[SYS] Add alpn (#1745)

1technophile · Sep 14, 2023 · bfca747 · bfca747
1 parent 8de824b
commit bfca747
Show file tree

Hide file tree

Showing 2 changed files with 10 additions and 0 deletions.
diff --git a/main/User_config.h b/main/User_config.h
@@ -217,6 +217,11 @@ const char* certificate PROGMEM = R"EOF("
 #    define AWS_IOT false
 #  endif
 
+#  if AWS_IOT
+// Enable the use of ALPN for AWS IoT Core with the port 443
+const char* alpnProtocols[] = {"x-amzn-mqtt-ca", NULL};
+#  endif
+
 //#  define MQTT_HTTPS_FW_UPDATE //uncomment to enable updating via MQTT message.
 
 #  ifdef MQTT_HTTPS_FW_UPDATE

diff --git a/main/main.ino b/main/main.ino
@@ -1272,6 +1272,11 @@ void setupTLS(bool self_signed, uint8_t index) {
     Log.notice(F("Using self signed cert index %u" CR), index);
 #    if defined(ESP32)
     sClient->setCACert(certs_array[index].server_cert);
+#      if AWS_IOT
+    if (strcmp(mqtt_port, "443") == 0) {
+      sClient->setAlpnProtocols(alpnProtocols);
+    }
+#      endif
 #      if MQTT_SECURE_SELF_SIGNED_CLIENT
     sClient->setCertificate(certs_array[index].client_cert);
     sClient->setPrivateKey(certs_array[index].client_key);