reference/develop/coap__dtls__internal_8h_source.html

/*

 * coap_dtls_internal.h -- (Datagram) Transport Layer Support for libcoap

 *

 * Copyright (C) 2016      Olaf Bergmann <bergmann@tzi.org>

 * Copyright (C) 2017      Jean-Claude Michelou <jcm@spinetix.com>

 * Copyright (C) 2023-2025 Jon Shallow <supjps-libcoap@jpshallow.com>

 *

 * SPDX-License-Identifier: BSD-2-Clause

 *

 * This file is part of the CoAP library libcoap. Please see README for terms

 * of use.

 */


#ifndef COAP_DTLS_INTERNAL_H_

#define COAP_DTLS_INTERNAL_H_


#include "coap_internal.h"


#ifdef __cplusplus

extern "C" {

#endif


/* https://rfc-editor.org/rfc/rfc6347#section-4.2.4.1 */

#ifndef COAP_DTLS_RETRANSMIT_MS

#define COAP_DTLS_RETRANSMIT_MS 1000

#endif

#ifndef COAP_DTLS_RETRANSMIT_TOTAL_MS

#define COAP_DTLS_RETRANSMIT_TOTAL_MS 60000

#endif


#define COAP_DTLS_RETRANSMIT_COAP_TICKS (COAP_DTLS_RETRANSMIT_MS * COAP_TICKS_PER_SECOND / 1000)


/* For RFC9146 Connection ID support */

#ifndef COAP_DTLS_CID_LENGTH

#define COAP_DTLS_CID_LENGTH 8

#endif


typedef enum {

  COAP_DEFINE_KEY_CA,

  COAP_DEFINE_KEY_ROOT_CA,

  COAP_DEFINE_KEY_PUBLIC,

  COAP_DEFINE_KEY_PRIVATE

} coap_define_issue_key_t;


typedef enum {

  COAP_DEFINE_FAIL_BAD,

  COAP_DEFINE_FAIL_NOT_SUPPORTED,

  COAP_DEFINE_FAIL_NONE

} coap_define_issue_fail_t;


void *coap_dtls_new_context(coap_context_t *coap_context);


#if COAP_SERVER_SUPPORT

int coap_dtls_context_set_spsk(coap_context_t *coap_context,

                               coap_dtls_spsk_t *setup_data);

#endif /* COAP_SERVER_SUPPORT */


#if COAP_CLIENT_SUPPORT

int coap_dtls_context_set_cpsk(coap_context_t *coap_context,

                               coap_dtls_cpsk_t *setup_data);

#endif /* COAP_CLIENT_SUPPORT */


int coap_dtls_context_set_pki(coap_context_t *coap_context,

                              const coap_dtls_pki_t *setup_data,

                              const coap_dtls_role_t role);


int coap_dtls_context_set_pki_root_cas(coap_context_t *coap_context,

                                       const char *ca_file,

                                       const char *ca_dir);


int coap_dtls_context_load_pki_trust_store(coap_context_t *coap_context);


int coap_dtls_context_check_keys_enabled(coap_context_t *coap_context);


void coap_dtls_free_context(void *dtls_context);


#if COAP_CLIENT_SUPPORT

void *coap_dtls_new_client_session(coap_session_t *coap_session);

#endif /* COAP_CLIENT_SUPPORT */


#if COAP_SERVER_SUPPORT

void *coap_dtls_new_server_session(coap_session_t *coap_session);

#endif /* COAP_SERVER_SUPPORT */


void coap_dtls_free_session(coap_session_t *coap_session);


void coap_dtls_session_update_mtu(coap_session_t *coap_session);


ssize_t coap_dtls_send(coap_session_t *coap_session,

                       const uint8_t *data,

                       size_t data_len);


int coap_dtls_is_context_timeout(void);


coap_tick_t coap_dtls_get_context_timeout(void *dtls_context);


coap_tick_t coap_dtls_get_timeout(coap_session_t *coap_session,

                                  coap_tick_t now);


int coap_dtls_handle_timeout(coap_session_t *coap_session);


int coap_dtls_receive(coap_session_t *coap_session,

                      const uint8_t *data,

                      size_t data_len);


#if COAP_SERVER_SUPPORT

int coap_dtls_hello(coap_session_t *coap_session,

                    const uint8_t *data,

                    size_t data_len);

#endif /* COAP_SERVER_SUPPORT */


void coap_dtls_establish(coap_session_t *session);


void coap_dtls_close(coap_session_t *session);


unsigned int coap_dtls_get_overhead(coap_session_t *coap_session);


#if COAP_CLIENT_SUPPORT

void *coap_tls_new_client_session(coap_session_t *coap_session);

#endif /* COAP_CLIENT_SUPPORT */


#if COAP_SERVER_SUPPORT

void *coap_tls_new_server_session(coap_session_t *coap_session);

#endif /* COAP_SERVER_SUPPORT */


void coap_tls_free_session(coap_session_t *coap_session);


ssize_t coap_tls_write(coap_session_t *coap_session,

                       const uint8_t *data,

                       size_t data_len

                      );


ssize_t coap_tls_read(coap_session_t *coap_session,

                      uint8_t *data,

                      size_t data_len

                     );


void coap_tls_establish(coap_session_t *session);


void coap_tls_close(coap_session_t *session);


const coap_bin_const_t *coap_get_session_client_psk_key(

    const coap_session_t *coap_session);


const coap_bin_const_t *coap_get_session_client_psk_identity(

    const coap_session_t *coap_session);


const coap_bin_const_t *coap_get_session_server_psk_key(

    const coap_session_t *coap_session);


const coap_bin_const_t *coap_get_session_server_psk_hint(

    const coap_session_t *coap_session);


void coap_dtls_startup(void);


void coap_dtls_shutdown(void);


void *coap_dtls_get_tls(const coap_session_t *session,

                        coap_tls_library_t *tls_lib);


void coap_dtls_map_key_type_to_define(const coap_dtls_pki_t *setup_data,

                                      coap_dtls_key_t *key);


int coap_dtls_define_issue(coap_define_issue_key_t type,

                           coap_define_issue_fail_t fail,

                           coap_dtls_key_t *key,

                           const coap_dtls_role_t role,

                           int ret);


int coap_dtls_set_cid_tuple_change(coap_context_t *context, uint8_t every);


#ifdef __cplusplus

}

#endif


#endif /* COAP_DTLS_INTERNAL_H */

coap_internal.h
Pulls together all the internal only header files.

coap_tick_t
uint64_t coap_tick_t
This data type represents internal timer ticks with COAP_TICKS_PER_SECOND resolution.
Definition coap_time.h:152

coap_tls_free_session
void coap_tls_free_session(coap_session_t *coap_session)
Terminates the TLS session (may send an ALERT if necessary) then frees the underlying TLS library obj...

coap_tls_new_server_session
void * coap_tls_new_server_session(coap_session_t *coap_session)
Create a TLS new server-side session.

coap_dtls_get_context_timeout
coap_tick_t coap_dtls_get_context_timeout(void *dtls_context)
Do all pending retransmits and get next timeout.

coap_get_session_client_psk_identity
const coap_bin_const_t * coap_get_session_client_psk_identity(const coap_session_t *coap_session)
Get the current client's PSK identity.

coap_dtls_startup
void coap_dtls_startup(void)
Initialize the underlying (D)TLS Library layer.
Definition coap_notls.c:154

coap_dtls_get_timeout
coap_tick_t coap_dtls_get_timeout(coap_session_t *coap_session, coap_tick_t now)
Get next timeout for this session.

coap_dtls_define_issue
int coap_dtls_define_issue(coap_define_issue_key_t type, coap_define_issue_fail_t fail, coap_dtls_key_t *key, const coap_dtls_role_t role, int ret)
Report PKI DEFINE type issue.
Definition coap_dtls.c:165

coap_define_issue_key_t
coap_define_issue_key_t
Definition coap_dtls_internal.h:50

coap_dtls_new_client_session
void * coap_dtls_new_client_session(coap_session_t *coap_session)
Create a new client-side session.

coap_dtls_session_update_mtu
void coap_dtls_session_update_mtu(coap_session_t *coap_session)
Notify of a change in the CoAP session's MTU, for example after a PMTU update.

coap_tls_establish
void coap_tls_establish(coap_session_t *session)
Layer function interface for layer below TLS accept/connect being established.
Definition coap_dtls.c:295

coap_dtls_get_overhead
unsigned int coap_dtls_get_overhead(coap_session_t *coap_session)
Get DTLS overhead over cleartext PDUs.

coap_tls_write
ssize_t coap_tls_write(coap_session_t *coap_session, const uint8_t *data, size_t data_len)
Send data to a TLS peer, with implicit flush.

coap_dtls_establish
void coap_dtls_establish(coap_session_t *session)
Layer function interface for layer below DTLS connect being established.
Definition coap_dtls.c:266

coap_dtls_new_server_session
void * coap_dtls_new_server_session(coap_session_t *coap_session)
Create a new DTLS server-side session.

coap_dtls_hello
int coap_dtls_hello(coap_session_t *coap_session, const uint8_t *data, size_t data_len)
Handling client HELLO messages from a new candiate peer.

coap_dtls_set_cid_tuple_change
int coap_dtls_set_cid_tuple_change(coap_context_t *context, uint8_t every)
Set the Connection ID client tuple frequency change for testing CIDs.

coap_dtls_free_session
void coap_dtls_free_session(coap_session_t *coap_session)
Terminates the DTLS session (may send an ALERT if necessary) then frees the underlying TLS library ob...

coap_dtls_is_context_timeout
int coap_dtls_is_context_timeout(void)
Check if timeout is handled per CoAP session or per CoAP context.
Definition coap_notls.c:219

coap_dtls_context_set_cpsk
int coap_dtls_context_set_cpsk(coap_context_t *coap_context, coap_dtls_cpsk_t *setup_data)
Set the DTLS context's default client PSK information.

coap_dtls_context_set_spsk
int coap_dtls_context_set_spsk(coap_context_t *coap_context, coap_dtls_spsk_t *setup_data)
Set the DTLS context's default server PSK information.

coap_dtls_handle_timeout
int coap_dtls_handle_timeout(coap_session_t *coap_session)
Handle a DTLS timeout expiration.

coap_dtls_context_set_pki_root_cas
int coap_dtls_context_set_pki_root_cas(coap_context_t *coap_context, const char *ca_file, const char *ca_dir)
Set the dtls context's default Root CA information for a client or server.

coap_dtls_new_context
void * coap_dtls_new_context(coap_context_t *coap_context)
Creates a new DTLS context for the given coap_context.

coap_dtls_shutdown
void coap_dtls_shutdown(void)
Close down the underlying (D)TLS Library layer.
Definition coap_notls.c:166

coap_get_session_client_psk_key
const coap_bin_const_t * coap_get_session_client_psk_key(const coap_session_t *coap_session)
Get the current client's PSK key.

coap_tls_read
ssize_t coap_tls_read(coap_session_t *coap_session, uint8_t *data, size_t data_len)
Read some data from a TLS peer.

coap_define_issue_fail_t
coap_define_issue_fail_t
Definition coap_dtls_internal.h:57

coap_tls_new_client_session
void * coap_tls_new_client_session(coap_session_t *coap_session)
Create a new TLS client-side session.

coap_dtls_map_key_type_to_define
void coap_dtls_map_key_type_to_define(const coap_dtls_pki_t *setup_data, coap_dtls_key_t *key)
Map the PKI key definitions to the new DEFINE format.
Definition coap_dtls.c:26

coap_get_session_server_psk_key
const coap_bin_const_t * coap_get_session_server_psk_key(const coap_session_t *coap_session)
Get the current server's PSK key.

coap_dtls_context_set_pki
int coap_dtls_context_set_pki(coap_context_t *coap_context, const coap_dtls_pki_t *setup_data, const coap_dtls_role_t role)
Set the DTLS context's default server PKI information.

coap_get_session_server_psk_hint
const coap_bin_const_t * coap_get_session_server_psk_hint(const coap_session_t *coap_session)
Get the current server's PSK identity hint.

coap_dtls_free_context
void coap_dtls_free_context(void *dtls_context)
Releases the storage allocated for dtls_context.

coap_tls_close
void coap_tls_close(coap_session_t *session)
Layer function interface for TLS close for a session.
Definition coap_dtls.c:314

coap_dtls_get_tls
void * coap_dtls_get_tls(const coap_session_t *session, coap_tls_library_t *tls_lib)
Get the actual (D)TLS object for the session.

coap_dtls_receive
int coap_dtls_receive(coap_session_t *coap_session, const uint8_t *data, size_t data_len)
Handling incoming data from a DTLS peer.

coap_dtls_context_check_keys_enabled
int coap_dtls_context_check_keys_enabled(coap_context_t *coap_context)
Check whether one of the coap_dtls_context_set_{psk|pki}() functions have been called.

coap_dtls_close
void coap_dtls_close(coap_session_t *session)
Layer function interface for DTLS close for a session.
Definition coap_dtls.c:285

coap_dtls_context_load_pki_trust_store
int coap_dtls_context_load_pki_trust_store(coap_context_t *coap_context)
Load dtls context's default trusted CAs for a client or server.

coap_dtls_send
ssize_t coap_dtls_send(coap_session_t *coap_session, const uint8_t *data, size_t data_len)
Send data to a DTLS peer.

COAP_DEFINE_KEY_PRIVATE
@ COAP_DEFINE_KEY_PRIVATE
Definition coap_dtls_internal.h:54

COAP_DEFINE_KEY_ROOT_CA
@ COAP_DEFINE_KEY_ROOT_CA
Definition coap_dtls_internal.h:52

COAP_DEFINE_KEY_CA
@ COAP_DEFINE_KEY_CA
Definition coap_dtls_internal.h:51

COAP_DEFINE_KEY_PUBLIC
@ COAP_DEFINE_KEY_PUBLIC
Definition coap_dtls_internal.h:53

COAP_DEFINE_FAIL_NONE
@ COAP_DEFINE_FAIL_NONE
Definition coap_dtls_internal.h:60

COAP_DEFINE_FAIL_NOT_SUPPORTED
@ COAP_DEFINE_FAIL_NOT_SUPPORTED
Definition coap_dtls_internal.h:59

COAP_DEFINE_FAIL_BAD
@ COAP_DEFINE_FAIL_BAD
Definition coap_dtls_internal.h:58

coap_dtls_role_t
coap_dtls_role_t
Definition coap_dtls.h:48

coap_tls_library_t
coap_tls_library_t
Definition coap_dtls.h:74

coap_bin_const_t
CoAP binary data definition with const data.
Definition coap_str.h:67

coap_context_t
The CoAP stack's global state is stored in a coap_context_t object.
Definition coap_net_internal.h:55

coap_dtls_cpsk_t
The structure used for defining the Client PSK setup data to be used.
Definition coap_dtls.h:414

coap_dtls_key_t
The structure that holds the PKI key information.
Definition coap_dtls.h:283

coap_dtls_pki_t
The structure used for defining the PKI setup data to be used.
Definition coap_dtls.h:316

coap_dtls_spsk_t
The structure used for defining the Server PSK setup data to be used.
Definition coap_dtls.h:505

coap_session_t
Abstraction of virtual session that can be attached to coap_context_t (client) or coap_endpoint_t (se...
Definition coap_session_internal.h:72