Skip to content

pkg/tinydtls: various bugfixes #21827

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 7 commits into from
Open

pkg/tinydtls: various bugfixes #21827

wants to merge 7 commits into from
+41 −44

Conversation

@mguetschow
Copy link
Contributor

@mguetschow mguetschow commented Oct 29, 2025

Contribution description

While testing #21582, we found various issues in the current tinydtls sock_dtls implementation.

On master, tests/pkg/tinydtls_sock_async would throw an assertion failure on the second request from another instance of the same application (since the async session information is not reset). With the first commit, this does not happen anymore.

On master, examples/networking/coap/gcoap_dtls would print (with DEBUG enabled)

2025-10-29 16:42:31,018 # gcoap: could not establish DTLS session: 54
2025-10-29 16:42:33,291 # gcoap: could not establish DTLS session: 54
2025-10-29 16:42:34,259 # gcoap: could not establish DTLS session: 54
2025-10-29 16:42:35,046 # gcoap: no space in session management. We lost track of sessions!gcoap: could not establish DTLS session: 54

and not respond to any packages sent out by libcoap (with coap-client-gnutls "coaps://[<IP>%tap0]/.well-known/core" -k "secretPSK" -u "Client_identity" (presumably because the application data message is returned instead of the handshake completion signal). With the third commit of this PR, it works as expected.

The zero-copy sock_dtls_recv_buf APIs are currently untested by application code (gcoap uses copy-versions), but unicoap does use them. Applying #21582 (with some changes) on top of this PR shows that the fifth commit is needed for proper functioning.

The sixth commit removes unnecessary (and broken) logic which would send flags more than once. Those are not needed as the sock_async_event (and potential other backends should) accumulate(s) the flags internally already.

Testing procedure

Play around with tests/pkg/tinydtls_sock_async and examples/networking/coap/gcoap_dtls, or any other (your favorite) application using dtls_sock over tinydtls.

References

Some of the changes have already been discussed with @miri64 offline.

@mguetschow
pkg/tinydtls: reset async_cb_session for CONN_RECV
18329d3 
currently, sock_dtls_get_event_session would return a previous session instead of none as documented

fixes an assertion failure in tests/pkg/tinydtls_sock_async on a second request
@github-actions github-actions bot added the Area: pkg Area: External package ports label Oct 29, 2025
@crasbe crasbe added Type: bug The issue reports a bug / The PR fixes a bug (including spelling errors) CI: ready for build If set, CI server will compile all applications for all available boards for the labeled PR labels Oct 29, 2025
crasbe
crasbe reviewed Oct 29, 2025
View reviewed changes
@riot-ci
Copy link

riot-ci commented Oct 29, 2025
edited
Loading

Murdock results

✔️ PASSED

59446cf sys/net/sock_dtls: document SOCK_DTLS_HANDSHAKE in user guide

Success Failures Total Runtime
10551 0 10552 11m:57s

Artifacts

@mguetschow mguetschow mentioned this pull request Oct 29, 2025
Open
@mguetschow mguetschow requested a review from miri64 October 29, 2025 16:23
@mguetschow mguetschow requested a review from maribu as a code owner October 29, 2025 16:34
@github-actions github-actions bot added Area: network Area: Networking Area: sys Area: System labels Oct 29, 2025
miri64
miri64 previously requested changes Oct 29, 2025
View reviewed changes
Copy link
Member

@miri64 miri64 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Mostly just some nits on documentation and commit messages.

Also, could you maybe in the testing instructions explicitly provide some of the things you did to "play around with the tests" (beyond the reproducing instructions in the summary), so I can test it myself. Thanks!

@mguetschow
pkg/tinydtls: error on unconsumed application data
656dd99 
This way unconsumed application data is not overwritten.
@mguetschow
pkg/tinydtls: always handle connection establishment msg first
05c3bff 
also document that other messages are currently silently ignored from the mbox
@mguetschow
pkg/tinydtls: fix typo, explicit NULL check
9871194
@mguetschow
pkg/tinydtls: store correct buf_ctx after async call
4e6c3bf
@mguetschow
pkg/tinydtls: remove unecessary duplicated flags for async
3a3c105 
They are not needed as the sock_async_event (and potential other backends should) accumulate(s) the flags internally already, and they have been sent out on data arrival or connection establishment already.
@mguetschow
sys/net/sock_dtls: document SOCK_DTLS_HANDSHAKE in user guide
59446cf
mguetschow
mguetschow commented Oct 30, 2025
View reviewed changes
Copy link
Contributor Author

@mguetschow mguetschow left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for your review, I was so brave to directly squash on force-push (to be able to edit the commit messages as requested).

@crasbe crasbe mentioned this pull request Oct 30, 2025
Merged
@mguetschow mguetschow requested a review from miri64 November 3, 2025 08:39
@miri64
Copy link
Member

miri64 commented Nov 3, 2025

Currently no time for testing, so I leave that and the final ACK resulting from that to someone else :-)

benpicco
benpicco approved these changes Nov 6, 2025
View reviewed changes
Copy link
Contributor

@benpicco benpicco left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I can confirm that this still works with coap-client-openssl and tests/net/nanocoap_cli

@benpicco benpicco added this pull request to the merge queue Nov 6, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@crasbe crasbe crasbe left review comments

@benpicco benpicco benpicco approved these changes

@leandrolanzieri leandrolanzieri Awaiting requested review from leandrolanzieri leandrolanzieri is a code owner

@maribu maribu Awaiting requested review from maribu maribu is a code owner

@miri64 miri64 Awaiting requested review from miri64

Assignees

No one assigned

Labels

Area: network Area: Networking Area: pkg Area: External package ports Area: sys Area: System CI: ready for build If set, CI server will compile all applications for all available boards for the labeled PR Type: bug The issue reports a bug / The PR fixes a bug (including spelling errors)

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@mguetschow @riot-ci @miri64 @benpicco @crasbe