[rabbitmq-discuss] error loading some CA certificates

Warren Smith wsmith at tacc.utexas.edu
Wed Aug 1 14:39:47 BST 2012

I'm getting errors when I try to use some CA certificates with RabbitMQ 2.8.4 and Erlang R15B01. The message in the var/log/rabbit/rabbit at HOST.log file is:

SSL WARNING: Ignoring a CA cert as it could not be correctly decoded.

And then I get quite long error messages after this warning in the log file when the client is connecting using a certificate from one of the ignored CAs. The relevant part of the error message seems to be:

** Reason for termination =
** {{badmatch,

These are CA certificates that work fine with OpenSSL and I believe they work fine in Java, too. Example certificates that get ignored are the Root and Classic ones from http://www.tacc.utexas.edu/CA/.
The above error seems to indicate that the cause is in the code/asn.1 specs that erlang is using to decode certificates. Before I dig more into the erlang code and take this to the erlang list, I thought I'd record this problem on the RabbitMQ list and see if anyone here has any thoughts or a fix.



More information about the rabbitmq-discuss mailing list