https://bz.apache.org/bugzilla/show_bug.cgi?id=63430
Bug ID: 63430
Summary: proxy client certificates not found despite being
configured
Product: Apache httpd-2
Version: 2.4.39
Hardware: PC
OS: Linux
Status: NEW
Severity: major
Priority: P2
Component: mod_ssl
Assignee: [email protected]
Reporter: [email protected]
Target Milestone: ---
Apache 2.4.39 is failing requests going to an HTTPS proxy backend with errors
like so, indicating a client certificate was not configured, however, we know
that it was configured.
[Tue May 14 09:49:03.378930 2019] [ssl:warn] [pid 1674555:tid 140693875197696]
AH02268: Proxy client certificate callback: (dw25136:443) downstream server
wanted client certificate but none are configured
These log lines, a hour or so earlier, tell us that a client certificate was
configured (in fact, the same one was used in three 3 contexts, hence the
triple message)
[Tue May 14 08:05:16.787346 2019] [ssl:debug] [pid 1670484:tid 140697080997632]
ssl_engine_init.c(1582): AH02207: loaded 1 client certs for SSL proxy
[Tue May 14 08:05:16.787558 2019] [ssl:debug] [pid 1670484:tid 140697080997632]
ssl_engine_init.c(1582): AH02207: loaded 1 client certs for SSL proxy
[Tue May 14 08:05:16.788403 2019] [ssl:debug] [pid 1670484:tid 140697080997632]
ssl_engine_init.c(1582): AH02207: loaded 1 client certs for SSL proxy
I have selectively pulled out log lines to make the point and to minimize the
amount of scrubbing I have to do.
This looks like new behavior in 2.4.39 to me, but I haven't yet demonstrated
that.
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
