Adding custom extension to DTLS handshake

Hi, I'm trying to do DTLS handshake and I need to add custom extension to the connection parameters. I didn't find any API for doing it. This is possible with network framework? Thanks

Are you talking about a TLS ALPN value? If so, you can set that using sec_protocol_options_add_tls_application_protocol.

Share and Enjoy

Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"

The ALPN is shown in the application_layer_protocol_negotiation extension. I mean if I can add some data to a custom extension type? I know that in OpenSSL you can do it with SSL_CTX_add_client_custom_ext

So you’re talking about the extensions field as defined in Section 5.3 of RFC 9147?

Share and Enjoy

Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"

Yes

OK, then I think the answer is that, no, there’s no way to work with such extensions. I encourage you to file an enhancement request for an API for this.

Please post your bug number, just for the record.

Share and Enjoy

Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"

Per the request above, opened FB11869808. Thanks a lot!

Adding custom extension to DTLS handshake
 
 
Q