Hello Nagendra,
I tried your DTLS patch with Openssl9.7g on a vxworks platform. Everything works except mutual certificate authentication. When I enable mutual certificate authentication, DTLS fails with the following assertion:
d1_both.c(1054): OpenSSL internal error, assertion failed: s->d1->w_msg_hdr.msg_len + DTLS1_HM_HEADER_LENGTH == s->init_num
I tried the same thing on a Linux platform and got the same error.
Here is the debug info for the lengths:
s->init_num = 19
w_msg_hdr.msg_len = 393
Thank you so much for your help.
Regards,
Prashant.
Prashant Kumar <[EMAIL PROTECTED]> wrote:
Hello Nagendra,I had one question on the timer management and retransmission. I see that there is a new BIO type in the file bss_dgram.c. My question is if the application does not use the dgram BIO type and use the memory BIO instead, does the application has to take the responsibility of timer management and retransmission ?Thanks you,Prashant Kumar.
nagendra modadugu <[EMAIL PROTECTED]> wrote:
Datagram TLS (DTLS) source is now part of the OpenSSL
repository (CVS main branch). Also, I have seperately released
patches against openssl-0.9.7g.
This is the link to the main DTLS page (including links
to further information about the protocol, and patches):
http://crypto.stanford.edu/~nagendra/projects/dtls/
I am in the process of putting together an FAQ, so any
questions/comments you may have will be much appreciated.
Thanks,
nagendra
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [email protected]
Automated List Manager [EMAIL PROTECTED]__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.c om
Yahoo! Mail
Stay connected, organized, and protected. Take the tour
