certification authority pem update.

shooks
Posts: 5
Joined: Wed Jul 03, 2019 7:23 am

certification authority pem update.

Postby shooks » Mon Oct 07, 2019 2:46 pm

Hi all,
i'm using the MQTT client and I would like to find a way to understand when the connection faild due to a certificate problem.
From the log everything is clear, if i flash a wrong certificate, when the device try to connect :

I (247928) mqtts: MQTT_EVENT_BEFORE_CONNECT
E (248338) esp-tls: mbedtls_ssl_handshake returned -0x2700
I (248338) esp-tls: Failed to verify peer certificate!
I (248348) esp-tls: verification info: ! The certificate is not correctly signed by the trusted CA

E (248358) esp-tls: Failed to open new connection
E (248358) TRANS_SSL: Failed to open a new connection
E (248368) MQTT_CLIENT: Error transport connect

But from the MQTT client i just see that the client is not connected.
My goal would be understand the handshake fail reason and, if the reason "is not valid CA certificate" try to download a new one.

There are a way to have these "fail reason" from the mqtt client ( or maybe from the esp_transport_* layer ) ?

Thank you.

Who is online

Users browsing this forum: Baidu [Spider] and 130 guests