Hannes Tschofenig

The ssl_suite needs to be updated to cover the modified additional data calculation defined in RFC 9146.

Travis fails at a point where it should fail. For some reason, it defines MBEDTLS_SSL_DTLS_CONNECTION_ID and MBEDTLS_SSL_DTLS_CONNECTION_ID_LEGACY at the same time. This is not allowed, which will lead to this...

Thanks @gergelynagymate and @boaks for the feedback. As you can see, I have used the proposed code snippet by @gergelynagymate to fix the bug.

> FMPOV, > > ``` > #if defined(MBEDTLS_SSL_DTLS_CONNECTION_ID) > unsigned char add_data[23 + MBEDTLS_SSL_CID_IN_LEN_MAX]; > #else > unsigned char add_data[13 + 1 + MBEDTLS_SSL_CID_IN_LEN_MAX ]; > #endif > ``` >...

@plskeggs I rebased the code to the development branch. Thanks for pointing this out.

The status of this PR is the following: While I am still fine-tuning the examples I believe it should otherwise be ready for inclusion.

@LukasKarel You mentioned that you have used Wakaama with Mbed TLS. Is that code somewhere in a branch or so?

@tuve Regarding a comparison between Mbed TLS and TinyDTLS. I don't have that data but the answer will heavily depend on the details of the comparison. The feature set is...

@sbernard31 Yes, Mbed TLS provides CID support for DTLS 1.2.

I will submit a PR to the Mbed TLS repo to make this update.