[nrf fromtree] net: lwm2m: Use CID_SUPPORTED instead of CID_ENABLED

SeppoTakalo · SeppoTakalo · commit abfd94834e07 · 2024-02-12T15:50:36.000+02:00
When ENABLED flag is used, we generate 32 byte DTLS Connection Identifier and include that in our DTLS Client HELO. This has no benefit as client only has one connection toward the server, it does not need any identification. When SUPPORTED flag is used, we just include zero length Connection Identifier in the handshake, which tell server that we support Connection Identifier and server can generate one for it. We then use the CID in the packets that we send towards server, but response packets don't contain any CID. This gives all the benefit of CID as server is able to identify us even when NAT mapping have changed. Signed-off-by: Seppo Takalo <seppo.takalo@nordicsemi.no> (cherry picked from commit 9929363)
diff --git a/subsys/net/lib/lwm2m/lwm2m_engine.c b/subsys/net/lib/lwm2m/lwm2m_engine.c
@@ -1060,7 +1060,7 @@ int lwm2m_set_default_sockopt(struct lwm2m_ctx *ctx)
 		}
 		if (IS_ENABLED(CONFIG_LWM2M_DTLS_CID)) {
 			/* Enable CID */
-			int cid = TLS_DTLS_CID_ENABLED;
+			int cid = TLS_DTLS_CID_SUPPORTED;
 
 			ret = zsock_setsockopt(ctx->sock_fd, SOL_TLS, TLS_DTLS_CID, &cid,
 					       sizeof(cid));

Original file line number	Diff line number	Diff line change
`@@ -1060,7 +1060,7 @@ int lwm2m_set_default_sockopt(struct lwm2m_ctx *ctx)`
`1060`	`1060`	`}`
`1061`	`1061`	`if (IS_ENABLED(CONFIG_LWM2M_DTLS_CID)) {`
`1062`	`1062`	`/* Enable CID */`
`1063`		`- int cid = TLS_DTLS_CID_ENABLED;`
	`1063`	`+ int cid = TLS_DTLS_CID_SUPPORTED;`
`1064`	`1064`
`1065`	`1065`	`ret = zsock_setsockopt(ctx->sock_fd, SOL_TLS, TLS_DTLS_CID, &cid,`
`1066`	`1066`	`sizeof(cid));`