W Shao
W Shao
Checkout [this section of the doc](https://github.com/SteveLTN/https-portal?tab=readme-ov-file#other-server-block-level-configurations). [This](https://github.com/SteveLTN/https-portal/blob/ea366ec0b2e7f3b85637feb7df774fd2962218bf/fs_overlay/var/lib/nginx-conf/default.ssl.conf.erb#L42-L48) is the source code where custom config are injected into the Nginx config.
The way HTTPS-PORTAL loads certificate does not have "memory" of what was last used, it always try to read from Environment variable. It's rather strange that it loads the wrong...
You should be able to just use volume sharing and put your own certificate in the folder where HTTPS-PORTAL normally stores the certificate. It’s in `/var/lib/https-portal` inside the container. Syncing...
I will have a look
Unfortunately I don't have much knowledge about the `SSL` module as well. I only did some quick research on Micropython documentation and CPython documentation and had a browse with `mqtt_as`...
I agree that the MP doc implies setting `do_handshake=False` simply defers the blocking. However, in my testing, this isn't the case. What I observe is: 1. `_connect()` calls `self._sock.setblocking(False)` 2....
In [this branch](https://github.com/SteveLTN/micropython-mqtt/tree/weiyan-test-ssl-blocking) I added some testing code to show the difference. Also [a pull-request](https://github.com/SteveLTN/micropython-mqtt/pull/1/files) to show the diff. Here's the logs when toggling [`do_handshake`](https://github.com/SteveLTN/micropython-mqtt/blob/weiyan-test-ssl-blocking/mqtt_as/test_ssl_blocking.py#L26): ```bash # do_handshake = True...
My theory after reading your linked doc regarding handshake mode, I thought it might be interesting to try to put a fake CA cert and see what happens (to my...
> * Does it reduce the level of security by changing the handshake mode? I fully understand your concern. I'll look into it a bit as well. > * Does...
After some real-world usage, I now am sure that regardless of the value of `do_handshake`, the SSL modules uses CA certificate to verify server's identity if `config['ssl_params']['cert_reqs'] == ssl.CERT_REQUIRED`. Otherwise,...