[rabbitmq-discuss] MQTT SSL handshake failures cause server lockup
Michael Klishin
mklishin at gopivotal.com
Fri Apr 11 09:44:25 BST 2014
On 11 April 2014 at 12:34:56, Stuart King (stuart.king at me.com) wrote:
> > A simple way I found to demonstrate this is by creating my own
> certificate authority, certificates, keys etc for RabbitMQ
> as per the instructions at https://www.rabbitmq.com/ssl.html
> and adding the relevant ssl options to the RabbitMQ config file
> but put the ssl_listeners element into the rabbitmq_mqtt tuple.
> Then, implement a basic MQTT client in Java using the Paho client
> libraries. When the client is ran, an exception is thrown as expected
> since the certificate isn’t trusted. If this client is put into
> a basic load test, where a new client is created and attempts to
> connect to the server every 2 seconds, it will prevent other clients
> connecting. This can be observed by simply using the "openssl
> s_client” command, which will just hang during the time the Java
> clients are trying to connect.
Thanks for reporting, a bug is filed.
--
MK
Software Engineer, Pivotal/RabbitMQ
More information about the rabbitmq-discuss
mailing list