mqttnet可以支持sha256ecdsa（ECC 521位）加密tls？

发布于 2025-01-30 09:29:07 字数 1208 浏览 3 评论 0原文

我正在使用MQTTNET与TLS

我们使用Mosquitto经纪人，并将为客户提供CA.CRT文件来连接我们的

经纪人

public async Task MqttConnect()
    {
        client = mqttFactory.CreateMqttClient();

        var tlsOptions = new MqttClientOptionsBuilderTlsParameters
        {
            UseTls = true,
            SslProtocol = System.Security.Authentication.SslProtocols.Tls12,
            Certificates = new List<X509Certificate>
            {
                new X509Certificate2(Path.Combine(AppDomain.CurrentDomain.BaseDirectory, @"ca.crt"))
            }
            ,
            AllowUntrustedCertificates =true,
            IgnoreCertificateChainErrors =true,
            IgnoreCertificateRevocationErrors = true
        };

        var options = new MqttClientOptionsBuilder()
                .WithTcpServer(MqttIP, Int16.Parse(Mqttport))
                            .WithClientId("Client")
                            .WithCredentials(UserID, UserPW)
                            .WithTls(tlsOptions)
                            .Build();

        await client.ConnectAsync(options);

经纪公司说，。

在客户端上共享密码插座错误，断开连接。

MQTTNET不支持TLS Crypto ECDSA ECC 521bits吗？还是我添加其他代码？

原文

I am using MQTTnet to connect MQTT broker with TLS

Broker's company said we use mosquitto broker and will provide client with ca.crt file to connect our broker

So we use only ca.crt(CA certificate) file to connect broker

public async Task MqttConnect()
    {
        client = mqttFactory.CreateMqttClient();

        var tlsOptions = new MqttClientOptionsBuilderTlsParameters
        {
            UseTls = true,
            SslProtocol = System.Security.Authentication.SslProtocols.Tls12,
            Certificates = new List<X509Certificate>
            {
                new X509Certificate2(Path.Combine(AppDomain.CurrentDomain.BaseDirectory, @"ca.crt"))
            }
            ,
            AllowUntrustedCertificates =true,
            IgnoreCertificateChainErrors =true,
            IgnoreCertificateRevocationErrors = true
        };

        var options = new MqttClientOptionsBuilder()
                .WithTcpServer(MqttIP, Int16.Parse(Mqttport))
                            .WithClientId("Client")
                            .WithCredentials(UserID, UserPW)
                            .WithTls(tlsOptions)
                            .Build();

        await client.ConnectAsync(options);

This code can connect test.mosquitto.org with test.mosquitto.crt TLS(RSA 2048bits) file

But can't connect Broker Company's mosquitto with TLS(ECDSA ECC 521 Bits)

Error : OpenSSL Error[0]: error:1417A0C1:SSL routines:tls_post_process_client_hello:no shared cipher Socket error on client , disconnecting.

Does MQTTnet not support TLS crypto ECDSA ECC 521bits?
or Do I add some other code?

分享到QQ

分享到微博