前提・実現したいこと
TLSのバージョンサポートが終了し、サーバーの移行作業をしています。
前のサーバーにあったSSL証明書、httpd.confなどを新サーバーに移行し、
systemctl restart httpdを実行したところ、エラーになりました。
何が原因か分からず、困っております。
###エラーメッセージ
[root@ ~] systemctl restart httpd Job for httpd.service failed because the control process exited with error code. See "systemctl status httpd.service" and "journalctl -xe" for details.
[root@ ~] systemctl status httpd.service ● httpd.service - The Apache HTTP Server Loaded: loaded (/usr/lib/systemd/system/httpd.service; enabled; vendor preset: disabled) Drop-In: /usr/lib/systemd/system/httpd.service.d └─php-fpm.conf Active: failed (Result: exit-code) since Fri 2020-11-27 11:44:53 JST; 56s ago Docs: man:httpd.service(8) Process: 543304 ExecReload=/usr/sbin/httpd $OPTIONS -k graceful (code=exited, status=0/SUC> Process: 556613 ExecStart=/usr/sbin/httpd $OPTIONS -DFOREGROUND (code=exited, status=1/FAI> Main PID: 556613 (code=exited, status=1/FAILURE) Status: "Reading configuration..." Nov 27 11:44:53 web06.xx.com systemd[1]: Starting The Apache HTTP Server... Nov 27 11:44:53 web06.xx.com systemd[1]: httpd.service: Main process exited, code=exi> Nov 27 11:44:53 web06.xx.com systemd[1]: httpd.service: Failed with result 'exit-code> Nov 27 11:44:53 web06.xx.com systemd[1]: Failed to start The Apache HTTP Server.
[root@ ~] journalctl -xe -- Unit sysstat-collect.service has finished starting up. -- -- The start-up result is done. Nov 27 11:44:34 web06.xx.com postfix/smtpd[556608]: connect from unknown[193.169.254.107]> Nov 27 11:44:35 web06.xx.com postfix/smtpd[556608]: lost connection after AUTH from unknown[193.169.254.107]> Nov 27 11:44:35 web06.xx.com postfix/smtpd[556608]: disconnect from unknown[193.169.2254.107] ehlo=1 auth=0/1 commands=1/2> Nov 27 11:44:53 web06.xx.com systemd[1]: Starting The Apache HTTP Server... -- Subject: Unit httpd.service has begun start-up -- Defined-By: systemd -- Support: https://access.redhat.com/support -- -- Unit httpd.service has begun starting up. Nov 27 11:44:53 web06.xx.com systemd[1]: httpd.service: Main process exited, code=exited ,status=1/FAILURE Nov 27 11:44:53 web06.xx.com systemd[1]: httpd.service: Failed with result 'exit-code'. Nov 27 11:44:53 web06.xx.com systemd[1]: Failed to start The Apache HTTP Server. -- Subject: Unit httpd.service has failed -- Defined-By: systemd -- Support: https://access.redhat.com/support -- -- Unit httpd.service has failed. -- -- The result is failed.
log
1//error.log (httpd.confで指定されているlog) 2AH01232: suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
log
1//error.log (ssl.confで指定されているlog 2 [ssl:emerg] [pid 556664] SSL Library Error: error:140AD009:SSL routines:SSL_CTX_use_certificate_file:PEM lib
該当のソースコード
conf
1#httpd.conf 2ServerRoot "/etc/httpd" 3PidFile run/httpd.pid 4 5Timeout 30 6KeepAlive On 7#KeepAlive Off 8MaxKeepAliveRequests 90 9KeepAliveTimeout 2 10 11<IfModule prefork.c> 12StartServers 50 13MinSpareServers 50 14MaxSpareServers 50 15ServerLimit 250 16MaxClients 250 17MaxRequestsPerChild 2000 18</IfModule> 19 20Listen 80 21Include conf.modules.d/*.conf 22 23User apache 24Group apache 25 26ServerAdmin root@localhost.net 27ServerName localhost:80 28 29ExtendedStatus On 30ServerTokens Prod 31ServerSignature Off 32UseCanonicalName Off 33TraceEnable Off 34FileETag None 35 36DocumentRoot "/var/www/html" 37 38<Directory /> 39 Options FollowSymLinks 40 AllowOverride None 41 Order deny,allow 42 Deny from all 43</Directory> 44 45DirectoryIndex index.php index.cgi index.shtml index.html 46 47AccessFileName .htaccess 48<Files ~ "^.ht"> 49 Order allow,deny 50 Deny from all 51</Files> 52 53<Files ~ "^wp-*.php"> 54 Order allow,deny 55 Deny from all 56</Files> 57 58<Files ~ "^xmlrpc.php"> 59 Order allow,deny 60 Deny from all 61</Files> 62 63TypesConfig /etc/mime.types 64 65#DefaultType text/plain 66 67<IfModule mod_mime_magic.c> 68 MIMEMagicFile conf/magic 69</IfModule> 70 71HostnameLookups Off 72 73ErrorLog /home/www/log/error.log 74 75LogLevel warn 76 77LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %v" combined 78LogFormat "%h %l %u %t \"%r\" %>s %b" common 79LogFormat "%{Referer}i -> %U" referer 80LogFormat "%{User-agent}i" agent 81 82SetEnvIfNoCase Request_URI ".(gif|jpg|jpeg|png|svg|swf|cur|ico|js|css|eot|ttf|woff|woff2)$" no_log 83SetEnvIf Remote_Addr "^127.0.0.1" no_log 84 85CustomLog /home/www/log/access.log combined 86 87RedirectMatch gone ^/apple-touch-icon* 88 89AddLanguage ca .ca 90・ 91・ 92 93LanguagePriority en ca cs da de el eo es et fr he hr it ja ko ltz nl nn no pl pt pt-BR ru sv zh-CN zh-TW 94ForceLanguagePriority Prefer Fallback 95 96AddDefaultCharset Off 97 98AddType application/x-tar .tgz 99AddEncoding x-compress .Z 100AddEncoding x-gzip .gz .tgz 101AddType application/x-compress .Z 102AddType application/x-gzip .gz .tgz 103 104AddHandler cgi-script .cgi 105 106AddHandler type-map var 107 108AddType text/html .shtml 109AddOutputFilter INCLUDES .shtml 110 111Alias /error/ "/var/www/error/" 112 113<IfModule mod_negotiation.c> 114<IfModule mod_include.c> 115 <Directory "/var/www/error"> 116 AllowOverride None 117 Options IncludesNoExec 118 AddOutputFilter Includes html 119 AddHandler type-map var 120 Order allow,deny 121 Allow from all 122 LanguagePriority en es de fr 123 ForceLanguagePriority Prefer Fallback 124 </Directory> 125</IfModule> 126</IfModule> 127 128BrowserMatch "Mozilla/2" nokeepalive 129・ 130・ 131 132<Location /server-status> 133 SetHandler server-status 134 Order deny,allow 135 Deny from all 136 Allow from 127.0.0.1 137 Allow from 211.XX.XX.XX 138</Location>
conf
1#XX.co.jp.conf 2# TEMP 3 <DirectoryMatch "/home/www/xx.co.jp/www/data"> 4 Header set Pragma no-cache 5</DirectoryMatch> 6<VirtualHost xx.co.jp:443> 7 ServerName xx.co.jp 8 9 RewriteEngine On 10 RewriteCond %{HTTP_HOST} ^www.xx.co.jp 11# RewriteRule ^/(.*)$ https://xx.co.jp/$1 [R,NE,L] 12 RewriteRule ^/(.*)$ http://xx.co.jp/$1 [R=302,NE,L] 13 14# TEMP 15 RewriteCond %{REMOTE_ADDR} !^127.0.0.1$ 16 RewriteCond %{HTTPS} on 17 RewriteCond %{SERVER_PORT} 443 18 RewriteRule ^/(.*)$ http://xx.co.jp/$1 [R=302,NE,L] 19 20 ServerAdmin info@xx.co.jp 21 DocumentRoot "/home/www/xx.co.jp/www/data" 22 CustomLog "|/usr/sbin/rotatelogs /home/www/xx.co.jp/www/log/access_log.%Y%m%d 86400 540" combined env=!no_log 23 ErrorLog "|/usr/sbin/rotatelogs /home/www/xx.co.jp/www/log/error_log.%Y%m%d 86400 540" 24 LogLevel rewrite:trace1 25 26 SSLEngine On 27 SSLCertificateKeyFile /etc/httpd/conf/certs/xx.co.jp.key 28 SSLCertificateFile /etc/httpd/conf/certs/xx.co.jp.crt 29 SSLCertificateChainFile /etc/httpd/conf/certs/xx.co.jp.ca 30</VirtualHost>
conf
1#ssl.conf 2LoadModule ssl_module modules/mod_ssl.so 3 4Listen 443 5 6AddType application/x-x509-ca-cert .crt 7AddType application/x-pkcs7-crl .crl 8 9SSLPassPhraseDialog builtin 10 11#SSLSessionCache dc:UNIX:/var/cache/mod_ssl/distcache 12SSLSessionCache shmcb:/var/cache/mod_ssl/scache(512000) 13SSLSessionCacheTimeout 300 14 15SSLMutex default 16 17SSLRandomSeed startup file:/dev/urandom 256 18SSLRandomSeed connect builtin 19 20SSLCryptoDevice builtin 21 22SSLProtocol all -SSLv2 -SSLv3 23SSLCipherSuite RSA+xxx 24 25SSLCertificateKeyFile /etc/httpd/conf/certs/wildcard.bb-f.net_2020.key.pem 26SSLCertificateFile /etc/httpd/conf/certs/wildcard.bb-f.net_2020.crt 27SSLCertificateChainFile /etc/httpd/conf/certs/FujiSSxxx.ca
補足情報(FW/ツールのバージョンなど)
apache 2.4.37
cent os 8.2
回答1件
あなたの回答
tips
プレビュー