diff options
| author | Garrett D'Amore <garrett@damore.org> | 2018-03-02 16:38:49 -0800 |
|---|---|---|
| committer | Garrett D'Amore <garrett@damore.org> | 2018-03-02 17:15:47 -0800 |
| commit | 6ea6b8659ffc2bdff325a3d71c67cc1cfb854c51 (patch) | |
| tree | ef6f6fc35e71f2279b118e6b9cbfecd275b696cf /src/supplemental/tls/tls_api.h | |
| parent | 48a1033794eb423c3f216bba02abd61240306e0d (diff) | |
| download | nng-6ea6b8659ffc2bdff325a3d71c67cc1cfb854c51.tar.gz nng-6ea6b8659ffc2bdff325a3d71c67cc1cfb854c51.tar.bz2 nng-6ea6b8659ffc2bdff325a3d71c67cc1cfb854c51.zip | |
Isolate TLS functions into separate tls.h header file.
Diffstat (limited to 'src/supplemental/tls/tls_api.h')
| -rw-r--r-- | src/supplemental/tls/tls_api.h | 53 |
1 files changed, 53 insertions, 0 deletions
diff --git a/src/supplemental/tls/tls_api.h b/src/supplemental/tls/tls_api.h new file mode 100644 index 00000000..24d8e578 --- /dev/null +++ b/src/supplemental/tls/tls_api.h @@ -0,0 +1,53 @@ +// +// Copyright 2018 Staysail Systems, Inc. <info@staysail.tech> +// Copyright 2018 Capitar IT Group BV <info@capitar.com> +// +// This software is supplied under the terms of the MIT License, a +// copy of which should be located in the distribution where this +// file was obtained (LICENSE.txt). A copy of the license may also be +// found online at https://opensource.org/licenses/MIT. +// + +#ifndef NNG_SUPPLEMENTAL_TLS_TLS_API_H +#define NNG_SUPPLEMENTAL_TLS_TLS_API_H + +#include <stdbool.h> + +// nni_tls represents the context for a single TLS stream. +typedef struct nni_tls nni_tls; + +// nni_tls_config_init creates a new TLS configuration object. +// The object is created with a reference count of one. +extern int nni_tls_config_init(nng_tls_config **, nng_tls_mode); + +// nni_tls_config_fini drops the reference on the configuration +// object, deallocating if this was the last reference. +extern void nni_tls_config_fini(nng_tls_config *); + +// nni_tls_config_hold is used to get a hold on the config +// object, preventing it from being released inadvertently. +// The hold is released with a call to nng_tls_config_fini(). +// Note that a hold need not be acquired at creation, since +// the configuration object is created with a hold on it. +extern void nni_tls_config_hold(nng_tls_config *); + +extern int nni_tls_init(nni_tls **, nng_tls_config *, nni_plat_tcp_pipe *); +extern void nni_tls_close(nni_tls *); +extern void nni_tls_fini(nni_tls *); +extern void nni_tls_send(nni_tls *, nng_aio *); +extern void nni_tls_recv(nni_tls *, nng_aio *); +extern int nni_tls_sockname(nni_tls *, nni_sockaddr *); +extern int nni_tls_peername(nni_tls *, nni_sockaddr *); + +// nni_tls_verified returns true if the peer, or false if the peer did not +// verify. (During the handshake phase, the peer is not verified, so this +// might return false if executed too soon. The verification status will +// be accurate once the handshake is finished, however. +extern bool nni_tls_verified(nni_tls *); + +// nni_tls_ciphersuite_name returns the name of the ciphersuite in use. +extern const char *nni_tls_ciphersuite_name(nni_tls *); + +// TBD: getting additional peer certificate information... + +#endif // NNG_SUPPLEMENTAL_TLS_TLS_API_H |