httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Stefan Fritsch ...@sfritsch.de>
Subject Better logging for ssl configuration errors
Date Sun, 06 Sep 2009 20:03:56 GMT
Hi,

it seems there are a number of configurations that used ssl
name based virtual hosts with ssl that broke with 2.2.12. A
frequent problem seems to be missing sslcertificate(key)file
directives for some of the virtual hosts. The logged error
message is not too helpful (at least if all virtual hosts
share the same error log):

[error] Server should be SSL-aware but has no certificate  
configured [Hint: SSLCertificateFile]

The error message should at least give the name or position of
the problematic virtual host definition. Like this:

--- modules/ssl/ssl_engine_pphrase.c.dist       2006-07-23 13:11:58.000000000 +0200
+++ modules/ssl/ssl_engine_pphrase.c    2009-09-06 21:51:26.000000000 +0200
@@ -188,7 +188,8 @@
         if (sc->server->pks->cert_files[0] == NULL) {
             ap_log_error(APLOG_MARK, APLOG_ERR, 0, pServ,
                          "Server should be SSL-aware but has no certificate "
-                         "configured [Hint: SSLCertificateFile]");
+                         "configured [Hint: SSLCertificateFile] (%s:%d)",
+                         pServ->defn_name, pServ->defn_line_number);
             ssl_die();
         }
         algoCert = SSL_ALGO_UNKNOWN;


If anybody is interested, the original report is at:

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=541607

Cheers,
Stefan

Mime
View raw message