OTA via HTTP (not HTTPS)

We would like to do firmware updates via http or via https, but without certificate validation. I tested it with http, but the Mongoose OS is unable to load the firmware update that way.

Until now we loaded firmware updates via https, but that only works when the ota_ca.pem is up to date. We don’t want to keep updating the ota_ca.pem each time the root certificate changes.

Is it possible to load firmware updates via http? Or is it possible to disable certificate validation?

Thanks and regards