You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@trafficserver.apache.org by Reindl Harald <h....@thelounge.net> on 2017/09/09 16:33:52 UTC

ECDSA/RSA Dual-Stack

what the hell - not enough that you can't simply say 
/folder/backendname/*.pem that below don't work too while in case of 
httpd it's pretty easy:

  SSLCertificateFile      "/var/lib/letsencrypt/certs/rhsoft.conf_rsa.pem"
  SSLCertificateFile      "/var/lib/letsencrypt/certs/rhsoft.conf_ecdsa.pem"
______________________________________________________

[root@testserver:~]$ cat /etc/trafficserver/ssl_multicert.config
ssl_cert_name=/var/lib/letsencrypt/certs/afi.conf_rsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/afi.conf_ecdsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/contentlounge.conf_rsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/contentlounge.conf_ecdsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/corecms.conf_rsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/corecms.conf_ecdsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/mailadmin.conf_rsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/mailadmin.conf_ecdsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/rhsoft.conf_rsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/rhsoft.conf_ecdsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/uploadprogress.conf_rsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/uploadprogress.conf_ecdsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/webmail.conf_rsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/webmail.conf_ecdsa.pem
______________________________________________________

[Sep  9 18:29:49.079] Server {0x2b31e300f480} WARNING: previously 
indexed 'afi.testserver.rhsoft.net' with SSL_CTX (nil), cannot index it 
with SSL_CTX #1 now
[Sep  9 18:29:49.090] Server {0x2b31e300f480} WARNING: previously 
indexed 'contentlounge.testserver.rhsoft.net' with SSL_CTX 0x1, cannot 
index it with SSL_CTX #2 now
[Sep  9 18:29:49.103] Server {0x2b31e300f480} WARNING: previously 
indexed 'corecms.testserver.rhsoft.net' with SSL_CTX 0x2, cannot index 
it with SSL_CTX #3 now
[Sep  9 18:29:49.114] Server {0x2b31e300f480} WARNING: previously 
indexed 'mailadmin.testserver.rhsoft.net' with SSL_CTX 0x3, cannot index 
it with SSL_CTX #4 now
[Sep  9 18:29:49.126] Server {0x2b31e300f480} WARNING: previously 
indexed 'rhsoft.testserver.rhsoft.net' with SSL_CTX 0x4, cannot index it 
with SSL_CTX #6 now
[Sep  9 18:29:49.126] Server {0x2b31e300f480} WARNING: previously 
indexed 'testserver.rhsoft.net' with SSL_CTX 0x5, cannot index it with 
SSL_CTX #6 now
[Sep  9 18:29:49.137] Server {0x2b31e300f480} WARNING: previously 
indexed 'uploadprogress.testserver.rhsoft.net' with SSL_CTX 0x6, cannot 
index it with SSL_CTX #7 now
[Sep  9 18:29:49.149] Server {0x2b31e300f480} WARNING: previously 
indexed 'webmail.testserver.rhsoft.net' with SSL_CTX 0x7, cannot index 
it with SSL_CTX #8 now