Skip to main content

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
Re: [mosquitto-dev] mosquitto with tls

Hello Leandro,

Can you check if user running mosquito_pub/mosquito_sub has access permission to the cert and key files. 
I had encountered same error while running my mqqt client implementation. Moving all files to the location with required access permission solved it for me. 

Regards,
Supriya Jagtap

On Tue, Jul 31, 2018 at 9:31 AM, Leandro <ingrogger@xxxxxxxxx> wrote:
Hi guys.
I would like to ask some help using mosquitto with tls option.
I successfully configured my server with tls option using the all-ca.crt , server.crt and server.key certificates provided with mosquitto source.
The problem is when I try to make it work with my own generated certificates.

I followed official documentation
https://mosquitto.org/man/mosquitto-tls-7.html
and
used the generate-CA.sh script.

But when trying to connect , I receive
"Error: A TLS error occurred."         on the mosquitto_pub and mosquitto_sub  clients.

And on the server side:

1533005975: OpenSSL Error: error:14094418:SSL routines:ssl3_read_bytes:tlsv1 alert unknown ca
1533005975: OpenSSL Error: error:140940E5:SSL routines:ssl3_read_bytes:ssl handshake failure (https://mosquitto.org/man/mosquitto-tls-7.html)

1533007440: OpenSSL Error: error:14094438:SSL routines:ssl3_read_bytes:tlsv1 alert internal error
1533007440: OpenSSL Error: error:140940E5:SSL routines:ssl3_read_bytes:ssl handshake failure (generate-CA.sh)


I have:
mosquitto 1.4.15 version
and mosquitto_sub version 1.4.15 running on libmosquitto 1.4.15.

Can anyone help?
Some script / tutorial to generate my own pki ?
Is something wrong with my mosquitto server?

Any help would be appreciated,
Regards,
Leandro.



_______________________________________________
mosquitto-dev mailing list
mosquitto-dev@xxxxxxxxxxx
To change your delivery options, retrieve your password, or unsubscribe from this list, visit
https://dev.eclipse.org/mailman/listinfo/mosquitto-dev


Back to the top