• State Not Answered
  • Replies 6 replies
  • Subscribers 68 subscribers
  • Views 155 views
  • Users 0 members are here
Attachments (0)
Nordic Case Info
  • Case ID: 334821
Options

Trying to connect to secure HTTP result in ERROR

Ofir_A

Hi Team,

We are using SDK 2.5.2 with MFW 1.3.5

We need to download a secure file from amazon, we first tried to download file from public server connecting to port 80 and succeeded doing so, but when we try to connect to secure server (port 443) with sec tag we burned at slot 120 it result with error:

[17:41, 19/10/2024] : AT#XHTTPCCON=1,"s3.amazonaws.com",80
#XHTTPCCON: 1
OK
(Read data from server)

Port 80 goes OK


[17:43, 19/10/2024] : AT#XHTTPCCON=1,"s3.amazonaws.com",443,120
#XHTTPCCON: 0
ERROR

Sec tag 120 is where the certificate is burned


[17:44, 19/10/2024] : AT#XHTTPCCON=1,"s3.amazonaws.com",443
#XHTTPCCON: 1
OK

If we connect without applying the sec tag it does connect but we can't download the file

#XHTTPCRSP:0,1


[17:49, 19/10/2024] : AT#XHTTPCCON=1,"firmware.v2.staging.s3.us-east-1.amazonaws.com",443,120
#XHTTPCCON: 0
ERROR


[17:50, 19/10/2024] : AT#XHTTPCCON=1,"firmware.v2.staging.s3.us-east-1.amazonaws.com",443
#XHTTPCCON: 1
OK

Hope I managed to explain the problem coherently

We can't provide modem trace because the layout of our product isn't design for that (we tried via UART with no success) 

Parents
  • 0

    Hey guys,

    I need help with this, It is blocking us from continuing.
    When we use the TLS sec tag for http cert we get an error for unknown reason.

    I want to reproduce this on the evaluation board but I can't because there is no way to burn root TLS cert, I can only burn normal cert with the certificate manager.

    Please provide me something to continue, If there is a way to burn TLS cert (AT#XCMNG and not AT%CMNG) on the evaluation board this could help us understand more

  • 0 in reply to Ofir_A
    Ofir_A said:
    Please provide me something to continue, If there is a way to burn TLS cert (AT#XCMNG and not AT%CMNG) on the evaluation board this could help us understand more

    I'm not sure, I believe both commands should be able to write CA cert, although one writes it to the modem and the other writes it to Zephyr setting storage.

Reply
  • 0 in reply to Ofir_A
    Ofir_A said:
    Please provide me something to continue, If there is a way to burn TLS cert (AT#XCMNG and not AT%CMNG) on the evaluation board this could help us understand more

    I'm not sure, I believe both commands should be able to write CA cert, although one writes it to the modem and the other writes it to Zephyr setting storage.

Children
No Data
Related