ESP32 Forum

ESP32 Official Forum
http://esp32.io/

PEM Certificate expires in September?

http://esp32.io/viewtopic.php?f=2&t=10810

Page 1 of 1

PEM Certificate expires in September?

Posted: Fri May 31, 2019 2:21 pm
by gunar.kroeger
The examples show how to add PEM certificate to the flash (howsmyssl_com_root_cert.pem)

All working fine to connect through HTTPS to our server. But a certificate has an expiration date.
So after September I imagine the communication will suddenly stop, and we will not be able to do OTA to fix it.

Are my assumptions correct? how can I make esp download latest PEM when it expires?

EDIT: there is a ENABLE_MBEDTLS_CERTIFICATE_EXPIRACY_CHECK option in menuconfig disabled by default.
Does this mean it will not break and I don't have to worry?

Re: PEM Certificate expires in September?

Posted: Fri May 31, 2019 2:51 pm
by gunar.kroeger
gunar.kroeger wrote:
Fri May 31, 2019 2:21 pm
 EDIT: there is a ENABLE_MBEDTLS_CERTIFICATE_EXPIRACY_CHECK option in menuconfig disabled by default.
Does this mean it will not break and I don't have to worry?
found this post that seems to confirm it:
viewtopic.php?t=7585

Re: PEM Certificate expires in September?

Posted: Fri May 31, 2019 3:40 pm
by gunar.kroeger
It just isn't clear to me if we have to do anything special in the server to keep the certificate forever or something

We generated a certificate that will expire in 7 days so we can test it
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/