[Patch] Fix blocking DTLS

Nikos Mavrogiannopoulos nmav at gnutls.org
Thu Feb 16 14:45:24 CET 2012


On 02/16/2012 02:29 PM, Sean Buckheister wrote:

> Hi,
> 
> investigating blocking DTLS handshake failure, I found that they fail
> because the server will interpret a retransmitted Finished packet from
> the client just as it would treat a Hello, and spuriosly initiates
> rehandshake. Only handling the Hello packets in this manner fixes that,
> and now all dtls-stress handshake sequences pass (with appropriate
> timeouts for such an adversarial network).


Nice fix, applied. Which case did you notice failing? Does it fix the
parallel checks?

regards,
Nikos




More information about the Gnutls-devel mailing list