Reindl Harald
2017-09-09 16:33:52 UTC
what the hell - not enough that you can't simply say
/folder/backendname/*.pem that below don't work too while in case of
httpd it's pretty easy:
SSLCertificateFile "/var/lib/letsencrypt/certs/rhsoft.conf_rsa.pem"
SSLCertificateFile "/var/lib/letsencrypt/certs/rhsoft.conf_ecdsa.pem"
______________________________________________________
[***@testserver:~]$ cat /etc/trafficserver/ssl_multicert.config
ssl_cert_name=/var/lib/letsencrypt/certs/afi.conf_rsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/afi.conf_ecdsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/contentlounge.conf_rsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/contentlounge.conf_ecdsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/corecms.conf_rsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/corecms.conf_ecdsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/mailadmin.conf_rsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/mailadmin.conf_ecdsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/rhsoft.conf_rsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/rhsoft.conf_ecdsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/uploadprogress.conf_rsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/uploadprogress.conf_ecdsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/webmail.conf_rsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/webmail.conf_ecdsa.pem
______________________________________________________
[Sep 9 18:29:49.079] Server {0x2b31e300f480} WARNING: previously
indexed 'afi.testserver.rhsoft.net' with SSL_CTX (nil), cannot index it
with SSL_CTX #1 now
[Sep 9 18:29:49.090] Server {0x2b31e300f480} WARNING: previously
indexed 'contentlounge.testserver.rhsoft.net' with SSL_CTX 0x1, cannot
index it with SSL_CTX #2 now
[Sep 9 18:29:49.103] Server {0x2b31e300f480} WARNING: previously
indexed 'corecms.testserver.rhsoft.net' with SSL_CTX 0x2, cannot index
it with SSL_CTX #3 now
[Sep 9 18:29:49.114] Server {0x2b31e300f480} WARNING: previously
indexed 'mailadmin.testserver.rhsoft.net' with SSL_CTX 0x3, cannot index
it with SSL_CTX #4 now
[Sep 9 18:29:49.126] Server {0x2b31e300f480} WARNING: previously
indexed 'rhsoft.testserver.rhsoft.net' with SSL_CTX 0x4, cannot index it
with SSL_CTX #6 now
[Sep 9 18:29:49.126] Server {0x2b31e300f480} WARNING: previously
indexed 'testserver.rhsoft.net' with SSL_CTX 0x5, cannot index it with
SSL_CTX #6 now
[Sep 9 18:29:49.137] Server {0x2b31e300f480} WARNING: previously
indexed 'uploadprogress.testserver.rhsoft.net' with SSL_CTX 0x6, cannot
index it with SSL_CTX #7 now
[Sep 9 18:29:49.149] Server {0x2b31e300f480} WARNING: previously
indexed 'webmail.testserver.rhsoft.net' with SSL_CTX 0x7, cannot index
it with SSL_CTX #8 now
/folder/backendname/*.pem that below don't work too while in case of
httpd it's pretty easy:
SSLCertificateFile "/var/lib/letsencrypt/certs/rhsoft.conf_rsa.pem"
SSLCertificateFile "/var/lib/letsencrypt/certs/rhsoft.conf_ecdsa.pem"
______________________________________________________
[***@testserver:~]$ cat /etc/trafficserver/ssl_multicert.config
ssl_cert_name=/var/lib/letsencrypt/certs/afi.conf_rsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/afi.conf_ecdsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/contentlounge.conf_rsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/contentlounge.conf_ecdsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/corecms.conf_rsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/corecms.conf_ecdsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/mailadmin.conf_rsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/mailadmin.conf_ecdsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/rhsoft.conf_rsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/rhsoft.conf_ecdsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/uploadprogress.conf_rsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/uploadprogress.conf_ecdsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/webmail.conf_rsa.pem
ssl_cert_name=/var/lib/letsencrypt/certs/webmail.conf_ecdsa.pem
______________________________________________________
[Sep 9 18:29:49.079] Server {0x2b31e300f480} WARNING: previously
indexed 'afi.testserver.rhsoft.net' with SSL_CTX (nil), cannot index it
with SSL_CTX #1 now
[Sep 9 18:29:49.090] Server {0x2b31e300f480} WARNING: previously
indexed 'contentlounge.testserver.rhsoft.net' with SSL_CTX 0x1, cannot
index it with SSL_CTX #2 now
[Sep 9 18:29:49.103] Server {0x2b31e300f480} WARNING: previously
indexed 'corecms.testserver.rhsoft.net' with SSL_CTX 0x2, cannot index
it with SSL_CTX #3 now
[Sep 9 18:29:49.114] Server {0x2b31e300f480} WARNING: previously
indexed 'mailadmin.testserver.rhsoft.net' with SSL_CTX 0x3, cannot index
it with SSL_CTX #4 now
[Sep 9 18:29:49.126] Server {0x2b31e300f480} WARNING: previously
indexed 'rhsoft.testserver.rhsoft.net' with SSL_CTX 0x4, cannot index it
with SSL_CTX #6 now
[Sep 9 18:29:49.126] Server {0x2b31e300f480} WARNING: previously
indexed 'testserver.rhsoft.net' with SSL_CTX 0x5, cannot index it with
SSL_CTX #6 now
[Sep 9 18:29:49.137] Server {0x2b31e300f480} WARNING: previously
indexed 'uploadprogress.testserver.rhsoft.net' with SSL_CTX 0x6, cannot
index it with SSL_CTX #7 now
[Sep 9 18:29:49.149] Server {0x2b31e300f480} WARNING: previously
indexed 'webmail.testserver.rhsoft.net' with SSL_CTX 0x7, cannot index
it with SSL_CTX #8 now