Hey Maxim,
I’ve created the self-signed certificate, this is working fine in apache and the install process (HTTPS) but fails on RTMPS only. All I get from my logs is the following: [WARN] [NioProcessor-19] org.red5.server.net.rtmps.RTMPSMinaIoHandler - Exception caught Connection reset by peer [WARN] [NioProcessor-19] org.red5.server.net.rtmps.RTMPSMinaIoHandler - Exception caught Broken pipe [WARN] [NioProcessor-19] org.red5.server.net.rtmps.RTMPSMinaIoHandler - Exception caught null And [WARN] [Red5_Scheduler_Worker-4] org.red5.server.net.rtmp.RTMPConnection - Closing RTMPMinaConnection from 10.17.23.28 : 51487 to null (in: 319 out 639 ), with id 3 due to long handshake Just to check I put the authorised cert back in and it connects fine, I’ll keep on trying to see what’s going wrong, not much from the logs etc.. unfortunately. Cheers From: Maxim Solodovnik [mailto:solomax...@gmail.com] Sent: Wednesday, 16 May 2012 9:38 AM To: openmeetings-user@incubator.apache.org Subject: Re: RTMPS question Thanks Stephen, I did use these steps to create certificates (the option with root certificate): http://www.tc.umn.edu/~brams006/selfsign.html http://www.tc.umn.edu/~brams006/selfsign_ubuntu.html and these 2 commands to convert server certificate to the keystore: openssl pkcs12 -export -out certificate.pfx -inkey server.key -in server.crt -certfile ca.crt keytool -importkeystore -deststorepass secret -destkeypass secret -destkeystore keystore -destalias red5 -srckeystore certificate.pfx -srcstoretype PKCS12 -srcstorepass password -srcalias 1 not sure if it helps, since it not completely working. p.s. the certificate generated works well for Apache web server. On Wed, May 16, 2012 at 3:29 PM, Stephen Cottham <stephen.cott...@robertbird.com.au> wrote: Hi Maxim, I have SSL running fine with a legit certificate, at some point today I can create a self-signed and test this for you. Best Regards From: Maxim Solodovnik [mailto:solomax...@gmail.com] Sent: Wednesday, 16 May 2012 9:24 AM To: openmeetings-user@incubator.apache.org Subject: Fwd: RTMPS question Dear All, Is there anybody was able to set up RTMPS with self-signed certificate? Or maybe have clue for the issue described below? Thanks in advance :) Stephen Cottham Group IT Manager (Associate) Robert Bird Group Level 5, 333 Ann St Brisbane, Queensland, 4000, Australia Phone: +6173 319 2777 (AUS) Phone: +44207 592 8000 (UK) Fax: +6173 319 2799 Mobile: +61400 756 963 (AUS) Mobile: +447900 918 616 (UK) Web: www.robertbird.com This email and any attachments are confidential and may contain legally privileged information or copyright material. Unless expressly stated, confidentiality and/or legal privilege is not intended to be waived by the sending of this email. The contents of this email, including any attachments, are intended solely for the use of the individual or entity to whom they are addressed. If you are not an intended recipient, please contact us immediately by return email and then delete both messages. You may not otherwise read, forward, copy, use or disclose this email or any attachments. Any views expressed in this email are those of the individual sender except where the sender expressly, and with authority, states otherwise. It is your responsibility to check any attachments for viruses or defects before opening or sending them on. None of the sender or its related entities accepts any liability for any consequential damage resulting from this email containing computer viruses. Disclaimer added by CodeTwo Exchange Rules http://www.codetwo.com ---------- Forwarded message ---------- From: seba.wag...@gmail.com <seba.wag...@gmail.com> Date: Wed, May 16, 2012 at 3:09 PM Subject: Re: RTMPS question To: Maxim Solodovnik <solomax...@gmail.com> Cc: openmeetings-...@incubator.apache.org I have no SSL test environment currently. I did not run into this issue. I did only find the corresponding code that throws your issue in the red5 sources: http://code.google.com/p/red5/source/browse/java/server/trunk/src/org/red5/server/net/rtmp/codec/RTMPProtocolDecoder.java#212 However there is no advice in the source how to resolve it. Maybe some other users have an idea that successfully run OpenMeetings via SSL, for example the people asking for the RTMPSClient feature in the Screensharing. Sebastian 2012/5/16 Maxim Solodovnik <solomax...@gmail.com> Hello Sebastian, I'm currently trying to setup and test RTMPS for Screen sharing. I perform all steps from instruction But still unable to get RTMPS working Here is extended log: [DEBUG] [NioProcessor-18] org.apache.mina.filter.ssl.SslHandler - Session Server[1](ssl...) processing the FINISHED state [DEBUG] [NioProcessor-18] org.apache.mina.filter.ssl.SslHandler - Session Server[1](SSL) is now secured [DEBUG] [NioProcessor-18] org.apache.mina.filter.ssl.SslHandler - Session Server[1](SSL) processing the FINISHED state [DEBUG] [NioProcessor-18] org.apache.mina.filter.ssl.SslHandler - Session Server[1](SSL) is now secured [DEBUG] [NioProcessor-18] org.apache.mina.filter.ssl.SslFilter - Session Server[1](SSL): Processing the SSL Data [DEBUG] [NioProcessor-18] org.apache.mina.filter.ssl.SslFilter - Session Server[1](SSL): Message received : HeapBuffer[pos=0 lim=213 cap=1024: 17 03 01 00 D0 67 A1 06 4E 8C EB EB 42 D8 D7 A2...] [DEBUG] [NioProcessor-18] org.apache.mina.filter.ssl.SslHandler - Session Server[1](SSL) Processing the received message [DEBUG] [NioProcessor-18] org.apache.mina.filter.ssl.SslFilter - Session Server[1](SSL): Processing the SSL Data [DEBUG] [NioProcessor-18] org.apache.mina.filter.codec.ProtocolCodecFilter - Processing a MESSAGE_RECEIVED for session 1 [DEBUG] [NioProcessor-18] org.red5.server.net.rtmp.codec.RTMPProtocolDecoder - Start: 0 [DEBUG] [NioProcessor-18] org.red5.server.net.rtmp.codec.RTMPProtocolDecoder - decodeHandshake - rtmp: RTMP [state=connect, client-mode=false, debug=false, encrypted=false, lastReadChannel=0, lastWriteChannel=0, readHeaders={}, writeHeaders={}, readPacketHeaders={}, readPackets={}, writePackets={}, writeTimestamps={}, liveTimestamps={}, readChunkSize=128, writeChunkSize=128, encoding=AMF0] buffer: HeapBuffer[pos=0 lim=183 cap=1536: 50 4F 53 54 20 2F 6F 70 65 6E 2F 31 20 48 54 54...] [DEBUG] [NioProcessor-18] org.red5.server.net.rtmp.codec.RTMPProtocolDecoder - Handshake init too small, buffering. remaining: 183 [WARN] [Red5_Scheduler_Worker-2] org.red5.server.net.rtmp.RTMPConnection - Closing RTMPMinaConnection from 192.168.72.100 : 64634 to null (in: 931 out 3083 ), with id 1 due to long handshake As you can see SSL is secured (no issues) but then I got: "Handshake init too small, buffering. remaining: 183" and "Closing RTMPMinaConnection from 192.168.72.100 : 64634 to null (in: 931 out 3083 ), with id 1 due to long handshake" I'm using self-signed certificate with fake CA (added both to the server and client) client debug is: "devRtmpConnection/registerMethods() error NetConnection.Connect.Failed rtmps://192.168.72.105:5443/openmeetings/hibernate null false " Can you help me with it? -- WBR Maxim aka solomax -- Sebastian Wagner https://twitter.com/#!/dead_lock <https://twitter.com/#%21/dead_lock> http://www.openmeetings.de <http://www.openmeetings.de> http://www.webbase-design.de <http://www.webbase-design.de> http://www.wagner-sebastian.com <http://www.wagner-sebastian.com> seba.wag...@gmail.com <mailto:seba.wag...@gmail.com> -- WBR Maxim aka solomax Stephen Cottham Group IT Manager (Associate) Robert Bird Group Level 5, 333 Ann St Brisbane, Queensland, 4000, Australia Phone: +6173 319 2777 (AUS) Phone: +44207 592 8000 (UK) Fax: +6173 319 2799 Mobile: +61400 756 963 (AUS) Mobile: +447900 918 616 (UK) Web: www.robertbird.com <http://www.robertbird.com/> <http://www.robertbird.com.au/> This email and any attachments are confidential and may contain legally privileged information or copyright material. Unless expressly stated, confidentiality and/or legal privilege is not intended to be waived by the sending of this email. The contents of this email, including any attachments, are intended solely for the use of the individual or entity to whom they are addressed. If you are not an intended recipient, please contact us immediately by return email and then delete both messages. You may not otherwise read, forward, copy, use or disclose this email or any attachments. Any views expressed in this email are those of the individual sender except where the sender expressly, and with authority, states otherwise. It is your responsibility to check any attachments for viruses or defects before opening or sending them on. None of the sender or its related entities accepts any liability for any consequential damage resulting from this email containing computer viruses. Disclaimer added by CodeTwo Exchange Rules www.codetwo.com -- WBR Maxim aka solomax
<<image002.png>>
<<image003.png>>
