Last active
December 11, 2018 18:37
-
-
Save cocowalla/9b0704af250c8949c1cc38fa48abf2bc to your computer and use it in GitHub Desktop.
Web MQTT not using certfile from config
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [ | |
| {ssl, | |
| [ | |
| {versions, ['tlsv1.2']}, | |
| {secure_renegotiate, true} | |
| ] | |
| }, | |
| {rabbit, | |
| [{ssl_options, | |
| [{cacertfile, "/usr/local/share/cacert.pem"}, | |
| {certfile, "/usr/local/share/cert.pem"}, | |
| {keyfile, "/run/secrets/key.pem"}, | |
| {depth, 2}, | |
| {verify, verify_peer}, | |
| {fail_if_no_peer_cert, true}, | |
| {versions, ['tlsv1.2']}, | |
| {honor_cipher_order, true}, | |
| {honor_ecc_order, true}, | |
| {secure_renegotiate, true}, | |
| {ciphers, [{rsa,aes_256_cbc,sha256}, | |
| {rsa,aes_128_cbc,sha256}, | |
| {rsa,aes_256_cbc,sha}, | |
| {rsa,'3des_ede_cbc',sha}, | |
| {rsa,aes_128_cbc,sha}, | |
| {rsa,des_cbc,sha}]}] | |
| }] | |
| } | |
| ]. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| FROM rabbitmq:3.7.5-management-alpine | |
| RUN rabbitmq-plugins enable \ | |
| rabbitmq_amqp1_0 \ | |
| rabbitmq_shovel \ | |
| rabbitmq_shovel_management \ | |
| rabbitmq_auth_mechanism_ssl \ | |
| rabbitmq_mqtt \ | |
| rabbitmq_web_mqtt | |
| EXPOSE 4369 5671 5672 8885 8886 15671 15672 15675 15676 25672 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [{rabbitmq_web_mqtt, | |
| [{ssl_config,[{ip,"0.0.0.0"},{port,15676}]}, | |
| {tcp_config,[{ip,"0.0.0.0"},{port,15675}]}]}, | |
| {rabbitmq_mqtt, | |
| [{tcp_listen_options,[{nodelay,true},{backlog,128}]}, | |
| {ssl_cert_login,true}, | |
| {allow_anonymous,false}, | |
| {vhost,<<"/">>}, | |
| {exchange,<<"test">>}, | |
| {tcp_listeners,[8885]}, | |
| {ssl_listeners,[8886]}]}, | |
| {rabbitmq_management, | |
| [{rates_mode,basic}, | |
| {listener, | |
| [{ssl_opts, | |
| [{secure_renegotiate,true}, | |
| {keyfile,"/run/secrets/key.pem"}, | |
| {honor_cipher_order,true}, | |
| {certfile,"/usr/local/share/cert.pem"}, | |
| {cacertfile,"/usr/local/share/cacert.pem"}, | |
| {versions,['tlsv1.2']}]}, | |
| {ssl,true}, | |
| {port,15672}]}, | |
| {load_definitions,"/rabbit/definitions.json"}, | |
| {sample_retention_policies, | |
| [{global,[{86400,1200},{3600,60},{60,5}]}, | |
| {basic,[{3600,60},{60,5}]}, | |
| {detailed,[{10,5}]}]}]}, | |
| {rabbit, | |
| [{log,[{console,[{level,info}]}]}, | |
| {ssl_cert_login_from,common_name}, | |
| {ssl_options, | |
| [{cacertfile,"/usr/local/share/cacert.pem"}, | |
| {certfile,"/usr/local/share/cert.pem"}, | |
| {keyfile,"/run/secrets/key.pem"}, | |
| {depth,2}, | |
| {verify,verify_peer}, | |
| {fail_if_no_peer_cert,true}, | |
| {versions,['tlsv1.2']}, | |
| {honor_cipher_order,true}, | |
| {honor_ecc_order,true}, | |
| {secure_renegotiate,true}, | |
| {ciphers, | |
| [{rsa,aes_256_cbc,sha256}, | |
| {rsa,aes_128_cbc,sha256}, | |
| {rsa,aes_256_cbc,sha}, | |
| {rsa,'3des_ede_cbc',sha}, | |
| {rsa,aes_128_cbc,sha}, | |
| {rsa,des_cbc,sha}]}]}, | |
| {reverse_dns_lookups,true}, | |
| {tcp_listeners,[5672]}, | |
| {ssl_listeners,[5671]}, | |
| {loopback_users,[]}, | |
| {auth_mechanisms,['AMQPLAIN','PLAIN','EXTERNAL']}]}, | |
| {ssl,[{versions,['tlsv1.2']},{secure_renegotiate,true}]}]. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:47.126 [info] <0.33.0> Application lager started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:48.095 [info] <0.33.0> Application amqp10_common started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:48.097 [info] <0.33.0> Application jsx started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:48.185 [info] <0.33.0> Application inets started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:48.304 [info] <0.33.0> Application mnesia started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:48.306 [info] <0.33.0> Application crypto started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:48.313 [info] <0.33.0> Application os_mon started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:48.315 [info] <0.33.0> Application cowlib started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:48.316 [info] <0.33.0> Application recon started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:48.318 [info] <0.33.0> Application xmerl started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:48.319 [info] <0.33.0> Application asn1 started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:48.321 [info] <0.33.0> Application public_key started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:48.882 [info] <0.33.0> Application ssl started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:48.904 [info] <0.33.0> Application amqp10_client started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:48.930 [info] <0.33.0> Application ranch started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:48.933 [info] <0.33.0> Application ranch_proxy_protocol started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:48.943 [info] <0.33.0> Application cowboy started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:48.945 [info] <0.33.0> Application rabbit_common started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:48.979 [info] <0.33.0> Application amqp_client started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:49.011 [info] <0.202.0> | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | Starting RabbitMQ 3.7.5 on Erlang 20.1.7 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | Copyright (C) 2007-2018 Pivotal Software, Inc. | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | Licensed under the MPL. See http://www.rabbitmq.com/ | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | ## ## | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | ## ## RabbitMQ 3.7.5. Copyright (C) 2007-2018 Pivotal Software, Inc. | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | ########## Licensed under the MPL. See http://www.rabbitmq.com/ | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | ###### ## | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | ########## Logs: <stdout> | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | Starting broker... | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:49.025 [info] <0.202.0> | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | node : rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | home dir : /var/lib/rabbitmq | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | config file(s) : /rabbit/advanced.config | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | : /rabbit/rabbitmq.conf | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | cookie hash : eWs2W0xgGYJOOH/JOipttQ== | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | log(s) : <stdout> | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | database dir : /var/lib/rabbitmq/mnesia/rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:52.750 [info] <0.221.0> Memory high watermark set to 792 MiB (830570496 bytes) of 1980 MiB (2076426240 bytes) total | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:52.755 [info] <0.223.0> Enabling free disk space monitoring | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:52.755 [info] <0.223.0> Disk free limit set to 50MB | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:52.758 [info] <0.225.0> Limiting to approx 1048476 file handles (943626 sockets) | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:52.758 [info] <0.226.0> FHC read buffering: OFF | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:52.758 [info] <0.226.0> FHC write buffering: ON | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:52.759 [info] <0.202.0> Node database directory at /var/lib/rabbitmq/mnesia/rabbit@rabbit is empty. Assuming we need to join an existing cluster or initialise from scratch... | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:52.759 [info] <0.202.0> Configured peer discovery backend: rabbit_peer_discovery_classic_config | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:52.759 [info] <0.202.0> Will try to lock with peer discovery backend rabbit_peer_discovery_classic_config | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:52.759 [info] <0.202.0> Peer discovery backend does not support locking, falling back to randomized delay | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:52.759 [info] <0.202.0> Peer discovery backend rabbit_peer_discovery_classic_config does not support registration, skipping randomized startup delay. | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:52.759 [info] <0.202.0> All discovered existing cluster peers: | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:52.759 [info] <0.202.0> Discovered no peer nodes to cluster with | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:52.762 [info] <0.33.0> Application mnesia exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:52.840 [info] <0.33.0> Application mnesia started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:53.095 [info] <0.202.0> Waiting for Mnesia tables for 30000 ms, 9 retries left | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:53.200 [info] <0.202.0> Waiting for Mnesia tables for 30000 ms, 9 retries left | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:53.299 [info] <0.202.0> Waiting for Mnesia tables for 30000 ms, 9 retries left | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:53.301 [info] <0.202.0> Peer discovery backend rabbit_peer_discovery_classic_config does not support registration, skipping registration. | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:53.303 [info] <0.202.0> Priority queues enabled, real BQ is rabbit_variable_queue | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:53.347 [info] <0.394.0> Starting rabbit_node_monitor | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:53.405 [info] <0.202.0> message_store upgrades: 1 to apply | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:53.407 [info] <0.202.0> message_store upgrades: Applying rabbit_variable_queue:move_messages_to_vhost_store | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:53.409 [info] <0.202.0> message_store upgrades: No durable queues found. Skipping message store migration | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:53.409 [info] <0.202.0> message_store upgrades: Removing the old message store data | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:53.433 [info] <0.202.0> message_store upgrades: All upgrades applied successfully | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:53.520 [info] <0.202.0> Management plugin: using rates mode 'basic' | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:53.556 [info] <0.202.0> Applying definitions from: /rabbit/definitions.json | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:53.851 [info] <0.452.0> Making sure data directory '/var/lib/rabbitmq/mnesia/rabbit@rabbit/msg_stores/vhosts/628WB79CIFDYO9LJI6DKMI09L' for vhost '/' exists | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:53.959 [info] <0.452.0> Starting message stores for vhost '/' | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:53.960 [info] <0.456.0> Message store "628WB79CIFDYO9LJI6DKMI09L/msg_store_transient": using rabbit_msg_store_ets_index to provide index | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:53.963 [info] <0.452.0> Started message store of type transient for vhost '/' | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:53.965 [info] <0.459.0> Message store "628WB79CIFDYO9LJI6DKMI09L/msg_store_persistent": using rabbit_msg_store_ets_index to provide index | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:53.966 [warning] <0.459.0> Message store "628WB79CIFDYO9LJI6DKMI09L/msg_store_persistent": rebuilding indices from scratch | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:53.969 [info] <0.452.0> Started message store of type persistent for vhost '/' | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.076 [info] <0.504.0> started TCP Listener on [::]:5672 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.077 [info] <0.520.0> started SSL Listener on [::]:5671 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.085 [info] <0.202.0> Setting up a table for connection tracking on this node: tracked_connection_on_node_rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.092 [info] <0.202.0> Setting up a table for per-vhost connection counting on this node: tracked_connection_per_vhost_on_node_rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.092 [info] <0.33.0> Application rabbit started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.092 [info] <0.33.0> Application rabbitmq_web_dispatch started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.093 [info] <0.33.0> Application rabbitmq_shovel started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.093 [info] <0.33.0> Application rabbitmq_auth_mechanism_ssl started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.100 [info] <0.33.0> Application rabbitmq_management_agent started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.211 [info] <0.590.0> Management plugin started. Port: 15672 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.211 [info] <0.697.0> Statistics database started. | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.212 [info] <0.33.0> Application rabbitmq_management started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.212 [info] <0.33.0> Application rabbitmq_amqp1_0 started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.212 [info] <0.33.0> Application rabbitmq_shovel_management started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.213 [info] <0.711.0> MQTT retained message store: rabbit_mqtt_retained_msg_store_dets | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.216 [info] <0.729.0> started MQTT TCP Listener on [::]:8885 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.216 [info] <0.736.0> started MQTT SSL Listener on [::]:8886 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.217 [info] <0.33.0> Application rabbitmq_mqtt started on node rabbit@rabbit | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.218 [info] <0.739.0> rabbit_web_mqtt: listening for HTTP connections on 0.0.0.0:15675 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.219 [error] <0.755.0> Failed to start Ranch listener web_mqtt_secure in ranch_ssl:listen([{ip,{0,0,0,0}},{port,15676}]) for reason no_cert (no certificate provided; see cert, certfile, sni_fun or sni_hosts options) | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.219 [error] <0.755.0> CRASH REPORT Process <0.755.0> with 0 neighbours exited with reason: {listen_error,web_mqtt_secure,no_cert} in ranch_acceptors_sup:listen_error/4 line 59 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.219 [error] <0.753.0> Supervisor {<0.753.0>,ranch_listener_sup} had child ranch_acceptors_sup started with ranch_acceptors_sup:start_link(web_mqtt_secure, 1, ranch_ssl, [{connection_type,supervisor},{ip,{0,0,0,0}},{port,15676}]) at undefined exit with reason {listen_error,web_mqtt_secure,no_cert} in context start_error | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.219 [error] <0.738.0> CRASH REPORT Process <0.738.0> with 0 neighbours exited with reason: no match of right hand value {error,no_cert} in rabbit_web_mqtt_app:mqtt_init/0 line 73 in application_master:init/4 line 134 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.220 [info] <0.33.0> Application rabbitmq_web_mqtt exited with reason: no match of right hand value {error,no_cert} in rabbit_web_mqtt_app:mqtt_init/0 line 73 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.220 [info] <0.736.0> stopped MQTT SSL Listener on [::]:8886 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.220 [info] <0.729.0> stopped MQTT TCP Listener on [::]:8885 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.224 [info] <0.33.0> Application rabbitmq_mqtt exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.224 [info] <0.33.0> Application rabbitmq_shovel_management exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.224 [info] <0.33.0> Application rabbitmq_amqp1_0 exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.281 [info] <0.33.0> Application rabbitmq_management exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.285 [info] <0.33.0> Application rabbitmq_management_agent exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.287 [info] <0.33.0> Application rabbitmq_auth_mechanism_ssl exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.288 [info] <0.33.0> Application rabbitmq_shovel exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.289 [info] <0.33.0> Application rabbitmq_web_dispatch exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.289 [info] <0.202.0> Peer discovery backend rabbit_peer_discovery_classic_config does not support registration, skipping unregistration. | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.290 [info] <0.520.0> stopped SSL Listener on [::]:5671 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.295 [info] <0.504.0> stopped TCP Listener on [::]:5672 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.296 [info] <0.386.0> Closing all connections in vhost '/' on node 'rabbit@rabbit' because the vhost is stopping | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.296 [info] <0.459.0> Stopping message store for directory '/var/lib/rabbitmq/mnesia/rabbit@rabbit/msg_stores/vhosts/628WB79CIFDYO9LJI6DKMI09L/msg_store_persistent' | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.315 [info] <0.459.0> Message store for directory '/var/lib/rabbitmq/mnesia/rabbit@rabbit/msg_stores/vhosts/628WB79CIFDYO9LJI6DKMI09L/msg_store_persistent' is stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.315 [info] <0.456.0> Stopping message store for directory '/var/lib/rabbitmq/mnesia/rabbit@rabbit/msg_stores/vhosts/628WB79CIFDYO9LJI6DKMI09L/msg_store_transient' | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.324 [info] <0.456.0> Message store for directory '/var/lib/rabbitmq/mnesia/rabbit@rabbit/msg_stores/vhosts/628WB79CIFDYO9LJI6DKMI09L/msg_store_transient' is stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.330 [info] <0.33.0> Application rabbit exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.342 [info] <0.33.0> Application amqp_client exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.342 [info] <0.33.0> Application rabbit_common exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.343 [info] <0.33.0> Application cowboy exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.343 [info] <0.33.0> Application ranch_proxy_protocol exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.344 [info] <0.33.0> Application ranch exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.351 [info] <0.33.0> Application amqp10_client exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.352 [info] <0.33.0> Application ssl exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.352 [info] <0.33.0> Application public_key exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.352 [info] <0.33.0> Application asn1 exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.352 [info] <0.33.0> Application xmerl exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.352 [info] <0.33.0> Application recon exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.352 [info] <0.33.0> Application cowlib exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.381 [info] <0.33.0> Application os_mon exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.381 [info] <0.33.0> Application crypto exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.454 [info] <0.33.0> Application mnesia exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | BOOT FAILED | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | =========== | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | Error description: | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | init:do_boot/3 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | init:start_em/1 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | rabbit:start_it/1 line 446 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | rabbit:broker_start/0 line 322 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | rabbit:start_apps/2 line 542 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | app_utils:manage_applications/6 line 126 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | lists:foldl/3 line 1263 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | rabbit:'-handle_app_error/1-fun-0-'/3 line 638 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | throw:{could_not_start,rabbitmq_web_mqtt, | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | {rabbitmq_web_mqtt, | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | {bad_return, | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | {{rabbit_web_mqtt_app,start,[normal,[]]}, | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | {'EXIT', | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | {{badmatch,{error,no_cert}}, | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | [{rabbit_web_mqtt_app,mqtt_init,0, | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | [{file,"src/rabbit_web_mqtt_app.erl"},{line,73}]}, | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | {rabbit_web_mqtt_app,start,2, | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | [{file,"src/rabbit_web_mqtt_app.erl"},{line,31}]}, | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | {application_master,start_it_old,4, | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | [{file,"application_master.erl"}, | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | {line,273}]}]}}}}}} | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | Log file(s) (may contain more information): | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | <stdout> | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.461 [info] <0.33.0> Application inets exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.461 [info] <0.33.0> Application jsx exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.461 [info] <0.33.0> Application amqp10_common exited with reason: stopped | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | 2018-06-09 19:21:54.461 [error] <0.5.0> | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | Error description: | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | init:do_boot/3 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | init:start_em/1 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | rabbit:start_it/1 line 446 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | rabbit:broker_start/0 line 322 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | rabbit:start_apps/2 line 542 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | app_utils:manage_applications/6 line 126 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | lists:foldl/3 line 1263 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | rabbit:'-handle_app_error/1-fun-0-'/3 line 638 | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | throw:{could_not_start,rabbitmq_web_mqtt, | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | {rabbitmq_web_mqtt, | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | {bad_return, | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | {{rabbit_web_mqtt_app,start,[normal,[]]}, | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | {'EXIT', | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | {{badmatch,{error,no_cert}}, | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | [{rabbit_web_mqtt_app,mqtt_init,0, | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | [{file,"src/rabbit_web_mqtt_app.erl"},{line,73}]}, | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | {rabbit_web_mqtt_app,start,2, | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | [{file,"src/rabbit_web_mqtt_app.erl"},{line,31}]}, | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | {application_master,start_it_old,4, | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | [{file,"application_master.erl"}, | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | {line,273}]}]}}}}}} | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | Log file(s) (may contain more information): | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | <stdout> | |
| my-node.1.99fzqaucpkwn@linuxkit-00155d3ad111 | {"init terminating in do_boot",{could_not_start,rabbitmq_web_mqtt,{rabbitmq_web_mqtt,{bad_return,{{rabbit_web_mqtt_app,start,[normal,[]]},{'EXIT',{{badmatch,{error,no_cert}},[{rabbit_web_mqtt_app,mqtt_init,0,[{file,"src/rabbit_web_mqtt_app.erl"},{line,73}]},{rabbit_web_mqtt_app,start,2,[{file,"src/rabbit_web_mqtt_app.erl"},{line,31}]},{application_master,start_it_old,4,[{file,"application_master.erl"},{line,273}]}]}}}}}}} |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ## | |
| ## Networking | |
| ## ==================== | |
| ## | |
| ## Listen on all interfaces on the standard (reserved) AMQP 0-9-1 and 1.0 port | |
| listeners.tcp.default = 5672 | |
| ## Listen on all interfaces for TLS connections | |
| listeners.ssl.default = 5671 | |
| ## Perform reverse DNS lookups when accepting a connection, so hostnames will then | |
| ## be shown instead of IP addresses in rabbitmqctl and the management plugin | |
| reverse_dns_lookups = true | |
| ## | |
| ## Security, Access Control | |
| ## ============== | |
| ## | |
| ## Allow the default "guest" user to access the server from anywhere on the network | |
| loopback_users.guest = false | |
| ## TLS configuration - configure the server certificate, and require clients to | |
| ## provide a certificate | |
| ssl_options.verify = verify_peer | |
| ssl_options.fail_if_no_peer_cert = true | |
| ssl_options.depth = 2 | |
| ssl_options.secure_renegotiate = true | |
| ssl_options.cacertfile = /usr/local/share/cacert.pem | |
| ssl_options.certfile = /usr/local/share/cert.pem | |
| ssl_options.keyfile = /run/secrets/key.pem | |
| # Only permit TLS 1.2 | |
| ssl_options.versions.1 = tlsv1.2 | |
| # Enforce server-provided cipher suite order | |
| ssl_options.honor_cipher_order = true | |
| ssl_options.honor_ecc_order = true | |
| ## Authenticate users based on the client's x509 (TLS) certificate, while leaving | |
| ## password authentication enabled for access to the management interface | |
| auth_mechanisms.3 = EXTERNAL | |
| auth_mechanisms.1 = PLAIN | |
| auth_mechanisms.2 = AMQPLAIN | |
| ## Use the TLS cert's CN instead of its DN as the username | |
| ssl_cert_login_from = common_name | |
| ## MQTT | |
| mqtt.allow_anonymous = false | |
| mqtt.vhost = / | |
| mqtt.exchange = test | |
| mqtt.ssl_cert_login = true | |
| mqtt.listeners.ssl.default = 8886 | |
| mqtt.listeners.tcp.default = 8885 | |
| mqtt.tcp_listen_options.backlog = 128 | |
| mqtt.tcp_listen_options.nodelay = true | |
| ## MQTT over websockets | |
| web_mqtt.tcp.listener = 0.0.0.0:15675 | |
| web_mqtt.ssl.listener = 0.0.0.0:15676 | |
| web_mqtt.ssl.backlog = 1024 | |
| # BUG?: RabbitMQ doesn't seem to use these settings | |
| # https://groups.google.com/forum/#!topic/rabbitmq-users/PFUk_B9Qj98 | |
| web_mqtt.ssl.cacertfile = /usr/local/share/cacert.pem | |
| web_mqtt.ssl.certfile = /usr/local/share/cert.pem | |
| web_mqtt.ssl.keyfile = /run/secrets/key.pem | |
| management.load_definitions = /rabbit/definitions.json | |
| ## Listen on TCP port 15672, only allowing connections from localhost | |
| ## Also set the listener to use TLS and provide TLS options. | |
| management.listener.port = 15672 | |
| management.listener.ssl = true | |
| management.listener.ssl_opts.secure_renegotiate = true | |
| management.listener.ssl_opts.cacertfile = /usr/local/share/cacert.pem | |
| management.listener.ssl_opts.certfile = /usr/local/share/cert.pem | |
| management.listener.ssl_opts.keyfile = /run/secrets/key.pem | |
| # Only permit TLS 1.2 | |
| management.listener.ssl_opts.versions.1 = tlsv1.2 | |
| # Enforce server-provided cipher suite order | |
| management.listener.ssl_opts.honor_cipher_order = true | |
| ## One of 'basic', 'detailed' or 'none'. See | |
| ## http://rabbitmq.com/management.html#fine-stats for more details. | |
| management.rates_mode = basic | |
| ## Configure how long aggregated data (such as message rates and queue | |
| ## lengths) is retained | |
| management.sample_retention_policies.global.minute = 5 | |
| management.sample_retention_policies.global.hour = 60 | |
| management.sample_retention_policies.global.day = 1200 | |
| management.sample_retention_policies.basic.minute = 5 | |
| management.sample_retention_policies.basic.hour = 60 | |
| management.sample_retention_policies.detailed.10 = 5 | |
| ## | |
| ## Logging | |
| ## ===================== | |
| ## See http://rabbitmq.com/logging.html and https://github.com/erlang-lager/lager for details. | |
| ## | |
| log.console.level = info |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
does it work?