Login | Register
My pages Projects Community openCollabNet

Discussions > users > RE: Re: Current run problems

Project highlights: Stable Version: 1.6.1, Development Version: 1.7.6

current
Discussion topic

Back to topic list

RE: Re: Current run problems

Reply

Author LINDER Thierry <Thierry dot Linder at uditis dot ch>
Full name LINDER Thierry <Thierry dot Linder at uditis dot ch>
Date 2005-10-03 23:11:31 PDT
Message Hello,

I had the same trouble on a RedHat Fedora Core 4 server.
I finally found the raeson.

In the /etc/httpd/conf.d/ssl.conf, the path to the certificate aren't
the right ones.
After modifying this file like that, it works:

# Server Certificate:
# Point SSLCertificateFile at a PEM encoded certificate. If
# the certificate is encrypted, then you will be prompted for a
# pass phrase. Note that a kill -HUP will prompt again. A new
# certificate can be generated using the genkey(1) command.
#SSLCertificateFile /etc/pki/tls/certs/l​ocalhost.crt
SSLCertificateFile /etc/current/server.crt

# Server Private Key:
# If the key is not combined with the certificate, use this
# directive to point at the key file. Keep in mind that if
# you've both a RSA and a DSA private key you can configure
# both in parallel (to also allow the use of DSA ciphers, etc.)
#SSLCertificateKeyFile /etc/pki/tls/private​/localhost.key
SSLCertificateKeyFile /etc/current/server.key

I hope you have the same trouble

Good luck
 
Thierry Linder


-----Original Message-----
From: Jack Neely [mailto:jjneely at gmail dot com]
Sent: lundi, 3. octobre 2005 20:05
To: users at current dot tigris dot org
Subject: Re: Current run problems

Look at the URL up2date is printing out. You are still trying to
contact Red Hat's RHN servers instead of your Current server. Edit
/etc/sysconfig/rhn/up2date with the proper URL and it will work.

Thanks,
Jack

On 10/3/05, Dan Track <dan dot track at gmail dot com> wrote:
> Hi
>
> I'm just sending this in the hope that someone can help me. The
> software looks great and I would love to get it running, can someone
please help?
>
> Thanks
> Dan
>
>
> On 9/29/05, Dan Track <dan dot track at gmail dot com> wrote:
> > Hi
> >
> > Thanks for the replies.
> >
> > I checked the timestamp's they seem to be normal and are as
> > expected. At
> the moment I haven't setup a client, I am only setting up the server.
> >
> > I changed the following line in /etc/sysconfig/rhn/up2date:
> > sslCACert=/usr/share​/rhn/RHNS-CA-CERT
> >
> > to be :
> > sslCACert=/etc/curre​nt/RHNS-CA-CERT
> >
> > then I ran the channel command and got the same reponse:
> >
> > cadmin create_channel --name "Red Hat 7.2" --label rhl7.2 --arch
> > i386
> --release 7.2 --description "Red Hat Linux version 7.2"
> > CADMIN - Current Administration Text Interface Licensed under the
> > GNU GPL version 2.0 or greater.
> > https://xmlrpc.rhn.r​edhat.com/XMLRPC foo Traceback (most recent call

> > last):
> > File "/usr/sbin/cadmin", line 123, in ?
> > main()
> > File "/usr/sbin/cadmin", line 118, in main
> > module.run (server, commandOpts)
> > File "/usr/share/current/​admin/create_channel​.py", line 58, in run
> > result = rpcServer.doCall(ser​ver.cadmin.createCha​nnel, chan)
> > File "/usr/share/rhn/up2d​ate_client/rpcServer​.py", line
> 309, in doCall
> > ret = apply(method, args, kwargs)
> > File "/usr/lib/python2.3/​xmlrpclib.py", line 1029, in
> __call__
> > return self.__send(self.__name, args)
> > File "/usr/share/rhn/up2d​ate_client/rpcServer​.py", line
> 45, in _request1
> > ret = self._request(methodname, params)
> > File "/usr/lib/python2.3/​site-packages/rhn/rp​clib.py",
> line 308, in _request
> > verbose=self._verbose
> > File
> "/usr/lib/python2.3/​site-packages/rhn/tr​ansports.py", line
> 168, in request headers, fd = req.send_http(host, handler)
> > File
> "/usr/lib/python2.3/​site-packages/rhn/tr​ansports.py", line 695, in
> send_http
> > headers=self.headers)
> > File "/usr/lib/python2.3/​httplib.py", line 718, in
> request
> > self._send_request(method, url, body, headers)
> > File "/usr/lib/python2.3/​httplib.py", line 739, in
> _send_request
> > self.endheaders()
> > File "/usr/lib/python2.3/​httplib.py", line 712, in
> endheaders
> > self._send_output()
> > File "/usr/lib/python2.3/​httplib.py", line 597, in
> _send_output
> > self.send(msg)
> > File "/usr/lib/python2.3/​httplib.py", line 576, in send
> > self.sock.sendall (str)
> > File "/usr/lib/python2.3/​site-packages/rhn/SS​L.py",
> line 205, in write
> > sent = self._connection.send(data)
> > OpenSSL.SSL.Error: [('SSL routines', 'SSL3_GET_SERVER_CERTIFICATE',
> 'certificate verify failed')]
> >
> > Any further ideas.
> >
> > Appreciate all the help I'm getting.
> >
> > Thanks
> > Dan
> >
> >
> >
> >
> > On 9/29/05, Jack Neely < jjneely at gmail dot com> wrote:
> > > Okay, now you are pointing at your current server. Now you need
> > > to
> update the CA cert referrenced by your up2date configuration file so
> that it matches the certs used by your web server. See the online
docs:
> > >
> > > http://current.tigri​s.org/current-guide/​
> > >
> > > Jack Neely
> > >
> > >
> > >
> > > On 9/29/05, Dan Track <dan dot track at gmail dot com > wrote:
> > > > Hi
> > > >
> > > > Thanks for the reply.
> > > >
> > > > I tried what you said but received the same error. I even tried
> changing the ssl url entry, but that gave the following error:
> > > >
> > > > File "/usr/lib/python2.3/​site-packages/rhn/SS​L.py",
> line 205, in write
> > > > sent = self._connection.send(data)
> > > > OpenSSL.SSL.Error: [('SSL routines',
> > > > 'SSL3_GET_SERVER_CERTIFICATE',
> 'certificate verify failed')]
> > > >
> > > > Any ideas.
> > > >
> > > > Appreciate the help.
> > > >
> > > > Dan
> > > >
> > > >
> > > >
> > > > On 9/29/05, John Berninger <johnw@berningero​nline.net> wrote:
> > > > > At a guess, your /etc/sysconfig/rhn/up2date config file is
> > > > > still pointing at http[s]://xmlrpc.rhn​.redhat.com/XMLRPC
> for the
> > > > > [noSSL]serverURL. You need to change that, or Current won't
> > > > > work,
> since
> > > > > you're effectively trying to tell RHN to create a new channel
> > > > > named ${foo}. Obviously, RHN is going to give you the finger
> > > > > when you
> tell it
> > > > > something like that...
> > > > >
> > > > > On Thu, 29 Sep 2005, Dan Track wrote:
> > > > >
> > > > > > Hi
> > > > > >
> > > > > > I noticed a few posts regarding this issue I've got with
> > > > > > current,
> but none
> > > > > > seem to work for me.
> > > > > >
> > > > > > Basically I've tried installing and running both the 1.6.x
> > > > > > and the
> unstable
> > > > > > 1.7.2 branch but none of them work.
> > > > > >
> > > > > > All of the branches fail on creating a channel, here's the
> > > > > > last
> few error
> > > > > > lines:
> > > > > >
> > > > > > cadmin create_channel --name "Red Hat 7.2" --label rhl7.2
> > > > > > --arch
> i386
> > > > > > --release 7.2 --description "Red Hat Linux version 7.2"
> > > > > >
> > > > > > ......
> > > > > > File "/usr/lib/python2.3/​xmlrpclib.py", line 742,
> in close
> > > > > > raise Fault(**self._stack[0])
> > > > > > xmlrpclib.Fault: <Fault -1: "While running
'cadmin.createChannel':
> > > > > > caught\nserver.apac​heRequest.UnknownXML​ : Invalid
> request received (class
> > > > > > xmlrpc.cadmin is not defined (function =
> > > > > > createChannel)).\n">
> > > > > >
> > > > > > Not sure where the problem is and its really frustrating.
> > > > > > Can
> anyone give a
> > > > > > me an idea as to how to fix this?
> > > > > >
> > > > > >
> > > > > > Here's what I did step by step each time:
> > > > > >
> > > > > > 1. Download current srpm
> > > > > > 2. rpmbuild -ba current.spec 3. rpm -Uvh current-x.rpm 4.
> > > > > > /etc/init.d/mysqld start 5. Enter mysql 6. create database
> > > > > > up2date; 7. GRANT ALL PRIVILEGES on *.* to
> > > > > > 'current'@'localhost' ; 8. exit mysql 9. vi
> > > > > > /etc/current/current.conf My current.conf file:
> > > > > > [current]
> > > > > > log_file = /var/log/current.log log_level = 1
> > > > > > apache_config_file =
> /etc/httpd/conf.d/cu​rrent.httpd.conf
> > > > > > access_type = user
> > > > > > access_arg = apache
> > > > > > current_dir = /opt/current
> > > > > >
> > > > > > # Location of TAL templates
> > > > > > # template_dir = /usr/share/current/templates
> > > > > >
> > > > > > # The 'db' is which backend we're using db_type=mysql #
> > > > > > db_type = postgres # db_user and db_pass should be obvious
> > > > > > db_user = current db_pass = # db_name is the name of the
> > > > > > database - what oracle calls a 'SID'
> > > > > > db_name = up2date
> > > > > > db_host = localhost
> > > > > >
> > > > > > # These are some text messages that the server can return to

> > > > > > the
> clients
> > > > > > # in various API calls.
> > > > > > ## The period is there to provide a "blank line". Sheesh.
> > > > > > welcome_message = "Welcome to current, an open source server

> > > > > > for
> up2date."
> > > > > > privacy_statement = "Privacy Statement:
> > > > > > This is site specific, and you should change this message to

> > > > > > match your actual site."
> > > > > >
> > > > > > server_id = <REPLACE ME!>
> > > > > > server_secret = <REPLACE ME, TOO!> ## END OF LINE ##
> > > > > >
> > > > > > 10. cinstall create_apache_config 11. cinstall
> > > > > > create_certificate 12. cp /etc/current/server.key
> /etc/httpd/conf/ssl.​key/server.key
> > > > > > 13. cp /etc/current/server.crt
> /etc/httpd/conf/ssl.​crt/server.crt
> > > > > > 14. cinstall initdb
> > > > > > 15. /etc/init.d/httpd start
> > > > > > 16. cadmin create_channel --name "Red Hat 7.2" --label
> > > > > > rhl7.2
> --arch i386
> > > > > > --release 7.2 --description "Red Hat Linux version 7.2"
> > > > > > Then the error:
> > > > > > CADMIN - Current Administration Text Interface Licensed
> > > > > > under the GNU GPL version 2.0 or greater.
> > > > > > Traceback (most recent call last):
> > > > > > File "/usr/sbin/cadmin", line 123, in ?
> > > > > > main()
> > > > > > File "/usr/sbin/cadmin", line 118, in main
> > > > > > module.run(server, commandOpts) File
> "/usr/share/current/​admin/create_channel​.py", line 58, in run
> > > > > > result = rpcServer.doCall(ser​ver.cadmin.createCha​nnel, chan)

> > > > > > File
> "/usr/share/rhn/up2d​ate_client/rpcServer​.py", line 309, in doCall
> > > > > > ret = apply(method, args, kwargs) File
> > > > > > "/usr/lib/python2.3/​xmlrpclib.py", line
> 1029, in __call__
> > > > > > return self.__send(self.__name, args) File
> "/usr/share/rhn/up2d​ate_client/rpcServer​.py", line 45, in
> _request1
> > > > > > ret = self._request(methodname, params)
> > > > > > File
> "/usr/lib/python2.3/​site-packages/rhn/rp​clib.py", line 308,
> in _request
> > > > > > verbose=self._verbose
> > > > > > File
> "/usr/lib/python2.3/​site-packages/rhn/tr​ansports.py", line
> 184, in
> > > > > > request return self._process_response(fd, connection)
> > > > > > File
> "/usr/lib/python2.3/​site-packages/rhn/tr​ansports.py", line
> 212, in
> > > > > > _process_response
> > > > > > return self.parse_response(fd)
> > > > > > File
> "/usr/lib/python2.3/​site-packages/rhn/tr​ansports.py", line
> 236, in
> > > > > > parse_response
> > > > > > return u.close()
> > > > > > File "/usr/lib/python2.3/​xmlrpclib.py", line 742,
> in close
> > > > > > raise Fault(**self._stack[0])
> > > > > > xmlrpclib.Fault: <Fault -1: "While running
'cadmin.createChannel':
> > > > > > caught\nserver.apac​heRequest.UnknownXML​ : Invalid
> request received (class
> > > > > > xmlrpc.cadmin is not defined (function =
createChannel)).\n">
> > > > > >
> > > > > > Anyone have any ideas about this?
> > > > > >
> > > > > > Appreciate any help.
> > > > > >
> > > > > > Dan
> > > > >
> > > > > --
> > > > > John Berninger
> > > > >
> > > > > GPG Key ID: A8C1D45C
> > > > > Fingerprint: B1BB 90CB 5314 3113 CF22 66AE 822D 42A8
A8C1
> D45C
> > > > >
> > > > > Ita erat quando hic adveni.
> > > > > --
> > > > >
> > > > >
> --------------------​--------------------​--------------------​---------
> > > > > To unsubscribe, e-mail:
> users-unsubscribe@cu​rrent.tigris.org
> > > > > For additional commands, e-mail: users-help at current dot tigris dot org
> > > > >
> > > > >
> > > >
> > > >
> > >
> > >
> >
> >
>
>

--------------------​--------------------​--------------------​---------
To unsubscribe, e-mail: users-unsubscribe@cu​rrent.tigris.org
For additional commands, e-mail: users-help at current dot tigris dot org

« Previous message in topic | 9 of 9 | Next message in topic »

Messages

Show all messages in topic

Current run problems Dan Track <dan dot track at gmail dot com> Dan Track <dan dot track at gmail dot com> 2005-09-29 01:53:03 PDT
     Re: Current run problems jwbernin John Berninger 2005-09-29 05:04:00 PDT
         Re: Current run problems Dan Track <dan dot track at gmail dot com> Dan Track <dan dot track at gmail dot com> 2005-09-29 05:58:32 PDT
             Re: Current run problems jwbernin John Berninger 2005-09-29 06:39:19 PDT
             Re: Current run problems theslack Jack Neely 2005-09-29 06:41:16 PDT
                 Re: Current run problems Dan Track <dan dot track at gmail dot com> Dan Track <dan dot track at gmail dot com> 2005-09-29 07:38:47 PDT
                     Re: Current run problems Dan Track <dan dot track at gmail dot com> Dan Track <dan dot track at gmail dot com> 2005-10-03 01:28:17 PDT
                         Re: Current run problems theslack Jack Neely 2005-10-03 11:05:07 PDT
                             RE: Re: Current run problems LINDER Thierry <Thierry dot Linder at uditis dot ch> LINDER Thierry <Thierry dot Linder at uditis dot ch> 2005-10-03 23:11:31 PDT
Messages per page: