45683 – 2 CRT and 2 CRL

Bug 45683 - 2 CRT and 2 CRL

Summary: 2 CRT and 2 CRL

Status:	RESOLVED DUPLICATE of bug 45708

Alias:	None

Product:	Apache httpd-2
Classification:	Unclassified
Component:	All (show other bugs)
Version:	2.2.6
Hardware:	PC All

Importance:	P2 critical (vote)
Target Milestone:	---
Assignee:	Apache HTTPD Bugs Mailing List

URL:
Keywords:

Depends on:
Blocks:

Reported:	2008-08-25 01:40 UTC by Martinc
Modified:	2008-11-17 04:50 UTC (History)
CC List:	1 user (show)

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Martinc 2008-08-25 01:40:37 UTC

We have 2 root certificate with the same CN.
And 2 crl list for root certificate.
(Example I.CA http://www.ica.cz/)

Root cerificate are 2, because have difference valid date certificate.
(In both CRL are all revocation certification, from both root certificate)

We use apache2 for autentization access to aplication.
Access is only with valid certificate.

When we try enter to aplication, 
apache write this error:

[Fri Aug 15 11:01:26 2008] [warn] Invalid signature on CRL
[Fri Aug 15 11:01:26 2008] [error] Certificate Verification: Error (8): CRL signature failure
[Fri Aug 15 11:01:26 2008] [error] Re-negotiation handshake failed: Not accepted by client!?

Both CRL and CRT are ok.
Error is probably on side apache. (in evaluation).

Thanks for answer.

Comment 1 Markus Wernig 2008-11-17 04:49:53 UTC


*** This bug has been marked as a duplicate of bug 45708 ***