seasonal wanderer (angelamaria) wrote in developers,
seasonal wanderer
angelamaria
developers

Apache 2 and SSL

I've been trying to setup on my own computer an Apache installation with mod_ssl. Unfortunately, I'm getting into some problems, and I've spent all of yesterday already trying to find a solution, but come up with nothing. :p

I'm running Apache 2.0.59, and downloaded OpenSSL/mod_ssl files from hunter.campbus.com (and also this site, which I'm also using as primary reference... I've downloaded so many binaries already, bah). I reinstalled Apache 2, followed the instructions, and was able to create the certificate and key files. I've put them into proper directories and pointed to them correctly in Apache's conf file.

Running the command apache -k start from the bin directory comes up with no error... no output, actually. But it doesn't start the server. Starting the service with net start apache2 comes up with this:

The Apache2 service is starting.
The Apache2 service could not be started.
A service specific error occurred: 1.
More help is available by typing NET HELPMSG 3547.


I took a look at the SSL error log, and the error messages are of the following two:

[Wed Aug 30 10:37:34 2006] [info] Loading certificate & private key of SSL-aware server
[Wed Aug 30 10:37:35 2006] [info] Configuring server for SSL protocol
[Wed Aug 30 10:37:35 2006] [info] Loading certificate & private key of SSL-aware server
[Wed Aug 30 10:37:35 2006] [info] Configuring server for SSL protocol
[Wed Aug 30 10:37:35 2006] [error] Unable to import RSA server private key
[Wed Aug 30 10:37:35 2006] [error] SSL Library Error: 218529960 error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag
[Wed Aug 30 10:37:35 2006] [error] SSL Library Error: 218595386 error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1 error
[Wed Aug 30 10:37:35 2006] [error] SSL Library Error: 218734605 error:0D09A00D:asn1 encoding routines:d2i_PrivateKey:ASN1 lib

[Wed Aug 30 10:38:22 2006] [info] Loading certificate & private key of SSL-aware server
[Wed Aug 30 10:38:23 2006] [info] Configuring server for SSL protocol
[Wed Aug 30 10:38:23 2006] [info] Loading certificate & private key of SSL-aware server
[Wed Aug 30 10:38:23 2006] [info] Configuring server for SSL protocol
[Wed Aug 30 10:38:23 2006] [error] Unable to import RSA server private key
[Wed Aug 30 10:38:23 2006] [error] SSL Library Error: 218570875 error:0D07207B:asn1 encoding routines:ASN1_get_object:header too long
[Wed Aug 30 10:38:23 2006] [error] SSL Library Error: 218529894 error:0D068066:asn1 encoding routines:ASN1_CHECK_TLEN:bad object header
[Wed Aug 30 10:38:23 2006] [error] SSL Library Error: 218595386 error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1 error
[Wed Aug 30 10:38:23 2006] [error] SSL Library Error: 218734605 error:0D09A00D:asn1 encoding routines:d2i_PrivateKey:ASN1 lib


I've been trying to find ANYTHING on the unable to import RSA server private key error, but nothing's coming up. The key and certificate files are pointed to correctly, and I checked the modulus thing via the command prompt and they matched. All the websites say is that if they DON'T match, regenerate. There's nothing about if they match. I've regenerated numerous times, gone through a number of tutorials trying to regenerate, but nothing's worked so far.

And oh, if I comment out the ssl.conf file from the httpd.conf, everything works, lol.

Any suggestions on what I could do? :/ Thanks, any help is greatly appreciated!
  • Post a new comment

    Error

    default userpic
  • 7 comments