On 05/28/2014 11:47 AM, Deepak wrote: > Thanks for looking in. > There are no issues with permission or path.
This is starting to look like it might be an issue for socketio or
python stdlib folks (which provides the python ssl module), not OpenSSL.
but looking a bit deeper:
> "/nobackup/drokade/Installations/c_276/3rdparty/python2.6.1/lib/python2.6/site-packages/gevent-1.0-py2.6-linux-x86_64.egg/gevent/ssl.py",
> line 87, in __init__
> cert_reqs, ssl_version, ca_certs)
> SSLError: [Errno 336265225] _ssl.c:337: error:140B0009:SSL
> routines:SSL_CTX_use_PrivateKey_file:PEM lib
> <Greenlet at 0x3585910: <bound method SocketIOServer.wrap_socket_and_handle
> of <SocketIOServer at 0x298e850 fileno=12
> address=72.163.134.157:8081>>(<socket
> at 0x35f7bd0 fileno=13 sock=72.163.134.157, ('10.65.39.87', 49851))> failed
> with SSLError
This looks like the error is happening when socketio tries to invoke
SSL_CTX_use_PrivateKey_file() (via initialization of a gevent.SSLSocket
object, which uses ssl._ssl.sslwrap() internally).
So either there actually are permission or path issues with the secret
key, or perhaps the key file is itself formatted in some odd way.
Can you try simplifying the test case by writing a simple python test
script that creates a _socket.socket, and calls ssl._ssl.sslwrap on it,
passing it the key an cert file, and running it as the user that runs
the socketio server?
--dkg
signature.asc
Description: OpenPGP digital signature
