Incorrect error for missing cert if format="PEM" is specified
Here's a sample configuration file for a web server and client/server communication. The idea is that a client can use this set-up in order to communicate with a server using a self-signed certificate. This set-up actually works.
tls: {
session-timeout: 600;
ydbgui: {
format: "PEM";
cert: "/mwebserver/certs/ydbgui.pem";
key: "/mwebserver/certs/ydbgui.key";
};
client: {
CAfile: "/mwebserver/certs/ydbgui.pem";
};
};
If you add the key format: "PEM"
to this file, you get the error Format but no certificate corresponding to TLSID: %s in configuration file.
. This is incorrect. You do not need a certificate in order to do TLS communication when a certificate is not configured to be needed. Most TLS certificates are set-up so that you only need one certificate.