I have just compiled and installed the latest openssl (OpenSSL 0.9.3a 29 May 1999) with Apache SSL (apache_1.3.6+ssl_1.35)
After installing the program, I have tried to start the server, and it fails to read my old RSA secure key as per the error message below:
[Tue Jul 27 12:37:59 1999] [crit] error reading CA certs
[Tue Jul 27 12:37:59 1999] [crit] error:0906D06C:PEM routines:PEM_read_bio:no
start line
[Tue Jul 27 12:37:59 1999] [crit] error:0906D06C:PEM routines:PEM_read_bio:no
start line
[Tue Jul 27 12:37:59 1999] [crit] error:0906D06C:PEM routines:PEM_read_bio:no
start line
[Tue Jul 27 12:37:59 1999] [crit] error:0906D06C:PEM routines:PEM_read_bio:no
start line
[Tue Jul 27 12:37:59 1999] [crit] error:0906D06C:PEM routines:PEM_read_bio:no
start line
[Tue Jul 27 12:37:59 1999] [crit] error:0906D06C:PEM routines:PEM_read_bio:no
start line
[Tue Jul 27 12:37:59 1999] [crit] error:0906D06C:PEM routines:PEM_read_bio:no
start line
[Tue Jul 27 12:37:59 1999] [crit] error:0906D06C:PEM routines:PEM_read_bio:no
start line
[Tue Jul 27 12:37:59 1999] [crit] error:02001002:system library:fopen:system
lib
[Tue Jul 27 12:37:59 1999] [crit] error:20074002:BIO routines:FILE_CTRL:system
lib
I have several certificates for different secure servers, but the one that seems to be causing problems starts with the line:
-----BEGIN RSA PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED
DEK-Info: DES-EDE3-CBC,37D47D484D51BDF5
etc.
The other certificate starts
-----BEGIN RSA PRIVATE KEY-----
MIICWwI etc...
My old httpsd reads both keys without any trouble.
I am wondering if I need to add any module to apachessl or openssl to allow the key to be read, or if instead I should re-apply for a new key using the new httpsd and openssl...
Could anyone please advise - time is of the essence.
advaTHANKSnce
Andrew
