Project

General

Profile

Actions

Bug #1685

closed

Web configurator silently fails when "Private key does not match the certificate public key"

Added by Jeff Shaw over 12 years ago. Updated about 7 years ago.

Status:
Resolved
Priority:
Normal
Category:
Certificates
Target version:
Start date:
07/15/2011
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
2.0
Affected Architecture:
All

Description

After choosing a particular certificate for the web administrator under System -> Advanced, the web server fails to restart. lighttpd.error.log doesn't show any error. Running /usr/local/sbin/lighttpd -f /var/etc/lighty-webConfigurator.conf manually shows,

(network.c.608) SSL: Private key does not match the certificate public key, reason: error:0D07207B:asn1 encoding routines:ASN1_get_object:header too long /var/etc/cert.pem

I must have some bad combination of certificates installed. It would be nice if the Web administrator could check for the condition that would cause this error before switching to the other certificate.

Actions #1

Updated by Jeff Shaw over 12 years ago

This is for version 2.0 RC3 x86.

Actions #2

Updated by Jim Pingle over 12 years ago

  • Category set to Certificates
  • Target version set to Future
  • Affected Version set to 2.0
  • Affected Architecture All added
  • Affected Architecture deleted ()

In the meantime you can get back in by resetting the LAN IP from the console, entering the same information again. During that process, it will offer to change the GUI back to HTTP mode, so you can regain access.

Actions #3

Updated by Jim Thompson almost 8 years ago

  • Assignee set to Renato Botelho
Actions #4

Updated by Jim Pingle about 7 years ago

  • Status changed from New to Resolved
  • Target version changed from Future to 2.4.0

We already protect against importing such bad combinations on 2.4, that's probably sufficient.

Actions

Also available in: Atom PDF