[ovirt-users] Issue with 4.2.1 RC and SSL
Yedidyah Bar David
didi at redhat.com
Thu Feb 8 13:34:18 UTC 2018
On Thu, Feb 8, 2018 at 2:42 PM, Petr Kotas <pkotas at redhat.com> wrote:
> Hi Stack,
>
> have you tried it on other linux distributions? Scientific is not officially
> supported.
>
> My guess based on your log is there are somewhere missing certificates,
> maybe different path?.
> You can check the paths by the documentation:
> https://www.ovirt.org/develop/release-management/features/infra/pki/#vdsm
>
> Hope this helps.
>
> Petr
>
>
>
> On Thu, Feb 8, 2018 at 1:13 AM, ~Stack~ <i.am.stack at gmail.com> wrote:
>>
>> Greetings,
>>
>> I was having a lot of issues with 4.2 and 95% of them are in the change
>> logs for 4.2.1. Since this is a new build, I just blew everything away
>> and started from scratch with the RC release.
>>
>> The very first thing that I did after the engine-config was to set up my
>> SSL cert. I followed the directions from here:
>> https://www.ovirt.org/documentation/admin-guide/appe-oVirt_and_SSL/
>>
>> Logged in the first time to the web interface and everything worked!
>> Great.
>>
>> Install my hosts (also completely fresh installs - Scientific Linux 7
>> fully updated) and none would finish the install...
>>
>>
>> I can send the full host debug log if you want, however, I'm pretty sure
>> that the problem is because of the SSL somewhere. I've cut/pasted the
>> relevant part.
Please check/share also engine.log of the relevant time frame. Thanks.
>>
>> Any advice/help, please?
>>
>> Thanks!
>> ~Stack~
>>
>>
>> 2018-02-07 16:56:21,697-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND **%EventEnd STAGE misc METHOD
>> otopi.plugins.ovirt_host_deploy.tune.tuned.Plugin._misc (None)
>> 2018-02-07 16:56:21,698-0600 DEBUG otopi.context
>> context._executeMethod:128 Stage misc METHOD
>> otopi.plugins.ovirt_host_deploy.vdsm.vdsmid.Plugin._store_id
>> 2018-02-07 16:56:21,698-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND **%EventStart STAGE misc METHOD
>> otopi.plugins.ovirt_host_deploy.vdsm.vdsmid.Plugin._store_id (None)
>> 2018-02-07 16:56:21,699-0600 DEBUG otopi.transaction
>> transaction._prepare:61 preparing 'File transaction for
>> '/etc/vdsm/vdsm.id''
>> 2018-02-07 16:56:21,699-0600 DEBUG otopi.filetransaction
>> filetransaction.prepare:183 file '/etc/vdsm/vdsm.id' missing
>> 2018-02-07 16:56:21,705-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND **%EventEnd STAGE misc METHOD
>> otopi.plugins.ovirt_host_deploy.vdsm.vdsmid.Plugin._store_id (None)
>> 2018-02-07 16:56:21,706-0600 DEBUG otopi.context
>> context._executeMethod:128 Stage misc METHOD
>> otopi.plugins.ovirt_host_deploy.vdsmhooks.hooks.Plugin._hooks
>> 2018-02-07 16:56:21,706-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND **%EventStart STAGE misc METHOD
>> otopi.plugins.ovirt_host_deploy.vdsmhooks.hooks.Plugin._hooks (None)
>> 2018-02-07 16:56:21,707-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND **%EventEnd STAGE misc METHOD
>> otopi.plugins.ovirt_host_deploy.vdsmhooks.hooks.Plugin._hooks (None)
>> 2018-02-07 16:56:21,707-0600 DEBUG otopi.context
>> context._executeMethod:128 Stage misc METHOD
>> otopi.plugins.ovirt_host_common.vdsm.pki.Plugin._misc
>> 2018-02-07 16:56:21,708-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND **%EventStart STAGE misc METHOD
>> otopi.plugins.ovirt_host_common.vdsm.pki.Plugin._misc (None)
>> 2018-02-07 16:56:21,708-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND ### Setting up PKI
>> 2018-02-07 16:56:21,709-0600 DEBUG
>> otopi.plugins.ovirt_host_common.vdsm.pki plugin.executeRaw:813 execute:
>> ('/usr/bin/openssl', 'req', '-new', '-newkey', 'rsa:2048', '-nodes',
>> '-subj', '/', '-keyout', '/tmp/tmpQkrIuV.tmp'), executable='None',
>> cwd='None', env=None
>> 2018-02-07 16:56:21,756-0600 DEBUG
>> otopi.plugins.ovirt_host_common.vdsm.pki plugin.executeRaw:863
>> execute-result: ('/usr/bin/openssl', 'req', '-new', '-newkey',
>> 'rsa:2048', '-nodes', '-subj', '/', '-keyout', '/tmp/tmpQkrIuV.tmp'), rc=0
>> 2018-02-07 16:56:21,757-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND ###
>> 2018-02-07 16:56:21,757-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND ###
>> 2018-02-07 16:56:21,757-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND ### Please issue VDSM
>> certificate based on this certificate request
>> 2018-02-07 16:56:21,757-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND ###
>> 2018-02-07 16:56:21,757-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND ***D:MULTI-STRING
>> VDSM_CERTIFICATE_REQUEST --=451b80dc-996f-432e-9e4f-2b29ef6d1141=--
>> 2018-02-07 16:56:21,757-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND -----BEGIN CERTIFICATE
>> REQUEST-----
>> 2018-02-07 16:56:21,757-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND
>> MIICRTCCAS0CAQAwADCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMZm
>> 2018-02-07 16:56:21,757-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND
>> eYTWbHKkN+GlQnZ8C6fdk++htyFE+IHSzkhTyTSZdM0bPTdvhomTeCwzNlWBWdU+
>> 2018-02-07 16:56:21,757-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND
>> PrVB7j/1iksSt6RXDQUWlPDPBNfAa6NtZijEaGuxAe0RpI71G5feZmgVRmtIfrkE
>> 2018-02-07 16:56:21,757-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND
>> 5BjhnCMJW46y9Y7dc2TaXzQqeVj0nkWkHt0v6AVdRWP3OHfOCvqoABny1urStvFT
>> 2018-02-07 16:56:21,757-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND
>> TeAhSBVBUWTaNczBrZBpMXhXrSAe/hhLXMF3VfBV1odOOwb7AeccYkGePMxUOg8+
>> 2018-02-07 16:56:21,757-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND
>> XMAKdDCn7N0ZC4gSyEAP9mSobvOvNObcfw02NyYdny32/edgPrXKR+ISf4IwVd0d
>> 2018-02-07 16:56:21,758-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND
>> mDonT4W2ROTE/A3M/mkCAwEAAaAAMA0GCSqGSIb3DQEBCwUAA4IBAQCpAKAMv/Vh
>> 2018-02-07 16:56:21,758-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND
>> 0ByC02R3fxtA6b/OZyys+xyIAfAGxo2NSDJDQsw9Gy1QWVtJX5BGsbzuhnNJjhRm
>> 2018-02-07 16:56:21,758-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND
>> 5yx0wrS/k34oEv8Wh+po1fwpI5gG1W9L96Sx+vF/+UXBenJbhEVfir/cOzjmP1Hg
>> 2018-02-07 16:56:21,758-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND
>> TtK5nYnBM7Py5JdnnAPww6jPt6uRypDZqqM8YOct1OEsBr8gPvmQvt5hDGJKqW37
>> 2018-02-07 16:56:21,758-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND
>> xFbad6ILwYIE0DXAu2h9y20Pl3fy4Kb2LQDjltiaQ2IBiHFRUB/H2DOxq0NpH4z7
>> 2018-02-07 16:56:21,758-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND
>> wqU/ai7sXWT/Vq4R6jD+c0V0WP4+VgSkgqPvnSYHwqQUbc9Kh7RwRnVyzLupbWdM
>> 2018-02-07 16:56:21,758-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND Pr+MZ2D1jg27
>> 2018-02-07 16:56:21,758-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND -----END CERTIFICATE REQUEST-----
>> 2018-02-07 16:56:21,758-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND
>> --=451b80dc-996f-432e-9e4f-2b29ef6d1141=--
>> 2018-02-07 16:56:21,758-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND **%QStart: VDSM_CERTIFICATE_CHAIN
>> 2018-02-07 16:56:21,758-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND ###
>> 2018-02-07 16:56:21,758-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND ###
>> 2018-02-07 16:56:21,758-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND ### Please input VDSM
>> certificate chain that matches certificate request, top is issuer
>> 2018-02-07 16:56:21,758-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND ###
>> 2018-02-07 16:56:21,759-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND ### type
>> '--=451b80dc-996f-432e-9e4f-2b29ef6d1141=--' in own line to mark end,
>> '--=451b80dc-996f-ABORT-9e4f-2b29ef6d1141=--' aborts
>> 2018-02-07 16:56:21,759-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND ***Q:MULTI-STRING
>> VDSM_CERTIFICATE_CHAIN --=451b80dc-996f-432e-9e4f-2b29ef6d1141=--
>> --=451b80dc-996f-ABORT-9e4f-2b29ef6d1141=--
>> 2018-02-07 16:56:21,759-0600 DEBUG otopi.plugins.otopi.dialog.machine
>> dialog.__logString:204 DIALOG:SEND **%QEnd: VDSM_CERTIFICATE_CHAIN
>> 2018-02-07 16:56:22,765-0600 DEBUG otopi.context
>> context._executeMethod:143 method exception
>> Traceback (most recent call last):
>> File "/tmp/ovirt-h7XmTvEqc3/pythonlib/otopi/context.py", line 133, in
>> _executeMethod
>> method['method']()
>> File
>> "/tmp/ovirt-h7XmTvEqc3/otopi-plugins/ovirt-host-common/vdsm/pki.py",
>> line 241, in _misc
>> '\n\nPlease input VDSM certificate chain that '
>> File "/tmp/ovirt-h7XmTvEqc3/otopi-plugins/otopi/dialog/machine.py",
>> line 327, in queryMultiString
>> v = self._readline()
>> File "/tmp/ovirt-h7XmTvEqc3/pythonlib/otopi/dialog.py", line 248, in
>> _readline
>> raise IOError(_('End of file'))
>> IOError: End of file
>> 2018-02-07 16:56:22,766-0600 ERROR otopi.context
>> context._executeMethod:152 Failed to execute stage 'Misc configuration':
>> End of file
>>
>>
>> _______________________________________________
>> Users mailing list
>> Users at ovirt.org
>> http://lists.ovirt.org/mailman/listinfo/users
>>
>
>
> _______________________________________________
> Users mailing list
> Users at ovirt.org
> http://lists.ovirt.org/mailman/listinfo/users
>
--
Didi
More information about the Users
mailing list