[rabbitmq-discuss] RabbitMQ 3.0, SSL and rc4
Matthias Radestock
matthias at rabbitmq.com
Sat Mar 16 17:25:09 GMT 2013
On 16/03/13 16:37, carlhoerberg wrote:
> If you specify this chipers:
> {ciphers,[{rsa,rc4_128,sha},{rsa,aes_128_cbc,sha}]}]}
> and a client connects with rsa,rc4_128,sha, RabbitMQ 3.0 memory usage will
> grow indefinitely until i crashes.
Works fine for me:
$ ./scripts/rabbitmqctl status
Status of node rabbit at i ...
[{pid,5015},
{running_applications,[{rabbit,"RabbitMQ","%%VSN%%"},
{ssl,"Erlang/OTP SSL application","5.2.1"},
{public_key,"Public key infrastructure","0.18"},
{crypto,"CRYPTO version 2","2.3"},
{mnesia,"MNESIA CXC 138 12","4.8"},
{os_mon,"CPO CXC 138 46","2.2.11"},
{xmerl,"XML parser","1.3.3"},
{sasl,"SASL CXC 138 11","2.3.1"},
{stdlib,"ERTS CXC 138 10","1.19.1"},
{kernel,"ERTS CXC 138 10","2.16.1"}]},
{os,{unix,linux}},
{erlang_version,"Erlang R16B (erts-5.10.1) [source] [64-bit] [smp:8:8]
[async-threads:30] [hipe] [kernel-poll:true]\n"},
...]
...done.
$ ./scripts/rabbitmqctl environment
Application environment of node rabbit at i ...
[...
{ssl_options,[{cacertfile,"certs/testca/cacert.pem"},
{certfile,"certs/server/cert.pem"},
{keyfile,"certs/server/key.pem"},
{verify_code,1},
{ciphers,[{rsa,rc4_128,sha},{rsa,aes_128_cbc,sha}]}]},
...]
...done.
$ ./scripts/rabbitmqctl list_connections name ssl_key_exchange
ssl_cipher ssl_hash
Listing connections ...
127.0.0.1:51467 -> 127.0.0.1:5671 rsa rc4_128 sha
...done.
That connection is from an Erlang client.
So presumably there is something different in your environment. Any idea
what that might be?
Regards,
Matthias.
More information about the rabbitmq-discuss
mailing list