You are viewing a plain text version of this content. The canonical link for it is here.

Posted to bugs@httpd.apache.org by bu...@apache.org on 2005/08/20 23:36:20 UTC

DO NOT REPLY [Bug 36286] New: - configtest doesn't check SSL certificates

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG�
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=36286>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND�
INSERTED IN THE BUG DATABASE.

http://issues.apache.org/bugzilla/show_bug.cgi?id=36286

           Summary: configtest doesn't check SSL certificates
           Product: Apache httpd-2.0
           Version: 2.0.54
          Platform: Other
        OS/Version: Linux
            Status: NEW
          Severity: minor
          Priority: P2
         Component: Runtime Config
        AssignedTo: bugs@httpd.apache.org
        ReportedBy: apache@list.mtechsolutions.ca


If an SSL certificate is not valid, configtest will report "Syntax OK", and then
restarting apache causes it to die with the following in error.log:

[error] Init: Unable to read server certificate file from
/etc/apache2/ssl/server.crt
[error] SSL Library Error: 218542222 error:0D06B08E:asn1 encoding
routines:ASN1_d2i_bio:not enough data

My server.crt contained "REPLACE THIS WITH A REAL CERTIFICATE" (I had
accidentally copied the wrong file, only reason I even noticed this).

configtest should probably report this error.

-- 
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org