[gnutls-dev] Re: Question about DTLS

Simon Josefsson jas at extundo.com
Mon May 22 13:57:15 CEST 2006


"authesserre samuel" <sauthess at gmail.com> writes:

> I know DTLS protocol but nothing about gnutls implementation (I
> started to read documentation).... I said that without any
> reflexion...
> DTLS rfc is long of 25 pages because it's a TLS diff and was made in
> the idea of TLS code reuse so it's problably the best choice
> (integrated in gnutls).
>
> that's why I have said that the first thing I will look it's the TCP
> implementation (because I think that's the principal problem
> integration)

Sounds like a good idea.  The code may need to be re-factored to be
useful for DTLS, and that will require good knowledge of GnuTLS
internals.  But it should be possible for someone to learn about it.

You may want to read the manual on the internal architecture:

http://www.gnu.org/software/gnutls/manual/html_node/Internal-architecture-of-GnuTLS.html

Good luck,
Simon

> regards,
>
> Samuel
>
> On 5/21/06, Simon Josefsson <jas at extundo.com> wrote:
>> "authesserre samuel" <sauthess at gmail.com> writes:
>>
>> > hi,
>> >
>> > Thanks for your answer.
>> > I had understood in the post that the work would be important due to
>> > TCP part that is not separate clearly....
>> > My free time is the only contribution I can do (but if a company heard
>> > us ..... ;) )
>> > I'm sure that I'm not the only person interested by this project (the
>> > openssl DTLS development is a proof that I say is true)
>>
>> Yup.
>>
>> > I will start by looking in gnutls source code to see what is
>> > reusable directly without any modification (the goal of DTLS is to
>> > reuse maximum of TLS source code) and if it's possible (if it isn't
>> > a enormous project and if I have enough time) I will start a gnudtls
>> > project ;)
>>
>> Personally, I think integrating it into gnutls would be best.  Code
>> duplication in two projects, gnutls+gnudtls, would be quite bad and
>> un-maintainable.  But I haven't looked at DTLS too much, perhaps the
>> protocols differ too much to fit gnutls' design.
>>
>> /Simon
>>
>> > Samuel
>> >
>> > On 5/21/06, Simon Josefsson <jas at extundo.com> wrote:
>> >> "authesserre samuel" <sauthess at gmail.com> writes:
>> >>
>> >> > hi,
>> >> >
>> >> > I would like to know if DTLS extension is always in program development.
>> >> > I read a post dated of the May 7, 2005 which speaks about the
>> >> > implementation of DTSL but I haven't seen others....
>> >>
>> >> Hi.  As far as I'm aware, nobody is actively working on DTLS for
>> >> GnuTLS.  It is a large project, and may involve changing critical
>> >> parts of GnuTLS, so it will have to be done on the next experimental
>> >> branch 1.5, or possibly as a completely separate project external to
>> >> gnutls (i.e., gnudtls).
>> >>
>> >> > If development is in progress I propose my help.
>> >> >
>> >> > I work on Ethereal project about SSL/TLS and DTLS so I have realize a
>> >> > DTLS dissector based on OpenSSL project but It contains errors (I will
>> >> > correct those which I would find and post in openssl dev mail list
>> >> > because at this time my dissector contains the same errors to work ;)
>> >> > ) and I want to be able to test interoperability ....
>> >> >
>> >> > It's why I offer my help (the others reasons it's I want to use DTLS
>> >> > and rfc 4347 has been released ;) )
>> >>
>> >> Thank you!  If you want to start working on it, just go ahead.  If you
>> >> need help doing it, and can sponsor it financially, or know someone
>> >> who might, I'd be interested in doing the work.
>> >>
>> >> /Simon
>> >>
>> >
>> >
>> > --
>> > ++++++++++++++++++++++++++
>> > + Authesserre Samuel            +
>> > + 12 rue de la défense passive+
>> > + 14000 CAEN                      +
>> > + FRANCE                           +
>> > + 06-27-28-13-32                   +
>> > + sauthess at gmail.com          +
>> > ++++++++++++++++++++++++++
>>
>
>
> -- 
> ++++++++++++++++++++++++++
> + Authesserre Samuel            +
> + 12 rue de la défense passive+
> + 14000 CAEN                      +
> + FRANCE                           +
> + 06-27-28-13-32                   +
> + sauthess at gmail.com          +
> ++++++++++++++++++++++++++



More information about the Gnutls-dev mailing list