[Nice] DTLS support with libnice

Rajarshi Chaudhuri Rajarshi.Chaudhuri at genesyslab.com
Tue Aug 20 11:05:32 PDT 2013

Thx Olivier for your reply. I guess based on our timeline - we need to do something similar and quick.


-----Original Message-----
From: Olivier Crête [mailto:olivier.crete at collabora.com] 
Sent: Tuesday, August 20, 2013 10:37 AM
To: Rajarshi Chaudhuri
Cc: 'nice at lists.freedesktop.org'
Subject: Re: [Nice] DTLS support with libnice

On Tue, 2013-08-20 at 07:35 +0000, Rajarshi Chaudhuri wrote:
> So my question - is  there a way to access the UDP sockets used by 
> libnice so that we could set up DTLS [using open-ssl]. Note that, once 
> DTLS handshake is completed, though the actual data is not sent as 
> DTLS records with SRTP, the data may still need to be sent using
> SSL_write() - see http://tools.ietf.org/html/rfc5764#section-5.1.1.
> Also on receiving, as described in section 5.1.2 of the same RFC, we 
> need to handle SRTP and DTLS messages, and the latter needs to be 
> handled by open-ssl.
> Is there other ways of supporting DTLS in libnice directly?

The way DTLS should be done over libnice is to have a socket abstraction layer and them implement DTLS on top of that. I've done such an implementation in GLib [1][2][3], but it was not merged due to some very real concerns, I haven't had time to re-do it better, but hopefully we can get it done in the near future.

So depending on what your timeline is you can either wait for us to do it or do something similar.

[1] https://bugzilla.gnome.org/show_bug.cgi?id=697907
[2] https://bugzilla.gnome.org/show_bug.cgi?id=697908
[3] https://bugzilla.gnome.org/show_bug.cgi?id=697909

Olivier Crête
olivier.crete at collabora.com

More information about the nice mailing list