< Previous by Date Date Index Next by Date >
  Thread Index  

[reSIProcate] Transport code changes, Let's Encrypt support (automatically renewed, free SSL certificates)


Hi everybody,

There are a couple of issues for Let's Encrypt support:

- reloading[1] of updated certificate (PEM) files without a restart
(this is useful for any CA, not just Let's Encrypt)

- support for one of the challenge methods, e.g. DVSNI sends a challenge
to the running process using TLS SNI.  I already opened a feature
request[2].  This relates to adding SNI support for transports[3]

- another topic related to incoming connections and the transport code
is the use of port multiplexing[4] through Apache or something like

Does anybody else have ideas related to changing transport code or
anything else for Let's Encrypt support?

Regards,

Daniel


1. https://www.resiprocate.org/bugzilla/show_bug.cgi?id=69
2. https://www.resiprocate.org/bugzilla/show_bug.cgi?id=131
3. https://www.resiprocate.org/bugzilla/show_bug.cgi?id=130
4. https://www.resiprocate.org/bugzilla/show_bug.cgi?id=43