Mbed TLS is now part of TrustedFirmware.org.

Server hint support

Jan 4, 2016 20:47
Dave DeMoney

Is there any plan to add support for the server hint during the key exchange?

Jan 5, 2016 09:52
Manuel Pégourié-Gonnard

I'm sorry, I don't get it, could you please be more specific?

Jan 18, 2018 02:54
Henry Luis

Dave was requesting support for server identity hints. In library/ssl_srv.c, there is this comment:

 * For (EC)DHE key exchanges with PSK, parameters are prefixed by support
 * identity hint (RFC 4279, Sec. 3). Until someone needs this feature,
 * we use empty support identity hints here.

Well, we need this feature. We actually have implemented it in our product already. Would mbed.org be interested in reviewing the patch and incorporating it (so that we don't have to maintain the patch ourselves going forward)?

Jan 18, 2018 15:07
Ron Eldor

Hi Henry,
As an open source project, we welcome contributions from the community, as long as they follow our coding standards and the contributor has signed the CLA, as mentioned here. During our quarterly feature request review, we will decide whether to incorporate these changes or not.
Please be patient, as at the moment we have much PRs in our backlog..
Mbed TLS Team member

May 7, 2018 11:15
Alexander Dittrich

Hi everbody,

are there any news regarding this feature? We do require this as well and are currently evaluating whether to implement it ourselves or if we have to look for other alternatives.

Best regards, Alex.