On Thursday 10 January 2008 9:22 pm, Justin Karneges wrote: [...snip...] > ask here about the state of DTLS and memory BIOs. > > If it is not possible, does anyone have a tip on how to make it possible? > Maybe I could create a substitute for the dgram BIO that works on memory, > but unlike the existing openssl memory BIO, mine could support all the > DGRAM control commands?
From reading the library and s_client code, it looks like the best way to use OpenSSL DTLS is with BIO_dgram, a blocking socket, and with socket timeouts enabled. Is this true? Does the OpenSSL DTLS implementation support packet retransmissions during the handshake period? This is the only reason I suspect socket timeouts need to be enabled for proper functionality. Otherwise, you could get stuck in BIO_dgram's recvfrom() indefinitely and OpenSSL wouldn't get a chance to retransmit a lost UDP packet. Can anyone comment on this? Can I disable the timeouts once the handshake is complete? I've made my own BIO_dgram substitute that replicates this blocking+timeout behavior but uses memory instead of a socket. I just want to be sure I'm on the right track. -Justin ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
