wolfssl icon indicating copy to clipboard operation
wolfssl copied to clipboard
verified publisher icon wolfSSL

dtls13: always send ACKs on detected retransmission

Open rizlik opened this issue 6 months ago • 4 comments

Fixes:

  • make wolfssl_is_init_finished() return true only after the last server ACK.

  • always send AKCs when we detect a rtx from the other peer.

Otherwise the connection can stall due the indefinite delay of an explicit ACK, for exapmle:

 -> client sends the last Finished message
<- server sends the ACK, but the ACK is lost
 -> client rentrasmit the Finished message
 - server delay sending of the ACK until a fast timeout
 -> client rentrasmit the Finished message quicker than the server timeout
 - server resets the timeout, delaying sending the ACK 
 -> client rentrasmit the Finished...

rizlik avatar Jun 16 '25 07:06 rizlik

retest this please

rizlik avatar Jun 16 '25 10:06 rizlik

retest this please

rizlik avatar Jun 16 '25 13:06 rizlik

Retest this please: "PRB-generic-config-parser"

dgarske avatar Jun 16 '25 18:06 dgarske

retest this please: .RequestAbortedException

rizlik avatar Jun 16 '25 19:06 rizlik