Red Hat Bugzilla – Bug 128669
First certificate in the certificate chain file is ignored
Last modified: 2007-11-30 17:10:46 EST
Description of problem:
First certificate given in the SSLCertificateChainFile seems to be
ignored by mod_ssl.
If debug LogLevel is set in the secured VirtualHost directive, the
following debug message will be seen in the ssl'd hosts' error log:
'Configuring server certificate chain (0 CA certificates)'. The
number "0" is invalid.
Pasting the first certificate twice works. The second certificate
will be properly recognized and "1 CA certificates" will appear in
the server certificate chain debug log message.
What version of httpd and mod_ssl are you using? This is supposed to
be fixed in 2.0.49 and later.
# rpm -q mod_ssl httpd
Yep, it's 2.0.40. My bad.