#703 prosodyctl check config does not detect missing global ssl configuration for legacy_ssl_ports
Reporter
Jonas Wielicki
Owner
Nobody
Created
Updated
Stars
★ (1)
Tags
Type-Defect
Priority-Medium
Status-NeedInfo
Jonas Wielicki
on
If legacy_ssl_ports is set, but no global ssl config is given, prosody will fail to open the "Legacy" SSL port with:
Jul 01 11:21:57 portmanager error Error binding encrypted port for legacy_ssl: No key present in SSL/TLS configuration for legacy_ssl port 5224
prosodyctl check config, however, does not report any problems with this configuration.
Zash
on
Should prosodyctl check duplicate everything that is already an error that gets logged?
We have discussed having prosodyctl check look at logs and report recent errors, which could arguably cover this case.
If legacy_ssl_ports is set, but no global ssl config is given, prosody will fail to open the "Legacy" SSL port with: Jul 01 11:21:57 portmanager error Error binding encrypted port for legacy_ssl: No key present in SSL/TLS configuration for legacy_ssl port 5224 prosodyctl check config, however, does not report any problems with this configuration.
Should prosodyctl check duplicate everything that is already an error that gets logged? We have discussed having prosodyctl check look at logs and report recent errors, which could arguably cover this case.
Is this still relevant?
ChangesI don't care much.