aboutsummaryrefslogtreecommitdiffstats
path: root/lib/ssl/src/dtls_v1.erl
diff options
context:
space:
mode:
authorIngela Anderton Andin <[email protected]>2017-03-24 14:25:37 +0100
committerIngela Anderton Andin <[email protected]>2017-03-30 11:15:40 +0200
commite594aad2f87aab39e99fccf9e021bc94e0bbf7d4 (patch)
tree3ab462378d305e3098c9be4cd8a9e95989fc9be7 /lib/ssl/src/dtls_v1.erl
parent84be7e0ec7c0c64f1beb418cdd09879822aca4b0 (diff)
downloadotp-e594aad2f87aab39e99fccf9e021bc94e0bbf7d4.tar.gz
otp-e594aad2f87aab39e99fccf9e021bc94e0bbf7d4.tar.bz2
otp-e594aad2f87aab39e99fccf9e021bc94e0bbf7d4.zip
dtls: Implement DTLS cookie secret generation
Diffstat (limited to 'lib/ssl/src/dtls_v1.erl')
-rw-r--r--lib/ssl/src/dtls_v1.erl12
1 files changed, 11 insertions, 1 deletions
diff --git a/lib/ssl/src/dtls_v1.erl b/lib/ssl/src/dtls_v1.erl
index dd0d35d404..4aaf8baa6c 100644
--- a/lib/ssl/src/dtls_v1.erl
+++ b/lib/ssl/src/dtls_v1.erl
@@ -22,7 +22,10 @@
-include("ssl_cipher.hrl").
-export([suites/1, all_suites/1, mac_hash/7, ecc_curves/1,
- corresponding_tls_version/1, corresponding_dtls_version/1]).
+ corresponding_tls_version/1, corresponding_dtls_version/1,
+ cookie_secret/0, cookie_timeout/0]).
+
+-define(COOKIE_BASE_TIMEOUT, 30000).
-spec suites(Minor:: 253|255) -> [ssl_cipher:cipher_suite()].
@@ -47,6 +50,13 @@ ecc_curves({_Major, Minor}) ->
corresponding_tls_version({254, Minor}) ->
{3, corresponding_minor_tls_version(Minor)}.
+cookie_secret() ->
+ crypto:strong_rand_bytes(32).
+
+cookie_timeout() ->
+ %% Cookie will live for two timeouts periods
+ round(rand:uniform() * ?COOKIE_BASE_TIMEOUT/2).
+
corresponding_minor_tls_version(255) ->
2;
corresponding_minor_tls_version(253) ->
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-01 16:21:43 +0000