Topic: Getting reset while address resolving

Hi All,
I am using TI RTOS ( tirtos_tivac_2_16_01_14 ) and wolfssl for MQTT (AWS MQTT library). Basically, we are using ethernet and for ethernet, we are using wolfssl as socket layer.
I am getting one issue which is-

When I am trying to connect to AWS, before connection, there is a function that is used for address resolution-

    status = HTTPCli_initSockAddr((struct sockaddr *)&tlsDataParams->aws_addr, tlsParams->pDestinationURL, 0);

This function is provided by TI RTOS but inside this, there are wolfssl APIs for further usage.
This issue does not happen always. When the device starts, this line of code executes and the device gets resets automatically and then again this function executes and the second time, it works all fine.
So basically, sometimes it fails, and sometimes it works while executing this function. I don't know what can be this issue is.
Anyone any idea?

I am posting wolfssl logs when it fails-

connecting to aws ...wolfSSL Entering WOLFSSL_CTX_new
wolfSSL Entering wolfSSL_CertManagerNew
wolfSSL Leaving WOLFSSL_CTX_new, return 0
wolfSSL Entering wolfSSL_CTX_load_verify_buffer
Adding a CA
wolfSSL Entering GetExplicitVersion
wolfSSL Entering GetMyVersion
Got Cert Header
wolfSSL Entering GetAlgoId
wolfSSL Entering GetObjectId()
Got Algo ID
Getting Cert Name
Getting Cert Name
Got Subject Name
wolfSSL Entering GetAlgoId
wolfSSL Entering GetObjectId()
Got Key
Parsed Past Key
wolfSSL Entering DecodeCertExtensions
wolfSSL Entering GetObjectId()
wolfSSL Entering DecodeSubjKeyId
wolfSSL Entering GetObjectId()
wolfSSL Entering DecodeAuthKeyId
wolfSSL Entering GetObjectId()
wolfSSL Entering DecodeBasicCaConstraint
wolfSSL Entering GetAlgoId
wolfSSL Entering GetObjectId()
    Parsed new CA
    Freeing Parsed CA
    Freeing der CA
        OK Freeing der CA
wolfSSL Leaving AddCA, return 0
wolfSSL Entering wolfSSL_CTX_use_certificate_buffer
Checking cert signature type
wolfSSL Entering GetExplicitVersion
wolfSSL Entering GetMyVersion
Got Cert Header
wolfSSL Entering GetAlgoId
wolfSSL Entering GetObjectId()
Got Algo ID
Getting Cert Name
Getting Cert Name
Got Subject Name
wolfSSL Entering GetAlgoId
wolfSSL Entering GetObjectId()
Got Key
Not ECDSA cert signature
wolfSSL Entering wolfSSL_CTX_use_PrivateKey_buffer
wolfSSL Entering GetMyVersion

Thanks
AkhiG

Share

Re: Getting reset while address resolving

Hello AkhiG,

The error message "Not ECDSA cert signature" indicates that the signature check failed on the cert that was being verified. This could happen from a driver issue, a buffer overrun, etc.

Are you able to capture the packets with wireshark when the failure occurs?

Thanks,
Eric @ wolfSSL Support