I’m using a support library leveraging openssl to complete a DTLS handshake.

Occasionally, I’ll see in my packet captures that a handshake has failed
with a “Certificate reassembly error”, and the support library doesn’t seem
to be catching this properly to forward the error on.

The library developers are considering handling this using a timeout
solution — triggering an error if the handshake doesn’t complete in a
specified amount of time, but this feels a bit clunky to me. What’s the
recommended way to get this information from openssl in this case?

For reference, I’m attaching a packet capture that illustrates two of the
handshake failures.


Attachment: dtls-failures.pcap
Description: Binary data

openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users

Reply via email to