aiortc failed to connect to remote janus server on DTLS protocol #346
Description
Here are the snapshot of DTLS during connecting to janus server.
It seems the client does NOT send "New Session Ticket" to finished the connection process, and it will cause janus server always to send Client Certificate to aiortc client.
Have you encounter this issue before? Thanks:)
Metadata
Metadata
Assignees
Labels
No labels
Type
Projects
Milestone
Relationships
Development
No branches or pull requests
Participants
Activity
jlaine commentedon Apr 28, 2020
Hi! I'm not sure I understand what you mean, as far as I know there is no concept of session tickets in DTLS. How would session resumption even work, since both parties generate certificate/key pairs on the fly?
moliqingwa commentedon Apr 29, 2020
The issue is resolved, by updating janus openssl version to 1.1.1. Thanks any way:)
jlaine commentedon Apr 29, 2020
okidoki, thanks for letting me know!
zhiyong0804 commentedon Jan 18, 2021
@jlaine @moliqingwa i have the same problem, aiortc donot send "New Session Ticket" and "ChangeCipherSpec" to finish DTLS negotiation, cause dtls timeout error in janus server. so which version do you upgrade to fix it ? my version is 1.1.1d
zhiyong0804 commentedon Jan 19, 2021
i have fixed it with 1024 cert file in janus, but i donot think it's proper way, the root cause is package size assumed MTU, so the network drop it, You can verify this by using, e.g., a 4096 bits certificate, and capture the DTLS traffic with Wireshark, janus server processed it with filter BIO, and i think aiortc need do it too. @jlaine