Multiple SSL certificates - certificate rotation

[fragkakis]

I would like some advice on how to handle SSL certificate rotation using the library. I would imagine there is a way to pass on to the SLL context multiple certificates (ie the current one and the one to be used), however I can't find anything like that in the documentation.

As per the documentation, the ssl_params params hash is passed on to the OpenSSL::SSL::SSLContext#set_params. In the example you use the cert key to pass the client certificate. In turn, the SSLContext documentation mentions that the initialization params are used to invoke setter methods.

Apart from only accepting a single certificate, the SSLContext#cert= is deprecated in favor of the SSLContext#add_certificate method, which would (presumably) also allow me to solve my original problem.

Questions:

Is there a way to perform certificate rotation currently with the gem?
Are there plans to support the SSLContext#add_certificate method?

[byroot]

Is there a way to perform certificate rotation currently with the gem?

I suppose you can try connecting with one certificate, and if you get an error, connect with the other.

Are there plans to support the SSLContext#add_certificate method?

Perhaps, the difficulty is that it wouldn't be supported by the hiredis driver.