Linux SSL Certificate – Root CA Not Recognized Despite Being in Trust Store

certificatelinuxssl

Background:

Ubuntu Server 14.10 64-bit on aws.amazon.com/ec2
Cheap PositiveSSL server certificate from COMODO
1 server certificate, 2 intermediate CA certificates and 1 Root CA certificate as ZIP archive from COMODO
Citadel's WebCit httpsd

Problem:

The concatenated certificate chain seems to be correct but verification fails.

openssl s_client myhost:port

shows the certificate chain and the issuer-subject pairs line up correctly through the chain, but:

verify error:num=19:self signed certificate in certificate chain

The root CA certificate is not accepted by openssl, although it is found per default in the Ubuntu server trust store.

Specifically:
AddTrustExternalCARoot.crt received per email from COMODO and
/etc/ssl/certs/AddTrust_External_Root.pem which links to
/usr/share/ca-certificates/mozilla/AddTrust_External_Root.crt
are indentical.

What is wrong here?

Best Answer

OpenSSL at least through current (1.0.2a) has a bug where s_client with NO -CA{path,file} argument doesn't actually use the default truststore as it should, and thus fails to verify certs that are valid according to that truststore. (Also s_server and s_time, but caring about verification in those is rare.) See https://serverfault.com/questions/607233/how-to-make-openssl-s-client-using-default-ca . A fix is announced in dev, but may take some time to be released and distributed. In the meantime you need to explicitly specify the -CA* argument(s). Note that openssl verify does not have this bug, and therefore correctly reported the cert/chain as valid.

UPDATES 2015/08/26: fix was released 2015/06/12 in 1.0.1o and 1.0.2c. Also, while investigating something else I found that RedHat packages may have been okay. More specifically the CentOS source RPM for openssl-1.0.1e-30.el6.11 which I understand is a copy of the RedHat one (but can't easily confirm) contains openssl-1.0.1c-default-paths.patch which contains changes to s_client.c s_server.c s_time.c dated 2012/12/06 that appear equivalent to (though not textually the same as) the 2015/06/12 upstream fixes. Assuming this patch was applied in RedHat and CentOS packages, which I can't easily go back and check, they would (have) work(ed) as expected.

Related Solutions

Why can’t I verify this certificate chain

You don't have to cat the two certificates together in order to verify them.

If you have the following three certificates:

root.pem - stores a self-signed certificate.
intermediate.pem - stores a certificate signed by root.pem
john.pem - stores a certificate signed by intermediate.pem

And you trust only root.pem, then you would verify john.pem with the following command:

openssl verify -CAfile root.pem -untrusted intermediate.pem john.pem

It you had many intermediates, you could just chain -untrusted intermediate2.pem -untrusted intermediate3.pem ...

Svn not accepting https/ssl certificate

I would not recommend this for any serious use, but you can simply provide the 't' on standard input:

svn update . <<< t

Other option would be to use --trust-server-cert:

svn --non-interactive --trust-server-cert update .

It should be OK for your SVN version, it is added in 1.6 .

Also see this thread, there is a nice expect solution provided: https://serverfault.com/questions/37929/how-do-you-accept-an-ssl-certificate-through-the-svn-command-line

Best Answer

Related Solutions

Why can’t I verify this certificate chain

Svn not accepting https/ssl certificate

Related Question