using Apache 2.28 on Windows 2003; apache won"t start withvalidated certs using openssl; openssl deb
am 22.05.2008 21:22:44 von Phil Lefort------_=_NextPart_001_01C8BC41.362DE67C
Content-Type: text/plain;
charset=iso-8859-1
Content-Transfer-Encoding: quoted-printable
I am receiving the following error entries when I try to start apache. I =
was able to validate the key by using the openssl command. It printed out =
a=
lot of hex stuff. So, I believe the key is good. I was also able to prin=
t=
out the cert.
=20
[Wed May 21 18:40:53 2008] [info] Init: Seeding PRNG with 136 bytes of =
entropy
[Wed May 21 18:40:54 2008] [info] Loading certificate & private key of =
SSL-aware server
[Wed May 21 18:40:54 2008] [error] Init: SSLPassPhraseDialog builtin is not=
=
supported on Win32 (key file C:/Program Files/Apache Software =
=46oundation/Apache2.2/conf/geophil.key)
[Wed May 21 18:42:36 2008] [info] Init: Seeding PRNG with 136 bytes of =
entropy
[Wed May 21 18:42:36 2008] [info] Loading certificate & private key of =
SSL-aware server
[Wed May 21 18:42:36 2008] [info] Init: Requesting pass phrase from dialog =
=66ilter program (C:/Program Files/Apache Software =
=46oundation/Apache2.2/conf/resource.bat)
[Wed May 21 18:42:36 2008] [error] Init: Pass phrase incorrect
[Wed May 21 18:42:36 2008] [error] SSL Library Error: 218710117 =
error:0D094065:asn1 encoding routines:d2i_ASN1_SET:bad class
[Wed May 21 18:42:36 2008] [error] SSL Library Error: 218529960 =
error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag
[Wed May 21 18:42:36 2008] [error] SSL Library Error: 218595386 =
error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1 error
[Wed May 21 18:42:36 2008] [error] SSL Library Error: 218734605 =
error:0D09A00D:asn1 encoding routines:d2i_PrivateKey:ASN1 lib
The other issue I have with Apache 2.28 has to do with file descriptors. I=
=
issue the follow command on Windows 2003: openssl s_client -connect =
localhost:443 -state -debug
Loading 'screen' into random state - done
connect: Bad file descriptor
connect:errno=3D10061
=20
This is a hot item that I am solving for a customer, please get back to me =
right away.
=20
Thank you.
=20
Phil L.
=20
=20
Phil Lefort
PSO Senior Field Engineer
Office: 650-216-2173
Cell: 650-743-1917
phil.lefort@tumbleweed.com=20
www.tumbleweed.com =
=20
Gartner 2007 Magic Quadrant
Tumbleweed Positioned in Leaders Quadrant
http://www.tumbleweed.com/securemessenger
"Tumbleweed Communications
annotations on 05/22/08, 12:39:40
------------------------------------------------------------ ---------------=
---
===3D Tumbleweed Communications Disclaimer ===
This e-mail, including attachments, may include confidential and/or =
proprietary information, and may be used only by the person or entity to =
which it is addressed. If the reader of this e-mail is not the intended =
recipient or his or her authorized agent, the reader is hereby notified tha=
t=
any dissemination, distribution or copying of this e-mail is prohibited. I=
=66=
you have received this e-mail in error, please notify the sender by =
replying to this message and delete this e-mail immediately.=20
=20
Tumbleweed Communications Corp., an industry leader in managed file
transfer and content security, provides enterprise-class solutions to
organizations of all sizes. Tumbleweed's innovative products enable
organizations to effectively manage and protect business-critical
Internet communications, with capabilities that span secure file
transfer, encryption, data loss prevention, and email security.
==================== =====3D=
==================== =====3D=
==================== =====3D=
===3D
------_=_NextPart_001_01C8BC41.362DE67C
Content-Type: text/html;
charset=iso-8859-1
Content-Transfer-Encoding: quoted-printable
the following error entries when I try to start apache. I was able to=
=
validate the key by using the openssl command. It printed out a lot o=
=66=
hex stuff. So, I believe the key is good. I was also able to =
print out the cert.
:=
Seeding PRNG with 136 bytes of entropy
[Wed May 21 18:40:54 2008] [info=
]=
Loading certificate & private key of SSL-aware server
[Wed May 21 =
18:40:54 2008] [error] Init: SSLPassPhraseDialog builtin is not supported o=
n=
Win32 (key file C:/Program Files/Apache Software =
=46oundation/Apache2.2/conf/geophil.key)
[Wed May 21 18:42:36 2008] =
[info] Init: Seeding PRNG with 136 bytes of entropy
color=3D#800000>[Wed May 21 18:42:36 2008] [info] Loading certificate &=
=
private key of SSL-aware server
[Wed May 21 18:42:36 2008] [info] Init: =
Requesting pass phrase from dialog filter program (C:/Program Files/Apache =
Software Foundation/Apache2.2/conf/resource.bat)
[Wed May 21 18:42:36 =
2008] [error] Init: Pass phrase incorrect
[Wed May 21 =
18:42:36 2008] [error] SSL Library Error: 218710117 error:0D094065:asn1 =
encoding routines:d2i_ASN1_SET:bad class
[Wed May 21 18:42:36 2008] =
[error] SSL Library Error: 218529960 error:0D0680A8:asn1 encoding =
routines:ASN1_CHECK_TLEN:wrong tag
[Wed May 21 18:42:36 2008] [error] SS=
L=
Library Error: 218595386 error:0D07803A:asn1 encoding =
routines:ASN1_ITEM_EX_D2I:nested asn1 error
[Wed May 21 18:42:36 2008] =
[error] SSL Library Error: 218734605 error:0D09A00D:asn1 encoding =
routines:d2i_PrivateKey:ASN1 lib
I=
have with Apache 2.28 has to do with file descriptors. I issue the =
=66ollow command on Windows 2003:
color=3D#ff0000>openssl s_client =
-connect localhost:44
style=3D"FONT-WEIGHT: bold; FONT-SIZE: 10pt; COLOR: red; FONT-FAMILY: =
Arial">3 -state -debug
color=3Dred>
=
=46ONT-FAMILY: Arial">
style=3D"FONT-WEIGHT: bold; FONT-SIZE: 10pt; COLOR: red; FONT-FAMILY: =
Arial">
Loading 'screen' into random state=
=
- done
descriptor
=66or a customer, please get back to me right away.
L.
Arial">
color=3D#3a3c3b size=3D1>
=46ONT-FAMILY: 'Trebuchet MS'">PSO Senior Field Engineer
Office: =
650-216-2173
Cell: 650-743-1917
href=3D"mailto:phil.lefort@tumbleweed.com" =
target=3D_blank>phil.lefort@tumbleweed.com
=66ace=3DVerdana color=3D#5c7fa7 size=3D1>
COLOR: #5c7fa7; FONT-FAMILY: Verdana">
=
href=3D"https://webaccess.tumbleweed.com/exchweb/bin/redir.a sp=3FURL=3Dhttp=
://www.tumbleweed.com"=
target=3D_blank>www.tumbleweed.com
color=3Dnavy>
face=3DVerdana color=3D#5c7fa7 size=3D1>
COLOR: #5c7fa7; FONT-FAMILY: Verdana">
"Tumbleweed Communications <tumbleweed.com>" made the =
===3D Tumbleweed Communications Disclaimer ===3D
=66ollowing
annotations on 05/22/08, 12:39:40
------------------------------------------------------------ ---------------=
---
This e-mail, including attachments, may include confidential and/or =
proprietary information, and may be used only by the person or entity to =
which it is addressed. If the reader of this e-mail is not the intended =
recipient or his or her authorized agent, the reader is hereby notified tha=
t=
any dissemination, distribution or copying of this e-mail is prohibited. I=
=66=
you have received this e-mail in error, please notify the sender by =
replying to this message and delete this e-mail immediately.
Tumbleweed Communications Corp., an industry leader in managed file
transfer and content security, provides enterprise-class solutions to
organizations of all sizes. Tumbleweed's innovative products enable
organizations to effectively manage and protect business-critical
Internet communications, with capabilities that span secure file
transfer, encryption, data loss prevention, and email security.
==================== =====3D=
==================== =====3D=
==================== =====3D=
===3D
------_=_NextPart_001_01C8BC41.362DE67C--