[DISPATCH-650] Dispatch - Use pn_ssl_domain_set_trusted_ca_db to pass ca_db to proton - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: None
Component/s: None
Labels:
None

Description

Configure dispatch to use SSL, start dispatch mode, observe error:
Listener : 0.0.0.0:amqp
SASL: ANONYMOUS
SSL: 0

Listener : 0.0.0.0:20000
SASL: ANONYMOUS
SSL: 1
unsec: 0
cert-file: /root/iboverma/server-certificate.pem
key-file: /root/iboverma/server-private-key.pem
cert-db: /root/iboverma/ca-certificate.pem
peer-auth: 1
Sat Jan 25 15:04:43 2014 SERVER (INFO) Operational, 6 Threads Running
Sat Jan 25 15:04:43 2014 SERVER (INFO) Running in DEBUG Mode
Sat Jan 25 15:10:23 2014 SERVER (DEBUG) added listener connection
Error: cannot verify peer without a trusted CA configured.
Use pn_ssl_domain_set_trusted_ca_db()
[0x7ff124013dd0]:ERROR[-2] SSL Failure: error:140760FC:SSL routines:SSL23_GET_CLIENT_HELLO:unknown protocol

Sat Jan 25 15:10:23 2014 SERVER (DEBUG) removed listener connection
Sat Jan 25 15:10:28 2014 SERVER (DEBUG) added listener connection
Error: cannot verify peer without a trusted CA configured.
Use pn_ssl_domain_set_trusted_ca_db()

Attachments

Activity

People

Assignee:: Ted Ross

Reporter:: Irina Boverman

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 27/Jan/14 14:09

Updated:: 02/Oct/19 19:17

Resolved:: 28/Jan/14 20:38