peimanfth commented on issue #5331:
URL: https://github.com/apache/openwhisk/issues/5331#issuecomment-1446899191
Hey. Since this is still open, I am having the same issue with setting up
the controller when I try to run `openwhisk.yml `with ansible playbook. the
controller log says that the keystore password is wrong, I assume this password
is generated with `setup.yml` and then later copied when I run `openwhisk.yml`
or `controller.yml`. Any suggestions to solve this?
### The Step that failed with openwhisk.yml
```
TASK [controller : add seed nodes to controller environment]
*******************************************************************************
Monday 27 February 2023 12:29:27 -0600 (0:00:00.114) 0:00:28.125
*******
ok: [controller0] => (item=[0, '172.17.0.1'])
TASK [controller : Add akka environment to controller environment]
*************************************************************************
Monday 27 February 2023 12:29:27 -0600 (0:00:00.169) 0:00:28.295
*******
ok: [controller0]
TASK [controller : lean controller setup]
**************************************************************************************************
Monday 27 February 2023 12:29:27 -0600 (0:00:00.242) 0:00:28.537
*******
skipping: [controller0]
TASK [controller : (re)start controller]
***************************************************************************************************
Monday 27 February 2023 12:29:27 -0600 (0:00:00.038) 0:00:28.576
*******
changed: [controller0]
TASK [controller : wait until the Controller in this host is up and running]
***************************************************************
Monday 27 February 2023 12:29:28 -0600 (0:00:01.088) 0:00:29.664
*******
FAILED - RETRYING: wait until the Controller in this host is up and running
(12 retries left).
FAILED - RETRYING: wait until the Controller in this host is up and running
(11 retries left).
FAILED - RETRYING: wait until the Controller in this host is up and running
(10 retries left).
FAILED - RETRYING: wait until the Controller in this host is up and running
(9 retries left).
FAILED - RETRYING: wait until the Controller in this host is up and running
(8 retries left).
FAILED - RETRYING: wait until the Controller in this host is up and running
(7 retries left).
FAILED - RETRYING: wait until the Controller in this host is up and running
(6 retries left).
FAILED - RETRYING: wait until the Controller in this host is up and running
(5 retries left).
FAILED - RETRYING: wait until the Controller in this host is up and running
(4 retries left).
FAILED - RETRYING: wait until the Controller in this host is up and running
(3 retries left).
FAILED - RETRYING: wait until the Controller in this host is up and running
(2 retries left).
FAILED - RETRYING: wait until the Controller in this host is up and running
(1 retries left).
fatal: [controller0]: FAILED! => {"attempts": 12, "changed": false,
"elapsed": 0, "msg": "Status code was -1 and not [200]: Request failed:
<urlopen error [Errno 111] Connection refused>", "redirected": false, "status":
-1, "url": "https://172.17.0.1:10001/ping"}
Status code was -1 and not [200]: Request failed: <urlopen error [Errno
111] Connection refused>
PLAY RECAP
*********************************************************************************************************************************
controller0 : ok=25 changed=7 unreachable=0 failed=1
skipped=14 rescued=0 ignored=0
etcd0 : ok=0 changed=0 unreachable=0 failed=0
skipped=7 rescued=0 ignored=0
kafka0 : ok=10 changed=4 unreachable=0 failed=0
skipped=7 rescued=0 ignored=0
Monday 27 February 2023 12:31:33 -0600 (0:02:04.909) 0:02:34.574
*******
===============================================================================
controller : wait until the Controller in this host is up and running
------------------------------------------------------------- 124.91s
kafka : wait until the kafka server started up
--------------------------------------------------------------------------------------
7.49s
zookeeper : (re)start zookeeper
-----------------------------------------------------------------------------------------------------
2.07s
kafka : (re)start kafka using 'wurstmeister/kafka:2.13-2.7.0'
---------------------------------------------------------------------- 1.90s
controller : copy certificates
------------------------------------------------------------------------------------------------------
1.68s
zookeeper : wait until the Zookeeper in this host is up and running
----------------------------------------------------------------- 1.42s
controller : populate environment variables for controller
-------------------------------------------------------------------------- 1.36s
Gathering Facts
---------------------------------------------------------------------------------------------------------------------
1.23s
controller : (re)start controller
---------------------------------------------------------------------------------------------------
1.09s
Gathering Facts
---------------------------------------------------------------------------------------------------------------------
0.92s
controller : check if whisk_local_activations with CouchDB exists
------------------------------------------------------------------- 0.87s
controller : copy nginx certificate keystore
----------------------------------------------------------------------------------------
0.86s
controller : check if whisk_local_whisks with CouchDB exists
------------------------------------------------------------------------ 0.85s
Gathering Facts
---------------------------------------------------------------------------------------------------------------------
0.83s
controller : copy jmxremote password file
-------------------------------------------------------------------------------------------
0.80s
controller : check if whisk_local_subjects with CouchDB exists
---------------------------------------------------------------------- 0.79s
controller : copy jmxremote access file
---------------------------------------------------------------------------------------------
0.50s
controller : ensure controller config directory is created with permissions
--------------------------------------------------------- 0.41s
kafka : create kafka certificate directory
------------------------------------------------------------------------------------------
0.40s
controller : check, that required databases exist
-----------------------------------------------------------------------------------
0.31s
```
### Controller logs
```
[2023-02-27T18:29:37.129Z] [INFO] [#tid_sid_controller] [Controller]
loadbalancer initialized: ShardingContainerPoolBalancer
[2023-02-27T18:29:37.135Z] [INFO] [#tid_sid_dispatcher] [MessageFeed]
handler capacity = 128, pipeline fill at = 128, pipeline depth = 256
[2023-02-27T18:29:37.282Z] [INFO] [#tid_sid_controller] [KindRestrictor] all
kinds are allowed, the white-list is not specified
[2023-02-27T18:29:38.217Z] [INFO] [#tid_sid_controller] [ActionsApi]
actionSequenceLimit '50'
Exception in thread "main" java.io.IOException: keystore password was
incorrect
at
java.base/sun.security.pkcs12.PKCS12KeyStore.engineLoad(PKCS12KeyStore.java:2117)
at
java.base/sun.security.util.KeyStoreDelegator.engineLoad(KeyStoreDelegator.java:222)
at java.base/java.security.KeyStore.load(KeyStore.java:1479)
at
org.apache.openwhisk.common.Https$.applyHttpsConfig(Https.scala:58)
at
org.apache.openwhisk.common.Https$.connectionContextServer(Https.scala:92)
at
org.apache.openwhisk.http.BasicHttpService$.$anonfun$startHttpService$1(BasicHttpService.scala:174)
at
org.apache.openwhisk.http.BasicHttpService$$$Lambda$2199/00000000D6E0BEB0.apply(Unknown
Source)
at scala.Option.map(Option.scala:230)
at
org.apache.openwhisk.http.BasicHttpService$.startHttpService(BasicHttpService.scala:174)
at
org.apache.openwhisk.core.controller.Controller$.start(Controller.scala:285)
at
org.apache.openwhisk.core.controller.Controller$.main(Controller.scala:233)
at
org.apache.openwhisk.core.controller.Controller.main(Controller.scala)
Caused by: java.security.UnrecoverableKeyException: failed to decrypt safe
contents entry: javax.crypto.BadPaddingException: Given final block not
properly padded. Such issues can arise if a bad key is used during decryption.
```
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
