I think you should read the following document: https://github.com/openvswitch/ovs/blob/master/INSTALL.SSL.md
Then have ovs-vsctl speak to ovsdb-server over ssl. Once you can get that working, you should try integrating with ODL. Hardly anyone active in this list know much about ODL, so you will likely not get any answer to ODL specific questions. (SSL support has been there in OVS for a long time, and there are multiple unit tests that continuously test them and multiple products that have been using SSL support with OVS for many years.) On Tue, Aug 18, 2015 at 7:16 AM, Tandulwadkar, Sanket Ravindra (Sanket Ravindra) <[email protected]> wrote: > Hello, > > I am trying to add TLS support to ODL. When I try to check if the connection > is established, I get a handshake failure at ODL. > > On OvS VM: > > openssl s_client -connect 172.31.1.2:6633 -ssl3 > > On ODL log: > > 2015-08-18 09:43:14,828 | WARN | entLoopGroup-6-1 | OFFrameDecoder | 213 - > org.opendaylight.openflowjava.openflow-protocol-impl - 0.6.0.Lithium | > Unexpected exception from downstream. > io.netty.handler.codec.DecoderException: OFFrameDecoder.decode() did not > read anything but decoded a message. at > io.netty.handler.codec.ByteToMessageDecoder.callDecode(ByteToMessageDecoder.java:334)[144:io.netty.codec:4.0.26.Final] > at > io.netty.handler.codec.ByteToMessageDecoder.channelRead(ByteToMessageDecoder.java:229)[144:io.netty.codec:4.0.26.Final] > at > io.netty.channel.AbstractChannelHandlerContext.invokeChannelRead(AbstractChannelHandlerContext.java:339)[118:io.netty.transport:4.0.26.Final] > at > io.netty.channel.AbstractChannelHandlerContext.fireChannelRead(AbstractChannelHandlerContext.java:324)[118:io.netty.transport:4.0.26.Final] > at > io.netty.handler.timeout.ReadTimeoutHandler.channelRead(ReadTimeoutHandler.java:150)[145:io.netty.handler:4.0.26.Final] > at > org.opendaylight.openflowjava.protocol.impl.core.IdleHandler.channelRead(IdleHandler.java:39)[213:org.opendaylight.openflowjava.openflow-protocol-impl:0.6.0.Lithium] > at > io.netty.channel.AbstractChannelHandlerContext.invokeChannelRead(AbstractChannelHandlerContext.java:339)[118:io.netty.transport:4.0.26.Final] > at > io.netty.channel.AbstractChannelHandlerContext.fireChannelRead(AbstractChannelHandlerContext.java:324)[118:io.netty.transport:4.0.26.Final] > at > io.netty.channel.ChannelInboundHandlerAdapter.channelRead(ChannelInboundHandlerAdapter.java:86)[118:io.netty.transport:4.0.26.Final] > at > io.netty.channel.AbstractChannelHandlerContext.invokeChannelRead(AbstractChannelHandlerContext.java:339)[118:io.netty.transport:4.0.26.Final] > at > io.netty.channel.AbstractChannelHandlerContext.fireChannelRead(AbstractChannelHandlerContext.java:324)[118:io.netty.transport:4.0.26.Final] > at > io.netty.channel.DefaultChannelPipeline.fireChannelRead(DefaultChannelPipeline.java:847)[118:io.netty.transport:4.0.26.Final] > at > io.netty.channel.nio.AbstractNioByteChannel$NioByteUnsafe.read(AbstractNioByteChannel.java:131)[118:io.netty.transport:4.0.26.Final] > at > io.netty.channel.nio.NioEventLoop.processSelectedKey(NioEventLoop.java:511)[118:io.netty.transport:4.0.26.Final] > at > io.netty.channel.nio.NioEventLoop.processSelectedKeysOptimized(NioEventLoop.java:468)[118:io.netty.transport:4.0.26.Final] > at > io.netty.channel.nio.NioEventLoop.processSelectedKeys(NioEventLoop.java:382)[118:io.netty.transport:4.0.26.Final] > at > io.netty.channel.nio.NioEventLoop.run(NioEventLoop.java:349)[118:io.netty.transport:4.0.26.Final] > at > io.netty.util.concurrent.SingleThreadEventExecutor$2.run(SingleThreadEventExecutor.java:111)[119:io.netty.common:4.0.26.Final] > at > io.netty.util.concurrent.DefaultThreadFactory$DefaultRunnableDecorator.run(DefaultThreadFactory.java:137)[119:io.netty.common:4.0.26.Final] > at java.lang.Thread.run(Thread.java:745)[:1.7.079] 2015-08-18 09:43:14,828 | > WARN | entLoopGroup-6-1 | OFFrameDecoder | 213 - > org.opendaylight.openflowjava.openflow-protocol-impl - 0.6.0.Lithium | > Closing connection. 2015-08-18 09:43:14,833 | WARN | entLoopGroup-6-1 | > SessionManagerOFImpl | 216 - org.opendaylight.openflowplugin - 0.1.0.Lithium > | context for invalidation not found 2015-08-18 09:43:14,834 | WARN | > entLoopGroup-6-1 | OFFrameDecoder | 213 - > org.opendaylight.openflowjava.openflow-protocol-impl - 0.6.0.Lithium | > Unexpected exception from downstream. > io.netty.handler.codec.DecoderException: OFFrameDecoder.decode() did not > read anything but decoded a message. at > io.netty.handler.codec.ByteToMessageDecoder.callDecode(ByteToMessageDecoder.java:334)[144:io.netty.codec:4.0.26.Final] > at > io.netty.handler.codec.ByteToMessageDecoder.channelInactive(ByteToMessageDecoder.java:271)[144:io.netty.codec:4.0.26.Final] > at > io.netty.channel.AbstractChannelHandlerContext.invokeChannelInactive(AbstractChannelHandlerContext.java:237)[118:io.netty.transport:4.0.26.Final] > at > io.netty.channel.AbstractChannelHandlerContext.fireChannelInactive(AbstractChannelHandlerContext.java:223)[118:io.netty.transport:4.0.26.Final] > at > io.netty.channel.ChannelInboundHandlerAdapter.channelInactive(ChannelInboundHandlerAdapter.java:75)[118:io.netty.transport:4.0.26.Final] > at > io.netty.handler.timeout.ReadTimeoutHandler.channelInactive(ReadTimeoutHandler.java:144)[145:io.netty.handler:4.0.26.Final] > at > io.netty.channel.AbstractChannelHandlerContext.invokeChannelInactive(AbstractChannelHandlerContext.java:237)[118:io.netty.transport:4.0.26.Final] > at > io.netty.channel.AbstractChannelHandlerContext.fireChannelInactive(AbstractChannelHandlerContext.java:223)[118:io.netty.transport:4.0.26.Final] > at > io.netty.channel.ChannelInboundHandlerAdapter.channelInactive(ChannelInboundHandlerAdapter.java:75)[118:io.netty.transport:4.0.26.Final] > at > org.opendaylight.openflowjava.protocol.impl.core.connection.ChannelOutboundQueue.channelInactive(ChannelOutboundQueue.java:256)[213:org.opendaylight.openflowjava.openflow-protocol-impl:0.6.0.Lithium] > at > io.netty.channel.AbstractChannelHandlerContext.invokeChannelInactive(AbstractChannelHandlerContext.java:237)[118:io.netty.transport:4.0.26.Final] > at > io.netty.channel.AbstractChannelHandlerContext.fireChannelInactive(AbstractChannelHandlerContext.java:223)[118:io.netty.transport:4.0.26.Final] > at > io.netty.channel.DefaultChannelPipeline.fireChannelInactive(DefaultChannelPipeline.java:829)[118:io.netty.transport:4.0.26.Final] > at > io.netty.channel.AbstractChannel$AbstractUnsafe$7.run(AbstractChannel.java:610)[118:io.netty.transport:4.0.26.Final] > at > io.netty.util.concurrent.SingleThreadEventExecutor.runAllTasks(SingleThreadEventExecutor.java:328)[119:io.netty.common:4.0.26.Final] > at > io.netty.channel.nio.NioEventLoop.run(NioEventLoop.java:350)[118:io.netty.transport:4.0.26.Final] > at > io.netty.util.concurrent.SingleThreadEventExecutor$2.run(SingleThreadEventExecutor.java:111)[119:io.netty.common:4.0.26.Final] > at > io.netty.util.concurrent.DefaultThreadFactory$DefaultRunnableDecorator.run(DefaultThreadFactory.java:137)[119:io.netty.common:4.0.26.Final] > at java.lang.Thread.run(Thread.java:745)[:1.7.079] 2015-08-18 09:43:14,834 | > WARN | entLoopGroup-6-1 | OFFrameDecoder | 213 - > org.opendaylight.openflowjava.openflow-protocol-impl - 0.6.0.Lithium | > Closing connection. 2015-08-18 09:43:14,836 | INFO | entLoopGroup-6-1 | > ConnectionConductorImpl | 216 - org.opendaylight.openflowplugin - > 0.1.0.Lithium | OF handshake failed, doing cleanup. > > Is this a known issue? Or am I doing something wrong? > > > > --Sanket > > > > > _______________________________________________ > discuss mailing list > [email protected] > http://openvswitch.org/mailman/listinfo/discuss > _______________________________________________ discuss mailing list [email protected] http://openvswitch.org/mailman/listinfo/discuss
