HL7800-M SSL connection error

Hello.

I’m trying to connect AWS server using HL7800-M.4.5.4.0.
I have executed the following AT commands to create a Secured TCP connection with my AWS, but after AT+KTCPNX=1 command, the device is throwing the SSL connection error notification (KTCP_NOTIF: 1,13).

Here are the commands list I tried,

Blockquote
SND:AT
RCV:
RCV:+CEREG: 2
RCV:
RCV:+CEREG: 0
RCV:
RCV:+CEREG: 2
RCV:
RCV:+CEREG: 1,“600E”,“02036503”,7
RCV:
RCV:OK
SND:AT&K3
RCV:
RCV:OK
SND:AT+CMEE=1
RCV:
RCV:OK
SND:AT&W
RCV:
RCV:
RCV:OK
SND:AT+CFUN=4
RCV:
RCV:OK
SND:AT+CEREG=2
RCV:
RCV:+CEREG: 0
RCV:
RCV:+CEREG: 0
RCV:
RCV:OK
SND:AT+CGDCONT=1,“IP”,“soracom.io”
RCV:
RCV:OK
SND:AT+KSLEEP=2
RCV:OK
SND:AT+CFUN=1
RCV:
RCV:
RCV:OK
SND:ATE1
RCV:
RCV:+CEREG: 2
RCV:
RCV:+CEREG: 0
RCV:
RCV:+CEREG: 2
RCV:
RCV:OK
SND:ATI3
RCV:
RCV:HL7800-M.4.5.4.0
RCV:
RCV:OK
SND:AT+KCNXCFG=1,“GPRS”,“soracom.io”,“sora”,“sora”,“IPV4”,“0.0.0.0”,“0.0.0.0”,“0.0.0.0”
RCV:
RCV:+CEREG: 1,“600E”,“02036503”,7
RCV:
RCV:OK
SND:AT+KSSLCFG?
RCV:
RCV:+KSSLCFG: 0,3
RCV:
RCV:OK
SND:AT+KSSLCRYPTO=0,9,3,25456,12,4,3
RCV:
RCV:OK
SND:AT+KSSLCRYPTO?
RCV:
RCV:+KSSLCRYPTO: 0,9,3,25456,12,4,3,0
RCV:+KSSLCRYPTO: 1,1,1,16,0,4,1,0
RCV:+KSSLCRYPTO: 2,1,1,32,0,4,1,0
RCV:+KSSLCRYPTO: 3,1,1,256,0,4,1,0
RCV:+KSSLCRYPTO: 4,1,1,512,0,4,1,0
RCV:+KSSLCRYPTO: 5,1,1,8192,4,4,1,0
RCV:+KSSLCRYPTO: 6,1,1,16384,8,4,1,0
RCV:+KSSLCRYPTO: 7,8,1,64,4,4,1,0
RCV:+KSSLCRYPTO: 8,8,1,8192,4,4,1,0
RCV:+KSSLCRYPTO: 9,8,2,16,0,4,1,0
RCV:+KSSLCRYPTO: 10,8,2,32,0,4,1,0
RCV:+KSSLCRYPTO: 11,8,2,64,4,4,1,0
RCV:+KSSLCRYPTO: 12,8,2,256,0,4,1,0
RCV:+KSSLCRYPTO: 13,8,2,512,0,4,1,0
RCV:+KSSLCRYPTO: 14,8,2,8192,4,4,1,0
RCV:+KSSLCRYPTO: 15,8,2,16384,8,4,1,0
RCV:
RCV:OK
SND:AT+KCERTSTORE?
RCV:
RCV:CONNECT
RCV:root_cert,0,1188
RCV:-----BEGIN CERTIFICATE-----
RCV:…(Amazon Root CA 1)…
RCV:-----END CERTIFICATE-----
RCV:root_cert,1,0
RCV:root_cert,2,0
RCV:root_cert,3,0
RCV:local_cert,0,1224
RCV:-----BEGIN CERTIFICATE-----
RCV:…(Device certificate)…
RCV:-----END CERTIFICATE-----
RCV:local_cert,1,0
RCV:local_cert,2,0
RCV:
RCV:OK
SND:AT+KPRIVKSTORE?
RCV:
RCV:CONNECT
RCV:private_key,0,1680
RCV:-----BEGIN RSA PRIVATE KEY-----
RCV:…(Device private key)…
RCV:-----END RSA PRIVATE KEY-----
RCV:
RCV:private_key,1,0
RCV:private_key,2,0
RCV:
RCV:OK
SND:AT+KTCPCFG=1,3,“xxxxx.iot.ap-northeast-1.amazonaws.com”,8883
RCV:
RCV:+KTCPCFG: 1
RCV:
RCV:OK
SND:AT+KTCPCFG?
RCV:
RCV:+KTCPCFG: 1,0,1,3,“xxxxx.iot.ap-northeast-1.amazonaws.com”,8883,18,0,0,0,0,0
RCV:
RCV:OK
SND:AT+KTCPCNX=1
RCV:
RCV:OK
RCV:
RCV:+KCNX_IND: 1,1,0
RCV:
RCV:+KTCP_NOTIF: 1,13

I’ve succeeded to store certificates and private key.
And I’ve confirmed to be able to established TCP connection without SSL using this SIM card.
What is the problem. Please suggest me what I can do.

Hi @t_kndu,

Thanks for your question.

I have looked through your commands and it seems there’s no problems with them. Assuming that your inserted the right certificate and key to device.

I have found similar issue, however just with these commands and their responses, I cannot determine they are the same. The issue which I found is fixed on the latest FW 4.6.6.0.

Can you please tell me what network are you using? And Can you please upgrade to the latest FW 4.6.6.0 then try again?

Please share your result if this issue still happens. Note that: currently you just can upgrade your module to 4.6.6.0 by FOTA thorugh AirVantage server.

Thanks,

Hi @Donald

I upgraded my device to FW 4.6.6.0 and tried again.
Then it could connect with AWS. ("+KTCP_IND: 1,1" has returned after executing “AT+KTCPCNX=1”.)

Thanks for your help!

When will FW 4.6.6.0 be released for us that don’t use FOTA?

Hi @allardpotma,

You can try to upgrade your HL78xx device to the lasted FW 4.6.8.0 following link:

https://source.sierrawireless.com/resources/airprime/software/hl7800-firmware/hl78xx-firmware-4,-d-,6,-d-,8,-d-,0/#sthash.QwwniiVp.dpbs

Thanks,