[pve-devel] Spice problems with intermediate certificates

Alexandre DERUMIER aderumier at odiso.com
Mon Aug 25 13:31:56 CEST 2014


>>I guess you get an "OK" when using: 
>>
>># openssl verify -CAfile /etc/pve/pve-root-ca.pem /etc/pve/local/pve-ssl.pem 
>>/etc/pve/local/pve-ssl.pem: OK 

Yes, indeed

#  openssl verify -CAfile /etc/pve/pve-root-ca.pem /etc/pve/local/pve-ssl.pem 
/etc/pve/local/pve-ssl.pem: OK

----- Mail original ----- 

De: "Dietmar Maurer" <dietmar at proxmox.com> 
À: "Alexandre DERUMIER" <aderumier at odiso.com> 
Cc: pve-devel at pve.proxmox.com 
Envoyé: Lundi 25 Août 2014 13:13:30 
Objet: RE: [pve-devel] Spice problems with intermediate certificates 

> >># openssl verify /etc/pve/local/pve-ssl.pem 
> 
> 
> # openssl verify /etc/pve/local/pve-ssl.pem 
> /etc/pve/local/pve-ssl.pem: serialNumber = 6OIC- 
> M6dsSmyl3j9087fa638RY/f8cC3, OU = GT29098117, OU = See 
> www.rapidssl.com/resources/cps (c)13, OU = Domain Control Validated - 
> RapidSSL(R), CN = *.odiso.net 
> error 20 at 0 depth lookup:unable to get local issuer certificate 
> 
> 
> >>Can you verify without specifying a CAFile? 
> 
> do you mean : "#openssl verify" ? 
> If yes, it's just waiting. 

No, I just wanted to know if you also get the "error 20 at 0 depth lookup" error. 

I guess you get an "OK" when using: 

# openssl verify -CAfile /etc/pve/pve-root-ca.pem /etc/pve/local/pve-ssl.pem 
/etc/pve/local/pve-ssl.pem: OK 


More information about the pve-devel mailing list