- Sat May 30, 2015 5:27 am
#18948
SHA-1 is depressed due to security problem, people are migrating to SHA-2 signed certificate. But I'm unable to make ESP8266 working with the new SHA-2 https certificate. The reconnect_cb was called with error number -28.
I've looked into the old 0.9.4 SDK which ssl related codes are still opensource, and find it indeed leak of SHA-2 support. But I can do nothing except begging you staffs to support it because SDK 1.1.0 are no longer providing libssl with source opened.
Websites with SHA-1 certificate are no longer safe and will got a big Red warning in the new version of Chome(http://blog.chromium.org/2014/09/gradua ... sha-1.html). So not only we but almost every websites need to upgrade to SHA-2 certificate ASAP.
P.S. A good web-based tool that can tell you much more about your website's https related problem:
https://www.ssllabs.com/ssltest/analyze ... com&latest
It rated grade A to our server, but failed to connect from ESP8266 now : (
https://www.ssllabs.com/ssltest/analyze ... odelua.org
P.P.S. The certificate of espressif.com was EXPIRED 50 days ago!!!
I've looked into the old 0.9.4 SDK which ssl related codes are still opensource, and find it indeed leak of SHA-2 support. But I can do nothing except begging you staffs to support it because SDK 1.1.0 are no longer providing libssl with source opened.
Websites with SHA-1 certificate are no longer safe and will got a big Red warning in the new version of Chome(http://blog.chromium.org/2014/09/gradua ... sha-1.html). So not only we but almost every websites need to upgrade to SHA-2 certificate ASAP.
P.S. A good web-based tool that can tell you much more about your website's https related problem:
https://www.ssllabs.com/ssltest/analyze ... com&latest
It rated grade A to our server, but failed to connect from ESP8266 now : (
https://www.ssllabs.com/ssltest/analyze ... odelua.org
P.P.S. The certificate of espressif.com was EXPIRED 50 days ago!!!
