> On 11 Mar 2022, at 8:49 am, Tomas Mraz wrote:
>
> Yes, this is a fully supported scenario.
>
> You can even test it with the openssl s_server command - use -cert, -
> key, and -cert_chain for the first certificate and -dcert, -dkey, and -
> dcert_chain with the second one.
Note that with e.g.
Yes, this is a fully supported scenario.
You can even test it with the openssl s_server command - use -cert, -
key, and -cert_chain for the first certificate and -dcert, -dkey, and -
dcert_chain with the second one.
Tomas Mraz
On Fri, 2022-03-11 at 13:19 +, Kris Kwiatkowski wrote:
> Hello,
>
Hello,
On my server, I would like to support 2 certificate chains. One chain
would be signed with RSA and the other with EdDSA (so 2 complatelly different
chains with 2 root certificates). Then, let say, new clients that support
EdDSA will choose to use it, otherwise I'll serve RSA for everybody