Comments (5)
Sean-Der
commented on July 26, 2024
Also introduce packet loss on either side. Create a Client/Server from a wrapped Conn and add a certain % of packet loss (it may be helpful to log messages, otherwise fixing will be really hard here)
from dtls.
backkem
commented on July 26, 2024
We should probably implement these types of tests globally so we can throw them at any layer of the stack. The beginnings of this are here. Eventually it could look like this.
from dtls.
igolaizola
commented on July 26, 2024
OpenSSL tests have been added in #193
TODO:
- Make OpenSSL work with ed25519 test
from dtls.
at-wat
commented on July 26, 2024
I found that our implementation of Ed25519 signature calculation and hash used in ServerKeyExchange/CertificateVerify messages are wrong. Since both of our server and client have same bug, they can communicate each other.
I have made a fix for it, and now I'm cleaning the code.
One bad news is that OpenSSL haven't support DTLS Ed25519 yet.
I could confirm my fix works with this openssl branch: openssl/openssl#11115
from dtls.
at-wat
commented on July 26, 2024
Ed25519 implementation of the master branch should be fixed now. We can enable the E2E test once OpenSSL supports DTLS 1.2 Ed25519.
from dtls.
Related Issues (20)
- Server chooses cipher suite not matching its certificate HOT 5
- SNI field contains an IP address instead of a valid hostname HOT 2
- Support for ALPN extension
- Server Hello should not contain supported_groups extension (`extension.SupportedEllipticCurves`) HOT 1
- Signature algorithm used in CertificateVerify selects algorithm not listed in CertificateRequest message
- when call conn.Read() got error read: message too long HOT 2
- Add cipher suite TLS_PSK_WITH_AES_256_CCM_8
- Handshake failed. Broken by #398 "Server chooses cipher suite not matching its certificate"
- Add support for ECDHE_PSK ciphers
- Server side only certs - openssl client - wrong certificate type HOT 2
- Change how we do temporary errors to match upstream HOT 1
- HelloRequest Handshake Type Support HOT 1
- Set sessionId in clienthello HOT 3
- Ed25519 keys are not fully supported. HOT 6
- E2E tests deadlock and consumes tons of CI minutes HOT 2
- Handshaker doesn't handle "Read retransmit" event HOT 1
- DTLS server does not handle retransmits of the client's last flight HOT 2
- not close udp conn when dtls handshake failed?
- Add Config.VerifyConnection callback
- noise feature? HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from dtls.