[prev in list] [next in list] [prev in thread] [next in thread] 

List:       openvswitch-discuss
Subject:    [ovs-discuss] ovsdb-client connected error when i update the ovsdb-server ca_cert.pem file
From:       blp () nicira ! com (Ben Pfaff)
Date:       2015-09-25 6:34:38
Message-ID: 20150925063438.GG10652 () nicira ! com
[Download RAW message or body]

On Fri, Sep 25, 2015 at 04:03:19AM +0000, Liuyongqiang (A) wrote:
> Hi, all
> There is a probability error when I update the ovsdb-server ca_cert.pem file, the \
> ovsdb-client was unable to connect to the ovsdb-server when it hanppened, the OVS \
> version is 2.0.2. 
> the update action steps on server:
> step1: rm ca_cert.pem
> step2: openssl x509 -inform PEM -in ca_cert.pem > /home/ca_cert.pem
> 
> I have found the direct cause is concurrency write-read file issues, the \
> ovsdb-server probably read the wrong certificate from ca_cert.pem file, but this \
> error is unrecoverable, it need to restart OVS to fix, did someone know about this \
> problem?

Does it work better if you replace it atomically?

openssl x509 -inform PEM -in ca_cert.pem > /home/ca_cert.pem.tmp
mv /home/ca_cert.pem.tmp /home/ca_cert.pem


[prev in list] [next in list] [prev in thread] [next in thread]