Node failed join the cluster

Hi. everybody. I met a problem with the search guard.

My version:

elasticserach-2.3.3

search-guard-2-2.3.3.0-beta3

search-guard-ssl-2.3.3.10

There are 3 node in my cluster.

I have start one node successfully. But when i start another node, there are some error in the first node :

[2016-06-15 19:14:43,432][ERROR][com.floragunn.searchguard.ssl.transport.SearchGuardSSLNettyTransport] [es1] SSL Problem error:14082174:SSL routines:SSL3_CHECK_CERT_AND_ALGORITHM:dh key too small

javax.net.ssl.SSLHandshakeException: error:14082174:SSL routines:SSL3_CHECK_CERT_AND_ALGORITHM:dh key too small

at io.netty.handler.ssl.OpenSslEngine.sslReadErrorResult(OpenSslEngine.java:774)

at io.netty.handler.ssl.OpenSslEngine.unwrap(OpenSslEngine.java:733)

at io.netty.handler.ssl.OpenSslEngine.unwrap(OpenSslEngine.java:810)

at io.netty.handler.ssl.OpenSslEngine.unwrap(OpenSslEngine.java:853)

at org.jboss.netty.handler.ssl.SslHandler.unwrap(SslHandler.java:1218)

at org.jboss.netty.handler.ssl.SslHandler.decode(SslHandler.java:852)

at org.jboss.netty.handler.codec.frame.FrameDecoder.callDecode(FrameDecoder.java:425)

at org.jboss.netty.handler.codec.frame.FrameDecoder.messageReceived(FrameDecoder.java:310)

at org.jboss.netty.channel.SimpleChannelUpstreamHandler.handleUpstream(SimpleChannelUpstreamHandler.java:70)

at org.jboss.netty.channel.DefaultChannelPipeline.sendUpstream(DefaultChannelPipeline.java:564)

at org.jboss.netty.channel.DefaultChannelPipeline.sendUpstream(DefaultChannelPipeline.java:559)

at org.jboss.netty.channel.Channels.fireMessageReceived(Channels.java:268)

at org.jboss.netty.channel.Channels.fireMessageReceived(Channels.java:255)

at org.jboss.netty.channel.socket.nio.NioWorker.read(NioWorker.java:88)

at org.jboss.netty.channel.socket.nio.AbstractNioWorker.process(AbstractNioWorker.java:108)

at org.jboss.netty.channel.socket.nio.AbstractNioSelector.run(AbstractNioSelector.java:337)

at org.jboss.netty.channel.socket.nio.AbstractNioWorker.run(AbstractNioWorker.java:89)

at org.jboss.netty.channel.socket.nio.NioWorker.run(NioWorker.java:178)

at org.jboss.netty.util.ThreadRenamingRunnable.run(ThreadRenamingRunnable.java:108)

at org.jboss.netty.util.internal.DeadLockProofWorker$1.run(DeadLockProofWorker.java:42)

at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)

at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)

at java.lang.Thread.run(Thread.java:745)

[2016-06-15 19:14:43,433][WARN ][discovery.zen ] [es1] failed to validate incoming join request from node [{es2}{fmvSsmXRQAexQ18k3Eu3eQ}{195.25.97.129}{195.25.97.129:9300}]

in this node, there are some errors:

[2016-06-15 19:14:43,659][INFO ][discovery.zen ] [es2] failed to send join request to master [{es1}{Ob7nkg6FQjizlguoF5Vw5Q}{195.25.97.128}{195.25.97.128:9300}], reason [RemoteTransportException[[es1][192.25.97.128:9300][internal:discovery/zen/join]]; nested: IllegalStateException[failure when sending a validation request to node]; nested: NodeDisconnectedException[[es2][195.25.97.129:9300][internal:discovery/zen/join/validate] disconnected]; ]

[2016-06-15 19:14:43,656][ERROR][com.floragunn.searchguard.ssl.transport.SearchGuardSSLNettyTransport] [es2] SSL Problem Received fatal alert: handshake_failure

javax.net.ssl.SSLException: Received fatal alert: handshake_failure

at sun.security.ssl.Alerts.getSSLException(Alerts.java:208)

at sun.security.ssl.SSLEngineImpl.fatal(SSLEngineImpl.java:1630)

at sun.security.ssl.SSLEngineImpl.fatal(SSLEngineImpl.java:1598)

at sun.security.ssl.SSLEngineImpl.recvAlert(SSLEngineImpl.java:1767)

at sun.security.ssl.SSLEngineImpl.readRecord(SSLEngineImpl.java:1063)

at sun.security.ssl.SSLEngineImpl.readNetRecord(SSLEngineImpl.java:887)

at sun.security.ssl.SSLEngineImpl.unwrap(SSLEngineImpl.java:761)

at javax.net.ssl.SSLEngine.unwrap(SSLEngine.java:624)

at org.jboss.netty.handler.ssl.SslHandler.unwrap(SslHandler.java:1218)

at org.jboss.netty.handler.ssl.SslHandler.decode(SslHandler.java:852)

at org.jboss.netty.handler.codec.frame.FrameDecoder.callDecode(FrameDecoder.java:425)

at org.jboss.netty.handler.codec.frame.FrameDecoder.messageReceived(FrameDecoder.java:303)

at org.jboss.netty.channel.SimpleChannelUpstreamHandler.handleUpstream(SimpleChannelUpstreamHandler.java:70)

at org.jboss.netty.channel.DefaultChannelPipeline.sendUpstream(DefaultChannelPipeline.java:564)

at org.jboss.netty.channel.DefaultChannelPipeline.sendUpstream(DefaultChannelPipeline.java:559)

at org.jboss.netty.channel.Channels.fireMessageReceived(Channels.java:268)

at org.jboss.netty.channel.Channels.fireMessageReceived(Channels.java:255)

at org.jboss.netty.channel.socket.nio.NioWorker.read(NioWorker.java:88)

at org.jboss.netty.channel.socket.nio.AbstractNioWorker.process(AbstractNioWorker.java:108)

at org.jboss.netty.channel.socket.nio.AbstractNioSelector.run(AbstractNioSelector.java:337)

at org.jboss.netty.channel.socket.nio.AbstractNioWorker.run(AbstractNioWorker.java:89)

at org.jboss.netty.channel.socket.nio.NioWorker.run(NioWorker.java:178)

at org.jboss.netty.util.ThreadRenamingRunnable.run(ThreadRenamingRunnable.java:108)

at org.jboss.netty.util.internal.DeadLockProofWorker$1.run(DeadLockProofWorker.java:42)

at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)

at java.util.concurrent.ThreadPoolExecutor$Work

Can you tell me where i have made mistakes? Thanks!

···

Am 15.06.2016 um 13:33 schrieb fzuhongwei@gmail.com:

Hi. everybody. I met a problem with the search guard.
My version:
elasticserach-2.3.3
search-guard-2-2.3.3.0-beta3
search-guard-ssl-2.3.3.10

There are 3 node in my cluster.
I have start one node successfully. But when i start another node, there are some error in the first node :

[2016-06-15 19:14:43,432][ERROR][com.floragunn.searchguard.ssl.transport.SearchGuardSSLNettyTransport] [es1] SSL Problem error:14082174:SSL routines:SSL3_CHECK_CERT_AND_ALGORITHM:dh key too small
javax.net.ssl.SSLHandshakeException: error:14082174:SSL routines:SSL3_CHECK_CERT_AND_ALGORITHM:dh key too small
  at io.netty.handler.ssl.OpenSslEngine.sslReadErrorResult(OpenSslEngine.java:774)
  at io.netty.handler.ssl.OpenSslEngine.unwrap(OpenSslEngine.java:733)
  at io.netty.handler.ssl.OpenSslEngine.unwrap(OpenSslEngine.java:810)
  at io.netty.handler.ssl.OpenSslEngine.unwrap(OpenSslEngine.java:853)
  at org.jboss.netty.handler.ssl.SslHandler.unwrap(SslHandler.java:1218)
  at org.jboss.netty.handler.ssl.SslHandler.decode(SslHandler.java:852)
  at org.jboss.netty.handler.codec.frame.FrameDecoder.callDecode(FrameDecoder.java:425)
  at org.jboss.netty.handler.codec.frame.FrameDecoder.messageReceived(FrameDecoder.java:310)
  at org.jboss.netty.channel.SimpleChannelUpstreamHandler.handleUpstream(SimpleChannelUpstreamHandler.java:70)
  at org.jboss.netty.channel.DefaultChannelPipeline.sendUpstream(DefaultChannelPipeline.java:564)
  at org.jboss.netty.channel.DefaultChannelPipeline.sendUpstream(DefaultChannelPipeline.java:559)
  at org.jboss.netty.channel.Channels.fireMessageReceived(Channels.java:268)
  at org.jboss.netty.channel.Channels.fireMessageReceived(Channels.java:255)
  at org.jboss.netty.channel.socket.nio.NioWorker.read(NioWorker.java:88)
  at org.jboss.netty.channel.socket.nio.AbstractNioWorker.process(AbstractNioWorker.java:108)
  at org.jboss.netty.channel.socket.nio.AbstractNioSelector.run(AbstractNioSelector.java:337)
  at org.jboss.netty.channel.socket.nio.AbstractNioWorker.run(AbstractNioWorker.java:89)
  at org.jboss.netty.channel.socket.nio.NioWorker.run(NioWorker.java:178)
  at org.jboss.netty.util.ThreadRenamingRunnable.run(ThreadRenamingRunnable.java:108)
  at org.jboss.netty.util.internal.DeadLockProofWorker$1.run(DeadLockProofWorker.java:42)
  at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
  at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
  at java.lang.Thread.run(Thread.java:745)
[2016-06-15 19:14:43,433][WARN ][discovery.zen ] [es1] failed to validate incoming join request from node [{es2}{fmvSsmXRQAexQ18k3Eu3eQ}{195.25.97.129}{195.25.97.129:9300}]

in this node, there are some errors:
[2016-06-15 19:14:43,659][INFO ][discovery.zen ] [es2] failed to send join request to master [{es1}{Ob7nkg6FQjizlguoF5Vw5Q}{195.25.97.128}{195.25.97.128:9300}], reason [RemoteTransportException[[es1][192.25.97.128:9300][internal:discovery/zen/join]]; nested: IllegalStateException[failure when sending a validation request to node]; nested: NodeDisconnectedException[[es2][195.25.97.129:9300][internal:discovery/zen/join/validate] disconnected]; ]
[2016-06-15 19:14:43,656][ERROR][com.floragunn.searchguard.ssl.transport.SearchGuardSSLNettyTransport] [es2] SSL Problem Received fatal alert: handshake_failure
javax.net.ssl.SSLException: Received fatal alert: handshake_failure
  at sun.security.ssl.Alerts.getSSLException(Alerts.java:208)
  at sun.security.ssl.SSLEngineImpl.fatal(SSLEngineImpl.java:1630)
  at sun.security.ssl.SSLEngineImpl.fatal(SSLEngineImpl.java:1598)
  at sun.security.ssl.SSLEngineImpl.recvAlert(SSLEngineImpl.java:1767)
  at sun.security.ssl.SSLEngineImpl.readRecord(SSLEngineImpl.java:1063)
  at sun.security.ssl.SSLEngineImpl.readNetRecord(SSLEngineImpl.java:887)
  at sun.security.ssl.SSLEngineImpl.unwrap(SSLEngineImpl.java:761)
  at javax.net.ssl.SSLEngine.unwrap(SSLEngine.java:624)
  at org.jboss.netty.handler.ssl.SslHandler.unwrap(SslHandler.java:1218)
  at org.jboss.netty.handler.ssl.SslHandler.decode(SslHandler.java:852)
  at org.jboss.netty.handler.codec.frame.FrameDecoder.callDecode(FrameDecoder.java:425)
  at org.jboss.netty.handler.codec.frame.FrameDecoder.messageReceived(FrameDecoder.java:303)
  at org.jboss.netty.channel.SimpleChannelUpstreamHandler.handleUpstream(SimpleChannelUpstreamHandler.java:70)
  at org.jboss.netty.channel.DefaultChannelPipeline.sendUpstream(DefaultChannelPipeline.java:564)
  at org.jboss.netty.channel.DefaultChannelPipeline.sendUpstream(DefaultChannelPipeline.java:559)
  at org.jboss.netty.channel.Channels.fireMessageReceived(Channels.java:268)
  at org.jboss.netty.channel.Channels.fireMessageReceived(Channels.java:255)
  at org.jboss.netty.channel.socket.nio.NioWorker.read(NioWorker.java:88)
  at org.jboss.netty.channel.socket.nio.AbstractNioWorker.process(AbstractNioWorker.java:108)
  at org.jboss.netty.channel.socket.nio.AbstractNioSelector.run(AbstractNioSelector.java:337)
  at org.jboss.netty.channel.socket.nio.AbstractNioWorker.run(AbstractNioWorker.java:89)
  at org.jboss.netty.channel.socket.nio.NioWorker.run(NioWorker.java:178)
  at org.jboss.netty.util.ThreadRenamingRunnable.run(ThreadRenamingRunnable.java:108)
  at org.jboss.netty.util.internal.DeadLockProofWorker$1.run(DeadLockProofWorker.java:42)
  at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
  at java.util.concurrent.ThreadPoolExecutor$Work

Can you tell me where i have made mistakes? Thanks!

--
You received this message because you are subscribed to the Google Groups "Search Guard" group.
To unsubscribe from this group and stop receiving emails from it, send an email to search-guard+unsubscribe@googlegroups.com.
To post to this group, send email to search-guard@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/search-guard/58b88103-0edb-4635-8bec-a6c7112be958%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.