[
https://issues.apache.org/jira/browse/TS-3376?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14313578#comment-14313578
]
Susan Hinrichs commented on TS-3376:
------------------------------------
[~zwoop] I think this is the same issue as TS-3329. Please clarify if this is
a slightly different issue. I'm dealing with error handling in this area right
now anyway.
> Missing cert chain file gives no errors or warnings
> ---------------------------------------------------
>
> Key: TS-3376
> URL: https://issues.apache.org/jira/browse/TS-3376
> Project: Traffic Server
> Issue Type: Bug
> Components: SSL
> Reporter: Leif Hedstrom
> Assignee: Susan Hinrichs
> Fix For: 5.3.0
>
>
> With an ssl_multicert.config of
> {code}
> {code}
> ATS will start up without any (as far as I could tell) errors, even when the
> cert chain file is completely missing. It just silently accepts the config,
> and brings ATS up in a poor state as far as TLS is concerned.
> IMO, we should at a minimum write some very serious warnings and errors on
> this, but maybe even refuse to startup (or reload) the config if the cert
> chain file is missing. This is serious enough that the server is in a
> non-functional state if it happens.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
