httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Luis Neves <>
Subject RE: [users@httpd] SSLCACertificatePath breaks something
Date Wed, 04 Aug 2010 16:09:35 GMT

Well, I said an error

It happens even using Apache 2.2.3

The only way it works ok is using a third-party

So, must be some kind of mod_sso bug

Date: Wed, 4 Aug 2010 15:59:13 +0000
Subject: RE: [users@httpd] SSLCACertificatePath breaks something

New info:

I only have this error in a compiled Apache 2.3.6

If I make the same test on the already existing Apache (httpd-2.2.3-6.el5) then I dont get
 any problems using 
SSLCACertificatePath instead of SSLCACertificateFile

Date: Wed, 4 Aug 2010 15:40:47 +0000
Subject: [users@httpd] SSLCACertificatePath breaks something

Hi to all,

if in apache I use in 
SSLCACertificateFile /etc/pki/tls/certs/ca-bundle.crt
I dont have any errors regarding the client certificate

If I change it to
SSLCACertificatePath /usr/local/apache2/conf/certs
(and comment the SSLCACertificateFile line)

where certs is the folder where I have all the individual PEM certificates and symbolic links
to their hashes
I get on error_log

[Wed Aug 04 13:48:34.257972 2010] [error] [pid 3134] [client] Certificate
Verification: Error (20): unable to get local issuer certificate
[Wed Aug 04 13:48:34.258299 2010] [info] [pid 3134] [client] SSL library
error 1 in handshake (server
[Wed Aug 04 13:48:34.258412 2010] [info] [pid 3134] SSL Library Error: error:140890B2:SSL
routines:SSL3_GET_CLIENT_CERTIFICATE:no certificate returned

Icant find why or what I am missing
Can you help?

View raw message