[
https://issues.apache.org/jira/browse/TS-2893?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14053012#comment-14053012
]
ASF subversion and git services commented on TS-2893:
-----------------------------------------------------
Commit 591633e73ea323f0936f74d3ee3da304446a302d in trafficserver's branch
refs/heads/master from [~sunwei]
[ https://git-wip-us.apache.org/repos/asf?p=trafficserver.git;h=591633e ]
TS-2893: improved support for ECDSA certificates
Add the ability to deliver different certificates to the client
depending on the cipher list advertised by the client.
The directive is to support loading multiple PEM certificate chains
with different algorithms at a time, each PEM file may include
multiple certificates (e.g. cert1&key1 + intermediate cert2 &
key2+...). After a few more thinking, I realized it should be OK
to reuse ssl_cert_name to do that.
To simplify the SSL certificate configurations, perhaps we can
obsolete ssl_ca_name and proxy.config.ssl.server.cert_chain.filename
gradually.
> Add support for ECDSA certificates
> -----------------------------------
>
> Key: TS-2893
> URL: https://issues.apache.org/jira/browse/TS-2893
> Project: Traffic Server
> Issue Type: Improvement
> Components: SSL
> Reporter: Bryan Call
> Assignee: Bryan Call
> Labels: yahoo
> Fix For: 5.1.0
>
> Attachments: TS-2893.diff, TS-2893_2.diff
>
>
> Add the ability to deliver different certificates to the client depending on
> the cipher list advertised by the client.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
