Uploaded image for project: 'Traffic Server'
  1. Traffic Server
  2. TS-2058

Traffic server fails to start with lots of SNI ssl certs defined

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: Performance, SSL
    • Labels:
      None

      Description

      Running into an issue with SNI under 3.2.4 - with 100k ssl certs defined in ssl_multicert.config with the following format: ssl_cert_name=<cert> Traffic server will never start. It looks like it keeps getting killed by traffic_cop.

      It looks like succesfull startup will take ~2minutes for 100k ssl certs on my machine and about 15 seconds for 40k ssl certs. I would like to try to get to one million ssl certs defined with traffic server able to start successfully. Anything that could be done to increase the speed and allow that amount of SSL certs defined to start successfully would be much appreciated.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                shinrich Susan Hinrichs
                Reporter:
                klindgren Kris Lindgren
              • Votes:
                0 Vote for this issue
                Watchers:
                9 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: