Skip to content
This repository has been archived by the owner on Jun 16, 2022. It is now read-only.

maufl/dtls

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

33 Commits
testclient
testclient
 
 
testserver
testserver
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
change_cipher_spec.go
change_cipher_spec.go
 
 
cipher_suite_ids.go
cipher_suite_ids.go
 
 
cipher_suites.go
cipher_suites.go
 
 
ciphersuiteid_string.go
ciphersuiteid_string.go
 
 
client_handshake_context.go
client_handshake_context.go
 
 
client_hello.go
client_hello.go
 
 
client_key_exchange.go
client_key_exchange.go
 
 
compression_method.go
compression_method.go
 
 
conn.go
conn.go
 
 
conn_test.go
conn_test.go
 
 
dtls.go
dtls.go
 
 
extension.go
extension.go
 
 
finish.go
finish.go
 
 
handshake.go
handshake.go
 
 
handshake_context.go
handshake_context.go
 
 
handshake_fragment_list.go
handshake_fragment_list.go
 
 
handshake_fragment_list_test.go
handshake_fragment_list_test.go
 
 
hello_verify_request.go
hello_verify_request.go
 
 
key_agreement.go
key_agreement.go
 
 
listener.go
listener.go
 
 
prf.go
prf.go
 
 
random.go
random.go
 
 
record.go
record.go
 
 
record_test.go
record_test.go
 
 
server_handshake_context.go
server_handshake_context.go
 
 
server_hello.go
server_hello.go
 
 
server_hello_done.go
server_hello_done.go
 
 
server_key_exchange.go
server_key_exchange.go
 
 
utils.go
utils.go
 
 
virtual_conn.go
virtual_conn.go
 
 

Repository files navigation

Go DTLS implementation

This is my work in progress DTLS implementation in pure Go. It is not working at all yet, except for the client DH_anon handshake.

Disclaimer: I'm very likely not qualified to write a secure implementation of DTLS. While I do not write custom crypto I don't have knowledge about how to prevent timing attacks etc. Aside from the fact that this implementation is generally not usable, I would also not recommend using it in any real projects even when it becomes theoretically usable.

TODO

  • Get encryption and decryption working for AES + SHA
  • Implement handshake fragment reassembly
  • Implement handshake timeout
  • Send multiple records in single datagram if possible
  • Handle out of order handshake messages
  • Implement authenticated handshake
  • Implement alert protocol
  • Clean up the implementation
  • Add tests
  • Implement other cipher suites
  • Maybe implement extensions
  • Extend TODO list

Currently not supported

Well .. mostly everything, but especially:

  • Session resumption
  • Renegotiation

About

DTLS implementation in pure Go

Resources

Readme
Activity

Stars

21 stars

Watchers

8 watching

Forks

3 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages