packer-plugin-proxmox icon indicating copy to clipboard operation
packer-plugin-proxmox copied to clipboard
verified publisher icon hashicorp

"insecure_skip_tls_verify": true doesnt seems to work

Open comitari-official opened this issue 2 years ago • 5 comments

Overview of the Issue

I m trying to build a vm from my proxmox server and get certificate verify failed error with or without "insecure_skip_tls_verify": true I m using a let's encrypt certificate on my proxmox so i m surprised it cannot verify the certificate , i even added the certificate to my system

Reproduction Steps

without

Plugin and Packer version

From packer version 1.9.2

Simplified Packer Buildfile

If the file is longer than a few dozen lines, please include the URL to the gist of the log or use the Github detailed format instead of posting it directly in the issue.

Operating system and Environment details

OS, Architecture, and any other information you can provide about the environment.

Log Fragments and crash.log files

proxmox-iso: Error creating VM: error creating VM: 596 tls_process_server_certificate: certificate verify failed, error status: (params: map[agent:1 args: boot: cores:1 cpu:kvm64 description:Packer ephemeral build VM efidisk0:local-lvm:1,efitype=4m,pre-enrolled-keys=1 hotplug: ide2:isos:debian-11.0.0-amd64-netinsta.iso,media=cdrom kvm:true machine: memory:512 name:packer-64ca1367-5a55-0ff4-15cc-b4268a472238 net0:virtio=72:D3:61:20:25:86,bridge=vmbr0,firewall=false onboot:false ostype:other scsi0:local-lvm:5,iothread=false scsihw:lsi sockets:1 startup: tags: vmid:107]) Build 'proxmox-iso' errored after 49 milliseconds 427 microseconds: Error creating VM: error creating VM: 596 tls_process_server_certificate: certificate verify failed, error status: (params: map[agent:1 args: boot: cores:1 cpu:kvm64 description:Packer ephemeral build VM efidisk0:local-lvm:1,efitype=4m,pre-enrolled-keys=1 hotplug: ide2:isos:debian-11.0.0-amd64-netinsta.iso,media=cdrom kvm:true machine: memory:512 name:packer-64ca1367-5a55-0ff4-15cc-b4268a472238 net0:virtio=72:D3:61:20:25:86,bridge=vmbr0,firewall=false onboot:false ostype:other scsi0:local-lvm:5,iothread=false scsihw:lsi sockets:1 startup: tags: vmid:107]) Include appropriate log fragments. If the log is longer than a few dozen lines, please include the URL to the gist of the log or use the Github detailed format instead of posting it directly in the issue.

Set the env var PACKER_LOG=1 for maximum log detail.

comitari-official avatar Aug 02 '23 08:08 comitari-official

I just added a cert from my personal CA and it still doesn't work. so it seems like packer doesn't even respect linux ca-certificates?!

Nold360 avatar Sep 20 '23 07:09 Nold360

Have same bug, but in my case it's mistake in config. If provide valid proxmox_url, but invalid node(that not present in cluster) - got error about SSL cert

hodorov avatar Nov 01 '23 21:11 hodorov

Did you guys try to ensure the node variable was correct? This was my issue. For example... node = "not-real-node-name" node = "server01"

DillonHansen71 avatar Dec 18 '24 14:12 DillonHansen71

Yes, this was my problem as well. I had used the FQDN for my node: node = "pve1.lab.example.com" this failed. What worked: node = "pve1"

jmccarrell avatar Apr 03 '25 00:04 jmccarrell