Re: DTLSv1_listen in non-blocking

2011-02-10 Thread David Schwartz
On 2/9/2011 10:59 AM, Nilesh Vaghela wrote: Hi, I just realized that may be DTLSv1_get_timeout and handle timeout is important because when server sends Server Hello we need to get back the response in time out. Is that right understanding ? If that is the case then in select I can not mix other

DTLSv1_listen in non-blocking

2011-02-09 Thread Nilesh Vaghela
I am using DTLSv1_listen in non-blocking underlying socket layer. I am using openssl-0.9.8o and I looked at the implementation. int dtls1_listen(SSL *s, struct sockaddr *client) { int ret; SSL_set_options(s, SSL_OP_COOKIE_EXCHANGE); s-d1-listen = 1; ret = SSL_accept(s); if (ret = 0

Re: DTLSv1_listen in non-blocking

2011-02-09 Thread Robin Seggelmann
Hi Nilesh, On Feb 9, 2011, at 4:05 AM, Nilesh Vaghela wrote: I am using DTLSv1_listen in non-blocking underlying socket layer. I am using openssl-0.9.8o and I looked at the implementation. Don't use any 0.9.8 release if you want to work with DTLS. There are a *lot* of bugs which are fixed

Re: DTLSv1_listen in non-blocking

2011-02-09 Thread Nilesh Vaghela
US/Canada Pacific Subject: Re: DTLSv1_listen in non-blocking Hi Nilesh, On Feb 9, 2011, at 4:05 AM, Nilesh Vaghela wrote: I am using DTLSv1_listen in non-blocking underlying socket layer. I am using openssl-0.9.8o and I looked at the implementation. Don't use any 0.9.8 release if you

Re: DTLSv1_listen in non-blocking

2011-02-09 Thread Nilesh Vaghela
Hi, Two more questions 1. I assume that = 1.0.0a version has FIPS support fro DTLS ? 2. What is the difference between 0.9.8 and 1.0.0 ? Assuming that program tested with 0.9.8 (with FIPS) would work without any changes on 1.0.0. --Nilesh. I am using DTLSv1_listen in non-blocking

Re: DTLSv1_listen in non-blocking

2011-02-09 Thread Robin Seggelmann
Hi Nilesh, On 09.02.2011, at 17:15, Nilesh Vaghela wrote: Just wanted to give additional information that I am not implementing multi-threaded server as there can be thousands of connections. Having said that I would have to use select for both the fds (one listen socket and many

Re: DTLSv1_listen in non-blocking

2011-02-09 Thread Nilesh Vaghela
: DTLSv1_listen in non-blocking Thanks Robin. Just wanted to give additional information that I am not implementing multi-threaded server as there can be thousands of connections. Having said that I would have to use select for both the fds (one listen socket and many connected sockets

Re: DTLSv1_listen in non-blocking

2011-02-09 Thread Nilesh Vaghela
...@stratacache.com Cc: openssl-dev@openssl.org Sent: Wednesday, February 9, 2011 1:21:22 AM GMT -08:00 US/Canada Pacific Subject: Re: DTLSv1_listen in non-blocking Hi Nilesh, On Feb 9, 2011, at 4:05 AM, Nilesh Vaghela wrote: I am using DTLSv1_listen in non-blocking underlying socket layer