Since uPython on the ESP doesn't verify SSL certificates

All ESP8266 boards running MicroPython.
Official boards are the Adafruit Huzzah and Feather boards.
Target audience: MicroPython users with an ESP8266 board.
Post Reply
BetterAutomations
Posts: 83
Joined: Mon Mar 20, 2017 10:22 pm

Since uPython on the ESP doesn't verify SSL certificates

Post by BetterAutomations » Sat Apr 22, 2017 1:20 pm

I see that the ussl library does not verify SSL certificates. I need encryption but I don't strictly need SSL. What are my alternatives?

My device does HTTP (or could do MQTT?) GETs or POSTs to a server to receive orders and send status updates. I need to be able to allow or deny access to my service using a password and I want to avoid attackers sending spurious commands. My device is a chicken coop door opener with phone notifications. Is there another way to provide authentication and authorization?

BetterAutomations
Posts: 83
Joined: Mon Mar 20, 2017 10:22 pm

Re: Since uPython on the ESP doesn't verify SSL certificates

Post by BetterAutomations » Wed Apr 26, 2017 3:03 am

Is SSL verified on the ESP32 port? I can't find documentation.

BetterAutomations
Posts: 83
Joined: Mon Mar 20, 2017 10:22 pm

Re: Since uPython on the ESP doesn't verify SSL certificates

Post by BetterAutomations » Sun Apr 30, 2017 3:35 pm

So without this uPython on the 8266 is a toy. I'm moving toward WiPy or Pi Zero W instead.

JNA

Re: Since uPython on the ESP doesn't verify SSL certificates

Post by JNA » Thu May 04, 2017 10:38 pm

[quote="BetterAutomations"]So without this uPython on the 8266 is a toy. I'm moving toward WiPy or Pi Zero W instead.[/quote]

Hear, hear. For all the hoopla about the ESP8266-based boards, this is serious and valid complaint.

User avatar
deshipu
Posts: 1388
Joined: Thu May 28, 2015 5:54 pm

Re: Since uPython on the ESP doesn't verify SSL certificates

Post by deshipu » Fri May 05, 2017 12:16 am

Bye!

pfalcon
Posts: 1155
Joined: Fri Feb 28, 2014 2:05 pm

Re: Since uPython on the ESP doesn't verify SSL certificates

Post by pfalcon » Sat May 06, 2017 8:57 am

BetterAutomations wrote:So without this uPython on the 8266 is a toy. I'm moving toward WiPy or Pi Zero W instead.
That's valid, but not the only way to deal with it, another alternative:
  • Open a shop to resell WiPy or Pi Zero W. When you sell few tens of thousands of them, for the funds collected, hire someone to implement the support you need.
The list doesn't end here, there're many more choices, e.g.:
  • Get to sleep an hour later for few weeks or months and implement this support yourself.
Awesome MicroPython list
Pycopy - A better MicroPython https://github.com/pfalcon/micropython
MicroPython standard library for all ports and forks - https://github.com/pfalcon/micropython-lib
More up to date docs - http://pycopy.readthedocs.io/

User avatar
pythoncoder
Posts: 5956
Joined: Fri Jul 18, 2014 8:01 am
Location: UK
Contact:

Re: Since uPython on the ESP doesn't verify SSL certificates

Post by pythoncoder » Sat May 06, 2017 5:15 pm

pfalcon wrote:...
  • Get to sleep an hour later for few weeks or months and implement this support yourself.
Hear, hear!
Peter Hinch
Index to my micropython libraries.

BetterAutomations
Posts: 83
Joined: Mon Mar 20, 2017 10:22 pm

Re: Since uPython on the ESP doesn't verify SSL certificates

Post by BetterAutomations » Sun May 07, 2017 4:05 am

I'm sorry guys I'm rushed to get the product done. For my project going to a Pi has several other benefits so I'm doing that instead.

For others who do still want to use the ESP and uPython, a suggestion: Wrap the C code (which does verify) in Python, extend it somehow. I thought I recalled reading about a way to wrap the native code into a module but I don't recall any more details at the moment.

Hoping this is viewed as a constructive suggestion; that's the way it is intended.

Post Reply