GitHub user Hossein4185 edited a comment on the discussion: Secondary Storage Vm (SSVM) SSL Handshake failed error
@weizhouapache I changed the management IP in global setting and the error changed. Please check. Wed Sep 24 08:10:52 PM UTC 2025 Starting guest services for vmware Wed Sep 24 08:10:59 PM UTC 2025 Applying iptables rules Wed Sep 24 08:10:59 PM UTC 2025 Setting up interface: eth0 Wed Sep 24 08:10:59 PM UTC 2025 Setting up interface: eth1 Wed Sep 24 08:10:59 PM UTC 2025 Setting up interface: eth2 Wed Sep 24 08:10:59 PM UTC 2025 Received mgmt cidr : 172.24.48.128/26 Wed Sep 24 08:10:59 PM UTC 2025 Configuring sshd Wed Sep 24 08:11:00 PM UTC 2025 Executing cloud-early-config Wed Sep 24 08:11:00 PM UTC 2025 Scripts checksum detected: oldmd5=b0bf21ef8e4aa6df495c71f7d96b6aeb newmd5=b0bf21ef8e4aa6df495c71f7d96b6aeb Wed Sep 24 08:11:02 PM UTC 2025 Could not find patch file, retrying Wed Sep 24 08:11:04 PM UTC 2025 Could not find patch file, retrying Wed Sep 24 08:11:06 PM UTC 2025 Could not find patch file, retrying Wed Sep 24 08:11:08 PM UTC 2025 Could not find patch file, retrying Wed Sep 24 08:11:10 PM UTC 2025 Could not find patch file, retrying Wed Sep 24 08:11:10 PM UTC 2025 Scripts checksum detected: oldmd5=b0bf21ef8e4aa6df495c71f7d96b6aeb newmd5=125120ec9fbf442a2cdb23c17d2f56b5 Wed Sep 24 08:11:10 PM UTC 2025 Patched scripts using /var/cache/cloud/cloud-scripts.tgz Wed Sep 24 08:11:10 PM UTC 2025 Bootstrapping systemvm appliance Wed Sep 24 08:11:10 PM UTC 2025 Unziping /var/cache/cloud//agent.zip Wed Sep 24 08:11:11 PM UTC 2025 As system VM type is secstorage, we will remove the default properties 'instance' and 'resource' from usr/local/cloud/systemvm/conf/agent.properties Wed Sep 24 08:11:11 PM UTC 2025 Copying content of /var/cache/cloud/cmdline to usr/local/cloud/systemvm/conf/agent.properties Wed Sep 24 08:11:12 PM UTC 2025 Configuring systemvm type=secstorage Wed Sep 24 08:11:13 PM UTC 2025 Setting up secondary storage system vm Wed Sep 24 08:11:13 PM UTC 2025 Setting up interface: eth3 Wed Sep 24 08:11:13 PM UTC 2025 Successfully setup storage network with STORAGE_IP:172.24.14.62, STORAGE_NETMASK:255.255.255.240, STORAGE_CIDR: Wed Sep 24 08:11:13 PM UTC 2025 Setting up route of RFC1918 space to 172.17.26.1 Wed Sep 24 08:11:13 PM UTC 2025 Setting up entry in hosts Wed Sep 24 08:11:13 PM UTC 2025 Applying iptables rules Wed Sep 24 08:11:13 PM UTC 2025 Configuring apache2 Wed Sep 24 08:11:13 PM UTC 2025 Setting up apache web server Wed Sep 24 08:11:13 PM UTC 2025 Setting up apache2 for post upload of volume/template Wed Sep 24 08:11:13 PM UTC 2025 cloud: disable rp_filter Wed Sep 24 08:11:13 PM UTC 2025 disable rpfilter Wed Sep 24 08:11:13 PM UTC 2025 cloud: enable_fwding = 0 Wed Sep 24 08:11:13 PM UTC 2025 enable_fwding = 0 Wed Sep 24 08:11:13 PM UTC 2025 Processors = 1 Enable service = 0 Wed Sep 24 08:11:13 PM UTC 2025 Setting up NTP Wed Sep 24 08:11:13 PM UTC 2025 Adding PubkeyAcceptedAlgorithms=+ssh-rsa to sshd_config Wed Sep 24 08:11:13 PM UTC 2025 Skipped the installation of package python-is-python3 on Debian 12 as it can only be installed on Debian 11. Wed Sep 24 08:11:13 PM UTC 2025 Skipped the installation of package python3-netaddr on Debian 12 as it can only be installed on Debian 11. Wed Sep 24 08:11:13 PM UTC 2025 Finished setting up systemvm Wed Sep 24 08:11:13 PM UTC 2025 Finished setting up systemvm 2025-09-24T20:11:20,664 INFO [cloud.agent.AgentShell] (main:[]) Agent started 2025-09-24T20:11:20,675 INFO [cloud.agent.AgentShell] (main:[]) Implementation Version is 4.21.0.0 2025-09-24T20:11:20,676 INFO [cloud.agent.AgentShell] (main:[]) agent.properties found at /usr/local/cloud/systemvm/conf/agent.properties 2025-09-24T20:11:20,741 INFO [cloud.agent.AgentShell] (main:[]) Defaulting to using properties file for storage 2025-09-24T20:11:20,742 INFO [cloud.agent.AgentShell] (main:[]) Defaulting to the constant time backoff algorithm 2025-09-24T20:11:20,785 INFO [cloud.utils.LogUtils] (main:[]) log4j configuration found at /usr/local/cloud/systemvm/conf/log4j-cloud.xml 2025-09-24T20:11:20,786 INFO [cloud.agent.AgentShell] (main:[]) Using default Java settings for IPv6 preference for agent connection 2025-09-24T20:11:20,893 INFO [cloud.agent.Agent] (main:[]) Initialising agent [id: , uuid: null, name: null] 2025-09-24T20:11:20,908 INFO [storage.resource.NfsSecondaryStorageResource] (main:[]) config_ssl.sh found in /usr/local/cloud/systemvm/config_ssl.sh 2025-09-24T20:11:20,908 INFO [storage.resource.NfsSecondaryStorageResource] (main:[]) config_auth.sh found in /usr/local/cloud/systemvm/config_auth.sh 2025-09-24T20:11:20,909 INFO [storage.resource.NfsSecondaryStorageResource] (main:[]) _configIpFirewallScr found in /usr/local/cloud/systemvm/ipfirewall.sh 2025-09-24T20:11:20,915 INFO [storage.resource.NfsSecondaryStorageResource] (main:[]) Secondary storage runs in role templateProcessor 2025-09-24T20:11:20,938 WARN [storage.resource.NfsSecondaryStorageResource] (main:[]) Execution of process [3817] for command [/bin/bash -c ip route delete 172.24.48.197 ] failed. 2025-09-24T20:11:20,938 WARN [storage.resource.NfsSecondaryStorageResource] (main:[]) Process [3817] for command [/bin/bash -c ip route delete 172.24.48.197 ] encountered the error: [RTNETLINK answers: No such process]. 2025-09-24T20:11:20,954 WARN [storage.resource.NfsSecondaryStorageResource] (main:[]) Execution of process [3821] for command [/bin/bash -c ip route delete 172.24.48.198 ] failed. 2025-09-24T20:11:20,955 WARN [storage.resource.NfsSecondaryStorageResource] (main:[]) Process [3821] for command [/bin/bash -c ip route delete 172.24.48.198 ] encountered the error: [RTNETLINK answers: No such process]. 2025-09-24T20:11:20,969 WARN [storage.resource.NfsSecondaryStorageResource] (main:[]) Execution of process [3825] for command [/bin/bash -c ip route delete 172.24.48.195 ] failed. 2025-09-24T20:11:20,969 WARN [storage.resource.NfsSecondaryStorageResource] (main:[]) Process [3825] for command [/bin/bash -c ip route delete 172.24.48.195 ] encountered the error: [RTNETLINK answers: No such process]. 2025-09-24T20:11:20,984 WARN [storage.resource.NfsSecondaryStorageResource] (main:[]) Execution of process [3829] for command [/bin/bash -c ip route delete 172.24.48.196 ] failed. 2025-09-24T20:11:20,984 WARN [storage.resource.NfsSecondaryStorageResource] (main:[]) Process [3829] for command [/bin/bash -c ip route delete 172.24.48.196 ] encountered the error: [RTNETLINK answers: No such process]. 2025-09-24T20:11:21,045 INFO [storage.resource.IpTablesHelper] (main:[]) Adding rule [-i eth1 -p tcp -m state --state NEW -m tcp --dport 3922 -j ACCEPT] to [INPUT] if required. 2025-09-24T20:11:21,053 WARN [storage.resource.IpTablesHelper] (main:[]) Execution of process [3837] for command [/bin/bash -c iptables -C INPUT -i eth1 -p tcp -m state --state NEW -m tcp --dport 3922 -j ACCEPT ] failed. 2025-09-24T20:11:21,314 WARN [storage.resource.IpTablesHelper] (main:[]) Process [3934] for command [/bin/bash -c iptables -C OUTPUT -o eth1 -p tcp -m state --state NEW -m tcp --dport 443 -j REJECT; ] encountered the error: [iptables: Bad rule (does a matching rule exist in that chain?).]. 2025-09-24T20:11:21,318 INFO [storage.template.DownloadManagerImpl] (main:[]) listvmtmplt.sh found in /usr/local/cloud/systemvm/scripts/storage/secondary/listvmtmplt.sh 2025-09-24T20:11:21,323 INFO [storage.template.DownloadManagerImpl] (main:[]) createtmplt.sh found in /usr/local/cloud/systemvm/scripts/storage/secondary/createtmplt.sh 2025-09-24T20:11:21,324 INFO [storage.template.DownloadManagerImpl] (main:[]) listvolume.sh found in /usr/local/cloud/systemvm/scripts/storage/secondary/listvolume.sh 2025-09-24T20:11:21,327 INFO [storage.template.DownloadManagerImpl] (main:[]) createvolume.sh found in /usr/local/cloud/systemvm/scripts/storage/secondary/createvolume.sh 2025-09-24T20:11:21,338 INFO [storage.template.UploadManagerImpl] (main:[]) UploadManager: starting additional services since we are inside system vm 2025-09-24T20:11:21,378 INFO [cloud.serializer.GsonHelper] (main:[]) Default Builder inited. 2025-09-24T20:11:21,397 INFO [cloud.agent.Agent] (main:[]) Agent [id = new, uuid = null, name = null, type = PremiumSecondaryStorageResource, zone = 3, pod = 3, workers = 5, port = 8250] with host = 172.24.48.197, local id = 1 2025-09-24T20:11:21,401 INFO [utils.nio.NioClient] (main:[]) Connecting to 172.24.48.197:8250 2025-09-24T20:11:21,418 INFO [utils.nio.NioClient] (main:[]) Connected to 172.24.48.197:8250 2025-09-24T20:11:21,421 INFO [utils.nio.Link] (main:[]) Conf file found: /usr/local/cloud/systemvm/conf/agent.properties 2025-09-24T20:11:22,062 ERROR [utils.nio.Link] (main:[]) SSL error caught during wrap data: No trusted certificate found, for local address=/172.17.26.85:34672, remote address=/172.24.48.197:8250. 2025-09-24T20:11:22,063 INFO [utils.nio.NioClient] (main:[]) SSL: Handshake done 2025-09-24T20:11:22,144 WARN [cloud.agent.Agent] (Agent-Handler-1:[]) Unable to send request to /172.24.48.197:8250 due to 'null', request: null 2025-09-24T20:11:27,094 INFO [cloud.agent.Agent] (Agent-Handler-2:[]) Lost connection to host: 172.24.48.197. Attempting reconnection while we still have 0 commands in progress. 2025-09-24T20:11:27,098 INFO [utils.nio.NioClient] (Agent-Handler-2:[]) NioClient connection closed 2025-09-24T20:11:32,100 INFO [cloud.agent.Agent] (Agent-Handler-2:[]) Reconnecting to host: 172.24.48.198 2025-09-24T20:11:32,109 INFO [utils.nio.NioClient] (Agent-Handler-2:[]) Connecting to 172.24.48.198:8250 2025-09-24T20:11:32,111 INFO [utils.nio.NioClient] (Agent-Handler-2:[]) Connected to 172.24.48.198:8250 2025-09-24T20:11:32,113 INFO [utils.nio.Link] (Agent-Handler-2:[]) Conf file found: /usr/local/cloud/systemvm/conf/agent.properties 2025-09-24T20:11:32,227 ERROR [utils.nio.Link] (Agent-Handler-2:[]) SSL error caught during wrap data: No trusted certificate found, for local address=/172.17.26.85:60296, remote address=/172.24.48.198:8250. 2025-09-24T20:11:32,228 INFO [utils.nio.NioClient] (Agent-Handler-2:[]) SSL: Handshake done 2025-09-24T20:11:32,241 WARN [cloud.agent.Agent] (Agent-Handler-1:[]) Unable to send request to /172.24.48.198:8250 due to 'null', request: null 2025-09-24T20:11:37,231 INFO [cloud.agent.Agent] (Agent-Handler-2:[]) Connected to the host: 172.24.48.198 2025-09-24T20:11:37,238 INFO [cloud.agent.Agent] (Agent-Handler-2:[]) Lost connection to host: 172.24.48.198. Attempting reconnection while we still have 0 commands in progress. 2025-09-24T20:11:37,240 INFO [utils.nio.NioClient] (Agent-Handler-2:[]) NioClient connection closed 2025-09-24T20:11:42,242 INFO [cloud.agent.Agent] (Agent-Handler-2:[]) Reconnecting to host: 172.24.48.198 2025-09-24T20:11:42,247 INFO [utils.nio.NioClient] (Agent-Handler-2:[]) Connecting to 172.24.48.198:8250 2025-09-24T20:11:42,254 INFO [utils.nio.NioClient] (Agent-Handler-2:[]) Connected to 172.24.48.198:8250 2025-09-24T20:11:42,255 INFO [utils.nio.Link] (Agent-Handler-2:[]) Conf file found: /usr/local/cloud/systemvm/conf/agent.properties 2025-09-24T20:11:42,354 ERROR [utils.nio.Link] (Agent-Handler-2:[]) SSL error caught during wrap data: No trusted certificate found, for local address=/172.17.26.85:57034, remote address=/172.24.48.198:8250. 2025-09-24T20:11:42,358 INFO [utils.nio.NioClient] (Agent-Handler-2:[]) SSL: Handshake done 2025-09-24T20:11:42,376 WARN [cloud.agent.Agent] (Agent-Handler-1:[]) Unable to send request to /172.24.48.198:8250 due to 'null', request: null 2025-09-24T20:11:47,368 INFO [cloud.agent.Agent] (Agent-Handler-2:[]) Lost connection to host: 172.24.48.198. Attempting reconnection while we still have 0 commands in progress. 2025-09-24T20:11:47,376 INFO [utils.nio.NioClient] (Agent-Handler-2:[]) NioClient connection closed 2025-09-24T20:11:47,364 INFO [cloud.agent.Agent] (Agent-Handler-2:[]) Connected to the host: 172.24.48.198 2025-09-24T20:11:52,378 INFO [cloud.agent.Agent] (Agent-Handler-2:[]) Reconnecting to host: 172.24.48.198 2025-09-24T20:11:52,383 INFO [utils.nio.NioClient] (Agent-Handler-2:[]) Connecting to 172.24.48.198:8250 2025-09-24T20:11:52,387 INFO [utils.nio.NioClient] (Agent-Handler-2:[]) Connected to 172.24.48.198:8250 2025-09-24T20:11:52,389 INFO [utils.nio.Link] (Agent-Handler-2:[]) Conf file found: /usr/local/cloud/systemvm/conf/agent.properties 2025-09-24T20:11:52,538 ERROR [utils.nio.Link] (Agent-Handler-2:[]) SSL error caught during wrap data: No trusted certificate found, for local address=/172.17.26.85:37370, remote address=/172.24.48.198:8250. 2025-09-24T20:11:52,543 INFO [utils.nio.NioClient] (Agent-Handler-2:[]) SSL: Handshake done 2025-09-24T20:11:52,561 WARN [cloud.agent.Agent] (Agent-Handler-1:[]) Unable to send request to /172.24.48.198:8250 due to 'null', request: null 2025-09-24T20:11:57,547 INFO [cloud.agent.Agent] (Agent-Handler-2:[]) Connected to the host: 172.24.48.198 2025-09-24T20:11:57,549 INFO [cloud.agent.Agent] (Agent-Handler-2:[]) Lost connection to host: 172.24.48.198. Attempting reconnection while we still have 0 commands in progress. ******************************************************* and also management log is sent Local":false,"usageLocal":true,"systemBootTime":"Sep 17, 2025, 10:16:05 AM","kernelVersion":"6.8.0-79-generic"} 2025-09-24 11:24:30,486 INFO [c.c.c.ClusterManagerImpl] (Cluster-Heartbeat-1:[ctx-a0853d3f]) (logid:4ba692f3) No inactive management server node found 2025-09-24 11:24:30,487 DEBUG [c.c.c.ClusterManagerImpl] (Cluster-Heartbeat-1:[ctx-a0853d3f]) (logid:4ba692f3) Peer scan is finished. profiler: Done. Duration: 5ms , profilerQueryActiveList: Done. Duration: 2ms, , profilerSyncClusterInfo: Done. Duration: 1ms, profilerInvalidatedNodeList: Done. Duration: 0ms, profilerRemovedList: Done. Duration: 0ms,, profilerNewList: Done. Duration: 0ms, profilerInactiveList: Done. Duration: 1ms 2025-09-24 11:24:31,139 ERROR [c.c.u.n.Link] (AgentManager-SSLHandshakeHandler-2:[]) (logid:) SSL error caught during unwrap data: Received fatal alert: certificate_unknown, for local address=/172.24.48.198:8250, remote address=/172.17.26.85:51674. The client may have invalid ca-certificates. 2025-09-24 11:24:31,283 ERROR [c.c.u.n.Link] (AgentManager-SSLHandshakeHandler-2:[]) (logid:) SSL error caught during unwrap data: Received fatal alert: certificate_unknown, for local address=/172.24.48.198:8250, remote address=/172.17.26.41:55808. The client may have invalid ca-certificates. 2025-09-24 11:24:31,989 INFO [c.c.c.ClusterManagerImpl] (Cluster-Heartbeat-1:[ctx-b276e80b]) (logid:b10eb84f) No inactive management server node found 2025-09-24 11:24:31,989 DEBUG [c.c.c.ClusterManagerImpl] (Cluster-Heartbeat-1:[ctx-b276e80b]) (logid:b10eb84f) Peer scan is finished. profiler: Done. Duration: 6ms , profilerQueryActiveList: Done. Duration: 2ms, , profilerSyncClusterInfo: Done. Duration: 1ms, profilerInvalidatedNodeList: Done. Duration: 0ms, profilerRemovedList: Done. Duration: 0ms,, profilerNewList: Done. Duration: 0ms, profilerInactiveList: Done. Duration: 1ms GitHub link: https://github.com/apache/cloudstack/discussions/11694#discussioncomment-14495363 ---- This is an automatically sent email for [email protected]. To unsubscribe, please send an email to: [email protected]
