tlsdecrypt

package
v0.13.0 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Sep 21, 2024 License: MIT Imports: 19 Imported by: 0

README

This code is an adaptation of golang crypto/tls and https://github.com/zmap/zcrypto

Copyright 2009 The Go Authors. All rights reserved. Use of this source code is governed by a BSD-style license that can be found in the LICENSE file.

https://github.com/zmap/zcrypto/blob/master/LICENSE

Documentation

Overview

Copyright 2009 The Go Authors. All rights reserved. Use of this source code is governed by a BSD-style license that can be found in the LICENSE file.

Index

Constants

View Source
const (
	// TLS 1.0 - 1.2 cipher suites.
	TLS_RSA_WITH_RC4_128_SHA                      uint16 = 0x0005
	TLS_RSA_WITH_3DES_EDE_CBC_SHA                 uint16 = 0x000a
	TLS_RSA_WITH_AES_128_CBC_SHA                  uint16 = 0x002f
	TLS_RSA_WITH_AES_256_CBC_SHA                  uint16 = 0x0035
	TLS_RSA_WITH_AES_128_CBC_SHA256               uint16 = 0x003c
	TLS_RSA_WITH_AES_128_GCM_SHA256               uint16 = 0x009c
	TLS_RSA_WITH_AES_256_GCM_SHA384               uint16 = 0x009d
	TLS_ECDHE_ECDSA_WITH_RC4_128_SHA              uint16 = 0xc007
	TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA          uint16 = 0xc009
	TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA          uint16 = 0xc00a
	TLS_ECDHE_RSA_WITH_RC4_128_SHA                uint16 = 0xc011
	TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA           uint16 = 0xc012
	TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA            uint16 = 0xc013
	TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA            uint16 = 0xc014
	TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256       uint16 = 0xc023
	TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256         uint16 = 0xc027
	TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256         uint16 = 0xc02f
	TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256       uint16 = 0xc02b
	TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384         uint16 = 0xc030
	TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384       uint16 = 0xc02c
	TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256   uint16 = 0xcca8
	TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 uint16 = 0xcca9

	// TLS 1.3 cipher suites.
	TLS_AES_128_GCM_SHA256       uint16 = 0x1301
	TLS_AES_256_GCM_SHA384       uint16 = 0x1302
	TLS_CHACHA20_POLY1305_SHA256 uint16 = 0x1303

	// TLS_FALLBACK_SCSV isn't a standard cipher suite but an indicator
	// that the client is doing version fallback. See RFC 7507.
	TLS_FALLBACK_SCSV uint16 = 0x5600

	// Legacy names for the corresponding cipher suites with the correct _SHA256
	// suffix, retained for backward compatibility.
	TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305   = TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
	TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305 = TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256

	TLS_DHE_DSS_WITH_AES_128_CBC_SHA256   = 0x0040
	TLS_RSA_WITH_RC4_128_MD5              = 0x0004
	TLS_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA = 0x0011

	TLS_NULL_WITH_NULL_NULL        = 0x0000
	TLS_RSA_WITH_NULL_MD5          = 0x0001
	TLS_RSA_WITH_NULL_SHA          = 0x0002
	TLS_RSA_EXPORT_WITH_RC4_40_MD5 = 0x0003
	// TLS_RSA_WITH_RC4_128_MD5                      = 0x0004
	// TLS_RSA_WITH_RC4_128_SHA                      = 0x0005
	TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5 = 0x0006
	TLS_RSA_WITH_IDEA_CBC_SHA          = 0x0007
	TLS_RSA_EXPORT_WITH_DES40_CBC_SHA  = 0x0008
	TLS_RSA_WITH_DES_CBC_SHA           = 0x0009
	// TLS_RSA_WITH_3DES_EDE_CBC_SHA                 = 0x000A
	TLS_DH_DSS_EXPORT_WITH_DES40_CBC_SHA = 0x000B
	TLS_DH_DSS_WITH_DES_CBC_SHA          = 0x000C
	TLS_DH_DSS_WITH_3DES_EDE_CBC_SHA     = 0x000D
	TLS_DH_RSA_EXPORT_WITH_DES40_CBC_SHA = 0x000E
	TLS_DH_RSA_WITH_DES_CBC_SHA          = 0x000F
	TLS_DH_RSA_WITH_3DES_EDE_CBC_SHA     = 0x0010
	// TLS_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA         = 0x0011
	TLS_DHE_DSS_WITH_DES_CBC_SHA           = 0x0012
	TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA      = 0x0013
	TLS_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA  = 0x0014
	TLS_DHE_RSA_WITH_DES_CBC_SHA           = 0x0015
	TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA      = 0x0016
	TLS_DH_ANON_EXPORT_WITH_RC4_40_MD5     = 0x0017
	TLS_DH_ANON_WITH_RC4_128_MD5           = 0x0018
	TLS_DH_ANON_EXPORT_WITH_DES40_CBC_SHA  = 0x0019
	TLS_DH_ANON_WITH_DES_CBC_SHA           = 0x001A
	TLS_DH_ANON_WITH_3DES_EDE_CBC_SHA      = 0x001B
	SSL_FORTEZZA_KEA_WITH_NULL_SHA         = 0x001C
	SSL_FORTEZZA_KEA_WITH_FORTEZZA_CBC_SHA = 0x001D
	TLS_KRB5_WITH_DES_CBC_SHA              = 0x001E
	TLS_KRB5_WITH_3DES_EDE_CBC_SHA         = 0x001F
	TLS_KRB5_WITH_RC4_128_SHA              = 0x0020
	TLS_KRB5_WITH_IDEA_CBC_SHA             = 0x0021
	TLS_KRB5_WITH_DES_CBC_MD5              = 0x0022
	TLS_KRB5_WITH_3DES_EDE_CBC_MD5         = 0x0023
	TLS_KRB5_WITH_RC4_128_MD5              = 0x0024
	TLS_KRB5_WITH_IDEA_CBC_MD5             = 0x0025
	TLS_KRB5_EXPORT_WITH_DES_CBC_40_SHA    = 0x0026
	TLS_KRB5_EXPORT_WITH_RC2_CBC_40_SHA    = 0x0027
	TLS_KRB5_EXPORT_WITH_RC4_40_SHA        = 0x0028
	TLS_KRB5_EXPORT_WITH_DES_CBC_40_MD5    = 0x0029
	TLS_KRB5_EXPORT_WITH_RC2_CBC_40_MD5    = 0x002A
	TLS_KRB5_EXPORT_WITH_RC4_40_MD5        = 0x002B
	TLS_PSK_WITH_NULL_SHA                  = 0x002C
	TLS_DHE_PSK_WITH_NULL_SHA              = 0x002D
	TLS_RSA_PSK_WITH_NULL_SHA              = 0x002E
	// TLS_RSA_WITH_AES_128_CBC_SHA                  = 0x002F
	TLS_DH_DSS_WITH_AES_128_CBC_SHA  = 0x0030
	TLS_DH_RSA_WITH_AES_128_CBC_SHA  = 0x0031
	TLS_DHE_DSS_WITH_AES_128_CBC_SHA = 0x0032
	TLS_DHE_RSA_WITH_AES_128_CBC_SHA = 0x0033
	TLS_DH_ANON_WITH_AES_128_CBC_SHA = 0x0034
	// TLS_RSA_WITH_AES_256_CBC_SHA                  = 0x0035
	TLS_DH_DSS_WITH_AES_256_CBC_SHA  = 0x0036
	TLS_DH_RSA_WITH_AES_256_CBC_SHA  = 0x0037
	TLS_DHE_DSS_WITH_AES_256_CBC_SHA = 0x0038
	TLS_DHE_RSA_WITH_AES_256_CBC_SHA = 0x0039
	TLS_DH_ANON_WITH_AES_256_CBC_SHA = 0x003A
	TLS_RSA_WITH_NULL_SHA256         = 0x003B
	// TLS_RSA_WITH_AES_128_CBC_SHA256               = 0x003C
	TLS_RSA_WITH_AES_256_CBC_SHA256    = 0x003D
	TLS_DH_DSS_WITH_AES_128_CBC_SHA256 = 0x003E
	TLS_DH_RSA_WITH_AES_128_CBC_SHA256 = 0x003F
	// TLS_DHE_DSS_WITH_AES_128_CBC_SHA256           = 0x0040
	TLS_RSA_WITH_CAMELLIA_128_CBC_SHA       = 0x0041
	TLS_DH_DSS_WITH_CAMELLIA_128_CBC_SHA    = 0x0042
	TLS_DH_RSA_WITH_CAMELLIA_128_CBC_SHA    = 0x0043
	TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA   = 0x0044
	TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA   = 0x0045
	TLS_DH_ANON_WITH_CAMELLIA_128_CBC_SHA   = 0x0046
	TLS_RSA_EXPORT1024_WITH_RC4_56_MD5      = 0x0060
	TLS_RSA_EXPORT1024_WITH_RC2_CBC_56_MD5  = 0x0061
	TLS_RSA_EXPORT1024_WITH_DES_CBC_SHA     = 0x0062
	TLS_DHE_DSS_EXPORT1024_WITH_DES_CBC_SHA = 0x0063
	TLS_RSA_EXPORT1024_WITH_RC4_56_SHA      = 0x0064
	TLS_DHE_DSS_EXPORT1024_WITH_RC4_56_SHA  = 0x0065
	TLS_DHE_DSS_WITH_RC4_128_SHA            = 0x0066
	TLS_DHE_RSA_WITH_AES_128_CBC_SHA256     = 0x0067
	TLS_DH_DSS_WITH_AES_256_CBC_SHA256      = 0x0068
	TLS_DH_RSA_WITH_AES_256_CBC_SHA256      = 0x0069
	TLS_DHE_DSS_WITH_AES_256_CBC_SHA256     = 0x006A
	TLS_DHE_RSA_WITH_AES_256_CBC_SHA256     = 0x006B
	TLS_DH_ANON_WITH_AES_128_CBC_SHA256     = 0x006C
	TLS_DH_ANON_WITH_AES_256_CBC_SHA256     = 0x006D
	TLS_GOSTR341094_WITH_28147_CNT_IMIT     = 0x0080
	TLS_GOSTR341001_WITH_28147_CNT_IMIT     = 0x0081
	TLS_GOSTR341094_WITH_NULL_GOSTR3411     = 0x0082
	TLS_GOSTR341001_WITH_NULL_GOSTR3411     = 0x0083
	TLS_RSA_WITH_CAMELLIA_256_CBC_SHA       = 0x0084
	TLS_DH_DSS_WITH_CAMELLIA_256_CBC_SHA    = 0x0085
	TLS_DH_RSA_WITH_CAMELLIA_256_CBC_SHA    = 0x0086
	TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA   = 0x0087
	TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA   = 0x0088
	TLS_DH_ANON_WITH_CAMELLIA_256_CBC_SHA   = 0x0089
	TLS_PSK_WITH_RC4_128_SHA                = 0x008A
	TLS_PSK_WITH_3DES_EDE_CBC_SHA           = 0x008B
	TLS_PSK_WITH_AES_128_CBC_SHA            = 0x008C
	TLS_PSK_WITH_AES_256_CBC_SHA            = 0x008D
	TLS_DHE_PSK_WITH_RC4_128_SHA            = 0x008E
	TLS_DHE_PSK_WITH_3DES_EDE_CBC_SHA       = 0x008F
	TLS_DHE_PSK_WITH_AES_128_CBC_SHA        = 0x0090
	TLS_DHE_PSK_WITH_AES_256_CBC_SHA        = 0x0091
	TLS_RSA_PSK_WITH_RC4_128_SHA            = 0x0092
	TLS_RSA_PSK_WITH_3DES_EDE_CBC_SHA       = 0x0093
	TLS_RSA_PSK_WITH_AES_128_CBC_SHA        = 0x0094
	TLS_RSA_PSK_WITH_AES_256_CBC_SHA        = 0x0095
	TLS_RSA_WITH_SEED_CBC_SHA               = 0x0096
	TLS_DH_DSS_WITH_SEED_CBC_SHA            = 0x0097
	TLS_DH_RSA_WITH_SEED_CBC_SHA            = 0x0098
	TLS_DHE_DSS_WITH_SEED_CBC_SHA           = 0x0099
	TLS_DHE_RSA_WITH_SEED_CBC_SHA           = 0x009A
	TLS_DH_ANON_WITH_SEED_CBC_SHA           = 0x009B
	// TLS_RSA_WITH_AES_128_GCM_SHA256               = 0x009C
	// TLS_RSA_WITH_AES_256_GCM_SHA384               = 0x009D
	TLS_DHE_RSA_WITH_AES_128_GCM_SHA256      = 0x009E
	TLS_DHE_RSA_WITH_AES_256_GCM_SHA384      = 0x009F
	TLS_DH_RSA_WITH_AES_128_GCM_SHA256       = 0x00A0
	TLS_DH_RSA_WITH_AES_256_GCM_SHA384       = 0x00A1
	TLS_DHE_DSS_WITH_AES_128_GCM_SHA256      = 0x00A2
	TLS_DHE_DSS_WITH_AES_256_GCM_SHA384      = 0x00A3
	TLS_DH_DSS_WITH_AES_128_GCM_SHA256       = 0x00A4
	TLS_DH_DSS_WITH_AES_256_GCM_SHA384       = 0x00A5
	TLS_DH_ANON_WITH_AES_128_GCM_SHA256      = 0x00A6
	TLS_DH_ANON_WITH_AES_256_GCM_SHA384      = 0x00A7
	TLS_PSK_WITH_AES_128_GCM_SHA256          = 0x00A8
	TLS_PSK_WITH_AES_256_GCM_SHA384          = 0x00A9
	TLS_DHE_PSK_WITH_AES_128_GCM_SHA256      = 0x00AA
	TLS_DHE_PSK_WITH_AES_256_GCM_SHA384      = 0x00AB
	TLS_RSA_PSK_WITH_AES_128_GCM_SHA256      = 0x00AC
	TLS_RSA_PSK_WITH_AES_256_GCM_SHA384      = 0x00AD
	TLS_PSK_WITH_AES_128_CBC_SHA256          = 0x00AE
	TLS_PSK_WITH_AES_256_CBC_SHA384          = 0x00AF
	TLS_PSK_WITH_NULL_SHA256                 = 0x00B0
	TLS_PSK_WITH_NULL_SHA384                 = 0x00B1
	TLS_DHE_PSK_WITH_AES_128_CBC_SHA256      = 0x00B2
	TLS_DHE_PSK_WITH_AES_256_CBC_SHA384      = 0x00B3
	TLS_DHE_PSK_WITH_NULL_SHA256             = 0x00B4
	TLS_DHE_PSK_WITH_NULL_SHA384             = 0x00B5
	TLS_RSA_PSK_WITH_AES_128_CBC_SHA256      = 0x00B6
	TLS_RSA_PSK_WITH_AES_256_CBC_SHA384      = 0x00B7
	TLS_RSA_PSK_WITH_NULL_SHA256             = 0x00B8
	TLS_RSA_PSK_WITH_NULL_SHA384             = 0x00B9
	TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256     = 0x00BA
	TLS_DH_DSS_WITH_CAMELLIA_128_CBC_SHA256  = 0x00BB
	TLS_DH_RSA_WITH_CAMELLIA_128_CBC_SHA256  = 0x00BC
	TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA256 = 0x00BD
	TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 = 0x00BE
	TLS_DH_ANON_WITH_CAMELLIA_128_CBC_SHA256 = 0x00BF
	TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256     = 0x00C0
	TLS_DH_DSS_WITH_CAMELLIA_256_CBC_SHA256  = 0x00C1
	TLS_DH_RSA_WITH_CAMELLIA_256_CBC_SHA256  = 0x00C2
	TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA256 = 0x00C3
	TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256 = 0x00C4
	TLS_DH_ANON_WITH_CAMELLIA_256_CBC_SHA256 = 0x00C5
	TLS_RENEGO_PROTECTION_REQUEST            = 0x00FF
	// TLS_FALLBACK_SCSV                             = 0x5600
	TLS_ECDH_ECDSA_WITH_NULL_SHA         = 0xC001
	TLS_ECDH_ECDSA_WITH_RC4_128_SHA      = 0xC002
	TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA = 0xC003
	TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA  = 0xC004
	TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA  = 0xC005
	TLS_ECDHE_ECDSA_WITH_NULL_SHA        = 0xC006
	// TLS_ECDHE_ECDSA_WITH_RC4_128_SHA              = 0xC007
	TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA = 0xC008
	// TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA          = 0xC009
	// TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA          = 0xC00A
	TLS_ECDH_RSA_WITH_NULL_SHA         = 0xC00B
	TLS_ECDH_RSA_WITH_RC4_128_SHA      = 0xC00C
	TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA = 0xC00D
	TLS_ECDH_RSA_WITH_AES_128_CBC_SHA  = 0xC00E
	TLS_ECDH_RSA_WITH_AES_256_CBC_SHA  = 0xC00F
	TLS_ECDHE_RSA_WITH_NULL_SHA        = 0xC010
	// TLS_ECDHE_RSA_WITH_RC4_128_SHA                = 0xC011
	// TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA           = 0xC012
	// TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA            = 0xC013
	// TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA            = 0xC014
	TLS_ECDH_ANON_WITH_NULL_SHA           = 0xC015
	TLS_ECDH_ANON_WITH_RC4_128_SHA        = 0xC016
	TLS_ECDH_ANON_WITH_3DES_EDE_CBC_SHA   = 0xC017
	TLS_ECDH_ANON_WITH_AES_128_CBC_SHA    = 0xC018
	TLS_ECDH_ANON_WITH_AES_256_CBC_SHA    = 0xC019
	TLS_SRP_SHA_WITH_3DES_EDE_CBC_SHA     = 0xC01A
	TLS_SRP_SHA_RSA_WITH_3DES_EDE_CBC_SHA = 0xC01B
	TLS_SRP_SHA_DSS_WITH_3DES_EDE_CBC_SHA = 0xC01C
	TLS_SRP_SHA_WITH_AES_128_CBC_SHA      = 0xC01D
	TLS_SRP_SHA_RSA_WITH_AES_128_CBC_SHA  = 0xC01E
	TLS_SRP_SHA_DSS_WITH_AES_128_CBC_SHA  = 0xC01F
	TLS_SRP_SHA_WITH_AES_256_CBC_SHA      = 0xC020
	TLS_SRP_SHA_RSA_WITH_AES_256_CBC_SHA  = 0xC021
	TLS_SRP_SHA_DSS_WITH_AES_256_CBC_SHA  = 0xC022
	// TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256       = 0xC023
	TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 = 0xC024
	TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256  = 0xC025
	TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384  = 0xC026
	// TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256         = 0xC027
	TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 = 0xC028
	TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256  = 0xC029
	TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384  = 0xC02A
	// TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256       = 0xC02B
	// TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384       = 0xC02C
	TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256 = 0xC02D
	TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384 = 0xC02E
	// TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256         = 0xC02F
	// TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384         = 0xC030
	TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256         = 0xC031
	TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384         = 0xC032
	TLS_ECDHE_PSK_WITH_RC4_128_SHA               = 0xC033
	TLS_ECDHE_PSK_WITH_3DES_EDE_CBC_SHA          = 0xC034
	TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA           = 0xC035
	TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA           = 0xC036
	TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256        = 0xC037
	TLS_ECDHE_PSK_WITH_AES_256_CBC_SHA384        = 0xC038
	TLS_ECDHE_PSK_WITH_NULL_SHA                  = 0xC039
	TLS_ECDHE_PSK_WITH_NULL_SHA256               = 0xC03A
	TLS_ECDHE_PSK_WITH_NULL_SHA384               = 0xC03B
	TLS_RSA_WITH_ARIA_128_CBC_SHA256             = 0xC03C
	TLS_RSA_WITH_ARIA_256_CBC_SHA384             = 0xC03D
	TLS_DH_DSS_WITH_ARIA_128_CBC_SHA256          = 0xC03E
	TLS_DH_DSS_WITH_ARIA_256_CBC_SHA384          = 0xC03F
	TLS_DH_RSA_WITH_ARIA_128_CBC_SHA256          = 0xC040
	TLS_DH_RSA_WITH_ARIA_256_CBC_SHA384          = 0xC041
	TLS_DHE_DSS_WITH_ARIA_128_CBC_SHA256         = 0xC042
	TLS_DHE_DSS_WITH_ARIA_256_CBC_SHA384         = 0xC043
	TLS_DHE_RSA_WITH_ARIA_128_CBC_SHA256         = 0xC044
	TLS_DHE_RSA_WITH_ARIA_256_CBC_SHA384         = 0xC045
	TLS_DH_ANON_WITH_ARIA_128_CBC_SHA256         = 0xC046
	TLS_DH_ANON_WITH_ARIA_256_CBC_SHA384         = 0xC047
	TLS_ECDHE_ECDSA_WITH_ARIA_128_CBC_SHA256     = 0xC048
	TLS_ECDHE_ECDSA_WITH_ARIA_256_CBC_SHA384     = 0xC049
	TLS_ECDH_ECDSA_WITH_ARIA_128_CBC_SHA256      = 0xC04A
	TLS_ECDH_ECDSA_WITH_ARIA_256_CBC_SHA384      = 0xC04B
	TLS_ECDHE_RSA_WITH_ARIA_128_CBC_SHA256       = 0xC04C
	TLS_ECDHE_RSA_WITH_ARIA_256_CBC_SHA384       = 0xC04D
	TLS_ECDH_RSA_WITH_ARIA_128_CBC_SHA256        = 0xC04E
	TLS_ECDH_RSA_WITH_ARIA_256_CBC_SHA384        = 0xC04F
	TLS_RSA_WITH_ARIA_128_GCM_SHA256             = 0xC050
	TLS_RSA_WITH_ARIA_256_GCM_SHA384             = 0xC051
	TLS_DHE_RSA_WITH_ARIA_128_GCM_SHA256         = 0xC052
	TLS_DHE_RSA_WITH_ARIA_256_GCM_SHA384         = 0xC053
	TLS_DH_RSA_WITH_ARIA_128_GCM_SHA256          = 0xC054
	TLS_DH_RSA_WITH_ARIA_256_GCM_SHA384          = 0xC055
	TLS_DHE_DSS_WITH_ARIA_128_GCM_SHA256         = 0xC056
	TLS_DHE_DSS_WITH_ARIA_256_GCM_SHA384         = 0xC057
	TLS_DH_DSS_WITH_ARIA_128_GCM_SHA256          = 0xC058
	TLS_DH_DSS_WITH_ARIA_256_GCM_SHA384          = 0xC059
	TLS_DH_ANON_WITH_ARIA_128_GCM_SHA256         = 0xC05A
	TLS_DH_ANON_WITH_ARIA_256_GCM_SHA384         = 0xC05B
	TLS_ECDHE_ECDSA_WITH_ARIA_128_GCM_SHA256     = 0xC05C
	TLS_ECDHE_ECDSA_WITH_ARIA_256_GCM_SHA384     = 0xC05D
	TLS_ECDH_ECDSA_WITH_ARIA_128_GCM_SHA256      = 0xC05E
	TLS_ECDH_ECDSA_WITH_ARIA_256_GCM_SHA384      = 0xC05F
	TLS_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256       = 0xC060
	TLS_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384       = 0xC061
	TLS_ECDH_RSA_WITH_ARIA_128_GCM_SHA256        = 0xC062
	TLS_ECDH_RSA_WITH_ARIA_256_GCM_SHA384        = 0xC063
	TLS_PSK_WITH_ARIA_128_CBC_SHA256             = 0xC064
	TLS_PSK_WITH_ARIA_256_CBC_SHA384             = 0xC065
	TLS_DHE_PSK_WITH_ARIA_128_CBC_SHA256         = 0xC066
	TLS_DHE_PSK_WITH_ARIA_256_CBC_SHA384         = 0xC067
	TLS_RSA_PSK_WITH_ARIA_128_CBC_SHA256         = 0xC068
	TLS_RSA_PSK_WITH_ARIA_256_CBC_SHA384         = 0xC069
	TLS_PSK_WITH_ARIA_128_GCM_SHA256             = 0xC06A
	TLS_PSK_WITH_ARIA_256_GCM_SHA384             = 0xC06B
	TLS_DHE_PSK_WITH_ARIA_128_GCM_SHA256         = 0xC06C
	TLS_DHE_PSK_WITH_ARIA_256_GCM_SHA384         = 0xC06D
	TLS_RSA_PSK_WITH_ARIA_128_GCM_SHA256         = 0xC06E
	TLS_RSA_PSK_WITH_ARIA_256_GCM_SHA384         = 0xC06F
	TLS_ECDHE_PSK_WITH_ARIA_128_CBC_SHA256       = 0xC070
	TLS_ECDHE_PSK_WITH_ARIA_256_CBC_SHA384       = 0xC071
	TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256 = 0xC072
	TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384 = 0xC073
	TLS_ECDH_ECDSA_WITH_CAMELLIA_128_CBC_SHA256  = 0xC074
	TLS_ECDH_ECDSA_WITH_CAMELLIA_256_CBC_SHA384  = 0xC075
	TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256   = 0xC076
	TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384   = 0xC077
	TLS_ECDH_RSA_WITH_CAMELLIA_128_CBC_SHA256    = 0xC078
	TLS_ECDH_RSA_WITH_CAMELLIA_256_CBC_SHA384    = 0xC079
	TLS_RSA_WITH_CAMELLIA_128_GCM_SHA256         = 0xC07A
	TLS_RSA_WITH_CAMELLIA_256_GCM_SHA384         = 0xC07B
	TLS_DHE_RSA_WITH_CAMELLIA_128_GCM_SHA256     = 0xC07C
	TLS_DHE_RSA_WITH_CAMELLIA_256_GCM_SHA384     = 0xC07D
	TLS_DH_RSA_WITH_CAMELLIA_128_GCM_SHA256      = 0xC07E
	TLS_DH_RSA_WITH_CAMELLIA_256_GCM_SHA384      = 0xC07F
	TLS_DHE_DSS_WITH_CAMELLIA_128_GCM_SHA256     = 0xC080
	TLS_DHE_DSS_WITH_CAMELLIA_256_GCM_SHA384     = 0xC081
	TLS_DH_DSS_WITH_CAMELLIA_128_GCM_SHA256      = 0xC082
	TLS_DH_DSS_WITH_CAMELLIA_256_GCM_SHA384      = 0xC083
	TLS_DH_ANON_WITH_CAMELLIA_128_GCM_SHA256     = 0xC084
	TLS_DH_ANON_WITH_CAMELLIA_256_GCM_SHA384     = 0xC085
	TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_GCM_SHA256 = 0xC086
	TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384 = 0xC087
	TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256  = 0xC088
	TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384  = 0xC089
	TLS_ECDHE_RSA_WITH_CAMELLIA_128_GCM_SHA256   = 0xC08A
	TLS_ECDHE_RSA_WITH_CAMELLIA_256_GCM_SHA384   = 0xC08B
	TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256    = 0xC08C
	TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384    = 0xC08D
	TLS_PSK_WITH_CAMELLIA_128_GCM_SHA256         = 0xC08E
	TLS_PSK_WITH_CAMELLIA_256_GCM_SHA384         = 0xC08F
	TLS_DHE_PSK_WITH_CAMELLIA_128_GCM_SHA256     = 0xC090
	TLS_DHE_PSK_WITH_CAMELLIA_256_GCM_SHA384     = 0xC091
	TLS_RSA_PSK_WITH_CAMELLIA_128_GCM_SHA256     = 0xC092
	TLS_RSA_PSK_WITH_CAMELLIA_256_GCM_SHA384     = 0xC093
	TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256         = 0xC094
	TLS_PSK_WITH_CAMELLIA_256_CBC_SHA384         = 0xC095
	TLS_DHE_PSK_WITH_CAMELLIA_128_CBC_SHA256     = 0xC096
	TLS_DHE_PSK_WITH_CAMELLIA_256_CBC_SHA384     = 0xC097
	TLS_RSA_PSK_WITH_CAMELLIA_128_CBC_SHA256     = 0xC098
	TLS_RSA_PSK_WITH_CAMELLIA_256_CBC_SHA384     = 0xC099
	TLS_ECDHE_PSK_WITH_CAMELLIA_128_CBC_SHA256   = 0xC09A
	TLS_ECDHE_PSK_WITH_CAMELLIA_256_CBC_SHA384   = 0xC09B
	TLS_RSA_WITH_AES_128_CCM                     = 0xC09C
	TLS_RSA_WITH_AES_256_CCM                     = 0xC09D
	TLS_DHE_RSA_WITH_AES_128_CCM                 = 0xC09E
	TLS_DHE_RSA_WITH_AES_256_CCM                 = 0xC09F
	TLS_RSA_WITH_AES_128_CCM_8                   = 0xC0A0
	TLS_RSA_WITH_AES_256_CCM_8                   = 0xC0A1
	TLS_DHE_RSA_WITH_AES_128_CCM_8               = 0xC0A2
	TLS_DHE_RSA_WITH_AES_256_CCM_8               = 0xC0A3
	TLS_PSK_WITH_AES_128_CCM                     = 0xC0A4
	TLS_PSK_WITH_AES_256_CCM                     = 0xC0A5
	TLS_DHE_PSK_WITH_AES_128_CCM                 = 0xC0A6
	TLS_DHE_PSK_WITH_AES_256_CCM                 = 0xC0A7
	TLS_PSK_WITH_AES_128_CCM_8                   = 0xC0A8
	TLS_PSK_WITH_AES_256_CCM_8                   = 0xC0A9
	TLS_PSK_DHE_WITH_AES_128_CCM_8               = 0xC0AA
	TLS_PSK_DHE_WITH_AES_256_CCM_8               = 0xC0AB
	TLS_ECDHE_ECDSA_WITH_AES_128_CCM             = 0xC0AC
	TLS_ECDHE_ECDSA_WITH_AES_256_CCM             = 0xC0AD
	TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8           = 0xC0AE
	TLS_ECDHE_ECDSA_WITH_AES_256_CCM_8           = 0xC0AF
	TLS_ECDHE_PSK_WITH_AES_128_GCM_SHA256        = 0xCAFE
	// TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256   = 0xCCA8
	// TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 = 0xCCA9
	TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 = 0xCCAA
	// Old ids for Chacha20 ciphers
	TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256_OLD   = 0xCC13
	TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256_OLD = 0xCC14
	TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256_OLD     = 0xCC15
	//SSL_RSA_FIPS_WITH_DES_CBC_SHA                 = 0xFEFE
	//SSL_RSA_FIPS_WITH_3DES_EDE_CBC_SHA            = 0xFEFF
	//SSL_RSA_FIPS_WITH_3DES_EDE_CBC_SHA            = 0xFFE0
	//SSL_RSA_FIPS_WITH_DES_CBC_SHA                 = 0xFFE1
	SSL_RSA_WITH_RC2_CBC_MD5        = 0xFF80
	SSL_RSA_WITH_IDEA_CBC_MD5       = 0xFF81
	SSL_RSA_WITH_DES_CBC_MD5        = 0xFF82
	SSL_RSA_WITH_3DES_EDE_CBC_MD5   = 0xFF83
	SSL_EN_RC2_128_CBC_WITH_MD5     = 0xFF03
	OP_PCL_TLS10_AES_128_CBC_SHA512 = 0xFF85
)

A list of cipher suite IDs that are, or have been, implemented by this package.

See https://www.iana.org/assignments/tls-parameters/tls-parameters.xml

View Source
const (
	VersionTLS10 = 0x0301
	VersionTLS11 = 0x0302
	VersionTLS12 = 0x0303
	VersionTLS13 = 0x0304

	// Deprecated: SSLv3 is cryptographically broken, and is no longer
	// supported by this package. See golang.org/issue/32716.
	VersionSSL30 = 0x0300
)

Variables

This section is empty.

Functions

This section is empty.

Types

type CipherSuite

type CipherSuite struct {
	ID   uint16
	Name string

	// Supported versions is the list of TLS protocol versions that can
	// negotiate this cipher suite.
	SupportedVersions []uint16

	// Insecure is true if the cipher suite has known security issues
	// due to its primitives, design, or implementation.
	Insecure bool
}

CipherSuite is a TLS cipher suite. Note that most functions in this package accept and expose cipher suite IDs instead of this type.

type CurveID

type CurveID uint16

CurveID is the type of a TLS identifier for an elliptic curve. See https://www.iana.org/assignments/tls-parameters/tls-parameters.xml#tls-parameters-8.

In TLS 1.3, this type is called NamedGroup, but at this time this library only supports Elliptic Curve based groups. See RFC 8446, Section 4.2.7.

const (
	CurveP256 CurveID = 23
	CurveP384 CurveID = 24
	CurveP521 CurveID = 25
	X25519    CurveID = 29
)

type Decryptor

type Decryptor struct {
	IsClient     bool
	Version      int
	CipherSuite  int
	MasterSecret []byte
	ClientRandom []byte
	ServerRandom []byte
	// contains filtered or unexported fields
}

func (*Decryptor) Decrypt

func (d *Decryptor) Decrypt(record []byte) ([]byte, error)

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL