esp-idf/components/esp-tls/esp_tls_errors.h

/*
 * SPDX-FileCopyrightText: 2021-22 Espressif Systems (Shanghai) CO LTD
 *
 * SPDX-License-Identifier: Apache-2.0
 */

#ifndef _ESP_TLS_ERRORS_H_
#define _ESP_TLS_ERRORS_H_

#include "esp_err.h"
#ifdef CONFIG_ESP_TLS_USING_MBEDTLS
#include "mbedtls/error.h"
#endif
/* For wolfSSL, errors are included through ssl.h which is included by default by esp_tls.h */

#ifdef __cplusplus
extern "C" {
#endif

#define ESP_ERR_ESP_TLS_BASE           0x8000             /*!< Starting number of ESP-TLS error codes */

/* generic esp-tls error codes */
#define ESP_ERR_ESP_TLS_CANNOT_RESOLVE_HOSTNAME           (ESP_ERR_ESP_TLS_BASE + 0x01)  /*!< Error if hostname couldn't be resolved upon tls connection */
#define ESP_ERR_ESP_TLS_CANNOT_CREATE_SOCKET              (ESP_ERR_ESP_TLS_BASE + 0x02)  /*!< Failed to create socket */
#define ESP_ERR_ESP_TLS_UNSUPPORTED_PROTOCOL_FAMILY       (ESP_ERR_ESP_TLS_BASE + 0x03)  /*!< Unsupported protocol family */
#define ESP_ERR_ESP_TLS_FAILED_CONNECT_TO_HOST            (ESP_ERR_ESP_TLS_BASE + 0x04)  /*!< Failed to connect to host */
#define ESP_ERR_ESP_TLS_SOCKET_SETOPT_FAILED              (ESP_ERR_ESP_TLS_BASE + 0x05)  /*!< failed to set/get socket option */
#define ESP_ERR_ESP_TLS_CONNECTION_TIMEOUT                (ESP_ERR_ESP_TLS_BASE + 0x06)  /*!< new connection in esp_tls_low_level_conn connection timeouted */
#define ESP_ERR_ESP_TLS_SE_FAILED                         (ESP_ERR_ESP_TLS_BASE + 0x07)  /*< esp-tls use Secure Element returned failed */
#define ESP_ERR_ESP_TLS_TCP_CLOSED_FIN                    (ESP_ERR_ESP_TLS_BASE + 0x08)  /*< esp-tls's TPC transport connection has benn closed (in a clean way) */

/* mbedtls specific error codes */
#define ESP_ERR_MBEDTLS_CERT_PARTLY_OK                    (ESP_ERR_ESP_TLS_BASE + 0x10)  /*!< mbedtls parse certificates was partly successful */
#define ESP_ERR_MBEDTLS_CTR_DRBG_SEED_FAILED              (ESP_ERR_ESP_TLS_BASE + 0x11)  /*!< mbedtls api returned error */
#define ESP_ERR_MBEDTLS_SSL_SET_HOSTNAME_FAILED           (ESP_ERR_ESP_TLS_BASE + 0x12)  /*!< mbedtls api returned error */
#define ESP_ERR_MBEDTLS_SSL_CONFIG_DEFAULTS_FAILED        (ESP_ERR_ESP_TLS_BASE + 0x13)  /*!< mbedtls api returned error */
#define ESP_ERR_MBEDTLS_SSL_CONF_ALPN_PROTOCOLS_FAILED    (ESP_ERR_ESP_TLS_BASE + 0x14)  /*!< mbedtls api returned error */
#define ESP_ERR_MBEDTLS_X509_CRT_PARSE_FAILED             (ESP_ERR_ESP_TLS_BASE + 0x15)  /*!< mbedtls api returned error */
#define ESP_ERR_MBEDTLS_SSL_CONF_OWN_CERT_FAILED          (ESP_ERR_ESP_TLS_BASE + 0x16)  /*!< mbedtls api returned error */
#define ESP_ERR_MBEDTLS_SSL_SETUP_FAILED                  (ESP_ERR_ESP_TLS_BASE + 0x17)  /*!< mbedtls api returned error */
#define ESP_ERR_MBEDTLS_SSL_WRITE_FAILED                  (ESP_ERR_ESP_TLS_BASE + 0x18)  /*!< mbedtls api returned error */
#define ESP_ERR_MBEDTLS_PK_PARSE_KEY_FAILED               (ESP_ERR_ESP_TLS_BASE + 0x19)  /*!< mbedtls api returned failed  */
#define ESP_ERR_MBEDTLS_SSL_HANDSHAKE_FAILED              (ESP_ERR_ESP_TLS_BASE + 0x1A)  /*!< mbedtls api returned failed  */
#define ESP_ERR_MBEDTLS_SSL_CONF_PSK_FAILED               (ESP_ERR_ESP_TLS_BASE + 0x1B)  /*!< mbedtls api returned failed  */
#define ESP_ERR_MBEDTLS_SSL_TICKET_SETUP_FAILED           (ESP_ERR_ESP_TLS_BASE + 0x1C)  /*!< mbedtls api returned failed  */

/* wolfssl specific error codes */
#define ESP_ERR_WOLFSSL_SSL_SET_HOSTNAME_FAILED           (ESP_ERR_ESP_TLS_BASE + 0x31)  /*!< wolfSSL api returned error */
#define ESP_ERR_WOLFSSL_SSL_CONF_ALPN_PROTOCOLS_FAILED    (ESP_ERR_ESP_TLS_BASE + 0x32)  /*!< wolfSSL api returned error */
#define ESP_ERR_WOLFSSL_CERT_VERIFY_SETUP_FAILED          (ESP_ERR_ESP_TLS_BASE + 0x33)  /*!< wolfSSL api returned error */
#define ESP_ERR_WOLFSSL_KEY_VERIFY_SETUP_FAILED           (ESP_ERR_ESP_TLS_BASE + 0x34)  /*!< wolfSSL api returned error */
#define ESP_ERR_WOLFSSL_SSL_HANDSHAKE_FAILED              (ESP_ERR_ESP_TLS_BASE + 0x35)  /*!< wolfSSL api returned failed  */
#define ESP_ERR_WOLFSSL_CTX_SETUP_FAILED                  (ESP_ERR_ESP_TLS_BASE + 0x36)  /*!< wolfSSL api returned failed */
#define ESP_ERR_WOLFSSL_SSL_SETUP_FAILED                  (ESP_ERR_ESP_TLS_BASE + 0x37)  /*!< wolfSSL api returned failed */
#define ESP_ERR_WOLFSSL_SSL_WRITE_FAILED                  (ESP_ERR_ESP_TLS_BASE + 0x38)  /*!< wolfSSL api returned failed */


/**
* Definition of errors reported from IO API (potentially non-blocking) in case of error:
* - esp_tls_conn_read()
* - esp_tls_conn_write()
*/
#ifdef CONFIG_ESP_TLS_USING_MBEDTLS
#define ESP_TLS_ERR_SSL_WANT_READ                          MBEDTLS_ERR_SSL_WANT_READ
#define ESP_TLS_ERR_SSL_WANT_WRITE                         MBEDTLS_ERR_SSL_WANT_WRITE
#define ESP_TLS_ERR_SSL_TIMEOUT                            MBEDTLS_ERR_SSL_TIMEOUT
#elif CONFIG_ESP_TLS_USING_WOLFSSL /* CONFIG_ESP_TLS_USING_MBEDTLS */
#define ESP_TLS_ERR_SSL_WANT_READ                          -0x6900
#define ESP_TLS_ERR_SSL_WANT_WRITE                         -0x6880
#define ESP_TLS_ERR_SSL_TIMEOUT                            WOLFSSL_CBIO_ERR_TIMEOUT
#endif /*CONFIG_ESP_TLS_USING_WOLFSSL */

/**
* Definition of different types/sources of error codes reported
* from different components
*/
typedef enum {
    ESP_TLS_ERR_TYPE_UNKNOWN = 0,
    ESP_TLS_ERR_TYPE_SYSTEM,                /*!< System error -- errno */
    ESP_TLS_ERR_TYPE_MBEDTLS,               /*!< Error code from mbedTLS library */
    ESP_TLS_ERR_TYPE_MBEDTLS_CERT_FLAGS,    /*!< Certificate flags defined in mbedTLS */
    ESP_TLS_ERR_TYPE_ESP,                   /*!< ESP-IDF error type -- esp_err_t  */
    ESP_TLS_ERR_TYPE_WOLFSSL,               /*!< Error code from wolfSSL library */
    ESP_TLS_ERR_TYPE_WOLFSSL_CERT_FLAGS,    /*!< Certificate flags defined in wolfSSL */
    ESP_TLS_ERR_TYPE_MAX,                   /*!< Last err type -- invalid entry */
} esp_tls_error_type_t;

typedef struct esp_tls_last_error* esp_tls_error_handle_t;

/**
*  @brief Error structure containing relevant errors in case tls error occurred
*/
typedef struct esp_tls_last_error {
    esp_err_t last_error;               /*!< error code (based on ESP_ERR_ESP_TLS_BASE) of the last occurred error */
    int       esp_tls_error_code;       /*!< esp_tls error code from last esp_tls failed api */
    int       esp_tls_flags;            /*!< last certification verification flags */
} esp_tls_last_error_t;

#ifdef __cplusplus
}
#endif

#endif //_ESP_TLS_ERRORS_H_
esp-tls, esp_http_client and esp_http_server: update copyright notice 2021-05-31 20:06:09 +08:00			`/*`
esp_tls.h: Clean up included header files. 2022-05-02 11:00:19 +05:30			`* SPDX-FileCopyrightText: 2021-22 Espressif Systems (Shanghai) CO LTD`
esp-tls, esp_http_client and esp_http_server: update copyright notice 2021-05-31 20:06:09 +08:00			`*`
			`* SPDX-License-Identifier: Apache-2.0`
			`*/`
tcp_transport: Add TCP transport connection errors Transport's error_handle is used to capture different types of errors including esp_err_t from esp-tls and socket/system errors. This change adds the following error codes for TCP transport: * connection closed by a FIN flag (clean closure from server) * DNS resolution problem * connection timeout These errors are already defined in esp-tls component and since this component will be used in the future for both TCP and SSL transport, we currently report these issues in transport::error_handle::esp_tls_last_error of standard esp error type (esp_err_t) Closes https://github.com/espressif/esp-mqtt/issues/182 2021-01-22 21:00:22 +01:00
			`#ifndef _ESP_TLS_ERRORS_H_`
			`#define _ESP_TLS_ERRORS_H_`

			`#include "esp_err.h"`
esp_tls.h: Clean up included header files. 2022-05-02 11:00:19 +05:30			`#ifdef CONFIG_ESP_TLS_USING_MBEDTLS`
			`#include "mbedtls/error.h"`
			`#endif`
			`/* For wolfSSL, errors are included through ssl.h which is included by default by esp_tls.h */`
tcp_transport: Add TCP transport connection errors Transport's error_handle is used to capture different types of errors including esp_err_t from esp-tls and socket/system errors. This change adds the following error codes for TCP transport: * connection closed by a FIN flag (clean closure from server) * DNS resolution problem * connection timeout These errors are already defined in esp-tls component and since this component will be used in the future for both TCP and SSL transport, we currently report these issues in transport::error_handle::esp_tls_last_error of standard esp error type (esp_err_t) Closes https://github.com/espressif/esp-mqtt/issues/182 2021-01-22 21:00:22 +01:00
			`#ifdef __cplusplus`
			`extern "C" {`
			`#endif`

			`#define ESP_ERR_ESP_TLS_BASE 0x8000 /!< Starting number of ESP-TLS error codes /`
Added support for client session tickets in esp-tls (with mbedtls) * client session tickets for individual tls connections are supported * reorganize the esp-tls error codes. * Update esp_err_to_name.c * Fix styling 2021-07-23 17:00:32 +05:30
			`/* generic esp-tls error codes */`
tcp_transport: Add TCP transport connection errors Transport's error_handle is used to capture different types of errors including esp_err_t from esp-tls and socket/system errors. This change adds the following error codes for TCP transport: * connection closed by a FIN flag (clean closure from server) * DNS resolution problem * connection timeout These errors are already defined in esp-tls component and since this component will be used in the future for both TCP and SSL transport, we currently report these issues in transport::error_handle::esp_tls_last_error of standard esp error type (esp_err_t) Closes https://github.com/espressif/esp-mqtt/issues/182 2021-01-22 21:00:22 +01:00			`#define ESP_ERR_ESP_TLS_CANNOT_RESOLVE_HOSTNAME (ESP_ERR_ESP_TLS_BASE + 0x01) /!< Error if hostname couldn't be resolved upon tls connection /`
			`#define ESP_ERR_ESP_TLS_CANNOT_CREATE_SOCKET (ESP_ERR_ESP_TLS_BASE + 0x02) /!< Failed to create socket /`
			`#define ESP_ERR_ESP_TLS_UNSUPPORTED_PROTOCOL_FAMILY (ESP_ERR_ESP_TLS_BASE + 0x03) /!< Unsupported protocol family /`
			`#define ESP_ERR_ESP_TLS_FAILED_CONNECT_TO_HOST (ESP_ERR_ESP_TLS_BASE + 0x04) /!< Failed to connect to host /`
esp_tls: Updated connection method to use non-blocking connect For better control over connection timeouts To be in line with former tcp_transport, as esp-tls is not used for plain tcp transports 2021-01-25 09:45:38 +01:00			`#define ESP_ERR_ESP_TLS_SOCKET_SETOPT_FAILED (ESP_ERR_ESP_TLS_BASE + 0x05) /!< failed to set/get socket option /`
Added support for client session tickets in esp-tls (with mbedtls) * client session tickets for individual tls connections are supported * reorganize the esp-tls error codes. * Update esp_err_to_name.c * Fix styling 2021-07-23 17:00:32 +05:30			`#define ESP_ERR_ESP_TLS_CONNECTION_TIMEOUT (ESP_ERR_ESP_TLS_BASE + 0x06) /!< new connection in esp_tls_low_level_conn connection timeouted /`
			`#define ESP_ERR_ESP_TLS_SE_FAILED (ESP_ERR_ESP_TLS_BASE + 0x07) /< esp-tls use Secure Element returned failed /`
			`#define ESP_ERR_ESP_TLS_TCP_CLOSED_FIN (ESP_ERR_ESP_TLS_BASE + 0x08) /< esp-tls's TPC transport connection has benn closed (in a clean way) /`

			`/* mbedtls specific error codes */`
			`#define ESP_ERR_MBEDTLS_CERT_PARTLY_OK (ESP_ERR_ESP_TLS_BASE + 0x10) /!< mbedtls parse certificates was partly successful /`
			`#define ESP_ERR_MBEDTLS_CTR_DRBG_SEED_FAILED (ESP_ERR_ESP_TLS_BASE + 0x11) /!< mbedtls api returned error /`
			`#define ESP_ERR_MBEDTLS_SSL_SET_HOSTNAME_FAILED (ESP_ERR_ESP_TLS_BASE + 0x12) /!< mbedtls api returned error /`
			`#define ESP_ERR_MBEDTLS_SSL_CONFIG_DEFAULTS_FAILED (ESP_ERR_ESP_TLS_BASE + 0x13) /!< mbedtls api returned error /`
			`#define ESP_ERR_MBEDTLS_SSL_CONF_ALPN_PROTOCOLS_FAILED (ESP_ERR_ESP_TLS_BASE + 0x14) /!< mbedtls api returned error /`
			`#define ESP_ERR_MBEDTLS_X509_CRT_PARSE_FAILED (ESP_ERR_ESP_TLS_BASE + 0x15) /!< mbedtls api returned error /`
			`#define ESP_ERR_MBEDTLS_SSL_CONF_OWN_CERT_FAILED (ESP_ERR_ESP_TLS_BASE + 0x16) /!< mbedtls api returned error /`
			`#define ESP_ERR_MBEDTLS_SSL_SETUP_FAILED (ESP_ERR_ESP_TLS_BASE + 0x17) /!< mbedtls api returned error /`
			`#define ESP_ERR_MBEDTLS_SSL_WRITE_FAILED (ESP_ERR_ESP_TLS_BASE + 0x18) /!< mbedtls api returned error /`
			`#define ESP_ERR_MBEDTLS_PK_PARSE_KEY_FAILED (ESP_ERR_ESP_TLS_BASE + 0x19) /!< mbedtls api returned failed /`
			`#define ESP_ERR_MBEDTLS_SSL_HANDSHAKE_FAILED (ESP_ERR_ESP_TLS_BASE + 0x1A) /!< mbedtls api returned failed /`
			`#define ESP_ERR_MBEDTLS_SSL_CONF_PSK_FAILED (ESP_ERR_ESP_TLS_BASE + 0x1B) /!< mbedtls api returned failed /`
			`#define ESP_ERR_MBEDTLS_SSL_TICKET_SETUP_FAILED (ESP_ERR_ESP_TLS_BASE + 0x1C) /!< mbedtls api returned failed /`

			`/* wolfssl specific error codes */`
			`#define ESP_ERR_WOLFSSL_SSL_SET_HOSTNAME_FAILED (ESP_ERR_ESP_TLS_BASE + 0x31) /!< wolfSSL api returned error /`
			`#define ESP_ERR_WOLFSSL_SSL_CONF_ALPN_PROTOCOLS_FAILED (ESP_ERR_ESP_TLS_BASE + 0x32) /!< wolfSSL api returned error /`
			`#define ESP_ERR_WOLFSSL_CERT_VERIFY_SETUP_FAILED (ESP_ERR_ESP_TLS_BASE + 0x33) /!< wolfSSL api returned error /`
			`#define ESP_ERR_WOLFSSL_KEY_VERIFY_SETUP_FAILED (ESP_ERR_ESP_TLS_BASE + 0x34) /!< wolfSSL api returned error /`
			`#define ESP_ERR_WOLFSSL_SSL_HANDSHAKE_FAILED (ESP_ERR_ESP_TLS_BASE + 0x35) /!< wolfSSL api returned failed /`
			`#define ESP_ERR_WOLFSSL_CTX_SETUP_FAILED (ESP_ERR_ESP_TLS_BASE + 0x36) /!< wolfSSL api returned failed /`
			`#define ESP_ERR_WOLFSSL_SSL_SETUP_FAILED (ESP_ERR_ESP_TLS_BASE + 0x37) /!< wolfSSL api returned failed /`
			`#define ESP_ERR_WOLFSSL_SSL_WRITE_FAILED (ESP_ERR_ESP_TLS_BASE + 0x38) /!< wolfSSL api returned failed /`

tcp_transport: Add TCP transport connection errors Transport's error_handle is used to capture different types of errors including esp_err_t from esp-tls and socket/system errors. This change adds the following error codes for TCP transport: * connection closed by a FIN flag (clean closure from server) * DNS resolution problem * connection timeout These errors are already defined in esp-tls component and since this component will be used in the future for both TCP and SSL transport, we currently report these issues in transport::error_handle::esp_tls_last_error of standard esp error type (esp_err_t) Closes https://github.com/espressif/esp-mqtt/issues/182 2021-01-22 21:00:22 +01:00
esp-tls: Fix wolfssl error codes for WANT_READ/WANT_WRITE wolfSSL error codes are mostly positive numbers, but esp-tls potentially non-block API (read/write) returns ssize_t, i.e. bytes read/written if >0, errorcode otherwise. To comply with this API we have to conditionate the wolfssl return codes to negative numbers, preferably the same codes as mbedTLS codes. 2021-02-10 12:23:58 +01:00			`/**`
			`* Definition of errors reported from IO API (potentially non-blocking) in case of error:`
			`* - esp_tls_conn_read()`
			`* - esp_tls_conn_write()`
			`*/`
tcp_transport: Add TCP transport connection errors Transport's error_handle is used to capture different types of errors including esp_err_t from esp-tls and socket/system errors. This change adds the following error codes for TCP transport: * connection closed by a FIN flag (clean closure from server) * DNS resolution problem * connection timeout These errors are already defined in esp-tls component and since this component will be used in the future for both TCP and SSL transport, we currently report these issues in transport::error_handle::esp_tls_last_error of standard esp error type (esp_err_t) Closes https://github.com/espressif/esp-mqtt/issues/182 2021-01-22 21:00:22 +01:00			`#ifdef CONFIG_ESP_TLS_USING_MBEDTLS`
			`#define ESP_TLS_ERR_SSL_WANT_READ MBEDTLS_ERR_SSL_WANT_READ`
			`#define ESP_TLS_ERR_SSL_WANT_WRITE MBEDTLS_ERR_SSL_WANT_WRITE`
			`#define ESP_TLS_ERR_SSL_TIMEOUT MBEDTLS_ERR_SSL_TIMEOUT`
			`#elif CONFIG_ESP_TLS_USING_WOLFSSL /* CONFIG_ESP_TLS_USING_MBEDTLS */`
esp-tls: Fix wolfssl error codes for WANT_READ/WANT_WRITE wolfSSL error codes are mostly positive numbers, but esp-tls potentially non-block API (read/write) returns ssize_t, i.e. bytes read/written if >0, errorcode otherwise. To comply with this API we have to conditionate the wolfssl return codes to negative numbers, preferably the same codes as mbedTLS codes. 2021-02-10 12:23:58 +01:00			`#define ESP_TLS_ERR_SSL_WANT_READ -0x6900`
			`#define ESP_TLS_ERR_SSL_WANT_WRITE -0x6880`
tcp_transport: Add TCP transport connection errors Transport's error_handle is used to capture different types of errors including esp_err_t from esp-tls and socket/system errors. This change adds the following error codes for TCP transport: * connection closed by a FIN flag (clean closure from server) * DNS resolution problem * connection timeout These errors are already defined in esp-tls component and since this component will be used in the future for both TCP and SSL transport, we currently report these issues in transport::error_handle::esp_tls_last_error of standard esp error type (esp_err_t) Closes https://github.com/espressif/esp-mqtt/issues/182 2021-01-22 21:00:22 +01:00			`#define ESP_TLS_ERR_SSL_TIMEOUT WOLFSSL_CBIO_ERR_TIMEOUT`
			`#endif /CONFIG_ESP_TLS_USING_WOLFSSL /`

			`/**`
			`* Definition of different types/sources of error codes reported`
			`* from different components`
			`*/`
			`typedef enum {`
			`ESP_TLS_ERR_TYPE_UNKNOWN = 0,`
			`ESP_TLS_ERR_TYPE_SYSTEM, /!< System error -- errno /`
			`ESP_TLS_ERR_TYPE_MBEDTLS, /!< Error code from mbedTLS library /`
			`ESP_TLS_ERR_TYPE_MBEDTLS_CERT_FLAGS, /!< Certificate flags defined in mbedTLS /`
			`ESP_TLS_ERR_TYPE_ESP, /!< ESP-IDF error type -- esp_err_t /`
			`ESP_TLS_ERR_TYPE_WOLFSSL, /!< Error code from wolfSSL library /`
			`ESP_TLS_ERR_TYPE_WOLFSSL_CERT_FLAGS, /!< Certificate flags defined in wolfSSL /`
			`ESP_TLS_ERR_TYPE_MAX, /!< Last err type -- invalid entry /`
			`} esp_tls_error_type_t;`

			`typedef struct esp_tls_last_error* esp_tls_error_handle_t;`

			`/**`
			`* @brief Error structure containing relevant errors in case tls error occurred`
			`*/`
			`typedef struct esp_tls_last_error {`
			`esp_err_t last_error; /!< error code (based on ESP_ERR_ESP_TLS_BASE) of the last occurred error /`
			`int esp_tls_error_code; /!< esp_tls error code from last esp_tls failed api /`
			`int esp_tls_flags; /!< last certification verification flags /`
			`} esp_tls_last_error_t;`

			`#ifdef __cplusplus`
			`}`
			`#endif`

			`#endif //_ESP_TLS_ERRORS_H_`