libdill: Structured Concurrency for C


tls_attach_server - creates TLS protocol on top of underlying socket


#include <libdill.h>

int tls_attach_server(
    int s,
    const char* cert,
    const char* cert,
    int64_t deadline);


WARNING: This is experimental functionality and the API may change in the future.

TLS is a cryptographic protocol to provide secure communication over the network. It is a bytestream protocol.

This function instantiates TLS protocol on top of the underlying protocol. TLS protocol being asymmetric, client and server sides are intialized in different ways. This particular function initializes the server side of the connection.

s: Handle of the underlying socket. It must be a bytestream protocol.

cert: Filename of the file contianing the certificate.

cert: Filename of the file contianing the private key.

deadline: A point in time when the operation should time out, in milliseconds. Use the now function to get your current point in time. 0 means immediate timeout, i.e., perform the operation if possible or return without blocking if not. -1 means no deadline, i.e., the call will block forever if the operation cannot be performed.

The socket can be cleanly shut down using tls_detach function.

This function is not available if libdill is compiled with --disable-sockets option.

This function is not available if libdill is compiled without --enable-tls option.


In case of success the function returns newly created socket handle. In case of error it returns -1 and sets errno to one of the values below.



int s = tcp_accept(listener, NULL, -1);
s = tls_attach_server(s, -1);
bsend(s, "ABC", 3, -1);
char buf[3];
ssize_t sz = brecv(s, buf, sizeof(buf), -1);
s = tls_detach(s, -1);


brecv(3) brecvl(3) bsend(3) bsendl(3) hclose(3) now(3) tls_attach_client(3) tls_attach_client_mem(3) tls_attach_server_mem(3) tls_detach(3)