[MXS-2956] admin_ssl_ca_cert reads the wrong certificate Created: 2020-04-07 Updated: 2020-12-11 Resolved: 2020-04-09 |
|
| Status: | Closed |
| Project: | MariaDB MaxScale |
| Component/s: | REST-API |
| Affects Version/s: | 2.3.18, 2.4.8 |
| Fix Version/s: | 2.3.19, 2.4.9, 2.5.0 |
| Type: | Bug | Priority: | Major |
| Reporter: | markus makela | Assignee: | markus makela |
| Resolution: | Fixed | Votes: | 0 |
| Labels: | None | ||
| Description |
|
The admin_ssl_ca_cert parameter uses the value of admin_ssl_cert as the client verification certificate. It also appears to be that libmicrohttpd by default doesn't verify that the client certificates are valid even if MHD_OPTION_HTTPS_MEM_TRUST is passed (unlike OpenSSL). In addition, the CA parameter should not be mandatory as it is not required to enable TLS. |