You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@trafficserver.apache.org by "Manjesh Nilange (JIRA)" <ji...@apache.org> on 2013/12/03 01:16:36 UTC

[jira] [Updated] (TS-2353) add ability to load ssl certs that are owned by root and only read only by the user

     [ https://issues.apache.org/jira/browse/TS-2353?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Manjesh Nilange updated TS-2353:
--------------------------------

    Attachment: ssl-start-as-root.patch

Patch that will temporarily elevate euid of traffic_server to root to do SSL initialization.

> add ability to load ssl certs that are owned by root and only read only by the user
> -----------------------------------------------------------------------------------
>
>                 Key: TS-2353
>                 URL: https://issues.apache.org/jira/browse/TS-2353
>             Project: Traffic Server
>          Issue Type: Improvement
>          Components: HTTP
>            Reporter: Bryan Call
>         Attachments: ssl-start-as-root.patch
>
>
> [Nov 15 01:11:23.748] Server {0x2aaff3cb33a0} ERROR:
> SSL::0:error:0200100D:system library:fopen:Permission
> denied:bss_file.c:355:fopen('/****/search.crt','r')
> [Nov 15 01:11:23.748] Server {0x2aaff3cb33a0} ERROR:
> SSL::0:error:20074002:BIO routines:FILE_CTRL:system lib:bss_file.c:357:
> [Nov 15 01:11:23.748] Server {0x2aaff3cb33a0} ERROR:
> SSL::0:error:140AD002:SSL routines:SSL_CTX_use_certificate_file:system
> lib:ssl_rsa.c:470:



--
This message was sent by Atlassian JIRA
(v6.1#6144)