I am creating a certificate as mentioned in 7.7.2. ca-cert-file:
openssl req -new -x509 -extensions v3_ca -keyout cakey.pem -out cacert.crt -days 3650 -nodes
But the Firefox 90 browser, when opening https sites, reports the "PR_END_OF_FILE_ERROR" error. What is the exact command for openssl?
On 6/4/21, withoutname s18573f@users.sourceforge.net wrote:
The command you used works. Enable Privoxy debug logging to see
what's going wrong:
https://www.privoxy.org/user-manual/contact.html
although
debug 1 # Log the destination for each request.
debug 1024 # Log the destination for requests Privoxy didn't let through
debug 4096 # Startup banner and warnings
debug 8192 # Non-fatal errors
was enough for me to see the problem in the log:
2021-06-06 15:53:06.187 00000c54 Error: Setting issuer name in signed
certificate failed: X509 - Requested OID is unknown
2021-06-06 15:53:06.203 00000c54 Error: generate_host_certificate failed: -1
2021-06-06 15:53:06.203 00000c54 Error: Failed to open a secure
connection with the client
Apparently the problem was the comma I had in the org name:
Organization Name (eg, company) [Default Company Ltd]:Billy Bobs Beer,
Bait and CA Shoppe
I tried again using
Organization Name (eg, company) [Default Company Ltd]:AAA Home CA Shoppe
and that worked.
Regards,
Lee
Related
Support Requests:
#1741Sorry, the problem was with the permissions on the cakey.pem file. Thanks for the support!
user resolved: