You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cloudstack.apache.org by "Alireza Eskandari (JIRA)" <ji...@apache.org> on 2017/09/03 09:17:00 UTC

[jira] [Created] (CLOUDSTACK-10062) Worng SSL certificate for SSVM in server mode

Alireza Eskandari created CLOUDSTACK-10062:
----------------------------------------------

             Summary: Worng SSL certificate for SSVM in server mode
                 Key: CLOUDSTACK-10062
                 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-10062
             Project: CloudStack
          Issue Type: Bug
      Security Level: Public (Anyone can view this level - this is the default.)
          Components: SystemVM
    Affects Versions: 4.10.0.0, 4.9.0, 4.9.2.0
            Reporter: Alireza Eskandari


SSVM represents worng SSL certificate to clients when they want download iso/template.
The SSL is a self signed certificate which is issued for "systemvm".
I investigate about the problem and found the cause:
Enabling SSL for SSVM triggers "/usr/local/cloud/systemvm/config_ssl.sh".
"config_ssl.sh" edits some parameters in "/etc/apache2/sites-available/default-ssl".
But "/etc/init.d/cloud-early-config" uses "/etc/apache2/vhost.template" to create "/etc/apache2/sites-enabled/vhost-<ip>.conf" and don't use "/etc/apache2/sites-available/default-ssl"




--
This message was sent by Atlassian JIRA
(v6.4.14#64029)