Skip to main content


Eclipse Community Forums
Forum Search:

Search      Help    Register    Login    Home
Home » Eclipse Projects » Mosquitto » install Mosquitto on Ubuntu 22.04 w/ openssl 3.0.2(client SSL fails)
install Mosquitto on Ubuntu 22.04 w/ openssl 3.0.2 [message #1864111] Sun, 17 March 2024 02:58 Go to next message
Rob Walker is currently offline Rob WalkerFriend
Messages: 2
Registered: March 2024
Junior Member
i cannto post link! incredible !

following the install of mosquitto on Ubuntu 22.04 with Webmin and open ssl 3.0.2
all works fine WITHOUT SSL

installing onto Ubuntu 22.04 w/ OpenSSL 3.0.2 15 Mar 2022 (Library: OpenSSL 3.0.2 15 Mar 2022)

whatever i do, i cannot get a signed client SSL to work
I see many blogs about issues with OpenSSL 3.0.2 - is this an issue for Mosquitto ? is there an upgrade path for OpenSSl to fix the issue ?

openssl genrsa -out server.key 2048
openssl req -new -key server.key -out server.csr
WORKS! Certificate request self-signature ok
openssl x509 -req -in client.csr -CA fullchain.pem -CAkey privkey.pem -CAcreateserial -out client.crt -days 3650
but get : OpenSSL Error[0]: error:0A000418:SSL routines::tlsv1 alert unknown ca

WORKS: Certificate request self-signature ok
openssl x509 -req -in client.csr -CA fullchain.pem -CAkey ssl.key -CAcreateserial -out client.crt -days 3650
but get OpenSSL Error[0]: error:0A000438:SSL routines::tlsv1 alert internal error

works: Certificate request self-signature ok
openssl x509 -req -in client.csr -CA ssl.cert -CAkey ssl.key -CAcreateserial -out client.crt -days 3650
but get OpenSSL Error[0]: error:0A000438:SSL routines::tlsv1 alert internal error

FAIL !! OpenSSL Error[0]: error:0A000086:SSL routines::certificate verify failed
mosquitto_pub -h localhost -p 8883 --cafile ISRG_Root_X1.pem --cert client.crt --key client.key -t test -m "hello tls" -d
mosquitto_pub -h localhost -p 8883 --cafile fullchain.pem --cert client.crt --key client.key -t test -m "hello tls" -d
mosquitto_pub -h localhost -p 8883 --cafile ssl.cert --cert client.crt --key client.key -t test -m "hello tls" -d

Report message to a moderator

Re: install Mosquitto on Ubuntu 22.04 w/ openssl 3.0.2 [message #1864132 is a reply to message #1864111] Mon, 18 March 2024 16:44 Go to previous message
Rob Walker is currently offline Rob WalkerFriend
Messages: 2
Registered: March 2024
Junior Member
anyone ? openssl 3.0.2 - whatever io try, i cannot get it to pass the client pub (even localhost)

Report message to a moderator

Previous Topic:Looking for a web client
Next Topic:No CRL check happening when connecting via websockets
Goto Forum:
  

[ Syndicate this forum (XML) ] [ RSS ]

Current Time: Thu May 02 21:23:54 GMT 2024

Powered by FUDForum. Page generated in 0.02650 seconds
.:: Contact :: Home ::.

Powered by: FUDforum 3.0.2.
Copyright ©2001-2010 FUDforum Bulletin Board Software

Back to the top

Sign up to our Newsletter

A fresh new issue delivered monthly