Welcome to TLSSock!
TLSSock is a library which wraps the POSIX networking APIs in order to provide TLS and DTLS connectivity without invasive application restructuring. For example, you can write your application using normal TCP/IP sockets and then, with a few #ifdefs, convert your application to use TLS.
This is accomplished by creating a new PROT_TLS
protocol for the socket()
system call. Any sockets created with this protocol will be encrypted using TLS.
TLS requires additional configuration. This is accomplished by adding new
protocol-level socket options for the PROT_TLS
protocol. These options can
be set using setsockopt()
.
This directed graph demonstrats the order of calls in order to get a working TLS connection on either the server-side or the client-side. Grey function calls are optional and will depend on your application's needs.