Re: Datagram TLS source
Nagendra, I looked at DtlsTransport.cxx. I think that answers my questions. Thanks you. Prashant.nagendra modadugu [EMAIL PROTECTED] wrote: * Prashant Kumar <[EMAIL PROTECTED]>[2005-04-28 06:11:38 -0700]: I had one question on the timer management and retransmission. I see that there is a new BIO type in the file bss_dgram.c. My question is if the application does not use the dgram BIO type and use the memory BIO instead, does the application has to take the responsibility of timer management and retransmission ?If you are using a memory BIO for doing I/O, then you are also usingDTLS in non-blocking mode -- in this case, the application is responsible for managing timeouts. When a timer expires, the application callsSSL_read() / SSL_write(), and the DTLS layer will take care of retransmitting.You may want to look at resiprocate/sip/resiprocate/DtlsTransport.cxxfor an implementation of something very similar to the scenario youdescribe.On a high level, reSIPr ocate does the following:1) many DTLS sessions use the same file descriptor fornetwork I/O.2) after data is read from the network, data ispassed to the appropriate DTLS session (based on remote IP address port number) through a mem BIO.nagendra__OpenSSL Project http://www.openssl.orgDevelopment Mailing List openssl-dev@openssl.orgAutomated List Manager [EMAIL PROTECTED]__Do You Yahoo!?Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Re: Datagram TLS source
Hello Nagendra, I had one question on the timer management and retransmission. I see that there is a new BIO type in the file bss_dgram.c. My question is if the application does not use the dgram BIO type and use the memory BIO instead, does the application has to take the responsibility of timer management and retransmission ? Thanks you, Prashant Kumar.nagendra modadugu [EMAIL PROTECTED] wrote: Datagram TLS (DTLS) source is now part of the OpenSSLrepository (CVS main branch). Also, I have seperately releasedpatches against openssl-0.9.7g.This is the link to the main DTLS page (including linksto further information about the protocol, and patches):http://crypto.stanford.edu/~nagendra/projects/dtls/I am in the process of putting together an FAQ, so anyquestions/comments you may have will be much appreciated.Thanks,nagendra__OpenSSL Project http://www.openssl.orgDevelopment Mailing List openssl-dev@openssl.orgAutomated List Manager [EMAIL PROTECTED]__Do You Yahoo!?Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.c om
Re: Datagram TLS source
* Prashant Kumar [EMAIL PROTECTED] [2005-04-28 06:11:38 -0700]: I had one question on the timer management and retransmission. I see that there is a new BIO type in the file bss_dgram.c. My question is if the application does not use the dgram BIO type and use the memory BIO instead, does the application has to take the responsibility of timer management and retransmission ? If you are using a memory BIO for doing I/O, then you are also using DTLS in non-blocking mode -- in this case, the application is responsible for managing timeouts. When a timer expires, the application calls SSL_read() / SSL_write(), and the DTLS layer will take care of retransmitting. You may want to look at resiprocate/sip/resiprocate/DtlsTransport.cxx for an implementation of something very similar to the scenario you describe. On a high level, reSIProcate does the following: 1) many DTLS sessions use the same file descriptor for network I/O. 2) after data is read from the network, data is passed to the appropriate DTLS session (based on remote IP address port number) through a mem BIO. nagendra __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager [EMAIL PROTECTED]
Datagram TLS source
Datagram TLS (DTLS) source is now part of the OpenSSL repository (CVS main branch). Also, I have seperately released patches against openssl-0.9.7g. This is the link to the main DTLS page (including links to further information about the protocol, and patches): http://crypto.stanford.edu/~nagendra/projects/dtls/ I am in the process of putting together an FAQ, so any questions/comments you may have will be much appreciated. Thanks, nagendra __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager [EMAIL PROTECTED]