Hi,

I've set up a ssl_certificate and ssl_certificate_key directives on the http level of my nginx configuration. The problem I'm facing is that starting/reloading nginx is getting slower and slower as more hosts (server directives) are added. The server has roughly 1000 SSL-enabled hosts that inherits the ssl certificate directives.

I know nginx verifies the certificate when loading it, so I'm wondering if nginx checks the certificate each time an SSL enabled host inherits the shared certificate? If so, shouldn't it only check the certificate once? According to http://nginx.org/en/docs/http/configuring_https_servers.html it should cause all hosts to inherit a single memory footprint, but this doesn't seem to be the case.

If this is a bug in nginx it may be an idea to completely disable certificate verification if possible?

Any advice is highly appreciated.

Best,
Rune