[Users] Engine-setup problem (SSL)

Itamar Heim iheim at redhat.com
Sat Jan 21 04:32:31 UTC 2012 

On 01/21/2012 02:39 AM, justin potts wrote:
> Here is the engine-setup log: http://fpaste.org/J70b/
>
>
> 2012-01-20 19:33:43::DEBUG::common_utils::219::root:: Executing
> command -->  '/etc/pki/ovirt-engine/installCA.sh ovirt.grims.com US
> gimrsovirt engine ******** 120119193343+0500 /etc/pki/ovirt-engine
> ovirt.grims.com.83876'
> 2012-01-20 19:33:45::DEBUG::common_utils::226::root:: output =
> } Creating CA...
>
> } Creating KeyStore...
>
> }} Converting formats...
>
>> Importing CA certificate...
>
> } Creating client certificate for oVirt...
>
> }} Creating certificate request...
>
> }} Signing certificate request...
>
> 2012-01-20 19:33:45::DEBUG::common_utils::227::root:: stderr =
> Generating RSA private key, 1024 bit long modulus
> ....................++++++
> ......................................++++++
> e is 65537 (0x10001)
> Using configuration from openssl.conf
> Check that the request matches the signature
> Signature ok
> The Subject's Distinguished Name is as follows
> countryName           :PRINTABLE:'US'
> organizationName      :PRINTABLE:'gimrsovirt'
> commonName            :PRINTABLE:'CA-ovirt.grims.com.83876'
> Certificate is to be certified until Jan 18 00:33:43 2022 GMT (3650 days)
>
> Write out database with 1 new entries
> Data Base Updated
> Certificate was added to keystore
> Certificate was added to keystore
> ./SignReq.sh: line 79: /var/lock/ovirt-engine/.openssl.exclusivelock:
> No such file or directory
> file certs/engine.cer does not exist!
> 2012-01-20 19:33:45::DEBUG::common_utils::228::root:: retcode = 1
> 2012-01-20 19:33:45::ERROR::engine-setup::825::root:: Traceback (most
> recent call last):
>    File "/usr/bin/engine-setup", line 789, in _createCA
>      out, rc = utils.execCmd(cmd, None, True,
> output_messages.ERR_RC_CODE, [basedefs.CONST_CA_PASS])
>    File "/usr/share/ovirt-engine/scripts/common_utils.py", line 231, in execCmd
>      raise Exception(msg)
> Exception: Return Code is not zero
>
> 2012-01-20 19:33:45::DEBUG::engine-setup::1759::root:: *** The
> following params were used as user input:
> 2012-01-20 19:33:45::DEBUG::engine-setup::1763::root:: override-iptables: no
> 2012-01-20 19:33:45::DEBUG::engine-setup::1763::root:: http-port: 8080
> 2012-01-20 19:33:45::DEBUG::engine-setup::1763::root:: https-port: 8443
> 2012-01-20 19:33:45::DEBUG::engine-setup::1763::root:: mac-range:
> 00:1A:4A:A8:7B:00-00:1A:4A:A8:7B:FF
> 2012-01-20 19:33:45::DEBUG::engine-setup::1763::root:: host-fqdn:
> ovirt.grims.com
> 2012-01-20 19:33:45::DEBUG::engine-setup::1763::root:: auth-pass: ********
> 2012-01-20 19:33:45::DEBUG::engine-setup::1763::root:: db-pass: ********
> 2012-01-20 19:33:45::DEBUG::engine-setup::1763::root:: org-name: gimrsovirt
> 2012-01-20 19:33:45::DEBUG::engine-setup::1763::root:: default-dc-type: NFS
> 2012-01-20 19:33:45::DEBUG::engine-setup::1763::root:: config-nfs: yes
> 2012-01-20 19:33:45::DEBUG::engine-setup::1763::root:: nfs-mp: /exported
> 2012-01-20 19:33:45::DEBUG::engine-setup::1763::root:: iso-domain-name: grims
> 2012-01-20 19:33:45::ERROR::engine-setup::2453::root:: Traceback (most
> recent call last):
>    File "/usr/bin/engine-setup", line 2447, in<module>
>      main(confFile)
>    File "/usr/bin/engine-setup", line 2269, in main
>      runMainFunctions(conf)
>    File "/usr/bin/engine-setup", line 2176, in runMainFunctions
>      runFunction(_createCA, output_messages.INFO_CREATE_CA)
>    File "/usr/bin/engine-setup", line 1170, in runFunction
>      raise Exception(instance)
> Exception: Failed to create certificate authority
>
> -----
>
> [root at fc1664 ~]# host 192.168.123.73
> 73.123.168.192.in-addr.arpa domain name pointer ovirt.grims.com.
> [root at fc1664 ~]# dig @2.3.3.7 ovirt.grims.com +short
> 192.168.123.73
>
> Postgres is listening:
>
> [root at fc1664 ~]# netstat -ltn | grep -i 5432
> tcp        0      0 127.0.0.1:5432              0.0.0.0:*
>       LISTEN
>
> I can't quite figure this one out. I installed from the repos and the
> only thing missing so far is that I have not actually configured
> /exported as an NFS mount but I don't think that would cause this
> issue. I also ran an engine-cleanup before this command it it came
> back all OKAY. Any help is appreciated as I am excited to get this up
> and running.

https://bugzilla.redhat.com/show_bug.cgi?id=771590 ?

More information about the Users mailing list