[graylog2] SSLException when HTTPS support for the REST API is enabled

Thu, 03 Sep 2015 04:15:07 -0700 

Hello,

  I have enabled https support for the REST API. The private key used is 
RSA. When i try to connect to https://graylog-server/api-browser or the web 
interface is started  i get the following error:

2015-09-03T12:04:09.167+01:00 WARN  [AbstractNioSelector] Failed to 
initialize an accepted socket.
javax.net.ssl.SSLException: failed to initialize the server-side SSL context
        at 
org.jboss.netty.handler.ssl.JdkSslServerContext.<init>(JdkSslServerContext.java:183)
        at 
org.jboss.netty.handler.ssl.SslContext.newServerContext(SslContext.java:194)
        at 
org.jboss.netty.handler.ssl.SslContext.newServerContext(SslContext.java:99)
        at 
org.graylog2.shared.initializers.RestApiService$1.buildSslHandler(RestApiService.java:241)
        at 
org.graylog2.shared.initializers.RestApiService$1.getPipeline(RestApiService.java:228)
        at 
org.jboss.netty.channel.socket.nio.NioServerBoss.registerAcceptedChannel(NioServerBoss.java:134)
        at 
org.jboss.netty.channel.socket.nio.NioServerBoss.process(NioServerBoss.java:104)
        at 
org.jboss.netty.channel.socket.nio.AbstractNioSelector.run(AbstractNioSelector.java:337)
        at 
org.jboss.netty.channel.socket.nio.NioServerBoss.run(NioServerBoss.java:42)
        at 
org.jboss.netty.util.ThreadRenamingRunnable.run(ThreadRenamingRunnable.java:108)
        at 
org.jboss.netty.util.internal.DeadLockProofWorker$1.run(DeadLockProofWorker.java:42)
        at 
com.codahale.metrics.InstrumentedExecutorService$InstrumentedRunnable.run(InstrumentedExecutorService.java:176)
        at 
java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
        at 
java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
        at java.lang.Thread.run(Thread.java:745)
Caused by: java.security.spec.InvalidKeySpecException: Inappropriate key 
specification: IOException : algid parse error, not a sequence
        at 
sun.security.provider.DSAKeyFactory.engineGeneratePrivate(DSAKeyFactory.java:154)
        at java.security.KeyFactory.generatePrivate(KeyFactory.java:372)
        at 
org.jboss.netty.handler.ssl.JdkSslServerContext.<init>(JdkSslServerContext.java:157)
        ... 14 more

   I have used the following configuration options:
rest_listen_uri = https://graylog-server/2900/

rest_transport_uri = https://graylog-server:12900/

rest_enable_tls = true

rest_tls_cert_file = /etc/pki/tls/certs/graylog-server..crt

rest_tls_key_file = /etc/pki/tls/private/graylog-server.key

   The version of graylog is 1.1.6.

   I would appreciate any ideas.

   Thank you.

-- 
You received this message because you are subscribed to the Google Groups 
"Graylog Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to [email protected].
To view this discussion on the web visit 
https://groups.google.com/d/msgid/graylog2/53cd02f3-40ce-45a6-bc43-69dc497e3908%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

Reply via email to