extras-buildsys README,1.7,1.8
Seth Vidal (skvidal)
fedora-extras-commits at redhat.com
Sun Jul 10 06:08:26 UTC 2005
Author: skvidal
Update of /cvs/fedora/extras-buildsys
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv23034
Modified Files:
README
Log Message:
change name of cacert.pem to ca_cert.pem to match default name in builder
config files.
Index: README
===================================================================
RCS file: /cvs/fedora/extras-buildsys/README,v
retrieving revision 1.7
retrieving revision 1.8
diff -u -r1.7 -r1.8
--- README 10 Jul 2005 05:13:47 -0000 1.7
+++ README 10 Jul 2005 06:08:24 -0000 1.8
@@ -20,14 +20,14 @@
Builder Setup.
-Builder Setup:
-1) In the CVS checkout directory on the client, execute:
+Builder Setup:
+1) In the CVS checkout directory on the builder system, execute:
make DESTDIR=/ install
2) Create a user for the builder. The builder drops root privileges before
running the build, but must have root to be able to do initial setup
3) Copy the client Key, Cert, and CA Cert to the /etc/plague/builder/certs
directory
-4) Things to modify in the client's CONFIG.py:
+4) Things to modify in the builder's CONFIG.py:
- Modify the 'distro' and 'repo' options to match the targets you've
configured in /etc/mock/. These targets are usually in the form of
"distro-target-arch-repo". 'arch' and 'target' are passed by the build
@@ -272,12 +272,12 @@
2. Generate a BSCA private key:
-openssl genrsa -out private/cakey.pem 2048
+openssl genrsa -out private/ca_key.pem 2048
3. Generate the BSCA certificate
-openssl req -new -x509 -key private/cakey.pem -out cacert.pem \
+openssl req -new -x509 -key private/ca_key.pem -out ca_cert.pem \
-extensions v3_ca -days 3650
@@ -313,13 +313,13 @@
or more clients. You may add clients using step 7 to create and sign their
certificate requests.
-9. Copy server_cert.pem, server_key.pem, and cacert.pem to a directory on the
+9. Copy server_cert.pem, server_key.pem, and ca_cert.pem to a directory on the
build server. IMPORTANT: make sure only the build server's user can read
server_key.pem, since it is the server's private key. Then, modify the
server's CONFIG.py file and point the respective config options to the _full_
path to each file.
-10. Copy client1_cert.pem, client1_key.pem, and cacert.pem to a direcrory on
+10. Copy client1_cert.pem, client1_key.pem, and ca_cert.pem to a direcrory on
the build client. IMPORTANT: make sure only the build client's user can read
client1_key.pem, since it is the client's private key. Then, modify the
client's CONFIG.py file and point the respective config options to the _full_
More information about the fedora-extras-commits
mailing list