#include <ESP8266WiFi.h>
#include <WiFiClientSecure.h>
#ifndef STASSID
#define STASSID "ssid"
#define STAPSK "pwd"
#endif
WiFiClientSecure client;
const char* ssid = STASSID;
const char* password = STAPSK;
const char* host = "server ip";
const int httpsPort = 443;
// DigiCert High Assurance EV Root CA
static const char trustRoot[] PROGMEM = R"EOF(
-----BEGIN CERTIFICATE-----
MIIDZzCCAk8CFC6I3N+ayMvUYtM5fV3dgVter3/HMA0GCSqGSIb3DQEBCwUAMHAx
...
...
5yZi0b12t0nRhP9/nfqjrq18qQvuNpFMkEZoX55TU1j+6FTIHlcBSBEzAwRlcy6z
ayyQAen4YGq3fMk=
-----END CERTIFICATE-----
)EOF";
X509List cert(trustRoot);
const char client_cert[] PROGMEM = R"EOF(
-----BEGIN CERTIFICATE-----
MIIDZzCCAk8CFEHOqlzoEw8VZ9UyBUh+Pg9ZGT0cMA0GCSqGSIb3DQEBCwUAMHAx
...
...
K6VmXQciQQuk7V0i75CyxevY9GVDVHs0hpoG7kfXVUVnBo+wQII7p7tEbcJBiQrG
tmQix+1gLmYmsH4=
-----END CERTIFICATE-----
)EOF";
/*-----------------------------------------------------------------*/
const char client_private_key[] PROGMEM = R"KEY(
-----BEGIN PRIVATE KEY-----
MIIEwAIBADANBgkqhkiG9w0BAQEFAASCBKowggSmAgEAAoIBAQC5UPJy4qfYeFzd
...
...
cajJThoAW7ihH96fZW7vK0ejSeAxwBgorwzbhWvEORt6be5j2eUycT5q6eOYGXCg
IbCUotZgJRw81XO0uNeYCFyClwM=
-----END PRIVATE KEY-----
)KEY";
void setup() {
Serial.begin(115200);
Serial.println();
Serial.print("Connecting to ");
Serial.println(ssid);
WiFi.mode(WIFI_STA);
WiFi.begin(ssid, password);
while (WiFi.status() != WL_CONNECTED) {
delay(500);
Serial.print(".");
}
Serial.println("");
Serial.println("WiFi connected");
Serial.println("IP address: ");
Serial.println(WiFi.localIP())
// Set time via NTP, as required for x.509 validation
configTime(3 * 3600, 0, "pool.ntp.org", "time.nist.gov");
Serial.print("Waiting for NTP time sync: ");
time_t now = time(nullptr);
while (now < 8 * 3600 * 2) {
delay(500);
Serial.print(".");
now = time(nullptr);
}
Serial.println("");
struct tm timeinfo;
gmtime_r(&now, &timeinfo);
Serial.print("Current time: ");
Serial.print(asctime(&timeinfo));
Serial.print("Connecting to ");
Serial.println(host);
client.setTrustAnchors(&cert);
X509List serverCertList(client_cert);
PrivateKey serverPrivKey(client_private_key);
client.setClientRSACert(&serverCertList,&serverPrivKey);
if (!client.connect(host, httpsPort)) {
Serial.println("Connection failed");
Serial.print(client.getLastSSLError());
//delay(1000);
} else {}
//client.connect(host, httpsPort);
//String url = "/repos/esp8266/Arduino/commits/master/status";
//Serial.print("Requesting URL: ");
//Serial.println(url);
//client.print("Hello from esp8266");
/*client.print(String("GET ") + url + " HTTP/1.1\r\n" +
"Host: " + host + "\r\n" +
"User-Agent: BuildFailureDetectorESP8266\r\n" +
"Connection: close\r\n\r\n");*/
//Serial.println("Request sent");
while (client.connected()) {
String line = client.readStringUntil('\n');
if (line == "\r") {
Serial.println("Headers received");
break;
}
}
String line = client.readStringUntil('\n');
/* if (line.startsWith("{\"state\":\"success\"")) {
Serial.println("esp8266/Arduino CI successfull!");
} else {
Serial.println("esp8266/Arduino CI has failed");
}*/
Serial.println("Reply was:");
Serial.println("==========");
Serial.println(line);
Serial.println("==========");
Serial.println("Closing connection");
}
void loop() {
}
我试图同时加载服务器和客户端证书以及私钥以运行,但它未与服务器连接,我还附加了BEARSSL的日志。
日志: Wifi连接的IP地址: 192.168.34.12
等待NTP时间同步: 当前时间:2020年10月27日星期二04:06:24
连接到192.168.15.123(服务器ip) 连接失败
错误代码:56
答案 0 :(得分:0)
您正在将IP地址作为const char*传递到client.connect(),但是该函数期望IP地址由4个字节组成的数组;现在,它认为它正在获取一个URL,它将尝试将其解析为IP地址(并失败)。
如果您声明其中一个
IPAddress host(192, 168, 15, 123);或const char* host = "hostname";
然后client.connect(host, httpsPort);将起作用;它会不理解这一点:
const char* host = "192.168.15.123";