www/apache
1
0
Fork 0
mirror of https://github.com/apache/httpd.git synced 2025-08-08 15:02:10 +03:00
Code Activity

* modules/ssl/ssl_engine_init.c (ssl_init_ctx_cert_chain): Log the

Browse Source 
OpenSSL errors if CA certs cannot be loaded.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1884452 13f79535-47bb-0310-9956-ffa450edef68
This commit is contained in:
Joe Orton
2020-12-15 09:52:43 +00:00
parent 18fb718292
commit a0498c4f19
1 changed files with 4 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
modules/ssl/ssl_engine_init.c
View File

@@ -1161,7 +1161,9 @@ static apr_status_t ssl_init_ctx_crl(server_rec *s,
/* /*
* Read a file that optionally contains the server certificate in PEM * Read a file that optionally contains the server certificate in PEM
* format, possibly followed by a sequence of CA certificates that * format, possibly followed by a sequence of CA certificates that
* should be sent to the peer in the SSL Certificate message. * should be sent to the peer in the SSL Certificate message. Returns
* 0 on success, otherwise the OpenSSL error stack contents should be
* reported.
*/ */
static int use_certificate_chain( static int use_certificate_chain(
SSL_CTX *ctx, char *file, int skipfirst, pem_password_cb *cb) SSL_CTX *ctx, char *file, int skipfirst, pem_password_cb *cb)
@@ -1258,6 +1260,7 @@ static apr_status_t ssl_init_ctx_cert_chain(server_rec *s,
if (n < 0) { if (n < 0) {
ap_log_error(APLOG_MARK, APLOG_EMERG, 0, s, APLOGNO(01903) ap_log_error(APLOG_MARK, APLOG_EMERG, 0, s, APLOGNO(01903)
"Failed to configure CA certificate chain!"); "Failed to configure CA certificate chain!");
ssl_log_ssl_error(SSLLOG_MARK, APLOG_EMERG, s);
return ssl_die(s); return ssl_die(s);
} }