On 2021-04-06, Chris Narkiewicz <hello@ezaquarii.com> wrote:
> TLS certificate has been generated using easyrsa, and it uses EC algo
> with secp384r1 curve.
>
> When I start relayd, it complains about unsupported key size:
>
> ca_engine_init: using RSA privsep engine
> ...
> ssl_ctx_fake_private_key: key size 832 not support
Since there is an "RSA privsep engune" and no "ECDSA privsep engine" I guess
this is not supported.
You can do this easily with nginx or I think also haproxy.
No comments:
Post a Comment