Package org.bouncycastle.tls
A low-level TLS/DTLS API.
-
Interface Summary Interface Description DatagramReceiver DatagramSender DatagramTransport Base interface for an object sending and receiving DTLS data.TlsAuthentication Base interface to provide TLS authentication credentials.TlsClient Interface describing a TLS client endpoint.TlsClientContext Marker interface to distinguish a TLS client context.TlsCloseable TlsContext Base interface for a TLS context implementation.TlsCredentialedAgreement Support interface for generating a secret based on the credentials sent by a TLS peer.TlsCredentialedDecryptor Base interface for a class that decrypts TLS secrets.TlsCredentialedSigner Support interface for generating a signature based on our private credentials.TlsCredentials Base interface for interfaces/classes carrying TLS credentials.TlsDHGroupVerifier Interface for verifying explicit Diffie-Hellman group parameters.TlsHandshakeHash Base interface for an object that can calculate a handshake hash.TlsHeartbeat TlsKeyExchange A generic interface for key exchange implementations in (D)TLS.TlsKeyExchangeFactory Interface for a key exchange factory offering a variety of specific algorithms.TlsObjectIdentifiers Object Identifiers associated with TLS extensions.TlsPeer Base interface for a (D)TLS endpoint.TlsPSKIdentity Processor interface for a PSK identity.TlsPSKIdentityManager Base interface for an object that can process a PSK identity.TlsServer Interface describing a TLS server endpoint.TlsServerCertificate Server certificate carrier interface.TlsServerContext Marker interface to distinguish a TLS server context.TlsSession Base interface for a carrier object for a TLS session.TlsSRPConfigVerifier Interface for verifying SRP config needs to conform to.TlsSRPIdentity Processor interface for an SRP identity.TlsSRPIdentityManager Base interface for an object that can return login parameters from an SRP identity. -
Class Summary Class Description AbstractTlsClient Base class for a TLS client.AbstractTlsKeyExchange Base class for supporting a TLS key exchange implementation.AbstractTlsKeyExchangeFactory Base class for supporting a TLS key exchange factory implementation.AbstractTlsPeer Base class for a TLS client or server.AbstractTlsServer Base class for a TLS server.AlertDescription RFC 5246 7.2.AlertLevel RFC 5246 7.2BasicTlsPSKIdentity A basic PSK Identity holder.BasicTlsSRPIdentity A basic SRP Identity holder.BulkCipherAlgorithm Deprecated. Will be removed.ByteQueue A queue for bytes.ByteQueueInputStream InputStream based on a ByteQueue implementation.ByteQueueOutputStream OutputStream based on a ByteQueue implementation.CachedInformationType CertChainType Implementation of the RFC 3546 3.3.Certificate Parsing and encoding of a Certificate struct from RFC 4346.Certificate.ParseOptions CertificateEntry CertificateRequest Parsing and encoding of a CertificateRequest struct from RFC 4346:CertificateStatus CertificateStatusRequest Implementation of the RFC 3546 3.6.CertificateStatusRequestItemV2 Implementation of the RFC 6961 2.2.CertificateStatusType CertificateType RFC 6091CertificateURL ChangeCipherSpec ChannelBinding RFC 5056CipherSuite RFC 2246 A.5CipherType RFC 2246ClientAuthenticationType ClientCertificateType ClientHello CombinedHash A combined hash, which implements md5(m) || sha1(m).CompressionMethod RFC 2246 6.1ConnectionEnd RFC 2246ContentType RFC 2246 6.2.1DefaultTlsClient DefaultTlsCredentialedSigner Container class for generating signatures that carries the signature type, parameters, public key certificate and public key's associated signer object.DefaultTlsDHGroupVerifier DefaultTlsHeartbeat DefaultTlsKeyExchangeFactory DefaultTlsServer DefaultTlsSRPConfigVerifier DigitallySigned DTLSClientProtocol DTLSClientProtocol.ClientHandshakeState DTLSProtocol DTLSRequest DTLSServerProtocol DTLSServerProtocol.ServerHandshakeState DTLSTransport DTLSVerifier ECBasisType Deprecated. Will be removed.ECCurveType RFC 4492 5.4ECPointFormat RFC 4492 5.1.2EncryptionAlgorithm RFC 2246ExporterLabel RFC 5705ExtensionType HandshakeMessageInput HandshakeType HashAlgorithm RFC 5246 7.4.1.4.1HeartbeatExtension HeartbeatMessage HeartbeatMessageType HeartbeatMode IdentifierType RFC 6066KeyExchangeAlgorithm RFC 2246KeyShareEntry KeyUpdateRequest RFC 8446 4.6.3MACAlgorithm RFC 2246MaxFragmentLength NamedGroup RFC 7919NamedGroupRole Note that the values here are implementation-specific and arbitrary.NameType NewSessionTicket OCSPStatusRequest RFC 3546 3.6OfferedPsks PRFAlgorithm RFC 5246ProtocolName RFC 7301 Represents a protocol name for use with ALPN.ProtocolVersion PskIdentity PskKeyExchangeMode PSKTlsClient PSKTlsServer RecordFormat RecordPreview RenegotiationPolicy Note that the values here are implementation-specific and arbitrary.SecurityParameters Carrier class for general security parameters.ServerHello ServerName RFC 6066 3.ServerNameList ServerOnlyTlsAuthentication ServerSRPParams SessionID SessionParameters SessionParameters.Builder SignatureAlgorithm RFC 5246 7.4.1.4.1 (in RFC 2246, there were no specific values assigned)SignatureAndHashAlgorithm RFC 5246 7.4.1.4.1SignatureScheme SimulatedTlsSRPIdentityManager An implementation ofTlsSRPIdentityManager
that simulates the existence of "unknown" identities to obscure the fact that there is no verifier for them.SRPTlsClient SRPTlsServer SRTPProtectionProfile SupplementalDataEntry SupplementalDataType RFC 4680TlsClientProtocol TlsDHanonKeyExchange (D)TLS DH_anon key exchange.TlsDHEKeyExchange TlsDHKeyExchange (D)TLS DH key exchange.TlsDHUtils TlsECCUtils TlsECDHanonKeyExchange (D)TLS ECDH_anon key exchange (see RFC 4492).TlsECDHEKeyExchange (D)TLS ECDHE key exchange (see RFC 4492).TlsECDHKeyExchange (D)TLS ECDH key exchange (see RFC 4492).TlsExtensionsUtils TlsProtocol TlsPSKKeyExchange (D)TLS PSK key exchange (RFC 4279).TlsRSAKeyExchange (D)TLS RSA key exchange.TlsRSAUtils RSA Utility methods.TlsServerProtocol TlsSRPKeyExchange (D)TLS SRP key exchange (RFC 5054).TlsSRPLoginParameters TlsSRPUtils TlsSRTPUtils RFC 5764 DTLS Extension to Establish Keys for SRTP.TlsUtils Some helper functions for the TLS API.TrustedAuthority UDPTransport URLAndHash RFC 6066 5.UserMappingType RFC 4681UseSRTPData RFC 5764 4.1.1 -
Exception Summary Exception Description TlsException Base exception for various TLS alerts.TlsFatalAlert TlsFatalAlertReceived TlsNoCloseNotifyException This exception will be thrown (only) when the connection is closed by the peer without sending aclose_notify
warning alert.TlsTimeoutException