Client cannot connect with generated certificates from mosquitto-tls-7
Hi,
i followed the instructions for creating certificates from mosquitto-tls-7. Somehow I cannot connect with the client:
mosquitto_sub -h example.org -t "#" -d --cafile /etc/mosquitto/
Client mosqsub/
OpenSSL Error: error:1408F10B:SSL routines:
Following errors show in mosquitto.log:
1391023277: New connection from xxx.xxx.xxx.xxx on port 1883.
1391023277: OpenSSL Error: error:1409442E:SSL routines:
1391023277: OpenSSL Error: error:140940E5:SSL routines:
The ca.crt is created via
openssl req -new -x509 -days <duration> -extensions v3_ca -keyout ca.key -out ca.crt
In the ca.crt it says:
openssl x509 -text -in ca.crt
Certificate:
Data:
Version: 3 (0x2)
...
The server.crt is created via
openssl genrsa -des3 -out server.key 2048
openssl genrsa -out server.key 2048
openssl req -out server.csr -key server.key -new
openssl x509 -req -in server.csr -CA ca.crt -CAkey ca.key -CAcreateserial -out server.crt -days <duration>
and in the server.crt:
openssl x509 -text -in server.crt
Certificate:
Data:
Version: 1 (0x0)
...
The SSL version of the protocolls do not match. But I think they should. Is it a bug in the man?
mosquitto version 1.2.3 (build date 2014-01-06 11:53:51+0000)
OpenSSL 1.0.1e 11 Feb 2013
Let me know if there is something I can provide.
Greetings,
dabozz
Question information
- Language:
- English Edit question
- Status:
- Answered
- For:
- mosquitto Edit question
- Assignee:
- No assignee Edit question
- Last query:
- Last reply:
This question was originally filed as bug #1274272.
Can you help with this problem?
Provide an answer of your own, or ask dabozz for more information if necessary.