Добрый день!

На этапе выполнения команды из ЖТЯИ.00078-03 90 02 пункт 3.12 - ./pkica ca signing-key load --name <имя ЦС> --index <индекс ключа> --pin <ПИН контейнера>

Возникает такая ошибка:

[ERR] Ошибка асинхронной обработки pkica.ca.command.loadKey
Timeout occurred.

Сервисы запущены ЦС:

root@kv-gpca-sub01:/opt/cpca/pkica# ps -aux | grep /opt/cpca/
ca 666 0.1 0.1 1392448 25360 ? Ssl Jan30 1:52 /opt/cpca/nats-streaming/nats-streaming-server -sc /opt/cpca/nats-streaming/nats.no-tls.conf
root 43205 1.6 0.7 5143160 124640 pts/1 Tl 11:34 0:02 /opt/cpca/CryptoPro.Ca.Service/CryptoPro.Ca.Service

Прикладываю логи. Время попытка загрузки ключа: ~12.06.00

Ca.Service_20250131.log (8kb) загружен 1 раз(а).
pkica_20250131.log (10kb) загружен 1 раз(а).

Судя по всему nats запустился, но Ca.Service не может к нему подключиться.

Ca.Service_20250131.log (13kb) загружен 1 раз(а).


root@kv-gpca-sub01:/home/rpokalyukhin# /opt/cpca/nats-streaming/nats-streaming-server -sc /opt/cpca/nats-streaming/nats.no-tls.conf
[1492] 2025/01/31 12:50:53.738223 [INF] STREAM: Starting nats-streaming-server[pkica-cluster] version 0.24.6
[1492] 2025/01/31 12:50:53.738278 [INF] STREAM: ServerID: fVEV7uQ1e2C7bzcC9XHiV5
[1492] 2025/01/31 12:50:53.738281 [INF] STREAM: Go version: go1.18.5
[1492] 2025/01/31 12:50:53.738283 [INF] STREAM: Git commit: [not set]
[1492] 2025/01/31 12:50:53.744800 [INF] Starting nats-server
[1492] 2025/01/31 12:50:53.744824 [INF] Version: 2.8.2
[1492] 2025/01/31 12:50:53.744828 [INF] Git: [not set]
[1492] 2025/01/31 12:50:53.744836 [INF] Name: NDN3VPZAUGKSZSKAAEQFPXTPKC3MLUCBTPGSIV36KD5MIWPMQTTFKJAJ
[1492] 2025/01/31 12:50:53.744842 [INF] ID: NDN3VPZAUGKSZSKAAEQFPXTPKC3MLUCBTPGSIV36KD5MIWPMQTTFKJAJ
[1492] 2025/01/31 12:50:53.745118 [INF] Using configuration file: /opt/cpca/nats-streaming/nats.no-tls.conf
[1492] 2025/01/31 12:50:53.745134 [WRN] Maximum payloads over 8.00 MB are generally discouraged and could lead to poor performance
[1492] 2025/01/31 12:50:53.750062 [INF] Listening for client connections on kv-gpca-sub01.ipa.ucb.local:4222
[1492] 2025/01/31 12:50:53.750084 [INF] Server is ready
[1492] 2025/01/31 12:50:53.804932 [INF] STREAM: Recovering the state...
[1492] 2025/01/31 12:50:53.841060 [INF] STREAM: Recovered 11 channel(s)
[1492] 2025/01/31 12:50:53.841645 [INF] STREAM: Message store is FILE
[1492] 2025/01/31 12:50:53.841659 [INF] STREAM: Store location: /opt/cpca/pkica-store
[1492] 2025/01/31 12:50:53.841692 [INF] STREAM: ---------- Store Limits ----------
[1492] 2025/01/31 12:50:53.841695 [INF] STREAM: Channels: 50
[1492] 2025/01/31 12:50:53.841698 [INF] STREAM: --------- Channels Limits --------
[1492] 2025/01/31 12:50:53.841700 [INF] STREAM: Subscriptions: 1000 *
[1492] 2025/01/31 12:50:53.841715 [INF] STREAM: Messages : 1000000 *
[1492] 2025/01/31 12:50:53.841723 [INF] STREAM: Bytes : 50.00 GB
[1492] 2025/01/31 12:50:53.841731 [INF] STREAM: Age : unlimited *
[1492] 2025/01/31 12:50:53.841738 [INF] STREAM: Inactivity : unlimited *
[1492] 2025/01/31 12:50:53.841745 [INF] STREAM: ----------------------------------
[1492] 2025/01/31 12:50:53.841752 [INF] STREAM: Streaming Server is ready
^Z
[1]+ Stopped /opt/cpca/nats-streaming/nats-streaming-server -sc /opt/cpca/nats-streaming/nats.no-tls.conf
root@kv-gpca-sub01:/home/rpokalyukhin# /opt/cpca/CryptoPro.Ca.Service/CryptoPro.Ca.Service
[12:51:28 ERR] Не удалось установить подключение к NATS nats://kv-gpca-sub01.ipa.ucb.local:4222 (попытка #1). <s:CryptoPro.Util.Nats.AddNatsServiceCollectionExtensions.NatsConnectionFactory>
NATS.Client.NATSConnectionException: Error while performing handshake with server. See inner exception for more details.
---> System.IO.IOException: Unable to read data from the transport connection: Connection timed out.
---> System.Net.Sockets.SocketException (110): Connection timed out

Отредактировано пользователем 31 января 2025 г. 13:07:24(UTC)  | Причина: Не указана

Приложите конфиг Са.Service и nats

С каким конфигом nats запускаете? nats запускаете на сервере с Са?