Edit report at http://bugs.php.net/bug.php?id=51647&edit=1
ID: 51647
Updated by: and...@php.net
Reported by: and...@php.net
Summary: Certificate file without private key (pk in another
file) doesn't work
-Status: Open
+Status: Verified
Type: Bug
Package: OpenSSL related
Operating System: Linux
PHP Version: 5.3SVN-2010-04-23 (SVN)
-Assigned To:
+Assigned To: andrey
Previous Comments:
------------------------------------------------------------------------
[2010-04-23 15:38:43] and...@php.net
Description:
------------
If a user has a certificate file (pem) with only the public key, and the
private key in another file he cannot use them by pushing down to the
stream by using a context. The user is forced to put keys in the same
file, which is not always possible.
Test script:
---------------
>From the sources:
if (VCWD_REALPATH(certfile, resolved_path_buff)) {
/* a certificate to use for authentication */
if (SSL_CTX_use_certificate_chain_file(ctx,
resolved_path_buff) != 1)
{
php_error_docref(NULL TSRMLS_CC, E_WARNING,
"Unable to set local
cert chain file `%s'; Check that your cafile/capath settings include
details of your certificate and its issuer", certfile);
return NULL;
}
if (SSL_CTX_use_PrivateKey_file(ctx, resolved_path_buff,
SSL_FILETYPE_PEM) != 1) {
php_error_docref(NULL TSRMLS_CC, E_WARNING,
"Unable to set private
key file `%s'", resolved_path_buff);
return NULL;
}
------------------------------------------------------------------------
--
Edit this bug report at http://bugs.php.net/bug.php?id=51647&edit=1
