuite.TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256:
    1667. 

  1667.             case CipherSuite.TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256:
    1668. 

  1668.             case CipherSuite.DRAFT_TLS_ECDHE_ECDSA_WITH_AES_128_OCB:
    1669. 

  1669.             case CipherSuite.TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA:
    1670. 

  1670.             case CipherSuite.TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384:
    1671. 

  1671.             case CipherSuite.TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384:
    1672. 

  1672.             case CipherSuite.DRAFT_TLS_ECDHE_ECDSA_WITH_AES_256_OCB:
    1673. 

  1673.             case CipherSuite.TLS_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256:
    1674. 

  1674.             case CipherSuite.TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256:
    1675. 

  1675.             case CipherSuite.TLS_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384:
    1676. 

  1676.             case CipherSuite.TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384:
    1677. 

  1677.             case CipherSuite.TLS_ECDH_ECDSA_WITH_NULL_SHA:
    1678. 

  1678.             case CipherSuite.TLS_ECDH_ECDSA_WITH_RC4_128_SHA:
    1679. 

  1679.                 return KeyExchangeAlgorithm.ECDH_ECDSA;
    1680. 

  1680. 

  1681.             case CipherSuite.TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA:
    1682. 

  1682.             case CipherSuite.TLS_ECDH_RSA_WITH_AES_128_CBC_SHA:
    1683. 

  1683.             case CipherSuite.TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256:
    1684. 

  1684.             case CipherSuite.TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256:
    1685. 

  1685.             case CipherSuite.TLS_ECDH_RSA_WITH_AES_256_CBC_SHA:
    1686. 

  1686.             case CipherSuite.TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384:
    1687. 

  1687.             case CipherSuite.TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384:
    1688. 

  1688.             case CipherSuite.TLS_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256:
    1689. 

  1689.             case CipherSuite.TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256:
    1690. 

  1690.             case CipherSuite.TLS_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384:
    1691. 

  1691.             case CipherSuite.TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384:
    1692. 

  1692.             case CipherSuite.TLS_ECDH_RSA_WITH_NULL_SHA:
    1693. 

  1693.             case CipherSuite.TLS_ECDH_RSA_WITH_RC4_128_SHA:
    1694. 

  1694.                 return KeyExchangeAlgorithm.ECDH_RSA;
    1695. 

  1695. 

  1696.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA:
    1697. 

  1697.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA:
    1698. 

  1698.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256:
    1699. 

  1699.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_128_CCM:
    1700. 

  1700.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8:
    1701. 

  1701.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256:
    1702. 

  1702.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA:
    1703. 

  1703.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384:
    1704. 

  1704.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_256_CCM:
    1705. 

  1705.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_256_CCM_8:
    1706. 

  1706.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384:
    1707. 

  1707.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256:
    1708. 

  1708.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_GCM_SHA256:
    1709. 

  1709.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384:
    1710. 

  1710.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384:
    1711. 

  1711.             case CipherSuite.DRAFT_TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256:
    1712. 

  1712.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_NULL_SHA:
    1713. 

  1713.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_RC4_128_SHA:
    1714. 

  1714.                 return KeyExchangeAlgorithm.ECDHE_ECDSA;
    1715. 

  1715. 

  1716.             case CipherSuite.TLS_ECDHE_PSK_WITH_3DES_EDE_CBC_SHA:
    1717. 

  1717.             case CipherSuite.TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA:
    1718. 

  1718.             case CipherSuite.TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256:
    1719. 

  1719.             case CipherSuite.DRAFT_TLS_ECDHE_PSK_WITH_AES_128_OCB:
    1720. 

  1720.             case CipherSuite.TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA:
    1721. 

  1721.             case CipherSuite.TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA384:
    1722. 

  1722.             case CipherSuite.DRAFT_TLS_ECDHE_PSK_WITH_AES_256_OCB:
    1723. 

  1723.             case CipherSuite.TLS_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256:
    1724. 

  1724.             case CipherSuite.TLS_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384:
    1725. 

  1725.             case CipherSuite.DRAFT_TLS_ECDHE_PSK_WITH_CHACHA20_POLY1305_SHA256:
    1726. 

  1726.             case CipherSuite.TLS_ECDHE_PSK_WITH_NULL_SHA:
    1727. 

  1727.             case CipherSuite.TLS_ECDHE_PSK_WITH_NULL_SHA256:
    1728. 

  1728.             case CipherSuite.TLS_ECDHE_PSK_WITH_NULL_SHA384:
    1729. 

  1729.             case CipherSuite.TLS_ECDHE_PSK_WITH_RC4_128_SHA:
    1730. 

  1730.                 return KeyExchangeAlgorithm.ECDHE_PSK;
    1731. 

  1731. 

  1732.             case CipherSuite.TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA:
    1733. 

  1733.             case CipherSuite.TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA:
    1734. 

  1734.             case CipherSuite.TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256:
    1735. 

  1735.             case CipherSuite.TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256:
    1736. 

  1736.             case CipherSuite.DRAFT_TLS_ECDHE_RSA_WITH_AES_128_OCB:
    1737. 

  1737.             case CipherSuite.TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA:
    1738. 

  1738.             case CipherSuite.TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384:
    1739. 

  1739.             case CipherSuite.TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384:
    1740. 

  1740.             case CipherSuite.DRAFT_TLS_ECDHE_RSA_WITH_AES_256_OCB:
    1741. 

  1741.             case CipherSuite.TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256:
    1742. 

  1742.             case CipherSuite.TLS_ECDHE_RSA_WITH_CAMELLIA_128_GCM_SHA256:
    1743. 

  1743.             case CipherSuite.TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384:
    1744. 

  1744.             case CipherSuite.TLS_ECDHE_RSA_WITH_CAMELLIA_256_GCM_SHA384:
    1745. 

  1745.             case CipherSuite.DRAFT_TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256:
    1746. 

  1746.             case CipherSuite.TLS_ECDHE_RSA_WITH_NULL_SHA:
    1747. 

  1747.             case CipherSuite.TLS_ECDHE_RSA_WITH_RC4_128_SHA:
    1748. 

  1748.                 return KeyExchangeAlgorithm.ECDHE_RSA;
    1749. 

  1749. 

  1750.             case CipherSuite.TLS_PSK_WITH_3DES_EDE_CBC_SHA:
    1751. 

  1751.             case CipherSuite.TLS_PSK_WITH_AES_128_CBC_SHA:
    1752. 

  1752.             case CipherSuite.TLS_PSK_WITH_AES_128_CBC_SHA256:
    1753. 

  1753.             case CipherSuite.TLS_PSK_WITH_AES_128_CCM:
    1754. 

  1754.             case CipherSuite.TLS_PSK_WITH_AES_128_CCM_8:
    1755. 

  1755.             case CipherSuite.TLS_PSK_WITH_AES_128_GCM_SHA256:
    1756. 

  1756.             case CipherSuite.DRAFT_TLS_PSK_WITH_AES_128_OCB:
    1757. 

  1757.             case CipherSuite.TLS_PSK_WITH_AES_256_CBC_SHA:
    1758. 

  1758.             case CipherSuite.TLS_PSK_WITH_AES_256_CBC_SHA384:
    1759. 

  1759.             case CipherSuite.TLS_PSK_WITH_AES_256_CCM:
    1760. 

  1760.             case CipherSuite.TLS_PSK_WITH_AES_256_CCM_8:
    1761. 

  1761.             case CipherSuite.TLS_PSK_WITH_AES_256_GCM_SHA384:
    1762. 

  1762.             case CipherSuite.DRAFT_TLS_PSK_WITH_AES_256_OCB:
    1763. 

  1763.             case CipherSuite.TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256:
    1764. 

  1764.             case CipherSuite.TLS_PSK_WITH_CAMELLIA_128_GCM_SHA256:
    1765. 

  1765.             case CipherSuite.TLS_PSK_WITH_CAMELLIA_256_CBC_SHA384:
    1766. 

  1766.             case CipherSuite.TLS_PSK_WITH_CAMELLIA_256_GCM_SHA384:
    1767. 

  1767.             case CipherSuite.DRAFT_TLS_PSK_WITH_CHACHA20_POLY1305_SHA256:
    1768. 

  1768.             case CipherSuite.TLS_PSK_WITH_NULL_SHA:
    1769. 

  1769.             case CipherSuite.TLS_PSK_WITH_NULL_SHA256:
    1770. 

  1770.             case CipherSuite.TLS_PSK_WITH_NULL_SHA384:
    1771. 

  1771.             case CipherSuite.TLS_PSK_WITH_RC4_128_SHA:
    1772. 

  1772.                 return KeyExchangeAlgorithm.PSK;
    1773. 

  1773. 

  1774.             case CipherSuite.TLS_RSA_WITH_3DES_EDE_CBC_SHA:
    1775. 

  1775.             case CipherSuite.TLS_RSA_WITH_AES_128_CBC_SHA:
    1776. 

  1776.             case CipherSuite.TLS_RSA_WITH_AES_128_CBC_SHA256:
    1777. 

  1777.             case CipherSuite.TLS_RSA_WITH_AES_128_CCM:
    1778. 

  1778.             case CipherSuite.TLS_RSA_WITH_AES_128_CCM_8:
    1779. 

  1779.             case CipherSuite.TLS_RSA_WITH_AES_128_GCM_SHA256:
    1780. 

  1780.             case CipherSuite.TLS_RSA_WITH_AES_256_CBC_SHA:
    1781. 

  1781.             case CipherSuite.TLS_RSA_WITH_AES_256_CBC_SHA256:
    1782. 

  1782.             case CipherSuite.TLS_RSA_WITH_AES_256_CCM:
    1783. 

  1783.             case CipherSuite.TLS_RSA_WITH_AES_256_CCM_8:
    1784. 

  1784.             case CipherSuite.TLS_RSA_WITH_AES_256_GCM_SHA384:
    1785. 

  1785.             case CipherSuite.TLS_RSA_WITH_CAMELLIA_128_CBC_SHA:
    1786. 

  1786.             case CipherSuite.TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256:
    1787. 

  1787.             case CipherSuite.TLS_RSA_WITH_CAMELLIA_128_GCM_SHA256:
    1788. 

  1788.             case CipherSuite.TLS_RSA_WITH_CAMELLIA_256_CBC_SHA:
    1789. 

  1789.             case CipherSuite.TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256:
    1790. 

  1790.             case CipherSuite.TLS_RSA_WITH_CAMELLIA_256_GCM_SHA384:
    1791. 

  1791.             case CipherSuite.DRAFT_TLS_RSA_PSK_WITH_CHACHA20_POLY1305_SHA256:
    1792. 

  1792.             case CipherSuite.TLS_RSA_WITH_NULL_MD5:
    1793. 

  1793.             case CipherSuite.TLS_RSA_WITH_NULL_SHA:
    1794. 

  1794.             case CipherSuite.TLS_RSA_WITH_NULL_SHA256:
    1795. 

  1795.             case CipherSuite.TLS_RSA_WITH_RC4_128_MD5:
    1796. 

  1796.             case CipherSuite.TLS_RSA_WITH_RC4_128_SHA:
    1797. 

  1797.             case CipherSuite.TLS_RSA_WITH_SEED_CBC_SHA:
    1798. 

  1798.                 return KeyExchangeAlgorithm.RSA;
    1799. 

  1799. 

  1800.             case CipherSuite.TLS_RSA_PSK_WITH_3DES_EDE_CBC_SHA:
    1801. 

  1801.             case CipherSuite.TLS_RSA_PSK_WITH_AES_128_CBC_SHA:
    1802. 

  1802.             case CipherSuite.TLS_RSA_PSK_WITH_AES_128_CBC_SHA256:
    1803. 

  1803.             case CipherSuite.TLS_RSA_PSK_WITH_AES_128_GCM_SHA256:
    1804. 

  1804.             case CipherSuite.TLS_RSA_PSK_WITH_AES_256_CBC_SHA:
    1805. 

  1805.             case CipherSuite.TLS_RSA_PSK_WITH_AES_256_CBC_SHA384:
    1806. 

  1806.             case CipherSuite.TLS_RSA_PSK_WITH_AES_256_GCM_SHA384:
    1807. 

  1807.             case CipherSuite.TLS_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256:
    1808. 

  1808.             case CipherSuite.TLS_RSA_PSK_WITH_CAMELLIA_128_GCM_SHA256:
    1809. 

  1809.             case CipherSuite.TLS_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384:
    1810. 

  1810.             case CipherSuite.TLS_RSA_PSK_WITH_CAMELLIA_256_GCM_SHA384:
    1811. 

  1811.             case CipherSuite.TLS_RSA_PSK_WITH_NULL_SHA:
    1812. 

  1812.             case CipherSuite.TLS_RSA_PSK_WITH_NULL_SHA256:
    1813. 

  1813.             case CipherSuite.TLS_RSA_PSK_WITH_NULL_SHA384:
    1814. 

  1814.             case CipherSuite.TLS_RSA_PSK_WITH_RC4_128_SHA:
    1815. 

  1815.                 return KeyExchangeAlgorithm.RSA_PSK;
    1816. 

  1816. 

  1817.             case CipherSuite.TLS_SRP_SHA_WITH_3DES_EDE_CBC_SHA:
    1818. 

  1818.             case CipherSuite.TLS_SRP_SHA_WITH_AES_128_CBC_SHA:
    1819. 

  1819.             case CipherSuite.TLS_SRP_SHA_WITH_AES_256_CBC_SHA:
    1820. 

  1820.                 return KeyExchangeAlgorithm.SRP;
    1821. 

  1821. 

  1822.             case CipherSuite.TLS_SRP_SHA_DSS_WITH_3DES_EDE_CBC_SHA:
    1823. 

  1823.             case CipherSuite.TLS_SRP_SHA_DSS_WITH_AES_128_CBC_SHA:
    1824. 

  1824.             case CipherSuite.TLS_SRP_SHA_DSS_WITH_AES_256_CBC_SHA:
    1825. 

  1825.                 return KeyExchangeAlgorithm.SRP_DSS;
    1826. 

  1826. 

  1827.             case CipherSuite.TLS_SRP_SHA_RSA_WITH_3DES_EDE_CBC_SHA:
    1828. 

  1828.             case CipherSuite.TLS_SRP_SHA_RSA_WITH_AES_128_CBC_SHA:
    1829. 

  1829.             case CipherSuite.TLS_SRP_SHA_RSA_WITH_AES_256_CBC_SHA:
    1830. 

  1830.                 return KeyExchangeAlgorithm.SRP_RSA;
    1831. 

  1831. 

  1832.             default:
    1833. 

  1833.                 throw new TlsFatalAlert(AlertDescription.internal_error);
    1834. 

  1834.             }
    1835. 

  1835.         }
    1836. 

  1836. 

  1837.         public static int GetMacAlgorithm(int ciphersuite)
    1838. 

  1838.         {
    1839. 

  1839.             switch (ciphersuite)
    1840. 

  1840.             {
    1841. 

  1841.             case CipherSuite.TLS_DH_DSS_WITH_AES_128_GCM_SHA256:
    1842. 

  1842.             case CipherSuite.TLS_DH_DSS_WITH_AES_256_GCM_SHA384:
    1843. 

  1843.             case CipherSuite.TLS_DH_DSS_WITH_CAMELLIA_128_GCM_SHA256:
    1844. 

  1844.             case CipherSuite.TLS_DH_DSS_WITH_CAMELLIA_256_GCM_SHA384:
    1845. 

  1845.             case CipherSuite.TLS_DH_RSA_WITH_AES_128_GCM_SHA256:
    1846. 

  1846.             case CipherSuite.TLS_DH_RSA_WITH_AES_256_GCM_SHA384:
    1847. 

  1847.             case CipherSuite.TLS_DH_RSA_WITH_CAMELLIA_128_GCM_SHA256:
    1848. 

  1848.             case CipherSuite.TLS_DH_RSA_WITH_CAMELLIA_256_GCM_SHA384:
    1849. 

  1849.             case CipherSuite.TLS_DHE_DSS_WITH_AES_128_GCM_SHA256:
    1850. 

  1850.             case CipherSuite.TLS_DHE_DSS_WITH_AES_256_GCM_SHA384:
    1851. 

  1851.             case CipherSuite.TLS_DHE_DSS_WITH_CAMELLIA_128_GCM_SHA256:
    1852. 

  1852.             case CipherSuite.TLS_DHE_DSS_WITH_CAMELLIA_256_GCM_SHA384:
    1853. 

  1853.             case CipherSuite.TLS_DHE_PSK_WITH_AES_128_CCM:
    1854. 

  1854.             case CipherSuite.TLS_DHE_PSK_WITH_AES_128_GCM_SHA256:
    1855. 

  1855.             case CipherSuite.DRAFT_TLS_DHE_PSK_WITH_AES_128_OCB:
    1856. 

  1856.             case CipherSuite.TLS_DHE_PSK_WITH_AES_256_CCM:
    1857. 

  1857.             case CipherSuite.TLS_DHE_PSK_WITH_AES_256_GCM_SHA384:
    1858. 

  1858.             case CipherSuite.DRAFT_TLS_DHE_PSK_WITH_AES_256_OCB:
    1859. 

  1859.             case CipherSuite.TLS_DHE_PSK_WITH_CAMELLIA_128_GCM_SHA256:
    1860. 

  1860.             case CipherSuite.TLS_DHE_PSK_WITH_CAMELLIA_256_GCM_SHA384:
    1861. 

  1861.             case CipherSuite.DRAFT_TLS_DHE_PSK_WITH_CHACHA20_POLY1305_SHA256:
    1862. 

  1862.             case CipherSuite.TLS_DHE_RSA_WITH_AES_128_CCM:
    1863. 

  1863.             case CipherSuite.TLS_DHE_RSA_WITH_AES_128_CCM_8:
    1864. 

  1864.             case CipherSuite.TLS_DHE_RSA_WITH_AES_128_GCM_SHA256:
    1865. 

  1865.             case CipherSuite.DRAFT_TLS_DHE_RSA_WITH_AES_128_OCB:
    1866. 

  1866.             case CipherSuite.TLS_DHE_RSA_WITH_AES_256_CCM:
    1867. 

  1867.             case CipherSuite.TLS_DHE_RSA_WITH_AES_256_CCM_8:
    1868. 

  1868.             case CipherSuite.TLS_DHE_RSA_WITH_AES_256_GCM_SHA384:
    1869. 

  1869.             case CipherSuite.DRAFT_TLS_DHE_RSA_WITH_AES_256_OCB:
    1870. 

  1870.             case CipherSuite.TLS_DHE_RSA_WITH_CAMELLIA_128_GCM_SHA256:
    1871. 

  1871.             case CipherSuite.TLS_DHE_RSA_WITH_CAMELLIA_256_GCM_SHA384:
    1872. 

  1872.             case CipherSuite.DRAFT_TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256:
    1873. 

  1873.             case CipherSuite.TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256:
    1874. 

  1874.             case CipherSuite.TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384:
    1875. 

  1875.             case CipherSuite.TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256:
    1876. 

  1876.             case CipherSuite.TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384:
    1877. 

  1877.             case CipherSuite.TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256:
    1878. 

  1878.             case CipherSuite.TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384:
    1879. 

  1879.             case CipherSuite.TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256:
    1880. 

  1880.             case CipherSuite.TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384:
    1881. 

  1881.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_128_CCM:
    1882. 

  1882.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8:
    1883. 

  1883.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256:
    1884. 

  1884.             case CipherSuite.DRAFT_TLS_ECDHE_ECDSA_WITH_AES_128_OCB:
    1885. 

  1885.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_256_CCM:
    1886. 

  1886.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_256_CCM_8:
    1887. 

  1887.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384:
    1888. 

  1888.             case CipherSuite.DRAFT_TLS_ECDHE_ECDSA_WITH_AES_256_OCB:
    1889. 

  1889.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_GCM_SHA256:
    1890. 

  1890.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384:
    1891. 

  1891.             case CipherSuite.DRAFT_TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256:
    1892. 

  1892.             case CipherSuite.DRAFT_TLS_ECDHE_PSK_WITH_AES_128_OCB:
    1893. 

  1893.             case CipherSuite.DRAFT_TLS_ECDHE_PSK_WITH_AES_256_OCB:
    1894. 

  1894.             case CipherSuite.DRAFT_TLS_ECDHE_PSK_WITH_CHACHA20_POLY1305_SHA256:
    1895. 

  1895.             case CipherSuite.TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256:
    1896. 

  1896.             case CipherSuite.DRAFT_TLS_ECDHE_RSA_WITH_AES_128_OCB:
    1897. 

  1897.             case CipherSuite.TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384:
    1898. 

  1898.             case CipherSuite.DRAFT_TLS_ECDHE_RSA_WITH_AES_256_OCB:
    1899. 

  1899.             case CipherSuite.TLS_ECDHE_RSA_WITH_CAMELLIA_128_GCM_SHA256:
    1900. 

  1900.             case CipherSuite.TLS_ECDHE_RSA_WITH_CAMELLIA_256_GCM_SHA384:
    1901. 

  1901.             case CipherSuite.DRAFT_TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256:
    1902. 

  1902.             case CipherSuite.TLS_PSK_DHE_WITH_AES_128_CCM_8:
    1903. 

  1903.             case CipherSuite.TLS_PSK_DHE_WITH_AES_256_CCM_8:
    1904. 

  1904.             case CipherSuite.TLS_PSK_WITH_AES_128_CCM:
    1905. 

  1905.             case CipherSuite.TLS_PSK_WITH_AES_128_CCM_8:
    1906. 

  1906.             case CipherSuite.TLS_PSK_WITH_AES_128_GCM_SHA256:
    1907. 

  1907.             case CipherSuite.DRAFT_TLS_PSK_WITH_AES_128_OCB:
    1908. 

  1908.             case CipherSuite.TLS_PSK_WITH_AES_256_CCM:
    1909. 

  1909.             case CipherSuite.TLS_PSK_WITH_AES_256_CCM_8:
    1910. 

  1910.             case CipherSuite.TLS_PSK_WITH_AES_256_GCM_SHA384:
    1911. 

  1911.             case CipherSuite.DRAFT_TLS_PSK_WITH_AES_256_OCB:
    1912. 

  1912.             case CipherSuite.TLS_PSK_WITH_CAMELLIA_128_GCM_SHA256:
    1913. 

  1913.             case CipherSuite.TLS_PSK_WITH_CAMELLIA_256_GCM_SHA384:
    1914. 

  1914.             case CipherSuite.DRAFT_TLS_PSK_WITH_CHACHA20_POLY1305_SHA256:
    1915. 

  1915.             case CipherSuite.TLS_RSA_PSK_WITH_AES_128_GCM_SHA256:
    1916. 

  1916.             case CipherSuite.TLS_RSA_PSK_WITH_AES_256_GCM_SHA384:
    1917. 

  1917.             case CipherSuite.TLS_RSA_PSK_WITH_CAMELLIA_128_GCM_SHA256:
    1918. 

  1918.             case CipherSuite.TLS_RSA_PSK_WITH_CAMELLIA_256_GCM_SHA384:
    1919. 

  1919.             case CipherSuite.DRAFT_TLS_RSA_PSK_WITH_CHACHA20_POLY1305_SHA256:
    1920. 

  1920.             case CipherSuite.TLS_RSA_WITH_AES_128_CCM:
    1921. 

  1921.             case CipherSuite.TLS_RSA_WITH_AES_128_CCM_8:
    1922. 

  1922.             case CipherSuite.TLS_RSA_WITH_AES_128_GCM_SHA256:
    1923. 

  1923.             case CipherSuite.TLS_RSA_WITH_AES_256_CCM:
    1924. 

  1924.             case CipherSuite.TLS_RSA_WITH_AES_256_CCM_8:
    1925. 

  1925.             case CipherSuite.TLS_RSA_WITH_AES_256_GCM_SHA384:
    1926. 

  1926.             case CipherSuite.TLS_RSA_WITH_CAMELLIA_128_GCM_SHA256:
    1927. 

  1927.             case CipherSuite.TLS_RSA_WITH_CAMELLIA_256_GCM_SHA384:
    1928. 

  1928.                 return MacAlgorithm.cls_null;
    1929. 

  1929. 

  1930.             case CipherSuite.TLS_RSA_WITH_NULL_MD5:
    1931. 

  1931.             case CipherSuite.TLS_RSA_WITH_RC4_128_MD5:
    1932. 

  1932.                 return MacAlgorithm.hmac_md5;
    1933. 

  1933. 

  1934.             case CipherSuite.TLS_DH_DSS_WITH_3DES_EDE_CBC_SHA:
    1935. 

  1935.             case CipherSuite.TLS_DH_DSS_WITH_AES_128_CBC_SHA:
    1936. 

  1936.             case CipherSuite.TLS_DH_DSS_WITH_AES_256_CBC_SHA:
    1937. 

  1937.             case CipherSuite.TLS_DH_DSS_WITH_CAMELLIA_128_CBC_SHA:
    1938. 

  1938.             case CipherSuite.TLS_DH_DSS_WITH_CAMELLIA_256_CBC_SHA:
    1939. 

  1939.             case CipherSuite.TLS_DH_DSS_WITH_SEED_CBC_SHA:
    1940. 

  1940.             case CipherSuite.TLS_DH_RSA_WITH_3DES_EDE_CBC_SHA:
    1941. 

  1941.             case CipherSuite.TLS_DH_RSA_WITH_AES_128_CBC_SHA:
    1942. 

  1942.             case CipherSuite.TLS_DH_RSA_WITH_AES_256_CBC_SHA:
    1943. 

  1943.             case CipherSuite.TLS_DH_RSA_WITH_CAMELLIA_128_CBC_SHA:
    1944. 

  1944.             case CipherSuite.TLS_DH_RSA_WITH_CAMELLIA_256_CBC_SHA:
    1945. 

  1945.             case CipherSuite.TLS_DH_RSA_WITH_SEED_CBC_SHA:
    1946. 

  1946.             case CipherSuite.TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA:
    1947. 

  1947.             case CipherSuite.TLS_DHE_DSS_WITH_AES_128_CBC_SHA:
    1948. 

  1948.             case CipherSuite.TLS_DHE_DSS_WITH_AES_256_CBC_SHA:
    1949. 

  1949.             case CipherSuite.TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA:
    1950. 

  1950.             case CipherSuite.TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA:
    1951. 

  1951.             case CipherSuite.TLS_DHE_DSS_WITH_SEED_CBC_SHA:
    1952. 

  1952.             case CipherSuite.TLS_DHE_PSK_WITH_3DES_EDE_CBC_SHA:
    1953. 

  1953.             case CipherSuite.TLS_DHE_PSK_WITH_AES_128_CBC_SHA:
    1954. 

  1954.             case CipherSuite.TLS_DHE_PSK_WITH_AES_256_CBC_SHA:
    1955. 

  1955.             case CipherSuite.TLS_DHE_PSK_WITH_NULL_SHA:
    1956. 

  1956.             case CipherSuite.TLS_DHE_PSK_WITH_RC4_128_SHA:
    1957. 

  1957.             case CipherSuite.TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA:
    1958. 

  1958.             case CipherSuite.TLS_DHE_RSA_WITH_AES_128_CBC_SHA:
    1959. 

  1959.             case CipherSuite.TLS_DHE_RSA_WITH_AES_256_CBC_SHA:
    1960. 

  1960.             case CipherSuite.TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA:
    1961. 

  1961.             case CipherSuite.TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA:
    1962. 

  1962.             case CipherSuite.TLS_DHE_RSA_WITH_SEED_CBC_SHA:
    1963. 

  1963.             case CipherSuite.TLS_ECDH_anon_WITH_3DES_EDE_CBC_SHA:
    1964. 

  1964.             case CipherSuite.TLS_ECDH_anon_WITH_AES_128_CBC_SHA:
    1965. 

  1965.             case CipherSuite.TLS_ECDH_anon_WITH_AES_256_CBC_SHA:
    1966. 

  1966.             case CipherSuite.TLS_ECDH_anon_WITH_NULL_SHA:
    1967. 

  1967.             case CipherSuite.TLS_ECDH_anon_WITH_RC4_128_SHA:
    1968. 

  1968.             case CipherSuite.TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA:
    1969. 

  1969.             case CipherSuite.TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA:
    1970. 

  1970.             case CipherSuite.TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA:
    1971. 

  1971.             case CipherSuite.TLS_ECDH_ECDSA_WITH_NULL_SHA:
    1972. 

  1972.             case CipherSuite.TLS_ECDH_ECDSA_WITH_RC4_128_SHA:
    1973. 

  1973.             case CipherSuite.TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA:
    1974. 

  1974.             case CipherSuite.TLS_ECDH_RSA_WITH_AES_128_CBC_SHA:
    1975. 

  1975.             case CipherSuite.TLS_ECDH_RSA_WITH_AES_256_CBC_SHA:
    1976. 

  1976.             case CipherSuite.TLS_ECDH_RSA_WITH_NULL_SHA:
    1977. 

  1977.             case CipherSuite.TLS_ECDH_RSA_WITH_RC4_128_SHA:
    1978. 

  1978.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA:
    1979. 

  1979.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA:
    1980. 

  1980.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA:
    1981. 

  1981.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_NULL_SHA:
    1982. 

  1982.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_RC4_128_SHA:
    1983. 

  1983.             case CipherSuite.TLS_ECDHE_PSK_WITH_3DES_EDE_CBC_SHA:
    1984. 

  1984.             case CipherSuite.TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA:
    1985. 

  1985.             case CipherSuite.TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA:
    1986. 

  1986.             case CipherSuite.TLS_ECDHE_PSK_WITH_NULL_SHA:
    1987. 

  1987.             case CipherSuite.TLS_ECDHE_PSK_WITH_RC4_128_SHA:
    1988. 

  1988.             case CipherSuite.TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA:
    1989. 

  1989.             case CipherSuite.TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA:
    1990. 

  1990.             case CipherSuite.TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA:
    1991. 

  1991.             case CipherSuite.TLS_ECDHE_RSA_WITH_NULL_SHA:
    1992. 

  1992.             case CipherSuite.TLS_ECDHE_RSA_WITH_RC4_128_SHA:
    1993. 

  1993.             case CipherSuite.TLS_RSA_PSK_WITH_3DES_EDE_CBC_SHA:
    1994. 

  1994.             case CipherSuite.TLS_RSA_PSK_WITH_AES_128_CBC_SHA:
    1995. 

  1995.             case CipherSuite.TLS_RSA_PSK_WITH_AES_256_CBC_SHA:
    1996. 

  1996.             case CipherSuite.TLS_PSK_WITH_3DES_EDE_CBC_SHA:
    1997. 

  1997.             case CipherSuite.TLS_PSK_WITH_AES_128_CBC_SHA:
    1998. 

  1998.             case CipherSuite.TLS_PSK_WITH_AES_256_CBC_SHA:
    1999. 

  1999.             case CipherSuite.TLS_PSK_WITH_NULL_SHA:
    2000. 

  2000.             case CipherSuite.TLS_PSK_WITH_RC4_128_SHA:
    2001. 

  2001.             case CipherSuite.TLS_RSA_PSK_WITH_NULL_SHA:
    2002. 

  2002.             case CipherSuite.TLS_RSA_PSK_WITH_RC4_128_SHA:
    2003. 

  2003.             case CipherSuite.TLS_RSA_WITH_3DES_EDE_CBC_SHA:
    2004. 

  2004.             case CipherSuite.TLS_RSA_WITH_AES_128_CBC_SHA:
    2005. 

  2005.             case CipherSuite.TLS_RSA_WITH_AES_256_CBC_SHA:
    2006. 

  2006.             case CipherSuite.TLS_RSA_WITH_CAMELLIA_128_CBC_SHA:
    2007. 

  2007.             case CipherSuite.TLS_RSA_WITH_CAMELLIA_256_CBC_SHA:
    2008. 

  2008.             case CipherSuite.TLS_RSA_WITH_NULL_SHA:
    2009. 

  2009.             case CipherSuite.TLS_RSA_WITH_RC4_128_SHA:
    2010. 

  2010.             case CipherSuite.TLS_RSA_WITH_SEED_CBC_SHA:
    2011. 

  2011.             case CipherSuite.TLS_SRP_SHA_DSS_WITH_3DES_EDE_CBC_SHA:
    2012. 

  2012.             case CipherSuite.TLS_SRP_SHA_DSS_WITH_AES_128_CBC_SHA:
    2013. 

  2013.             case CipherSuite.TLS_SRP_SHA_DSS_WITH_AES_256_CBC_SHA:
    2014. 

  2014.             case CipherSuite.TLS_SRP_SHA_RSA_WITH_3DES_EDE_CBC_SHA:
    2015. 

  2015.             case CipherSuite.TLS_SRP_SHA_RSA_WITH_AES_128_CBC_SHA:
    2016. 

  2016.             case CipherSuite.TLS_SRP_SHA_RSA_WITH_AES_256_CBC_SHA:
    2017. 

  2017.             case CipherSuite.TLS_SRP_SHA_WITH_3DES_EDE_CBC_SHA:
    2018. 

  2018.             case CipherSuite.TLS_SRP_SHA_WITH_AES_128_CBC_SHA:
    2019. 

  2019.             case CipherSuite.TLS_SRP_SHA_WITH_AES_256_CBC_SHA:
    2020. 

  2020.                 return MacAlgorithm.hmac_sha1;
    2021. 

  2021. 

  2022.             case CipherSuite.TLS_DH_DSS_WITH_AES_128_CBC_SHA256:
    2023. 

  2023.             case CipherSuite.TLS_DH_DSS_WITH_AES_256_CBC_SHA256:
    2024. 

  2024.             case CipherSuite.TLS_DH_DSS_WITH_CAMELLIA_128_CBC_SHA256:
    2025. 

  2025.             case CipherSuite.TLS_DH_DSS_WITH_CAMELLIA_256_CBC_SHA256:
    2026. 

  2026.             case CipherSuite.TLS_DH_RSA_WITH_AES_128_CBC_SHA256:
    2027. 

  2027.             case CipherSuite.TLS_DH_RSA_WITH_AES_256_CBC_SHA256:
    2028. 

  2028.             case CipherSuite.TLS_DH_RSA_WITH_CAMELLIA_128_CBC_SHA256:
    2029. 

  2029.             case CipherSuite.TLS_DH_RSA_WITH_CAMELLIA_256_CBC_SHA256:
    2030. 

  2030.             case CipherSuite.TLS_DHE_DSS_WITH_AES_128_CBC_SHA256:
    2031. 

  2031.             case CipherSuite.TLS_DHE_DSS_WITH_AES_256_CBC_SHA256:
    2032. 

  2032.             case CipherSuite.TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA256:
    2033. 

  2033.             case CipherSuite.TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA256:
    2034. 

  2034.             case CipherSuite.TLS_DHE_PSK_WITH_AES_128_CBC_SHA256:
    2035. 

  2035.             case CipherSuite.TLS_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256:
    2036. 

  2036.             case CipherSuite.TLS_DHE_PSK_WITH_NULL_SHA256:
    2037. 

  2037.             case CipherSuite.TLS_DHE_RSA_WITH_AES_128_CBC_SHA256:
    2038. 

  2038.             case CipherSuite.TLS_DHE_RSA_WITH_AES_256_CBC_SHA256:
    2039. 

  2039.             case CipherSuite.TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256:
    2040. 

  2040.             case CipherSuite.TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256:
    2041. 

  2041.             case CipherSuite.TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256:
    2042. 

  2042.             case CipherSuite.TLS_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256:
    2043. 

  2043.             case CipherSuite.TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256:
    2044. 

  2044.             case CipherSuite.TLS_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256:
    2045. 

  2045.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256:
    2046. 

  2046.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256:
    2047. 

  2047.             case CipherSuite.TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256:
    2048. 

  2048.             case CipherSuite.TLS_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256:
    2049. 

  2049.             case CipherSuite.TLS_ECDHE_PSK_WITH_NULL_SHA256:
    2050. 

  2050.             case CipherSuite.TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256:
    2051. 

  2051.             case CipherSuite.TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256:
    2052. 

  2052.             case CipherSuite.TLS_PSK_WITH_AES_128_CBC_SHA256:
    2053. 

  2053.             case CipherSuite.TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256:
    2054. 

  2054.             case CipherSuite.TLS_PSK_WITH_NULL_SHA256:
    2055. 

  2055.             case CipherSuite.TLS_RSA_PSK_WITH_AES_128_CBC_SHA256:
    2056. 

  2056.             case CipherSuite.TLS_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256:
    2057. 

  2057.             case CipherSuite.TLS_RSA_PSK_WITH_NULL_SHA256:
    2058. 

  2058.             case CipherSuite.TLS_RSA_WITH_AES_128_CBC_SHA256:
    2059. 

  2059.             case CipherSuite.TLS_RSA_WITH_AES_256_CBC_SHA256:
    2060. 

  2060.             case CipherSuite.TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256:
    2061. 

  2061.             case CipherSuite.TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256:
    2062. 

  2062.             case CipherSuite.TLS_RSA_WITH_NULL_SHA256:
    2063. 

  2063.                 return MacAlgorithm.hmac_sha256;
    2064. 

  2064. 

  2065.             case CipherSuite.TLS_DHE_PSK_WITH_AES_256_CBC_SHA384:
    2066. 

  2066.             case CipherSuite.TLS_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384:
    2067. 

  2067.             case CipherSuite.TLS_DHE_PSK_WITH_NULL_SHA384:
    2068. 

  2068.             case CipherSuite.TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384:
    2069. 

  2069.             case CipherSuite.TLS_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384:
    2070. 

  2070.             case CipherSuite.TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384:
    2071. 

  2071.             case CipherSuite.TLS_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384:
    2072. 

  2072.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384:
    2073. 

  2073.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384:
    2074. 

  2074.             case CipherSuite.TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA384:
    2075. 

  2075.             case CipherSuite.TLS_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384:
    2076. 

  2076.             case CipherSuite.TLS_ECDHE_PSK_WITH_NULL_SHA384:
    2077. 

  2077.             case CipherSuite.TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384:
    2078. 

  2078.             case CipherSuite.TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384:
    2079. 

  2079.             case CipherSuite.TLS_PSK_WITH_AES_256_CBC_SHA384:
    2080. 

  2080.             case CipherSuite.TLS_PSK_WITH_CAMELLIA_256_CBC_SHA384:
    2081. 

  2081.             case CipherSuite.TLS_PSK_WITH_NULL_SHA384:
    2082. 

  2082.             case CipherSuite.TLS_RSA_PSK_WITH_AES_256_CBC_SHA384:
    2083. 

  2083.             case CipherSuite.TLS_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384:
    2084. 

  2084.             case CipherSuite.TLS_RSA_PSK_WITH_NULL_SHA384:
    2085. 

  2085.                 return MacAlgorithm.hmac_sha384;
    2086. 

  2086. 

  2087.             default:
    2088. 

  2088.                 throw new TlsFatalAlert(AlertDescription.internal_error);
    2089. 

  2089.             }
    2090. 

  2090.         }
    2091. 

  2091. 

  2092.         public static ProtocolVersion GetMinimumVersion(int ciphersuite)
    2093. 

  2093.         {
    2094. 

  2094.             switch (ciphersuite)
    2095. 

  2095.             {
    2096. 

  2096.             case CipherSuite.TLS_DH_anon_WITH_CAMELLIA_128_CBC_SHA256:
    2097. 

  2097.             case CipherSuite.TLS_DH_anon_WITH_CAMELLIA_128_GCM_SHA256:
    2098. 

  2098.             case CipherSuite.TLS_DH_anon_WITH_CAMELLIA_256_CBC_SHA256:
    2099. 

  2099.             case CipherSuite.TLS_DH_anon_WITH_CAMELLIA_256_GCM_SHA384:
    2100. 

  2100.             case CipherSuite.TLS_DH_DSS_WITH_AES_128_CBC_SHA256:
    2101. 

  2101.             case CipherSuite.TLS_DH_DSS_WITH_AES_128_GCM_SHA256:
    2102. 

  2102.             case CipherSuite.TLS_DH_DSS_WITH_AES_256_CBC_SHA256:
    2103. 

  2103.             case CipherSuite.TLS_DH_DSS_WITH_AES_256_GCM_SHA384:
    2104. 

  2104.             case CipherSuite.TLS_DH_DSS_WITH_CAMELLIA_128_CBC_SHA256:
    2105. 

  2105.             case CipherSuite.TLS_DH_DSS_WITH_CAMELLIA_128_GCM_SHA256:
    2106. 

  2106.             case CipherSuite.TLS_DH_DSS_WITH_CAMELLIA_256_CBC_SHA256:
    2107. 

  2107.             case CipherSuite.TLS_DH_DSS_WITH_CAMELLIA_256_GCM_SHA384:
    2108. 

  2108.             case CipherSuite.TLS_DH_RSA_WITH_AES_128_CBC_SHA256:
    2109. 

  2109.             case CipherSuite.TLS_DH_RSA_WITH_AES_128_GCM_SHA256:
    2110. 

  2110.             case CipherSuite.TLS_DH_RSA_WITH_AES_256_CBC_SHA256:
    2111. 

  2111.             case CipherSuite.TLS_DH_RSA_WITH_AES_256_GCM_SHA384:
    2112. 

  2112.             case CipherSuite.TLS_DH_RSA_WITH_CAMELLIA_128_CBC_SHA256:
    2113. 

  2113.             case CipherSuite.TLS_DH_RSA_WITH_CAMELLIA_128_GCM_SHA256:
    2114. 

  2114.             case CipherSuite.TLS_DH_RSA_WITH_CAMELLIA_256_CBC_SHA256:
    2115. 

  2115.             case CipherSuite.TLS_DH_RSA_WITH_CAMELLIA_256_GCM_SHA384:
    2116. 

  2116.             case CipherSuite.TLS_DHE_DSS_WITH_AES_128_CBC_SHA256:
    2117. 

  2117.             case CipherSuite.TLS_DHE_DSS_WITH_AES_128_GCM_SHA256:
    2118. 

  2118.             case CipherSuite.TLS_DHE_DSS_WITH_AES_256_CBC_SHA256:
    2119. 

  2119.             case CipherSuite.TLS_DHE_DSS_WITH_AES_256_GCM_SHA384:
    2120. 

  2120.             case CipherSuite.TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA256:
    2121. 

  2121.             case CipherSuite.TLS_DHE_DSS_WITH_CAMELLIA_128_GCM_SHA256:
    2122. 

  2122.             case CipherSuite.TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA256:
    2123. 

  2123.             case CipherSuite.TLS_DHE_DSS_WITH_CAMELLIA_256_GCM_SHA384:
    2124. 

  2124.             case CipherSuite.TLS_DHE_PSK_WITH_AES_128_CCM:
    2125. 

  2125.             case CipherSuite.TLS_DHE_PSK_WITH_AES_128_GCM_SHA256:
    2126. 

  2126.             case CipherSuite.DRAFT_TLS_DHE_PSK_WITH_AES_128_OCB:
    2127. 

  2127.             case CipherSuite.TLS_DHE_PSK_WITH_AES_256_CCM:
    2128. 

  2128.             case CipherSuite.TLS_DHE_PSK_WITH_AES_256_GCM_SHA384:
    2129. 

  2129.             case CipherSuite.DRAFT_TLS_DHE_PSK_WITH_AES_256_OCB:
    2130. 

  2130.             case CipherSuite.TLS_DHE_PSK_WITH_CAMELLIA_128_GCM_SHA256:
    2131. 

  2131.             case CipherSuite.TLS_DHE_PSK_WITH_CAMELLIA_256_GCM_SHA384:
    2132. 

  2132.             case CipherSuite.DRAFT_TLS_DHE_PSK_WITH_CHACHA20_POLY1305_SHA256:
    2133. 

  2133.             case CipherSuite.TLS_DHE_RSA_WITH_AES_128_CBC_SHA256:
    2134. 

  2134.             case CipherSuite.TLS_DHE_RSA_WITH_AES_128_CCM:
    2135. 

  2135.             case CipherSuite.TLS_DHE_RSA_WITH_AES_128_CCM_8:
    2136. 

  2136.             case CipherSuite.TLS_DHE_RSA_WITH_AES_128_GCM_SHA256:
    2137. 

  2137.             case CipherSuite.DRAFT_TLS_DHE_RSA_WITH_AES_128_OCB:
    2138. 

  2138.             case CipherSuite.TLS_DHE_RSA_WITH_AES_256_CBC_SHA256:
    2139. 

  2139.             case CipherSuite.TLS_DHE_RSA_WITH_AES_256_CCM:
    2140. 

  2140.             case CipherSuite.TLS_DHE_RSA_WITH_AES_256_CCM_8:
    2141. 

  2141.             case CipherSuite.TLS_DHE_RSA_WITH_AES_256_GCM_SHA384:
    2142. 

  2142.             case CipherSuite.DRAFT_TLS_DHE_RSA_WITH_AES_256_OCB:
    2143. 

  2143.             case CipherSuite.TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256:
    2144. 

  2144.             case CipherSuite.TLS_DHE_RSA_WITH_CAMELLIA_128_GCM_SHA256:
    2145. 

  2145.             case CipherSuite.TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256:
    2146. 

  2146.             case CipherSuite.TLS_DHE_RSA_WITH_CAMELLIA_256_GCM_SHA384:
    2147. 

  2147.             case CipherSuite.DRAFT_TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256:
    2148. 

  2148.             case CipherSuite.TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256:
    2149. 

  2149.             case CipherSuite.TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256:
    2150. 

  2150.             case CipherSuite.TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384:
    2151. 

  2151.             case CipherSuite.TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384:
    2152. 

  2152.             case CipherSuite.TLS_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256:
    2153. 

  2153.             case CipherSuite.TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256:
    2154. 

  2154.             case CipherSuite.TLS_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384:
    2155. 

  2155.             case CipherSuite.TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384:
    2156. 

  2156.             case CipherSuite.TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256:
    2157. 

  2157.             case CipherSuite.TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256:
    2158. 

  2158.             case CipherSuite.TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384:
    2159. 

  2159.             case CipherSuite.TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384:
    2160. 

  2160.             case CipherSuite.TLS_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256:
    2161. 

  2161.             case CipherSuite.TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256:
    2162. 

  2162.             case CipherSuite.TLS_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384:
    2163. 

  2163.             case CipherSuite.TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384:
    2164. 

  2164.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256:
    2165. 

  2165.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_128_CCM:
    2166. 

  2166.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8:
    2167. 

  2167.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256:
    2168. 

  2168.             case CipherSuite.DRAFT_TLS_ECDHE_ECDSA_WITH_AES_128_OCB:
    2169. 

  2169.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384:
    2170. 

  2170.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_256_CCM:
    2171. 

  2171.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_256_CCM_8:
    2172. 

  2172.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384:
    2173. 

  2173.             case CipherSuite.DRAFT_TLS_ECDHE_ECDSA_WITH_AES_256_OCB:
    2174. 

  2174.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256:
    2175. 

  2175.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_GCM_SHA256:
    2176. 

  2176.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384:
    2177. 

  2177.             case CipherSuite.TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384:
    2178. 

  2178.             case CipherSuite.DRAFT_TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256:
    2179. 

  2179.             case CipherSuite.DRAFT_TLS_ECDHE_PSK_WITH_AES_128_OCB:
    2180. 

  2180.             case CipherSuite.DRAFT_TLS_ECDHE_PSK_WITH_AES_256_OCB:
    2181. 

  2181.             case CipherSuite.DRAFT_TLS_ECDHE_PSK_WITH_CHACHA20_POLY1305_SHA256:
    2182. 

  2182.             case CipherSuite.TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256:
    2183. 

  2183.             case CipherSuite.TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256:
    2184. 

  2184.             case CipherSuite.DRAFT_TLS_ECDHE_RSA_WITH_AES_128_OCB:
    2185. 

  2185.             case CipherSuite.TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384:
    2186. 

  2186.             case CipherSuite.TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384:
    2187. 

  2187.             case CipherSuite.DRAFT_TLS_ECDHE_RSA_WITH_AES_256_OCB:
    2188. 

  2188.             case CipherSuite.TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256:
    2189. 

  2189.             case CipherSuite.TLS_ECDHE_RSA_WITH_CAMELLIA_128_GCM_SHA256:
    2190. 

  2190.             case CipherSuite.TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384:
    2191. 

  2191.             case CipherSuite.TLS_ECDHE_RSA_WITH_CAMELLIA_256_GCM_SHA384:
    2192. 

  2192.             case CipherSuite.DRAFT_TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256:
    2193. 

  2193.             case CipherSuite.TLS_PSK_DHE_WITH_AES_128_CCM_8:
    2194. 

  2194.             case CipherSuite.TLS_PSK_DHE_WITH_AES_256_CCM_8:
    2195. 

  2195.             case CipherSuite.TLS_PSK_WITH_AES_128_CCM:
    2196. 

  2196.             case CipherSuite.TLS_PSK_WITH_AES_128_CCM_8:
    2197. 

  2197.             case CipherSuite.TLS_PSK_WITH_AES_128_GCM_SHA256:
    2198. 

  2198.             case CipherSuite.DRAFT_TLS_PSK_WITH_AES_128_OCB:
    2199. 

  2199.             case CipherSuite.TLS_PSK_WITH_AES_256_CCM:
    2200. 

  2200.             case CipherSuite.TLS_PSK_WITH_AES_256_CCM_8:
    2201. 

  2201.             case CipherSuite.TLS_PSK_WITH_AES_256_GCM_SHA384:
    2202. 

  2202.             case CipherSuite.DRAFT_TLS_PSK_WITH_AES_256_OCB:
    2203. 

  2203.             case CipherSuite.TLS_PSK_WITH_CAMELLIA_128_GCM_SHA256:
    2204. 

  2204.             case CipherSuite.TLS_PSK_WITH_CAMELLIA_256_GCM_SHA384:
    2205. 

  2205.             case CipherSuite.DRAFT_TLS_PSK_WITH_CHACHA20_POLY1305_SHA256:
    2206. 

  2206.             case CipherSuite.TLS_RSA_PSK_WITH_AES_128_GCM_SHA256:
    2207. 

  2207.             case CipherSuite.TLS_RSA_PSK_WITH_AES_256_GCM_SHA384:
    2208. 

  2208.             case CipherSuite.TLS_RSA_PSK_WITH_CAMELLIA_128_GCM_SHA256:
    2209. 

  2209.             case CipherSuite.TLS_RSA_PSK_WITH_CAMELLIA_256_GCM_SHA384:
    2210. 

  2210.             case CipherSuite.DRAFT_TLS_RSA_PSK_WITH_CHACHA20_POLY1305_SHA256:
    2211. 

  2211.             case CipherSuite.TLS_RSA_WITH_AES_128_CBC_SHA256:
    2212. 

  2212.             case CipherSuite.TLS_RSA_WITH_AES_128_CCM:
    2213. 

  2213.             case CipherSuite.TLS_RSA_WITH_AES_128_CCM_8:
    2214. 

  2214.             case CipherSuite.TLS_RSA_WITH_AES_128_GCM_SHA256:
    2215. 

  2215.             case CipherSuite.TLS_RSA_WITH_AES_256_CBC_SHA256:
    2216. 

  2216.             case CipherSuite.TLS_RSA_WITH_AES_256_CCM:
    2217. 

  2217.             case CipherSuite.TLS_RSA_WITH_AES_256_CCM_8:
    2218. 

  2218.             case CipherSuite.TLS_RSA_WITH_AES_256_GCM_SHA384:
    2219. 

  2219.             case CipherSuite.TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256:
    2220. 

  2220.             case CipherSuite.TLS_RSA_WITH_CAMELLIA_128_GCM_SHA256:
    2221. 

  2221.             case CipherSuite.TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256:
    2222. 

  2222.             case CipherSuite.TLS_RSA_WITH_CAMELLIA_256_GCM_SHA384:
    2223. 

  2223.             case CipherSuite.TLS_RSA_WITH_NULL_SHA256:
    2224. 

  2224.                 return ProtocolVersion.TLSv12;
    2225. 

  2225. 

  2226.             default:
    2227. 

  2227.                 return ProtocolVersion.SSLv3;
    2228. 

  2228.             }
    2229. 

  2229.         }
    2230. 

  2230. 

  2231.         public static bool IsAeadCipherSuite(int ciphersuite)
    2232. 

  2232.         {
    2233. 

  2233.             return CipherType.aead == GetCipherType(ciphersuite);
    2234. 

  2234.         }
    2235. 

  2235. 

  2236.         public static bool IsBlockCipherSuite(int ciphersuite)
    2237. 

  2237.         {
    2238. 

  2238.             return CipherType.block == GetCipherType(ciphersuite);
    2239. 

  2239.         }
    2240. 

  2240. 

  2241.         public static bool IsStreamCipherSuite(int ciphersuite)
    2242. 

  2242.         {
    2243. 

  2243.             return CipherType.stream == GetCipherType(ciphersuite);
    2244. 

  2244.         }
    2245. 

  2245. 

  2246.         public static bool IsValidCipherSuiteForVersion(int cipherSuite, ProtocolVersion serverVersion)
    2247. 

  2247.         {
    2248. 

  2248.             return GetMinimumVersion(cipherSuite).IsEqualOrEarlierVersionOf(serverVersion.GetEquivalentTLSVersion());
    2249. 

  2249.         }
    2250. 

  2250.     }
    2251. 

  2251. }
    2252. 

  2252. 

  2253. #endif
    2254.