Thank you for your quick answers! So I understand that it is possible for haproxy >= 2.1. For haproxy 2.0, got to backport the sha2 filter, right ?
Stephane Le 29/06/2020 12:54, « Tim Düsterhus » <t...@bastelstu.be> a écrit : Jarno, Am 29.06.20 um 12:46 schrieb Jarno Huuskonen: >> The ssl_c_sha1 is simply a hash of the DER representation of the >> certificate. So you can just hash it with the sha2 converter: >> >> ssl_c_sha256,sha2(256) > > I think the first fetch should be ssl_c_der ? > (ssl_c_der,sha2(256)) > You are right, of course. While adjusting the example from the commit message I replaced the 'der' instead of the 'f'. Best regards Tim Düsterhus