On 11 Jan 2017, at 21:44, Wes Turner <wes.turner@gmail.com> wrote:

This may be a bit of a different use case (and possibly worth having in the first version of a new tls module):

"Hitless TLS Certificate Rotation in Go"

- Can/could this be done with only set_sni_callback ?

Yes, it can be. Twisted has an extension module, txsni, that uses the SNI callback to choose which certificate to provide. This is basically identical to the Go GetCertificate callback function.

Cory