Can I add a new crl after the server has started?
94 views
Skip to first unread message
Christian Tellnes
Aug 8, 2012, 10:07:31 AM8/8/12
to nod...@googlegroups.com
Hello
I am using the crl option in the tls module. Is there any way I can
add a new crl without restarting the server?
The problem is that when the crl expires, I begin to get
CRL_HAS_EXPIRED error messages.
Thanks,
Christian
I am using the crl option in the tls module. Is there any way I can
add a new crl without restarting the server?
The problem is that when the crl expires, I begin to get
CRL_HAS_EXPIRED error messages.
Thanks,
Christian
Bradley Meck
Aug 8, 2012, 10:52:35 AM8/8/12
to nod...@googlegroups.com
Have you looked into using the SNICallbck to do this? seems like it might add a bit of boilerplate, but looks to be possible
Christian Tellnes
Aug 10, 2012, 8:32:18 AM8/10/12
to nod...@googlegroups.com
Christian Tellnes
Aug 13, 2012, 8:51:40 AM8/13/12
to nod...@googlegroups.com
For reference, here is my implementation. Had I only managed to come
on a better name for the module.
https://github.com/tellnes/tls-cert-update
on a better name for the module.
https://github.com/tellnes/tls-cert-update
Reply all
Reply to author
Forward
0 new messages