Does mbedtls_ssl_set/get_session() support DTLS handshake?

yenhiew · March 26, 2021, 9:59pm

I am trying to resume a DTLS handshake. I have used the API mbedtls_ssl_set/get_session(). The followings are the sequences:

Perform mbedtls_ssl_handshake().
mbedtls_ssl_get_session() and mbedtls_ssl_session_save();
mbedtls_ssl_session_reset()
mbedtls_ssl_session_load() and mbedtls_ssl_set_session()
Do another mbedtls_ssl_handshake().

However, the handshake is still a full handshake. I can’t seem to produce these session resumption DTLS events:
client: 0:1 handshake client_hello 167 B
server: 0:1 handshake client_hello 167 B
server: 0:1 handshake server_hello 90 B
server: 0:2 change_cipher_spec - 1 B

Could you please confirm if these APIs support DTLS because I have found this forum ticket: Resumed TLS session with DTLSSockets ?

Thanks.

asprenger · April 23, 2021, 10:07am

Yes, the low level Mbed TLS API supports DTLS, see https://tls.mbed.org/kb/how-to/dtls-tutorial. The DTLSSocket class actually calls this API.

The ticket you referenced only addresses the fact that session resumption is not supported on the (higher level) DTLSSocket class.

Topic		Replies	Views
Resumed TLS session with DTLSSockets Generic mbed_tls	5	1278	April 19, 2020
DTLS session resumption Generic mbed_tls	0	572	November 16, 2021
Share DTLS handshake credentials Generic mbed_tls	2	454	October 6, 2019
HTTPS and TLS Session Resumption Mbed OS	1	300	January 1, 2020
Session renegotiation Generic	5	1525	June 24, 2018

Does mbedtls_ssl_set/get_session() support DTLS handshake?

Related topics