I have now moved management server to a fresh CentOS7 server. But unfortunately
I’m getting the exact same SSL handshake error. Back to square one.
On 24/5/17, 11:40 pm, "Jason Kinsella" <ja...@cloudpeople.com.au> wrote:
Hi All,
Based on the feedback it seems like the issue is related to CentOS version,
so I’ve built a new CentOS7 Management server using Blueshape noredist. I’ve
restored the 4.9.2.0 DB into this server and management-server.logs look clean
on boot. The only problem is that I can’t log into the webUI.
The logs show a successful login (user = kinsja), but the the API command
either is not allowed or doesn’t exist for the user. This means the UI doesn’t
load.
Anyone seen this with a restored DB?
2017-05-24 09:26:08,239 DEBUG [c.c.u.AccountManagerImpl]
(catalina-exec-17:ctx-ee2c5e26) (logid:a8ca5ee5) User: kinsja in domain 1 has
successfully logged in
2017-05-24 09:26:08,246 INFO [c.c.a.ApiServer]
(catalina-exec-17:ctx-ee2c5e26) (logid:a8ca5ee5) Current user logged in under
timezone
2017-05-24 09:26:08,246 INFO [c.c.a.ApiServer]
(catalina-exec-17:ctx-ee2c5e26) (logid:a8ca5ee5) Timezone offset from UTC is:
0.0
2017-05-24 09:26:08,251 DEBUG [c.c.a.ApiServlet]
(catalina-exec-17:ctx-ee2c5e26) (logid:a8ca5ee5) ===END=== 192.168.10.38 --
POST
2017-05-24 09:26:08,320 DEBUG [c.c.a.ApiServlet]
(catalina-exec-13:ctx-a1d38347) (logid:3404c663) ===START=== 192.168.10.38 --
GET command=listCapabilities&response=json&_=1495632368256
2017-05-24 09:26:08,325 DEBUG [c.c.a.ApiServer]
(catalina-exec-13:ctx-a1d38347 ctx-960796a5) (logid:3404c663) The user with
id:31 is not allowed to request the API command or the API command does not
exist: listCapabilities
Thanks
Jason
From: Jason Kinsella <ja...@cloudpeople.com.au>
Date: Tuesday, 23 May 2017 at 10:11 pm
To: "users@cloudstack.apache.org" <users@cloudstack.apache.org>
Subject: SSVM NIO SSL Handshake error
Hi,
We recently upgraded from 4.5.0 to 4.9.2.0 and encountered a problem with
the SSVM and Console Proxy. They cannot connect to the management server. The
SSVM cloud.log repeats this error every couple of seconds.
2017-05-23 11:58:22,461 INFO [utils.nio.NioClient] (main:null) Connecting
to 192.168.12.1:8250
2017-05-23 11:58:22,465 WARN [utils.nio.Link] (main:null) This SSL engine
was forced to close inbound due to end of stream.
2017-05-23 11:58:22,465 ERROR [utils.nio.Link] (main:null) Failed to send
server's CLOSE message due to socket channel's failure.
2017-05-23 11:58:22,466 ERROR [utils.nio.NioClient] (main:null) SSL
Handshake failed while connecting to host: 192.168.12.1 port: 8250
2017-05-23 11:58:22,466 ERROR [utils.nio.NioConnection] (main:null) Unable
to initialize the threads.
java.io.IOException: SSL Handshake failed while connecting to host:
192.168.12.1 port: 8250
at com.cloud.utils.nio.NioClient.init(NioClient.java:67)
at
com.cloud.utils.nio.NioConnection.start(NioConnection.java:88)
at com.cloud.agent.Agent.start(Agent.java:237)
at
com.cloud.agent.AgentShell.launchAgent(AgentShell.java:399)
at
com.cloud.agent.AgentShell.launchAgentFromClassInfo(AgentShell.java:367)
at
com.cloud.agent.AgentShell.launchAgent(AgentShell.java:351)
at com.cloud.agent.AgentShell.start(AgentShell.java:456)
at com.cloud.agent.AgentShell.main(AgentShell.java:491)
2017-05-23 11:58:22,468 INFO [utils.exception.CSExceptionErrorCode]
(main:null) Could not find exception:
com.cloud.utils.exception.NioConnectionException in error code list for
exceptions
2017-05-23 11:58:22,468 WARN [cloud.agent.Agent] (main:null) NIO
Connection Exception com.cloud.utils.exception.NioConnectionException: SSL
Handshake failed while connecting to host: 192.168.12.1 port: 8250
The setup is very simple. Single management server and ports are open.
Things checked / tried:
· Destroyed SSVM multiple times – still same problem.
· SSH to SSVM from MS using ssh -i
/var/cloudstack/management/.ssh/id_rsa -p 3922 root@IPADDRESS – PASS
· SSVM telnet on 8250 to MS – PASS
I’ve also tested a restore of the DB into our working development 4.9.2.0
server. It also exhibits the handshake errors, so most likely DB related.
I’ve used up all my skills. Please help
Regards,
Jason
