Let’s Encrypt certificates for TURNS are rejected

element-hq / element-ios

A glossy Matrix collaboration client for iOS

https://element.io

Apache License 2.0

1.72k stars 479 forks source link

Let’s Encrypt certificates for TURNS are rejected #2712

Open 532910 opened 4 years ago

532910 commented 4 years ago

TURNS doesn't work.

With turn_uris: [ "turns:domain.tld:5349?transport=udp", "turns:domain.tld:5349?transport=tcp" ] or turn_uris: [ "turns:domain.tld:3478?transport=udp", "turns:domain.tld:3478?transport=tcp" ]

turnserver reports an error: session closed ... reason: TLS/TCP socket buffer operation error (callback)

riot-web works fine, testssl.sh domain.tld:5349 and testssl.sh domain.tld:3478 also shows no errors.

verymilan commented 3 years ago

i would like to +1 this. it is related to https://github.com/vector-im/element-android/issues/1533 and https://github.com/vector-im/riot-android/issues/3299

Dabada commented 3 years ago

May be this helps : I'v used a fullchain certificate instead of a single one, no more socket error ! I'm using the same fullchain certificate on my reverse proxy. Certificate are generate by Let's Encrypt.

ketan-vijayvargiya commented 2 weeks ago

I think this issue is now resolved. See more details here.