Welcome to the wolfSSL Forums!

2019-04-22 08:34:07

hi @Kaleb,

thanks a lot for your answer. You just helped me a lot by telling me what the -150 error means! By updating the time on the board, the certificates could be loaded successfully.

Best regards,

2019-04-19 07:02:13

Now, I've just tried other ways and I still have the problem...
with this function wolfSSL_CTX_load_verify_buffer() I made the same as in the example.
With helping of the (xxd) tool in ubuntu, I was able to convert the ca certificate to hex exactly like in certs_test.h and then I tried to load as following:

if ((ret = wolfSSL_CTX_load_verify_buffer(ctx, ca_hex_der_2048,
            sizeof_ca_hex_der_2048, WOLFSSL_FILETYPE_ASN1)) != SSL_SUCCESS) {
            ESP_LOGE(TAG,"ERROR: failed to load %d, please check the file.\n",ret);
          }

But after flashing the code on the board, the certificate can't be loaded and I get the error (ERROR: failed to load %d, please check the file), where the error number is -162 or -150.

I'm not sure how wolfssl converted its der certificates to hex like in certs_test.h but if the way that I used correct then it supposed to work, or not?

2019-04-18 05:29:14

Hallo,
I'm trying to add my certificates to the wolfssl_client example in Espressif
https://github.com/wolfSSL/wolfssl/tree … ssl_client
however, it doesn't work with me to add them (ca, crt, key)...

For example, I've tried to add my PEM-formatted CA certificate with helping of this API:

wolfSSL_CTX_load_verify_buffer() as follows:
.
.
.
static const char* ca_cert_der_2048_test =
"-----BEGIN CERTIFICATE-----\n"
.
.
"-----END CERTIFICATE-----";
.
.

wolfSSL_CTX_load_verify_buffer(ctx, (const byte*)ca_cert_der_2048_test,
sizeof(ca_cert_der_2048_test), WOLFSSL_FILETYPE_PEM)

OR with this API:

wolfSSL_CTX_load_verify_locations() as follows:
.
.
.
wolfSSL_CTX_load_verify_locations(ctx, "./ca.pem", NULL)
.
.
.

Any ideas to do it right and add my own certificates to this example?

P.S. see attachment in order to see the c file
thanks,

2019-04-07 04:29:10

Hello,
I've got an idea and I would like to implement this idea, but I need the first push!
My idea is about adding wolfSSL to the MicroPython library in order to be able to build a TLS1.3 connection. MicroPython supports already some TLS libraries (mbedTLS, axTLS). However, these libraries do NOT support the latest version of TLS (TLS1.3).
So, it would be great if anyone can give me keywords from where I should start and what the best way to do that!
P.S. I'm totally new in both libraries.
thanks,

Welcome to the wolfSSL Forums!

Search options

Posts found: 4

1 Reply by m0ot 2019-04-22 08:34:07

Re: [SOLVED] adding my own certificates (5 replies, posted in wolfSSL)

2 Reply by m0ot 2019-04-19 07:02:13

Re: [SOLVED] adding my own certificates (5 replies, posted in wolfSSL)

3 Topic by m0ot 2019-04-18 05:29:14

Topic: [SOLVED] adding my own certificates (5 replies, posted in wolfSSL)

4 Topic by m0ot 2019-04-07 04:29:10

Topic: wolfSSL with MicroPython (1 replies, posted in wolfSSL)

Posts found: 4