Matt Holt
Matt Holt
Thanks! I'm getting ready for a presentation next week but I'll try to revisit this soon
Wait, does the file literally contain lines like `subject=C = US, ST = Texas, L = Houston, O = SSL Corporation, CN = SSL.com Root Certification Authority RSA` ? If...
Ok, thanks. Next question sounds stupid, but can you print and paste here the exact output of `appConfig.CertValue` from the code above? `log.Println(string(appConfig.CertValue))` in the line immediately before the Cache...
Not without the exact code and inputs to it. Taking your PEM blocks above (without the extra lines as mentioned) and giving that as input to `cnf.CacheUnmanagedCertificatePEMBytes()` works perfectly for...
Ah, I guess to test this and reproduce the issue, I will need both a public key (certificate) and private key pair -- i.e. the private key associated with the...
Well that's the thing, I can generate my own cert chain and everything works as expected. That's why I want to test with your specific cert chain you're having an...
That might be because our cert cache aggressively reuses certificates across reloads, to make them more efficient. I marked this as a bug because it might be unexpected behavior, but...
Thanks for the PR! Just so I'm clear on this, the performance is only impacted if metrics are enabled, right?
That's a good point. `Delete` should probably not return `fs.ErrNotExist` if the key does not exist, but probably should if a _prefix_ of the key does not exist. For example:...
I'd have to think on it more. (I'll be busy with a conference presentation for the next week though.) For now, I'd say just return no error, even if the...