Important changes to forums and questions
All forums and questions are now archived. To start a new conversation or read the latest updates go to forums.mbed.com.
9 years, 11 months ago.
Settings for the HTTPS Client
Hey, I'm trying to get an HTTPS client working using the Cyassl library integrated with the HTTP Client made by Doug Anson (Here's the fork of it https://developer.mbed.org/teams/MBED_DEMOS/code/HTTPClient-SSL/). I am unable to connect to google.com using SSL/TLS. Loading the Equifax and Geotrust CA certificates, it seems to be going just fine until it hits the last message in the handshake protocol, at which point it errors out on a "Protocol Version Mismatch" error (Error 226). Are there settings I'm missing setting under CyaSSL/cyassl/ctaocrypt/settings.h? I'm using a NucleoF401RE board and communicating with the server through a cellular socket (the socket is working fine afaik).
Defined Settings
- #define SINGLE_THREADED
- #define CYASSL_USER_IO
- #define NO_FILESYSTEM
- #define USE_CERT_BUFFERS_2048
- #define IGNORE_NAME_CONSTRAINTS
- #define IGNORE_KEY_EXTENSIONS
- #define FP_MAX_BITS 8192
- #define USE_CERT_BUFFERS_1024
- #define NO_CLIENT_CACHE
- #define USER_TIME For setting the initial Epoch time
- #define ATOMIC_USER
- #define SIZEOF_LONG 4
- #define SIZEOF_LONG_LONG 8
- #define NO_WRITEV
- #define NO_DEV_RANDOM
- #define NO_SHA512 Allowing SHA512 use
- #define NO_DH
- #define NO_DSA
- #define NO_HC128
- #define HAVE_ECC
- #define NO_SESSION_CACHE
- #define DEBUG_CYASSL
Debug Printout: /media/uploads/Vanger/cyasslclient.log
Trying various websites with their appropriate root CA certificate, I've had unreliable success with connecting through the SSL certificate authentication. The common errors are 188, 226,