qtls

AEADAESGCMTLS13 creates a new AES-GCM AEAD for TLS 1.3.

CipherSuiteName returns the standard name for the passed cipher suite ID (e.g.

CipherSuites returns a list of cipher suites currently implemented by this package, excluding those with security issues, which are returned by InsecureCipherSuites.

Client returns a new TLS client side connection using conn as the underlying transport.

Dial connects to the given network address using net.Dial and then initiates a TLS handshake, returning the resulting TLS connection.

DialWithDialer connects to the given network address using dialer.Dial and then initiates a TLS handshake, returning the resulting TLS connection.

HkdfExpandLabel HKDF expands a label.

HkdfExtract generates a pseudorandom key for use with Expand from an input secret and an optional independent salt.

InsecureCipherSuites returns a list of cipher suites currently implemented by this package and which have security issues.

Listen creates a TLS listener accepting connections on the given network address using net.Listen.

LoadX509KeyPair reads and parses a public/private key pair from a pair of files.

NewListener creates a Listener which accepts connections from an inner Listener and wraps each connection with Server.

NewLRUClientSessionCache returns a ClientSessionCache with the given capacity that uses an LRU strategy.

Server returns a new TLS server side connection using conn as the underlying transport.

X509KeyPair parses a public/private key pair from a pair of PEM encoded data.

ECDSA algorithms.

EdDSA algorithms.

Legacy signature and hash algorithms for TLS 1.2.

RSASSA-PKCS1-v1_5 algorithms.

RSASSA-PSS algorithms with public key OID rsaEncryption.

RenegotiateFreelyAsClient allows a remote server to repeatedly request renegotiation.

RenegotiateNever disables renegotiation.

RenegotiateOnceAsClient allows a remote server to request renegotiation once per connection.

TLS 1.3 cipher suites.

A list of cipher suite IDs that are, or have been, implemented by this package.

A list of cipher suite IDs that are, or have been, implemented by this package.

A list of cipher suite IDs that are, or have been, implemented by this package.

A list of cipher suite IDs that are, or have been, implemented by this package.

A list of cipher suite IDs that are, or have been, implemented by this package.

A list of cipher suite IDs that are, or have been, implemented by this package.

A list of cipher suite IDs that are, or have been, implemented by this package.

A list of cipher suite IDs that are, or have been, implemented by this package.

A list of cipher suite IDs that are, or have been, implemented by this package.

A list of cipher suite IDs that are, or have been, implemented by this package.

A list of cipher suite IDs that are, or have been, implemented by this package.

A list of cipher suite IDs that are, or have been, implemented by this package.

A list of cipher suite IDs that are, or have been, implemented by this package.

A list of cipher suite IDs that are, or have been, implemented by this package.

A list of cipher suite IDs that are, or have been, implemented by this package.

A list of cipher suite IDs that are, or have been, implemented by this package.

Legacy names for the corresponding cipher suites with the correct _SHA256 suffix, retained for backward compatibility.

A list of cipher suite IDs that are, or have been, implemented by this package.

A list of cipher suite IDs that are, or have been, implemented by this package.

TLS_FALLBACK_SCSV isn't a standard cipher suite but an indicator that the client is doing version fallback.

A list of cipher suite IDs that are, or have been, implemented by this package.

A list of cipher suite IDs that are, or have been, implemented by this package.

A list of cipher suite IDs that are, or have been, implemented by this package.

A list of cipher suite IDs that are, or have been, implemented by this package.

A list of cipher suite IDs that are, or have been, implemented by this package.

A list of cipher suite IDs that are, or have been, implemented by this package.

TLS 1.0 - 1.2 cipher suites.

Deprecated: SSLv3 is cryptographically broken, and is no longer supported by this package.

CipherSuite is a TLS cipher suite.

A Conn represents a secured connection.

Dialer dials TLS connections given a configuration and a Dialer for the underlying connection.

RecordHeaderError is returned when a TLS record header is invalid.

A RecordLayer handles encrypting and decrypting of TLS messages.

Alert is a TLS alert.

A Certificate is a chain of one or more certificates, leaf first.

CertificateRequestInfo contains information from a server's CertificateRequest message, which is used to demand a certificate and proof of control from a client.

ClientAuthType is tls.ClientAuthType.

ClientHelloInfo contains information from a ClientHello message in order to guide application logic in the GetCertificate and GetConfigForClient callbacks.

ClientSessionCache is a cache of ClientSessionState objects that can be used by a client to resume a TLS session with a given server.

ClientSessionState contains the state needed by clients to resume TLS sessions.

A Config structure is used to configure a TLS client or server.

CurveID is a tls.CurveID.

RenegotiationSupport enumerates the different levels of support for TLS renegotiation.

SignatureScheme is a tls.SignatureScheme.