[rabbitmq-discuss] MQTT SSL handshake failures cause server lockup

Michael Klishin mklishin at gopivotal.com
Fri Apr 11 09:44:25 BST 2014

On 11 April 2014 at 12:34:56, Stuart King (stuart.king at me.com) wrote:
> > A simple way I found to demonstrate this is by creating my own  
> certificate authority, certificates, keys etc for RabbitMQ  
> as per the instructions at https://www.rabbitmq.com/ssl.html  
> and adding the relevant ssl options to the RabbitMQ config file  
> but put the ssl_listeners element into the rabbitmq_mqtt tuple.  
> Then, implement a basic MQTT client in Java using the Paho client  
> libraries. When the client is ran, an exception is thrown as expected  
> since the certificate isn’t trusted. If this client is put into  
> a basic load test, where a new client is created and attempts to  
> connect to the server every 2 seconds, it will prevent other clients  
> connecting. This can be observed by simply using the "openssl  
> s_client” command, which will just hang during the time the Java  
> clients are trying to connect.

Thanks for reporting, a bug is filed. 

Software Engineer, Pivotal/RabbitMQ

More information about the rabbitmq-discuss mailing list