Re: Multi root certs support

2022-03-11 Thread Viktor Dukhovni
> On 11 Mar 2022, at 8:49 am, Tomas Mraz wrote: > > Yes, this is a fully supported scenario. > > You can even test it with the openssl s_server command - use -cert, - > key, and -cert_chain for the first certificate and -dcert, -dkey, and - > dcert_chain with the second one. Note that with e.g.

Re: Multi root certs support

2022-03-11 Thread Tomas Mraz
Yes, this is a fully supported scenario. You can even test it with the openssl s_server command - use -cert, - key, and -cert_chain for the first certificate and -dcert, -dkey, and - dcert_chain with the second one. Tomas Mraz On Fri, 2022-03-11 at 13:19 +, Kris Kwiatkowski wrote: > Hello, >

Multi root certs support

2022-03-11 Thread Kris Kwiatkowski
Hello, On my server, I would like to support 2 certificate chains. One chain would be signed with RSA and the other with EdDSA (so 2 complatelly different chains with 2 root certificates). Then, let say, new clients that support EdDSA will choose to use it, otherwise I'll serve RSA for everybody