I want to add an ssl support to an old chat application I wrote years ago. I did a lot of reading on OpenSSL and LibreSSL and I decided to try a new libtls API. I think developers did a really great job on this one. I found it to be very easy to use - almost no changes to my existing code where required. But here is one thing I need to figure out now:
Back in a day, I was using select() to monitor sockets and recv() to read a data. This was easy, because both of those functions are working on file descriptors.
Now, with libtls, function tls_read() requires a tls context as a first argument. This means I need to search the list of clients to get an appropriate tls context every time I have a descriptor ready to be read. This is not that hard but maybe someone knows a better solution? I will appreciate all comments and code samples.
Unless I'm misreading the documentation, it seems to me that if you create the sockets yourself, and then use
tls_connect_fds/tls_connect_socket/tls_accept_fds/tls_accept_socketafterwards, you'll have normal file handles available you can trivially use withselect()/poll()/etc. You'd still need to keep around some sort of file descriptor to context mapping to actually issue thetls_read/tls_writeonce you were ready, but that's just your choice of linked list or hashtable, depending on what language you're using and what stdlib you have available.