Each virtual host should be able to use its own certificate. Currently, only one certificate is used and it must have alternative names for each vhost.
I'm not sure if this requires more than loading multiple server certificates at launch, i.e., whether pyOpenSSL checks the SNI info automatically or does the handshake need to be handled more manually. Some research needed...
=> 🐞 Issue #8 in s/GmCapsule-Issues
=> 🕹️ skyjake [mod, sysop]
2023-07-19 · 2 years ago
=> Commit 3f372e73 · Virtual host certificates; bumped version to 0.9.1
2024-08-25 · 5 months ago
=> 🕹️ skyjake [OP/mod...] · Aug 25 at 06:28:
Implemented for v0.9.1. The way this works is that you first create separate SSL contexts for each virtual host. Then you can set up a callback to select the context for a particular incoming connection based on the SNI servername.
text/gemini; charset=utf-8This content has been proxied by September (ba2dc).