Let's Encrypt's new ISRG Root X1 -> failure #100
Description
Describe the bug
Built an application for ESP32 with SIM800L in early 2021, has been working fine for almost 3 years and then it broke.
I assume it's related to the server's Let's Encrypt certificate and their recent shortening of chain of trust:
https://letsencrypt.org/2023/07/10/cross-sign-expiration.html
I went ahead and re-generated the certificate so it now looks as follows - but it didn't help:
/* This file is auto-generated by the pycert_bearssl tool. Do not change it manually.
* Certificates are BearSSL br_x509_trust_anchor format. Included certs:
*
* Index: 0
* Label: ISRG Root X1
* Subject: CN=ISRG Root X1,O=Internet Security Research Group,C=US
* Domain(s): iot.t-mobile.cz
*/
Screenshots/Serial Output
when calling http.post("server", 443, "/path") I now get the following SSL errors:
(SSLClient)(SSL_ERROR)(connected): Not connected because write error is set
(SSLClient)(SSL_ERROR)(m_print_ssl_error): SSL_BR_WRITE_ERROR
(SSLClient)(SSL_ERROR)(m_start_ssl): Failed to initlalize the SSL layer
(SSLClient)(SSL_ERROR)(m_print_br_error): Unknown error code: 0
Context (please complete the following information):
- Device Type ESP32
- Arduino Core Version 2.0.9
- SSLClient Version 1.6.11
- TinyGSM 0.10.9