Description of problem: Attempting to add a iSCSI data domain fails with this error: Error while executing action New SAN Storage Domain: Unexpected exception Version-Release number of selected component (if applicable): si15.1 How reproducible: Steps to Reproduce: 1. Attempt to add an iSCSI domain 2. Fail. 3. Check engine.log and vdsm.log on the host. Actual results: Domain not created Expected results: Domain created. Additional info: vdsm.log contains: Thread-1163918::ERROR::2012-08-29 04:00:17,429::SecureXMLRPCServer::73::root::(handle_error) client ('10.64.15.236', 38100) Traceback (most recent call last): File "/usr/lib64/python2.6/SocketServer.py", line 560, in process_request_thread self.finish_request(request, client_address) File "/usr/lib/python2.6/site-packages/vdsm/SecureXMLRPCServer.py", line 66, in finish_request request.do_handshake() File "/usr/lib64/python2.6/ssl.py", line 279, in do_handshake self._sslobj.do_handshake() SSLError: [Errno 1] _ssl.c:490: error:14094416:SSL routines:SSL3_READ_BYTES:sslv3 alert certificate unknown Thread-1163920::ERROR::2012-08-29 04:00:19,454::SecureXMLRPCServer::73::root::(handle_error) client ('10.64.15.236', 48198) Traceback (most recent call last): File "/usr/lib64/python2.6/SocketServer.py", line 560, in process_request_thread self.finish_request(request, client_address) File "/usr/lib/python2.6/site-packages/vdsm/SecureXMLRPCServer.py", line 66, in finish_request request.do_handshake() File "/usr/lib64/python2.6/ssl.py", line 279, in do_handshake self._sslobj.do_handshake() SSLError: [Errno 1] _ssl.c:490: error:14094416:SSL routines:SSL3_READ_BYTES:sslv3 alert certificate unknown Thread-1163922::ERROR::2012-08-29 04:00:21,479::SecureXMLRPCServer::73::root::(handle_error) client ('10.64.15.236', 39849) Traceback (most recent call last): File "/usr/lib64/python2.6/SocketServer.py", line 560, in process_request_thread self.finish_request(request, client_address) File "/usr/lib/python2.6/site-packages/vdsm/SecureXMLRPCServer.py", line 66, in finish_request request.do_handshake() File "/usr/lib64/python2.6/ssl.py", line 279, in do_handshake self._sslobj.do_handshake() SSLError: [Errno 1] _ssl.c:490: error:14094416:SSL routines:SSL3_READ_BYTES:sslv3 alert certificate unknown Thread-1163924::ERROR::2012-08-29 04:00:23,505::SecureXMLRPCServer::73::root::(handle_error) client ('10.64.15.236', 40578) Traceback (most recent call last): File "/usr/lib64/python2.6/SocketServer.py", line 560, in process_request_thread self.finish_request(request, client_address) File "/usr/lib/python2.6/site-packages/vdsm/SecureXMLRPCServer.py", line 66, in finish_request request.do_handshake() File "/usr/lib64/python2.6/ssl.py", line 279, in do_handshake self._sslobj.do_handshake() SSLError: [Errno 1] _ssl.c:490: error:14094416:SSL routines:SSL3_READ_BYTES:sslv3 alert certificate unknown Thread-1163926::ERROR::2012-08-29 04:00:25,528::SecureXMLRPCServer::73::root::(handle_error) client ('10.64.15.236', 44986) Traceback (most recent call last): File "/usr/lib64/python2.6/SocketServer.py", line 560, in process_request_thread self.finish_request(request, client_address) File "/usr/lib/python2.6/site-packages/vdsm/SecureXMLRPCServer.py", line 66, in finish_request request.do_handshake() File "/usr/lib64/python2.6/ssl.py", line 279, in do_handshake self._sslobj.do_handshake() SSLError: [Errno 1] _ssl.c:490: error:14094416:SSL routines:SSL3_READ_BYTES:sslv3 alert certificate unknown Thread-1163927::DEBUG::2012-08-29 04:00:25,820::task::588::TaskManager.Task::(_updateState) Task=`6d8bd388-cd40-4f20-87f4-5ef13a0914e4`::moving from state init -> state preparing Thread-1163927::INFO::2012-08-29 04:00:25,820::logUtils::37::dispatcher::(wrapper) Run and protect: repoStats(options=None) Thread-1163927::INFO::2012-08-29 04:00:25,821::logUtils::39::dispatcher::(wrapper) Run and protect: repoStats, Return response: {} Thread-1163927::DEBUG::2012-08-29 04:00:25,821::task::1172::TaskManager.Task::(prepare) Task=`6d8bd388-cd40-4f20-87f4-5ef13a0914e4`::finished: {} Thread-1163927::DEBUG::2012-08-29 04:00:25,821::task::588::TaskManager.Task::(_updateState) Task=`6d8bd388-cd40-4f20-87f4-5ef13a0914e4`::moving from state preparing -> state finished Thread-1163927::DEBUG::2012-08-29 04:00:25,821::resourceManager::809::ResourceManager.Owner::(releaseAll) Owner.releaseAll requests {} resources {} Thread-1163927::DEBUG::2012-08-29 04:00:25,822::resourceManager::844::ResourceManager.Owner::(cancelAll) Owner.cancelAll requests {} Thread-1163927::DEBUG::2012-08-29 04:00:25,822::task::978::TaskManager.Task::(_decref) Task=`6d8bd388-cd40-4f20-87f4-5ef13a0914e4`::ref 0 aborting False
[root@rhev-host2 ~]# rpm -qi vdsm Name : vdsm Relocations: (not relocatable) Version : 4.9.6 Vendor: Red Hat, Inc. Release : 16.0.el6 Build Date: Thu 07 Jun 2012 05:38:26 AM EDT Install Date: Tue 19 Jun 2012 12:33:23 AM EDT Build Host: x86-004.build.bos.redhat.com Group : Applications/System Source RPM: vdsm-4.9.6-16.0.el6.src.rpm Size : 2524262 License: GPLv2+ Signature : (none) Packager : Red Hat, Inc. <http://bugzilla.redhat.com/bugzilla> URL : http://www.ovirt.org/wiki/Vdsm Summary : Virtual Desktop Server Manager Description : The VDSM service is required by a Virtualization Manager to manage the Linux hosts. VDSM manages and monitors the host's storage, memory and networks as well as virtual machine creation, other host administration tasks, statistics gathering, and log collection. The RHEVM build is SI13(.1) Are there other errors in the logs that do say what the problem adding storage is? Or, is the problem that Manager communication with the SPM host about adding a new domain fails because of the SSL error, and that is the unexpected error? I'll remove, reboot, and reinstall the host, and if that helps.
I removed the host, rebooted, and reinstalled the host. After that, I was able to complete the iSCSI storage domain creation. So the SSL error prevented me from creating an iSCSI data domain. I don't think I had any issues creating an NFS data domain though. Some of the reasons I think it might have happened: - I can't remember if I installed these hosts using a RHEL 6.3 Beta PXE image. I think I did. - I juggled our hosts between builds of RHEV3.1, removing them from one environment, adding them a newer one. I don't know that what I did is standard behaviour. Or if there is a bug to fix.
SSLError: [Errno 1] _ssl.c:490: error:14094416:SSL routines:SSL3_READ_BYTES:sslv3 alert certificate unknown
This request was not resolved in time for the current release. Red Hat invites you to ask your support representative to propose this request, if still desired, for consideration in the next release of Red Hat Enterprise Linux.
Looks like the issue is resolved, closing the BZ, unless there is a current reproducer available - then feel free to reopen