Skip to content
This repository has been archived by the owner on Jul 31, 2024. It is now read-only.

Commit

Permalink
net: enable extended master secret
Browse files Browse the repository at this point in the history 
Extended Master Secret is a DTLS extension that ensures the
Master Secret is tied to the handshake parameters and is used to
prevent certain Man in the Middle attacks. Golioth reserves the right
to enforce the use of Extended Master Secret on the server side in
the future, so this option must be enabled to ensure continued
compatibility with Golioth.

Signed-off-by: Sam Friedman <[email protected]>
  • Loading branch information
@sam-golioth
sam-golioth committed Oct 11, 2023
1 parent b0f9c3a commit 2ab7986
Showing 1 changed file with 1 addition and 0 deletions.
1 change: 1 addition & 0 deletions net/golioth/Kconfig
View file
Original file line number Diff line number Diff line change
Expand Up @@ -12,6 +12,7 @@ config GOLIOTH
select MBEDTLS_DTLS if MBEDTLS_BUILTIN
select MBEDTLS_TLS_LIBRARY if NRF_SECURITY
select MBEDTLS_SSL_PROTO_DTLS if NRF_SECURITY
select MBEDTLS_SSL_EXTENDED_MASTER_SECRET
select NET_SOCKETS
select NET_UDP
imply DNS_RESOLVER if NET_NATIVE
Expand Down

0 comments on commit 2ab7986

Please sign in to comment.