[
Date Prev][
Date Next][
Thread Prev][
Thread Next][
Date Index][
Thread Index]
[
List Home]
|
Re: [mosquitto-dev] Mosquitto over SSL refuses publishing message
|
FWIW, I've had the same problem with Home Assistant - it needs the
'fullchain' file that LetsEncrypt generate, not the 'cert'.
And yes, debugging TLS - by its very nature - can be a nightmare...
-----Original Message-----
From: mosquitto-dev-bounces@xxxxxxxxxxx
[mailto:mosquitto-dev-bounces@xxxxxxxxxxx] On Behalf Of Greg Troxel
Sent: 16 September 2019 12:32
To: Aman Alam <shekh.aman@xxxxxxxxx>
Cc: mosquitto-dev@xxxxxxxxxxx
Subject: Re: [mosquitto-dev] Mosquitto over SSL refuses publishing message
.....
I found that it's necessary to use "fullchain" with certfile, rather than
"cert". I think this is therefore a documentation bug. Or perhaps it's
just underspecified, and mosquitto will happily read the certfile and send
exactly the certs in it. Depending on whether there are intermediate
certificates present, and whether the validator has those configured as
trust anchors, validation may fail.
...
