Hi All,
After a good night's sleep, I tried tg-admin pointing to
--config /usr/lib/python/<...>/app.cfg and the koji certs worked fine,
I am no longer getting the errors. I edited my /etc/bodhi/bodhi.cfg to
have the kojihub and koji certs vars and using tg-admin
--config=/etc/bodhi/bodhi.cfg works fine now.
I was under the impression that app.cfg was the file for bodhi's global
settings and was assuming that since I had put koji's certs in app.cfg
that the koji settings would be picked up.
Also, is it possible to use mix build servers? I'm asking because
currently we have some things/rpms being built via koji and others via a
custom build system that we are trying to migrate from. Unfortunately,
right now, it seems like our custom build system will be sticking around
for a while.
Brian
On Wed, 2009-11-04 at 18:54 -0700, Brian Kosick wrote:
Hello,
So I'm trying other areas as I get to them, I'm trying to setup koji
integration now.
I have the server correctly setup as a koji build host (kojid) and I can
successfully request koji builds as myself from this server.
However, I can't seem to get the
tg-admin command to work
tg-admin --config=/etc/bodhi/bodhi.cfg shell
>>> from bodhi.buildsys import get_session
>>> koji = get_session()
# Koji's XML-RPC hub
koji_hub = 'http://build64.qa.mxlogic.com/kojihub'
# Koji certs
client_cert = '/etc/bodhi/kojicerts/apache.pem'
clientca_cert = '/etc/bodhi/kojicerts/fedora-cacert.cert'
serverca_cert = '/etc/bodhi/kojicerts/fedora-cacert.cert'
FYI my clientca and serverca happen to be the same.
I'm getting
[bkosick@builder5 bodhi]$ tg-admin --config=/etc/bodhi/bodhi.cfg shell
Python 2.4.3 (#1, Jun 11 2009, 14:09:37)
[GCC 4.1.2 20080704 (Red Hat 4.1.2-44)] on linux2
Type "help", "copyright", "credits" or "license"
for more information.
(CustomShell)
>>> from bodhi.buildsys import get_session
>>> koji = get_session()
Traceback (most recent call last):
File "<console>", line 1, in ?
File "/home/bkosick/tmpclones/bodhi/bodhi/buildsys.py", line 183, in
get_session
session = koji_login()
File "/home/bkosick/tmpclones/bodhi/bodhi/buildsys.py", line 175, in
koji_login
koji_session.ssl_login(client, clientca, serverca)
File "/usr/lib/python2.4/site-packages/koji/__init__.py", line 1411, in
ssl_login
sinfo = self.callMethod('sslLogin', proxyuser)
File "/usr/lib/python2.4/site-packages/koji/__init__.py", line 1456, in
callMethod
return self._callMethod(name, args, opts)
File "/usr/lib/python2.4/site-packages/koji/__init__.py", line 1481, in
_callMethod
return proxy.__getattr__(name)(*args)
File "/usr/lib64/python2.4/xmlrpclib.py", line 1096, in __call__
return self.__send(self.__name, args)
File "/usr/lib64/python2.4/xmlrpclib.py", line 1383, in __request
verbose=self.__verbose
File "/usr/lib64/python2.4/xmlrpclib.py", line 1129, in request
self.send_content(h, request_body)
File "/usr/lib64/python2.4/xmlrpclib.py", line 1243, in send_content
connection.endheaders()
File "/usr/lib64/python2.4/httplib.py", line 804, in endheaders
self._send_output()
File "/usr/lib64/python2.4/httplib.py", line 685, in _send_output
self.send(msg)
File "/usr/lib64/python2.4/httplib.py", line 664, in send
self.sock.sendall(str)
File "/usr/lib/python2.4/site-packages/koji/ssl/SSLConnection.py", line 110,
in sendall
sent = con.send(data, flags)
Error: [('SSL routines', 'SSL3_GET_SERVER_CERTIFICATE', 'certificate
verify failed')]
I guess my question is it looking for a user or host cert for the
bodhi->koji interaction?
Thanks,
--
Brian Kosick
CM Manager
Brian_Kosick(a)mcafee.com
bkosick(a)mxlogic.com
720-895-4479