'DO NOT REPLY [Bug 52544] tcnative-1.dll crash with RapidSSL certificate under 64bit Java'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       tomcat-dev
Subject:    DO NOT REPLY [Bug 52544] tcnative-1.dll crash with RapidSSL certificate under 64bit Java
From:       bugzilla () apache ! org
Date:       2012-02-29 10:31:06
Message-ID: bug-52544-78-WMsHKsqEog () https ! issues ! apache ! org/bugzilla/
[Download RAW message or body]

https://issues.apache.org/bugzilla/show_bug.cgi?id=52544

Mladen Turk <mturk@apache.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |RESOLVED
         Resolution|                            |WORKSFORME

--- Comment #2 from Mladen Turk <mturk@apache.org> 2012-02-29 10:31:06 UTC ---
You will need to covert the certificate to pem.
I exported active-1.crt certificates you have send me and then did:
openssl base64 -d -A -in *.net.crt -out active-1.der
After that its loaded.

Note that depending on OpenSSL version you can get core with that certificate.
Contemporary OpenSSL's will throw

 ... (error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag)
    at org.apache.tomcat.jni.SSLContext.setCertificate(Native Method)

Also versions before 1.1.23 can core if you set key without certificate
eg you only have SSLCertificateKeyFile=".." but not SSLCertificateFile="..."

-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic