ARMmbed
diff --git a/‎TESTS/netsocket/tls/main.cpp
Lines changed: 4 additions & 4 deletions b/‎TESTS/netsocket/tls/main.cpp
Lines changed: 4 additions & 4 deletions
diff --git a/‎TESTS/netsocket/tls/tlssocket_endpoint_close.cpp
Lines changed: 4 additions & 1 deletion b/‎TESTS/netsocket/tls/tlssocket_endpoint_close.cpp
Lines changed: 4 additions & 1 deletion
diff --git a/‎TESTS/netsocket/tls/tlssocket_handshake_invalid.cpp
Lines changed: 8 additions & 2 deletions b/‎TESTS/netsocket/tls/tlssocket_handshake_invalid.cpp
Lines changed: 8 additions & 2 deletions
diff --git a/‎UNITTESTS/features/cellular/framework/AT/at_cellularstack/at_cellularstacktest.cpp
Lines changed: 7 additions & 7 deletions b/‎UNITTESTS/features/cellular/framework/AT/at_cellularstack/at_cellularstacktest.cpp
Lines changed: 7 additions & 7 deletions
diff --git a/‎features/cellular/framework/AT/AT_CellularStack.cpp
Lines changed: 12 additions & 9 deletions b/‎features/cellular/framework/AT/AT_CellularStack.cpp
Lines changed: 12 additions & 9 deletions
diff --git a/‎features/cellular/framework/AT/AT_CellularStack.h
Lines changed: 2 additions & 0 deletions b/‎features/cellular/framework/AT/AT_CellularStack.h
Lines changed: 2 additions & 0 deletions
@@ -84,15 +84,15 @@ nsapi_error_t tlssocket_connect_to_srv(TLSSocket &sock, uint16_t port)
 
     printf("MBED: Server '%s', port %d\n", tls_addr.get_ip_address(), tls_addr.get_port());
 
-    nsapi_error_t err = sock.set_root_ca_cert(tls_global::cert);
+    nsapi_error_t err = sock.open(NetworkInterface::get_default_instance());
     if (err != NSAPI_ERROR_OK) {
-        printf("Error from sock.set_root_ca_cert: %d\n", err);
+        printf("Error from sock.open: %d\n", err);
         return err;
     }
 
-    err = sock.open(NetworkInterface::get_default_instance());
+    err = sock.set_root_ca_cert(tls_global::cert);
     if (err != NSAPI_ERROR_OK) {
-        printf("Error from sock.open: %d\n", err);
+        printf("Error from sock.set_root_ca_cert: %d\n", err);
         return err;
     }
 
 
@@ -48,6 +48,10 @@ static nsapi_error_t _tlssocket_connect_to_daytime_srv(TLSSocket &sock)
         return err;
     }
 
+    TEST_ASSERT_EQUAL(NSAPI_ERROR_OK, sock.set_root_ca_cert(tls_global::cert));
+
+    sock.set_timeout(10000); // Set timeout for case TLSSocket does not support peer closed indication
+
     return sock.connect(tls_addr);
 }
 
@@ -62,7 +66,6 @@ void TLSSOCKET_ENDPOINT_CLOSE()
     tc_exec_time.start();
 
     TLSSocket sock;
-    TEST_ASSERT_EQUAL(NSAPI_ERROR_OK, sock.set_root_ca_cert(tls_global::cert));
     if (_tlssocket_connect_to_daytime_srv(sock) != NSAPI_ERROR_OK) {
         TEST_FAIL();
         return;
 
@@ -28,12 +28,18 @@ using namespace utest::v1;
 
 void TLSSOCKET_HANDSHAKE_INVALID()
 {
+    const int https_port = 443;
     SKIP_IF_TCP_UNSUPPORTED();
     TLSSocket sock;
     TEST_ASSERT_EQUAL(NSAPI_ERROR_OK, sock.open(NetworkInterface::get_default_instance()));
     TEST_ASSERT_EQUAL(NSAPI_ERROR_OK, sock.set_root_ca_cert(tls_global::cert));
-    TEST_ASSERT_EQUAL(NSAPI_ERROR_AUTH_FAILURE,
-                      sock.connect("google.com", 443)); // 443 is https port.
+    TEST_ASSERT_EQUAL(NSAPI_ERROR_AUTH_FAILURE, sock.connect("expired.badssl.com", https_port));
+    TEST_ASSERT_EQUAL(NSAPI_ERROR_AUTH_FAILURE, sock.connect("wrong.host.badssl.com", https_port));
+    TEST_ASSERT_EQUAL(NSAPI_ERROR_AUTH_FAILURE, sock.connect("self-signed.badssl.com", https_port));
+    TEST_ASSERT_EQUAL(NSAPI_ERROR_AUTH_FAILURE, sock.connect("untrusted-root.badssl.com", https_port));
+    TEST_ASSERT_EQUAL(NSAPI_ERROR_AUTH_FAILURE, sock.connect("revoked.badssl.com", https_port));
+    TEST_ASSERT_EQUAL(NSAPI_ERROR_AUTH_FAILURE, sock.connect("pinning-test.badssl.com", https_port));
+    TEST_ASSERT_EQUAL(NSAPI_ERROR_AUTH_FAILURE, sock.connect("sha1-intermediate.badssl.com", https_port));
     TEST_ASSERT_EQUAL(NSAPI_ERROR_OK, sock.close());
 }
 
 
@@ -244,7 +244,7 @@ TEST_F(TestAT_CellularStack, test_AT_CellularStack_socket_bind)
     MyStack st(at, 0, IPV6_STACK);
     SocketAddress addr;
     ATHandler_stub::nsapi_error_value = NSAPI_ERROR_ALREADY;
-    EXPECT_EQ(st.socket_bind(NULL, addr), NSAPI_ERROR_DEVICE_ERROR);
+    EXPECT_EQ(st.socket_bind(NULL, addr), NSAPI_ERROR_NO_SOCKET);
 
     EXPECT_EQ(st.socket_bind(&st.socket, addr), NSAPI_ERROR_ALREADY);
 }
@@ -267,7 +267,7 @@ TEST_F(TestAT_CellularStack, test_AT_CellularStack_socket_connect)
 
     MyStack st(at, 0, IPV6_STACK);
     SocketAddress addr;
-    EXPECT_EQ(st.socket_connect(NULL, addr), NSAPI_ERROR_DEVICE_ERROR);
+    EXPECT_EQ(st.socket_connect(NULL, addr), NSAPI_ERROR_NO_SOCKET);
 
     EXPECT_EQ(st.socket_connect(&st.socket, addr), NSAPI_ERROR_OK);
 }
@@ -290,9 +290,9 @@ TEST_F(TestAT_CellularStack, test_AT_CellularStack_socket_send)
     ATHandler at(&fh1, que, 0, ",");
 
     MyStack st(at, 0, IPV6_STACK);
-    EXPECT_EQ(st.socket_send(NULL, "addr", 4), NSAPI_ERROR_DEVICE_ERROR);
+    EXPECT_EQ(st.socket_send(NULL, "addr", 4), NSAPI_ERROR_NO_SOCKET);
 
-    EXPECT_EQ(st.socket_send(&st.socket, "addr", 4), NSAPI_ERROR_DEVICE_ERROR);
+    EXPECT_EQ(st.socket_send(&st.socket, "addr", 4), NSAPI_ERROR_NO_CONNECTION);
 
     SocketAddress addr;
     st.max_sock_value = 1;
@@ -312,7 +312,7 @@ TEST_F(TestAT_CellularStack, test_AT_CellularStack_socket_sendto)
     MyStack st(at, 0, IPV6_STACK);
 
     SocketAddress addr;
-    EXPECT_EQ(st.socket_sendto(NULL, addr, "addr", 4), NSAPI_ERROR_DEVICE_ERROR);
+    EXPECT_EQ(st.socket_sendto(NULL, addr, "addr", 4), NSAPI_ERROR_NO_SOCKET);
 
     st.max_sock_value = 1;
     st.bool_value = true;
@@ -334,7 +334,7 @@ TEST_F(TestAT_CellularStack, test_AT_CellularStack_socket_recv)
 
     MyStack st(at, 0, IPV6_STACK);
     char table[4];
-    EXPECT_EQ(st.socket_recv(NULL, table, 4), NSAPI_ERROR_DEVICE_ERROR);
+    EXPECT_EQ(st.socket_recv(NULL, table, 4), NSAPI_ERROR_NO_SOCKET);
 }
 
 TEST_F(TestAT_CellularStack, test_AT_CellularStack_socket_recvfrom)
@@ -345,7 +345,7 @@ TEST_F(TestAT_CellularStack, test_AT_CellularStack_socket_recvfrom)
 
     MyStack st(at, 0, IPV6_STACK);
     char table[4];
-    EXPECT_EQ(st.socket_recvfrom(NULL, NULL, table, 4), NSAPI_ERROR_DEVICE_ERROR);
+    EXPECT_EQ(st.socket_recvfrom(NULL, NULL, table, 4), NSAPI_ERROR_NO_SOCKET);
 
     SocketAddress addr;
     st.max_sock_value = 1;
 
@@ -161,7 +161,7 @@ nsapi_error_t AT_CellularStack::socket_close(nsapi_socket_t handle)
 
     struct CellularSocket *socket = (struct CellularSocket *)handle;
     if (!socket) {
-        return err;
+        return NSAPI_ERROR_NO_SOCKET;
     }
     int sock_id = socket->id;
 
@@ -197,7 +197,7 @@ nsapi_error_t AT_CellularStack::socket_bind(nsapi_socket_t handle, const SocketA
 {
     struct CellularSocket *socket = (CellularSocket *)handle;
     if (!socket) {
-        return NSAPI_ERROR_DEVICE_ERROR;
+        return NSAPI_ERROR_NO_SOCKET;
     }
 
     if (addr) {
@@ -225,14 +225,14 @@ nsapi_error_t AT_CellularStack::socket_bind(nsapi_socket_t handle, const SocketA
 
 nsapi_error_t AT_CellularStack::socket_listen(nsapi_socket_t handle, int backlog)
 {
-    return NSAPI_ERROR_UNSUPPORTED;;
+    return NSAPI_ERROR_UNSUPPORTED;
 }
 
 nsapi_error_t AT_CellularStack::socket_connect(nsapi_socket_t handle, const SocketAddress &addr)
 {
     CellularSocket *socket = (CellularSocket *)handle;
     if (!socket) {
-        return NSAPI_ERROR_DEVICE_ERROR;
+        return NSAPI_ERROR_NO_SOCKET;
     }
     socket->remoteAddress = addr;
     socket->connected = true;
@@ -242,14 +242,17 @@ nsapi_error_t AT_CellularStack::socket_connect(nsapi_socket_t handle, const Sock
 
 nsapi_error_t AT_CellularStack::socket_accept(void *server, void **socket, SocketAddress *addr)
 {
-    return NSAPI_ERROR_UNSUPPORTED;;
+    return NSAPI_ERROR_UNSUPPORTED;
 }
 
 nsapi_size_or_error_t AT_CellularStack::socket_send(nsapi_socket_t handle, const void *data, unsigned size)
 {
     CellularSocket *socket = (CellularSocket *)handle;
-    if (!socket || !socket->connected) {
-        return NSAPI_ERROR_DEVICE_ERROR;
+    if (!socket) {
+        return NSAPI_ERROR_NO_SOCKET;
+    }
+    if (!socket->connected) {
+        return NSAPI_ERROR_NO_CONNECTION;
     }
     return socket_sendto(handle, socket->remoteAddress, data, size);
 }
@@ -258,7 +261,7 @@ nsapi_size_or_error_t AT_CellularStack::socket_sendto(nsapi_socket_t handle, con
 {
     CellularSocket *socket = (CellularSocket *)handle;
     if (!socket) {
-        return NSAPI_ERROR_DEVICE_ERROR;
+        return NSAPI_ERROR_NO_SOCKET;
     }
 
     if (socket->closed && !socket->rx_avail) {
@@ -324,7 +327,7 @@ nsapi_size_or_error_t AT_CellularStack::socket_recvfrom(nsapi_socket_t handle, S
 {
     CellularSocket *socket = (CellularSocket *)handle;
     if (!socket) {
-        return NSAPI_ERROR_DEVICE_ERROR;
+        return NSAPI_ERROR_NO_SOCKET;
     }
 
     if (socket->closed) {
 
@@ -110,6 +110,7 @@ class AT_CellularStack : public NetworkStack, public AT_CellularBase {
             started(false),
             tx_ready(false),
             rx_avail(false),
+            tls_socket(false),
             pending_bytes(0)
         {
         }
@@ -127,6 +128,7 @@ class AT_CellularStack : public NetworkStack, public AT_CellularBase {
         bool started; // socket has been opened on modem stack
         bool tx_ready; // socket is ready for sending on modem stack
         bool rx_avail; // socket has data for reading on modem stack
+        bool tls_socket; // socket uses modem's internal TLS socket functionality
         nsapi_size_t pending_bytes; // The number of received bytes pending
     };
Original file line number	Diff line number	Diff line change
`@@ -161,7 +161,7 @@ nsapi_error_t AT_CellularStack::socket_close(nsapi_socket_t handle)`
`161`	`161`
`162`	`162`	`struct CellularSocket socket = (struct CellularSocket )handle;`
`163`	`163`	`if (!socket) {`
`164`		`- return err;`
	`164`	`+ return NSAPI_ERROR_NO_SOCKET;`
`165`	`165`	`}`
`166`	`166`	`int sock_id = socket->id;`
`167`	`167`
`@@ -197,7 +197,7 @@ nsapi_error_t AT_CellularStack::socket_bind(nsapi_socket_t handle, const SocketA`
`197`	`197`	`{`
`198`	`198`	`struct CellularSocket socket = (CellularSocket )handle;`
`199`	`199`	`if (!socket) {`
`200`		`- return NSAPI_ERROR_DEVICE_ERROR;`
	`200`	`+ return NSAPI_ERROR_NO_SOCKET;`
`201`	`201`	`}`
`202`	`202`
`203`	`203`	`if (addr) {`
`@@ -225,14 +225,14 @@ nsapi_error_t AT_CellularStack::socket_bind(nsapi_socket_t handle, const SocketA`
`225`	`225`
`226`	`226`	`nsapi_error_t AT_CellularStack::socket_listen(nsapi_socket_t handle, int backlog)`
`227`	`227`	`{`
`228`		`- return NSAPI_ERROR_UNSUPPORTED;;`
	`228`	`+ return NSAPI_ERROR_UNSUPPORTED;`
`229`	`229`	`}`
`230`	`230`
`231`	`231`	`nsapi_error_t AT_CellularStack::socket_connect(nsapi_socket_t handle, const SocketAddress &addr)`
`232`	`232`	`{`
`233`	`233`	`CellularSocket socket = (CellularSocket )handle;`
`234`	`234`	`if (!socket) {`
`235`		`- return NSAPI_ERROR_DEVICE_ERROR;`
	`235`	`+ return NSAPI_ERROR_NO_SOCKET;`
`236`	`236`	`}`
`237`	`237`	`socket->remoteAddress = addr;`
`238`	`238`	`socket->connected = true;`
`@@ -242,14 +242,17 @@ nsapi_error_t AT_CellularStack::socket_connect(nsapi_socket_t handle, const Sock`
`242`	`242`
`243`	`243`	`nsapi_error_t AT_CellularStack::socket_accept(void server, void socket, SocketAddress addr)`
`244`	`244`	`{`
`245`		`- return NSAPI_ERROR_UNSUPPORTED;;`
	`245`	`+ return NSAPI_ERROR_UNSUPPORTED;`
`246`	`246`	`}`
`247`	`247`
`248`	`248`	`nsapi_size_or_error_t AT_CellularStack::socket_send(nsapi_socket_t handle, const void *data, unsigned size)`
`249`	`249`	`{`
`250`	`250`	`CellularSocket socket = (CellularSocket )handle;`
`251`		`- if (!socket \|\| !socket->connected) {`
`252`		`- return NSAPI_ERROR_DEVICE_ERROR;`
	`251`	`+ if (!socket) {`
	`252`	`+ return NSAPI_ERROR_NO_SOCKET;`
	`253`	`+ }`
	`254`	`+ if (!socket->connected) {`
	`255`	`+ return NSAPI_ERROR_NO_CONNECTION;`
`253`	`256`	`}`
`254`	`257`	`return socket_sendto(handle, socket->remoteAddress, data, size);`
`255`	`258`	`}`
`@@ -258,7 +261,7 @@ nsapi_size_or_error_t AT_CellularStack::socket_sendto(nsapi_socket_t handle, con`
`258`	`261`	`{`
`259`	`262`	`CellularSocket socket = (CellularSocket )handle;`
`260`	`263`	`if (!socket) {`
`261`		`- return NSAPI_ERROR_DEVICE_ERROR;`
	`264`	`+ return NSAPI_ERROR_NO_SOCKET;`
`262`	`265`	`}`
`263`	`266`
`264`	`267`	`if (socket->closed && !socket->rx_avail) {`
`@@ -324,7 +327,7 @@ nsapi_size_or_error_t AT_CellularStack::socket_recvfrom(nsapi_socket_t handle, S`
`324`	`327`	`{`
`325`	`328`	`CellularSocket socket = (CellularSocket )handle;`
`326`	`329`	`if (!socket) {`
`327`		`- return NSAPI_ERROR_DEVICE_ERROR;`
	`330`	`+ return NSAPI_ERROR_NO_SOCKET;`
`328`	`331`	`}`
`329`	`332`
`330`	`333`	`if (socket->closed) {`
Original file line number	Diff line number	Diff line change
`@@ -110,6 +110,7 @@ class AT_CellularStack : public NetworkStack, public AT_CellularBase {`
`110`	`110`	`started(false),`
`111`	`111`	`tx_ready(false),`
`112`	`112`	`rx_avail(false),`
	`113`	`+ tls_socket(false),`
`113`	`114`	`pending_bytes(0)`
`114`	`115`	`{`
`115`	`116`	`}`
`@@ -127,6 +128,7 @@ class AT_CellularStack : public NetworkStack, public AT_CellularBase {`
`127`	`128`	`bool started; // socket has been opened on modem stack`
`128`	`129`	`bool tx_ready; // socket is ready for sending on modem stack`
`129`	`130`	`bool rx_avail; // socket has data for reading on modem stack`
	`131`	`+ bool tls_socket; // socket uses modem's internal TLS socket functionality`
`130`	`132`	`nsapi_size_t pending_bytes; // The number of received bytes pending`
`131`	`133`	`};`
`132`	`134`