[PATCH 0 of 1] allow to use engine keyform for server private key

Пичулин Дмитрий Николаевич pdn at cryptopro.ru
Fri Jul 4 12:18:03 UTC 2014


We looked at STORE_METHOD but didn't find any good examples.
We looked at "format=%s engine=% key=%" at single ssl_certificate_key directive but found this way more complex.

Currently, we want to add 2 directives to ngx_http_ssl_module (as seen in openssl apps args):
ssl_certificate_keyform type;
ssl_certificate_engine device;

"Type" can be PEM or ENGINE with default PEM. "Device" defines ssl engine when "type" is ENGINE in a current http, server context.

Will this be enough?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.nginx.org/pipermail/nginx-devel/attachments/20140704/3d933980/attachment.html>


More information about the nginx-devel mailing list