Self sign-up has been disabled due to increased spam activity. If you want to get access, please send an email to a project owner (preferred) or at gitlab(at)nic(dot)cz. We apologize for the inconvenience.
From OpenWrt 21.02 on, mosquitto runs under it's own user (mosquitto), but CA files are created by foris-controller with owner root.
Mosquitto fails with following error:
Error: Unable to load server key file "/etc/ssl/ca/remote/01.key". Check keyfile.Which in turn breaks other services using mosquitto as message bus.
For example: foris-controller & reforis
This oneshot fix should set correct file permissions in case there already is remote access CA on the router.
Foris-controller should handle permissions for new CA created from scratch.