| install Mosquitto on Ubuntu 22.04 w/ openssl 3.0.2 [message #1864111] |
Sat, 16 March 2024 22:58  |
Eclipse User |
|
|
|
i cannto post link! incredible !
following the install of mosquitto on Ubuntu 22.04 with Webmin and open ssl 3.0.2
all works fine WITHOUT SSL
installing onto Ubuntu 22.04 w/ OpenSSL 3.0.2 15 Mar 2022 (Library: OpenSSL 3.0.2 15 Mar 2022)
whatever i do, i cannot get a signed client SSL to work
I see many blogs about issues with OpenSSL 3.0.2 - is this an issue for Mosquitto ? is there an upgrade path for OpenSSl to fix the issue ?
openssl genrsa -out server.key 2048
openssl req -new -key server.key -out server.csr
WORKS! Certificate request self-signature ok
openssl x509 -req -in client.csr -CA fullchain.pem -CAkey privkey.pem -CAcreateserial -out client.crt -days 3650
but get : OpenSSL Error[0]: error:0A000418:SSL routines::tlsv1 alert unknown ca
WORKS: Certificate request self-signature ok
openssl x509 -req -in client.csr -CA fullchain.pem -CAkey ssl.key -CAcreateserial -out client.crt -days 3650
but get OpenSSL Error[0]: error:0A000438:SSL routines::tlsv1 alert internal error
works: Certificate request self-signature ok
openssl x509 -req -in client.csr -CA ssl.cert -CAkey ssl.key -CAcreateserial -out client.crt -days 3650
but get OpenSSL Error[0]: error:0A000438:SSL routines::tlsv1 alert internal error
FAIL !! OpenSSL Error[0]: error:0A000086:SSL routines::certificate verify failed
mosquitto_pub -h localhost -p 8883 --cafile ISRG_Root_X1.pem --cert client.crt --key client.key -t test -m "hello tls" -d
mosquitto_pub -h localhost -p 8883 --cafile fullchain.pem --cert client.crt --key client.key -t test -m "hello tls" -d
mosquitto_pub -h localhost -p 8883 --cafile ssl.cert --cert client.crt --key client.key -t test -m "hello tls" -d
|
|
|
|
Powered by
FUDForum. Page generated in 0.04483 seconds
Home