[ovs-discuss] SSL errors with OVS on Alpine Linux

Shivaram Mysore shivaram.mysore at gmail.com
Wed Aug 28 01:12:00 UTC 2019


Hi,

I am running OVS on Alpine Linux
<https://pkgs.alpinelinux.org/package/edge/main/x86_64/openvswitch> (
ovs-vswitchd
(Open vSwitch) 2.10.1) and getting SSL errors.  I have a similar setup on
Ubuntu and other COTS switches with same/similar certs and I don't have any
issues.

I am getting errors like below

2019-08-28T00:55:38.905Z|01201|rconn|INFO|ovs-br0<->ssl:10.22.23.97:6653:
connecting...
2019-08-28T00:55:38.905Z|01202|stream_ssl|ERR|Certificate must be
configured to use SSL
2019-08-28T00:55:38.905Z|01203|rconn|WARN|ovs-br0<->ssl:10.22.23.97:6653:
connection failed (Protocol not available)
2019-08-28T00:55:38.905Z|01204|rconn|INFO|ovs-br0<->ssl:10.22.23.97:6653:
continuing to retry connections in the background but suppressing further
logging
2019-08-28T00:55:46.903Z|01205|stream_ssl|ERR|Certificate must be
configured to use SSL
2019-08-28T00:55:46.903Z|01206|rconn|WARN|ovs-br0<->ssl:10.22.23.97:6654:
connection failed (Protocol not available)
2019-08-28T00:55:46.904Z|01207|stream_ssl|ERR|Certificate must be
configured to use SSL
2019-08-28T00:55:46.904Z|01208|rconn|WARN|ovs-br0<->ssl:10.22.23.97:6653:
connection failed (Protocol not available)
2019-08-28T00:55:46.904Z|01209|fail_open|WARN|Could not connect to
controller (or switch failed controller's post-connection admission control
policy) for 15 seconds, failing open
2019-08-28T00:55:54.903Z|01210|stream_ssl|ERR|Certificate must be
configured to use SSL
2019-08-28T00:55:54.904Z|01211|rconn|WARN|ovs-br0<->ssl:10.22.23.97:6654:
connection failed (Protocol not available)
2019-08-28T00:55:54.904Z|01212|stream_ssl|ERR|Certificate must be
configured to use SSL
2019-08-28T00:55:5


$ *ovs-vsctl list ssl*
_uuid               : c1fec598-13b9-40a3-bf50-dfe54529505c
bootstrap_ca_cert   : false
ca_cert             :
"/var/lib/openvswitch/pki/my_godaddy-ca-cert-chain.pem"
certificate         : "/var/lib/openvswitch/pki/client.cert.pem"
external_ids        : {}
private_key         : "/var/lib/openvswitch/pki/client.key.pem"

What could be wrong?  Has anyone used OVS on Alpine Linux?

Thanks

/Shivaram
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.openvswitch.org/pipermail/ovs-discuss/attachments/20190827/06736e2b/attachment-0001.html>


More information about the discuss mailing list