Package org.conscrypt

Interface Summary

Interface	Description
CertBlocklist	A set of certificates that are blacklisted from trust.
CertPinManager	Interface for classes that implement certificate pinning for use in TrustManagerImpl.
ConscryptCertStore	A certificate store that supports additional operations that are used in TrustManagerImpl.
ConscryptHostnameVerifier	This interface is used to implement hostname verification in Conscrypt.
OpenSSLKeyHolder	Marker interface for classes that hold an OpenSSLKey.
PSKKeyManager	Deprecated. This abstraction is deprecated because it does not work with TLS 1.3.
SSLClientSessionCache	A persistent SSLSession cache used by SSLSessionContext to share client-side SSL sessions across processes.

Class Summary

Class	Description
AllocatedBuffer	A buffer that was allocated by a BufferAllocator.
ApplicationProtocolSelector	Server-side selector for the ALPN protocol.
BufferAllocator	An object responsible for allocation of buffers.
CertificatePriorityComparator	Comparator for prioritizing certificates in path building.
ChainStrengthAnalyzer	Analyzes the cryptographic strength of a chain of X.509 certificates.
ClientSessionContext	Caches client sessions.
Conscrypt	Core API for creating and configuring all Conscrypt types.
Conscrypt.ProviderBuilder
Conscrypt.Version
DefaultSSLContextImpl	Support class for this package.
DefaultSSLContextImpl.TLSv12
DefaultSSLContextImpl.TLSv13
DESEDESecretKeyFactory	An implementation of SecretKeyFactory for use with DESEDE keys.
ECParameters	AlgorithmParameters implementation for elliptic curves.
FileClientSessionCache	File-based cache implementation.
GCMParameters	GCM parameters used during an ciphering operation with OpenSSLCipher.
HandshakeListener	Similar in concept to HandshakeCompletedListener, but used for listening directly to the engine.
IvParameters	An implementation of AlgorithmParameters that contains only an IV.
IvParameters.AES
IvParameters.ChaCha20
IvParameters.DESEDE
KeyGeneratorImpl	An implementation of KeyGenerator suitable for use with other Conscrypt algorithms.
KeyGeneratorImpl.AES
KeyGeneratorImpl.ARC4
KeyGeneratorImpl.ChaCha20
KeyGeneratorImpl.DESEDE
KeyGeneratorImpl.HmacMD5
KeyGeneratorImpl.HmacSHA1
KeyGeneratorImpl.HmacSHA224
KeyGeneratorImpl.HmacSHA256
KeyGeneratorImpl.HmacSHA384
KeyGeneratorImpl.HmacSHA512
KeyManagerFactoryImpl	KeyManagerFactory implementation.
NativeCrypto	Provides the Java side of our JNI glue for OpenSSL.
OAEPParameters	AlgorithmParameters implementation for OAEP.
OkHostnameVerifier	A HostnameVerifier consistent with RFC 2818.
OpenSSLAeadCipher
OpenSSLAeadCipherAES
OpenSSLAeadCipherAES.GCM
OpenSSLAeadCipherAES.GCM_SIV
OpenSSLAeadCipherAES.GCM_SIV.AES_128
OpenSSLAeadCipherAES.GCM_SIV.AES_256
OpenSSLAeadCipherAES.GCM.AES_128
OpenSSLAeadCipherAES.GCM.AES_256
OpenSSLAeadCipherChaCha20
OpenSSLCipher	An implementation of Cipher using BoringSSL as the backing library.
OpenSSLCipherChaCha20	Implementation of the ChaCha20 stream cipher.
OpenSSLCipherRSA
OpenSSLCipherRSA.DirectRSA
OpenSSLCipherRSA.OAEP
OpenSSLCipherRSA.OAEP.SHA1
OpenSSLCipherRSA.OAEP.SHA224
OpenSSLCipherRSA.OAEP.SHA256
OpenSSLCipherRSA.OAEP.SHA384
OpenSSLCipherRSA.OAEP.SHA512
OpenSSLCipherRSA.PKCS1
OpenSSLCipherRSA.Raw
OpenSSLContextImpl	OpenSSL-backed SSLContext service provider interface.
OpenSSLContextImpl.TLSv1	Public to allow construction via the provider framework.
OpenSSLContextImpl.TLSv11	Public to allow construction via the provider framework.
OpenSSLContextImpl.TLSv12	Public to allow construction via the provider framework.
OpenSSLContextImpl.TLSv13	Public to allow construction via the provider framework.
OpenSSLECDHKeyAgreement	Elliptic Curve Diffie-Hellman key agreement backed by the OpenSSL engine.
OpenSSLECKeyFactory	An implementation of a KeyFactorySpi for EC keys based on BoringSSL.
OpenSSLECKeyPairGenerator	An implementation of KeyPairGenerator for EC keys which uses BoringSSL to perform all the operations.
OpenSSLEvpCipher
OpenSSLEvpCipherAES
OpenSSLEvpCipherAES.AES
OpenSSLEvpCipherAES.AES_128
OpenSSLEvpCipherAES.AES_128.CBC
OpenSSLEvpCipherAES.AES_128.CBC.NoPadding
OpenSSLEvpCipherAES.AES_128.CBC.PKCS5Padding
OpenSSLEvpCipherAES.AES_128.CTR
OpenSSLEvpCipherAES.AES_128.ECB
OpenSSLEvpCipherAES.AES_128.ECB.NoPadding
OpenSSLEvpCipherAES.AES_128.ECB.PKCS5Padding
OpenSSLEvpCipherAES.AES_256
OpenSSLEvpCipherAES.AES_256.CBC
OpenSSLEvpCipherAES.AES_256.CBC.NoPadding
OpenSSLEvpCipherAES.AES_256.CBC.PKCS5Padding
OpenSSLEvpCipherAES.AES_256.CTR
OpenSSLEvpCipherAES.AES_256.ECB
OpenSSLEvpCipherAES.AES_256.ECB.NoPadding
OpenSSLEvpCipherAES.AES_256.ECB.PKCS5Padding
OpenSSLEvpCipherAES.AES.CBC
OpenSSLEvpCipherAES.AES.CBC.NoPadding
OpenSSLEvpCipherAES.AES.CBC.PKCS5Padding
OpenSSLEvpCipherAES.AES.CTR
OpenSSLEvpCipherAES.AES.ECB
OpenSSLEvpCipherAES.AES.ECB.NoPadding
OpenSSLEvpCipherAES.AES.ECB.PKCS5Padding
OpenSSLEvpCipherARC4
OpenSSLEvpCipherDESEDE
OpenSSLEvpCipherDESEDE.CBC
OpenSSLEvpCipherDESEDE.CBC.NoPadding
OpenSSLEvpCipherDESEDE.CBC.PKCS5Padding
OpenSSLMac	An implementation of Mac which uses BoringSSL to perform all the operations.
OpenSSLMac.HmacMD5
OpenSSLMac.HmacSHA1
OpenSSLMac.HmacSHA224
OpenSSLMac.HmacSHA256
OpenSSLMac.HmacSHA384
OpenSSLMac.HmacSHA512
OpenSSLMessageDigestJDK	Implements the JDK MessageDigest interface using OpenSSL's EVP API.
OpenSSLMessageDigestJDK.MD5
OpenSSLMessageDigestJDK.SHA1
OpenSSLMessageDigestJDK.SHA224
OpenSSLMessageDigestJDK.SHA256
OpenSSLMessageDigestJDK.SHA384
OpenSSLMessageDigestJDK.SHA512
OpenSSLProvider	Provider that uses BoringSSL to perform the actual cryptographic operations.
OpenSSLRandom	Implements SecureRandom using BoringSSL's RAND interface.
OpenSSLRSAKeyFactory	An implementation of KeyFactory which uses BoringSSL to perform all the operations.
OpenSSLRSAKeyPairGenerator	An implementation of KeyPairGenerator which uses BoringSSL to perform all the operations.
OpenSSLRSAPublicKey	An implementation of PublicKey for RSA keys which uses BoringSSL to perform all the operations.
OpenSSLSignature	Implements the subset of the JDK Signature interface needed for signature verification using OpenSSL.
OpenSSLSignature.MD5RSA
OpenSSLSignature.SHA1ECDSA
OpenSSLSignature.SHA1RSA
OpenSSLSignature.SHA1RSAPSS
OpenSSLSignature.SHA224ECDSA
OpenSSLSignature.SHA224RSA
OpenSSLSignature.SHA224RSAPSS
OpenSSLSignature.SHA256ECDSA
OpenSSLSignature.SHA256RSA
OpenSSLSignature.SHA256RSAPSS
OpenSSLSignature.SHA384ECDSA
OpenSSLSignature.SHA384RSA
OpenSSLSignature.SHA384RSAPSS
OpenSSLSignature.SHA512ECDSA
OpenSSLSignature.SHA512RSA
OpenSSLSignature.SHA512RSAPSS
OpenSSLSignatureRawECDSA	Implements the JDK Signature interface needed for RAW ECDSA signature generation and verification using BoringSSL.
OpenSSLSignatureRawRSA	Implements the JDK Signature interface needed for RAW RSA signature generation and verification using BoringSSL.
OpenSSLSocketImpl	Public shim allowing us to stay backward-compatible with legacy applications which were using Conscrypt's extended socket API before the introduction of the Conscrypt class.
OpenSSLX509Certificate	An implementation of X509Certificate based on BoringSSL.
OpenSSLX509CertificateFactory	An implementation of CertificateFactory based on BoringSSL.
PSSParameters	AlgorithmParameters implementation for PSS.
ServerSessionContext	Caches server sessions.
TrustedCertificateIndex	Indexes TrustAnchor instances so they can be found in O(1) time instead of O(N).
TrustManagerFactoryImpl	TrustManagerFactory service provider interface implementation.
TrustManagerImpl	TrustManager implementation.

Annotation Types Summary

Annotation Type	Description
ExperimentalApi	Indicates a public API that can change at any time, and has no guarantee of API stability and backward-compatibility.
Internal	Annotates a program element (class, method, package etc) which is internal to Conscrypt, not part of the public API, and should not be used by users of Conscrypt.