libdill: Structured Concurrency for C


tls_attach_server_mem - creates TLS protocol on top of underlying socket


#include <libdill.h>

int tls_attach_server_mem(
    int s,
    const char* cert,
    const char* cert,
    void* mem,
    int64_t deadline);


WARNING: This is experimental functionality and the API may change in the future.

TLS is a cryptographic protocol to provide secure communication over the network. It is a bytestream protocol.

This function instantiates TLS protocol on top of the underlying protocol. TLS protocol being asymmetric, client and server sides are intialized in different ways. This particular function initializes the server side of the connection.

This function allows to avoid one dynamic memory allocation by storing the object in user-supplied memory. Unless you are hyper-optimizing use tls_attach_server instead.

s: Handle of the underlying socket. It must be a bytestream protocol.

cert: Filename of the file contianing the certificate.

cert: Filename of the file contianing the private key.

mem: The memory to store the newly created object. It must be at least TLS_SIZE bytes long and must not be deallocated before the object is closed.

deadline: A point in time when the operation should time out, in milliseconds. Use the now function to get your current point in time. 0 means immediate timeout, i.e., perform the operation if possible or return without blocking if not. -1 means no deadline, i.e., the call will block forever if the operation cannot be performed.

The socket can be cleanly shut down using tls_detach function.

This function is not available if libdill is compiled with --disable-sockets option.

This function is not available if libdill is compiled without --enable-tls option.


In case of success the function returns newly created socket handle. In case of error it returns -1 and sets errno to one of the values below.



int s = tcp_accept(listener, NULL, -1);
s = tls_attach_server(s, -1);
bsend(s, "ABC", 3, -1);
char buf[3];
ssize_t sz = brecv(s, buf, sizeof(buf), -1);
s = tls_detach(s, -1);


brecv(3) brecvl(3) bsend(3) bsendl(3) hclose(3) now(3) tls_attach_client(3) tls_attach_client_mem(3) tls_attach_server(3) tls_detach(3)