Hi,

 

No, unfortunately 512 is the smallest that this extension can do. This is one of the limitations of the maximum fragment length extension. To address all the shortcomings a new extension called Record Size Limit (RFC 8449) was proposed. This can set the limit to anything between 64 and 64k. The record size limit extension is not implemented in Mbed TLS yet.

 

Regards,

Janos

 

 

Hi,

 

I see the MBEDTLS_SSL_MAX_FRAGMENT_LENGTH can be defined to be either 512, 1024, 2048 or 4096. Can this be modified to like 256 as well? Any idea?

 

Regards,
Fariya

 

 

Hi,

 

The packet size limitations can be accommodated by using the Maximum Fragment Length extension (https://tools.ietf.org/html/rfc6066#section-4, enabled by MBEDTLS_SSL_MAX_FRAGMENT_LENGTH

in Mbed TLS). In Mbed TLS this is only implemented for application data and DTLS handshake messages so far, and therefore you will need to use DTLS. Also the negotiation is driven by the client and it needs to be enabled both on the server and on the client.

 

(See the documentation of mbedtls_ssl_conf_max_frag_len() for more details.)

 

I hope that helps,

Janos

 

 

 

Hi,

 

Can anyone help if mbedTLS TLS/DTLS code would work on top of BLE (specifically SPP). I am not sure if the packet size limitation on SPP would make TLS work.. any pointers anyone? Would be really helpful.

 

Regards,
Fariya

 

 

 

Hi,

 

I wanted to use TLS over BLE application. When I googled, I figured out that MbedTLS can work on BLE. If someone can share a sample application where-in MbedTLS APIs are used as part of a BT/BLE application, it will be of great help.

 

Regards,

Fariya