Project

General

Profile

Bug #1685

Web configurator silently fails when "Private key does not match the certificate public key"

Added by Jeff Shaw over 5 years ago. Updated 25 days ago.

Status:
Resolved
Priority:
Normal
Category:
Certificates
Target version:
Start date:
07/15/2011
Due date:
% Done:

0%

Affected version:
2.0
Affected Architecture:
All

Description

After choosing a particular certificate for the web administrator under System -> Advanced, the web server fails to restart. lighttpd.error.log doesn't show any error. Running /usr/local/sbin/lighttpd -f /var/etc/lighty-webConfigurator.conf manually shows,

(network.c.608) SSL: Private key does not match the certificate public key, reason: error:0D07207B:asn1 encoding routines:ASN1_get_object:header too long /var/etc/cert.pem

I must have some bad combination of certificates installed. It would be nice if the Web administrator could check for the condition that would cause this error before switching to the other certificate.

History

#1 Updated by Jeff Shaw over 5 years ago

This is for version 2.0 RC3 x86.

#2 Updated by Jim Pingle over 5 years ago

  • Category set to Certificates
  • Target version set to Future
  • Affected version set to 2.0
  • Affected Architecture set to All

In the meantime you can get back in by resetting the LAN IP from the console, entering the same information again. During that process, it will offer to change the GUI back to HTTP mode, so you can regain access.

#3 Updated by Jim Thompson about 1 year ago

  • Assignee set to Renato Botelho

#4 Updated by Jim Pingle 25 days ago

  • Status changed from New to Resolved
  • Target version changed from Future to 2.4.0

We already protect against importing such bad combinations on 2.4, that's probably sufficient.

Also available in: Atom PDF