# HG changeset patch
# User Kim Alvefur <zash@zash.se>
# Date 1567807240 -7200
# Node ID a36af4570b392f3fa52d8438722e213c0a16174b
# Parent  6c804b6b2ca2e57f93ca83b06f740375d72625e9
core.certmanager: Lower severity for tls config not having cert

This is needed for SNI where certificates are in separate
per-hostname contexts, not the main one.

If there is a cert, it will still require a corresponding key.

diff -r 6c804b6b2ca2 -r a36af4570b39 core/certmanager.lua
--- a/core/certmanager.lua	Sun Sep 01 02:05:33 2019 +0200
+++ b/core/certmanager.lua	Sat Sep 07 00:00:40 2019 +0200
@@ -169,8 +169,10 @@
 	local user_ssl_config = cfg:final();
 
 	if mode == "server" then
-		if not user_ssl_config.certificate then return nil, "No certificate present in SSL/TLS configuration for "..host; end
-		if not user_ssl_config.key then return nil, "No key present in SSL/TLS configuration for "..host; end
+		if not user_ssl_config.certificate then
+			log("info", "No certificate present in SSL/TLS configuration for %s. SNI will be required.", host);
+		end
+		if user_ssl_config.certificate and not user_ssl_config.key then return nil, "No key present in SSL/TLS configuration for "..host; end
 	end
 
 	for option in pairs(path_options) do