RIOT-OS/RIOT
RIOT-OS/RIOT
1
0
Fork 0
mirror of https://github.com/RIOT-OS/RIOT.git synced 2024-12-29 04:50:03 +01:00
Code Releases Activity

pkg/tinydtls: destroy session after sending close notification

Browse Source
This commit is contained in:
János Brodbeck 2021-04-30 16:59:49 +02:00
parent 08f1f9768d
commit c016b843d6
No known key found for this signature in database
GPG Key ID: 65C193B0D8D1BCE6
2 changed files with 10 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
pkg/tinydtls/contrib/sock_dtls.c
View File

@ -561,7 +561,11 @@ int sock_dtls_session_init(sock_dtls_t *sock, const sock_udp_ep_t *ep,
void sock_dtls_session_destroy(sock_dtls_t *sock, sock_dtls_session_t *remote)
{
dtls_close(sock->dtls_ctx, &remote->dtls_session);
dtls_peer_t *peer = dtls_get_peer(sock->dtls_ctx, &remote->dtls_session);
if (peer) {
/* dtls_reset_peer() also sends close_notify if not already sent */
dtls_reset_peer(sock->dtls_ctx, peer);
}
}
void sock_dtls_session_get_udp_ep(const sock_dtls_session_t *session,

5
sys/include/net/sock/dtls.h
View File

@ -702,6 +702,11 @@ int sock_dtls_session_init(sock_dtls_t *sock, const sock_udp_ep_t *ep,
*
* @param[in] sock @ref sock_dtls_t, which the session is created on
* @param[in] remote Remote session to destroy
*
* @note For tinyDTLS this function destroys the session object right after notifying the remote
* peer about the closing. This is an interim solution, preventing endlessly blocked session
* slots, but allows as a consequence truncation attacks.
* More details in the [issue](https://github.com/eclipse/tinydtls/issues/95).
*/
void sock_dtls_session_destroy(sock_dtls_t *sock, sock_dtls_session_t *remote);