Hello,
I'm using the example /send/ and /recv/ programs included with the API for a
proof-of-concept brokerless exchange of SSL certificates. I am able to send
a message between the two example programs without using SSL, although I am
unable to do so using SSL self-signed certificates. I've modified the
messenger objects in the /send/ and /recv/ programs to include the path to
the private key, certificate file, and the password of the private key. The
pn_messenger_subscribe call is currently returning an error of "invalid
credentials" when I try to run the /recv/ program using these settings:
pn_messenger_set_certificate(messenger, "/path/to/certA.pem");
pn_messenger_set_private_key(messenger, "/path/to/privKeyB.pem");
pn_messenger_set_password(messenger, "test123");
pn_messenger_subscribe(messenger, "amqps://~0.0.0.0:5671/test");
I have generated two sets of keys and certificates using OpenSSL. "certA" is
signed using "privKeyA", "certB" using "privKeyB". I am then giving "certA"
and "privKeyB" to client 1 and "certB" and "privKeyA" to client 2. Is this
correct? Would anyone know what might be causing me to get the "invalid
credentials" error?
Thank you in advance for your help,
Dylan
--
View this message in context:
http://qpid.2158936.n2.nabble.com/Using-the-Proton-Messenger-example-programs-with-SSL-tp7627295.html
Sent from the Apache Qpid Proton mailing list archive at Nabble.com.
