Closed KoeusIss closed 8 months ago
With more investigation the issue seems occur when verify: :verify_peer
is enabled.
GRPC.Credential.new(ssl: [cacertfile: get_certificate(), verify: :verify_peer])
Nothing occur if I switch to :verify_none
.
Just so you know, this looks like a certificate chain issue. I think that if your certificate is self-signed or signed by an unknown/untrusted authority, then :verify_peer
will error out
Describe the bug After upgrade Elixir and Erlang to the latest version connecting to a GRPC channel produce:
[notice] TLS :client: In state :wait_cert_cr at ssl_handshake.erl:2138 generated CLIENT ALERT: Fatal - Unknown CA
.To Reproduce Steps to reproduce the behavior:
Expected behavior A clear and concise description of what you expected to happen.
Logs If applicable, add logs to help explain your problem.
Protos If applicable, add protos to help explain your problem.
Versions:
Additional context Add any other context about the problem here.