Enable mbedTLS debug output for Nordic security backend

Hello Alan,

Please make sure you are using the latest modem firmware version: v1.1.1

Please make sure to update NCS to v1.2.0:

cd ncs/nrf
git checkout master
git pull
git checkout v1.2.0
west update

Have you seen the blog: "Enabling and testing TLS in mqtt_simple" ?
It should give you some good pointers on how you could do this.

Best regards,

Martin L.

Hi Martin,

My client private key required passphase to decrypt.

1) Can the v1.2.0 BSD TLS socket API support on this?

2) If cannot support than how can I proceed on doing this using nrf connect SDK?

3) If I enable mbedTLS support, I might need a big heap memory as the signature and ciphersuite is using SHA384 (4096 bits) but I notice that the maximum size to CONFIG_HEAP_MEM_POOL_SIZE is only 16K?

Any advise would be appreciated.

Hi Martin,

My client private key required passphase to decrypt.

1) Can the v1.2.0 BSD TLS socket API support on this?

2) If cannot support than how can I proceed on doing this using nrf connect SDK?

3) If I enable mbedTLS support, I might need a big heap memory as the signature and ciphersuite is using SHA384 (4096 bits) but I notice that the maximum size to CONFIG_HEAP_MEM_POOL_SIZE is only 16K?

Any advise would be appreciated.

Hi Alan,
I'm not 100% sure if I understand what you are trying to do, but it sounds like this is something that you can achieve using Security Tags

Hi Martin,

Does Nordic bsdlib TLS socket API support "Server Name Indication (SNI)" ?

If yes how to enable it?

Hi Alan,
I am very sorry for the delay! 
I've somehow lost track of this case.

To answer your question, we do not have support for SNI yet.