I am on an 24core server with 256G memory, using ubuntu 20.04 +Hitch 1.7.0/1.7.1+openssl 1.1.1k.
I notice when loading hundreds of certificates, some certs (latter) are actually not loaded by hitch, only the default ssl cert will appear:
NET::ERR_CERT_COMMON_NAME_INVALID
I am using pem-dir-glob & pem-dir , but also tried pem-file.
In the beginning, I increased ulimit -n, but now it is already set to 999999.
The certs are only 2k.
I also tried to disable ocsp stappling & session-cache.
I am on an 24core server with 256G memory, using ubuntu 20.04 +Hitch 1.7.0/1.7.1+openssl 1.1.1k.
I notice when loading hundreds of certificates, some certs (latter) are actually not loaded by hitch, only the default ssl cert will appear: NET::ERR_CERT_COMMON_NAME_INVALID
I am using pem-dir-glob & pem-dir , but also tried pem-file.
In the beginning, I increased ulimit -n, but now it is already set to 999999.
The certs are only 2k.
I also tried to disable ocsp stappling & session-cache.
What else shall I check?