Qpackt: Web server designed to make life easier

Hi,
Recently I've released Qpackt, a simple web server with some unique features:

  • Ability to serve multiple versions of a website (useful for A/B testing, gently rolling new version, differentiating content depending on source link)
  • Automatically fetch SSL certificate
  • Basic analytics without tracking cookies

I wonder what you think of it. Both, in terms of features and code quality. I've tried to add a sentence or two of "documentation" to most functions. I wonder if there is anything unclear in the code.

I would be extremely grateful if anyone could look at how SSL certificate is loaded. I think I've messed something up there. Https works fine via browsers but curl complains (you can see it with curl https://qpackt.com).

Thanks!

I didn't seem to get any error, worked ok for me.

Interesting, thanks for checking this out. I get:

curl -vvv https://qpackt.com
*   Trying 144.217.240.12:443...
* Connected to qpackt.com (144.217.240.12) port 443 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
*  CAfile: /etc/ssl/certs/ca-certificates.crt
*  CApath: /etc/ssl/certs
* TLSv1.0 (OUT), TLS header, Certificate Status (22):
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
* TLSv1.2 (IN), TLS header, Certificate Status (22):
* TLSv1.3 (IN), TLS handshake, Server hello (2):
* TLSv1.2 (IN), TLS header, Finished (20):
* TLSv1.2 (IN), TLS header, Supplemental data (23):
* TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8):
* TLSv1.2 (IN), TLS header, Supplemental data (23):
* TLSv1.3 (IN), TLS handshake, Certificate (11):
* TLSv1.2 (OUT), TLS header, Unknown (21):
* TLSv1.3 (OUT), TLS alert, unknown CA (560):
* SSL certificate problem: unable to get local issuer certificate
* Closing connection 0
curl: (60) SSL certificate problem: unable to get local issuer certificate
More details here: https://curl.se/docs/sslcerts.html

curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.

If you don't mind me asking, what system are you on?

It works ok for me from windows. From a linux server, I get the same error as you.

[ Note: I can curl ok to another Let's Encrypt website from linux ]

Thanks a lot.

You're not including the intermediate certificate in your TLS handshake.

See SSL Server Test: qpackt.com (Powered by Qualys SSL Labs)

1 Like

Thanks! I didn't event know it's possible.