Re: [xcat-user] Connection failure: SSL connect attempt failed because of handshake problems error:14094418

Tue, 19 Jul 2016 01:28:59 -0700

You can backup the files in /root/.xcat and /etc/xcat/ca,cert, and then recreate the CA by 'xcatconfig -c'

Thanks
Best Regards
----------------------------------------------------------------------
Wang Xiaopeng (王晓朋)
IBM China System Technology Laboratory
Tel: 86-10-82453455
Email: w...@cn.ibm.com
Address: 28,ZhongGuanCun Software Park,No.8 Dong Bei Wang West Road, Haidian District Beijing P.R.China 100193
 
 
----- Original message -----
From: peter CZ1 Peng <peng...@lenovo.com>
To: "xcat-user@lists.sourceforge.net" <xcat-user@lists.sourceforge.net>
Cc:
Subject: [xcat-user] Connection failure: SSL connect attempt failed because of handshake problems error:14094418
Date: Tue, Jul 19, 2016 2:36 PM
 

hi .everyone

 

   I have an xcat node update from the xcat 2.10 to xcat 2.11.1 and now no errors in updates ,but we have problems when use the xcat command ,can anyone take a look at my issue ,thanks

 

Connection failure: SSL connect attempt failed because of handshake problems error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca at /opt/xcat/lib/perl/xCAT/Client.pm line 265.

 

I have check the CA in the /root/.xcat / and the CA certificate is still valid by the time ,there should be the CA issue but it would not be an CA expiration issue , any advice would be appreciated

 

[root@mgt .xcat]# pwd

/root/.xcat

[root@mgt .xcat]# ll

total 32

-rw-r--r-- 1 root root 4296 Apr 20 00:10 ca.pem

-rw------- 1 root root 4500 Apr 20 00:10 client-cert.pem

-rw------- 1 root root 6175 Apr 20 00:10 client-cred.pem

-rw------- 1 root root 1675 Apr 20 00:10 client-key.pem

-rw------- 1 root root  883 Apr 20 00:10 client-req.pem

 

[root@mgt .xcat]# tabdump dump

Unable to open socket connection to xcatd daemon on localhost:3001.

Verify that the xcatd daemon is running and that your SSL setup is correct.

Connection failure: SSL connect attempt failed because of handshake problems error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca at /opt/xcat/lib/perl/xCAT/Client.pm line 265.

[root@mgt .xcat]# service  xcatd status

xCAT service is running

[root@mgt .xcat]#

 

[root@mgt .xcat]# grep Validity -A5 *

ca.pem:        Validity

ca.pem-            Not Before: Jan  1 01:01:01 1970 GMT

ca.pem-            Not After : Apr 19 16:10:22 2036 GMT

ca.pem-        Subject: CN=xCAT CA

ca.pem-        Subject Public Key Info:

ca.pem-            Public Key Algorithm: rsaEncryption

--

client-cert.pem:        Validity

client-cert.pem-            Not Before: Jan  1 01:01:01 1960 GMT

client-cert.pem-            Not After : Apr 14 16:10:23 2036 GMT

client-cert.pem-        Subject: CN=root

client-cert.pem-        Subject Public Key Info:

client-cert.pem-            Public Key Algorithm: rsaEncryption

--

client-cred.pem:        Validity

client-cred.pem-            Not Before: Jan  1 01:01:01 1960 GMT

client-cred.pem-            Not After : Apr 14 16:10:23 2036 GMT

client-cred.pem-        Subject: CN=root

client-cred.pem-        Subject Public Key Info:

client-cred.pem-            Public Key Algorithm: rsaEncryption

------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are
consuming the most bandwidth. Provides multi-vendor support for NetFlow,
J-Flow, sFlow and other flows. Make informed decisions using capacity planning
reports.http://sdm.link/zohodev2dev
_______________________________________________
xCAT-user mailing list
xCAT-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/xcat-user
 

------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are 
consuming the most bandwidth. Provides multi-vendor support for NetFlow, 
J-Flow, sFlow and other flows. Make informed decisions using capacity planning
reports.http://sdm.link/zohodev2dev
_______________________________________________
xCAT-user mailing list
xCAT-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/xcat-user

Reply via email to