View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0005851 | unreal | ircd | public | 2021-04-14 16:19 | 2021-04-15 06:55 |
| Reporter | lord | Assigned To | |||
| Priority | low | Severity | minor | Reproducibility | always |
| Status | new | Resolution | open | ||
| Platform | Linux | ||||
| Product Version | 5.0.9 | ||||
| Summary | 0005851: Check the expiration date of default cert instead of configured tls cert. | ||||
| Description | When you install from source unreal 5.x it comes with default TLS certs in unrealircd/conf/tls/server.cert.pem and unrealircd/conf/tls/server.key.pem . If you keep these files but configure unreal to use other files somewhere else, it keeps checking the expiration dates of those defaults certs. Removing these files and creating symlinks to the "real" cert in this default directory solve the issue. | ||||
| Tags | SSL | ||||
| 3rd party modules | |||||
|
|
14:57 < lord> we use a LE cert in a /etc/somewhere/file.pem. but unreal keeps complaining about expiration of the default cert provided which isn't used anywhere in the configuration. 14:58 < lord> in a listen { ssl-option { certificate }; }; EVENT(tls_check_expiry) { [..] for (listen = conf_listen; listen; listen = listen->next) if (listen->tls_options) check_certificate_expiry_tlsoptions_and_warn(listen->tls_options); So code-wise not sure what could be wrong here... but I will try to reproduce, then we will know for sure. |
