Thank you for your quick answers!
So I understand that it is possible for haproxy >= 2.1. For haproxy 2.0, got to
backport the sha2 filter, right ?
Stephane
Le 29/06/2020 12:54, « Tim Düsterhus » <t...@bastelstu.be> a écrit :
Jarno,
Am 29.06.20 um 12:46 schrieb Jarno Huuskonen:
>> The ssl_c_sha1 is simply a hash of the DER representation of the
>> certificate. So you can just hash it with the sha2 converter:
>>
>> ssl_c_sha256,sha2(256)
>
> I think the first fetch should be ssl_c_der ?
> (ssl_c_der,sha2(256))
>
You are right, of course.
While adjusting the example from the commit message I replaced the 'der'
instead of the 'f'.
Best regards
Tim Düsterhus
