s6-networking
Software
skarnet.org

The s6-tlsc program

s6-tlsc is a program that establishes a TLS or SSL client connection over an existing TCP connection, then execs into an application. It is meant to make network communications secure even for applications that do not natively support TLS/SSL.

Interface

     s6-tlsc [ -S | -s ] [ -J | -j ] [ -Y | -y ] [ -Z | -z ] [ -v verbosity ] [ -K kimeout ] [ -k servername ] [ -6 rfd ] [ -7 wfd ] [ -- ] prog...

Exit codes

If everything goes smoothly, s6-tlsc does not exit, but execs into prog... instead.

Environment variables

Read

s6-tlsc does not expect to have any particular environment variables, but it spawns an s6-tlsc-io program that does. So it should pay attention to the following variables:

Written

By default, prog... is run with all these variables unset: CADIR, CAFILE, KEYFILE, CERTFILE, TLS_UID and TLS_GID. They're passed to the s6-tlsc-io child but not to prog.... The -Z option prevents that behaviour.

However, prog... is run with the following additional environment variables:

Options

Notes