This is the cl-tls Reference Manual, generated automatically by Declt version 4.0 beta 2 "William Riker" on Sun Jun 15 04:44:26 2025 GMT+0.
cl-tls/cl-tls.asdcl-tls/src/package.lispcl-tls/src/utils.lispcl-tls/src/ASN.1/asn.1.lispcl-tls/src/pkcs/pkcs1.lispcl-tls/src/pkcs/pkcs3.lispcl-tls/src/pkcs/pkcs5.lispcl-tls/src/pkcs/pkcs8.lispcl-tls/src/x509/extensions.lispcl-tls/src/x509/x509.lispcl-tls/src/x509/ocsp.lispcl-tls/src/x509/validate.lispcl-tls/src/PEM/rfc7468.lispcl-tls/src/tls/transport.lispcl-tls/src/tls/http.lispcl-tls/src/tls/ciphersuites.lispcl-tls/src/tls/alert.lispcl-tls/src/tls/crypto.lispcl-tls/src/tls/extensions.lispcl-tls/src/tls/tls.lispThe main system appears first, followed by any subsystem dependency.
Modules are listed depth-first from the system components tree.
cl-tls/srclicense (file).
cl-tls (system).
package.lisp (file).
utils.lisp (file).
asn.1 (module).
pkcs (module).
x509 (module).
pem (module).
tls (module).
cl-tls/src/pkcssrc (module).
pkcs1.lisp (file).
pkcs3.lisp (file).
pkcs5.lisp (file).
pkcs8.lisp (file).
cl-tls/src/x509src (module).
extensions.lisp (file).
x509.lisp (file).
ocsp.lisp (file).
validate.lisp (file).
cl-tls/src/tlssrc (module).
transport.lisp (file).
http.lisp (file).
ciphersuites.lisp (file).
alert.lisp (file).
crypto.lisp (file).
extensions.lisp (file).
tls.lisp (file).
Files are sorted by type and then listed depth-first from the systems components trees.
cl-tls/cl-tls.asdcl-tls/src/package.lispcl-tls/src/utils.lispcl-tls/src/ASN.1/asn.1.lispcl-tls/src/pkcs/pkcs1.lispcl-tls/src/pkcs/pkcs3.lispcl-tls/src/pkcs/pkcs5.lispcl-tls/src/pkcs/pkcs8.lispcl-tls/src/x509/extensions.lispcl-tls/src/x509/x509.lispcl-tls/src/x509/ocsp.lispcl-tls/src/x509/validate.lispcl-tls/src/PEM/rfc7468.lispcl-tls/src/tls/transport.lispcl-tls/src/tls/http.lispcl-tls/src/tls/ciphersuites.lispcl-tls/src/tls/alert.lispcl-tls/src/tls/crypto.lispcl-tls/src/tls/extensions.lispcl-tls/src/tls/tls.lispcl-tls/src/utils.lispsrc (module).
asn-type-matches-p (function).
bytes-in-int (function).
cat-vectors (function).
dns-match-p (function).
dump-to-file (function).
find-certificates (function).
get-contents (function).
get-random-octets (function).
get-sequence (function).
gmt-unix-time (function).
integer-to-octets (function).
make-octet-vector (function).
octet (type).
octet-vector (type).
octets-to-integer (function).
split-string (function).
stream-octets-to-integer (function).
timing-independent-compare (function).
with-specification-map (macro).
cl-tls/src/ASN.1/asn.1.lispasn.1 (module).
asn-sequence-to-list (function).
asn-serialize (function).
create-asn-sequence (function).
encode-oid (function).
parse-der (function).
*max-int-len* (special variable).
+asn1_application+ (constant).
+asn1_constructed+ (constant).
+asn1_context_specific+ (constant).
+asn1_primitive+ (constant).
+asn1_private+ (constant).
+asn1_universal+ (constant).
asn-sequence-to-indices (function).
asn.1-decoding-error (condition).
create-explicit-tag (function).
decode-oid (function).
from-stream-parse-der (function).
get-der-contents-indices (function).
integer-to-vlq (function).
make-octet-stream (function).
octet-stream (class).
ov-buffer-position (function).
ov-read-byte (generic function).
ov-read-sequence (generic function).
text (reader method).
cl-tls/src/pkcs/pkcs1.lisppkcs (module).
rsa-decrypt (function).
rsa-encrypt (function).
rsassa-pkcs1.5-sign (function).
rsassa-pkcs1.5-verify (function).
emsa-pkcs1-v1.5-encode (function).
fill-random-nonzero-octets (function).
cl-tls/src/pkcs/pkcs3.lisppkcs (module).
compute-shared-secret (function).
dh-params (class).
generate-dh-params (function).
generator (reader method).
make-dh-key-pair (function).
prime-modulus (reader method).
strong-random-range (function).
cl-tls/src/pkcs/pkcs5.lisppkcs (module).
pbes2-decrypt (function).
parse-enc-scheme (function).
parse-kdf (function).
remove-padding (function).
cl-tls/src/pkcs/pkcs8.lisppkcs (module).
load-der-priv-key (function).
load-pem-priv-key (function).
load-priv-key (function).
parse-priv-key (function).
cl-tls/src/x509/extensions.lispx509 (module).
parse-access-description (function).
parse-general-name (function).
parse-general-names (function).
parse-qualifier (function).
process-extension (generic function).
cl-tls/src/x509/x509.lispextensions.lisp (file).
x509 (module).
print-object (method).
x509-decode (function).
+md2withrsaencryption+ (constant).
+md5withrsaencryption+ (constant).
+sha1withrsaencryption+ (constant).
+sha224withrsaencryption+ (constant).
+sha256withrsaencryption+ (constant).
+sha384withrsaencryption+ (constant).
+sha512withrsaencryption+ (constant).
asn-time-to-universal-time (function).
authority-information-access (reader method).
(setf authority-information-access) (writer method).
authority-key-identifier (reader method).
(setf authority-key-identifier) (writer method).
basic-constraints (reader method).
(setf basic-constraints) (writer method).
bind-tbs (macro).
certificate-policies (reader method).
(setf certificate-policies) (writer method).
crl-distribution-points (reader method).
(setf crl-distribution-points) (writer method).
extended-key-usage (reader method).
(setf extended-key-usage) (writer method).
extensions (reader method).
(setf extensions) (writer method).
get-raw-tbs (function).
hash (reader method).
(setf hash) (writer method).
issuer (reader method).
(setf issuer) (writer method).
issuer-alternative-name (reader method).
(setf issuer-alternative-name) (writer method).
issuer-unique-id (reader method).
(setf issuer-unique-id) (writer method).
key-usage (reader method).
(setf key-usage) (writer method).
parse-directory-name (function).
parse-pka (function).
parse-pub-key (function).
parse-signature-algorithm (function).
parse-tbs-certificate (function).
policy-mappings (reader method).
(setf policy-mappings) (writer method).
process-extensions (function).
raw (reader method).
(setf raw) (writer method).
serial (reader method).
(setf serial) (writer method).
signature (reader method).
signature (reader method).
(setf signature) (writer method).
(setf signature) (writer method).
signature-algorithm (reader method).
(setf signature-algorithm) (writer method).
subject (reader method).
(setf subject) (writer method).
subject-alternative-name (reader method).
(setf subject-alternative-name) (writer method).
subject-information-access (reader method).
(setf subject-information-access) (writer method).
subject-key-identifier (reader method).
(setf subject-key-identifier) (writer method).
subject-pki (reader method).
(setf subject-pki) (writer method).
subject-unique-id (reader method).
(setf subject-unique-id) (writer method).
tbs-certificate (reader method).
(setf tbs-certificate) (writer method).
tbs-certificate (class).
text (reader method).
time-valid-p (function).
validity (reader method).
(setf validity) (writer method).
verify-signature (function).
version (reader method).
(setf version) (writer method).
x509-decoding-error (condition).
x509-extension (class).
x509v3-certificate (class).
cl-tls/src/x509/ocsp.lispx509.lisp (file).
x509 (module).
*id-ad-ocsp* (special variable).
check-ocsp (function).
create-cert-id (function).
create-request (function).
create-tbs-request (function).
log-info (reader method).
(setf log-info) (writer method).
ocsp-catch-asn-error (macro).
ocsp-error (condition).
parse-response-data (function).
prepare-ocsp-request (function).
verify-ocsp-signature (function).
cl-tls/src/x509/validate.lispocsp.lisp (file).
x509 (module).
check-certificate-status (function).
get-issuer-octets (function).
get-pubkey-octets (function).
validate (function).
cl-tls/src/PEM/rfc7468.lisppem (module).
decapsulate (function).
parse-pem (function).
cl-tls/src/tls/transport.lisptls (module).
address (class).
host (reader method).
(setf host) (writer method).
port (reader method).
(setf port) (writer method).
request-stream-to-address (generic function).
cl-tls/src/tls/http.lisptls (module).
host (reader method).
(setf host) (writer method).
port (reader method).
(setf port) (writer method).
*crlf* (special variable).
*max-content-length* (special variable).
header-value (function).
http-error (condition).
http-request (function).
log-info (reader method).
(setf log-info) (writer method).
parse-headers-from-stream (function).
parse-uri (function).
path (reader method).
(setf path) (writer method).
read-chunk (function).
read-chunked-response (function).
read-header (function).
scheme (reader method).
(setf scheme) (writer method).
split-header (function).
trim-space (function).
uri (class).
cl-tls/src/tls/ciphersuites.lisptls (module).
*supported-cipher-suites* (special variable).
+3des-block-size+ (special variable).
+3des-encryption-suites+ (special variable).
+aes-128-ciphers+ (special variable).
+aes-256-ciphers+ (special variable).
+aes-block-size+ (special variable).
+aes-encryption-suites+ (special variable).
+anon-authentication-suites+ (special variable).
+cbc-mode-ciphers+ (special variable).
+dh-key-exchange-suites+ (special variable).
+dhe-key-exchange-suites+ (special variable).
+dss-authentication-suites+ (special variable).
+md5-ciphers+ (special variable).
+rc4-encryption-suites+ (special variable).
+rsa-authentication-suites+ (special variable).
+rsa-key-exchange-suites+ (special variable).
+sha1-ciphers+ (special variable).
+sha256-ciphers+ (special variable).
+tls_dh_anon_with_3des_ede_cbc_sha+ (special variable).
+tls_dh_anon_with_aes_128_cbc_sha+ (special variable).
+tls_dh_anon_with_aes_128_cbc_sha256+ (special variable).
+tls_dh_anon_with_aes_256_cbc_sha+ (special variable).
+tls_dh_anon_with_aes_256_cbc_sha256+ (special variable).
+tls_dh_anon_with_rc4_128_md5+ (special variable).
+tls_dh_dss_with_3des_ede_cbc_sha+ (special variable).
+tls_dh_dss_with_aes_128_cbc_sha+ (special variable).
+tls_dh_dss_with_aes_128_cbc_sha256+ (special variable).
+tls_dh_dss_with_aes_256_cbc_sha+ (special variable).
+tls_dh_dss_with_aes_256_cbc_sha256+ (special variable).
+tls_dh_rsa_with_3des_ede_cbc_sha+ (special variable).
+tls_dh_rsa_with_aes_128_cbc_sha+ (special variable).
+tls_dh_rsa_with_aes_128_cbc_sha256+ (special variable).
+tls_dh_rsa_with_aes_256_cbc_sha+ (special variable).
+tls_dh_rsa_with_aes_256_cbc_sha256+ (special variable).
+tls_dhe_dss_with_3des_ede_cbc_sha+ (special variable).
+tls_dhe_dss_with_aes_128_cbc_sha+ (special variable).
+tls_dhe_dss_with_aes_128_cbc_sha256+ (special variable).
+tls_dhe_dss_with_aes_256_cbc_sha+ (special variable).
+tls_dhe_dss_with_aes_256_cbc_sha256+ (special variable).
+tls_dhe_rsa_with_3des_ede_cbc_sha+ (special variable).
+tls_dhe_rsa_with_aes_128_cbc_sha+ (special variable).
+tls_dhe_rsa_with_aes_128_cbc_sha256+ (special variable).
+tls_dhe_rsa_with_aes_256_cbc_sha+ (special variable).
+tls_dhe_rsa_with_aes_256_cbc_sha256+ (special variable).
+tls_rsa_with_3des_ede_cbc_sha+ (special variable).
+tls_rsa_with_aes_128_cbc_sha+ (special variable).
+tls_rsa_with_aes_128_cbc_sha256+ (special variable).
+tls_rsa_with_aes_256_cbc_sha+ (special variable).
+tls_rsa_with_aes_256_cbc_sha256+ (special variable).
+tls_rsa_with_null_md5+ (special variable).
+tls_rsa_with_null_sha+ (special variable).
+tls_rsa_with_null_sha256+ (special variable).
+tls_rsa_with_rc4_128_md5+ (special variable).
+tls_rsa_with_rc4_128_sha+ (special variable).
cl-tls/src/tls/alert.lisptls (module).
+access-denied+ (constant).
+bad-certificate+ (constant).
+bad-record-mac+ (constant).
+certificate-expired+ (constant).
+certificate-revoked+ (constant).
+certificate-unknown+ (constant).
+close-notify+ (constant).
+decode-error+ (constant).
+decompression-failure+ (constant).
+decrypt-error+ (constant).
+decryption-failed-reserved+ (constant).
+export-restriction-reserved+ (constant).
+fatal+ (constant).
+handshake-failure+ (constant).
+illegal-parameter+ (constant).
+insufficient-security+ (constant).
+internal-error+ (constant).
+no-certificate-reserved+ (constant).
+no-renegotiation+ (constant).
+protocol-version+ (constant).
+record-overflow+ (constant).
+unexpected-message+ (constant).
+unknown-ca+ (constant).
+unsupported-certificate+ (constant).
+unsupported-extension+ (constant).
+user-canceled+ (constant).
+warning+ (constant).
alert-record-to-text (function).
send-alert (function).
cl-tls/src/tls/crypto.lisptls (module).
digitally-sign (function).
endpoint-decryption-key (symbol macro).
endpoint-encryption-key (symbol macro).
gen-key-material (function).
p-hash (function).
prf (function).
sign-dh-params (function).
verify-signed-data (function).
verify-signed-params (function).
cl-tls/src/tls/extensions.lisptls (module).
create-cert-status-request (function).
create-sni (function).
pack-extension (function).
parse-extension (generic function).
cl-tls/src/tls/tls.lisptls (module).
accept-tunnel (function).
initialize-listener (function).
request-tunnel (function).
tls-error (condition).
tls-stream-error (condition).
*certificate-request-msg* (special variable).
*debug-stream* (special variable).
*log-level* (special variable).
*max-certificate-chain-length* (special variable).
*max-fragment-length* (special variable).
*version* (special variable).
+alert+ (constant).
+application-data+ (constant).
+certificate+ (constant).
+certificate-request+ (constant).
+certificate-verify+ (constant).
+change-cipher-spec+ (constant).
+client-hello+ (constant).
+client-key-exchange+ (constant).
+finished+ (constant).
+handshake+ (constant).
+hello-request+ (constant).
+server-hello+ (constant).
+server-hello-done+ (constant).
+server-key-exchange+ (constant).
add-handshake-header (function).
alert (reader method).
(setf alert) (writer method).
calculate-mac (function).
calculate-verification-mac (function).
cipher-suite-supported-p (function).
ciphertext-to-compressed (generic function).
client-certificate-url (reader method).
(setf client-certificate-url) (writer method).
client-session (class).
create-cipher-vector (function).
create-listener-session (function).
create-session (function).
decrypt (generic function).
dhparams-from-key-file (function).
encrypt (generic function).
encrypt-and-send (function).
endpoint-mac-decryption-key (symbol macro).
endpoint-mac-encryption-key (symbol macro).
exception (condition).
get-application-data (function).
get-ca-certificates (function).
get-change-cipher-spec (function).
get-dh-params (function).
get-handshake-message (function).
get-private-key (function).
get-record (generic function).
get-session-id (function).
handle-handshake (generic function).
handshake-messages (reader method).
(setf handshake-messages) (writer method).
hello-extensions (class).
host-name (reader method).
(setf host-name) (writer method).
initiate-connection (generic function).
log-info (reader method).
(setf log-info) (writer method).
max-fragment-length (reader method).
(setf max-fragment-length) (writer method).
parse-cipher-suite (function).
pre-master-secret (reader method).
(setf pre-master-secret) (writer method).
pub-key (reader method).
(setf pub-key) (writer method).
reassemble-handshake-message (function).
send (generic function).
send-change-cipher-spec (generic function).
send-handshake (generic function).
send-record (generic function).
server-session (class).
session (class).
shared-session-slots (class).
supported-signature-algorithms (reader method).
(setf supported-signature-algorithms) (writer method).
symbol-to-suite-list (function).
text (reader method).
(setf text) (writer method).
Packages are listed by definition order.
cl-tlsCL-TLS is a Common Lisp implemetation of TLS and related specifications
tls
alexandria.
common-lisp.
accept-tunnel (function).
address (class).
asn-sequence-to-list (function).
asn-serialize (function).
create-asn-sequence (function).
encode-oid (function).
host (generic reader).
(setf host) (generic writer).
initialize-listener (function).
parse-der (function).
pbes2-decrypt (function).
port (generic reader).
(setf port) (generic writer).
request-stream-to-address (generic function).
request-tunnel (function).
rsa-decrypt (function).
rsa-encrypt (function).
rsassa-pkcs1.5-sign (function).
rsassa-pkcs1.5-verify (function).
tls-error (condition).
tls-stream-error (condition).
x509-decode (function).
*certificate-request-msg* (special variable).
*crlf* (special variable).
*debug-stream* (special variable).
*id-ad-ocsp* (special variable).
*log-level* (special variable).
*max-certificate-chain-length* (special variable).
*max-content-length* (special variable).
*max-fragment-length* (special variable).
*max-int-len* (special variable).
*supported-cipher-suites* (special variable).
*version* (special variable).
+3des-block-size+ (special variable).
+3des-encryption-suites+ (special variable).
+access-denied+ (constant).
+aes-128-ciphers+ (special variable).
+aes-256-ciphers+ (special variable).
+aes-block-size+ (special variable).
+aes-encryption-suites+ (special variable).
+alert+ (constant).
+anon-authentication-suites+ (special variable).
+application-data+ (constant).
+asn1_application+ (constant).
+asn1_constructed+ (constant).
+asn1_context_specific+ (constant).
+asn1_primitive+ (constant).
+asn1_private+ (constant).
+asn1_universal+ (constant).
+bad-certificate+ (constant).
+bad-record-mac+ (constant).
+cbc-mode-ciphers+ (special variable).
+certificate+ (constant).
+certificate-expired+ (constant).
+certificate-request+ (constant).
+certificate-revoked+ (constant).
+certificate-unknown+ (constant).
+certificate-verify+ (constant).
+change-cipher-spec+ (constant).
+client-hello+ (constant).
+client-key-exchange+ (constant).
+close-notify+ (constant).
+decode-error+ (constant).
+decompression-failure+ (constant).
+decrypt-error+ (constant).
+decryption-failed-reserved+ (constant).
+dh-key-exchange-suites+ (special variable).
+dhe-key-exchange-suites+ (special variable).
+dss-authentication-suites+ (special variable).
+export-restriction-reserved+ (constant).
+fatal+ (constant).
+finished+ (constant).
+handshake+ (constant).
+handshake-failure+ (constant).
+hello-request+ (constant).
+illegal-parameter+ (constant).
+insufficient-security+ (constant).
+internal-error+ (constant).
+md2withrsaencryption+ (constant).
+md5-ciphers+ (special variable).
+md5withrsaencryption+ (constant).
+no-certificate-reserved+ (constant).
+no-renegotiation+ (constant).
+protocol-version+ (constant).
+rc4-encryption-suites+ (special variable).
+record-overflow+ (constant).
+rsa-authentication-suites+ (special variable).
+rsa-key-exchange-suites+ (special variable).
+server-hello+ (constant).
+server-hello-done+ (constant).
+server-key-exchange+ (constant).
+sha1-ciphers+ (special variable).
+sha1withrsaencryption+ (constant).
+sha224withrsaencryption+ (constant).
+sha256-ciphers+ (special variable).
+sha256withrsaencryption+ (constant).
+sha384withrsaencryption+ (constant).
+sha512withrsaencryption+ (constant).
+tls_dh_anon_with_3des_ede_cbc_sha+ (special variable).
+tls_dh_anon_with_aes_128_cbc_sha+ (special variable).
+tls_dh_anon_with_aes_128_cbc_sha256+ (special variable).
+tls_dh_anon_with_aes_256_cbc_sha+ (special variable).
+tls_dh_anon_with_aes_256_cbc_sha256+ (special variable).
+tls_dh_anon_with_rc4_128_md5+ (special variable).
+tls_dh_dss_with_3des_ede_cbc_sha+ (special variable).
+tls_dh_dss_with_aes_128_cbc_sha+ (special variable).
+tls_dh_dss_with_aes_128_cbc_sha256+ (special variable).
+tls_dh_dss_with_aes_256_cbc_sha+ (special variable).
+tls_dh_dss_with_aes_256_cbc_sha256+ (special variable).
+tls_dh_rsa_with_3des_ede_cbc_sha+ (special variable).
+tls_dh_rsa_with_aes_128_cbc_sha+ (special variable).
+tls_dh_rsa_with_aes_128_cbc_sha256+ (special variable).
+tls_dh_rsa_with_aes_256_cbc_sha+ (special variable).
+tls_dh_rsa_with_aes_256_cbc_sha256+ (special variable).
+tls_dhe_dss_with_3des_ede_cbc_sha+ (special variable).
+tls_dhe_dss_with_aes_128_cbc_sha+ (special variable).
+tls_dhe_dss_with_aes_128_cbc_sha256+ (special variable).
+tls_dhe_dss_with_aes_256_cbc_sha+ (special variable).
+tls_dhe_dss_with_aes_256_cbc_sha256+ (special variable).
+tls_dhe_rsa_with_3des_ede_cbc_sha+ (special variable).
+tls_dhe_rsa_with_aes_128_cbc_sha+ (special variable).
+tls_dhe_rsa_with_aes_128_cbc_sha256+ (special variable).
+tls_dhe_rsa_with_aes_256_cbc_sha+ (special variable).
+tls_dhe_rsa_with_aes_256_cbc_sha256+ (special variable).
+tls_rsa_with_3des_ede_cbc_sha+ (special variable).
+tls_rsa_with_aes_128_cbc_sha+ (special variable).
+tls_rsa_with_aes_128_cbc_sha256+ (special variable).
+tls_rsa_with_aes_256_cbc_sha+ (special variable).
+tls_rsa_with_aes_256_cbc_sha256+ (special variable).
+tls_rsa_with_null_md5+ (special variable).
+tls_rsa_with_null_sha+ (special variable).
+tls_rsa_with_null_sha256+ (special variable).
+tls_rsa_with_rc4_128_md5+ (special variable).
+tls_rsa_with_rc4_128_sha+ (special variable).
+unexpected-message+ (constant).
+unknown-ca+ (constant).
+unsupported-certificate+ (constant).
+unsupported-extension+ (constant).
+user-canceled+ (constant).
+warning+ (constant).
add-handshake-header (function).
alert (generic reader).
(setf alert) (generic writer).
alert-record-to-text (function).
asn-sequence-to-indices (function).
asn-time-to-universal-time (function).
asn-type-matches-p (function).
asn.1-decoding-error (condition).
authority-information-access (generic reader).
(setf authority-information-access) (generic writer).
authority-key-identifier (generic reader).
(setf authority-key-identifier) (generic writer).
basic-constraints (generic reader).
(setf basic-constraints) (generic writer).
bind-tbs (macro).
bytes-in-int (function).
calculate-mac (function).
calculate-verification-mac (function).
cat-vectors (function).
certificate-policies (generic reader).
(setf certificate-policies) (generic writer).
check-certificate-status (function).
check-ocsp (function).
cipher-suite-supported-p (function).
ciphertext-to-compressed (generic function).
client-certificate-url (generic reader).
(setf client-certificate-url) (generic writer).
client-session (class).
compute-shared-secret (function).
create-cert-id (function).
create-cert-status-request (function).
create-cipher-vector (function).
create-explicit-tag (function).
create-listener-session (function).
create-request (function).
create-session (function).
create-sni (function).
create-tbs-request (function).
crl-distribution-points (generic reader).
(setf crl-distribution-points) (generic writer).
decapsulate (function).
decode-oid (function).
decrypt (generic function).
dh-params (class).
dhparams-from-key-file (function).
digitally-sign (function).
dns-match-p (function).
dump-to-file (function).
emsa-pkcs1-v1.5-encode (function).
encrypt (generic function).
encrypt-and-send (function).
endpoint-decryption-key (symbol macro).
endpoint-encryption-key (symbol macro).
endpoint-mac-decryption-key (symbol macro).
endpoint-mac-encryption-key (symbol macro).
exception (condition).
extended-key-usage (generic reader).
(setf extended-key-usage) (generic writer).
extensions (generic reader).
(setf extensions) (generic writer).
fill-random-nonzero-octets (function).
find-certificates (function).
from-stream-parse-der (function).
gen-key-material (function).
generate-dh-params (function).
generator (generic reader).
get-application-data (function).
get-ca-certificates (function).
get-change-cipher-spec (function).
get-contents (function).
get-der-contents-indices (function).
get-dh-params (function).
get-handshake-message (function).
get-issuer-octets (function).
get-private-key (function).
get-pubkey-octets (function).
get-random-octets (function).
get-raw-tbs (function).
get-record (generic function).
get-sequence (function).
get-session-id (function).
gmt-unix-time (function).
handle-handshake (generic function).
handshake-messages (generic reader).
(setf handshake-messages) (generic writer).
hash (generic reader).
(setf hash) (generic writer).
header-value (function).
hello-extensions (class).
host-name (generic reader).
(setf host-name) (generic writer).
http-error (condition).
http-request (function).
initiate-connection (generic function).
integer-to-octets (function).
integer-to-vlq (function).
issuer (generic reader).
(setf issuer) (generic writer).
issuer-alternative-name (generic reader).
(setf issuer-alternative-name) (generic writer).
issuer-unique-id (generic reader).
(setf issuer-unique-id) (generic writer).
key-usage (generic reader).
(setf key-usage) (generic writer).
load-der-priv-key (function).
load-pem-priv-key (function).
load-priv-key (function).
log-info (generic reader).
(setf log-info) (generic writer).
make-dh-key-pair (function).
make-octet-stream (function).
make-octet-vector (function).
max-fragment-length (generic reader).
(setf max-fragment-length) (generic writer).
ocsp-catch-asn-error (macro).
ocsp-error (condition).
octet (type).
octet-stream (class).
octet-vector (type).
octets-to-integer (function).
ov-buffer-position (function).
ov-read-byte (generic function).
ov-read-sequence (generic function).
p-hash (function).
pack-extension (function).
parse-access-description (function).
parse-cipher-suite (function).
parse-directory-name (function).
parse-enc-scheme (function).
parse-extension (generic function).
parse-general-name (function).
parse-general-names (function).
parse-headers-from-stream (function).
parse-kdf (function).
parse-pem (function).
parse-pka (function).
parse-priv-key (function).
parse-pub-key (function).
parse-qualifier (function).
parse-response-data (function).
parse-signature-algorithm (function).
parse-tbs-certificate (function).
parse-uri (function).
path (generic reader).
(setf path) (generic writer).
policy-mappings (generic reader).
(setf policy-mappings) (generic writer).
pre-master-secret (generic reader).
(setf pre-master-secret) (generic writer).
prepare-ocsp-request (function).
prf (function).
prime-modulus (generic reader).
process-extension (generic function).
process-extensions (function).
pub-key (generic reader).
(setf pub-key) (generic writer).
raw (generic reader).
(setf raw) (generic writer).
read-chunk (function).
read-chunked-response (function).
read-header (function).
reassemble-handshake-message (function).
remove-padding (function).
scheme (generic reader).
(setf scheme) (generic writer).
send (generic function).
send-alert (function).
send-change-cipher-spec (generic function).
send-handshake (generic function).
send-record (generic function).
serial (generic reader).
(setf serial) (generic writer).
server-session (class).
session (class).
shared-session-slots (class).
sign-dh-params (function).
signature (generic reader).
(setf signature) (generic writer).
signature-algorithm (generic reader).
(setf signature-algorithm) (generic writer).
split-header (function).
split-string (function).
stream-octets-to-integer (function).
strong-random-range (function).
subject (generic reader).
(setf subject) (generic writer).
subject-alternative-name (generic reader).
(setf subject-alternative-name) (generic writer).
subject-information-access (generic reader).
(setf subject-information-access) (generic writer).
subject-key-identifier (generic reader).
(setf subject-key-identifier) (generic writer).
subject-pki (generic reader).
(setf subject-pki) (generic writer).
subject-unique-id (generic reader).
(setf subject-unique-id) (generic writer).
supported-signature-algorithms (generic reader).
(setf supported-signature-algorithms) (generic writer).
symbol-to-suite-list (function).
tbs-certificate (generic reader).
(setf tbs-certificate) (generic writer).
tbs-certificate (class).
text (generic reader).
(setf text) (generic writer).
time-valid-p (function).
timing-independent-compare (function).
trim-space (function).
uri (class).
validate (function).
validity (generic reader).
(setf validity) (generic writer).
verify-ocsp-signature (function).
verify-signature (function).
verify-signed-data (function).
verify-signed-params (function).
version (generic reader).
(setf version) (generic writer).
with-specification-map (macro).
x509-decoding-error (condition).
x509-extension (class).
x509v3-certificate (class).
Definitions are sorted by export status, category, package, and then by lexicographic order.
As a server, accept a new connection from a client
Given an asn sequence, return a list of the raw der elements
Create an ASN structure
Initialize a TLS server session with the given arguments
Serialized mode returns the plain contents octets. deserialized mode deserializes the contents octets. Octet strings and Bit Strings are not deserialized
As a client, request a TLS connection from a server
Returns raw data after decrypting and parsing the Encryption-block
Converts data into an encryption block then calls ironclad
Deserialize an x509 certificate from an octet-vector
Given an asn sequence, return a list of the types of elements in them and their start and end positions in the vector
Converts utcTime or GeneralTime to universal time
Return the least number of octets needed to represent an integer
Check certificate status via OCSP.
If the OCSP request is successful and the status os good, return true.
Return false in every other case
Return the status of the certificate or signal an error
Generates the final secret, given the dh-params and the dh-public-value of the other party
identifiers is a list of lists with identifier-dn identifier-pub-key, and serial number
Read string encapsulated between a prefix and suffix
Decode an OID into a list of integers
Create a digitally-signed-struct
Simple pattern matching for dns names. Only accepts one wildcard subdomain name.
Parse a single DER element from the stream. Maximum length
of integer values is max-int-len
If mode is :serialized, this function returns the plain contents octets
If mode is :deserialized, this function attempt to convert the contents octets
into a lisp object if the class type is universal.
Generate the session keying material
Get application data, take care of renegotiation transparently
Get the contents of the file, either as text if it is text content or as an octet vector otherwise
Decodes the Type and length fields, and returns bounding array indices of the contents octets.
Get the raw der-encoded contents of the issuer field in the certificate
Get the raw der-encoded contents of the public key field in the certificate
Return a series of n octets from a cryptographically secure source
Get the raw octets of the DER-encoded tbsCertificate structure
Return a number representing the seconds that have elapsed since January 1, 1970
Retrieve response body of http transaction
Convert an integer into a network-byte-ordered vector of octets, padded with zeros if the number of octets in int is less than length.
Load a PKCS#8-encoded (rfc5208) private key file
Load a PEM-encoded Private key; PEM-encoded keys should be just base64-encoded PKCS#8 PrivateKeyInfo structures with a header and a footer. But they’re sometimes not, instead being just the privateKey-RSAPrivateKey and DSAPrivateKey.
Generate a Private/Public key pair
Parse DER-encoded distinguishedName sequence
Return a bag of generalNames
Repeatedly read headers from stream
Parse the OID in the SubjectPublicKeyInfo and the parameters
Parse the sequence containing OID + optional parameters
Parse URI into its components as specified in rfc3986
Read a single chunk, or nil upon receiving 0-length header
Handle defragmentation of handshake messages
Remove rfc1423 padding from octet-vector ov
Send an alert record
Split header into its key and value components
Generate a random integer between a and b, inclusive
Compare octet vectors in a time-independent manner
Certificate Path validation, including status checking
x509-extension)) ¶automatically generated reader method
x509-extension)) ¶automatically generated writer method
x509-extension)) ¶automatically generated reader method
x509-extension)) ¶automatically generated writer method
x509-extension)) ¶automatically generated reader method
x509-extension)) ¶automatically generated writer method
x509-extension)) ¶automatically generated reader method
x509-extension)) ¶automatically generated writer method
hello-extensions)) ¶automatically generated reader method
hello-extensions)) ¶automatically generated writer method
x509-extension)) ¶automatically generated reader method
x509-extension)) ¶automatically generated writer method
x509-extension)) ¶automatically generated reader method
x509-extension)) ¶automatically generated writer method
tbs-certificate)) ¶automatically generated reader method
tbs-certificate)) ¶automatically generated writer method
(eql :server-hello))) ¶(eql :certificate))) ¶(eql :server-hello-done))) ¶(eql :certificate-request))) ¶(eql :finished))) ¶(eql :server-key-exchange))) ¶(eql :client-hello))) ¶(eql :certificate-verify))) ¶(eql :client-key-exchange))) ¶x509v3-certificate)) ¶x509v3-certificate)) ¶The hash of the raw octets of the certificate
hello-extensions)) ¶automatically generated reader method
hello-extensions)) ¶automatically generated writer method
server-session) &key skip-hello) ¶Attempt a handshake as a server
client-session) &key) ¶Attempt a handshake as a client
tbs-certificate)) ¶automatically generated reader method
tbs-certificate)) ¶automatically generated writer method
x509-extension)) ¶automatically generated reader method
x509-extension)) ¶automatically generated writer method
tbs-certificate)) ¶automatically generated reader method
tbs-certificate)) ¶automatically generated writer method
x509-extension)) ¶automatically generated reader method
x509-extension)) ¶automatically generated writer method
exception)) ¶exception)) ¶http-error)) ¶http-error)) ¶ocsp-error)) ¶ocsp-error)) ¶hello-extensions)) ¶automatically generated reader method
hello-extensions)) ¶automatically generated writer method
octet-stream)) ¶octet-stream)) ¶(eql :status-request))) ¶(eql :truncated-hmac))) ¶(eql :trusted-ca-keys))) ¶(eql :signature-algorithm))) ¶(eql :client-certificate-url))) ¶(eql :max-fragment-length))) ¶(eql :server-name))) ¶x509-extension)) ¶automatically generated reader method
x509-extension)) ¶automatically generated writer method
(eql :subject-information-access))) ¶(eql :authority-information-access))) ¶(eql :freshest-crl))) ¶(eql :inhibit-any-policy))) ¶(eql :crl-distribution-points))) ¶(eql :extended-key-usage))) ¶(eql :policy-constraints))) ¶(eql :name-constraints))) ¶(eql :basic-constraints))) ¶(eql :policy-mappings))) ¶(eql :certificate-policies))) ¶(eql :key-usage))) ¶(eql :subject-key-identifier))) ¶(eql :authority-key-identifier))) ¶(eql :issuer-alternative-name))) ¶(eql :subject-alternative-name))) ¶x509v3-certificate)) ¶x509v3-certificate)) ¶The raw octets of the certificate
tbs-certificate)) ¶automatically generated reader method
tbs-certificate)) ¶automatically generated writer method
x509v3-certificate)) ¶automatically generated reader method
tbs-certificate)) ¶automatically generated reader method
x509v3-certificate)) ¶automatically generated writer method
tbs-certificate)) ¶automatically generated writer method
x509v3-certificate)) ¶automatically generated reader method
x509v3-certificate)) ¶automatically generated writer method
tbs-certificate)) ¶automatically generated reader method
tbs-certificate)) ¶automatically generated writer method
x509-extension)) ¶automatically generated reader method
x509-extension)) ¶automatically generated writer method
x509-extension)) ¶automatically generated reader method
x509-extension)) ¶automatically generated writer method
x509-extension)) ¶automatically generated reader method
x509-extension)) ¶automatically generated writer method
tbs-certificate)) ¶automatically generated reader method
tbs-certificate)) ¶automatically generated writer method
tbs-certificate)) ¶automatically generated reader method
tbs-certificate)) ¶automatically generated writer method
hello-extensions)) ¶automatically generated reader method
hello-extensions)) ¶automatically generated writer method
x509v3-certificate)) ¶automatically generated reader method
x509v3-certificate)) ¶automatically generated writer method
x509-decoding-error)) ¶asn.1-decoding-error)) ¶text.
tbs-certificate)) ¶automatically generated reader method
tbs-certificate)) ¶automatically generated writer method
tbs-certificate)) ¶automatically generated reader method
tbs-certificate)) ¶automatically generated writer method
error.
text.
error.
common-lisp.
:log
error.
common-lisp.
:log
:client
integer
:p
This slot is read-only.
:host-name
:max-fragment-length
:client-certificate-url
:supported-signature-algorithms
ciphertext-to-compressed.
decrypt.
encrypt.
get-record.
(setf handshake-messages).
handshake-messages.
(setf pre-master-secret).
pre-master-secret.
(setf pub-key).
pub-key.
send.
send-handshake.
send-handshake.
send-handshake.
send-handshake.
send-handshake.
send-handshake.
send-handshake.
send-handshake.
send-handshake.
send-handshake.
send-record.
:role
(cl-tls::make-octet-vector :initial-contents #(3 3))
:version
(cl-tls::make-octet-vector :initial-contents #(3 3))
:version
:resumable
:ciphers
:connecting
0
0
:null
:null
(make-instance (quote cl-tls::hello-extensions))
0
0
0
:peer-dns-name
:peer-ip-addresses
:certificate
:ca-certificates
:io-stream
:input-stream
:output-stream
:private-key
(fast-io:make-octet-vector 0)
:class
:server
:role
:class
:certificate
:class
:ca-certificates
:class
:resumable
:class
:ciphers
:class
:class
:private-key
:class
:dh-params
:class
(fast-io:octets-from #(3 3))
:version
:class
:authenticate-client-p
:class
:require-authentication-p
(setf extensions).
extensions.
(setf issuer).
issuer.
(setf issuer-unique-id).
issuer-unique-id.
(setf serial).
serial.
(setf signature).
signature.
(setf subject).
subject.
(setf subject-pki).
subject-pki.
(setf subject-unique-id).
subject-unique-id.
(setf validity).
validity.
(setf version).
version.
0
:version
:serial
:signature
:issuer
:validity
:subject
:subject-pki
:issuer-unique-id
cl-tls::subject-unique-id
:extensions
(setf authority-information-access).
authority-information-access.
(setf authority-key-identifier).
authority-key-identifier.
(setf basic-constraints).
basic-constraints.
(setf certificate-policies).
certificate-policies.
(setf crl-distribution-points).
crl-distribution-points.
(setf extended-key-usage).
extended-key-usage.
(setf issuer-alternative-name).
issuer-alternative-name.
(setf key-usage).
key-usage.
(setf policy-mappings).
policy-mappings.
(setf subject-alternative-name).
subject-alternative-name.
(setf subject-information-access).
subject-information-access.
(setf subject-key-identifier).
subject-key-identifier.
:tbs-certificate
:signature-algorithm
:signature
| Jump to: | (
A B C D E F G H I K L M O P R S T V W X |
|---|
| Jump to: | (
A B C D E F G H I K L M O P R S T V W X |
|---|
| Jump to: | *
+
A B C D E G H I K L M O P R S T V |
|---|
| Jump to: | *
+
A B C D E G H I K L M O P R S T V |
|---|
| Jump to: | A C D E F H L M O P R S T U V X |
|---|
| Jump to: | A C D E F H L M O P R S T U V X |
|---|