Skip to content

TLS Certificate Chain support #834

New issue
New issue
Open
Bug
Open
TLS Certificate Chain support#834
Bug
Labels
plumbingInfra stuff that's important to have but it's not that exciting to work on.
@notgne2

Description

@notgne2
notgne2
opened on Mar 18, 2026

There is a configuration field tls_certificate which can be configured to point to a PEM file, which does appear to in fact accept certificate chains, but it appears the entire chain but the certificate itself is discarded. The result of this is validation of a certificate not signed directly by a CA will always fail.

The code in build_acceptor seems to likely be where the additional certs are being discarded, and could probably be adapted with no additional changes to make TLS work correctly.

I am not aware of any way to work around this or anything I may have misconfigured.

Metadata

Metadata

Assignees

No one assigned

    Labels

    plumbingInfra stuff that's important to have but it's not that exciting to work on.

    Type

    Bug

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions