Uploaded image for project: 'Qt'
  1. Qt
  2. QTBUG-67112

UWP SSL implementation does not support ECDHE-RSA-AES256-GCM-SHA384 cipher

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • P2: Important
    • 5.11.0
    • 5.10.1
    • Network: SSL
    • None
    • WinRT
    • 4a56d86ee43bd6be23f70ef2d29ba4b4ebb17029

    Description

      OpenSSL supports 78 ciphers but the UWP SSL implementation only supports 4.

      These 4 are not explicitly named when you get QSslConfiguration::supportedCiphers(), however I know that it doesn't support the ECDHE-RSA-AES256-GCM-SHA384 cipher in protocol TLS 1.2. The attempt to connect to a webservice with an ssl certificate (recently acquired, issued by COMODO) using this cipher fails with a network error code of 99 - "Permission denied".

      This basically renders a client app useless.

      Attachments

        Issue Links

          duplicates

          Task - A task that needs to be done. QTBUG-51871 Add support for configuring WinRT with Win32 Sockets and OpenSSL

          • P3: Somewhat important - Should be fixed, but doesn't affect the release in any way.
          • Closed
          For Gerrit Dashboard: QTBUG-67112
          # Subject Branch Project Status CR V
          223842,2 Make QSsl::SecureProtocols also enable use of TLS1.{1,2} 5.11 qt/qtbase Status: MERGED +2 0

          Activity

            People

              manordheim Mårten Nordheim
              rogerio Rogerio Nicolau
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Gerrit Reviews

                  There are no open Gerrit changes