Hi all,
I’m on a fresh install of OH 2.4 via openhabian and struggle to activate SSL with the embedded MQTT broker.
Standard port 1883 without a user and password defined works. I can connect with my MQTT Client testing app and publish things.
When I set secure SSL connection I get “Connection refused” messages and can’t connect.
This is the log output after enabling Secure connection:
2019-02-08 16:25:45.574 [hingStatusInfoChangedEvent] - 'mqtt:systemBroker:embedded-mqtt-broker' changed from ONLINE to OFFLINE
2019-02-08 16:25:45.839 [hingStatusInfoChangedEvent] - 'mqtt:systemBroker:embedded-mqtt-broker' changed from OFFLINE to OFFLINE (CONFIGURATION_ERROR): Eine andere Erweiterung hat unerwartet die Broker Verbindung entfernt.
==> /var/log/openhab2/openhab.log <==
2019-02-08 16:25:45.846 [WARN ] [ver.DefaultMoquetteSslContextCreator] - The keystore path is null or empty. The SSL context won't be initialized.
2019-02-08 16:25:45.850 [ERROR] [.moquette.server.netty.NettyAcceptor] - Can't initialize SSLHandler layer! Exiting, check your configuration of jks
2019-02-08 16:25:47.891 [WARN ] [r.internal.EmbeddedBrokerServiceImpl] - Embedded broker offline - Reason unknown
==> /var/log/openhab2/events.log <==
2019-02-08 16:25:47.900 [me.event.ThingUpdatedEvent] - Thing 'mqtt:systemBroker:embedded-mqtt-broker' has been updated.
2019-02-08 16:25:47.904 [hingStatusInfoChangedEvent] - 'mqtt:systemBroker:embedded-mqtt-broker' changed from OFFLINE (CONFIGURATION_ERROR): Eine andere Erweiterung hat unerwartet die Broker Verbindung entfernt. to OFFLINE
==> /var/log/openhab2/openhab.log <==
2019-02-08 16:25:47.912 [INFO ] [.transport.mqtt.MqttBrokerConnection] - Starting MQTT broker connection to '127.0.0.1' with clientid embedded-mqtt-broker and file store '/var/lib/openhab2/mqtt/127.0.0.1'
==> /var/log/openhab2/events.log <==
2019-02-08 16:25:47.932 [hingStatusInfoChangedEvent] - 'mqtt:systemBroker:embedded-mqtt-broker' changed from OFFLINE to OFFLINE (COMMUNICATION_ERROR): Timeout
==> /var/log/openhab2/openhab.log <==
2019-02-08 16:25:47.930 [WARN ] [r.internal.EmbeddedBrokerServiceImpl] - Embedded broker offline
org.eclipse.paho.client.mqttv3.MqttException: Unable to connect to server
at org.eclipse.paho.client.mqttv3.internal.TCPNetworkModule.start(TCPNetworkModule.java:94) ~[216:org.eclipse.paho.client.mqttv3:1.2.0]
at org.eclipse.paho.client.mqttv3.internal.SSLNetworkModule.start(SSLNetworkModule.java:103) ~[216:org.eclipse.paho.client.mqttv3:1.2.0]
at org.eclipse.paho.client.mqttv3.internal.ClientComms$ConnectBG.run(ClientComms.java:701) [216:org.eclipse.paho.client.mqttv3:1.2.0]
at java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:511) [?:?]
at java.util.concurrent.FutureTask.run(FutureTask.java:266) [?:?]
at java.util.concurrent.ScheduledThreadPoolExecutor$ScheduledFutureTask.access$201(ScheduledThreadPoolExecutor.java:180) [?:?]
at java.util.concurrent.ScheduledThreadPoolExecutor$ScheduledFutureTask.run(ScheduledThreadPoolExecutor.java:293) [?:?]
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149) [?:?]
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624) [?:?]
at java.lang.Thread.run(Thread.java:748) [?:?]
Caused by: java.net.ConnectException: Connection refused (Connection refused)
at java.net.PlainSocketImpl.socketConnect(Native Method) ~[?:?]
at java.net.AbstractPlainSocketImpl.doConnect(AbstractPlainSocketImpl.java:350) ~[?:?]
at java.net.AbstractPlainSocketImpl.connectToAddress(AbstractPlainSocketImpl.java:206) ~[?:?]
at java.net.AbstractPlainSocketImpl.connect(AbstractPlainSocketImpl.java:188) ~[?:?]
at java.net.SocksSocketImpl.connect(SocksSocketImpl.java:392) ~[?:?]
at java.net.Socket.connect(Socket.java:589) ~[?:?]
at org.eclipse.paho.client.mqttv3.internal.TCPNetworkModule.start(TCPNetworkModule.java:80) ~[?:?]
... 9 more
Is there anything else I would have to do to use SSL? Client is in the same network so i can’t be a problem with my router (opening ports etc.).
Documetation doesn’t mention anything…
thx,
stefan