You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
mosquitto_sub -d --insecure -h 192.168.4.23 -p 8883 -t test -u test-user -P test-pwd
Unable to connect (A TLS error occurred.).
Mosquitto log:
1706611361: mosquitto version 2.0.18 starting
1706611361: Config loaded from /mosquitto/config/mosquitto.conf.
1706611361: Opening ipv4 listen socket on port 8883.
1706611361: mosquitto version 2.0.18 running
1706611370: New connection from 192.168.0.20:39974 on port 8883.
1706611370: Client <unknown> closed its connection.
I have tried both RSA (below) and ECDSA certs, but the same result.
openssl s_client -connect 192.168.4.23:8883 -showcerts
CONNECTED(00000004)
Can't use SSL_get_servername
depth=1 CN = Avassa, L = Stockholm, C = SE, O = Avassa, OU = distribution
verify error:num=19:self-signed certificate in certificate chain
verify return:1
depth=1 CN = Avassa, L = Stockholm, C = SE, O = Avassa, OU = distribution
verify return:1
depth=0 CN = mosquitto, L = Stockholm, C = SE, O = Avassa, OU = distribution
verify return:1
---
Certificate chain
0 s:CN = mosquitto, L = Stockholm, C = SE, O = Avassa, OU = distribution
i:CN = Avassa, L = Stockholm, C = SE, O = Avassa, OU = distribution
a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256
v:NotBefore: Jan 30 03:30:41 2024 GMT; NotAfter: Feb 29 10:42:41 2024 GMT
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
1 s:CN = Avassa, L = Stockholm, C = SE, O = Avassa, OU = distribution
i:CN = Avassa, L = Stockholm, C = SE, O = Avassa, OU = distribution
a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256
v:NotBefore: Jan 19 11:16:23 2024 GMT; NotAfter: Jan 29 10:04:23 2027 GMT
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
---
Server certificate
subject=CN = mosquitto, L = Stockholm, C = SE, O = Avassa, OU = distribution
issuer=CN = Avassa, L = Stockholm, C = SE, O = Avassa, OU = distribution
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 2616 bytes and written 373 bytes
Verification error: self-signed certificate in certificate chain
---
New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384
Server public key is 2048 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 19 (self-signed certificate in certificate chain)
---
The text was updated successfully, but these errors were encountered:
Mosquitto version: 2.0.18
Mosquitto log:
I have tried both RSA (below) and ECDSA certs, but the same result.
I've tried to provide all relevant info below.
mosquitto.conf
The text was updated successfully, but these errors were encountered: