Hello Alexander,

On Tue, Apr 07, 2015 at 04:02:17PM +0200, Alexander Rigbo wrote:
> Hello,
> 
> I noticed an error in the output when crl-file is non-existant (or other).
> 
> Tested with this config:
> global
>     tune.ssl.default-dh-param 2048
> 
> defaults
>     timeout server  10s
>     timeout client  10s
>     timeout connect 10s
> 
> frontend foo
>     bind *:9999 ssl crt /etc/ssl/certs/combo.pem ca-file /ca.crt
> crl-file /crlfile verify required
>     default_backend bar
> 
> backend bar
>     server baz 127.0.0.1:80
> 
> Gives:
> [ALERT] 096/145558 (11605) : Proxy 'foo': unable to configure CRL file
> '/ca.crt' for bind '*:9999' at [haproxy.conf:10].
> 
> If ca-file is not set at all it gives:
> [ALERT] 096/150029 (14284) : Proxy 'foo': unable to configure CRL file
> '(null)' for bind '*:9999' at [haproxy.conf:10].

Good catch! Patch applied, thank you!
willy


Reply via email to