[ovs-discuss] ovsdb-client connected error when i update the ovsdb-server ca_cert.pem file

Ben Pfaff blp at nicira.com
Fri Sep 25 06:34:38 UTC 2015


On Fri, Sep 25, 2015 at 04:03:19AM +0000, Liuyongqiang (A) wrote:
> Hi, all
> There is a probability error when I update the ovsdb-server ca_cert.pem file, the ovsdb-client was unable to connect to the ovsdb-server when it hanppened, the OVS version is 2.0.2.
> 
> the update action steps on server:
> step1: rm ca_cert.pem
> step2: openssl x509 -inform PEM -in ca_cert.pem > /home/ca_cert.pem
> 
> I have found the direct cause is concurrency write-read file issues, the ovsdb-server probably read the wrong certificate from ca_cert.pem file, but this error is unrecoverable, it need to restart OVS to fix,
> did someone know about this problem?

Does it work better if you replace it atomically?

openssl x509 -inform PEM -in ca_cert.pem > /home/ca_cert.pem.tmp
mv /home/ca_cert.pem.tmp /home/ca_cert.pem



More information about the discuss mailing list