Re: Cert hot-reloading

> On Mon, Aug 31, 2020 at 11:00:31PM -0500, David Arnold wrote: > > > 1. Construe symlinks to current certs in a folder (old or new / file by > file) > > 2. Symlink that folder > > 3. Rename the current symlink to that new symlink atomically. > > This is fine, but

Re: Cert hot-reloading

1. Construe symlinks to current certs in a folder (old or new / file by file) 2. Symlink that folder 3. Rename the current symlink to that new symlink atomically. On OpenSSL side statd would have to follow through on symlinks - if it shouldnt do so. This is +- how kubernetes atomically

Re: Cert hot-reloading

-Kyle H On Sun, Aug 30, 2020, 18:36 Viktor Dukhovni mailto:openssl-us...@dukhovni.org>> wrote: On Sun, Aug 30, 2020 at 05:45:41PM -0500, David Arnold wrote: > If you prefer this mailing list over github issues, I still want to ask > for comments on: > > Certificate h

Cert hot-reloading

Hi, If you prefer this mailing list over github issues, I still want to ask for comments on: Certificate hot-reloading #12753 Specifically, my impression is that this topic has died down a bit and from the linked mailing list threads, in my