It seems that it wants the certificate to cover the name "localhost"
instead or in addition to the FQDN.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/366455
Title:
qemu+tls server certificate
Thank you for the response Simon,
Now I get this error:
2016-05-03 06:19:04.707+: 1119: warning :
virNetTLSContextCheckCertificate:1145 : Certificate check failed Certificate
[session] owner does not match the hostname localhost
error: failed to connect to the hypervisor
error:
Ishmael, on Ubuntu, the default location for CA cert is /etc/ssl/certs.
Maybe you could try putting your trusted CA in there?
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/366455
Title:
qemu+tls
Hi,
I see this is from 2010 but I am experiencing the same problem as seen
below:
root@ceph1:/cert_files# virsh -c qemu+tls://ceph1/system hostname
2016-04-29 14:15:52.077+: 2741: info : libvirt version: 1.2.16, package:
1.2.16-2ubuntu11.15.10.3
2016-04-29 14:15:52.077+: 2741: warning :
We are closing this bug report because it lacks the information we need
to investigate the problem, as described in the previous comments.
Please reopen it if you can give us the missing information, and don't
hesitate to submit bug reports in the future. To reopen the bug report
you can click on
We are closing this bug report because it lacks the information we need
to investigate the problem, as described in the previous comments.
Please reopen it if you can give us the missing information, and don't
hesitate to submit bug reports in the future. To reopen the bug report
you can click on
We'd like to figure out what's causing this bug for you, but we haven't
heard back from you in a while. Could you please provide the requested
information? Thanks!
--
qemu+tls server certificate validation failure (The certificate is not trusted)
https://bugs.launchpad.net/bugs/366455
You
We'd like to figure out what's causing this bug for you, but we haven't
heard back from you in a while. Could you please provide the requested
information? Thanks!
--
qemu+tls server certificate validation failure (The certificate is not trusted)
https://bugs.launchpad.net/bugs/366455
You
Thank you for taking the time to report this bug and helping to make Ubuntu
better. Please answer these questions:
1. Is this reproducible?
2. If so, what specific steps should we take to recreate this bug? Be as
detailed as possible.
This will help us to find and resolve the problem.
**
** Changed in: libvirt (Ubuntu)
Importance: Undecided = Low
--
qemu+tls server certificate validation failure (The certificate is not trusted)
https://bugs.launchpad.net/bugs/366455
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to
Thank you for taking the time to report this bug and helping to make Ubuntu
better. Please answer these questions:
1. Is this reproducible?
2. If so, what specific steps should we take to recreate this bug? Be as
detailed as possible.
This will help us to find and resolve the problem.
**
** Changed in: libvirt (Ubuntu)
Importance: Undecided = Low
--
qemu+tls server certificate validation failure (The certificate is not trusted)
https://bugs.launchpad.net/bugs/366455
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
Oops I noticed an error in an openssl command above. It should read as
follows:
$ openssl verify -CAfile /etc/pki/CA/cacert.pem /etc/pki/libvirt/clientcert.pem
/etc/pki/libvirt/clientcert.pem: OK
$
Sorry, I was playing with the client cert location. As you can see the
clientcert.pem is valid.
13 matches
Mail list logo