Hi,

I'm trying to enable SSL on Sonarr using a certificate signed by my local CA. (Before everyone tells me to reverse proxy/lets encrypt.. I want SSL enabled on my local network)

I have SSL working with local certs on radarr, which has a GUI option for uploading a cert.

Sonarr doesn't have this option. When I click "Enable SSL" I don't see any option to upload my certifcate. Reading the wiki (https://github.com/Sonarr/Sonarr/wiki/SSL) I see I have to use a cert hash. So I generated a cert hash from my .crt using openssl x509 -noout -fingerprint -sha256 -inform pem -in sonarr.crt and manually edit config.xml <SslCertHash> field with this value.

This doesn't work.. I tried the cert hash separated by ":" (the default output from openssl), separated by " " (the default on windows apparently), and with no separation. Nothing works.

Sonarr is binding to the port, but browser reports the sonarr unexpectedly closed the connection.

I have tried enabling log level debug and trace but it makes zero difference to sonarr log output.. I don't think it even works?

Edit: my bad I see debug/trace logs to different files. When I run with trace I see nothing in the logs when I try and connect.

I'm trying to connect with curl from within the jail (to make sure there isnt' firewall/whatever issues)

curl -k localhost:9898

curl: (52) Empty reply from server

Has anyone actually got this working?

Sonarr is running on freebsd in a jail, if that makes any difference Version 3.0.9.1549 Package Version 3.0.9.1549 by michiel@vanbaak.eu Mono Version 6.8.0.123