DTLS server example making use of wolfHSM

[JacobBarthelmeh]

No description provided.

[Copilot]

Pull request overview

Adds a DTLS server demo that offloads wolfSSL cryptography to a wolfHSM server (POSIX shared-memory transport, optional DMA).

Changes:

• Introduces a DTLS server implementation (server.c, server_io.c) and a small protocol-agnostic server API (server.h).
• Adds demo-specific wolfSSL/wolfHSM build configuration headers under config/.
• Adds build/run automation (Makefile) and usage documentation (README).

Reviewed changes

Copilot reviewed 7 out of 7 changed files in this pull request and generated 12 comments.

Show a summary per file

File	Description
hsm/dtls_server/server_io.c	Implements DTLS socket + wolfSSL context/handshake + read/write helpers using wolfHSM device ID.
hsm/dtls_server/server.h	Declares a small server API and configuration struct for the demo.
hsm/dtls_server/server.c	Demo main program: connects to wolfHSM server, registers crypto callbacks, runs DTLS echo server.
hsm/dtls_server/config/wolfhsm_cfg.h	wolfHSM client configuration for the demo (POSIX time, client enablement, etc.).
hsm/dtls_server/config/user_settings.h	wolfSSL feature configuration for DTLS 1.3 + crypto callback operation.
hsm/dtls_server/README.md	Build/run instructions and architecture overview for the demo.
hsm/dtls_server/Makefile	One-command build of wolfSSL, wolfHSM server, and the DTLS server demo; run helpers.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Building objects into a single directory using only $(notdir ...) risks object-name collisions (same basename from different directories), which can silently overwrite .o files and produce incorrect binaries. Use unique object paths (e.g., mirror source directories under Build/, or encode the source path into the object filename) so every source compiles to a distinct object file.

[Copilot]

wolfSSL_get_error() returns a wolfSSL I/O/error category (e.g., WOLFSSL_ERROR_WANT_READ, WOLFSSL_ERROR_SSL), but wolfSSL_ERR_reason_error_string() expects an entry from the wolfSSL error queue (from wolfSSL_ERR_get_error()), so the printed reason will be wrong or NULL. Consider printing the wolfSSL_get_error() code as-is, and separately drain/print the error queue via wolfSSL_ERR_get_error() (or use the appropriate wolfSSL error-string API for the returned code).

Suggested change

	fprintf(stderr, "wolfSSL_accept failed: error = %d, %s\n", err,
	wolfSSL_ERR_reason_error_string(err));
	fprintf(stderr, "wolfSSL_accept failed: error = %d\n", err);
	/* Drain and print wolfSSL error queue for more detailed info */
	for (;;) {
	unsigned long queueErr = wolfSSL_ERR_get_error();
	if (queueErr == 0) {
	break;
	}
	{
	const char* reason = wolfSSL_ERR_reason_error_string(queueErr);
	fprintf(stderr, " wolfSSL error queue: code = %lu, reason = %s\n",
	queueErr, (reason != NULL) ? reason : "unknown");
	}
	}

[Copilot]

For DTLS/TLS, wolfSSL_read() can legitimately return WOLFSSL_ERROR_WANT_READ (and wolfSSL_write() can return WANT_WRITE) without indicating a fatal error. Returning -1 here will cause the caller to treat a retryable condition as a hard failure/disconnect. Propagate retryable errors distinctly (e.g., return 0, or map WANT_READ/WANT_WRITE to a specific non-fatal return code) and only return -1 for non-retryable errors.

[Copilot]

g_shm_config is written without being zero-initialized. If posixTransportShmConfig contains additional fields beyond those explicitly assigned here, they may contain indeterminate values and break transport initialization. Add memset(&g_shm_config, 0, sizeof(g_shm_config)); before populating its fields.

[Copilot]

Enabling wolfSSL debugging unconditionally can leak sensitive operational details into logs and is risky outside local dev. Gate this behind a build-time flag (e.g., DEBUG/WOLFHSM_CFG_DEBUG) or a runtime option, and keep debugging disabled by default.

Suggested change

	/* Enable debug output */
	wolfSSL_Debugging_ON();
	/* Enable debug output (only when explicitly enabled at build time) */
	#ifdef WOLFHSM_CFG_DEBUG
	wolfSSL_Debugging_ON();
	#endif

[Copilot]

The README paths don’t match this PR’s directory layout (hsm/dtls_server/...), which will cause copy/paste build/run steps to fail. Update the cd ... instructions to the correct location for this demo, and fix the double-space typo in 'using wolfssl'.

Suggested change

	cd examples/demo/dtls_server
	cd hsm/dtls_server

[Copilot]

The README paths don’t match this PR’s directory layout (hsm/dtls_server/...), which will cause copy/paste build/run steps to fail. Update the cd ... instructions to the correct location for this demo, and fix the double-space typo in 'using wolfssl'.

[Copilot]

The README paths don’t match this PR’s directory layout (hsm/dtls_server/...), which will cause copy/paste build/run steps to fail. Update the cd ... instructions to the correct location for this demo, and fix the double-space typo in 'using wolfssl'.

[Copilot]

The README paths don’t match this PR’s directory layout (hsm/dtls_server/...), which will cause copy/paste build/run steps to fail. Update the cd ... instructions to the correct location for this demo, and fix the double-space typo in 'using wolfssl'.

Suggested change

	# For DTLS (default mode) - using wolfssl with DTLS 1.3
	# For DTLS (default mode) - using wolfssl with DTLS 1.3

[Copilot]

inet_ntoa() uses a static internal buffer and is not thread-safe. Even if this is a demo, using inet_ntop() avoids that pitfall and is a safer pattern to copy into production code.

Suggested change

	printf("Received initial packet from %s:%d\n",
	inet_ntoa(ctx->cliaddr.sin_addr),
	/* Convert client IP address to string in a thread-safe manner */
	char addrStr[INET_ADDRSTRLEN];
	const char* addrPrint = inet_ntop(AF_INET, &ctx->cliaddr.sin_addr,
	addrStr, sizeof(addrStr));
	if (addrPrint == NULL) {
	addrPrint = "unknown";
	}
	printf("Received initial packet from %s:%d\n",
	addrPrint,