Skip to content

[Bug] Docker instruction mount repo certificate with wrong Docker secret target name #1391

New issue
New issue
Open
Bug
#1398
Open
[Bug] Docker instruction mount repo certificate with wrong Docker secret target name#1391
Bug
#1398
Assignees
mjang
Labels
🔥 p2Priority 2: Impacts production; non-emergencybugSomething isn't workingcommunityIssues or pull requests started by community membersdocumentationImprovements or additions to documentationproduct/wafIssues related to F5 WAF for NGINX
@Robb-Fr

Description

@Robb-Fr
Robb-Fr
opened on Oct 31, 2025

Hello,

I tried today to run the instructions to build the docker image containing NAP, and I kept having the build failing with the following error:

Could not load client certificate (/etc/ssl/nginx/nginx-repo.crt, SslCert option) or key (/etc/ssl/nginx/nginx-repo.key, SslKey option): Error while reading file.

After troubleshooting this, it seems that the file downloaded from https://cs.nginx.com/static/files/90pkgs-nginx, references a client certificate placed in /etc/ssl/nginx/nginx-repo.crt.

However, for example as you can see there:

documentation/content/waf/install/docker.md

Line 1042 in c9005eb

RUN --mount=type=secret,id=nginx-crt,dst=/etc/ssl/nginx/nginx-repo.cert,mode=0644 \

The documentation references the mounted secret's target as /etc/ssl/nginx/nginx-repo.cert, note the ".cert" vs. ".crt".

Changing this solved the issue.

Metadata

Metadata

Assignees

Labels

🔥 p2Priority 2: Impacts production; non-emergencybugSomething isn't workingcommunityIssues or pull requests started by community membersdocumentationImprovements or additions to documentationproduct/wafIssues related to F5 WAF for NGINX

Type

Bug

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions