FreeBSD Manual Pages

home | help
TLS_ATTACH_SERVER(3)	   libdill Library Functions	  TLS_ATTACH_SERVER(3)

NAME
       tls_attach_server - creates TLS protocol	on top of underlying socket

SYNOPSIS
	      #include <libdill.h>

	      int tls_attach_server(
		  int s,
		  const	char* cert,
		  const	char* cert,
		  int64_t deadline);

DESCRIPTION
       WARNING:	 This  is experimental functionality and the API may change in
       the future.

       TLS is a	cryptographic protocol to provide  secure  communication  over
       the network.  It	is a bytestream	protocol.

       This function instantiates TLS protocol on top of the underlying	proto-
       col.   TLS  protocol  being asymmetric, client and server sides are in-
       tialized	in different ways.  This particular function  initializes  the
       server side of the connection.

       s: Handle of the	underlying socket.  It must be a bytestream protocol.

       cert: Filename of the file contianing the certificate.

       cert: Filename of the file contianing the private key.

       deadline:  A  point in time when	the operation should time out, in mil-
       liseconds.  Use the now function	to get your current point in time.   0
       means immediate timeout,	i.e., perform the operation if possible	or re-
       turn  without  blocking	if  not.  -1 means no deadline,	i.e., the call
       will block forever if the operation cannot be performed.

       The socket can be cleanly shut down using tls_detach function.

       This function is	not available  if  libdill  is	compiled  with	--dis-
       able-sockets option.

       This  function  is  not	available if libdill is	compiled without --en-
       able-tls	option.

RETURN VALUE
       In case of success the function returns newly  created  socket  handle.
       In  case	of error it returns -1 and sets	errno to one of	the values be-
       low.

ERRORS
       • EBADF:	Invalid	handle.

       • ECANCELED: Current coroutine was canceled.

       • ECONNRESET: Broken connection.

       • EINVAL: Invalid argument.

       • EMFILE: The maximum number of file descriptors	in the process are al-
	 ready open.

       • ENFILE: The maximum number of file descriptors	in the system are  al-
	 ready open.

       • ENOMEM: Not enough memory.

       • ENOTSUP: The handle does not support this operation.

       • EPROTO: Underlying socket is not a bytestream socket.

       • ETIMEDOUT: Deadline was reached.

EXAMPLE
	      int s = tcp_accept(listener, NULL, -1);
	      s	= tls_attach_server(s, -1);
	      bsend(s, "ABC", 3, -1);
	      char buf[3];
	      ssize_t sz = brecv(s, buf, sizeof(buf), -1);
	      s	= tls_detach(s,	-1);
	      tcp_close(s);

SEE ALSO
       brecv(3)	  brecvl(3)   bsend(3)	 bsendl(3)  hclose(3)  now(3)  tls_at-
       tach_client(3)	 tls_attach_client_mem(3)     tls_attach_server_mem(3)
       tls_detach(3) tls_done(3)

libdill							  TLS_ATTACH_SERVER(3)
Want to link to this manual page? Use this URL:
<https://man.freebsd.org/cgi/man.cgi?query=tls_attach_server&sektion=3&manpath=FreeBSD+Ports+15.0>
home | help
Header And Logo

Peripheral Links

Site Navigation

FreeBSD Manual Pages

Header And Logo

Peripheral Links

Search

Site Navigation

FreeBSD Manual Pages
