feat(esp-tls): Update esp_tls for improved wolfssl support

gojimmypi · gojimmypi · commit 31496c1b1bfd · 2025-10-01T10:47:51.000-07:00
diff --git a/components/esp-tls/esp_tls.c b/components/esp-tls/esp_tls.c
@@ -134,7 +134,7 @@ static ssize_t tcp_write(esp_tls_t *tls, const char *data, size_t datalen)
 
 ssize_t esp_tls_conn_read(esp_tls_t *tls, void  *data, size_t datalen)
 {
-    if (!tls) {
+    if (!tls || !data) {
         return -1;
     }
     return tls->read(tls, (char *)data, datalen);
@@ -461,7 +461,10 @@ static inline esp_err_t tcp_connect(const char *host, int hostlen, int port, con
 
 static int esp_tls_low_level_conn(const char *hostname, int hostlen, int port, const esp_tls_cfg_t *cfg, esp_tls_t *tls)
 {
-
+    if (!tls) {
+        ESP_LOGE(TAG, "empty esp_tls parameter");
+        return -1;
+    }
     esp_err_t esp_ret;
     /* These states are used to keep a tab on connection progress in case of non-blocking connect,
     and in case of blocking connect these cases will get executed one after the other */
@@ -516,6 +519,7 @@ static int esp_tls_low_level_conn(const char *hostname, int hostlen, int port, c
             }
         }
         /* By now, the connection has been established */
+        ESP_LOGD(TAG, "\ncreate_ssl_handle for host: %s:%d\n", hostname, port);
         esp_ret = create_ssl_handle(hostname, hostlen, cfg, tls);
         if (esp_ret != ESP_OK) {
             ESP_LOGE(TAG, "create_ssl_handle failed");
@@ -715,11 +719,17 @@ int esp_tls_server_session_create(esp_tls_cfg_server_t *cfg, int sockfd, esp_tls
 /**
  * @brief      Close the server side TLS/SSL connection and free any allocated resources.
  */
+#ifdef CONFIG_ESP_TLS_USING_WOLFSSL
+int esp_tls_server_session_delete(esp_tls_t *tls)
+    {
+        return _esp_tls_server_session_delete(tls);
+    }
+#else
 void esp_tls_server_session_delete(esp_tls_t *tls)
 {
     return _esp_tls_server_session_delete(tls);
 }
-
+#endif
 ssize_t esp_tls_get_bytes_avail(esp_tls_t *tls)
 {
     return _esp_tls_get_bytes_avail(tls);
diff --git a/components/esp-tls/esp_tls.h b/components/esp-tls/esp_tls.h
@@ -19,6 +19,8 @@
 #include "mbedtls/ctr_drbg.h"
 #endif
 #elif CONFIG_ESP_TLS_USING_WOLFSSL
+/* ESP_TLS_HAS_WOLFSSL defined only for versions properly supporting wolfSSL */
+#define  ESP_TLS_HAS_WOLFSSL
 #include "wolfssl/wolfcrypt/settings.h"
 #include "wolfssl/ssl.h"
 #endif
@@ -774,8 +776,11 @@ int esp_tls_server_session_create(esp_tls_cfg_server_t *cfg, int sockfd, esp_tls
  *
  * @param[in]  tls  pointer to esp_tls_t
  */
+#ifdef CONFIG_ESP_TLS_USING_WOLFSSL
+int esp_tls_server_session_delete(esp_tls_t *tls);
+#else
 void esp_tls_server_session_delete(esp_tls_t *tls);
-
+#endif
 /**
  * @brief Creates a plain TCP connection, returning a valid socket fd on success or an error handle
  *

Original file line number	Diff line number	Diff line change
`@@ -134,7 +134,7 @@ static ssize_t tcp_write(esp_tls_t tls, const char data, size_t datalen)`
`134`	`134`
`135`	`135`	`ssize_t esp_tls_conn_read(esp_tls_t tls, void data, size_t datalen)`
`136`	`136`	`{`
`137`		`- if (!tls) {`
	`137`	`+ if (!tls \|\| !data) {`
`138`	`138`	`return -1;`
`139`	`139`	`}`
`140`	`140`	`return tls->read(tls, (char *)data, datalen);`
`@@ -461,7 +461,10 @@ static inline esp_err_t tcp_connect(const char *host, int hostlen, int port, con`
`461`	`461`
`462`	`462`	`static int esp_tls_low_level_conn(const char hostname, int hostlen, int port, const esp_tls_cfg_t cfg, esp_tls_t *tls)`
`463`	`463`	`{`
`464`		`-`
	`464`	`+ if (!tls) {`
	`465`	`+ ESP_LOGE(TAG, "empty esp_tls parameter");`
	`466`	`+ return -1;`
	`467`	`+ }`
`465`	`468`	`esp_err_t esp_ret;`
`466`	`469`	`/* These states are used to keep a tab on connection progress in case of non-blocking connect,`
`467`	`470`	`and in case of blocking connect these cases will get executed one after the other */`
`@@ -516,6 +519,7 @@ static int esp_tls_low_level_conn(const char *hostname, int hostlen, int port, c`
`516`	`519`	`}`
`517`	`520`	`}`
`518`	`521`	`/* By now, the connection has been established */`
	`522`	`+ ESP_LOGD(TAG, "\ncreate_ssl_handle for host: %s:%d\n", hostname, port);`
`519`	`523`	`esp_ret = create_ssl_handle(hostname, hostlen, cfg, tls);`
`520`	`524`	`if (esp_ret != ESP_OK) {`
`521`	`525`	`ESP_LOGE(TAG, "create_ssl_handle failed");`
`@@ -715,11 +719,17 @@ int esp_tls_server_session_create(esp_tls_cfg_server_t *cfg, int sockfd, esp_tls`
`715`	`719`	`/**`
`716`	`720`	`* @brief Close the server side TLS/SSL connection and free any allocated resources.`
`717`	`721`	`*/`
	`722`	`+#ifdef CONFIG_ESP_TLS_USING_WOLFSSL`
	`723`	`+int esp_tls_server_session_delete(esp_tls_t *tls)`
	`724`	`+ {`
	`725`	`+ return _esp_tls_server_session_delete(tls);`
	`726`	`+ }`
	`727`	`+#else`
`718`	`728`	`void esp_tls_server_session_delete(esp_tls_t *tls)`
`719`	`729`	`{`
`720`	`730`	`return _esp_tls_server_session_delete(tls);`
`721`	`731`	`}`
`722`		`-`
	`732`	`+#endif`
`723`	`733`	`ssize_t esp_tls_get_bytes_avail(esp_tls_t *tls)`
`724`	`734`	`{`
`725`	`735`	`return _esp_tls_get_bytes_avail(tls);`