handshake in ssl_client.cpp (#2044)

* issue #2041 * handshake timeout * seconds to milliseconds

handshake in ssl_client.cpp (#2044)
* issue #2041 * handshake timeout * seconds to milliseconds
46257c03 · A C SREEDHAR REDDY · Me No Dev · 06409648 · 46257c03 · 46257c03
Commit 46257c03 authored Nov 27, 2018 by A C SREEDHAR REDDY Committed by Me No Dev Nov 26, 2018
4 changed files
--- a/libraries/WiFiClientSecure/src/WiFiClientSecure.cpp
+++ b/libraries/WiFiClientSecure/src/WiFiClientSecure.cpp
@@ -35,7 +35,7 @@ WiFiClientSecure::WiFiClientSecure()
    sslclient = new sslclient_context;
    ssl_init(sslclient);
    sslclient->socket = -1;
-
+    sslclient->handshake_timeout = 120000;
    _CA_cert = NULL;
    _cert = NULL;
    _private_key = NULL;
@@ -50,6 +50,7 @@ WiFiClientSecure::WiFiClientSecure(int sock)
    sslclient = new sslclient_context;
    ssl_init(sslclient);
    sslclient->socket = sock;
+    sslclient->handshake_timeout = 120000;

    if (sock >= 0) {
        _connected = true;
@@ -285,3 +286,8 @@ int WiFiClientSecure::lastError(char *buf, const size_t size)
    snprintf(buf, size, "%s", error_buf);
    return _lastError;
 }
+
+void WiFiClientSecure::setHandshakeTimeout(unsigned long handshake_timeout)
+{
+    sslclient->handshake_timeout = handshake_timeout * 1000;
+}
\ No newline at end of file
--- a/libraries/WiFiClientSecure/src/WiFiClientSecure.h
+++ b/libraries/WiFiClientSecure/src/WiFiClientSecure.h
@@ -62,6 +62,7 @@ public:
    bool loadCertificate(Stream& stream, size_t size);
    bool loadPrivateKey(Stream& stream, size_t size);
    bool verify(const char* fingerprint, const char* domain_name);
+    void setHandshakeTimeout(unsigned long handshake_timeout);

    operator bool()
    {

--- a/libraries/WiFiClientSecure/src/ssl_client.cpp
+++ b/libraries/WiFiClientSecure/src/ssl_client.cpp
@@ -158,12 +158,14 @@ int start_ssl_client(sslclient_context *ssl_client, const char *host, uint32_t p
    mbedtls_ssl_set_bio(&ssl_client->ssl_ctx, &ssl_client->socket, mbedtls_net_send, mbedtls_net_recv, NULL );

    log_v("Performing the SSL/TLS handshake...");
-
+    unsigned long handshake_start_time=millis();
    while ((ret = mbedtls_ssl_handshake(&ssl_client->ssl_ctx)) != 0) {
        if (ret != MBEDTLS_ERR_SSL_WANT_READ && ret != MBEDTLS_ERR_SSL_WANT_WRITE) {
            return handle_error(ret);
        }
-	vTaskDelay(10 / portTICK_PERIOD_MS);
+        if((millis()-handshake_start_time)>ssl_client->handshake_timeout)
+			return -1;
+	    vTaskDelay(10 / portTICK_PERIOD_MS);
    }



--- a/libraries/WiFiClientSecure/src/ssl_client.h
+++ b/libraries/WiFiClientSecure/src/ssl_client.h
@@ -23,6 +23,8 @@ typedef struct sslclient_context {
    mbedtls_x509_crt ca_cert;
    mbedtls_x509_crt client_cert;
    mbedtls_pk_context client_key;
+
+    unsigned long handshake_timeout;
 } sslclient_context;