The cl-tls Reference Manual

Table of Contents

Next: , Previous: , Up: (dir)   [Contents][Index]

The cl-tls Reference Manual

This is the cl-tls Reference Manual, generated automatically by Declt version 3.0 "Montgomery Scott" on Sun May 15 04:14:48 2022 GMT+0.


Next: , Previous: , Up: Top   [Contents][Index]

1 Introduction

CL-TLS is a prototype Common Lisp implementation of TLS and related protocols and standards including:

TLS is the IETF-standardized successor of Netscape's SSL protocol. Sometimes TLS/SSL are used interchangeably. At this point, there is no intention to support the older versions of the protocols (SSLv3 and below)

The project is currently in its early development phase and should only be used for experimental purposes.

CL-TLS uses Ironclad as its cryptographic back-end (at the time of writing, the ironclad in quicklisp has not yet been updated to the new maintained repo, use sharplispers/ironclad). See the system definition file for other dependencies

The project started as an attempt to create a network-based TLS fuzzer, but soon morphed of its own volition into a full-fledged TLS implementation.

Extensive testing, fuzzing, and code review is needed. Style guidelines, optimizations, feature-completion patches, bug fixes, and other contributions are welcome.

For an overview of known attacks against TLS and other issues relevant to implementors and users, see https://tools.ietf.org/html/rfc7457 At a minimum, CL-TLS will follow the recommendations and considerations in the aforementioned document before a proper alpha release is announced.

I also intend to fully document the internals of CL-TLS.

So far:

Major TODOs before alpha release:

Features that would be nice, but are not essential

CL-TLS does not offer gray streams, threading, sockets, event-loop, or compression functionality. This limits the code of CL-TLS to simply opening and managing a TLS tunnel through an octet stream and enhances portability and extensibility. However, libraries that offer this functionality (such as threaded or evented servers), can be built trivially on top of CL-TLS. See https://github.com/shrdlu68/secure-sockets as an example.

Here is an example of a simple text echo server that implements a simple one-thread-per-request model using usocket and bordeaux-threads:

(require :cl-tls)

(ql:quickload :bordeaux-threads)
(ql:quickload :usockets)
(ql:quickload :babel)

(defun echo-server (port &optional (host "localhost"))
  (let ((sock (usocket:socket-listen host port
				     :reuse-address t
				     :element-type '(unsigned-byte 8))))
    (cl-tls:initialize-listener
     :certificate "/path/to/cert.pem"
     :private-key "/path/to/key.pem")
    (loop
      for thread-id upfrom 0
      for new-sock = (usocket:socket-accept sock)
      for session-stream = (usocket:socket-stream new-sock)
      for handler = (multiple-value-bind (reader writer)
			(cl-tls:accept-tunnel :io-stream session-stream)
		      (lambda ()
			(loop
			  with id = thread-id
			  for in = (funcall reader)
			  for line = (and in
					  (babel:octets-to-string in))
			  if line do
			    (format t "~&~:R thread received data: ~A~%"
				    id line)
			    (funcall writer in)
			  else do
			    (format t
				    "~&Peer closed tunnel, ~:R thread exiting~%" id)
			    (return nil))))
      do
	 (bordeaux-threads:make-thread handler))))

And here is an example using client functionality:

(require :cl-tls)
(ql:quickload :babel)

(defun client-test (port &optional (host "localhost"))
  (let* ((sock (usocket:socket-connect
		host port
		:protocol :stream
		:element-type '(unsigned-byte 8))))
    (multiple-value-bind (reader writer close-callback)
	(cl-tls:request-tunnel
	 :certificate "/path/to/cert.pem"
	 :private-key "/path/to/key.pem"
	 :io-stream (usocket:socket-stream sock)
	 :peer-ip-addresses '((127 0 0 1))
	 :ca-certificates "/path/to/CA/ca-cert.pem")
      (loop
	for out = (read-line *standard-input* nil nil)
	for line = (and out
			(babel:string-to-octets out))
	if line do
	  (funcall writer line)
	  (let ((in (funcall reader)))
	    (cond (in
		   (format t "~&Received data: ~A~%"
			   (babel:octets-to-string in)))
		  (t
		   (funcall close-callback)
		   (return nil))))
	else do
	  (format t "~&Closing tunnel...~%")
	  (funcall close-callback)
	  (return nil)))))

Preliminary API documentation:

request-tunnel (&key certificate private-key ca-certificates
	       	     io-stream input-stream output-stream
		     include-ciphers exclude-ciphers
		     peer-dns-name peer-ip-addresses)

		Attempts to request a TLS tunnel from a server
		through an octet stream
		
		:io-stream A duplex octet stream
		
		:input-stream In the case where separate input and output
			      streams are used, an octet input stream
			      
		:output-stream An octet output stream

		:private-key A (DER/PEM-encoded) private key
			     (currently only DSA, RSA and DH private keys are supported)
			     If the private key is encrypted, you will be prompted for
			     the passphrase
			     
		:certificate A file containing a PEM-encoded list of one
			     or more cerificates
			     The file should consist of one or more
			     ----- BEGIN CERTIFICATE -----
			     ----- END CERTIFICATE -----
			     blocks. White space and other information around these blocks
			     is permitted and will be ignored. Support for PKCS#12-encoded
			     certificate chains is not yet implemented.
		:ca-certificates Either: 1. A directory to look for .crt, .pem, and .der
				 	    CA certificates in
					 2. A PEM-encoded file containing CA certificates,
					    encoded as explained above.
				 For servers, these are only needed if the server
				 needs to authenticate clients, i.e the clients are
				 expected to have client certificates issued to them.
				 This is not used very widely in practice.
				 For clients, CA certificates are used to authenticate
				 servers.
				 TLS clients such as browsers typically use a collection
				 of root certificates that are included by some means of
				 vetting, either provided by the operating system or
				 by the creators/maintainers of the browser.
				 You can use the CAs that your OS/browser has vetted,
				 or you can select which CAs to trust by yourself.
				 For example, most GNU/Linux systems have a package that
				 provides vetted root certificates, typically found in
				 the file "/etc/ssl/certs/ca-certificates.crt"
				 See also: https://curl.haxx.se/docs/sslcerts.html
				 
				 If you want to or have issued your own certificates,
				 include your CA certificate here, either in
				 addition to other CA certificates or as the sole
				 CA certificates. The client and server will only
				 be able to validate remote endpoints whose certificates
				 are signed by a CA certificate that is included,
				 there is no way to "accept" unvalidated certificates.

		
		:include-ciphers A list of symbols of cipher suites to add to the
				 default cipher list.
				 The symbols denote one of the cryptographic characteristics
				 of a cipher suite: key exchange, authentication
				 bulk encryption, mac, digest algorithms, prf, and key sizes.
				 Currently supported options:
				 :rsa-ke (RSA key exchange)
				 :rsa-auth (RSA authentication)
				 :dh (static dh) :dhe (ephemeral dh)
				 :dsa :anon (no authentication-vulnerable to MITM attacks!)
				 :rc4 (broken and prohibited) :3des
				 :aes128 :aes256 :cbc (cipher block chaining mode)
				 :md5 :sha1 :sha256
				 
		:exclude-ciphers A list of symbols of cipher suites to exclude
				 from the default cipher list.
				 :anon and :rc4 are already excluded by default
				 
		:peer-dns-name DNS-name of the peer. This is checked against
			       the dns-name values in the subject alternative name extension
			       of the certificate presented by the peer.
			       It is also used in the SNI extension, which is important
			       for virtual servers to determine which server the client
			       wants to contact.
		
		:peer-ip-addresses List of IP addresses of the peer
				   This is checked against the ip-address values
				   in the subject alternative name extension
			       	   of the certificate presented by the peer.
initialize-listener (&key certificate private-key ca-certificates
				include-ciphers exclude-ciphers force-reinitialize
				authenticate-client-p require-authentication-p
				dh-params)
			
		Loads resources needed for a server session and
		sets configuration options
		Servers need to call this once when initializing.
						 
		:authenticate-client-p When true, an attempt to authenticate the client
				       will be made. However, the client may send back an
				       empty certificate if it does not have
				       (an appropriate) certificate. This option defaults
				       to nil
				       
		:require-authentication-p When true, the server will be asked for a
					  certificate, and the connection will
					  fail if the client fails to provide a certificate.
					  This option defaults to nil.

accept-tunnel (&key io-stream input-stream output-stream)
	      => read-callback,write-callback,close-callback

	      Attempts to accept a client's request for a
	      TLS tunnel through an octet stream

		read-callback A closure whose argument list is in the form
			      (&key (eof-error-p nil) (eof-value nil))
			      that returns the contents
			      of one TLS record (2^14 bytes or less).
			      If :eof-error-p is true, the condition cl:end-of-file
			      will be signaled if the TLS tunnel is closed properly
			      (i.e a close_notify alert is received)
			      If :eof-error-p is false, eof-value is returned rather
			      than isgnalling end-of-file.
			      If an error is encountered while attempting to read from
			      the underlying stream (for example is a socket connection
			      is terminated without properly closing the TLS tunnel),
			      the condition cl:stream-error will be signalled.
		write-callback A closure of one argument, an octet vector of arbitrary size,
			       to be sent down the tunnel
			       Attempting to write to a closed TLS tunnel will
			       signal the condition cl:stream-error
			       If an error is encountered while attempting to write to
			       the underlying stream (for example is a socket connection
			       is terminated without properly closing the TLS tunnel),
			       the condition cl:stream-error will be signalled.
		close-callback A closure of no arguments that politely closes the TLS
			       connection by sending a close_notify alert.
(defclass address ()
  ((host :initarg :host
	 :accessor host)
   (port :initarg :port
	 :accessor port)))
request-stream-to-address (address)
		 =>octet stream
	Specialize this generic function and provide socket functionality.
	This is needed by some of the functionality in cl-tls that may need
	to open sockets, such as contacting OCSP responders.
	For example, to if you are using usockets:
	(defmethod cl-tls:request-stream-to-address ((addr cl-tls:address))
	  (usocket:socket-stream (usocket:socket-connect
	  (cl-tls:host addr) (cl-tls:port addr)
	  :protocol :stream
	  :element-type '(unsigned-byte 8))))

This API will likely change as development continues.


Next: , Previous: , Up: Top   [Contents][Index]

2 Systems

The main system appears first, followed by any subsystem dependency.


Previous: , Up: Systems   [Contents][Index]

2.1 cl-tls

Author

Brian Kamotho

License

BSD-3-Clause

Description

An implementation of the Transport Layer Security Protocols

Dependencies
Source

cl-tls.asd (file)

Components

Next: , Previous: , Up: Top   [Contents][Index]

3 Modules

Modules are listed depth-first from the system components tree.


Next: , Previous: , Up: Modules   [Contents][Index]

3.1 cl-tls/src

Dependency

license (file)

Parent

cl-tls (system)

Location

src/

Components

Next: , Previous: , Up: Modules   [Contents][Index]

3.2 cl-tls/src/ASN.1

Parent

src (module)

Location

src/ASN.1/

Component

asn.1.lisp (file)


Next: , Previous: , Up: Modules   [Contents][Index]

3.3 cl-tls/src/pkcs

Parent

src (module)

Location

src/pkcs/

Components

Next: , Previous: , Up: Modules   [Contents][Index]

3.4 cl-tls/src/x509

Parent

src (module)

Location

src/x509/

Components

Next: , Previous: , Up: Modules   [Contents][Index]

3.5 cl-tls/src/PEM

Parent

src (module)

Location

src/PEM/

Component

rfc7468.lisp (file)


Previous: , Up: Modules   [Contents][Index]

3.6 cl-tls/src/tls

Parent

src (module)

Location

src/tls/

Components

Next: , Previous: , Up: Top   [Contents][Index]

4 Files

Files are sorted by type and then listed depth-first from the systems components trees.


Next: , Previous: , Up: Files   [Contents][Index]

4.1 Lisp


Next: , Previous: , Up: Lisp files   [Contents][Index]

4.1.1 cl-tls.asd

Location

cl-tls.asd

Systems

cl-tls (system)


Next: , Previous: , Up: Lisp files   [Contents][Index]

4.1.2 cl-tls/src/package.lisp

Parent

src (module)

Location

src/package.lisp

Packages

cl-tls


Next: , Previous: , Up: Lisp files   [Contents][Index]

4.1.3 cl-tls/src/utils.lisp

Parent

src (module)

Location

src/utils.lisp

Internal Definitions

Next: , Previous: , Up: Lisp files   [Contents][Index]

4.1.4 cl-tls/src/ASN.1/asn.1.lisp

Parent

asn.1 (module)

Location

src/ASN.1/asn.1.lisp

Exported Definitions
Internal Definitions

Next: , Previous: , Up: Lisp files   [Contents][Index]

4.1.5 cl-tls/src/pkcs/pkcs1.lisp

Parent

pkcs (module)

Location

src/pkcs/pkcs1.lisp

Exported Definitions
Internal Definitions

Next: , Previous: , Up: Lisp files   [Contents][Index]

4.1.6 cl-tls/src/pkcs/pkcs3.lisp

Parent

pkcs (module)

Location

src/pkcs/pkcs3.lisp

Internal Definitions

Next: , Previous: , Up: Lisp files   [Contents][Index]

4.1.7 cl-tls/src/pkcs/pkcs5.lisp

Parent

pkcs (module)

Location

src/pkcs/pkcs5.lisp

Exported Definitions

pbes2-decrypt (function)

Internal Definitions

Next: , Previous: , Up: Lisp files   [Contents][Index]

4.1.8 cl-tls/src/pkcs/pkcs8.lisp

Parent

pkcs (module)

Location

src/pkcs/pkcs8.lisp

Internal Definitions

Next: , Previous: , Up: Lisp files   [Contents][Index]

4.1.9 cl-tls/src/x509/extensions.lisp

Parent

x509 (module)

Location

src/x509/extensions.lisp

Internal Definitions

Next: , Previous: , Up: Lisp files   [Contents][Index]

4.1.10 cl-tls/src/x509/x509.lisp

Dependency

extensions.lisp (file)

Parent

x509 (module)

Location

src/x509/x509.lisp

Exported Definitions

x509-decode (function)

Internal Definitions

Next: , Previous: , Up: Lisp files   [Contents][Index]

4.1.11 cl-tls/src/x509/ocsp.lisp

Dependency

x509.lisp (file)

Parent

x509 (module)

Location

src/x509/ocsp.lisp

Internal Definitions

Next: , Previous: , Up: Lisp files   [Contents][Index]

4.1.12 cl-tls/src/x509/validate.lisp

Dependency

ocsp.lisp (file)

Parent

x509 (module)

Location

src/x509/validate.lisp

Internal Definitions

Next: , Previous: , Up: Lisp files   [Contents][Index]

4.1.13 cl-tls/src/PEM/rfc7468.lisp

Parent

pem (module)

Location

src/PEM/rfc7468.lisp

Internal Definitions

Next: , Previous: , Up: Lisp files   [Contents][Index]

4.1.14 cl-tls/src/tls/transport.lisp

Parent

tls (module)

Location

src/tls/transport.lisp

Exported Definitions

Next: , Previous: , Up: Lisp files   [Contents][Index]

4.1.15 cl-tls/src/tls/http.lisp

Parent

tls (module)

Location

src/tls/http.lisp

Exported Definitions
Internal Definitions

Next: , Previous: , Up: Lisp files   [Contents][Index]

4.1.16 cl-tls/src/tls/ciphersuites.lisp

Parent

tls (module)

Location

src/tls/ciphersuites.lisp

Internal Definitions

Next: , Previous: , Up: Lisp files   [Contents][Index]

4.1.17 cl-tls/src/tls/alert.lisp

Parent

tls (module)

Location

src/tls/alert.lisp

Internal Definitions

Next: , Previous: , Up: Lisp files   [Contents][Index]

4.1.18 cl-tls/src/tls/crypto.lisp

Parent

tls (module)

Location

src/tls/crypto.lisp

Internal Definitions

Next: , Previous: , Up: Lisp files   [Contents][Index]

4.1.19 cl-tls/src/tls/extensions.lisp

Parent

tls (module)

Location

src/tls/extensions.lisp

Internal Definitions

Previous: , Up: Lisp files   [Contents][Index]

4.1.20 cl-tls/src/tls/tls.lisp

Parent

tls (module)

Location

src/tls/tls.lisp

Exported Definitions
Internal Definitions

Previous: , Up: Files   [Contents][Index]

4.2 Static


Next: , Previous: , Up: Static files   [Contents][Index]

4.2.1 cl-tls/README

Parent

cl-tls (system)

Location

/home/quickref/quicklisp/dists/quicklisp/software/cl-tls-20211209-git/README (not found)


Previous: , Up: Static files   [Contents][Index]

4.2.2 cl-tls/LICENSE

Dependency

readme (file)

Parent

cl-tls (system)

Location

LICENSE


Next: , Previous: , Up: Top   [Contents][Index]

5 Packages

Packages are listed by definition order.


Previous: , Up: Packages   [Contents][Index]

5.1 cl-tls

CL-TLS is a Common Lisp implemetation of TLS and related specifications

Source

package.lisp (file)

Nickname

tls

Use List
Exported Definitions
Internal Definitions

Next: , Previous: , Up: Top   [Contents][Index]

6 Definitions

Definitions are sorted by export status, category, package, and then by lexicographic order.


Next: , Previous: , Up: Definitions   [Contents][Index]

6.1 Exported definitions


Next: , Previous: , Up: Exported definitions   [Contents][Index]

6.1.1 Functions

Function: accept-tunnel &key IO-STREAM INPUT-STREAM OUTPUT-STREAM

As a server, accept a new connection from a client

Package

cl-tls

Source

tls.lisp (file)

Function: asn-sequence-to-list VEC &key MODE

Given an asn sequence, return a list of the raw der elements

Package

cl-tls

Source

asn.1.lisp (file)

Function: asn-serialize OBJ TYPE &key CLASS PRIMITIVEP

Create an ASN structure

Package

cl-tls

Source

asn.1.lisp (file)

Function: create-asn-sequence &rest COLL
Package

cl-tls

Source

asn.1.lisp (file)

Function: encode-oid NUMS
Package

cl-tls

Source

asn.1.lisp (file)

Function: initialize-listener &key CERTIFICATE PRIVATE-KEY CA-CERTIFICATES INCLUDE-CIPHERS EXCLUDE-CIPHERS FORCE-REINITIALIZE AUTHENTICATE-CLIENT-P REQUIRE-AUTHENTICATION-P DH-PARAMS

Initialize a TLS server session with the given arguments

Package

cl-tls

Source

tls.lisp (file)

Function: parse-der OBJ &key START MODE

Serialized mode returns the plain contents octets. deserialized mode deserializes the contents octets. Octet strings and Bit Strings are not deserialized

Package

cl-tls

Source

asn.1.lisp (file)

Function: pbes2-decrypt OV &optional PASSPHRASE
Package

cl-tls

Source

pkcs5.lisp (file)

Function: request-tunnel &key CERTIFICATE PRIVATE-KEY CA-CERTIFICATES IO-STREAM INPUT-STREAM OUTPUT-STREAM INCLUDE-CIPHERS EXCLUDE-CIPHERS PEER-DNS-NAME PEER-IP-ADDRESSES

As a client, request a TLS connection from a server

Package

cl-tls

Source

tls.lisp (file)

Function: rsa-decrypt DATA PRIVATE-KEY

Returns raw data after decrypting and parsing the Encryption-block

Package

cl-tls

Source

pkcs1.lisp (file)

Function: rsa-encrypt DATA KEY

Converts data into an encryption block then calls ironclad

Package

cl-tls

Source

pkcs1.lisp (file)

Function: rsassa-pkcs1.5-sign PRIV-KEY MSG HASH-ALGORITHM
Package

cl-tls

Source

pkcs1.lisp (file)

Function: rsassa-pkcs1.5-verify PUB-KEY MSG SIGNATURE HASH-ALGORITHM
Package

cl-tls

Source

pkcs1.lisp (file)

Function: x509-decode OCTET-VECTOR

Deserialize an x509 certificate from an octet-vector

Package

cl-tls

Source

x509.lisp (file)


Next: , Previous: , Up: Exported definitions   [Contents][Index]

6.1.2 Generic functions

Generic Function: host OBJECT
Generic Function: (setf host) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: host (URI uri)

automatically generated reader method

Source

http.lisp (file)

Method: (setf host) NEW-VALUE (URI uri)

automatically generated writer method

Source

http.lisp (file)

Method: host (ADDRESS address)

automatically generated reader method

Source

transport.lisp (file)

Method: (setf host) NEW-VALUE (ADDRESS address)

automatically generated writer method

Source

transport.lisp (file)

Generic Function: port OBJECT
Generic Function: (setf port) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: port (URI uri)

automatically generated reader method

Source

http.lisp (file)

Method: (setf port) NEW-VALUE (URI uri)

automatically generated writer method

Source

http.lisp (file)

Method: port (ADDRESS address)

automatically generated reader method

Source

transport.lisp (file)

Method: (setf port) NEW-VALUE (ADDRESS address)

automatically generated writer method

Source

transport.lisp (file)

Generic Function: request-stream-to-address ADDRESS
Package

cl-tls

Source

transport.lisp (file)

Methods
Method: request-stream-to-address (ADDR address)

Next: , Previous: , Up: Exported definitions   [Contents][Index]

6.1.3 Conditions

Condition: tls-error ()
Package

cl-tls

Source

tls.lisp (file)

Direct superclasses

error (condition)

Direct methods
  • text (method)
  • text (method)
Direct slots
Slot: text
Initargs

:text

Readers

text (generic function)

Writers

(setf text) (generic function)

Condition: tls-stream-error ()
Package

cl-tls

Source

tls.lisp (file)

Direct superclasses

stream-error (condition)


Previous: , Up: Exported definitions   [Contents][Index]

6.1.4 Classes

Class: address ()
Package

cl-tls

Source

transport.lisp (file)

Direct superclasses

standard-object (class)

Direct methods
Direct slots
Slot: host
Initargs

:host

Readers

host (generic function)

Writers

(setf host) (generic function)

Slot: port
Initargs

:port

Readers

port (generic function)

Writers

(setf port) (generic function)


Previous: , Up: Definitions   [Contents][Index]

6.2 Internal definitions


Next: , Previous: , Up: Internal definitions   [Contents][Index]

6.2.1 Constants

Constant: +access-denied+
Package

cl-tls

Source

alert.lisp (file)

Constant: +alert+
Package

cl-tls

Source

tls.lisp (file)

Constant: +application-data+
Package

cl-tls

Source

tls.lisp (file)

Constant: +asn1_application+
Package

cl-tls

Source

asn.1.lisp (file)

Constant: +asn1_constructed+
Package

cl-tls

Source

asn.1.lisp (file)

Constant: +asn1_context_specific+
Package

cl-tls

Source

asn.1.lisp (file)

Constant: +asn1_primitive+
Package

cl-tls

Source

asn.1.lisp (file)

Constant: +asn1_private+
Package

cl-tls

Source

asn.1.lisp (file)

Constant: +asn1_universal+
Package

cl-tls

Source

asn.1.lisp (file)

Constant: +bad-certificate+
Package

cl-tls

Source

alert.lisp (file)

Constant: +bad-record-mac+
Package

cl-tls

Source

alert.lisp (file)

Constant: +certificate+
Package

cl-tls

Source

tls.lisp (file)

Constant: +certificate-expired+
Package

cl-tls

Source

alert.lisp (file)

Constant: +certificate-request+
Package

cl-tls

Source

tls.lisp (file)

Constant: +certificate-revoked+
Package

cl-tls

Source

alert.lisp (file)

Constant: +certificate-unknown+
Package

cl-tls

Source

alert.lisp (file)

Constant: +certificate-verify+
Package

cl-tls

Source

tls.lisp (file)

Constant: +change-cipher-spec+
Package

cl-tls

Source

tls.lisp (file)

Constant: +client-hello+
Package

cl-tls

Source

tls.lisp (file)

Constant: +client-key-exchange+
Package

cl-tls

Source

tls.lisp (file)

Constant: +close-notify+
Package

cl-tls

Source

alert.lisp (file)

Constant: +decode-error+
Package

cl-tls

Source

alert.lisp (file)

Constant: +decompression-failure+
Package

cl-tls

Source

alert.lisp (file)

Constant: +decrypt-error+
Package

cl-tls

Source

alert.lisp (file)

Constant: +decryption-failed-reserved+
Package

cl-tls

Source

alert.lisp (file)

Constant: +export-restriction-reserved+
Package

cl-tls

Source

alert.lisp (file)

Constant: +fatal+
Package

cl-tls

Source

alert.lisp (file)

Constant: +finished+
Package

cl-tls

Source

tls.lisp (file)

Constant: +handshake+
Package

cl-tls

Source

tls.lisp (file)

Constant: +handshake-failure+
Package

cl-tls

Source

alert.lisp (file)

Constant: +hello-request+
Package

cl-tls

Source

tls.lisp (file)

Constant: +illegal-parameter+
Package

cl-tls

Source

alert.lisp (file)

Constant: +insufficient-security+
Package

cl-tls

Source

alert.lisp (file)

Constant: +internal-error+
Package

cl-tls

Source

alert.lisp (file)

Constant: +md2withrsaencryption+
Package

cl-tls

Source

x509.lisp (file)

Constant: +md5withrsaencryption+
Package

cl-tls

Source

x509.lisp (file)

Constant: +no-certificate-reserved+
Package

cl-tls

Source

alert.lisp (file)

Constant: +no-renegotiation+
Package

cl-tls

Source

alert.lisp (file)

Constant: +protocol-version+
Package

cl-tls

Source

alert.lisp (file)

Constant: +record-overflow+
Package

cl-tls

Source

alert.lisp (file)

Constant: +server-hello+
Package

cl-tls

Source

tls.lisp (file)

Constant: +server-hello-done+
Package

cl-tls

Source

tls.lisp (file)

Constant: +server-key-exchange+
Package

cl-tls

Source

tls.lisp (file)

Constant: +sha1withrsaencryption+
Package

cl-tls

Source

x509.lisp (file)

Constant: +sha224withrsaencryption+
Package

cl-tls

Source

x509.lisp (file)

Constant: +sha256withrsaencryption+
Package

cl-tls

Source

x509.lisp (file)

Constant: +sha384withrsaencryption+
Package

cl-tls

Source

x509.lisp (file)

Constant: +sha512withrsaencryption+
Package

cl-tls

Source

x509.lisp (file)

Constant: +unexpected-message+
Package

cl-tls

Source

alert.lisp (file)

Constant: +unknown-ca+
Package

cl-tls

Source

alert.lisp (file)

Constant: +unsupported-certificate+
Package

cl-tls

Source

alert.lisp (file)

Constant: +unsupported-extension+
Package

cl-tls

Source

alert.lisp (file)

Constant: +user-canceled+
Package

cl-tls

Source

alert.lisp (file)

Constant: +warning+
Package

cl-tls

Source

alert.lisp (file)


Next: , Previous: , Up: Internal definitions   [Contents][Index]

6.2.2 Special variables

Special Variable: *certificate-request-msg*
Package

cl-tls

Source

tls.lisp (file)

Special Variable: *crlf*
Package

cl-tls

Source

http.lisp (file)

Special Variable: *debug-stream*
Package

cl-tls

Source

tls.lisp (file)

Special Variable: *id-ad-ocsp*
Package

cl-tls

Source

ocsp.lisp (file)

Special Variable: *log-level*
Package

cl-tls

Source

tls.lisp (file)

Special Variable: *max-certificate-chain-length*
Package

cl-tls

Source

tls.lisp (file)

Special Variable: *max-content-length*
Package

cl-tls

Source

http.lisp (file)

Special Variable: *max-fragment-length*
Package

cl-tls

Source

tls.lisp (file)

Special Variable: *max-int-len*
Package

cl-tls

Source

asn.1.lisp (file)

Special Variable: *supported-cipher-suites*
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: *version*
Package

cl-tls

Source

tls.lisp (file)

Special Variable: +3des-block-size+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +3des-encryption-suites+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +aes-128-ciphers+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +aes-256-ciphers+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +aes-block-size+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +aes-encryption-suites+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +anon-authentication-suites+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +cbc-mode-ciphers+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +dh-key-exchange-suites+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +dhe-key-exchange-suites+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +dss-authentication-suites+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +md5-ciphers+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +rc4-encryption-suites+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +rsa-authentication-suites+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +rsa-key-exchange-suites+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +sha1-ciphers+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +sha256-ciphers+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dh_anon_with_3des_ede_cbc_sha+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dh_anon_with_aes_128_cbc_sha+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dh_anon_with_aes_128_cbc_sha256+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dh_anon_with_aes_256_cbc_sha+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dh_anon_with_aes_256_cbc_sha256+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dh_anon_with_rc4_128_md5+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dh_dss_with_3des_ede_cbc_sha+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dh_dss_with_aes_128_cbc_sha+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dh_dss_with_aes_128_cbc_sha256+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dh_dss_with_aes_256_cbc_sha+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dh_dss_with_aes_256_cbc_sha256+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dh_rsa_with_3des_ede_cbc_sha+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dh_rsa_with_aes_128_cbc_sha+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dh_rsa_with_aes_128_cbc_sha256+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dh_rsa_with_aes_256_cbc_sha+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dh_rsa_with_aes_256_cbc_sha256+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dhe_dss_with_3des_ede_cbc_sha+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dhe_dss_with_aes_128_cbc_sha+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dhe_dss_with_aes_128_cbc_sha256+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dhe_dss_with_aes_256_cbc_sha+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dhe_dss_with_aes_256_cbc_sha256+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dhe_rsa_with_3des_ede_cbc_sha+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dhe_rsa_with_aes_128_cbc_sha+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dhe_rsa_with_aes_128_cbc_sha256+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dhe_rsa_with_aes_256_cbc_sha+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_dhe_rsa_with_aes_256_cbc_sha256+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_rsa_with_3des_ede_cbc_sha+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_rsa_with_aes_128_cbc_sha+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_rsa_with_aes_128_cbc_sha256+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_rsa_with_aes_256_cbc_sha+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_rsa_with_aes_256_cbc_sha256+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_rsa_with_null_md5+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_rsa_with_null_sha+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_rsa_with_null_sha256+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_rsa_with_rc4_128_md5+
Package

cl-tls

Source

ciphersuites.lisp (file)

Special Variable: +tls_rsa_with_rc4_128_sha+
Package

cl-tls

Source

ciphersuites.lisp (file)


Next: , Previous: , Up: Internal definitions   [Contents][Index]

6.2.3 Symbol macros

Symbol Macro: endpoint-decryption-key
Package

cl-tls

Source

crypto.lisp (file)

Expansion

(if (eql cl-tls::role :client) cl-tls::server-write-key cl-tls::client-write-key)

Symbol Macro: endpoint-encryption-key
Package

cl-tls

Source

crypto.lisp (file)

Expansion

(if (eql cl-tls::role :client) cl-tls::client-write-key cl-tls::server-write-key)

Symbol Macro: endpoint-mac-decryption-key
Package

cl-tls

Source

tls.lisp (file)

Expansion

(if (eql cl-tls::role :client) cl-tls::server-write-mac-key cl-tls::client-write-mac-key)

Symbol Macro: endpoint-mac-encryption-key
Package

cl-tls

Source

tls.lisp (file)

Expansion

(if (eql cl-tls::role :client) cl-tls::client-write-mac-key cl-tls::server-write-mac-key)


Next: , Previous: , Up: Internal definitions   [Contents][Index]

6.2.4 Macros

Macro: bind-tbs TBS &body BODY
Package

cl-tls

Source

x509.lisp (file)

Macro: ocsp-catch-asn-error &body BODY
Package

cl-tls

Source

ocsp.lisp (file)

Macro: with-specification-map MAP VEC ERROR-CLAUSE &body B
Package

cl-tls

Source

utils.lisp (file)


Next: , Previous: , Up: Internal definitions   [Contents][Index]

6.2.5 Functions

Function: add-handshake-header HANDSHAKE-TYPE BUFFER
Package

cl-tls

Source

tls.lisp (file)

Function: alert-record-to-text CONTENT
Package

cl-tls

Source

alert.lisp (file)

Function: asn-sequence-to-indices VEC &optional CONTENTS-START

Given an asn sequence, return a list of the types of elements in them and their start and end positions in the vector

Package

cl-tls

Source

asn.1.lisp (file)

Function: asn-time-to-universal-time TIME-STRING

Converts utcTime or GeneralTime to universal time

Package

cl-tls

Source

x509.lisp (file)

Function: asn-type-matches-p TYPE INFO
Package

cl-tls

Source

utils.lisp (file)

Function: bytes-in-int INT

Return the least number of octets needed to represent an integer

Package

cl-tls

Source

utils.lisp (file)

Function: calculate-mac SESSION CONTENT-TYPE MESSAGE
Package

cl-tls

Source

tls.lisp (file)

Function: calculate-verification-mac SESSION CONTENT-TYPE MESSAGE
Package

cl-tls

Source

tls.lisp (file)

Function: cat-vectors &rest VECTORS
Package

cl-tls

Source

utils.lisp (file)

Function: check-certificate-status SESSION SUBJECT ISSUER

Check certificate status via OCSP.
If the OCSP request is successful and the status os good, return true. Return false in every other case

Package

cl-tls

Source

validate.lisp (file)

Function: check-ocsp SUBJECT ISSUER

Return the status of the certificate or signal an error

Package

cl-tls

Source

ocsp.lisp (file)

Function: cipher-suite-supported-p CS SESSION
Package

cl-tls

Source

tls.lisp (file)

Function: compute-shared-secret DH-PARAMS SECRET-EXP DH-PUBLIC-VALUE

Generates the final secret, given the dh-params and the dh-public-value of the other party

Package

cl-tls

Source

pkcs3.lisp (file)

Function: create-cert-id ISSUER-DN ISSUER-PUB-KEY CERT-SERIAL-NUMBER &optional HASH-ALGORITHM
Package

cl-tls

Source

ocsp.lisp (file)

Function: create-cert-status-request ()
Package

cl-tls

Source

extensions.lisp (file)

Function: create-cipher-vector INCLUDE EXCLUDE &optional AUTHENTICATION-METHOD
Package

cl-tls

Source

tls.lisp (file)

Function: create-explicit-tag CONTENTS NUMBER &optional CLASS
Package

cl-tls

Source

asn.1.lisp (file)

Function: create-listener-session &key PRIVATE-KEY CERTIFICATE CA-CERTIFICATES INCLUDE-CIPHERS EXCLUDE-CIPHERS DH-PARAMS AUTHENTICATE-CLIENT-P REQUIRE-AUTHENTICATION-P
Package

cl-tls

Source

tls.lisp (file)

Function: create-request CERT-ID
Package

cl-tls

Source

ocsp.lisp (file)

Function: create-session ROLE &key CERTIFICATE PRIVATE-KEY CA-CERTIFICATES IO-STREAM INPUT-STREAM OUTPUT-STREAM INCLUDE-CIPHERS EXCLUDE-CIPHERS PEER-DNS-NAME PEER-IP-ADDRESSES
Package

cl-tls

Source

tls.lisp (file)

Function: create-sni FQDN
Package

cl-tls

Source

extensions.lisp (file)

Function: create-tbs-request IDENTIFIERS

identifiers is a list of lists with identifier-dn identifier-pub-key, and serial number

Package

cl-tls

Source

ocsp.lisp (file)

Function: decapsulate TXT PREFIX SUFFIX &key START END

Read string encapsulated between a prefix and suffix

Package

cl-tls

Source

rfc7468.lisp (file)

Function: decode-oid VEC

Decode an OID into a list of integers

Package

cl-tls

Source

asn.1.lisp (file)

Function: dhparams-from-key-file PATH
Package

cl-tls

Source

tls.lisp (file)

Function: digitally-sign SESSION DATA

Create a digitally-signed-struct

Package

cl-tls

Source

crypto.lisp (file)

Function: dns-match-p PATTERN DNS-NAME

Simple pattern matching for dns names. Only accepts one wildcard subdomain name.

Package

cl-tls

Source

utils.lisp (file)

Function: dump-to-file OV FILE-SPEC
Package

cl-tls

Source

utils.lisp (file)

Function: emsa-pkcs1-v1.5-encode M EMLEN HASH-ALGORITHM
Package

cl-tls

Source

pkcs1.lisp (file)

Function: encrypt-and-send SESSION CONTENT-TYPE CONTENT &key START END
Package

cl-tls

Source

tls.lisp (file)

Function: fill-random-nonzero-octets BUFFER &optional START END
Package

cl-tls

Source

pkcs1.lisp (file)

Function: find-certificates DIR
Package

cl-tls

Source

utils.lisp (file)

Function: from-stream-parse-der OCTET-STREAM &key MODE

Parse a single DER element from the stream. Maximum length
of integer values is max-int-len
If mode is :serialized, this function returns the plain contents octets
If mode is :deserialized, this function attempt to convert the contents octets into a lisp object if the class type is universal.

Package

cl-tls

Source

asn.1.lisp (file)

Function: gen-key-material CLIENT

Generate the session keying material

Package

cl-tls

Source

crypto.lisp (file)

Function: generate-dh-params &key L P G
Package

cl-tls

Source

pkcs3.lisp (file)

Function: get-application-data SESSION EOF-ERROR-P EOF-VALUE

Get application data, take care of renegotiation transparently

Package

cl-tls

Source

tls.lisp (file)

Function: get-ca-certificates PATH
Package

cl-tls

Source

tls.lisp (file)

Function: get-change-cipher-spec SESSION
Package

cl-tls

Source

tls.lisp (file)

Function: get-contents PATH

Get the contents of the file, either as text if it is text content or as an octet vector otherwise

Package

cl-tls

Source

utils.lisp (file)

Function: get-der-contents-indices OCTET-STREAM

Decodes the Type and length fields, and returns bounding array indices of the contents octets.

Package

cl-tls

Source

asn.1.lisp (file)

Function: get-dh-params PATH
Package

cl-tls

Source

tls.lisp (file)

Function: get-handshake-message SESSION &optional HANDSHAKE-FRAGMENT
Package

cl-tls

Source

tls.lisp (file)

Function: get-issuer-octets CERT

Get the raw der-encoded contents of the issuer field in the certificate

Package

cl-tls

Source

validate.lisp (file)

Function: get-private-key PATH
Package

cl-tls

Source

tls.lisp (file)

Function: get-pubkey-octets CERT

Get the raw der-encoded contents of the public key field in the certificate

Package

cl-tls

Source

validate.lisp (file)

Function: get-random-octets N &optional BUFFER

Return a series of n octets from a cryptographically secure source

Package

cl-tls

Source

utils.lisp (file)

Function: get-raw-tbs CERT

Get the raw octets of the DER-encoded tbsCertificate structure

Package

cl-tls

Source

x509.lisp (file)

Function: get-sequence STREAM LENGTH
Package

cl-tls

Source

utils.lisp (file)

Function: get-session-id ()
Package

cl-tls

Source

tls.lisp (file)

Function: gmt-unix-time ()

Return a number representing the seconds that have elapsed since January 1, 1970

Package

cl-tls

Source

utils.lisp (file)

Function: header-value HEADER-KEY HEADERS
Package

cl-tls

Source

http.lisp (file)

Function: http-request URL &key METHOD BODY CONTENT-TYPE

Retrieve response body of http transaction

Package

cl-tls

Source

http.lisp (file)

Function: integer-to-octets INT &optional LENGTH

Convert an integer into a network-byte-ordered vector of octets, padded with zeros if the number of octets in int is less than length.

Package

cl-tls

Source

utils.lisp (file)

Function: integer-to-vlq N
Package

cl-tls

Source

asn.1.lisp (file)

Function: load-der-priv-key OCTET-VECTOR

Load a PKCS#8-encoded (rfc5208) private key file

Package

cl-tls

Source

pkcs8.lisp (file)

Function: load-pem-priv-key CHARACTER-VECTOR

Load a PEM-encoded Private key; PEM-encoded keys should be just base64-encoded PKCS#8 PrivateKeyInfo structures with a header and a footer. But they’re sometimes not, instead being just the privateKey-RSAPrivateKey and DSAPrivateKey.

Package

cl-tls

Source

pkcs8.lisp (file)

Function: load-priv-key OBJ
Package

cl-tls

Source

pkcs8.lisp (file)

Function: make-dh-key-pair DH-PARAMS &optional STATIC

Generate a Private/Public key pair

Package

cl-tls

Source

pkcs3.lisp (file)

Function: make-octet-stream OCTET-VECTOR
Package

cl-tls

Source

asn.1.lisp (file)

Function: make-octet-vector &key LENGTH INITIAL-CONTENTS
Package

cl-tls

Source

utils.lisp (file)

Function: octets-to-integer OV &key START END
Package

cl-tls

Source

utils.lisp (file)

Function: ov-buffer-position OS
Package

cl-tls

Source

asn.1.lisp (file)

Function: p-hash SECRET DATA OUTPUT-LENGTH &optional DIGEST-ALGORITHM
Package

cl-tls

Source

crypto.lisp (file)

Function: pack-extension EXTENSION-TYPE EXTENSION-DATA
Package

cl-tls

Source

extensions.lisp (file)

Function: parse-access-description VALUE
Package

cl-tls

Source

extensions.lisp (file)

Function: parse-cipher-suite CIPHER-SUITE SESSION
Package

cl-tls

Source

tls.lisp (file)

Function: parse-directory-name RDNS

Parse DER-encoded distinguishedName sequence

Package

cl-tls

Source

x509.lisp (file)

Function: parse-enc-scheme ENC-SCHEME
Package

cl-tls

Source

pkcs5.lisp (file)

Function: parse-general-name GENERAL-NAME
Package

cl-tls

Source

extensions.lisp (file)

Function: parse-general-names GENERAL-NAMES

Return a bag of generalNames

Package

cl-tls

Source

extensions.lisp (file)

Function: parse-headers-from-stream STREAM

Repeatedly read headers from stream

Package

cl-tls

Source

http.lisp (file)

Function: parse-kdf KDF
Package

cl-tls

Source

pkcs5.lisp (file)

Function: parse-pem TEXT
Package

cl-tls

Source

rfc7468.lisp (file)

Function: parse-pka PUBLIC-KEY-ALGORITHM

Parse the OID in the SubjectPublicKeyInfo and the parameters

Package

cl-tls

Source

x509.lisp (file)

Function: parse-priv-key OV PRIVATE-KEY-ALGORITHM
Package

cl-tls

Source

pkcs8.lisp (file)

Function: parse-pub-key OV ALGORITHM
Package

cl-tls

Source

x509.lisp (file)

Function: parse-qualifier POLICY-QUALIFIER-ID QUALIFIER
Package

cl-tls

Source

extensions.lisp (file)

Function: parse-response-data DATA SERIAL
Package

cl-tls

Source

ocsp.lisp (file)

Function: parse-signature-algorithm SIG

Parse the sequence containing OID + optional parameters

Package

cl-tls

Source

x509.lisp (file)

Function: parse-tbs-certificate TBS-CERTIFICATE
Package

cl-tls

Source

x509.lisp (file)

Function: parse-uri URI

Parse URI into its components as specified in rfc3986

Package

cl-tls

Source

http.lisp (file)

Function: prepare-ocsp-request IDENTIFIERS
Package

cl-tls

Source

ocsp.lisp (file)

Function: prf SECRET LABEL SEED OUTPUT-LENGTH
Package

cl-tls

Source

crypto.lisp (file)

Function: process-extensions EXTENSIONS
Package

cl-tls

Source

x509.lisp (file)

Function: read-chunk STREAM

Read a single chunk, or nil upon receiving 0-length header

Package

cl-tls

Source

http.lisp (file)

Function: read-chunked-response STREAM
Package

cl-tls

Source

http.lisp (file)

Function: read-header STREAM

Read one header from stream

Package

cl-tls

Source

http.lisp (file)

Function: reassemble-handshake-message SESSION &optional HANDSHAKE-FRAGMENT

Handle defragmentation of handshake messages

Package

cl-tls

Source

tls.lisp (file)

Function: remove-padding OV

Remove rfc1423 padding from octet-vector ov

Package

cl-tls

Source

pkcs5.lisp (file)

Function: send-alert SESSION LEVEL DESCRIPTION

Send an alert record

Package

cl-tls

Source

alert.lisp (file)

Function: sign-dh-params SESSION PARAMS
Package

cl-tls

Source

crypto.lisp (file)

Function: split-header HEADER

Split header into its key and value components

Package

cl-tls

Source

http.lisp (file)

Function: split-string STR TARGET
Package

cl-tls

Source

utils.lisp (file)

Function: stream-octets-to-integer STREAM LENGTH
Package

cl-tls

Source

utils.lisp (file)

Function: strong-random-range A B

Generate a random integer between a and b, inclusive

Package

cl-tls

Source

pkcs3.lisp (file)

Function: symbol-to-suite-list SYM
Package

cl-tls

Source

tls.lisp (file)

Function: time-valid-p CERT
Package

cl-tls

Source

x509.lisp (file)

Function: timing-independent-compare VEC1 VEC2

Compare octet vectors in a time-independent manner

Package

cl-tls

Source

utils.lisp (file)

Function: trim-space STR
Package

cl-tls

Source

http.lisp (file)

Function: validate SESSION CHAIN

Certificate Path validation, including status checking

Package

cl-tls

Source

validate.lisp (file)

Function: verify-ocsp-signature SIGNING-CERTIFICATE RESPONSE-DATA SIGNATURE SIGNATURE-ALGORITHM
Package

cl-tls

Source

ocsp.lisp (file)

Function: verify-signature SUBJECT ISSUER
Package

cl-tls

Source

x509.lisp (file)

Function: verify-signed-data SESSION DATA ALGORITHM SIGNATURE
Package

cl-tls

Source

crypto.lisp (file)

Function: verify-signed-params SESSION DH-PARAMS ALGORITHM SIGNATURE
Package

cl-tls

Source

crypto.lisp (file)


Next: , Previous: , Up: Internal definitions   [Contents][Index]

6.2.6 Generic functions

Generic Function: alert CONDITION
Generic Function: (setf alert) NEW-VALUE CONDITION
Package

cl-tls

Methods
Method: alert (CONDITION exception)
Method: (setf alert) NEW-VALUE (CONDITION exception)
Source

tls.lisp (file)

Generic Function: authority-information-access OBJECT
Generic Function: (setf authority-information-access) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: authority-information-access (X509-EXTENSION x509-extension)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf authority-information-access) NEW-VALUE (X509-EXTENSION x509-extension)

automatically generated writer method

Source

x509.lisp (file)

Generic Function: authority-key-identifier OBJECT
Generic Function: (setf authority-key-identifier) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: authority-key-identifier (X509-EXTENSION x509-extension)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf authority-key-identifier) NEW-VALUE (X509-EXTENSION x509-extension)

automatically generated writer method

Source

x509.lisp (file)

Generic Function: basic-constraints OBJECT
Generic Function: (setf basic-constraints) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: basic-constraints (X509-EXTENSION x509-extension)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf basic-constraints) NEW-VALUE (X509-EXTENSION x509-extension)

automatically generated writer method

Source

x509.lisp (file)

Generic Function: certificate-policies OBJECT
Generic Function: (setf certificate-policies) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: certificate-policies (X509-EXTENSION x509-extension)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf certificate-policies) NEW-VALUE (X509-EXTENSION x509-extension)

automatically generated writer method

Source

x509.lisp (file)

Generic Function: ciphertext-to-compressed SESSION CONTENT-TYPE CIPHERTEXT
Package

cl-tls

Source

tls.lisp (file)

Methods
Method: ciphertext-to-compressed (SESSION session) CONTENT-TYPE CIPHERTEXT
Generic Function: client-certificate-url OBJECT
Generic Function: (setf client-certificate-url) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: client-certificate-url (HELLO-EXTENSIONS hello-extensions)

automatically generated reader method

Source

tls.lisp (file)

Method: (setf client-certificate-url) NEW-VALUE (HELLO-EXTENSIONS hello-extensions)

automatically generated writer method

Source

tls.lisp (file)

Generic Function: crl-distribution-points OBJECT
Generic Function: (setf crl-distribution-points) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: crl-distribution-points (X509-EXTENSION x509-extension)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf crl-distribution-points) NEW-VALUE (X509-EXTENSION x509-extension)

automatically generated writer method

Source

x509.lisp (file)

Generic Function: decrypt SESSION CIPHERTEXT
Package

cl-tls

Source

tls.lisp (file)

Methods
Method: decrypt (SESSION session) CIPHERTEXT
Generic Function: encrypt SESSION PLAINTEXT
Package

cl-tls

Source

tls.lisp (file)

Methods
Method: encrypt (SESSION session) PLAINTEXT
Generic Function: extended-key-usage OBJECT
Generic Function: (setf extended-key-usage) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: extended-key-usage (X509-EXTENSION x509-extension)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf extended-key-usage) NEW-VALUE (X509-EXTENSION x509-extension)

automatically generated writer method

Source

x509.lisp (file)

Generic Function: extensions OBJECT
Generic Function: (setf extensions) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: extensions (TBS-CERTIFICATE tbs-certificate)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf extensions) NEW-VALUE (TBS-CERTIFICATE tbs-certificate)

automatically generated writer method

Source

x509.lisp (file)

Generic Function: generator OBJECT
Package

cl-tls

Methods
Method: generator (DH-PARAMS dh-params)

automatically generated reader method

Source

pkcs3.lisp (file)

Generic Function: get-record SESSION
Package

cl-tls

Source

tls.lisp (file)

Methods
Method: get-record (SESSION session)
Generic Function: handle-handshake MESSAGE SESSION TYPE
Package

cl-tls

Source

tls.lisp (file)

Methods
Method: handle-handshake BUFFER SESSION (TYPE (eql server-hello))
Method: handle-handshake BUFFER SESSION (TYPE (eql certificate))
Method: handle-handshake BUFFER SESSION (TYPE (eql server-hello-done))
Method: handle-handshake BUFFER SESSION (TYPE (eql certificate-request))
Method: handle-handshake BUFFER SESSION (TYPE (eql finished))
Method: handle-handshake BUFFER SESSION (TYPE (eql server-key-exchange))
Method: handle-handshake BUFFER SESSION (TYPE (eql client-hello))
Method: handle-handshake BUFFER SESSION (TYPE (eql certificate-verify))
Method: handle-handshake BUFFER SESSION (TYPE (eql client-key-exchange))
Generic Function: handshake-messages OBJECT
Generic Function: (setf handshake-messages) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: handshake-messages (SESSION session)

automatically generated reader method

Source

tls.lisp (file)

Method: (setf handshake-messages) NEW-VALUE (SESSION session)

automatically generated writer method

Source

tls.lisp (file)

Generic Function: hash OBJECT
Generic Function: (setf hash) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: hash (X509V3-CERTIFICATE x509v3-certificate)
Method: (setf hash) NEW-VALUE (X509V3-CERTIFICATE x509v3-certificate)

The hash of the raw octets of the certificate

Source

x509.lisp (file)

Generic Function: host-name OBJECT
Generic Function: (setf host-name) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: host-name (HELLO-EXTENSIONS hello-extensions)

automatically generated reader method

Source

tls.lisp (file)

Method: (setf host-name) NEW-VALUE (HELLO-EXTENSIONS hello-extensions)

automatically generated writer method

Source

tls.lisp (file)

Generic Function: initiate-connection SESSION &key SKIP-HELLO
Package

cl-tls

Source

tls.lisp (file)

Methods
Method: initiate-connection (SESSION server-session) &key SKIP-HELLO

Attempt a handshake as a server

Method: initiate-connection (SESSION client-session) &key

Attempt a handshake as a client

Generic Function: issuer OBJECT
Generic Function: (setf issuer) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: issuer (TBS-CERTIFICATE tbs-certificate)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf issuer) NEW-VALUE (TBS-CERTIFICATE tbs-certificate)

automatically generated writer method

Source

x509.lisp (file)

Generic Function: issuer-alternative-name OBJECT
Generic Function: (setf issuer-alternative-name) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: issuer-alternative-name (X509-EXTENSION x509-extension)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf issuer-alternative-name) NEW-VALUE (X509-EXTENSION x509-extension)

automatically generated writer method

Source

x509.lisp (file)

Generic Function: issuer-unique-id OBJECT
Generic Function: (setf issuer-unique-id) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: issuer-unique-id (TBS-CERTIFICATE tbs-certificate)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf issuer-unique-id) NEW-VALUE (TBS-CERTIFICATE tbs-certificate)

automatically generated writer method

Source

x509.lisp (file)

Generic Function: key-usage OBJECT
Generic Function: (setf key-usage) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: key-usage (X509-EXTENSION x509-extension)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf key-usage) NEW-VALUE (X509-EXTENSION x509-extension)

automatically generated writer method

Source

x509.lisp (file)

Generic Function: log-info CONDITION
Generic Function: (setf log-info) NEW-VALUE CONDITION
Package

cl-tls

Methods
Method: log-info (CONDITION exception)
Method: (setf log-info) NEW-VALUE (CONDITION exception)
Source

tls.lisp (file)

Method: log-info (CONDITION http-error)
Method: (setf log-info) NEW-VALUE (CONDITION http-error)
Source

http.lisp (file)

Method: log-info (CONDITION ocsp-error)
Method: (setf log-info) NEW-VALUE (CONDITION ocsp-error)
Source

ocsp.lisp (file)

Generic Function: max-fragment-length OBJECT
Generic Function: (setf max-fragment-length) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: max-fragment-length (HELLO-EXTENSIONS hello-extensions)

automatically generated reader method

Source

tls.lisp (file)

Method: (setf max-fragment-length) NEW-VALUE (HELLO-EXTENSIONS hello-extensions)

automatically generated writer method

Source

tls.lisp (file)

Generic Function: ov-read-byte OS
Package

cl-tls

Source

asn.1.lisp (file)

Methods
Method: ov-read-byte (OS octet-stream)
Generic Function: ov-read-sequence OV OS
Package

cl-tls

Source

asn.1.lisp (file)

Methods
Method: ov-read-sequence OV (OS octet-stream)
Generic Function: parse-extension SESSION EXTENSION-DATA TYPE
Package

cl-tls

Source

extensions.lisp (file)

Methods
Method: parse-extension SESSION EXTENSION-DATA (TYPE (eql status-request))
Method: parse-extension SESSION EXTENSION-DATA (TYPE (eql truncated-hmac))
Method: parse-extension SESSION EXTENSION-DATA (TYPE (eql trusted-ca-keys))
Method: parse-extension SESSION EXTENSION-DATA (TYPE (eql signature-algorithm))
Method: parse-extension SESSION EXTENSION-DATA (TYPE (eql client-certificate-url))
Method: parse-extension SESSION EXTENSION-DATA (TYPE (eql max-fragment-length))
Method: parse-extension SESSION EXTENSION-DATA (TYPE (eql server-name))
Generic Function: path OBJECT
Generic Function: (setf path) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: path (URI uri)

automatically generated reader method

Source

http.lisp (file)

Method: (setf path) NEW-VALUE (URI uri)

automatically generated writer method

Source

http.lisp (file)

Generic Function: policy-mappings OBJECT
Generic Function: (setf policy-mappings) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: policy-mappings (X509-EXTENSION x509-extension)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf policy-mappings) NEW-VALUE (X509-EXTENSION x509-extension)

automatically generated writer method

Source

x509.lisp (file)

Generic Function: pre-master-secret OBJECT
Generic Function: (setf pre-master-secret) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: pre-master-secret (SESSION session)

automatically generated reader method

Source

tls.lisp (file)

Method: (setf pre-master-secret) NEW-VALUE (SESSION session)

automatically generated writer method

Source

tls.lisp (file)

Generic Function: prime-modulus OBJECT
Package

cl-tls

Methods
Method: prime-modulus (DH-PARAMS dh-params)

automatically generated reader method

Source

pkcs3.lisp (file)

Generic Function: process-extension X509-EXTENSION CRITICAL-P VALUE TYPE
Package

cl-tls

Source

extensions.lisp (file)

Methods
Method: process-extension X509 CRITICAL-P VALUE (TYPE (eql subject-information-access))
Method: process-extension X509 CRITICAL-P VALUE (TYPE (eql authority-information-access))
Method: process-extension X509 CRITICAL-P VALUE (TYPE (eql freshest-crl))
Method: process-extension X509 CRITICAL-P VALUE (TYPE (eql inhibit-any-policy))
Method: process-extension X509 CRITICAL-P VALUE (TYPE (eql crl-distribution-points))
Method: process-extension X509 CRITICAL-P VALUE (TYPE (eql extended-key-usage))
Method: process-extension X509 CRITICAL-P VALUE (TYPE (eql policy-constraints))
Method: process-extension X509 CRITICAL-P VALUE (TYPE (eql name-constraints))
Method: process-extension X509 CRITICAL-P VALUE (TYPE (eql basic-constraints))
Method: process-extension X509 CRITICAL-P VALUE (TYPE (eql policy-mappings))
Method: process-extension X509 CRITICAL-P VALUE (TYPE (eql certificate-policies))
Method: process-extension X509 CRITICAL-P VALUE (TYPE (eql key-usage))
Method: process-extension X509 CRITICAL-P VALUE (TYPE (eql subject-key-identifier))
Method: process-extension X509 CRITICAL-P VALUE (TYPE (eql authority-key-identifier))
Method: process-extension X509 CRITICAL-P VALUE (TYPE (eql issuer-alternative-name))
Method: process-extension X509 CRITICAL-P VALUE (TYPE (eql subject-alternative-name))
Generic Function: pub-key OBJECT
Generic Function: (setf pub-key) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: pub-key (SESSION session)

automatically generated reader method

Source

tls.lisp (file)

Method: (setf pub-key) NEW-VALUE (SESSION session)

automatically generated writer method

Source

tls.lisp (file)

Generic Function: raw OBJECT
Generic Function: (setf raw) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: raw (X509V3-CERTIFICATE x509v3-certificate)
Method: (setf raw) NEW-VALUE (X509V3-CERTIFICATE x509v3-certificate)

The raw octets of the certificate

Source

x509.lisp (file)

Generic Function: scheme OBJECT
Generic Function: (setf scheme) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: scheme (URI uri)

automatically generated reader method

Source

http.lisp (file)

Method: (setf scheme) NEW-VALUE (URI uri)

automatically generated writer method

Source

http.lisp (file)

Generic Function: send SESSION CONTENT-TYPE PAYLOAD
Package

cl-tls

Source

tls.lisp (file)

Methods
Method: send (SESSION session) CONTENT-TYPE PAYLOAD

Fragment -> (optionally) Compress -> Apply MAC -> Encrypt -> Transmit

Generic Function: send-change-cipher-spec SESSION
Package

cl-tls

Source

tls.lisp (file)

Methods
Method: send-change-cipher-spec SESSION
Generic Function: send-handshake SESSION HANDSHAKE-TYPE
Package

cl-tls

Source

tls.lisp (file)

Methods
Method: send-handshake (SESSION session) (HANDSHAKE-TYPE (eql client-hello))
Method: send-handshake (SESSION session) (HANDSHAKE-TYPE (eql client-key-exchange))
Method: send-handshake (SESSION session) (HANDSHAKE-TYPE (eql finished))
Method: send-handshake (SESSION session) (HANDSHAKE-TYPE (eql server-hello-done))
Method: send-handshake (SESSION session) (HANDSHAKE-TYPE (eql server-key-exchange))
Method: send-handshake (SESSION session) (HANDSHAKE-TYPE (eql certificate-request))
Method: send-handshake (SESSION session) (HANDSHAKE-TYPE (eql certificate-verify))
Method: send-handshake (SESSION session) (HANDSHAKE-TYPE (eql client-certificate))
Method: send-handshake (SESSION session) (HANDSHAKE-TYPE (eql certificate))
Method: send-handshake (SESSION session) (HANDSHAKE-TYPE (eql server-hello))
Generic Function: send-record SESSION CONTENT-TYPE PAYLOAD &key START END
Package

cl-tls

Source

tls.lisp (file)

Methods
Method: send-record (SESSION session) CONTENT-TYPE PAYLOAD &key START END
Generic Function: serial OBJECT
Generic Function: (setf serial) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: serial (TBS-CERTIFICATE tbs-certificate)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf serial) NEW-VALUE (TBS-CERTIFICATE tbs-certificate)

automatically generated writer method

Source

x509.lisp (file)

Generic Function: signature OBJECT
Generic Function: (setf signature) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: signature (X509V3-CERTIFICATE x509v3-certificate)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf signature) NEW-VALUE (X509V3-CERTIFICATE x509v3-certificate)

automatically generated writer method

Source

x509.lisp (file)

Method: signature (TBS-CERTIFICATE tbs-certificate)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf signature) NEW-VALUE (TBS-CERTIFICATE tbs-certificate)

automatically generated writer method

Source

x509.lisp (file)

Generic Function: signature-algorithm OBJECT
Generic Function: (setf signature-algorithm) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: signature-algorithm (X509V3-CERTIFICATE x509v3-certificate)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf signature-algorithm) NEW-VALUE (X509V3-CERTIFICATE x509v3-certificate)

automatically generated writer method

Source

x509.lisp (file)

Generic Function: subject OBJECT
Generic Function: (setf subject) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: subject (TBS-CERTIFICATE tbs-certificate)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf subject) NEW-VALUE (TBS-CERTIFICATE tbs-certificate)

automatically generated writer method

Source

x509.lisp (file)

Generic Function: subject-alternative-name OBJECT
Generic Function: (setf subject-alternative-name) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: subject-alternative-name (X509-EXTENSION x509-extension)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf subject-alternative-name) NEW-VALUE (X509-EXTENSION x509-extension)

automatically generated writer method

Source

x509.lisp (file)

Generic Function: subject-information-access OBJECT
Generic Function: (setf subject-information-access) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: subject-information-access (X509-EXTENSION x509-extension)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf subject-information-access) NEW-VALUE (X509-EXTENSION x509-extension)

automatically generated writer method

Source

x509.lisp (file)

Generic Function: subject-key-identifier OBJECT
Generic Function: (setf subject-key-identifier) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: subject-key-identifier (X509-EXTENSION x509-extension)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf subject-key-identifier) NEW-VALUE (X509-EXTENSION x509-extension)

automatically generated writer method

Source

x509.lisp (file)

Generic Function: subject-pki OBJECT
Generic Function: (setf subject-pki) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: subject-pki (TBS-CERTIFICATE tbs-certificate)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf subject-pki) NEW-VALUE (TBS-CERTIFICATE tbs-certificate)

automatically generated writer method

Source

x509.lisp (file)

Generic Function: subject-unique-id OBJECT
Generic Function: (setf subject-unique-id) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: subject-unique-id (TBS-CERTIFICATE tbs-certificate)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf subject-unique-id) NEW-VALUE (TBS-CERTIFICATE tbs-certificate)

automatically generated writer method

Source

x509.lisp (file)

Generic Function: supported-signature-algorithms OBJECT
Generic Function: (setf supported-signature-algorithms) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: supported-signature-algorithms (HELLO-EXTENSIONS hello-extensions)

automatically generated reader method

Source

tls.lisp (file)

Method: (setf supported-signature-algorithms) NEW-VALUE (HELLO-EXTENSIONS hello-extensions)

automatically generated writer method

Source

tls.lisp (file)

Generic Function: tbs-certificate OBJECT
Generic Function: (setf tbs-certificate) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: tbs-certificate (X509V3-CERTIFICATE x509v3-certificate)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf tbs-certificate) NEW-VALUE (X509V3-CERTIFICATE x509v3-certificate)

automatically generated writer method

Source

x509.lisp (file)

Generic Function: text CONDITION
Generic Function: (setf text) NEW-VALUE CONDITION
Package

cl-tls

Methods
Method: text (CONDITION tls-error)
Method: (setf text) NEW-VALUE (CONDITION tls-error)
Source

tls.lisp (file)

Method: text (CONDITION x509-decoding-error)
Source

x509.lisp (file)

Method: text (CONDITION asn.1-decoding-error)
Source

asn.1.lisp (file)

Generic Function: validity OBJECT
Generic Function: (setf validity) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: validity (TBS-CERTIFICATE tbs-certificate)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf validity) NEW-VALUE (TBS-CERTIFICATE tbs-certificate)

automatically generated writer method

Source

x509.lisp (file)

Generic Function: version OBJECT
Generic Function: (setf version) NEW-VALUE OBJECT
Package

cl-tls

Methods
Method: version (TBS-CERTIFICATE tbs-certificate)

automatically generated reader method

Source

x509.lisp (file)

Method: (setf version) NEW-VALUE (TBS-CERTIFICATE tbs-certificate)

automatically generated writer method

Source

x509.lisp (file)


Next: , Previous: , Up: Internal definitions   [Contents][Index]

6.2.7 Conditions

Condition: asn.1-decoding-error ()
Package

cl-tls

Source

asn.1.lisp (file)

Direct superclasses

error (condition)

Direct methods

text (method)

Direct slots
Slot: text
Initargs

:text

Readers

text (generic function)

Condition: exception ()
Package

cl-tls

Source

tls.lisp (file)

Direct superclasses

error (condition)

Direct methods
  • alert (method)
  • alert (method)
  • log-info (method)
  • log-info (method)
Direct slots
Slot: log
Initargs

:log

Readers

log-info (generic function)

Writers

(setf log-info) (generic function)

Slot: alert
Initargs

:alert

Readers

alert (generic function)

Writers

(setf alert) (generic function)

Condition: http-error ()
Package

cl-tls

Source

http.lisp (file)

Direct superclasses

error (condition)

Direct methods
Direct slots
Slot: log
Initargs

:log

Readers

log-info (generic function)

Writers

(setf log-info) (generic function)

Condition: ocsp-error ()
Package

cl-tls

Source

ocsp.lisp (file)

Direct superclasses

error (condition)

Direct methods
Direct slots
Slot: log
Initargs

:log

Readers

log-info (generic function)

Writers

(setf log-info) (generic function)

Condition: x509-decoding-error ()
Package

cl-tls

Source

x509.lisp (file)

Direct superclasses

error (condition)

Direct methods

text (method)

Direct slots
Slot: text
Initargs

:text

Readers

text (generic function)


Next: , Previous: , Up: Internal definitions   [Contents][Index]

6.2.8 Classes

Class: client-session ()
Package

cl-tls

Source

tls.lisp (file)

Direct superclasses

session (class)

Direct methods

initiate-connection (method)

Direct slots
Slot: role
Initform

:client

Class: dh-params ()
Package

cl-tls

Source

pkcs3.lisp (file)

Direct superclasses

standard-object (class)

Direct methods
Direct slots
Slot: p
Type

integer

Initargs

:p

Readers

prime-modulus (generic function)

Slot: g
Type

integer

Initargs

:g

Readers

generator (generic function)

Class: hello-extensions ()
Package

cl-tls

Source

tls.lisp (file)

Direct superclasses

standard-object (class)

Direct methods
Direct slots
Slot: host-name
Initargs

:host-name

Readers

host-name (generic function)

Writers

(setf host-name) (generic function)

Slot: max-fragment-length
Initargs

:max-fragment-length

Readers

max-fragment-length (generic function)

Writers

(setf max-fragment-length) (generic function)

Slot: client-certificate-url
Initargs

:client-certificate-url

Readers

client-certificate-url (generic function)

Writers

(setf client-certificate-url) (generic function)

Slot: supported-signature-algorithms
Initargs

:supported-signature-algorithms

Readers

supported-signature-algorithms (generic function)

Writers

(setf supported-signature-algorithms) (generic function)

Class: octet-stream ()
Package

cl-tls

Source

asn.1.lisp (file)

Direct superclasses

standard-object (class)

Direct methods
Direct slots
Slot: octet-vector
Initargs

:ov

Slot: length
Initargs

:len

Slot: position
Initform

0

Class: server-session ()
Package

cl-tls

Source

tls.lisp (file)

Direct superclasses
Direct methods

initiate-connection (method)

Class: session ()
Package

cl-tls

Source

tls.lisp (file)

Direct superclasses

standard-object (class)

Direct subclasses
Direct methods
Direct slots
Slot: role
Initargs

:role

Slot: version
Initargs

:version

Initform

(cl-tls::make-octet-vector :initial-contents #(3 3))

Slot: hello-version
Initargs

:version

Initform

(cl-tls::make-octet-vector :initial-contents #(3 3))

Slot: resumable
Initargs

:resumable

Slot: ciphers
Initargs

:ciphers

Slot: state
Initform

:connecting

Slot: handshake-stage
Slot: certificate-requested
Slot: remote-certificate-type
Slot: cipher-suite
Slot: session-id
Slot: sequence-number-write
Initform

0

Slot: sequence-number-read
Initform

0

Slot: session-read-state
Initform

:null

Slot: session-write-state
Initform

:null

Slot: client-random
Slot: server-random
Slot: master-secret
Slot: key-exchange-method
Slot: authentication-method
Slot: encryption-algorithm
Slot: cipher-mode
Slot: mac-algorithm
Slot: block-size
Slot: cipher-type
Slot: requested-cert-type
Slot: supported-sig-algos
Slot: dh-params
Slot: dh-y
Slot: dhe-private-key
Slot: extensions-data
Initform

(make-instance (quote cl-tls::hello-extensions))

Slot: mac-key-length
Initform

0

Slot: enc-key-length
Initform

0

Slot: record-iv-length
Initform

0

Slot: key_block
Slot: client-write-mac-key
Slot: server-write-mac-key
Slot: client-write-key
Slot: server-write-key
Slot: client-write-iv
Slot: server-write-iv
Slot: peer-dns-name
Initargs

:peer-dns-name

Slot: peer-ip-addresses
Initargs

:peer-ip-addresses

Slot: certificate
Initargs

:certificate

Slot: ca-certificates
Initargs

:ca-certificates

Slot: io-stream
Initargs

:io-stream

Slot: input-stream
Initargs

:input-stream

Slot: output-stream
Initargs

:output-stream

Slot: pub-key
Readers

pub-key (generic function)

Writers

(setf pub-key) (generic function)

Slot: priv-key
Initargs

:private-key

Slot: encrypting-cipher-object
Slot: decrypting-cipher-object
Slot: pre-master-secret
Readers

pre-master-secret (generic function)

Writers

(setf pre-master-secret) (generic function)

Slot: handshake-messages
Initform

(fast-io:make-octet-vector 0)

Readers

handshake-messages (generic function)

Writers

(setf handshake-messages) (generic function)

Class: shared-session-slots ()
Package

cl-tls

Source

tls.lisp (file)

Direct superclasses

standard-object (class)

Direct subclasses

server-session (class)

Direct slots
Slot: role
Allocation

:class

Initargs

:role

Initform

:server

Slot: certificate
Allocation

:class

Initargs

:certificate

Slot: ca-certificates
Allocation

:class

Initargs

:ca-certificates

Slot: resumable
Allocation

:class

Initargs

:resumable

Slot: ciphers
Allocation

:class

Initargs

:ciphers

Slot: pub-key
Allocation

:class

Slot: priv-key
Allocation

:class

Initargs

:private-key

Slot: dh-params
Allocation

:class

Initargs

:dh-params

Slot: version
Allocation

:class

Initargs

:version

Initform

(fast-io:octets-from #(3 3))

Slot: authenticate-client-p
Allocation

:class

Initargs

:authenticate-client-p

Slot: require-authentication-p
Allocation

:class

Initargs

:require-authentication-p

Class: tbs-certificate ()
Package

cl-tls

Source

x509.lisp (file)

Direct superclasses

standard-object (class)

Direct methods
Direct slots
Slot: version
Initargs

:version

Initform

0

Readers

version (generic function)

Writers

(setf version) (generic function)

Slot: serial
Initargs

:serial

Readers

serial (generic function)

Writers

(setf serial) (generic function)

Slot: signature
Initargs

:signature

Readers

signature (generic function)

Writers

(setf signature) (generic function)

Slot: issuer
Initargs

:issuer

Readers

issuer (generic function)

Writers

(setf issuer) (generic function)

Slot: validity
Type

cl-tls::validity

Initargs

:validity

Readers

validity (generic function)

Writers

(setf validity) (generic function)

Slot: subject
Initargs

:subject

Readers

subject (generic function)

Writers

(setf subject) (generic function)

Slot: subject-pki
Type

cl-tls::algorithm-identifier

Initargs

:subject-pki

Readers

subject-pki (generic function)

Writers

(setf subject-pki) (generic function)

Slot: issuer-unique-id
Initargs

:issuer-unique-id

Readers

issuer-unique-id (generic function)

Writers

(setf issuer-unique-id) (generic function)

Slot: subject-unique-id
Initargs

cl-tls::subject-unique-id

Readers

subject-unique-id (generic function)

Writers

(setf subject-unique-id) (generic function)

Slot: extensions
Initargs

:extensions

Readers

extensions (generic function)

Writers

(setf extensions) (generic function)

Class: uri ()
Package

cl-tls

Source

http.lisp (file)

Direct superclasses

standard-object (class)

Direct methods
  • path (method)
  • path (method)
  • port (method)
  • port (method)
  • host (method)
  • host (method)
  • scheme (method)
  • scheme (method)
Direct slots
Slot: scheme
Initargs

:scheme

Readers

scheme (generic function)

Writers

(setf scheme) (generic function)

Slot: host
Initargs

:host

Readers

host (generic function)

Writers

(setf host) (generic function)

Slot: port
Initargs

:port

Readers

port (generic function)

Writers

(setf port) (generic function)

Slot: path
Initargs

:path

Readers

path (generic function)

Writers

(setf path) (generic function)

Class: x509-extension ()
Package

cl-tls

Source

x509.lisp (file)

Direct superclasses

standard-object (class)

Direct methods
Direct slots
Slot: subject-alternative-name
Readers

subject-alternative-name (generic function)

Writers

(setf subject-alternative-name) (generic function)

Slot: issuer-alternative-name
Readers

issuer-alternative-name (generic function)

Writers

(setf issuer-alternative-name) (generic function)

Slot: authority-key-identifier
Readers

authority-key-identifier (generic function)

Writers

(setf authority-key-identifier) (generic function)

Slot: subject-key-identifier
Readers

subject-key-identifier (generic function)

Writers

(setf subject-key-identifier) (generic function)

Slot: key-usage
Readers

key-usage (generic function)

Writers

(setf key-usage) (generic function)

Slot: certificate-policies
Readers

certificate-policies (generic function)

Writers

(setf certificate-policies) (generic function)

Slot: policy-mappings
Readers

policy-mappings (generic function)

Writers

(setf policy-mappings) (generic function)

Slot: basic-constraints
Readers

basic-constraints (generic function)

Writers

(setf basic-constraints) (generic function)

Slot: extended-key-usage
Readers

extended-key-usage (generic function)

Writers

(setf extended-key-usage) (generic function)

Slot: crl-distribution-points
Readers

crl-distribution-points (generic function)

Writers

(setf crl-distribution-points) (generic function)

Slot: authority-information-access
Readers

authority-information-access (generic function)

Writers

(setf authority-information-access) (generic function)

Slot: subject-information-access
Readers

subject-information-access (generic function)

Writers

(setf subject-information-access) (generic function)

Class: x509v3-certificate ()
Package

cl-tls

Source

x509.lisp (file)

Direct superclasses

standard-object (class)

Direct methods
Direct slots
Slot: raw

The raw octets of the certificate

Initargs

:raw

Readers

raw (generic function)

Writers

(setf raw) (generic function)

Slot: hash

The hash of the raw octets of the certificate

Initargs

:hash

Readers

hash (generic function)

Writers

(setf hash) (generic function)

Slot: tbs-certificate
Initargs

:tbs-certificate

Readers

tbs-certificate (generic function)

Writers

(setf tbs-certificate) (generic function)

Slot: signature-algorithm
Initargs

:signature-algorithm

Readers

signature-algorithm (generic function)

Writers

(setf signature-algorithm) (generic function)

Slot: signature
Initargs

:signature

Readers

signature (generic function)

Writers

(setf signature) (generic function)


Previous: , Up: Internal definitions   [Contents][Index]

6.2.9 Types

Type: octet ()
Package

cl-tls

Source

utils.lisp (file)

Type: octet-vector ()
Package

cl-tls

Source

utils.lisp (file)


Previous: , Up: Top   [Contents][Index]

Appendix A Indexes


Next: , Previous: , Up: Indexes   [Contents][Index]

A.1 Concepts

Jump to:   C   F   L   M   S  
Index Entry  Section

C
cl-tls.asd: The cl-tls․asd file
cl-tls/LICENSE: The cl-tls/license file
cl-tls/README: The cl-tls/readme file
cl-tls/src: The cl-tls/src module
cl-tls/src/ASN.1: The cl-tls/src/asn․1 module
cl-tls/src/ASN.1/asn.1.lisp: The cl-tls/src/asn․1/asn․1․lisp file
cl-tls/src/package.lisp: The cl-tls/src/package․lisp file
cl-tls/src/PEM: The cl-tls/src/pem module
cl-tls/src/PEM/rfc7468.lisp: The cl-tls/src/pem/rfc7468․lisp file
cl-tls/src/pkcs: The cl-tls/src/pkcs module
cl-tls/src/pkcs/pkcs1.lisp: The cl-tls/src/pkcs/pkcs1․lisp file
cl-tls/src/pkcs/pkcs3.lisp: The cl-tls/src/pkcs/pkcs3․lisp file
cl-tls/src/pkcs/pkcs5.lisp: The cl-tls/src/pkcs/pkcs5․lisp file
cl-tls/src/pkcs/pkcs8.lisp: The cl-tls/src/pkcs/pkcs8․lisp file
cl-tls/src/tls: The cl-tls/src/tls module
cl-tls/src/tls/alert.lisp: The cl-tls/src/tls/alert․lisp file
cl-tls/src/tls/ciphersuites.lisp: The cl-tls/src/tls/ciphersuites․lisp file
cl-tls/src/tls/crypto.lisp: The cl-tls/src/tls/crypto․lisp file
cl-tls/src/tls/extensions.lisp: The cl-tls/src/tls/extensions․lisp file
cl-tls/src/tls/http.lisp: The cl-tls/src/tls/http․lisp file
cl-tls/src/tls/tls.lisp: The cl-tls/src/tls/tls․lisp file
cl-tls/src/tls/transport.lisp: The cl-tls/src/tls/transport․lisp file
cl-tls/src/utils.lisp: The cl-tls/src/utils․lisp file
cl-tls/src/x509: The cl-tls/src/x509 module
cl-tls/src/x509/extensions.lisp: The cl-tls/src/x509/extensions․lisp file
cl-tls/src/x509/ocsp.lisp: The cl-tls/src/x509/ocsp․lisp file
cl-tls/src/x509/validate.lisp: The cl-tls/src/x509/validate․lisp file
cl-tls/src/x509/x509.lisp: The cl-tls/src/x509/x509․lisp file

F
File, Lisp, cl-tls.asd: The cl-tls․asd file
File, Lisp, cl-tls/src/ASN.1/asn.1.lisp: The cl-tls/src/asn․1/asn․1․lisp file
File, Lisp, cl-tls/src/package.lisp: The cl-tls/src/package․lisp file
File, Lisp, cl-tls/src/PEM/rfc7468.lisp: The cl-tls/src/pem/rfc7468․lisp file
File, Lisp, cl-tls/src/pkcs/pkcs1.lisp: The cl-tls/src/pkcs/pkcs1․lisp file
File, Lisp, cl-tls/src/pkcs/pkcs3.lisp: The cl-tls/src/pkcs/pkcs3․lisp file
File, Lisp, cl-tls/src/pkcs/pkcs5.lisp: The cl-tls/src/pkcs/pkcs5․lisp file
File, Lisp, cl-tls/src/pkcs/pkcs8.lisp: The cl-tls/src/pkcs/pkcs8․lisp file
File, Lisp, cl-tls/src/tls/alert.lisp: The cl-tls/src/tls/alert․lisp file
File, Lisp, cl-tls/src/tls/ciphersuites.lisp: The cl-tls/src/tls/ciphersuites․lisp file
File, Lisp, cl-tls/src/tls/crypto.lisp: The cl-tls/src/tls/crypto․lisp file
File, Lisp, cl-tls/src/tls/extensions.lisp: The cl-tls/src/tls/extensions․lisp file
File, Lisp, cl-tls/src/tls/http.lisp: The cl-tls/src/tls/http․lisp file
File, Lisp, cl-tls/src/tls/tls.lisp: The cl-tls/src/tls/tls․lisp file
File, Lisp, cl-tls/src/tls/transport.lisp: The cl-tls/src/tls/transport․lisp file
File, Lisp, cl-tls/src/utils.lisp: The cl-tls/src/utils․lisp file
File, Lisp, cl-tls/src/x509/extensions.lisp: The cl-tls/src/x509/extensions․lisp file
File, Lisp, cl-tls/src/x509/ocsp.lisp: The cl-tls/src/x509/ocsp․lisp file
File, Lisp, cl-tls/src/x509/validate.lisp: The cl-tls/src/x509/validate․lisp file
File, Lisp, cl-tls/src/x509/x509.lisp: The cl-tls/src/x509/x509․lisp file
File, static, cl-tls/LICENSE: The cl-tls/license file
File, static, cl-tls/README: The cl-tls/readme file

L
Lisp File, cl-tls.asd: The cl-tls․asd file
Lisp File, cl-tls/src/ASN.1/asn.1.lisp: The cl-tls/src/asn․1/asn․1․lisp file
Lisp File, cl-tls/src/package.lisp: The cl-tls/src/package․lisp file
Lisp File, cl-tls/src/PEM/rfc7468.lisp: The cl-tls/src/pem/rfc7468․lisp file
Lisp File, cl-tls/src/pkcs/pkcs1.lisp: The cl-tls/src/pkcs/pkcs1․lisp file
Lisp File, cl-tls/src/pkcs/pkcs3.lisp: The cl-tls/src/pkcs/pkcs3․lisp file
Lisp File, cl-tls/src/pkcs/pkcs5.lisp: The cl-tls/src/pkcs/pkcs5․lisp file
Lisp File, cl-tls/src/pkcs/pkcs8.lisp: The cl-tls/src/pkcs/pkcs8․lisp file
Lisp File, cl-tls/src/tls/alert.lisp: The cl-tls/src/tls/alert․lisp file
Lisp File, cl-tls/src/tls/ciphersuites.lisp: The cl-tls/src/tls/ciphersuites․lisp file
Lisp File, cl-tls/src/tls/crypto.lisp: The cl-tls/src/tls/crypto․lisp file
Lisp File, cl-tls/src/tls/extensions.lisp: The cl-tls/src/tls/extensions․lisp file
Lisp File, cl-tls/src/tls/http.lisp: The cl-tls/src/tls/http․lisp file
Lisp File, cl-tls/src/tls/tls.lisp: The cl-tls/src/tls/tls․lisp file
Lisp File, cl-tls/src/tls/transport.lisp: The cl-tls/src/tls/transport․lisp file
Lisp File, cl-tls/src/utils.lisp: The cl-tls/src/utils․lisp file
Lisp File, cl-tls/src/x509/extensions.lisp: The cl-tls/src/x509/extensions․lisp file
Lisp File, cl-tls/src/x509/ocsp.lisp: The cl-tls/src/x509/ocsp․lisp file
Lisp File, cl-tls/src/x509/validate.lisp: The cl-tls/src/x509/validate․lisp file
Lisp File, cl-tls/src/x509/x509.lisp: The cl-tls/src/x509/x509․lisp file

M
Module, cl-tls/src: The cl-tls/src module
Module, cl-tls/src/ASN.1: The cl-tls/src/asn․1 module
Module, cl-tls/src/PEM: The cl-tls/src/pem module
Module, cl-tls/src/pkcs: The cl-tls/src/pkcs module
Module, cl-tls/src/tls: The cl-tls/src/tls module
Module, cl-tls/src/x509: The cl-tls/src/x509 module

S
Static File, cl-tls/LICENSE: The cl-tls/license file
Static File, cl-tls/README: The cl-tls/readme file

Jump to:   C   F   L   M   S  

Next: , Previous: , Up: Indexes   [Contents][Index]

A.2 Functions

Jump to:   (  
A   B   C   D   E   F   G   H   I   K   L   M   O   P   R   S   T   V   W   X  
Index Entry  Section

(
(setf alert): Internal generic functions
(setf alert): Internal generic functions
(setf authority-information-access): Internal generic functions
(setf authority-information-access): Internal generic functions
(setf authority-key-identifier): Internal generic functions
(setf authority-key-identifier): Internal generic functions
(setf basic-constraints): Internal generic functions
(setf basic-constraints): Internal generic functions
(setf certificate-policies): Internal generic functions
(setf certificate-policies): Internal generic functions
(setf client-certificate-url): Internal generic functions
(setf client-certificate-url): Internal generic functions
(setf crl-distribution-points): Internal generic functions
(setf crl-distribution-points): Internal generic functions
(setf extended-key-usage): Internal generic functions
(setf extended-key-usage): Internal generic functions
(setf extensions): Internal generic functions
(setf extensions): Internal generic functions
(setf handshake-messages): Internal generic functions
(setf handshake-messages): Internal generic functions
(setf hash): Internal generic functions
(setf hash): Internal generic functions
(setf host): Exported generic functions
(setf host): Exported generic functions
(setf host): Exported generic functions
(setf host-name): Internal generic functions
(setf host-name): Internal generic functions
(setf issuer): Internal generic functions
(setf issuer): Internal generic functions
(setf issuer-alternative-name): Internal generic functions
(setf issuer-alternative-name): Internal generic functions
(setf issuer-unique-id): Internal generic functions
(setf issuer-unique-id): Internal generic functions
(setf key-usage): Internal generic functions
(setf key-usage): Internal generic functions
(setf log-info): Internal generic functions
(setf log-info): Internal generic functions
(setf log-info): Internal generic functions
(setf log-info): Internal generic functions
(setf max-fragment-length): Internal generic functions
(setf max-fragment-length): Internal generic functions
(setf path): Internal generic functions
(setf path): Internal generic functions
(setf policy-mappings): Internal generic functions
(setf policy-mappings): Internal generic functions
(setf port): Exported generic functions
(setf port): Exported generic functions
(setf port): Exported generic functions
(setf pre-master-secret): Internal generic functions
(setf pre-master-secret): Internal generic functions
(setf pub-key): Internal generic functions
(setf pub-key): Internal generic functions
(setf raw): Internal generic functions
(setf raw): Internal generic functions
(setf scheme): Internal generic functions
(setf scheme): Internal generic functions
(setf serial): Internal generic functions
(setf serial): Internal generic functions
(setf signature): Internal generic functions
(setf signature): Internal generic functions
(setf signature): Internal generic functions
(setf signature-algorithm): Internal generic functions
(setf signature-algorithm): Internal generic functions
(setf subject): Internal generic functions
(setf subject): Internal generic functions
(setf subject-alternative-name): Internal generic functions
(setf subject-alternative-name): Internal generic functions
(setf subject-information-access): Internal generic functions
(setf subject-information-access): Internal generic functions
(setf subject-key-identifier): Internal generic functions
(setf subject-key-identifier): Internal generic functions
(setf subject-pki): Internal generic functions
(setf subject-pki): Internal generic functions
(setf subject-unique-id): Internal generic functions
(setf subject-unique-id): Internal generic functions
(setf supported-signature-algorithms): Internal generic functions
(setf supported-signature-algorithms): Internal generic functions
(setf tbs-certificate): Internal generic functions
(setf tbs-certificate): Internal generic functions
(setf text): Internal generic functions
(setf text): Internal generic functions
(setf validity): Internal generic functions
(setf validity): Internal generic functions
(setf version): Internal generic functions
(setf version): Internal generic functions

A
accept-tunnel: Exported functions
add-handshake-header: Internal functions
alert: Internal generic functions
alert: Internal generic functions
alert-record-to-text: Internal functions
asn-sequence-to-indices: Internal functions
asn-sequence-to-list: Exported functions
asn-serialize: Exported functions
asn-time-to-universal-time: Internal functions
asn-type-matches-p: Internal functions
authority-information-access: Internal generic functions
authority-information-access: Internal generic functions
authority-key-identifier: Internal generic functions
authority-key-identifier: Internal generic functions

B
basic-constraints: Internal generic functions
basic-constraints: Internal generic functions
bind-tbs: Internal macros
bytes-in-int: Internal functions

C
calculate-mac: Internal functions
calculate-verification-mac: Internal functions
cat-vectors: Internal functions
certificate-policies: Internal generic functions
certificate-policies: Internal generic functions
check-certificate-status: Internal functions
check-ocsp: Internal functions
cipher-suite-supported-p: Internal functions
ciphertext-to-compressed: Internal generic functions
ciphertext-to-compressed: Internal generic functions
client-certificate-url: Internal generic functions
client-certificate-url: Internal generic functions
compute-shared-secret: Internal functions
create-asn-sequence: Exported functions
create-cert-id: Internal functions
create-cert-status-request: Internal functions
create-cipher-vector: Internal functions
create-explicit-tag: Internal functions
create-listener-session: Internal functions
create-request: Internal functions
create-session: Internal functions
create-sni: Internal functions
create-tbs-request: Internal functions
crl-distribution-points: Internal generic functions
crl-distribution-points: Internal generic functions

D
decapsulate: Internal functions
decode-oid: Internal functions
decrypt: Internal generic functions
decrypt: Internal generic functions
dhparams-from-key-file: Internal functions
digitally-sign: Internal functions
dns-match-p: Internal functions
dump-to-file: Internal functions

E
emsa-pkcs1-v1.5-encode: Internal functions
encode-oid: Exported functions
encrypt: Internal generic functions
encrypt: Internal generic functions
encrypt-and-send: Internal functions
extended-key-usage: Internal generic functions
extended-key-usage: Internal generic functions
extensions: Internal generic functions
extensions: Internal generic functions

F
fill-random-nonzero-octets: Internal functions
find-certificates: Internal functions
from-stream-parse-der: Internal functions
Function, accept-tunnel: Exported functions
Function, add-handshake-header: Internal functions
Function, alert-record-to-text: Internal functions
Function, asn-sequence-to-indices: Internal functions
Function, asn-sequence-to-list: Exported functions
Function, asn-serialize: Exported functions
Function, asn-time-to-universal-time: Internal functions
Function, asn-type-matches-p: Internal functions
Function, bytes-in-int: Internal functions
Function, calculate-mac: Internal functions
Function, calculate-verification-mac: Internal functions
Function, cat-vectors: Internal functions
Function, check-certificate-status: Internal functions
Function, check-ocsp: Internal functions
Function, cipher-suite-supported-p: Internal functions
Function, compute-shared-secret: Internal functions
Function, create-asn-sequence: Exported functions
Function, create-cert-id: Internal functions
Function, create-cert-status-request: Internal functions
Function, create-cipher-vector: Internal functions
Function, create-explicit-tag: Internal functions
Function, create-listener-session: Internal functions
Function, create-request: Internal functions
Function, create-session: Internal functions
Function, create-sni: Internal functions
Function, create-tbs-request: Internal functions
Function, decapsulate: Internal functions
Function, decode-oid: Internal functions
Function, dhparams-from-key-file: Internal functions
Function, digitally-sign: Internal functions
Function, dns-match-p: Internal functions
Function, dump-to-file: Internal functions
Function, emsa-pkcs1-v1.5-encode: Internal functions
Function, encode-oid: Exported functions
Function, encrypt-and-send: Internal functions
Function, fill-random-nonzero-octets: Internal functions
Function, find-certificates: Internal functions
Function, from-stream-parse-der: Internal functions
Function, gen-key-material: Internal functions
Function, generate-dh-params: Internal functions
Function, get-application-data: Internal functions
Function, get-ca-certificates: Internal functions
Function, get-change-cipher-spec: Internal functions
Function, get-contents: Internal functions
Function, get-der-contents-indices: Internal functions
Function, get-dh-params: Internal functions
Function, get-handshake-message: Internal functions
Function, get-issuer-octets: Internal functions
Function, get-private-key: Internal functions
Function, get-pubkey-octets: Internal functions
Function, get-random-octets: Internal functions
Function, get-raw-tbs: Internal functions
Function, get-sequence: Internal functions
Function, get-session-id: Internal functions
Function, gmt-unix-time: Internal functions
Function, header-value: Internal functions
Function, http-request: Internal functions
Function, initialize-listener: Exported functions
Function, integer-to-octets: Internal functions
Function, integer-to-vlq: Internal functions
Function, load-der-priv-key: Internal functions
Function, load-pem-priv-key: Internal functions
Function, load-priv-key: Internal functions
Function, make-dh-key-pair: Internal functions
Function, make-octet-stream: Internal functions
Function, make-octet-vector: Internal functions
Function, octets-to-integer: Internal functions
Function, ov-buffer-position: Internal functions
Function, p-hash: Internal functions
Function, pack-extension: Internal functions
Function, parse-access-description: Internal functions
Function, parse-cipher-suite: Internal functions
Function, parse-der: Exported functions
Function, parse-directory-name: Internal functions
Function, parse-enc-scheme: Internal functions
Function, parse-general-name: Internal functions
Function, parse-general-names: Internal functions
Function, parse-headers-from-stream: Internal functions
Function, parse-kdf: Internal functions
Function, parse-pem: Internal functions
Function, parse-pka: Internal functions
Function, parse-priv-key: Internal functions
Function, parse-pub-key: Internal functions
Function, parse-qualifier: Internal functions
Function, parse-response-data: Internal functions
Function, parse-signature-algorithm: Internal functions
Function, parse-tbs-certificate: Internal functions
Function, parse-uri: Internal functions
Function, pbes2-decrypt: Exported functions
Function, prepare-ocsp-request: Internal functions
Function, prf: Internal functions
Function, process-extensions: Internal functions
Function, read-chunk: Internal functions
Function, read-chunked-response: Internal functions
Function, read-header: Internal functions
Function, reassemble-handshake-message: Internal functions
Function, remove-padding: Internal functions
Function, request-tunnel: Exported functions
Function, rsa-decrypt: Exported functions
Function, rsa-encrypt: Exported functions
Function, rsassa-pkcs1.5-sign: Exported functions
Function, rsassa-pkcs1.5-verify: Exported functions
Function, send-alert: Internal functions
Function, sign-dh-params: Internal functions
Function, split-header: Internal functions
Function, split-string: Internal functions
Function, stream-octets-to-integer: Internal functions
Function, strong-random-range: Internal functions
Function, symbol-to-suite-list: Internal functions
Function, time-valid-p: Internal functions
Function, timing-independent-compare: Internal functions
Function, trim-space: Internal functions
Function, validate: Internal functions
Function, verify-ocsp-signature: Internal functions
Function, verify-signature: Internal functions
Function, verify-signed-data: Internal functions
Function, verify-signed-params: Internal functions
Function, x509-decode: Exported functions

G
gen-key-material: Internal functions
generate-dh-params: Internal functions
generator: Internal generic functions
generator: Internal generic functions
Generic Function, (setf alert): Internal generic functions
Generic Function, (setf authority-information-access): Internal generic functions
Generic Function, (setf authority-key-identifier): Internal generic functions
Generic Function, (setf basic-constraints): Internal generic functions
Generic Function, (setf certificate-policies): Internal generic functions
Generic Function, (setf client-certificate-url): Internal generic functions
Generic Function, (setf crl-distribution-points): Internal generic functions
Generic Function, (setf extended-key-usage): Internal generic functions
Generic Function, (setf extensions): Internal generic functions
Generic Function, (setf handshake-messages): Internal generic functions
Generic Function, (setf hash): Internal generic functions
Generic Function, (setf host): Exported generic functions
Generic Function, (setf host-name): Internal generic functions
Generic Function, (setf issuer): Internal generic functions
Generic Function, (setf issuer-alternative-name): Internal generic functions
Generic Function, (setf issuer-unique-id): Internal generic functions
Generic Function, (setf key-usage): Internal generic functions
Generic Function, (setf log-info): Internal generic functions
Generic Function, (setf max-fragment-length): Internal generic functions
Generic Function, (setf path): Internal generic functions
Generic Function, (setf policy-mappings): Internal generic functions
Generic Function, (setf port): Exported generic functions
Generic Function, (setf pre-master-secret): Internal generic functions
Generic Function, (setf pub-key): Internal generic functions
Generic Function, (setf raw): Internal generic functions
Generic Function, (setf scheme): Internal generic functions
Generic Function, (setf serial): Internal generic functions
Generic Function, (setf signature): Internal generic functions
Generic Function, (setf signature-algorithm): Internal generic functions
Generic Function, (setf subject): Internal generic functions
Generic Function, (setf subject-alternative-name): Internal generic functions
Generic Function, (setf subject-information-access): Internal generic functions
Generic Function, (setf subject-key-identifier): Internal generic functions
Generic Function, (setf subject-pki): Internal generic functions
Generic Function, (setf subject-unique-id): Internal generic functions
Generic Function, (setf supported-signature-algorithms): Internal generic functions
Generic Function, (setf tbs-certificate): Internal generic functions
Generic Function, (setf text): Internal generic functions
Generic Function, (setf validity): Internal generic functions
Generic Function, (setf version): Internal generic functions
Generic Function, alert: Internal generic functions
Generic Function, authority-information-access: Internal generic functions
Generic Function, authority-key-identifier: Internal generic functions
Generic Function, basic-constraints: Internal generic functions
Generic Function, certificate-policies: Internal generic functions
Generic Function, ciphertext-to-compressed: Internal generic functions
Generic Function, client-certificate-url: Internal generic functions
Generic Function, crl-distribution-points: Internal generic functions
Generic Function, decrypt: Internal generic functions
Generic Function, encrypt: Internal generic functions
Generic Function, extended-key-usage: Internal generic functions
Generic Function, extensions: Internal generic functions
Generic Function, generator: Internal generic functions
Generic Function, get-record: Internal generic functions
Generic Function, handle-handshake: Internal generic functions
Generic Function, handshake-messages: Internal generic functions
Generic Function, hash: Internal generic functions
Generic Function, host: Exported generic functions
Generic Function, host-name: Internal generic functions
Generic Function, initiate-connection: Internal generic functions
Generic Function, issuer: Internal generic functions
Generic Function, issuer-alternative-name: Internal generic functions
Generic Function, issuer-unique-id: Internal generic functions
Generic Function, key-usage: Internal generic functions
Generic Function, log-info: Internal generic functions
Generic Function, max-fragment-length: Internal generic functions
Generic Function, ov-read-byte: Internal generic functions
Generic Function, ov-read-sequence: Internal generic functions
Generic Function, parse-extension: Internal generic functions
Generic Function, path: Internal generic functions
Generic Function, policy-mappings: Internal generic functions
Generic Function, port: Exported generic functions
Generic Function, pre-master-secret: Internal generic functions
Generic Function, prime-modulus: Internal generic functions
Generic Function, process-extension: Internal generic functions
Generic Function, pub-key: Internal generic functions
Generic Function, raw: Internal generic functions
Generic Function, request-stream-to-address: Exported generic functions
Generic Function, scheme: Internal generic functions
Generic Function, send: Internal generic functions
Generic Function, send-change-cipher-spec: Internal generic functions
Generic Function, send-handshake: Internal generic functions
Generic Function, send-record: Internal generic functions
Generic Function, serial: Internal generic functions
Generic Function, signature: Internal generic functions
Generic Function, signature-algorithm: Internal generic functions
Generic Function, subject: Internal generic functions
Generic Function, subject-alternative-name: Internal generic functions
Generic Function, subject-information-access: Internal generic functions
Generic Function, subject-key-identifier: Internal generic functions
Generic Function, subject-pki: Internal generic functions
Generic Function, subject-unique-id: Internal generic functions
Generic Function, supported-signature-algorithms: Internal generic functions
Generic Function, tbs-certificate: Internal generic functions
Generic Function, text: Internal generic functions
Generic Function, validity: Internal generic functions
Generic Function, version: Internal generic functions
get-application-data: Internal functions
get-ca-certificates: Internal functions
get-change-cipher-spec: Internal functions
get-contents: Internal functions
get-der-contents-indices: Internal functions
get-dh-params: Internal functions
get-handshake-message: Internal functions
get-issuer-octets: Internal functions
get-private-key: Internal functions
get-pubkey-octets: Internal functions
get-random-octets: Internal functions
get-raw-tbs: Internal functions
get-record: Internal generic functions
get-record: Internal generic functions
get-sequence: Internal functions
get-session-id: Internal functions
gmt-unix-time: Internal functions

H
handle-handshake: Internal generic functions
handle-handshake: Internal generic functions
handle-handshake: Internal generic functions
handle-handshake: Internal generic functions
handle-handshake: Internal generic functions
handle-handshake: Internal generic functions
handle-handshake: Internal generic functions
handle-handshake: Internal generic functions
handle-handshake: Internal generic functions
handle-handshake: Internal generic functions
handshake-messages: Internal generic functions
handshake-messages: Internal generic functions
hash: Internal generic functions
hash: Internal generic functions
header-value: Internal functions
host: Exported generic functions
host: Exported generic functions
host: Exported generic functions
host-name: Internal generic functions
host-name: Internal generic functions
http-request: Internal functions

I
initialize-listener: Exported functions
initiate-connection: Internal generic functions
initiate-connection: Internal generic functions
initiate-connection: Internal generic functions
integer-to-octets: Internal functions
integer-to-vlq: Internal functions
issuer: Internal generic functions
issuer: Internal generic functions
issuer-alternative-name: Internal generic functions
issuer-alternative-name: Internal generic functions
issuer-unique-id: Internal generic functions
issuer-unique-id: Internal generic functions

K
key-usage: Internal generic functions
key-usage: Internal generic functions

L
load-der-priv-key: Internal functions
load-pem-priv-key: Internal functions
load-priv-key: Internal functions
log-info: Internal generic functions
log-info: Internal generic functions
log-info: Internal generic functions
log-info: Internal generic functions

M
Macro, bind-tbs: Internal macros
Macro, ocsp-catch-asn-error: Internal macros
Macro, with-specification-map: Internal macros
make-dh-key-pair: Internal functions
make-octet-stream: Internal functions
make-octet-vector: Internal functions
max-fragment-length: Internal generic functions
max-fragment-length: Internal generic functions
Method, (setf alert): Internal generic functions
Method, (setf authority-information-access): Internal generic functions
Method, (setf authority-key-identifier): Internal generic functions
Method, (setf basic-constraints): Internal generic functions
Method, (setf certificate-policies): Internal generic functions
Method, (setf client-certificate-url): Internal generic functions
Method, (setf crl-distribution-points): Internal generic functions
Method, (setf extended-key-usage): Internal generic functions
Method, (setf extensions): Internal generic functions
Method, (setf handshake-messages): Internal generic functions
Method, (setf hash): Internal generic functions
Method, (setf host): Exported generic functions
Method, (setf host): Exported generic functions
Method, (setf host-name): Internal generic functions
Method, (setf issuer): Internal generic functions
Method, (setf issuer-alternative-name): Internal generic functions
Method, (setf issuer-unique-id): Internal generic functions
Method, (setf key-usage): Internal generic functions
Method, (setf log-info): Internal generic functions
Method, (setf log-info): Internal generic functions
Method, (setf log-info): Internal generic functions
Method, (setf max-fragment-length): Internal generic functions
Method, (setf path): Internal generic functions
Method, (setf policy-mappings): Internal generic functions
Method, (setf port): Exported generic functions
Method, (setf port): Exported generic functions
Method, (setf pre-master-secret): Internal generic functions
Method, (setf pub-key): Internal generic functions
Method, (setf raw): Internal generic functions
Method, (setf scheme): Internal generic functions
Method, (setf serial): Internal generic functions
Method, (setf signature): Internal generic functions
Method, (setf signature): Internal generic functions
Method, (setf signature-algorithm): Internal generic functions
Method, (setf subject): Internal generic functions
Method, (setf subject-alternative-name): Internal generic functions
Method, (setf subject-information-access): Internal generic functions
Method, (setf subject-key-identifier): Internal generic functions
Method, (setf subject-pki): Internal generic functions
Method, (setf subject-unique-id): Internal generic functions
Method, (setf supported-signature-algorithms): Internal generic functions
Method, (setf tbs-certificate): Internal generic functions
Method, (setf text): Internal generic functions
Method, (setf validity): Internal generic functions
Method, (setf version): Internal generic functions
Method, alert: Internal generic functions
Method, authority-information-access: Internal generic functions
Method, authority-key-identifier: Internal generic functions
Method, basic-constraints: Internal generic functions
Method, certificate-policies: Internal generic functions
Method, ciphertext-to-compressed: Internal generic functions
Method, client-certificate-url: Internal generic functions
Method, crl-distribution-points: Internal generic functions
Method, decrypt: Internal generic functions
Method, encrypt: Internal generic functions
Method, extended-key-usage: Internal generic functions
Method, extensions: Internal generic functions
Method, generator: Internal generic functions
Method, get-record: Internal generic functions
Method, handle-handshake: Internal generic functions
Method, handle-handshake: Internal generic functions
Method, handle-handshake: Internal generic functions
Method, handle-handshake: Internal generic functions
Method, handle-handshake: Internal generic functions
Method, handle-handshake: Internal generic functions
Method, handle-handshake: Internal generic functions
Method, handle-handshake: Internal generic functions
Method, handle-handshake: Internal generic functions
Method, handshake-messages: Internal generic functions
Method, hash: Internal generic functions
Method, host: Exported generic functions
Method, host: Exported generic functions
Method, host-name: Internal generic functions
Method, initiate-connection: Internal generic functions
Method, initiate-connection: Internal generic functions
Method, issuer: Internal generic functions
Method, issuer-alternative-name: Internal generic functions
Method, issuer-unique-id: Internal generic functions
Method, key-usage: Internal generic functions
Method, log-info: Internal generic functions
Method, log-info: Internal generic functions
Method, log-info: Internal generic functions
Method, max-fragment-length: Internal generic functions
Method, ov-read-byte: Internal generic functions
Method, ov-read-sequence: Internal generic functions
Method, parse-extension: Internal generic functions
Method, parse-extension: Internal generic functions
Method, parse-extension: Internal generic functions
Method, parse-extension: Internal generic functions
Method, parse-extension: Internal generic functions
Method, parse-extension: Internal generic functions
Method, parse-extension: Internal generic functions
Method, path: Internal generic functions
Method, policy-mappings: Internal generic functions
Method, port: Exported generic functions
Method, port: Exported generic functions
Method, pre-master-secret: Internal generic functions
Method, prime-modulus: Internal generic functions
Method, process-extension: Internal generic functions
Method, process-extension: Internal generic functions
Method, process-extension: Internal generic functions
Method, process-extension: Internal generic functions
Method, process-extension: Internal generic functions
Method, process-extension: Internal generic functions
Method, process-extension: Internal generic functions
Method, process-extension: Internal generic functions
Method, process-extension: Internal generic functions
Method, process-extension: Internal generic functions
Method, process-extension: Internal generic functions
Method, process-extension: Internal generic functions
Method, process-extension: Internal generic functions
Method, process-extension: Internal generic functions
Method, process-extension: Internal generic functions
Method, process-extension: Internal generic functions
Method, pub-key: Internal generic functions
Method, raw: Internal generic functions
Method, request-stream-to-address: Exported generic functions
Method, scheme: Internal generic functions
Method, send: Internal generic functions
Method, send-change-cipher-spec: Internal generic functions
Method, send-handshake: Internal generic functions
Method, send-handshake: Internal generic functions
Method, send-handshake: Internal generic functions
Method, send-handshake: Internal generic functions
Method, send-handshake: Internal generic functions
Method, send-handshake: Internal generic functions
Method, send-handshake: Internal generic functions
Method, send-handshake: Internal generic functions
Method, send-handshake: Internal generic functions
Method, send-handshake: Internal generic functions
Method, send-record: Internal generic functions
Method, serial: Internal generic functions
Method, signature: Internal generic functions
Method, signature: Internal generic functions
Method, signature-algorithm: Internal generic functions
Method, subject: Internal generic functions
Method, subject-alternative-name: Internal generic functions
Method, subject-information-access: Internal generic functions
Method, subject-key-identifier: Internal generic functions
Method, subject-pki: Internal generic functions
Method, subject-unique-id: Internal generic functions
Method, supported-signature-algorithms: Internal generic functions
Method, tbs-certificate: Internal generic functions
Method, text: Internal generic functions
Method, text: Internal generic functions
Method, text: Internal generic functions
Method, validity: Internal generic functions
Method, version: Internal generic functions

O
ocsp-catch-asn-error: Internal macros
octets-to-integer: Internal functions
ov-buffer-position: Internal functions
ov-read-byte: Internal generic functions
ov-read-byte: Internal generic functions
ov-read-sequence: Internal generic functions
ov-read-sequence: Internal generic functions

P
p-hash: Internal functions
pack-extension: Internal functions
parse-access-description: Internal functions
parse-cipher-suite: Internal functions
parse-der: Exported functions
parse-directory-name: Internal functions
parse-enc-scheme: Internal functions
parse-extension: Internal generic functions
parse-extension: Internal generic functions
parse-extension: Internal generic functions
parse-extension: Internal generic functions
parse-extension: Internal generic functions
parse-extension: Internal generic functions
parse-extension: Internal generic functions
parse-extension: Internal generic functions
parse-general-name: Internal functions
parse-general-names: Internal functions
parse-headers-from-stream: Internal functions
parse-kdf: Internal functions
parse-pem: Internal functions
parse-pka: Internal functions
parse-priv-key: Internal functions
parse-pub-key: Internal functions
parse-qualifier: Internal functions
parse-response-data: Internal functions
parse-signature-algorithm: Internal functions
parse-tbs-certificate: Internal functions
parse-uri: Internal functions
path: Internal generic functions
path: Internal generic functions
pbes2-decrypt: Exported functions
policy-mappings: Internal generic functions
policy-mappings: Internal generic functions
port: Exported generic functions
port: Exported generic functions
port: Exported generic functions
pre-master-secret: Internal generic functions
pre-master-secret: Internal generic functions
prepare-ocsp-request: Internal functions
prf: Internal functions
prime-modulus: Internal generic functions
prime-modulus: Internal generic functions
process-extension: Internal generic functions
process-extension: Internal generic functions
process-extension: Internal generic functions
process-extension: Internal generic functions
process-extension: Internal generic functions
process-extension: Internal generic functions
process-extension: Internal generic functions
process-extension: Internal generic functions
process-extension: Internal generic functions
process-extension: Internal generic functions
process-extension: Internal generic functions
process-extension: Internal generic functions
process-extension: Internal generic functions
process-extension: Internal generic functions
process-extension: Internal generic functions
process-extension: Internal generic functions
process-extension: Internal generic functions
process-extensions: Internal functions
pub-key: Internal generic functions
pub-key: Internal generic functions

R
raw: Internal generic functions
raw: Internal generic functions
read-chunk: Internal functions
read-chunked-response: Internal functions
read-header: Internal functions
reassemble-handshake-message: Internal functions
remove-padding: Internal functions
request-stream-to-address: Exported generic functions
request-stream-to-address: Exported generic functions
request-tunnel: Exported functions
rsa-decrypt: Exported functions
rsa-encrypt: Exported functions
rsassa-pkcs1.5-sign: Exported functions
rsassa-pkcs1.5-verify: Exported functions

S
scheme: Internal generic functions
scheme: Internal generic functions
send: Internal generic functions
send: Internal generic functions
send-alert: Internal functions
send-change-cipher-spec: Internal generic functions
send-change-cipher-spec: Internal generic functions
send-handshake: Internal generic functions
send-handshake: Internal generic functions
send-handshake: Internal generic functions
send-handshake: Internal generic functions
send-handshake: Internal generic functions
send-handshake: Internal generic functions
send-handshake: Internal generic functions
send-handshake: Internal generic functions
send-handshake: Internal generic functions
send-handshake: Internal generic functions
send-handshake: Internal generic functions
send-record: Internal generic functions
send-record: Internal generic functions
serial: Internal generic functions
serial: Internal generic functions
sign-dh-params: Internal functions
signature: Internal generic functions
signature: Internal generic functions
signature: Internal generic functions
signature-algorithm: Internal generic functions
signature-algorithm: Internal generic functions
split-header: Internal functions
split-string: Internal functions
stream-octets-to-integer: Internal functions
strong-random-range: Internal functions
subject: Internal generic functions
subject: Internal generic functions
subject-alternative-name: Internal generic functions
subject-alternative-name: Internal generic functions
subject-information-access: Internal generic functions
subject-information-access: Internal generic functions
subject-key-identifier: Internal generic functions
subject-key-identifier: Internal generic functions
subject-pki: Internal generic functions
subject-pki: Internal generic functions
subject-unique-id: Internal generic functions
subject-unique-id: Internal generic functions
supported-signature-algorithms: Internal generic functions
supported-signature-algorithms: Internal generic functions
symbol-to-suite-list: Internal functions

T
tbs-certificate: Internal generic functions
tbs-certificate: Internal generic functions
text: Internal generic functions
text: Internal generic functions
text: Internal generic functions
text: Internal generic functions
time-valid-p: Internal functions
timing-independent-compare: Internal functions
trim-space: Internal functions

V
validate: Internal functions
validity: Internal generic functions
validity: Internal generic functions
verify-ocsp-signature: Internal functions
verify-signature: Internal functions
verify-signed-data: Internal functions
verify-signed-params: Internal functions
version: Internal generic functions
version: Internal generic functions

W
with-specification-map: Internal macros

X
x509-decode: Exported functions

Jump to:   (  
A   B   C   D   E   F   G   H   I   K   L   M   O   P   R   S   T   V   W   X  

Next: , Previous: , Up: Indexes   [Contents][Index]

A.3 Variables

Jump to:   *   +  
A   B   C   D   E   G   H   I   K   L   M   O   P   R   S   T   V  
Index Entry  Section

*
*certificate-request-msg*: Internal special variables
*crlf*: Internal special variables
*debug-stream*: Internal special variables
*id-ad-ocsp*: Internal special variables
*log-level*: Internal special variables
*max-certificate-chain-length*: Internal special variables
*max-content-length*: Internal special variables
*max-fragment-length*: Internal special variables
*max-int-len*: Internal special variables
*supported-cipher-suites*: Internal special variables
*version*: Internal special variables

+
+3des-block-size+: Internal special variables
+3des-encryption-suites+: Internal special variables
+access-denied+: Internal constants
+aes-128-ciphers+: Internal special variables
+aes-256-ciphers+: Internal special variables
+aes-block-size+: Internal special variables
+aes-encryption-suites+: Internal special variables
+alert+: Internal constants
+anon-authentication-suites+: Internal special variables
+application-data+: Internal constants
+asn1_application+: Internal constants
+asn1_constructed+: Internal constants
+asn1_context_specific+: Internal constants
+asn1_primitive+: Internal constants
+asn1_private+: Internal constants
+asn1_universal+: Internal constants
+bad-certificate+: Internal constants
+bad-record-mac+: Internal constants
+cbc-mode-ciphers+: Internal special variables
+certificate+: Internal constants
+certificate-expired+: Internal constants
+certificate-request+: Internal constants
+certificate-revoked+: Internal constants
+certificate-unknown+: Internal constants
+certificate-verify+: Internal constants
+change-cipher-spec+: Internal constants
+client-hello+: Internal constants
+client-key-exchange+: Internal constants
+close-notify+: Internal constants
+decode-error+: Internal constants
+decompression-failure+: Internal constants
+decrypt-error+: Internal constants
+decryption-failed-reserved+: Internal constants
+dh-key-exchange-suites+: Internal special variables
+dhe-key-exchange-suites+: Internal special variables
+dss-authentication-suites+: Internal special variables
+export-restriction-reserved+: Internal constants
+fatal+: Internal constants
+finished+: Internal constants
+handshake+: Internal constants
+handshake-failure+: Internal constants
+hello-request+: Internal constants
+illegal-parameter+: Internal constants
+insufficient-security+: Internal constants
+internal-error+: Internal constants
+md2withrsaencryption+: Internal constants
+md5-ciphers+: Internal special variables
+md5withrsaencryption+: Internal constants
+no-certificate-reserved+: Internal constants
+no-renegotiation+: Internal constants
+protocol-version+: Internal constants
+rc4-encryption-suites+: Internal special variables
+record-overflow+: Internal constants
+rsa-authentication-suites+: Internal special variables
+rsa-key-exchange-suites+: Internal special variables
+server-hello+: Internal constants
+server-hello-done+: Internal constants
+server-key-exchange+: Internal constants
+sha1-ciphers+: Internal special variables
+sha1withrsaencryption+: Internal constants
+sha224withrsaencryption+: Internal constants
+sha256-ciphers+: Internal special variables
+sha256withrsaencryption+: Internal constants
+sha384withrsaencryption+: Internal constants
+sha512withrsaencryption+: Internal constants
+tls_dhe_dss_with_3des_ede_cbc_sha+: Internal special variables
+tls_dhe_dss_with_aes_128_cbc_sha+: Internal special variables
+tls_dhe_dss_with_aes_128_cbc_sha256+: Internal special variables
+tls_dhe_dss_with_aes_256_cbc_sha+: Internal special variables
+tls_dhe_dss_with_aes_256_cbc_sha256+: Internal special variables
+tls_dhe_rsa_with_3des_ede_cbc_sha+: Internal special variables
+tls_dhe_rsa_with_aes_128_cbc_sha+: Internal special variables
+tls_dhe_rsa_with_aes_128_cbc_sha256+: Internal special variables
+tls_dhe_rsa_with_aes_256_cbc_sha+: Internal special variables
+tls_dhe_rsa_with_aes_256_cbc_sha256+: Internal special variables
+tls_dh_anon_with_3des_ede_cbc_sha+: Internal special variables
+tls_dh_anon_with_aes_128_cbc_sha+: Internal special variables
+tls_dh_anon_with_aes_128_cbc_sha256+: Internal special variables
+tls_dh_anon_with_aes_256_cbc_sha+: Internal special variables
+tls_dh_anon_with_aes_256_cbc_sha256+: Internal special variables
+tls_dh_anon_with_rc4_128_md5+: Internal special variables
+tls_dh_dss_with_3des_ede_cbc_sha+: Internal special variables
+tls_dh_dss_with_aes_128_cbc_sha+: Internal special variables
+tls_dh_dss_with_aes_128_cbc_sha256+: Internal special variables
+tls_dh_dss_with_aes_256_cbc_sha+: Internal special variables
+tls_dh_dss_with_aes_256_cbc_sha256+: Internal special variables
+tls_dh_rsa_with_3des_ede_cbc_sha+: Internal special variables
+tls_dh_rsa_with_aes_128_cbc_sha+: Internal special variables
+tls_dh_rsa_with_aes_128_cbc_sha256+: Internal special variables
+tls_dh_rsa_with_aes_256_cbc_sha+: Internal special variables
+tls_dh_rsa_with_aes_256_cbc_sha256+: Internal special variables
+tls_rsa_with_3des_ede_cbc_sha+: Internal special variables
+tls_rsa_with_aes_128_cbc_sha+: Internal special variables
+tls_rsa_with_aes_128_cbc_sha256+: Internal special variables
+tls_rsa_with_aes_256_cbc_sha+: Internal special variables
+tls_rsa_with_aes_256_cbc_sha256+: Internal special variables
+tls_rsa_with_null_md5+: Internal special variables
+tls_rsa_with_null_sha+: Internal special variables
+tls_rsa_with_null_sha256+: Internal special variables
+tls_rsa_with_rc4_128_md5+: Internal special variables
+tls_rsa_with_rc4_128_sha+: Internal special variables
+unexpected-message+: Internal constants
+unknown-ca+: Internal constants
+unsupported-certificate+: Internal constants
+unsupported-extension+: Internal constants
+user-canceled+: Internal constants
+warning+: Internal constants

A
alert: Internal conditions
authenticate-client-p: Internal classes
authentication-method: Internal classes
authority-information-access: Internal classes
authority-key-identifier: Internal classes

B
basic-constraints: Internal classes
block-size: Internal classes

C
ca-certificates: Internal classes
ca-certificates: Internal classes
certificate: Internal classes
certificate: Internal classes
certificate-policies: Internal classes
certificate-requested: Internal classes
cipher-mode: Internal classes
cipher-suite: Internal classes
cipher-type: Internal classes
ciphers: Internal classes
ciphers: Internal classes
client-certificate-url: Internal classes
client-random: Internal classes
client-write-iv: Internal classes
client-write-key: Internal classes
client-write-mac-key: Internal classes
Constant, +access-denied+: Internal constants
Constant, +alert+: Internal constants
Constant, +application-data+: Internal constants
Constant, +asn1_application+: Internal constants
Constant, +asn1_constructed+: Internal constants
Constant, +asn1_context_specific+: Internal constants
Constant, +asn1_primitive+: Internal constants
Constant, +asn1_private+: Internal constants
Constant, +asn1_universal+: Internal constants
Constant, +bad-certificate+: Internal constants
Constant, +bad-record-mac+: Internal constants
Constant, +certificate+: Internal constants
Constant, +certificate-expired+: Internal constants
Constant, +certificate-request+: Internal constants
Constant, +certificate-revoked+: Internal constants
Constant, +certificate-unknown+: Internal constants
Constant, +certificate-verify+: Internal constants
Constant, +change-cipher-spec+: Internal constants
Constant, +client-hello+: Internal constants
Constant, +client-key-exchange+: Internal constants
Constant, +close-notify+: Internal constants
Constant, +decode-error+: Internal constants
Constant, +decompression-failure+: Internal constants
Constant, +decrypt-error+: Internal constants
Constant, +decryption-failed-reserved+: Internal constants
Constant, +export-restriction-reserved+: Internal constants
Constant, +fatal+: Internal constants
Constant, +finished+: Internal constants
Constant, +handshake+: Internal constants
Constant, +handshake-failure+: Internal constants
Constant, +hello-request+: Internal constants
Constant, +illegal-parameter+: Internal constants
Constant, +insufficient-security+: Internal constants
Constant, +internal-error+: Internal constants
Constant, +md2withrsaencryption+: Internal constants
Constant, +md5withrsaencryption+: Internal constants
Constant, +no-certificate-reserved+: Internal constants
Constant, +no-renegotiation+: Internal constants
Constant, +protocol-version+: Internal constants
Constant, +record-overflow+: Internal constants
Constant, +server-hello+: Internal constants
Constant, +server-hello-done+: Internal constants
Constant, +server-key-exchange+: Internal constants
Constant, +sha1withrsaencryption+: Internal constants
Constant, +sha224withrsaencryption+: Internal constants
Constant, +sha256withrsaencryption+: Internal constants
Constant, +sha384withrsaencryption+: Internal constants
Constant, +sha512withrsaencryption+: Internal constants
Constant, +unexpected-message+: Internal constants
Constant, +unknown-ca+: Internal constants
Constant, +unsupported-certificate+: Internal constants
Constant, +unsupported-extension+: Internal constants
Constant, +user-canceled+: Internal constants
Constant, +warning+: Internal constants
crl-distribution-points: Internal classes

D
decrypting-cipher-object: Internal classes
dh-params: Internal classes
dh-params: Internal classes
dh-y: Internal classes
dhe-private-key: Internal classes

E
enc-key-length: Internal classes
encrypting-cipher-object: Internal classes
encryption-algorithm: Internal classes
endpoint-decryption-key: Internal symbol macros
endpoint-encryption-key: Internal symbol macros
endpoint-mac-decryption-key: Internal symbol macros
endpoint-mac-encryption-key: Internal symbol macros
extended-key-usage: Internal classes
extensions: Internal classes
extensions-data: Internal classes

G
g: Internal classes

H
handshake-messages: Internal classes
handshake-stage: Internal classes
hash: Internal classes
hello-version: Internal classes
host: Exported classes
host: Internal classes
host-name: Internal classes

I
input-stream: Internal classes
io-stream: Internal classes
issuer: Internal classes
issuer-alternative-name: Internal classes
issuer-unique-id: Internal classes

K
key-exchange-method: Internal classes
key-usage: Internal classes
key_block: Internal classes

L
length: Internal classes
log: Internal conditions
log: Internal conditions
log: Internal conditions

M
mac-algorithm: Internal classes
mac-key-length: Internal classes
master-secret: Internal classes
max-fragment-length: Internal classes

O
octet-vector: Internal classes
output-stream: Internal classes

P
p: Internal classes
path: Internal classes
peer-dns-name: Internal classes
peer-ip-addresses: Internal classes
policy-mappings: Internal classes
port: Exported classes
port: Internal classes
position: Internal classes
pre-master-secret: Internal classes
priv-key: Internal classes
priv-key: Internal classes
pub-key: Internal classes
pub-key: Internal classes

R
raw: Internal classes
record-iv-length: Internal classes
remote-certificate-type: Internal classes
requested-cert-type: Internal classes
require-authentication-p: Internal classes
resumable: Internal classes
resumable: Internal classes
role: Internal classes
role: Internal classes
role: Internal classes

S
scheme: Internal classes
sequence-number-read: Internal classes
sequence-number-write: Internal classes
serial: Internal classes
server-random: Internal classes
server-write-iv: Internal classes
server-write-key: Internal classes
server-write-mac-key: Internal classes
session-id: Internal classes
session-read-state: Internal classes
session-write-state: Internal classes
signature: Internal classes
signature: Internal classes
signature-algorithm: Internal classes
Slot, alert: Internal conditions
Slot, authenticate-client-p: Internal classes
Slot, authentication-method: Internal classes
Slot, authority-information-access: Internal classes
Slot, authority-key-identifier: Internal classes
Slot, basic-constraints: Internal classes
Slot, block-size: Internal classes
Slot, ca-certificates: Internal classes
Slot, ca-certificates: Internal classes
Slot, certificate: Internal classes
Slot, certificate: Internal classes
Slot, certificate-policies: Internal classes
Slot, certificate-requested: Internal classes
Slot, cipher-mode: Internal classes
Slot, cipher-suite: Internal classes
Slot, cipher-type: Internal classes
Slot, ciphers: Internal classes
Slot, ciphers: Internal classes
Slot, client-certificate-url: Internal classes
Slot, client-random: Internal classes
Slot, client-write-iv: Internal classes
Slot, client-write-key: Internal classes
Slot, client-write-mac-key: Internal classes
Slot, crl-distribution-points: Internal classes
Slot, decrypting-cipher-object: Internal classes
Slot, dh-params: Internal classes
Slot, dh-params: Internal classes
Slot, dh-y: Internal classes
Slot, dhe-private-key: Internal classes
Slot, enc-key-length: Internal classes
Slot, encrypting-cipher-object: Internal classes
Slot, encryption-algorithm: Internal classes
Slot, extended-key-usage: Internal classes
Slot, extensions: Internal classes
Slot, extensions-data: Internal classes
Slot, g: Internal classes
Slot, handshake-messages: Internal classes
Slot, handshake-stage: Internal classes
Slot, hash: Internal classes
Slot, hello-version: Internal classes
Slot, host: Exported classes
Slot, host: Internal classes
Slot, host-name: Internal classes
Slot, input-stream: Internal classes
Slot, io-stream: Internal classes
Slot, issuer: Internal classes
Slot, issuer-alternative-name: Internal classes
Slot, issuer-unique-id: Internal classes
Slot, key-exchange-method: Internal classes
Slot, key-usage: Internal classes
Slot, key_block: Internal classes
Slot, length: Internal classes
Slot, log: Internal conditions
Slot, log: Internal conditions
Slot, log: Internal conditions
Slot, mac-algorithm: Internal classes
Slot, mac-key-length: Internal classes
Slot, master-secret: Internal classes
Slot, max-fragment-length: Internal classes
Slot, octet-vector: Internal classes
Slot, output-stream: Internal classes
Slot, p: Internal classes
Slot, path: Internal classes
Slot, peer-dns-name: Internal classes
Slot, peer-ip-addresses: Internal classes
Slot, policy-mappings: Internal classes
Slot, port: Exported classes
Slot, port: Internal classes
Slot, position: Internal classes
Slot, pre-master-secret: Internal classes
Slot, priv-key: Internal classes
Slot, priv-key: Internal classes
Slot, pub-key: Internal classes
Slot, pub-key: Internal classes
Slot, raw: Internal classes
Slot, record-iv-length: Internal classes
Slot, remote-certificate-type: Internal classes
Slot, requested-cert-type: Internal classes
Slot, require-authentication-p: Internal classes
Slot, resumable: Internal classes
Slot, resumable: Internal classes
Slot, role: Internal classes
Slot, role: Internal classes
Slot, role: Internal classes
Slot, scheme: Internal classes
Slot, sequence-number-read: Internal classes
Slot, sequence-number-write: Internal classes
Slot, serial: Internal classes
Slot, server-random: Internal classes
Slot, server-write-iv: Internal classes
Slot, server-write-key: Internal classes
Slot, server-write-mac-key: Internal classes
Slot, session-id: Internal classes
Slot, session-read-state: Internal classes
Slot, session-write-state: Internal classes
Slot, signature: Internal classes
Slot, signature: Internal classes
Slot, signature-algorithm: Internal classes
Slot, state: Internal classes
Slot, subject: Internal classes
Slot, subject-alternative-name: Internal classes
Slot, subject-information-access: Internal classes
Slot, subject-key-identifier: Internal classes
Slot, subject-pki: Internal classes
Slot, subject-unique-id: Internal classes
Slot, supported-sig-algos: Internal classes
Slot, supported-signature-algorithms: Internal classes
Slot, tbs-certificate: Internal classes
Slot, text: Exported conditions
Slot, text: Internal conditions
Slot, text: Internal conditions
Slot, validity: Internal classes
Slot, version: Internal classes
Slot, version: Internal classes
Slot, version: Internal classes
Special Variable, *certificate-request-msg*: Internal special variables
Special Variable, *crlf*: Internal special variables
Special Variable, *debug-stream*: Internal special variables
Special Variable, *id-ad-ocsp*: Internal special variables
Special Variable, *log-level*: Internal special variables
Special Variable, *max-certificate-chain-length*: Internal special variables
Special Variable, *max-content-length*: Internal special variables
Special Variable, *max-fragment-length*: Internal special variables
Special Variable, *max-int-len*: Internal special variables
Special Variable, *supported-cipher-suites*: Internal special variables
Special Variable, *version*: Internal special variables
Special Variable, +3des-block-size+: Internal special variables
Special Variable, +3des-encryption-suites+: Internal special variables
Special Variable, +aes-128-ciphers+: Internal special variables
Special Variable, +aes-256-ciphers+: Internal special variables
Special Variable, +aes-block-size+: Internal special variables
Special Variable, +aes-encryption-suites+: Internal special variables
Special Variable, +anon-authentication-suites+: Internal special variables
Special Variable, +cbc-mode-ciphers+: Internal special variables
Special Variable, +dh-key-exchange-suites+: Internal special variables
Special Variable, +dhe-key-exchange-suites+: Internal special variables
Special Variable, +dss-authentication-suites+: Internal special variables
Special Variable, +md5-ciphers+: Internal special variables
Special Variable, +rc4-encryption-suites+: Internal special variables
Special Variable, +rsa-authentication-suites+: Internal special variables
Special Variable, +rsa-key-exchange-suites+: Internal special variables
Special Variable, +sha1-ciphers+: Internal special variables
Special Variable, +sha256-ciphers+: Internal special variables
Special Variable, +tls_dhe_dss_with_3des_ede_cbc_sha+: Internal special variables
Special Variable, +tls_dhe_dss_with_aes_128_cbc_sha+: Internal special variables
Special Variable, +tls_dhe_dss_with_aes_128_cbc_sha256+: Internal special variables
Special Variable, +tls_dhe_dss_with_aes_256_cbc_sha+: Internal special variables
Special Variable, +tls_dhe_dss_with_aes_256_cbc_sha256+: Internal special variables
Special Variable, +tls_dhe_rsa_with_3des_ede_cbc_sha+: Internal special variables
Special Variable, +tls_dhe_rsa_with_aes_128_cbc_sha+: Internal special variables
Special Variable, +tls_dhe_rsa_with_aes_128_cbc_sha256+: Internal special variables
Special Variable, +tls_dhe_rsa_with_aes_256_cbc_sha+: Internal special variables
Special Variable, +tls_dhe_rsa_with_aes_256_cbc_sha256+: Internal special variables
Special Variable, +tls_dh_anon_with_3des_ede_cbc_sha+: Internal special variables
Special Variable, +tls_dh_anon_with_aes_128_cbc_sha+: Internal special variables
Special Variable, +tls_dh_anon_with_aes_128_cbc_sha256+: Internal special variables
Special Variable, +tls_dh_anon_with_aes_256_cbc_sha+: Internal special variables
Special Variable, +tls_dh_anon_with_aes_256_cbc_sha256+: Internal special variables
Special Variable, +tls_dh_anon_with_rc4_128_md5+: Internal special variables
Special Variable, +tls_dh_dss_with_3des_ede_cbc_sha+: Internal special variables
Special Variable, +tls_dh_dss_with_aes_128_cbc_sha+: Internal special variables
Special Variable, +tls_dh_dss_with_aes_128_cbc_sha256+: Internal special variables
Special Variable, +tls_dh_dss_with_aes_256_cbc_sha+: Internal special variables
Special Variable, +tls_dh_dss_with_aes_256_cbc_sha256+: Internal special variables
Special Variable, +tls_dh_rsa_with_3des_ede_cbc_sha+: Internal special variables
Special Variable, +tls_dh_rsa_with_aes_128_cbc_sha+: Internal special variables
Special Variable, +tls_dh_rsa_with_aes_128_cbc_sha256+: Internal special variables
Special Variable, +tls_dh_rsa_with_aes_256_cbc_sha+: Internal special variables
Special Variable, +tls_dh_rsa_with_aes_256_cbc_sha256+: Internal special variables
Special Variable, +tls_rsa_with_3des_ede_cbc_sha+: Internal special variables
Special Variable, +tls_rsa_with_aes_128_cbc_sha+: Internal special variables
Special Variable, +tls_rsa_with_aes_128_cbc_sha256+: Internal special variables
Special Variable, +tls_rsa_with_aes_256_cbc_sha+: Internal special variables
Special Variable, +tls_rsa_with_aes_256_cbc_sha256+: Internal special variables
Special Variable, +tls_rsa_with_null_md5+: Internal special variables
Special Variable, +tls_rsa_with_null_sha+: Internal special variables
Special Variable, +tls_rsa_with_null_sha256+: Internal special variables
Special Variable, +tls_rsa_with_rc4_128_md5+: Internal special variables
Special Variable, +tls_rsa_with_rc4_128_sha+: Internal special variables
state: Internal classes
subject: Internal classes
subject-alternative-name: Internal classes
subject-information-access: Internal classes
subject-key-identifier: Internal classes
subject-pki: Internal classes
subject-unique-id: Internal classes
supported-sig-algos: Internal classes
supported-signature-algorithms: Internal classes
Symbol Macro, endpoint-decryption-key: Internal symbol macros
Symbol Macro, endpoint-encryption-key: Internal symbol macros
Symbol Macro, endpoint-mac-decryption-key: Internal symbol macros
Symbol Macro, endpoint-mac-encryption-key: Internal symbol macros

T
tbs-certificate: Internal classes
text: Exported conditions
text: Internal conditions
text: Internal conditions

V
validity: Internal classes
version: Internal classes
version: Internal classes
version: Internal classes

Jump to:   *   +  
A   B   C   D   E   G   H   I   K   L   M   O   P   R   S   T   V  

Previous: , Up: Indexes   [Contents][Index]

A.4 Data types

Jump to:   A   C   D   E   H   O   P   S   T   U   X  
Index Entry  Section

A
address: Exported classes
asn.1-decoding-error: Internal conditions

C
cl-tls: The cl-tls system
cl-tls: The cl-tls package
Class, address: Exported classes
Class, client-session: Internal classes
Class, dh-params: Internal classes
Class, hello-extensions: Internal classes
Class, octet-stream: Internal classes
Class, server-session: Internal classes
Class, session: Internal classes
Class, shared-session-slots: Internal classes
Class, tbs-certificate: Internal classes
Class, uri: Internal classes
Class, x509-extension: Internal classes
Class, x509v3-certificate: Internal classes
client-session: Internal classes
Condition, asn.1-decoding-error: Internal conditions
Condition, exception: Internal conditions
Condition, http-error: Internal conditions
Condition, ocsp-error: Internal conditions
Condition, tls-error: Exported conditions
Condition, tls-stream-error: Exported conditions
Condition, x509-decoding-error: Internal conditions

D
dh-params: Internal classes

E
exception: Internal conditions

H
hello-extensions: Internal classes
http-error: Internal conditions

O
ocsp-error: Internal conditions
octet: Internal types
octet-stream: Internal classes
octet-vector: Internal types

P
Package, cl-tls: The cl-tls package

S
server-session: Internal classes
session: Internal classes
shared-session-slots: Internal classes
System, cl-tls: The cl-tls system

T
tbs-certificate: Internal classes
tls-error: Exported conditions
tls-stream-error: Exported conditions
Type, octet: Internal types
Type, octet-vector: Internal types

U
uri: Internal classes

X
x509-decoding-error: Internal conditions
x509-extension: Internal classes
x509v3-certificate: Internal classes

Jump to:   A   C   D   E   H   O   P   S   T   U   X