Hello,
I enable the debug level SSL+TLS_MEM in Arduino.
I got a lot of trace but I am not familiar enough with SSL and TLS to understand everything.
Above all, the connection from the Internet through port 9443 (SSL) works with the same certificate.
Why does this certificate not work for the hardware connection?
Am I wrong with my assumptions?
Thanks for your help
Steve
1384, room 16
tail 8
chksum 0x2d
csum 0x2d
vbb28d4a3
~ld
SDK:2.2.1(cfd48f3)/Core:2.4.2/lwIP:2.0.3(STABLE-2_0_3_RELEASE/glue:arduino-2.4.1-13-g163bb82)/BearSSL:6d1cefc
[24184] Connecting to WiFiAccessPoint
scandone
scandone
state: 0 -> 2 (b0)
state: 2 -> 3 (0)
state: 3 -> 5 (10)
add 0
aid 3
cnt
connected with WiFiAccessPoint, channel 1
dhcp client start...
ip:192.168.0.1,mask:255.255.255.0,gw:192.168.0.254
[24687] Connected to WiFi
[24687] IP: 192.168.0.1
[24687]
___ __ __
/ _ )/ /_ _____ / /__
/ _ / / // / _ \/ '_/
/____/_/\_, /_//_/_/\_\
/___/ v0.5.4 on NodeMCU
=== CERTIFICATE ISSUED TO ===
Common Name (CN): blynk-cloud.com
Organization (O): IT
Organizational Unit (OU): Blynk Inc.
Location (L): Kyiv
Country (C): UA
State (ST): Kyiv
Basic Constraints: CA:TRUE, pathlen:10000
=== CERTIFICATE ISSUED BY ===
Common Name (CN): blynk-cloud.com
Organization (O): IT
Organizational Unit (OU): Blynk Inc.
Location (L): Kyiv
Country (C): UA
State (ST): Kyiv
Not Before: Thu Mar 17 11:58:07 2016
Not After: Tue Mar 16 11:58:07 2021
RSA bitsize: 2048
Sig Type: SHA256
[25249] NTP time: Fri Nov 23 11:40:45 2018
[25249] Connecting to mydomain.tld:9443
State: sending Client Hello (1)
State: receiving Server Hello (2)
State: receiving Certificate (11)
=== CERTIFICATE ISSUED TO ===
Common Name (CN): mydomain.tld
Organization (O): <Not Part Of Certificate>
Basic Constraints: critical, CA:FALSE, pathlen:10000
Key Usage: critical, Digital Signature, Key Encipherment
Subject Alt Name: mydomain.tld
=== CERTIFICATE ISSUED BY ===
Common Name (CN): Let's Encrypt Authority X3
Organization (O): Let's Encrypt
Country (C): US
Not Before: Mon Oct 22 14:00:58 2018
Not After: Sun Jan 20 14:00:58 2019
RSA bitsize: 3072
Sig Type: SHA256
=== CERTIFICATE ISSUED TO ===
Common Name (CN): Let's Encrypt Authority X3
Organization (O): Let's Encrypt
Country (C): US
Basic Constraints: critical, CA:TRUE, pathlen:0
Key Usage: critical, Digital Signature, Key Cert Sign, CRL Sign
=== CERTIFICATE ISSUED BY ===
Common Name (CN): DST Root CA X3
Organization (O): Digital Signature Trust Co.
Not Before: Thu Mar 17 16:40:46 2016
Not After: Wed Mar 17 16:40:46 2021
RSA bitsize: 2048
Sig Type: SHA256
State: receiving Server Hello Done (14)
State: sending Client Key Exchange (16)
State: sending Finished (16)
State: receiving Finished (16)
=== CERTIFICATE ISSUED TO ===
Common Name (CN): mydomain.tld
Organization (O): <Not Part Of Certificate>
Basic Constraints: critical, CA:FALSE, pathlen:10000
Key Usage: critical, Digital Signature, Key Encipherment
Subject Alt Name: mydomain.tld
=== CERTIFICATE ISSUED BY ===
Common Name (CN): Let's Encrypt Authority X3
Organization (O): Let's Encrypt
Country (C): US
Not Before: Mon Oct 22 14:00:58 2018
Not After: Sun Jan 20 14:00:58 2019
RSA bitsize: 3072
Sig Type: SHA256
Verify: No trusted cert is available
=== CERTIFICATE ISSUED TO ===
Common Name (CN): Let's Encrypt Authority X3
Organization (O): Let's Encrypt
Country (C): US
Basic Constraints: critical, CA:TRUE, pathlen:0
Key Usage: critical, Digital Signature, Key Cert Sign, CRL Sign
=== CERTIFICATE ISSUED BY ===
Common Name (CN): DST Root CA X3
Organization (O): Digital Signature Trust Co.
Not Before: Thu Mar 17 16:40:46 2016
Not After: Wed Mar 17 16:40:46 2021
RSA bitsize: 2048
Sig Type: SHA256
Verify: No trusted cert is available
Error: No trusted cert is available
[26813] Certificate not validated
[27747] Login timeout
[29749] NTP time: Fri Nov 23 11:40:49 2018
[29749] Connecting to mydomain.tld:9443
Alert: close notify
State: sending Client Hello (1)
State: receiving Server Hello (2)
State: receiving Certificate (11)
=== CERTIFICATE ISSUED TO ===
Common Name (CN): mydomain.tld
Organization (O): <Not Part Of Certificate>
Basic Constraints: critical, CA:FALSE, pathlen:10000
Key Usage: critical, Digital Signature, Key Encipherment
Subject Alt Name: mydomain.tld
=== CERTIFICATE ISSUED BY ===
Common Name (CN): Let's Encrypt Authority X3
Organization (O): Let's Encrypt
Country (C): US
Not Before: Mon Oct 22 14:00:58 2018
Not After: Sun Jan 20 14:00:58 2019
RSA bitsize: 3072
Sig Type: SHA256
=== CERTIFICATE ISSUED TO ===
Common Name (CN): Let's Encrypt Authority X3
Organization (O): Let's Encrypt
Country (C): US
Basic Constraints: critical, CA:TRUE, pathlen:0
Key Usage: critical, Digital Signature, Key Cert Sign, CRL Sign
=== CERTIFICATE ISSUED BY ===
Common Name (CN): DST Root CA X3
Organization (O): Digital Signature Trust Co.
Not Before: Thu Mar 17 16:40:46 2016
Not After: Wed Mar 17 16:40:46 2021
RSA bitsize: 2048
Sig Type: SHA256
State: receiving Server Hello Done (14)
State: sending Client Key Exchange (16)
State: sending Finished (16)
State: receiving Finished (16)
=== CERTIFICATE ISSUED TO ===
Common Name (CN): mydomain.tld
Organization (O): <Not Part Of Certificate>
Basic Constraints: critical, CA:FALSE, pathlen:10000
Key Usage: critical, Digital Signature, Key Encipherment
Subject Alt Name: mydomain.tld
=== CERTIFICATE ISSUED BY ===
Common Name (CN): Let's Encrypt Authority X3
Organization (O): Let's Encrypt
Country (C): US
Not Before: Mon Oct 22 14:00:58 2018
Not After: Sun Jan 20 14:00:58 2019
RSA bitsize: 3072
Sig Type: SHA256
Verify: No trusted cert is available
=== CERTIFICATE ISSUED TO ===
Common Name (CN): Let's Encrypt Authority X3
Organization (O): Let's Encrypt
Country (C): US
Basic Constraints: critical, CA:TRUE, pathlen:0
Key Usage: critical, Digital Signature, Key Cert Sign, CRL Sign
=== CERTIFICATE ISSUED BY ===
Common Name (CN): DST Root CA X3
Organization (O): Digital Signature Trust Co.
Not Before: Thu Mar 17 16:40:46 2016
Not After: Wed Mar 17 16:40:46 2021
RSA bitsize: 2048
Sig Type: SHA256
Verify: No trusted cert is available
Error: No trusted cert is available
[31239] Certificate not validated
[32748] Login timeout