reduced tls maximum message content length in menuconfig to 4KB

arduino/libraries/WiFi/src/WiFiSSLClient.cpp

@@ -218,7 +218,7 @@ int WiFiSSLClient::connect(const char* host, uint16_t port, const char* client_c
         // set own certificate chain and key
         ret = mbedtls_ssl_conf_own_cert(&_sslConfig, &_clientCrt, &_clientKey);
         if (ret != 0) {
-          if (ret == -0x7F00) {
+          if (ret == -0x7f00) {
             ets_printf("Memory allocation failed, MBEDTLS_ERR_SSL_ALLOC_FAILED");
           }
           ets_printf("Private key not parsed properly: %d\n", ret);
@@ -235,6 +235,10 @@ int WiFiSSLClient::connect(const char* host, uint16_t port, const char* client_c
 
     ets_printf("*** connect ssl setup\n");
     if ((ret = mbedtls_ssl_setup(&_sslContext, &_sslConfig)) != 0) {
+      if (ret == -0x7f00){
+        ets_printf("MBEDTLS_ERR_SSL_ALLOC_FAILED");
+        ets_printf("Free internal heap after TLS %u", heap_caps_get_free_size(MALLOC_CAP_8BIT));
+      }
       ets_printf("Unable to connect ssl setup %d", ret);
       stop();
       return 0;
@@ -260,6 +264,7 @@ int WiFiSSLClient::connect(const char* host, uint16_t port, const char* client_c
       }
       if((millis() - start_handshake) > handshake_timeout){
         ets_printf("Handshake timeout");
+        stop();
         return -1;
       }
       vTaskDelay(10 / portTICK_PERIOD_MS);

sdkconfig

@@ -514,7 +514,7 @@ CONFIG_LWIP_MAX_RAW_PCBS=16
 CONFIG_MBEDTLS_INTERNAL_MEM_ALLOC=y
 CONFIG_MBEDTLS_DEFAULT_MEM_ALLOC=
 CONFIG_MBEDTLS_CUSTOM_MEM_ALLOC=
-CONFIG_MBEDTLS_SSL_MAX_CONTENT_LEN=16384
+CONFIG_MBEDTLS_SSL_MAX_CONTENT_LEN=4000
 CONFIG_MBEDTLS_ASYMMETRIC_CONTENT_LEN=
 CONFIG_MBEDTLS_DEBUG=
 CONFIG_MBEDTLS_HARDWARE_AES=y