[rabbitmq-discuss] Problems with SSL support
Alexandru Scvorţov
alexandru at rabbitmq.com
Tue Aug 24 11:34:58 BST 2010
I cannot say for sure, but with .NET client 1.7.2 and Erlang R13B03,
certificates should work. So, {verify, verify_peer} should work.
On Tue, Aug 24, 2010 at 10:15:22AM +0000, gordon.robinson at gmail.com wrote:
> Thanks.
>
> I reverted the .Net client to 1.7.2 and changed the verify setting to
> verify_none and it works now although as you say unauthenticated.
>
> On , Alexandru Scvortov <alexandru at rabbitmq.com> wrote:
> > > It's been fixed in the default branch and will make it into the next
>
> > > release.
>
>
>
> > For clarification, we got SSL running completely in the .NET client on
>
> > Mono. On Windows, the certificate validation still fails, so your only
>
> > chance is to set {verify, verify_none} in the server config (which would
>
> > give you an unauthenticated, encrypted connection). There's an open bug
>
> > for this and we're working on it.
>
>
>
> > On Mon, Aug 23, 2010 at 11:38:05PM +0100, Alexandru Scvorţov wrote:
>
> > > There's a bug in that version of the .NET client that breaks SSL.
>
> > >
>
> > > It's been fixed in the default branch and will make it into the next
>
> > > release.
>
> > >
>
> > > In the meantime, either compile from source (it's fairly straightforward
>
> > > and we've got some very easy to follow instructions: [1]), or use a
>
> > > version of the .NET client prior to 1.8.0 (not recommended).
>
> > >
>
> > > Your best bet is probably to wait for the next release.
>
> > >
>
> > > Cheers,
>
> > > Alex
>
> > >
>
> > > [1] http://www.rabbitmq.com/build-dotnet-client.html
>
> > >
>
> > > On Mon, Aug 23, 2010 at 10:07:22PM +0100, Gordon Robinson wrote:
>
> > > > I've recently upgraded my version of RabbitMQ and ubuntu and am now
> > having
>
> > > > problems trying to get it to work using the SSL support. I've using
> > Ubuntu
>
> > > > 10.4 and RabbitMQ 1.8.1. Erlang is at version 5.7.4 (R13B03).
> > erlang_ssl
>
> > > > is version 3.10.7.
>
> > > >
>
> > > >
>
> > > >
>
> > > > Whenever I try and connect to the server from my .Net client using
> > the 1.8.1
>
> > > > library I get the following in my log file:
>
> > > >
>
> > > >
>
> > > >
>
> > > > =INFO REPORT==== 23-Aug-2010::15:12:30 ===
>
> > > >
>
> > > > Limiting to approx 924 file handles
>
> > > >
>
> > > ...
>
> > > >
>
> > > > =ERROR REPORT==== 23-Aug-2010::15:14:02 ===
>
> > > >
>
> > > > error on TCP connection :{ssl_upgrade_failure,
>
> > > >
>
> > > > {{function_clause,
>
> > > >
>
> > > > [{ssl_record,mac_hash,
>
> > > >
>
> > > > [undefined,0,undefined,0,21,2,
>
> > > >
>
> > > > >]},
>
> > > >
>
> > > > {ssl_record,hash_and_bump_seqno,5},
>
> > > >
>
> > > > {ssl_record,cipher,4},
>
> > > >
>
> > > > {ssl_record,encode_plain_text,4},
>
> > > >
>
> > > > {ssl_connection,handle_own_alert,4},
>
> > > >
>
> > > > {ssl_connection,handle_info,3},
>
> > > >
>
> > > > {gen_fsm,handle_msg,7},
>
> > > >
>
> > > > {proc_lib,init_p_do_apply,3}]},
>
> > > >
>
> > > > {gen_fsm,sync_send_all_state_event,
>
> > > >
>
> > > > [,started,5000]}}}
>
> > > >
>
> > > >
>
> > > >
>
> > > > =INFO REPORT==== 23-Aug-2010::15:14:02 ===
>
> > > >
>
> > > > closing TCP connection
>
> > >
>
> > > > _______________________________________________
>
> > > > rabbitmq-discuss mailing list
>
> > > > rabbitmq-discuss at lists.rabbitmq.com
>
> > > > https://lists.rabbitmq.com/cgi-bin/mailman/listinfo/rabbitmq-discuss
>
> > >
>
> > > _______________________________________________
>
> > > rabbitmq-discuss mailing list
>
> > > rabbitmq-discuss at lists.rabbitmq.com
>
> > > https://lists.rabbitmq.com/cgi-bin/mailman/listinfo/rabbitmq-discuss
>
More information about the rabbitmq-discuss
mailing list