[Spacewalk-list] spacewalk ssl certificate
Uğur Engin
mail at ugurengin.com
Tue Jan 26 22:10:06 UTC 2016
I read the python functions of jabber daemon step by step, so it seems that
certificate verification cannot properly make authentication.
***************************************************
for js in self._jabber_servers:
log_debug(3, "Connecting to", js)
try:
c = self._get_jabber_client(js)
log_debug(1, "Connected to jabber server", js)
break
except SSLHandshakeError:
# Error doing the handshake - this is a permanent error
sys.exit(1)
***************************************************
c.debug_level = self.debug_level
c.add_trusted_cert(self.ssl_cert)
c.connect()
return c
***************************************************
if starttls_node is None:
log_error("Server does not support TLS - <starttls /> "
"not in <features /> stanza")
self.disconnect()
raise SSLDisabledError
On Tue, Jan 19, 2016 at 2:28 PM, Uğur Engin <mail at ugurengin.com> wrote:
> Yes, it was work as well.However osa-disapatcher service doesn't work
> properly after new certificate is installed even i have completed ssl
> setup.
>
> I am seeing these errors.
>
>
>
>
>
>
>
>
>
>
>
>
>
> *r/share/rhn/osad/jabber_lib.py", line 623, in connect\n raise
> SSLDisabledError\nSSLDisabledError\n')2016/01/19 12:22:58 -00:00 30148
> 0.0.0.0 <http://0.0.0.0>: osad/jabber_lib.setup_connection('Could not
> connect to any jabber server',)2016/01/19 12:22:58 -00:00 30148 0.0.0.0
> <http://0.0.0.0>: osad/jabber_lib.main('Unable to connect to jabber
> servers, sleeping 10 seconds',)2016/01/19 12:23:08 -00:00 30148 0.0.0.0
> <http://0.0.0.0>: osad/jabber_lib.__init__2016/01/19 12:23:08 -00:00 30148
> 0.0.0.0 <http://0.0.0.0>: osad/jabber_lib.connect('ERROR', 'Server does not
> support TLS - <starttls /> not in <features /> stanza')2016/01/19 12:23:08
> -00:00 30148 0.0.0.0 <http://0.0.0.0>:
> osad/jabber_lib.print_message('SSLError',)2016/01/19 12:23:08 -00:00 30148
> 0.0.0.0 <http://0.0.0.0>: osad/jabber_lib.print_message('Could not connect
> to jabber server', 'spacewalk.pkgms.net
> <http://spacewalk.pkgms.net>')2016/01/19 12:23:08 -00:00 30148 0.0.0.0
> <http://0.0.0.0>: osad/jabber_lib.setup_connection('ERROR', 'Traceback
> (most recent call last):\n File "/usr/share/rhn/osad/jabber_lib.py", line
> 253, in setup_connection\n c = self._get_jabber_client(js)\n File
> "/usr/share/rhn/osad/jabber_lib.py", line 321, in _get_jabber_client\n
> c.connect()\n File "/usr/share/rhn/osad/jabber_lib.py", line 623, in
> connect\n raise SSLDisabledError\nSSLDisabledError\n')2016/01/19
> 12:23:08 -00:00 30148 0.0.0.0 <http://0.0.0.0>:
> osad/jabber_lib.setup_connection('Could not connect to any jabber
> server',)2016/01/19 12:23:08 -00:00 30148 0.0.0.0 <http://0.0.0.0>:
> osad/jabber_lib.main('Unable to connect to jabber servers, sleeping 10
> seconds',)*
>
> On Mon, Jan 18, 2016 at 10:50 PM, Avi Miller <avi.miller at oracle.com>
> wrote:
>
>> Hi,
>>
>> On 18 Jan 2016, at 11:26 PM, Uğur Engin <mail at ugurengin.com> wrote:
>>
>> psycopg2.IntegrityError: update or delete on table "rhncryptokey"
>> violates foreign key constraint "rhn_csssl_cacertid_fk" on table
>> "rhncontentsourcessl"
>> DETAIL: Key (id)=(1) is still referenced from table
>> "rhncontentsourcessl".
>>
>>
>> For some reason you've configured the SSL key on one of your upstream
>> repos (not sure why). You'll need to remove that assignment first, so the
>> SSL key can be replaced.
>>
>> Cheers,
>> Avi
>>
>> --
>> Oracle <http://www.oracle.com>
>> Avi Miller | Product Management Director | +61 (3) 8616 3496
>> Oracle Linux and Virtualization
>> 417 St Kilda Road, Melbourne, Victoria 3004 Australia
>>
>>
>> _______________________________________________
>> Spacewalk-list mailing list
>> Spacewalk-list at redhat.com
>> https://www.redhat.com/mailman/listinfo/spacewalk-list
>>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/spacewalk-list/attachments/20160127/5f040757/attachment.htm>
More information about the Spacewalk-list
mailing list