Re: Bug#229505: apache-ssl: It still fails installing if blank is given

[Fabio Massimo Di Nitto <fabbione@fabbione.net>]

The problem is already known and there is a bug open against ssl-cert.
apache-ssl is still not at fault even if it is the most relevant evidence
of it.

There is one issues right now and we discovered it recently (way
after we believed we fixed ssl-cert). In some debconf frontends it is
legal to leave an empty field and that would break the certificate
creation. Other frontends such as dialog do not accept empty fields and
replace them automatically with the default. Basically we were not aware
of this inconsistency inside debconf (there is a bug already opened) and
we are preparing a workaround for it.

Fabio

On Wed, 11 Feb 2004, Patricio Rojo wrote:

> Package: apache-ssl
> Version: 1.3.29.0.1-5
> Severity: normal
> Followup-For: Bug #229505
>
> Hi,
>
>    I'm installing apache-ssl for the first time, I'm running unstable.
>    I got the same problem reported by Michael, even though it was
> supposed to be already fixed on 'sid'... If I left my email blank I
> got...
>
> Generating a 1024 bit RSA private key
> .........++++++
> ............++++++
> writing new private key to '/etc/apache-ssl/apache.pem'
> -----
> problems making Certificate Request
> 4930:error:0D07A098:asn1 encoding routines:ASN1_mbstring_copy:string too short:a_mbstr.c:147:minsize=1
> dpkg: error processing apache-ssl (--configure):
>  subprocess post-installation script returned error exit status 1
> Errors were encountered while processing:
>  apache-ssl
> E: Sub-process /usr/bin/dpkg returned an error code (1)
>
>    And then I had to purge the failed installation, start over and
> filling in everything I have no further problems...
>
>   Thanks!...
>
>                          Pato
>
>
> -- System Information:
> Debian Release: testing/unstable
>   APT prefers unstable
>   APT policy: (990, 'unstable'), (1, 'experimental')
> Architecture: i386 (i686)
> Kernel: Linux 2.4.24-pcstm1-athlon
> Locale: LANG=en_US, LC_CTYPE=en_US
>
> Versions of packages apache-ssl depends on:
> ii  apache-common               1.3.29.0.1-5 Support files for all Apache webse
> ii  debconf                     1.4.9        Debian configuration management sy
> ii  dpkg                        1.10.18      Package maintenance system for Deb
> ii  libc6                       2.3.2.ds1-11 GNU C Library: Shared libraries an
> ii  libdb4.2                    4.2.52-10    Berkeley v4.2 Database Libraries [
> ii  libexpat1                   1.95.6-6     XML parsing C library - runtime li
> ii  libkeynote0                 2.3-10       Decentralized Trust-Management sys
> ii  libmagic1                   4.07-2       File type determination library us
> ii  libpam0g                    0.76-15      Pluggable Authentication Modules l
> ii  libssl0.9.7                 0.9.7c-5     SSL shared libraries
> ii  logrotate                   3.6.5-2      Log rotation utility
> ii  mime-support                3.24-1       MIME files 'mime.types' & 'mailcap
> ii  openssl                     0.9.7c-5     Secure Socket Layer (SSL) binary a
> ii  perl [perl5]                5.8.3-1      Larry Wall's Practical Extraction
> ii  ssl-cert                    1.0-7        Simple debconf wrapper for openssl
>
> -- debconf information excluded
>
>
>
>

-- 
<user> fajita: step one
<fajita> Whatever the problem, step one is always to look in the error log.
<user> fajita: step two
<fajita> When in danger or in doubt, step two is to scream and shout.