tlsv1 alert unknown ca
807 views
Skip to first unread message
Sans
May 9, 2012, 6:49:49 AM5/9/12
to puppet...@googlegroups.com
Dear all,
I see this error message in my masterhttp.log repeatedly:
I saw a similar mail in the list but there was no definitive answer to that post. Does anyone know what am I missing here? I do understand what unknown ca means but I can't think of any reason. Anyone can give me some hints please?
Cheers,
San
I see this error message in my masterhttp.log repeatedly:
ERROR OpenSSL::SSL::SSLError: SSL_accept returned=1 errno=0 state=SSLv3 read client certificate A: tlsv1 alert unknown ca
I saw a similar mail in the list but there was no definitive answer to that post. Does anyone know what am I missing here? I do understand what unknown ca means but I can't think of any reason. Anyone can give me some hints please?
Cheers,
San
Steeve McCauley
May 18, 2012, 12:23:36 PM5/18/12
to puppet...@googlegroups.com
I fixed this by configuring webrick to set :SSLCACertificateFile and
:SSLCACertificatePath to the ssl bundle I got from godaddy.
s=WEBrick::HTTPServer.new(
:Port => 8443,
:Logger => WEBrick::Log::new($stderr, WEBrick::Log::DEBUG),
:DocumentRoot => "/tmp/webrick_test/doc_root",
:SSLEnable => true,
:SSLVerifyClient => OpenSSL::SSL::VERIFY_PEER,
:SSLCertificate => cert,
:SSLPrivateKey => pkey,
:SSLCACertificateFile => "sf_bundle.crt",
:SSLCACertificatePath => "/tmp/webrick_test",
:SSLCertName => [ [ "CN", "myhost.net" ] ]
)
s.start
Reply all
Reply to author
Forward
0 new messages