packages feed

libretls (empty) → 0.0.0.0

raw patch · 7 files changed

+433/−0 lines, 7 filesdep +HUnitdep +basedep +containerssetup-changed

Dependencies added: HUnit, base, containers, hspec, libressl, monad-ste, primitive, transformers, vector

Files

+ ChangeLog.md view
@@ -0,0 +1,5 @@+# Revision history for libressl++## 0.1.0.0  -- YYYY-mm-dd++* First version. Released on an unsuspecting world.
+ LICENSE view
@@ -0,0 +1,26 @@+Copyright (c) 2016, Carter Tazio Schonwald+All rights reserved.++Redistribution and use in source and binary forms, with or without+modification, are permitted provided that the following conditions are+met:++1. Redistributions of source code must retain the above copyright+   notice, this list of conditions and the following disclaimer.++2. Redistributions in binary form must reproduce the above copyright+   notice, this list of conditions and the following disclaimer in the+   documentation and/or other materials provided with the+   distribution.++THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS+"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT+LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR+A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT+OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,+SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT+LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,+DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY+THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT+(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE+OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+ Setup.hs view
@@ -0,0 +1,2 @@+import Distribution.Simple+main = defaultMain
+ libretls.cabal view
@@ -0,0 +1,105 @@+cabal-version: 2.2+-- Initial libressl.cabal generated by cabal init.  For further+-- documentation, see http://haskell.org/cabal/users-guide/++-- The name of the package.+name:                libretls++-- The package version.  See the Haskell package versioning policy (PVP)+-- for standards guiding when and how versions should be incremented.+-- https://wiki.haskell.org/Package_versioning_policy+-- PVP summary:      +-+------- breaking API changes+--                   | | +----- non-breaking API additions+--                   | | | +--- code changes with no API change+version:             0.0.0.0++-- A short (one-line) description of the package.+synopsis:            libtls bindings++-- A longer description of the package.+description: A thin wrapper about the libtls wrapper of libressl++-- URL for the project homepage or repository.+homepage:            https://github.com/cartazio/libressl-hs++-- The license under which the package is released.+license:             BSD-2-Clause++-- The file containing the license text.+license-file:        LICENSE++-- The package author(s).+author:              Carter Tazio Schonwald++-- An email address to which users can send suggestions, bug reports, and+-- patches.+maintainer:          carter at wellposed dot com++-- A copyright notice.+-- copyright:++category:            Network++build-type:          Simple++-- Extra files to be distributed with the package, such as examples or a+-- README.+extra-source-files:  ChangeLog.md+++++source-repository head+  type: git+  location: https://github.com/cartazio/libressl-hs.git++library+  -- Modules exported by the library.+  exposed-modules:     Network.Libre.TLS+                      ,Network.Libre.TLS.FFI.Internal+  -- Modules included in this library but not exported.+  -- other-modules:++  -- LANGUAGE extensions used by modules in this package.+  -- other-extensions:++  -- Other library packages from which modules are imported.+  build-depends:       base >=4.9 && <5+                     , transformers >= 0.5+                     , vector >= 0.11 && < 0.13+                     , primitive >= 0.6 && < 0.7+                     , monad-ste >= 0.1 && < 0.2+++--  extra-libraries: libtls+-- mac users may want to do something like+-- set -xl PKG_CONFIG_PATH /usr/local/opt/libressl/lib/pkgconfig+++  if os(linux)+    extra-lib-dirs: /usr/local/lib+    pkgconfig-depends: libtls >= 2.4.4+  if os(OSX)+    extra-lib-dirs: /usr/local/opt/libressl/lib+    include-dirs: /usr/local/opt/libressl/include+++  -- Directories containing source files.+  hs-source-dirs:      src++  -- Base language which the package is written in.+  default-language:    Haskell2010+++test-suite hunit+  type: exitcode-stdio-1.0+  main-is: hunit.hs+  ghc-options: -w -threaded -rtsopts -with-rtsopts=-N+  hs-source-dirs: tests+  default-language: Haskell2010+  build-depends:+      base+      ,containers+      ,HUnit >= 1.2+      ,hspec == 2.3.*+      ,libressl
+ src/Network/Libre/TLS.hs view
@@ -0,0 +1,24 @@++module Network.Libre.TLS where+++import Control.Monad.Primitive+import Network.Libre.TLS.FFI.Internal+import Foreign.C.Types+import Foreign.Ptr+import Foreign.C.String+import System.Posix.Types++++{-+tls_write_c+tls_read_c+allocate_fresh_tls_server_context_c+tls_init_c+tls_handshake_c+tls_free_c++tls_connect_socket_c+tls_connect_c+-}
+ src/Network/Libre/TLS/FFI/Internal.hs view
@@ -0,0 +1,267 @@+{-# LANGUAGE ForeignFunctionInterface #-}++module Network.Libre.TLS.FFI.Internal where+++import Control.Monad.Primitive+import Data.Word(Word32(..), Word8(..))+import Foreign.C.Types+import Foreign.C.String+import Foreign.Ptr+import System.Posix.Types+++{-+--   #define TLS_WANT_POLLIN    -2+--   #define TLS_WANT_POLLOUT  -3+++RETURN VALUES+The tls_peer_cert_provided() and tls_peer_cert_contains_name() functions return 1 if the check succeeds, and 0 if it does not. Functions that return a time_t will return a time in epoch-seconds on success, and -1 on error. Functions that return a ssize_t will return a size on success, and -1 on error. All other functions that return int will return 0 on success and -1 on error. Functions that return a pointer will return NULL on error, which indicates an out of memory condition.+The tls_handshake(), tls_read(), tls_write(), and tls_close() functions have two special return values:++TLS_WANT_POLLIN+    The underlying read file descriptor needs to be readable in order to continue.+TLS_WANT_POLLOUT+    The underlying write file descriptor needs to be writeable in order to continue.++In the case of blocking file descriptors, the same function call should be repeated immediately. In the case of non-blocking file descriptors, the same function call should be repeated when the required condition has been met.+Callers of these functions cannot rely on the value of the global errno. To prevent mishandling of error conditions, tls_handshake(), tls_read(), tls_write(), and tls_close() all explicitly clear errno.+++-}++{-++#define TLS_API 20170126++#define TLS_PROTOCOL_TLSv1_0  (1 << 1)+#define TLS_PROTOCOL_TLSv1_1  (1 << 2)+#define TLS_PROTOCOL_TLSv1_2  (1 << 3)+#define TLS_PROTOCOL_TLSv1 \+  (TLS_PROTOCOL_TLSv1_0|TLS_PROTOCOL_TLSv1_1|TLS_PROTOCOL_TLSv1_2)++#define TLS_PROTOCOLS_ALL TLS_PROTOCOL_TLSv1+#define TLS_PROTOCOLS_DEFAULT TLS_PROTOCOL_TLSv1_2++#define TLS_WANT_POLLIN   -2+#define TLS_WANT_POLLOUT  -3++/* RFC 6960 Section 2.3 */+#define TLS_OCSP_RESPONSE_SUCCESSFUL    0+#define TLS_OCSP_RESPONSE_MALFORMED   1+#define TLS_OCSP_RESPONSE_INTERNALERROR   2+#define TLS_OCSP_RESPONSE_TRYLATER    3+#define TLS_OCSP_RESPONSE_SIGREQUIRED   4+#define TLS_OCSP_RESPONSE_UNAUTHORIZED    5++/* RFC 6960 Section 2.2 */+#define TLS_OCSP_CERT_GOOD      0+#define TLS_OCSP_CERT_REVOKED     1+#define TLS_OCSP_CERT_UNKNOWN     2++/* RFC 5280 Section 5.3.1 */+#define TLS_CRL_REASON_UNSPECIFIED    0+#define TLS_CRL_REASON_KEY_COMPROMISE   1+#define TLS_CRL_REASON_CA_COMPROMISE    2+#define TLS_CRL_REASON_AFFILIATION_CHANGED  3+#define TLS_CRL_REASON_SUPERSEDED   4+#define TLS_CRL_REASON_CESSATION_OF_OPERATION 5+#define TLS_CRL_REASON_CERTIFICATE_HOLD   6+#define TLS_CRL_REASON_REMOVE_FROM_CRL    8+#define TLS_CRL_REASON_PRIVILEGE_WITHDRAWN  9+#define TLS_CRL_REASON_AA_COMPROMISE    10++#define TLS_MAX_SESSION_ID_LENGTH   32+#define TLS_TICKET_KEY_SIZE     48++-}++{-++  define TLS_API 20160904++  define TLS_PROTOCOL_TLSv1_0  (1 << 1)+  define TLS_PROTOCOL_TLSv1_1  (1 << 2)+  define TLS_PROTOCOL_TLSv1_2  (1 << 3)+  define TLS_PROTOCOL_TLSv1 \+   (TLS_PROTOCOL_TLSv1_0|TLS_PROTOCOL_TLSv1_1|TLS_PROTOCOL_TLSv1_2)++  define TLS_PROTOCOLS_ALL TLS_PROTOCOL_TLSv1+  define TLS_PROTOCOLS_DEFAULT TLS_PROTOCOL_TLSv1_2++  define TLS_WANT_POLLIN   -2+  define TLS_WANT_POLLOUT  -3++struct tls;+struct tls_config;++typedef ssize_t (*tls_read_cb)(struct tls *_ctx,+         void *_buf,  size_t _buflen,   void *_cb_arg);+typedef ssize_t (*tls_write_cb)(struct tls *_ctx,+   const void *_buf, size_t _buflen, void *_cb_arg);++-}+-- this is for passing information to and from C land callbacks+newtype CastedStablePtr a = CastedStablePtr ( Ptr ())++newtype TlsReadCallback  b = TLSReadCB (TLSPtr -> {-Ptr a-} Ptr Word8 {-CString-} -> CSize -> CastedStablePtr b -> IO CSsize)+foreign import ccall "wrapper"+  mkReadCB :: (TLSPtr -> {-Ptr a-} Ptr Word8 {-CString-} -> CSize -> CastedStablePtr b -> IO CSsize) -> IO (FunPtr (TlsReadCallback b))++newtype TlsWriteCallback  b = TLSWriteCB  (TLSPtr -> {-Ptr a-}  CString -> CSize -> CastedStablePtr b -> IO CSsize)+foreign import ccall "wrapper"+  mkWriteCB :: (TLSPtr -> {-Ptr a-}  CString -> CSize -> CastedStablePtr b -> IO CSsize) -> IO (FunPtr (TlsWriteCallback b))++primWriteCallback ::  (TLSPtr -> {-Ptr a-}  CString -> CSize -> CastedStablePtr b -> IO CSsize)+      -> IO (FunPtr (TlsWriteCallback b))+primWriteCallback = \ f -> ( mkWriteCB $! (\tl buf buflen arg ->    f tl buf buflen arg ))++primReadCallback :: (TLSPtr -> {-Ptr a-}  Ptr Word8 {-CString-} -> CSize -> CastedStablePtr b -> IO CSsize)+      -> IO (FunPtr (TlsReadCallback b))+primReadCallback = \ f -> (+  mkReadCB $! (\tl buf buflen arg ->  f tl buf buflen arg ))+++--struct tls;+data LibTLSContext+newtype TLSPtr = TheTLSPTR (Ptr LibTLSContext)++--struct tls_config;+data LibTLSConfig+newtype TLSConfigPtr = TheTLSConfigPtr (Ptr LibTLSConfig)++newtype LibreFD = LibreFD { unLibreFD :: CInt }++newtype LibreSocket = LibreSocket { unLibreSocket :: CInt }++newtype FilePathPtr = FilePathPtr (CString) -- null terminated string??!++-- | tls_accept_cbs(struct tls *_ctx, struct tls **_cctx, tls_read_cb _read_cb, tls_write_cb _write_cb, void *_cb_arg) -> int ;+foreign import ccall safe "tls_accept_cbs"  tls_accept_cbs_c :: TLSPtr -> Ptr (TLSPtr) -> (FunPtr (TlsReadCallback a)) -> (FunPtr (TlsWriteCallback a)) -> Ptr a -> IO CInt+-- | tls_accept_fds(struct tls *_ctx, struct tls **_cctx, int _fd_read, int _fd_write)-> int ;+foreign import ccall safe "tls_accept_fds" tls_accept_fds_c :: TLSPtr -> Ptr TLSPtr -> LibreFD -> LibreFD -> IO CInt+-- | tls_accept_socket(struct tls *_ctx, struct tls **_cctx, int _socket)-> int ;+foreign import ccall safe "tls_accept_socket" tls_accept_socket_c :: TLSPtr -> Ptr (Ptr LibTLSContext) -> LibreSocket -> IO CInt++-- | tls_client(void)-> struct tls *;+foreign import ccall safe "tls_client" allocate_fresh_tls_client_context_c :: IO TLSPtr+-- | tls_close(struct tls *_ctx)-> int ;+foreign import ccall safe "tls_close" tls_close_c :: TLSPtr -> IO CInt++-- | tls_config_add_keypair_file(struct tls_config *_config, const char *_cert_file, const char*_key_file ) -> int  ;+foreign import ccall safe "tls_config_add_keypair_file" tls_config_add_keypair_file_c :: TLSConfigPtr -> FilePathPtr -> FilePathPtr -> IO CInt+++-- | tls_config_add_keypair_mem(struct tls_config *_config, const uint8_t *_cert, size_t _cert_len, const uint8_t *_key, size_t _key_len) -> int  ;+foreign import ccall safe "tls_config_add_keypair_mem" tls_config_add_keypair_mem_c :: TLSConfigPtr -> Ptr Word8 -> CSize  -> Ptr Word8  -> CSize->IO CInt++-- | tls_config_add_keypair_ocsp_file(struct tls_config *_config, const char *_cert_file, const char *_key_file, const char *_ocsp_staple_file) -> int ;+foreign import ccall safe "tls_config_add_keypair_ocsp_file" tls_config_add_keypair_ocsp_file_c :: TLSConfigPtr -> FilePathPtr -> FilePathPtr -> FilePathPtr -> IO CInt++-- | tls_config_add_keypair_ocsp_mem(struct tls_config *_config, const uint8_t *_cert, size_t _cert_len,+      -- const uint8_t *_key, size_t _key_len, const uint8_t *_staple, size_t _staple_len) -> int ;+foreign import ccall safe "tls_config_add_keypair_ocsp_mem" tls_config_add_keypair_ocsp_mem_c :: TLSConfigPtr -> Ptr Word8 -> CSize -> Ptr Word8 -> CSize -> Ptr Word8  -> CSize->IO CInt++-- | tls_config_add_ticket_key(struct tls_config *_config, uint32_t _keyrev, unsigned char *_key, size_t _keylen) -> int ;+foreign import ccall safe "tls_config_add_ticket_key" tls_config_add_ticket_key_c :: TLSPtr -> Word32 -> Ptr Word8 -> CSize -> IO Int+++-- | tls_config_clear_keys(struct tls_config *_config)-> void ;+foreign import ccall safe "tls_config_clear_keys" tls_config_clear_keys_c :: TLSConfigPtr -> IO ()+-- | tls_config_error(struct tls_config *_config) -> const char *;+foreign import ccall safe "tls_config_free" tls_config_free_c :: TLSConfigPtr -> IO ()++-- | these given foot gun at the end in mutually inconsistent styles because you shouldn't use them outside of testing+foreign import ccall safe "tls_config_insecure_noverifycert" tls_config_insecure_noverifycert_foot_gun_testingOnly_c :: TLSConfigPtr -> IO ()+foreign import ccall safe "tls_config_insecure_noverifyname" tls_config_insecure_noverifyname_Foot_gun_testingOnly_c :: TLSConfigPtr -> IO ()+foreign import ccall safe "tls_config_insecure_noverifytime" tls_config_insecure_noverifytime_footGun_testing_only_C :: TLSConfigPtr -> IO ()++-- | tls_config_new(void) -> struct tls_config * ;+foreign import ccall safe "tls_config_new" tls_config_new_c :: IO TLSConfigPtr++-- | tls_config_ocsp_require_stapling(struct tls_config *_config)-> void ;+foreign import ccall safe "tls_config_ocsp_require_stapling" tls_config_ocsp_require_stapling_c :: TLSConfigPtr -> IO ()++-- | tls_config_parse_protocols(uint32_t *_protocols, const char *_protostr) -> int ;+foreign import ccall safe "tls_config_parse_protocols" tls_config_parse_protocols_c :: CString -> CString -> IO CInt++-- | tls_config_prefer_ciphers_client(struct tls_config *_config)-> void ;+foreign import ccall safe "tls_config_prefer_ciphers_client" tls_config_prefer_ciphers_client_c :: TLSConfigPtr -> IO ()+-- | tls_config_prefer_ciphers_server(struct tls_config *_config)-> void ;+foreign import ccall safe "tls_config_prefer_ciphers_server" tls_config_prefer_ciphers_server_c :: TLSConfigPtr -> IO ()+-- | tls_config_set_alpn(struct tls_config *_config, const char *_alpn) -> int ;+foreign import ccall safe "tls_config_set_alpn" tls_config_set_alpn_c ::  TLSConfigPtr -> CString -> IO CInt+-- | tls_config_set_ca_file(struct tls_config *_config, const char *_ca_file) -> int ;+foreign import ccall safe "tls_config_set_ca_file" tls_config_set_ca_file_c ::  TLSConfigPtr -> CString -> IO CInt+-- | tls_config_set_ca_mem(struct tls_config *_config, const uint8_t *_ca, size_t _len) -> int ;+foreign import ccall safe "tls_config_set_ca_mem" tls_config_set_ca_mem_c :: TLSConfigPtr -> Ptr Word8 -> CSize -> IO CInt+-- | tls_config_set_ca_path(struct tls_config *_config, const char *_ca_path) -> int ;+foreign import ccall safe "tls_config_set_ca_path" tls_config_set_ca_path_c :: TLSConfigPtr -> CString -> IO CInt+-- | tls_config_set_cert_file(struct tls_config *_config,  const char *_cert_file) -> int ;+foreign import ccall safe "tls_config_set_cert_file" tls_config_set_cert_file_c :: TLSConfigPtr -> CString -> IO CInt+-- | tls_config_set_cert_mem(struct tls_config *_config, const uint8_t *_cert,  size_t _len) -> int ;+foreign import ccall safe "tls_config_set_cert_mem" tls_config_set_cert_mem_c :: TLSConfigPtr -> Ptr Word8 -> CSize -> IO CInt+-- | tls_config_set_ciphers(struct tls_config *_config, const char *_ciphers) -> int ;+foreign import ccall safe "tls_config_set_ciphers" tls_config_set_ciphers_c :: TLSConfigPtr -> CString -> IO CInt++--tls_config_set_crl_file(struct tls_config *_config, const char *_crl_file) -> int ;+-- tls_config_set_crl_mem(struct tls_config *_config, const uint8_t *_crl,  size_t _len) -> int ;++-- | tls_config_set_dheparams(struct tls_config *_config, const char *_params) -> int ;+foreign import ccall safe "tls_config_set_dheparams" tls_config_set_dheparams_c :: TLSConfigPtr -> CString -> IO CInt+-- | tls_config_set_ecdhecurve(struct tls_config *_config, const char *_curve) -> int ;+foreign import ccall safe "tls_config_set_ecdhecurve" tls_config_set_ecdhecurve_c :: TLSConfigPtr -> CString -> IO CInt+-- | tls_config_set_ecdhecurves(struct tls_config *_config, const char *_curves) -> int ;+foreign import ccall safe "tls_config_set_key_file" tls_config_set_key_file_c :: TLSConfigPtr -> CString -> IO CInt+-- | tls_config_set_key_mem(struct tls_config *_config, const uint8_t *_key, size_t _len) -> int ;+foreign import ccall safe "tls_config_set_key_mem" tls_config_set_key_mem_c :: TLSConfigPtr -> Ptr CChar -> CSize -> IO CInt+-- | tls_config_set_keypair_file(struct tls_config *_config, const char *_cert_file, const char *_key_file) -> int ;+foreign import ccall safe "tls_config_set_keypair_file" tls_config_set_keypair_file_c :: TLSConfigPtr -> CString  -> CString -> IO CInt+--tls_config_set_keypair_mem(struct tls_config *_config, const uint8_t *_cert, size_t _cert_len, const uint8_t *_key, size_t _key_len) -> int ;+--tls_config_set_keypair_ocsp_file(struct tls_config *_config, const char *_cert_file, const char *_key_file, const char *_staple_file) -> int ;+--tls_config_set_keypair_ocsp_mem(struct tls_config *_config, const uint8_t *_cert, size_t _cert_len, const uint8_t *_key, size_t _key_len,  const uint8_t *_staple, size_t staple_len) -> int  ;+foreign import ccall safe "tls_config_set_protocols" tls_config_set_protocols_c :: TLSConfigPtr -> Word32 -> IO ()+foreign import ccall safe "tls_config_set_verify_depth" tls_config_set_verify_depth_c  :: TLSConfigPtr -> CInt -> IO ()+foreign import ccall safe "tls_config_verify" tls_config_verify_c :: TLSConfigPtr -> IO ()+foreign import ccall safe "tls_config_verify_client" tls_config_verify_client_c :: TLSConfigPtr -> IO ()+foreign import ccall safe "tls_config_verify_client_optional" tls_config_verify_client_optional_c :: TLSConfigPtr -> IO ()++foreign import ccall safe "tls_configure" tls_configure_c :: TLSPtr -> TLSConfigPtr -> IO CInt+foreign import ccall safe "tls_conn_alpn_selected" tls_conn_alpn_selected_c :: TLSPtr -> CString+foreign import ccall safe "tls_conn_cipher" tls_conn_cipher_c :: TLSPtr -> IO CString+--tls_conn_servername+foreign import ccall safe "tls_conn_version" tls_conn_version_c :: TLSPtr -> IO CString+foreign import ccall safe "tls_connect" tls_connect_c :: TLSPtr -> CString -> CString -> IO CInt+--tls_connect_cbs+foreign import ccall safe "tls_connect_fds" tls_connect_fds_c :: TLSPtr -> LibreFD -> LibreFD -> CString -> IO CInt+foreign import ccall safe "tls_connect_servername" tls_connect_servername_c :: TLSPtr -> CString -> CString -> CString -> IO CInt+foreign import ccall safe "tls_connect_socket" tls_connect_socket_c :: TLSPtr -> LibreSocket -> CString -> IO CInt+foreign import ccall safe "tls_error" tls_error_c  :: TLSPtr -> IO CString+foreign import ccall safe "tls_free" tls_free_c :: TLSPtr -> IO ()+foreign import ccall safe "tls_handshake" tls_handshake_c :: TLSPtr -> IO CInt+foreign import ccall safe "tls_init" tls_init_c :: IO CInt+foreign import ccall safe "tls_load_file" tls_load_file_c :: CString -> CSize -> CString -> IO CString++foreign import ccall safe "tls_peer_cert_contains_name" tls_peer_cert_contains_name_c :: TLSPtr -> CString -> IO CInt+foreign import ccall safe "tls_peer_cert_hash" tls_peer_cert_hash_c :: TLSPtr -> IO CString+foreign import ccall safe "tls_peer_cert_issuer" tls_peer_cert_issuer_c :: TLSPtr -> IO CString+foreign import ccall safe "tls_peer_cert_notafter" tls_peer_cert_notafter_c :: TLSPtr -> IO CTime+foreign import ccall safe "tls_peer_cert_notbefore" tls_peer_cert_notbefore_c :: TLSPtr -> IO CTime+foreign import ccall safe "tls_peer_cert_provided" tls_peer_cert_provided_c :: TLSPtr -> IO CInt+foreign import ccall safe "tls_peer_cert_subject" tls_peer_cert_subject_c :: TLSPtr -> IO CString+++--tls_peer_ocsp_cert_status(struct tls *_ctx)-> int ;+--tls_peer_ocsp_crl_reason(struct tls *_ctx)-> int ;+--tls_peer_ocsp_next_update(struct tls *_ctx) -> time_t  ;+--tls_peer_ocsp_response_status(struct tls *_ctx)-> int ;+--tls_peer_ocsp_result(struct tls *_ctx) -> const char *;+--tls_peer_ocsp_revocation_time(struct tls *_ctx) -> time_t  ;+--tls_peer_ocsp_this_update(struct tls *_ctx) -> time_t  ;+--tls_peer_ocsp_url(struct tls *_ctx) -> const char *;++foreign import ccall safe "tls_write" tls_read_c :: TLSPtr -> CString -> CSize -> IO CSsize+--tls_reset+foreign import ccall safe "tls_server" allocate_fresh_tls_server_context_c :: IO TLSPtr -- not sure if thats a good name+foreign import ccall safe "tls_write" tls_write_c :: TLSPtr -> CString -> CSize -> IO CSsize
+ tests/hunit.hs view
@@ -0,0 +1,4 @@+module Main where++import Network.Libre.TLS.FFI.Internal+main = putStrLn "hello"