Guest

Preview Tool

Cisco Bug: CSCvt91988 - WebRTC page not accessible after upgrade to 2.9 if cert doesn't have carriage return.

Last Modified

Sep 03, 2020

Products (1)

  • Cisco Meeting Server

Known Affected Releases

unspecified

Description (partial)

Symptom:
WebRTC main page isn't reachable after an upgrade to Meeting Server 2.9 from 2.7.x or 2.8.x. The browser would time out and show error such as  "This site can't be reached". The syslog would show repeated failure to load server key pair message, for example, "Failed to load server key pair from /certs/webbridge2bad.cer, /certs/webbridge2.key : tls: failed to find any PEM data in certificate input".

Conditions:
The issue is due to certificate not having one extra line at the end right after the "END CERTIFICATE" line. This only seems to happen in a Webbridge setup that uses a CA bundle as part of the certificate assignment. So a setup that uses "webbridge certs cert.key cert.pem" does not have any issues after upgrading even if the cert has no extra line ending. However, if the setup has "webbridge certs cert.key cert.pem cacert.pem" and there is no extra line ending on the cert, then the issue arises when Meeting Server is upgraded to 2.9.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.