Next: Introduction, Previous: (dir), Up: (dir) [Contents][Index]
This is the cl-tls Reference Manual, generated automatically by Declt version 4.0 beta 2 "William Riker" on Thu Sep 15 04:14:17 2022 GMT+0.
Next: Systems, Previous: The cl-tls Reference Manual, Up: The cl-tls Reference Manual [Contents][Index]
CL-TLS is a prototype Common Lisp implementation of TLS and related protocols and standards including:
TLS is the IETF-standardized successor of Netscape's SSL protocol. Sometimes TLS/SSL are used interchangeably. At this point, there is no intention to support the older versions of the protocols (SSLv3 and below)
The project is currently in its early development phase and should only be used for experimental purposes.
CL-TLS uses Ironclad as its cryptographic back-end (at the time of writing, the ironclad in quicklisp has not yet been updated to the new maintained repo, use sharplispers/ironclad). See the system definition file for other dependencies
The project started as an attempt to create a network-based TLS fuzzer, but soon morphed of its own volition into a full-fledged TLS implementation.
Extensive testing, fuzzing, and code review is needed. Style guidelines, optimizations, feature-completion patches, bug fixes, and other contributions are welcome.
For an overview of known attacks against TLS and other issues relevant to implementors and users, see https://tools.ietf.org/html/rfc7457 At a minimum, CL-TLS will follow the recommendations and considerations in the aforementioned document before a proper alpha release is announced.
I also intend to fully document the internals of CL-TLS.
So far:
Major TODOs before alpha release:
Features that would be nice, but are not essential
CL-TLS does not offer gray streams, threading, sockets, event-loop, or compression functionality. This limits the code of CL-TLS to simply opening and managing a TLS tunnel through an octet stream and enhances portability and extensibility. However, libraries that offer this functionality (such as threaded or evented servers), can be built trivially on top of CL-TLS. See https://github.com/shrdlu68/secure-sockets as an example.
Here is an example of a simple text echo server that implements a simple one-thread-per-request model using usocket and bordeaux-threads:
(require :cl-tls)
(ql:quickload :bordeaux-threads)
(ql:quickload :usockets)
(ql:quickload :babel)
(defun echo-server (port &optional (host "localhost"))
(let ((sock (usocket:socket-listen host port
:reuse-address t
:element-type '(unsigned-byte 8))))
(cl-tls:initialize-listener
:certificate "/path/to/cert.pem"
:private-key "/path/to/key.pem")
(loop
for thread-id upfrom 0
for new-sock = (usocket:socket-accept sock)
for session-stream = (usocket:socket-stream new-sock)
for handler = (multiple-value-bind (reader writer)
(cl-tls:accept-tunnel :io-stream session-stream)
(lambda ()
(loop
with id = thread-id
for in = (funcall reader)
for line = (and in
(babel:octets-to-string in))
if line do
(format t "~&~:R thread received data: ~A~%"
id line)
(funcall writer in)
else do
(format t
"~&Peer closed tunnel, ~:R thread exiting~%" id)
(return nil))))
do
(bordeaux-threads:make-thread handler))))
And here is an example using client functionality:
(require :cl-tls)
(ql:quickload :babel)
(defun client-test (port &optional (host "localhost"))
(let* ((sock (usocket:socket-connect
host port
:protocol :stream
:element-type '(unsigned-byte 8))))
(multiple-value-bind (reader writer close-callback)
(cl-tls:request-tunnel
:certificate "/path/to/cert.pem"
:private-key "/path/to/key.pem"
:io-stream (usocket:socket-stream sock)
:peer-ip-addresses '((127 0 0 1))
:ca-certificates "/path/to/CA/ca-cert.pem")
(loop
for out = (read-line *standard-input* nil nil)
for line = (and out
(babel:string-to-octets out))
if line do
(funcall writer line)
(let ((in (funcall reader)))
(cond (in
(format t "~&Received data: ~A~%"
(babel:octets-to-string in)))
(t
(funcall close-callback)
(return nil))))
else do
(format t "~&Closing tunnel...~%")
(funcall close-callback)
(return nil)))))
Preliminary API documentation:
request-tunnel (&key certificate private-key ca-certificates
io-stream input-stream output-stream
include-ciphers exclude-ciphers
peer-dns-name peer-ip-addresses)
Attempts to request a TLS tunnel from a server
through an octet stream
:io-stream A duplex octet stream
:input-stream In the case where separate input and output
streams are used, an octet input stream
:output-stream An octet output stream
:private-key A (DER/PEM-encoded) private key
(currently only DSA, RSA and DH private keys are supported)
If the private key is encrypted, you will be prompted for
the passphrase
:certificate A file containing a PEM-encoded list of one
or more cerificates
The file should consist of one or more
----- BEGIN CERTIFICATE -----
----- END CERTIFICATE -----
blocks. White space and other information around these blocks
is permitted and will be ignored. Support for PKCS#12-encoded
certificate chains is not yet implemented.
:ca-certificates Either: 1. A directory to look for .crt, .pem, and .der
CA certificates in
2. A PEM-encoded file containing CA certificates,
encoded as explained above.
For servers, these are only needed if the server
needs to authenticate clients, i.e the clients are
expected to have client certificates issued to them.
This is not used very widely in practice.
For clients, CA certificates are used to authenticate
servers.
TLS clients such as browsers typically use a collection
of root certificates that are included by some means of
vetting, either provided by the operating system or
by the creators/maintainers of the browser.
You can use the CAs that your OS/browser has vetted,
or you can select which CAs to trust by yourself.
For example, most GNU/Linux systems have a package that
provides vetted root certificates, typically found in
the file "/etc/ssl/certs/ca-certificates.crt"
See also: https://curl.haxx.se/docs/sslcerts.html
If you want to or have issued your own certificates,
include your CA certificate here, either in
addition to other CA certificates or as the sole
CA certificates. The client and server will only
be able to validate remote endpoints whose certificates
are signed by a CA certificate that is included,
there is no way to "accept" unvalidated certificates.
:include-ciphers A list of symbols of cipher suites to add to the
default cipher list.
The symbols denote one of the cryptographic characteristics
of a cipher suite: key exchange, authentication
bulk encryption, mac, digest algorithms, prf, and key sizes.
Currently supported options:
:rsa-ke (RSA key exchange)
:rsa-auth (RSA authentication)
:dh (static dh) :dhe (ephemeral dh)
:dsa :anon (no authentication-vulnerable to MITM attacks!)
:rc4 (broken and prohibited) :3des
:aes128 :aes256 :cbc (cipher block chaining mode)
:md5 :sha1 :sha256
:exclude-ciphers A list of symbols of cipher suites to exclude
from the default cipher list.
:anon and :rc4 are already excluded by default
:peer-dns-name DNS-name of the peer. This is checked against
the dns-name values in the subject alternative name extension
of the certificate presented by the peer.
It is also used in the SNI extension, which is important
for virtual servers to determine which server the client
wants to contact.
:peer-ip-addresses List of IP addresses of the peer
This is checked against the ip-address values
in the subject alternative name extension
of the certificate presented by the peer.
initialize-listener (&key certificate private-key ca-certificates
include-ciphers exclude-ciphers force-reinitialize
authenticate-client-p require-authentication-p
dh-params)
Loads resources needed for a server session and
sets configuration options
Servers need to call this once when initializing.
:authenticate-client-p When true, an attempt to authenticate the client
will be made. However, the client may send back an
empty certificate if it does not have
(an appropriate) certificate. This option defaults
to nil
:require-authentication-p When true, the server will be asked for a
certificate, and the connection will
fail if the client fails to provide a certificate.
This option defaults to nil.
accept-tunnel (&key io-stream input-stream output-stream)
=> read-callback,write-callback,close-callback
Attempts to accept a client's request for a
TLS tunnel through an octet stream
read-callback A closure whose argument list is in the form
(&key (eof-error-p nil) (eof-value nil))
that returns the contents
of one TLS record (2^14 bytes or less).
If :eof-error-p is true, the condition cl:end-of-file
will be signaled if the TLS tunnel is closed properly
(i.e a close_notify alert is received)
If :eof-error-p is false, eof-value is returned rather
than isgnalling end-of-file.
If an error is encountered while attempting to read from
the underlying stream (for example is a socket connection
is terminated without properly closing the TLS tunnel),
the condition cl:stream-error will be signalled.
write-callback A closure of one argument, an octet vector of arbitrary size,
to be sent down the tunnel
Attempting to write to a closed TLS tunnel will
signal the condition cl:stream-error
If an error is encountered while attempting to write to
the underlying stream (for example is a socket connection
is terminated without properly closing the TLS tunnel),
the condition cl:stream-error will be signalled.
close-callback A closure of no arguments that politely closes the TLS
connection by sending a close_notify alert.
(defclass address ()
((host :initarg :host
:accessor host)
(port :initarg :port
:accessor port)))
request-stream-to-address (address)
=>octet stream
Specialize this generic function and provide socket functionality.
This is needed by some of the functionality in cl-tls that may need
to open sockets, such as contacting OCSP responders.
For example, to if you are using usockets:
(defmethod cl-tls:request-stream-to-address ((addr cl-tls:address))
(usocket:socket-stream (usocket:socket-connect
(cl-tls:host addr) (cl-tls:port addr)
:protocol :stream
:element-type '(unsigned-byte 8))))
This API will likely change as development continues.
Next: Modules, Previous: Introduction, Up: The cl-tls Reference Manual [Contents][Index]
The main system appears first, followed by any subsystem dependency.
An implementation of the Transport Layer Security Protocols
Brian Kamotho
BSD-3-Clause
Next: Files, Previous: Systems, Up: The cl-tls Reference Manual [Contents][Index]
Modules are listed depth-first from the system components tree.
Next: cl-tls/src/ASN.1, Previous: Modules, Up: Modules [Contents][Index]
license (file).
cl-tls (system).
Next: cl-tls/src/pkcs, Previous: cl-tls/src, Up: Modules [Contents][Index]
src (module).
asn.1.lisp (file).
Next: cl-tls/src/x509, Previous: cl-tls/src/ASN.1, Up: Modules [Contents][Index]
src (module).
Next: cl-tls/src/PEM, Previous: cl-tls/src/pkcs, Up: Modules [Contents][Index]
src (module).
Next: cl-tls/src/tls, Previous: cl-tls/src/x509, Up: Modules [Contents][Index]
src (module).
rfc7468.lisp (file).
Previous: cl-tls/src/PEM, Up: Modules [Contents][Index]
src (module).
Next: Packages, Previous: Modules, Up: The cl-tls Reference Manual [Contents][Index]
Files are sorted by type and then listed depth-first from the systems components trees.
Next: cl-tls/src/package.lisp, Previous: Lisp, Up: Lisp [Contents][Index]
cl-tls (system).
Next: cl-tls/src/utils.lisp, Previous: cl-tls/cl-tls.asd, Up: Lisp [Contents][Index]
src (module).
Next: cl-tls/src/ASN.1/asn.1.lisp, Previous: cl-tls/src/package.lisp, Up: Lisp [Contents][Index]
src (module).
Next: cl-tls/src/pkcs/pkcs1.lisp, Previous: cl-tls/src/utils.lisp, Up: Lisp [Contents][Index]
asn.1 (module).
Next: cl-tls/src/pkcs/pkcs3.lisp, Previous: cl-tls/src/ASN.1/asn.1.lisp, Up: Lisp [Contents][Index]
pkcs (module).
Next: cl-tls/src/pkcs/pkcs5.lisp, Previous: cl-tls/src/pkcs/pkcs1.lisp, Up: Lisp [Contents][Index]
pkcs (module).
Next: cl-tls/src/pkcs/pkcs8.lisp, Previous: cl-tls/src/pkcs/pkcs3.lisp, Up: Lisp [Contents][Index]
pkcs (module).
pbes2-decrypt (function).
Next: cl-tls/src/x509/extensions.lisp, Previous: cl-tls/src/pkcs/pkcs5.lisp, Up: Lisp [Contents][Index]
pkcs (module).
Next: cl-tls/src/x509/x509.lisp, Previous: cl-tls/src/pkcs/pkcs8.lisp, Up: Lisp [Contents][Index]
x509 (module).
Next: cl-tls/src/x509/ocsp.lisp, Previous: cl-tls/src/x509/extensions.lisp, Up: Lisp [Contents][Index]
extensions.lisp (file).
x509 (module).
Next: cl-tls/src/x509/validate.lisp, Previous: cl-tls/src/x509/x509.lisp, Up: Lisp [Contents][Index]
x509.lisp (file).
x509 (module).
Next: cl-tls/src/PEM/rfc7468.lisp, Previous: cl-tls/src/x509/ocsp.lisp, Up: Lisp [Contents][Index]
ocsp.lisp (file).
x509 (module).
Next: cl-tls/src/tls/transport.lisp, Previous: cl-tls/src/x509/validate.lisp, Up: Lisp [Contents][Index]
pem (module).
Next: cl-tls/src/tls/http.lisp, Previous: cl-tls/src/PEM/rfc7468.lisp, Up: Lisp [Contents][Index]
tls (module).
Next: cl-tls/src/tls/ciphersuites.lisp, Previous: cl-tls/src/tls/transport.lisp, Up: Lisp [Contents][Index]
tls (module).
Next: cl-tls/src/tls/alert.lisp, Previous: cl-tls/src/tls/http.lisp, Up: Lisp [Contents][Index]
tls (module).
Next: cl-tls/src/tls/crypto.lisp, Previous: cl-tls/src/tls/ciphersuites.lisp, Up: Lisp [Contents][Index]
tls (module).
Next: cl-tls/src/tls/extensions.lisp, Previous: cl-tls/src/tls/alert.lisp, Up: Lisp [Contents][Index]
tls (module).
Next: cl-tls/src/tls/tls.lisp, Previous: cl-tls/src/tls/crypto.lisp, Up: Lisp [Contents][Index]
tls (module).
Previous: cl-tls/src/tls/extensions.lisp, Up: Lisp [Contents][Index]
tls (module).
Next: Definitions, Previous: Files, Up: The cl-tls Reference Manual [Contents][Index]
Packages are listed by definition order.
CL-TLS is a Common Lisp implemetation of TLS and related specifications
tls
Next: Indexes, Previous: Packages, Up: The cl-tls Reference Manual [Contents][Index]
Definitions are sorted by export status, category, package, and then by lexicographic order.
Next: Internals, Previous: Definitions, Up: Definitions [Contents][Index]
Next: Generic functions, Previous: Public Interface, Up: Public Interface [Contents][Index]
As a server, accept a new connection from a client
Given an asn sequence, return a list of the raw der elements
Create an ASN structure
Initialize a TLS server session with the given arguments
Serialized mode returns the plain contents octets. deserialized mode deserializes the contents octets. Octet strings and Bit Strings are not deserialized
As a client, request a TLS connection from a server
Returns raw data after decrypting and parsing the Encryption-block
Converts data into an encryption block then calls ironclad
Deserialize an x509 certificate from an octet-vector
Next: Standalone methods, Previous: Ordinary functions, Up: Public Interface [Contents][Index]
Next: Conditions, Previous: Generic functions, Up: Public Interface [Contents][Index]
Next: Classes, Previous: Standalone methods, Up: Public Interface [Contents][Index]
Previous: Conditions, Up: Public Interface [Contents][Index]
Previous: Public Interface, Up: Definitions [Contents][Index]
Next: Special variables, Previous: Internals, Up: Internals [Contents][Index]
Next: Symbol macros, Previous: Constants, Up: Internals [Contents][Index]
Next: Macros, Previous: Special variables, Up: Internals [Contents][Index]
Next: Ordinary functions, Previous: Symbol macros, Up: Internals [Contents][Index]
Next: Generic functions, Previous: Macros, Up: Internals [Contents][Index]
Given an asn sequence, return a list of the types of elements in them and their start and end positions in the vector
Converts utcTime or GeneralTime to universal time
Return the least number of octets needed to represent an integer
Check certificate status via OCSP.
If the OCSP request is successful and the status os good, return true.
Return false in every other case
Return the status of the certificate or signal an error
Generates the final secret, given the dh-params and the dh-public-value of the other party
identifiers is a list of lists with identifier-dn identifier-pub-key, and serial number
Read string encapsulated between a prefix and suffix
Decode an OID into a list of integers
Create a digitally-signed-struct
Simple pattern matching for dns names. Only accepts one wildcard subdomain name.
Parse a single DER element from the stream. Maximum length
of integer values is max-int-len
If mode is :serialized, this function returns the plain contents octets
If mode is :deserialized, this function attempt to convert the contents octets
into a lisp object if the class type is universal.
Generate the session keying material
Get application data, take care of renegotiation transparently
Get the contents of the file, either as text if it is text content or as an octet vector otherwise
Decodes the Type and length fields, and returns bounding array indices of the contents octets.
Get the raw der-encoded contents of the issuer field in the certificate
Get the raw der-encoded contents of the public key field in the certificate
Return a series of n octets from a cryptographically secure source
Get the raw octets of the DER-encoded tbsCertificate structure
Return a number representing the seconds that have elapsed since January 1, 1970
Retrieve response body of http transaction
Convert an integer into a network-byte-ordered vector of octets, padded with zeros if the number of octets in int is less than length.
Load a PKCS#8-encoded (rfc5208) private key file
Load a PEM-encoded Private key; PEM-encoded keys should be just base64-encoded PKCS#8 PrivateKeyInfo structures with a header and a footer. But they’re sometimes not, instead being just the privateKey-RSAPrivateKey and DSAPrivateKey.
Generate a Private/Public key pair
Parse DER-encoded distinguishedName sequence
Return a bag of generalNames
Repeatedly read headers from stream
Parse the OID in the SubjectPublicKeyInfo and the parameters
Parse the sequence containing OID + optional parameters
Parse URI into its components as specified in rfc3986
Read a single chunk, or nil upon receiving 0-length header
Handle defragmentation of handshake messages
Remove rfc1423 padding from octet-vector ov
Send an alert record
Split header into its key and value components
Generate a random integer between a and b, inclusive
Compare octet vectors in a time-independent manner
Certificate Path validation, including status checking
Next: Conditions, Previous: Ordinary functions, Up: Internals [Contents][Index]
automatically generated reader method
automatically generated writer method
automatically generated reader method
automatically generated writer method
automatically generated reader method
automatically generated writer method
automatically generated reader method
automatically generated writer method
automatically generated reader method
automatically generated writer method
automatically generated reader method
automatically generated writer method
automatically generated reader method
automatically generated writer method
automatically generated reader method
automatically generated writer method
The hash of the raw octets of the certificate
automatically generated reader method
automatically generated writer method
Attempt a handshake as a server
Attempt a handshake as a client
automatically generated reader method
automatically generated writer method
automatically generated reader method
automatically generated writer method
automatically generated reader method
automatically generated writer method
automatically generated reader method
automatically generated writer method
automatically generated reader method
automatically generated writer method
automatically generated reader method
automatically generated writer method
The raw octets of the certificate
automatically generated reader method
automatically generated writer method
automatically generated reader method
automatically generated reader method
automatically generated writer method
automatically generated writer method
automatically generated reader method
automatically generated writer method
automatically generated reader method
automatically generated writer method
automatically generated reader method
automatically generated writer method
automatically generated reader method
automatically generated writer method
automatically generated reader method
automatically generated writer method
automatically generated reader method
automatically generated writer method
automatically generated reader method
automatically generated writer method
automatically generated reader method
automatically generated writer method
automatically generated reader method
automatically generated writer method
text.
automatically generated reader method
automatically generated writer method
automatically generated reader method
automatically generated writer method
Next: Classes, Previous: Generic functions, Up: Internals [Contents][Index]
error.
text.
error.
common-lisp.
:log
error.
common-lisp.
:log
Next: Types, Previous: Conditions, Up: Internals [Contents][Index]
:client
integer
:p
This slot is read-only.
:host-name
:max-fragment-length
:client-certificate-url
:supported-signature-algorithms
:role
(cl-tls::make-octet-vector :initial-contents #(3 3))
:version
(cl-tls::make-octet-vector :initial-contents #(3 3))
:version
:resumable
:ciphers
:connecting
0
0
:null
:null
(make-instance (quote cl-tls::hello-extensions))
0
0
0
:peer-dns-name
:peer-ip-addresses
:certificate
:ca-certificates
:io-stream
:input-stream
:output-stream
:private-key
(fast-io:make-octet-vector 0)
:class
:server
:role
:class
:certificate
:class
:ca-certificates
:class
:resumable
:class
:ciphers
:class
:class
:private-key
:class
:dh-params
:class
(fast-io:octets-from #(3 3))
:version
:class
:authenticate-client-p
:class
:require-authentication-p
0
:version
:serial
:signature
:issuer
cl-tls::validity
:validity
:subject
cl-tls::algorithm-identifier
:subject-pki
:issuer-unique-id
cl-tls::subject-unique-id
:extensions
:tbs-certificate
:signature-algorithm
:signature
Previous: Definitions, Up: The cl-tls Reference Manual [Contents][Index]
| Jump to: | (
A B C D E F G H I K L M O P R S T V W X |
|---|
| Jump to: | (
A B C D E F G H I K L M O P R S T V W X |
|---|
Next: Data types, Previous: Functions, Up: Indexes [Contents][Index]
| Jump to: | *
+
A B C D E G H I K L M O P R S T V |
|---|
| Jump to: | *
+
A B C D E G H I K L M O P R S T V |
|---|
| Jump to: | A C D E F H L M O P R S T U V X |
|---|
| Jump to: | A C D E F H L M O P R S T U V X |
|---|