Hi Michael, I'm not completely sure of the next steps, but I think this has to do with verifying the hostname of the webserver through the LWP::UserAgent.
We can try some different options.. One is to go ahead and upgrade to 2.3(what I recommend because of the improved features) https://cwiki.apache.org/confluence/display/VCL/Upgrade+From+Previous+Version+%282.2.1+to+2.3%29 Or another option is to update utils.pm's xmlrpc_call 1st make a copy of your untouched utils.pm file cp /usr/local/vcl-2.2.1/lib/VCL/utils.pm /usr/local/vcl-2.2.1/lib/VCL/utils.pm_orig at line 9114 comment out of utils.pm The line Should look like my $cli = RPC::XML::Client->new($XMLRPC_URL); and replace it with this line: my $cli = RPC::XML::Client->new($XMLRPC_URL, useragent => ['ssl_opts' => {verify_hostname => 0}]); save and restart vcld process Hopefully this will help. The difference in the updating utils.pm option is in the xmlrpc_call routine is the Upgrading to 2.3 will have faster load times and improved features. Aaron On Mon, Oct 8, 2012 at 6:44 PM, Michael Jinks <[email protected]> wrote: > Bumping this, with a summary: After fixing a few configuration errors, > I'm still running into what looks like a cert error when vclclientd > tries to schedule a block reservation. I'll paste a longer log excerpt > below in case it's useful, but the salient line seems to be: > > HTTP server error: Can't connect to vlab-a.uchicago.edu:443 > (certificate verify failed)" (perhaps you forgot to load > "RPC::XML::Client::send_request: HTTP server error: Can't connect to > vlab-a.uchicago.edu:443 (certificate verify failed)"?) at > /usr/local/vcl-2.2.1/bin/../lib/VCL/utils.pm line 9121 (#2) > > > I've verified that RPC::XML is insalled and working, server time is > correct. My current hypothesis is that the error message does indeed > arise from a certificate chain problem, but I can't figure out how to > test that, nor do I know what vcld is using for a trusted certificate > store. > > I've tried reading through the Perl module stack, down to > IO/Socket/INET.pm, which I *think* is originating the exception, but > there my Perl chops fail me and I can't find any place where an SSL > handshake takes place. > > So, an anybody fill in some of the gaps for me? Does it seem like I'm > on the right track? If this is a cert trust issue, where would I > install our CA's public key chain so that vcld will use it? > > Thanks, > --Michael > > > Longer vcld log excerpt: > > 2012-10-08 > 15:13:51|28877|blockrequest|blockrequest.pm:process(192)|processing > blocktime_id= 2 pass 1 > 2012-10-08 > 15:13:51|28877|blockrequest|utils.pm:xmlrpc_call(9105)|argument_string= > XMLRPCprocessBlockTime 2 1 > Can't locate object method "type" via package "RPC::XML::Client::send_request: > HTTP server error: Can't connect to vlab-a.uchicago.edu:443 > (certificate verify failed)" (perhaps you forgot to load > "RPC::XML::Client::send_request: HTTP server error: Can't connect to > vlab-a.uchicago.edu:443 (certificate verify failed)"?) at > /usr/local/vcl-2.2.1/bin/../lib/VCL/utils.pm line 9121 (#2) > Uncaught exception from user code: > Can't locate object method "type" via package > "RPC::XML::Client::send_request: HTTP server error: Can't connect to > vlab-a.uchicago.edu:443 (certificate verify failed)" (perhaps you forgot to > load "RPC::XML::Client::send_request: HTTP server error: Can't connect to > vlab-a.uchicago.edu:443 (certificate verify failed)"?) at > /usr/local/vcl-2.2.1/bin/../lib/VCL/utils.pm line 9121. > at /usr/local/vcl-2.2.1/bin/../lib/VCL/utils.pm line 9121 > VCL::utils::xmlrpc_call('XMLRPCprocessBlockTime', 2, 1) called at > /usr/local/vcl-2.2.1/bin/../lib/VCL/blockrequest.pm line 373 > VCL::blockrequest::process_block_time(2) called at > /usr/local/vcl-2.2.1/bin/../lib/VCL/blockrequest.pm line 193 > VCL::blockrequest::process('VCL::blockrequest=HASH(0x32e6ad0)') > called at /usr/local/vcl/bin/vcld line 568 > VCL::vcld::make_new_child('HASH(0x31e54a0)') called at > /usr/local/vcl/bin/vcld line 448 > VCL::vcld::main() called at /usr/local/vcl/bin/vcld line 98 > 2012-10-08 > 15:13:51|28877|blockrequest|State.pm:DESTROY(829)|VCL::blockrequest > destructor called, address: 32e6ad0 > 2012-10-08 15:13:51|28877|blockrequest|State.pm:DESTROY(848)|number of > database handles state process created: 1 > 2012-10-08 15:13:51|5776|vcld:REAPER(718)|VCL process exited for reservation > <unknown>, PID: 28877, signal: CHLD -- Aaron Peeler Program Manager Virtual Computing Lab NC State University All electronic mail messages in connection with State business which are sent to or received by this account are subject to the NC Public Records Law and may be disclosed to third parties.
