Hello Alexander, On Tue, Apr 07, 2015 at 04:02:17PM +0200, Alexander Rigbo wrote: > Hello, > > I noticed an error in the output when crl-file is non-existant (or other). > > Tested with this config: > global > tune.ssl.default-dh-param 2048 > > defaults > timeout server 10s > timeout client 10s > timeout connect 10s > > frontend foo > bind *:9999 ssl crt /etc/ssl/certs/combo.pem ca-file /ca.crt > crl-file /crlfile verify required > default_backend bar > > backend bar > server baz 127.0.0.1:80 > > Gives: > [ALERT] 096/145558 (11605) : Proxy 'foo': unable to configure CRL file > '/ca.crt' for bind '*:9999' at [haproxy.conf:10]. > > If ca-file is not set at all it gives: > [ALERT] 096/150029 (14284) : Proxy 'foo': unable to configure CRL file > '(null)' for bind '*:9999' at [haproxy.conf:10].
Good catch! Patch applied, thank you! willy