retropc
commented
2 years ago I would suggest using nginx or haproxy to provide the TLS
Closed etoburpanda closed 2 years ago
retropc
commented
2 years ago I would suggest using nginx or haproxy to provide the TLS
I created the certificate and wrote the necessary places for the file creation, but it gives an error while running.
When I try to connect normally with SSL, it reaches the site. It is hosted on the same IP and has SSL on the irc login
File "./run.py", line 20, in run_twistd run() File "/usr/lib64/python2.7/site-packages/Twisted-14.0.0-py2.7-linux-x86_64.egg/twisted/scripts/twistd.py", line 27, in run app.run(runApp, ServerOptions) File "/usr/lib64/python2.7/site-packages/Twisted-14.0.0-py2.7-linux-x86_64.egg/twisted/application/app.py", line 642, in run runApp(config) File "/usr/lib64/python2.7/site-packages/Twisted-14.0.0-py2.7-linux-x86_64.egg/twisted/scripts/twistd.py", line 23, in runApp _SomeApplicationRunner(config).run() File "/usr/lib64/python2.7/site-packages/Twisted-14.0.0-py2.7-linux-x86_64.egg/twisted/application/app.py", line 376, in run self.application = self.createOrGetApplication() File "/usr/lib64/python2.7/site-packages/Twisted-14.0.0-py2.7-linux-x86_64.egg/twisted/application/app.py", line 436, in createOrGetApplication ser = plg.makeService(self.config.subOptions) File "/home//qwebirc-chat/twisted/plugins/webirc.py", line 49, in makeService i = internet.SSLServer(int(config['https']), site, ssl_factory(config['privkey'], config['certificate'], certificateChainFile=config["certificate-chain"]), interface=config['ip']) File "/home//qwebirc-chat/twisted/plugins/webirc.py", line 64, in init DefaultOpenSSLContextFactory.init(self, *args, *kwargs) File "/usr/lib64/python2.7/site-packages/Twisted-14.0.0-py2.7-linux-x86_64.egg/twisted/internet/ssl.py", line 104, in init self.cacheContext() File "/home//qwebirc-chat/twisted/plugins/webirc.py", line 67, in cacheContext DefaultOpenSSLContextFactory.cacheContext(self) File "/usr/lib64/python2.7/site-packages/Twisted-14.0.0-py2.7-linux-x86_64.egg/twisted/internet/ssl.py", line 113, in cacheContext ctx.use_certificate_file(self.certificateFileName) OpenSSL.SSL.Error: [('PEM routines', 'PEM_read_bio', 'no start line'), ('SSL routines', 'SSL_CTX_use_certificate_file', 'PEM lib')]