TLS 1.1
TLS 1.1 API wrappers over the shared TLS 1.2-style context. Header: noxtls_tls11.h.
Deprecated and insecure
TLS 1.1 is deprecated and should not be used for new deployments. It is widely disabled by modern platforms and does not meet current best-practice security requirements.
Usage guidance
- Use TLS 1.1 only for temporary compatibility with legacy peers that cannot yet move forward.
- Minimize scope and lifetime of any TLS 1.1 exception in production.
- Plan migration to TLS 1.2 or TLS 1.3 as soon as possible.
Types
tls11_context_t
Alias of tls12_context_t specialized for TLS 1.1 operation.
API
Core lifecycle and I/O
tls11_context_inittls11_context_freetls11_connecttls11_accepttls11_sendtls11_recvtls11_close
Client handshake steps
tls11_send_client_hellotls11_recv_server_hellotls11_recv_certificatetls11_recv_server_key_exchangetls11_recv_server_hello_donetls11_send_client_key_exchangetls11_send_change_cipher_spectls11_send_finishedtls11_recv_change_cipher_spectls11_recv_finished
Server handshake steps
tls11_recv_client_hellotls11_send_server_hellotls11_send_certificatetls11_send_server_key_exchangetls11_send_server_hello_donetls11_recv_client_key_exchangetls11_recv_change_cipher_spec_clienttls11_recv_finished_clienttls11_send_change_cipher_spec_servertls11_send_finished_server
For shared structures and record constants, see TLS (common).