Page 1 of 1

certification authority pem update.

Posted: Mon Oct 07, 2019 2:46 pm
by shooks
Hi all,
i'm using the MQTT client and I would like to find a way to understand when the connection faild due to a certificate problem.
From the log everything is clear, if i flash a wrong certificate, when the device try to connect :

E (248338) esp-tls: mbedtls_ssl_handshake returned -0x2700
I (248338) esp-tls: Failed to verify peer certificate!
I (248348) esp-tls: verification info: ! The certificate is not correctly signed by the trusted CA

E (248358) esp-tls: Failed to open new connection
E (248358) TRANS_SSL: Failed to open a new connection
E (248368) MQTT_CLIENT: Error transport connect

But from the MQTT client i just see that the client is not connected.
My goal would be understand the handshake fail reason and, if the reason "is not valid CA certificate" try to download a new one.

There are a way to have these "fail reason" from the mqtt client ( or maybe from the esp_transport_* layer ) ?

Thank you.