I am using ESP32C6 Board.
I am using HTTPS server
stack size of https server task is 20480
so while requesting to server from browser i am getting following error while handshaking
E (64364) esp-tls-mbedtls: mbedtls_ssl_setup returned -0x7F00
E (64364) esp-tls-mbedtls: create_ssl_handle failed, returned [0x8017] (ESP_ERR_MBEDTLS_SSL_SETUP_FAILED)
E (64374) esp_https_server: esp_tls_create_server_session failed
E (64374) httpd: httpd_accept_conn: session creation failed
W (64384) httpd: httpd_server: error accepting new connection
mbedtls ssl Issue
-
VivekBorse
- Posts: 4
- Joined: Thu Nov 09, 2023 4:08 pm
Re: mbedtls ssl Issue
Continueing to above issue,Following is same information taking from ESP SDK Examples.
## Certificates
You will need to approve a security exception in your browser. This is because of a self-signed
certificate: this will be always the case, unless you preload the CA root into your browser/system as trusted.
You can generate a new certificate using the OpenSSL command line tool:
openssl req -newkey rsa:2048 -nodes -keyout prvtkey.pem -x509 -days 3650 -out cacert.pem -subj "/CN=ESP32 HTTPS server example"
While exploring about the issue its seems that there may be one of the reason of issue is certifacate validation
so by using given command i have created certifacte and kept in cert directory
openssl req -newkey rsa:2048 -nodes -keyout prvtkey.pem -x509 -days 3650 -out cacert.pem -subj "/CN=ESP32 HTTPS server example"
we are geeting responce from server at browser side but we get this mbedtls handshake error also
this Mbedtls error couse Following issue so please comment on this and Find attached file
1. While serving files on request we are geeting ERR_CONNECTION_RESET error at browser side
so may be this Mbedtls taking time to do handshing
2. Frequncy of this ERR_CONNECTION_RESET error is less in case of less files serving and its gets increse on serving files quantity increase
Note: If certificate is problem
so please suggest us how to create signed Authenticate certificate and how to upload it so that our multiply devices can work in production by using unique certificate
## Certificates
You will need to approve a security exception in your browser. This is because of a self-signed
certificate: this will be always the case, unless you preload the CA root into your browser/system as trusted.
You can generate a new certificate using the OpenSSL command line tool:
openssl req -newkey rsa:2048 -nodes -keyout prvtkey.pem -x509 -days 3650 -out cacert.pem -subj "/CN=ESP32 HTTPS server example"
While exploring about the issue its seems that there may be one of the reason of issue is certifacate validation
so by using given command i have created certifacte and kept in cert directory
openssl req -newkey rsa:2048 -nodes -keyout prvtkey.pem -x509 -days 3650 -out cacert.pem -subj "/CN=ESP32 HTTPS server example"
we are geeting responce from server at browser side but we get this mbedtls handshake error also
this Mbedtls error couse Following issue so please comment on this and Find attached file
- server and browser screenshot
- image (3).png (155.86 KiB) Viewed 552 times
so may be this Mbedtls taking time to do handshing
2. Frequncy of this ERR_CONNECTION_RESET error is less in case of less files serving and its gets increse on serving files quantity increase
- ERR_CONNECTION_RESET error screen shot
- image (4).png (83.5 KiB) Viewed 546 times
Note: If certificate is problem
so please suggest us how to create signed Authenticate certificate and how to upload it so that our multiply devices can work in production by using unique certificate
Who is online
Users browsing this forum: Majestic-12 [Bot] and 99 guests