Hi
When you specify the certificates using espconn_secure_ca_enable, you get to specify the CA certificates to use for checking.
It would be *really* nice if these certificates could be the *same* as one returned in the certificate chain from the server.
I.e. if the server (www.example.com) returns:
1: www.example.com signed by SuperDuper CA Intermediate
2: SuperDuper CA Intermediate signed by SuperDuper CA Primary
then I could provide *either* the SuperDuper CA Primary certificate, *or* the SuperDuper CA Intermediate certificate. This would provide more resilience in the case that the server operator changes the certificate chain returned.....
Thanks
Philip
Request for enhancement to SSL client
Who is online
Users browsing this forum: No registered users and 15 guests
Login
Newbies Start Here
Are you new to ESP8266?
Unsure what to do?
Dunno where to start?
Start right here!
Latest SDK
Documentation
Complete listing of the official ESP8266 related documentation release by ESPRESSIF!
Must read here!
- All times are UTC+08:00
- Top
- Delete all board cookies
About Us
Espressif Systems is a fabless semiconductor company providing cutting-edge low power WiFi SoCs and wireless solutions for wireless communications and Internet of Things applications. We are the manufacturer of ESP8266EX.