Koji server installation
by Degremont, Guillaume
Hello,
I am currently working on deploying a small build system based on mock/koji
The system is very simple, just one server hosting the builds and koji (another buidl system may be added later, but that is not the issue at thje present time).
I am having some troubles deploying koji. The only document I have found is the ServerHowTo (http://fedoraproject.org/wiki/Koji/ServerHowTo).
I retrieved the koji, koji-hub, koji-web and koji-utils packages and installd them successfully on my server.
I configured koji to use SSL following the guidelines.
Not being a SSL expert, I think I did not do any error, but it was tricky since filenames change between the certificate creation section and the kojihub/kojweb/kojid configuration sections.
and I configured all 4 servers (kojihub, kojiweb, kojira, kojid) to be hosted on the same server, named murray.
However, when I try to use koji, I get the following error:
[koji@murray ~]$ koji add-user userTest
Kerberos authentication failed: 'No credentials cache found' (-1765328189)
[koji@murray ~]$
I have modified the /etc/koji.conf (though it is not mentioned in the How To) as follows, to ensure it will use SSL:
[root@murray ~]# more /etc/koji.conf
[koji]
;configuration for koji cli tool
;url of XMLRPC server
server = http://murray.mysite.hp.com/kojihub
;url of web interface
weburl = http://murray.mysite.hp.com/koji
;url of package download site
pkgurl = http://murray.mysite.hp.com/packages
;path to the koji top directory
topdir = /mnt/koji
;configuration for SSL athentication
;client certificate
cert = /etc/kojiweb/clients/certs/koji.cert
;certificate of the CA that issued the client certificate
ca = /etc/kojiweb/clients/koji_ca_cert.crt
;certificate of the CA that issued the HTTP server certificate
serverca = /etc/kojiweb/clients/koji_ca_cert.crt
koji_ca_cert.crt being the ca certificate I generated and koji.cert a certificate I generated for the koji user.
This is my first problem. Can anyone help me on this ?
My other problem is with the servers. I configured my apache and started it to have the kojihub and kojiweb started.
I then want to perform some add--user, add-host commands. But I get the message "unable to connect to server".
[root@murray ~]# koji --noauth add-host murray.mysite.hp.com i386 x86_64
Error: Unable to connect to server
With the following logs from httpd:
[Thu Nov 15 10:28:51 2007] [error] [client X.X.X.X] PythonHandler kojixmlrpc: Traceback (most recent call last):
[Thu Nov 15 10:28:51 2007] [error] [client X.X.X.X] PythonHandler kojixmlrpc: File "/usr/lib/python2.4/site-packages/mod_python/apache.py", line 299, in HandlerDispatch\n result = object(req)
[Thu Nov 15 10:28:51 2007] [error] [client X.X.X.X] PythonHandler kojixmlrpc: File "/usr/share/koji-hub/kojixmlrpc.py", line 278, in handler\n context.cnx = koji.db.connect(opts.get("KojiDebug",False))
[Thu Nov 15 10:28:51 2007] [error] [client X.X.X.X] PythonHandler kojixmlrpc: File "/usr/lib/python2.4/site-packages/koji/db.py", line 128, in connect\n conn = pgdb.connect(**opts)
[Thu Nov 15 10:28:51 2007] [error] [client X.X.X.X] PythonHandler kojixmlrpc: File "/usr/lib/python2.4/site-packages/pgdb.py", line 383, in connect\n dbtty, dbuser, dbpasswd)
[Thu Nov 15 10:28:51 2007] [error] [client X.X.X.X] PythonHandler kojixmlrpc: InternalError: could not connect to server: Connection refused\n\tIs the server running on host "murray.mysite.hp.com" and accepting\n\tTCP/IP connections on port 5432?\n
Do you know what it comes from ?
I can supply my other conf files, if needed. But I strictly followed the Howto nstructions for the configuration files.
Reagrds,
Guillaume Degremont
PS: for security related reasons, I replaced the ipaddress with X.X.X.X and changed the hostname and fully qualified domain name with dummy ones ^^
15 years
mock: enable gpgcheck for f8 config file
by Till Maas
Hiyas,
now that the groups repo is not used anymore in mock, imho the gpgcheck option
can be enabled by default and only be disabled for the local repo. It will
only need the required gpg-keys be included in the mock rpm and some more
lines in the config files. I will write a patch for this if you will apply
it.
Regards,
Till
15 years, 5 months
query: mock + libselinux-mock.so LD_PRELOAD... why?
by Michael E Brown
I need a little bit of help understanding what the
'libselinux-mock.so' LD_PRELOAD was supposed to be doing. I released and
pushed out mock-0.8 without this. I have rebuilt most of rawhide with
this new mock version and have not seen anything that I directly can say
was a failure due to this being missing, so I am sort of not seeing the
point.
I have searched around as much as I can to try to understand why
this was put into place. From what I can understand, it was only put in
in the FC2 timeframe to fix some problems with the selinux policy on the
host machine. These *appear* to have been fixed in the host selinux
policy, so again, i dont see a reason to keep this around.
Jesse mentioned on IRC, though, that this might be needed, so I pose
this question. I've a local branch set up with the 0.8.x code and the
LD_PRELOAD put back in. So, I can quickly spin a new release with this
back in if it is actually needed. So far, I havent convinced myself it
is needed, though...
Could somebody please enlighten me?
--
Michael
15 years, 5 months
F8 rawhide, error from method.py during kickstart install from cdrom
by Martin Steinmann
F8 RAWHIDE updated. I get the following error from anaconda doing a kickstart install from cdrom:
File "/usr/lib/python2.5/site-packages/pykickstart/commands/method.py", line 81, in parse
(opts, extra) = op.parse_args(args=args)
AttributeError: 'NoneType' object has no attribute 'parse_args'
install exited abnormally [1/1]
This happens right after anaconda started the X server.
The kickstart file used looks fairly straight forward. Could this be a known error?
thanks
--martin
ks.cfg:
#--- Installation method (install, no upgrade) and source (CD-ROM)
install
cdrom
#--- Debugging (uncomment next line to debug in the interactive mode)
#interactive
#--- Language and input support
lang en_US.UTF-8
##langsupport --default=en_US.UTF-8 en_US.UTF-8
keyboard us
##mouse generic3ps/2
#--- X-Windows (use "skipx" directive to skip X-Windows configuration)
skipx
#--- Network configuration
# Add some default or else Anaconda will pop a window and ask
network --device eth0 --bootproto static --ip 192.168.1.176 --netmask 255.255.255.0 --gateway 192.168.1.1 --nameserver 192.168.1.145 --hostname sipx.example.com
#--- Authentication and security
rootpw setup
firewall --disabled
selinux --disabled
authconfig --enableshadow --enablemd5
#--- Time zone
timezone America/New_York
#--- Boot loader
bootloader --location=mbr
#--- Partitioning
#--- NON_RAID Disk partitioning (LVM)
zerombr yes
clearpart --all --initlabel
part /boot --fstype ext3 --size=128
part swap --size=1024
part /recovery --fstype ext3 --size=1024
part / --fstype ext3 --size=4096
part /var --fstype ext3 --size 1 --grow
#--- Reboot the host after installation is done
reboot
#--- Package selection
%packages --resolvedeps
e2fsprogs
<snip>
15 years, 5 months
Unable to create a distro on multiple disks with Pungi.
by William F. Acker WB2FLW +1 303 722 7209
Hi all,
I can create a very nice DVD with Pungi if I don't specify the number
of discs to use. I'm running F8 with pungi-1.1.9 that comes with F8. I
figure that right number of discs for a respin of what comes with F8
should be five. When I ask for five discs "--discs=5", I get a DVD sized
disc1 and the rest have empty Packages directories. I also get a DVD ISO
file, but the size of DISC1 and DVD, different from each other, isn't the
size of the DVD when requested alone. I can't tell if the problem is in
Pungi or Splitdistro. When I do the SRPMS stage using five discs, I get
five proper CD sized ISO files and a proper DVD ISO file. Any ideas?
TIA.
--
Bill in Denver
15 years, 6 months
Pungi doesn't implant Checksums in the rescue ISO.
by William F. Acker WB2FLW +1 303 722 7209
Hi, all,
I notice that in F7 and F8, there's no check sum in the primary volume
descriptor in the rescue ISO. I *think* that there used to be a check sum
in earlier releases. In any case, shouldn't we have a way of verifying
the rescue disk in the event the SHA1SUM file isn't readily available?
--
Bill in Denver
15 years, 6 months
RE: Confirming predefined partition layout using kickstart
by Peter Åstrand
> That's a lot of python for a confirmation box. Have you looked at using dialog?
Last time I checked, dialog was not available in the installation
environment. Also, most of the code is for changing virtual console. This
would be necessary even with the dialog binary. But if anyone has a
smaller solution, please let me know.
Best regards,
Peter Åstrand
> -----Original Message-----
> From: kickstart-list-bounces(a)redhat.com [mailto:kickstart-list-bounces@redhat.com] On Behalf Of Peter Åstrand
> Sent: Tuesday, November 27, 2007 12:10 AM
> To: Discussion of Fedora build system; kickstart-list(a)redhat.com
> Subject: Re: Confirming predefined partition layout using kickstart
>
> On Mon, 26 Nov 2007, Jeremy Katz wrote:
>
> > > Using F8 and Kickstart, we want to predefine everything about
> > > partitions, but also let the user confirm that the disk is going to
> > > be wiped. I thought this could be done with just
>
> > You could go with the route of popping up a dialog in %pre for
> > confirmation if that's all you really want.
>
> Thanks for your help. I've tried a %pre solution now and it seems to work great. Here's what I did:
>
> %pre --interpreter /usr/bin/python
> TTY = 3
> import os
> import sys
> import snack
> import time
> import fcntl
> import termios
> pid = os.fork()
> if pid != 0:
> os.wait()
> os._exit(0)
> os.system("chvt %d" % TTY)
> fd = os.open("/dev/tty%d" % TTY, os.O_RDWR) os.dup2(fd, 0) os.dup2(fd, 1) os.dup2(fd, 2) sys.stdin = os.fdopen(0, "r") sys.stdout = os.fdopen(1, "w") sys.stderr = os.fdopen(2, "w")
> os.setsid()
> fcntl.ioctl(fd, termios.TIOCSCTTY, 1)
> screen = snack.SnackScreen()
> if "reboot" == snack.ButtonChoiceWindow(screen, "WARNING",
> "WARNING! All data on your hard disk will be DELETED!",
> buttons=["reboot", "continue"]):
> os.system("reboot")
> while 1: time.sleep(10)
> screen.finish()
> os.system("chvt %d" % 1)
> %end
>
>
> Best regards,
> ---
> Peter Åstrand ThinLinc Chief Developer
> Cendio AB http://www.cendio.se
> Wallenbergs gata 4
> 583 30 Linköping Phone: +46-13-21 46 00
>
> _______________________________________________
> Kickstart-list mailing list
> Kickstart-list(a)redhat.com
> https://www.redhat.com/mailman/listinfo/kickstart-list
>
---
Peter Åstrand ThinLinc Chief Developer
Cendio AB http://www.cendio.se
Wallenbergs gata 4
583 30 Linköping Phone: +46-13-21 46 00
15 years, 6 months
Confirming predefined partition layout using kickstart
by Peter Åstrand
Using F8 and Kickstart, we want to predefine everything about partitions,
but also let the user confirm that the disk is going to be wiped. I
thought this could be done with just:
partition / --fstype ext3 --size=1600 --asprimary
partition swap --recommended
But to my surprise, this does not work: The installer complains about
"Could not allocate requested partitions". If we are using:
zerombr
clearpart --all --initlabel
partition / --fstype ext3 --size=1600 --asprimary
partition swap --recommended
...things works great, but then there's no confirmation.
A workaround could be to have the confirmation dialog in some other step
of the installation, it's OK if it's displayed from ISOLINUX or at the
start of Anaconda or something like that. Any ideas?
Regards,
---
Peter Åstrand ThinLinc Chief Developer
Cendio AB http://www.cendio.se
Wallenbergs gata 4
583 30 Linköping Phone: +46-13-21 46 00
15 years, 6 months
A few Pungi questions
by Peter Åstrand
Hi, I have a few questions about Pungi:
* When running the text based Anaconda from the resulting ISO, all
packages are selectable, not just those that are included in the custom
dist. Is this a known limitation? Any other problems with the text based
Anaconda, to watch out for?
* How can I create a CD that automatically uses a kickstart file? Revisor
seems to support this, but we're using Pungi. I've found
http://www.redhat.com/archives/fedora-buildsys-list/2007-June/msg00098.html,
but perhaps there's a better way to do this?
* Where can I find documentation on the "special" Kickstart options that
Pungi understands, are there any others than "repo"?
I also wonder if anyone has a minimal KS (but with X11) file to be used as
a template.
Best regards,
---
Peter Åstrand ThinLinc Chief Developer
Cendio AB http://www.cendio.se
Wallenbergs gata 4
583 30 Linköping Phone: +46-13-21 46 00
15 years, 6 months
Problems starting kojid: SSL issues
by Devrim GÜNDÜZ
Hi,
Following the guidelines on wiki, I am trying to install koji. So far, I
could run web interface, but I have problems with SSL things.
Koji init script claims that it starts kojid, but I can't see it in the
processes. Looking it a bit deeper, I can confirm that the SSL
certificates that I entered in kojid.conf are not correct.
The question is: Which certificates will I use for kojid? I have
generated some certs as described in the wiki...
Regards,
--
Devrim GÜNDÜZ , RHCE
PostgreSQL Replication, Consulting, Custom Development, 24x7 support
Managed Services, Shared and Dedicated Hosting
Co-Authors: plPHP, ODBCng - http://www.commandprompt.com/
15 years, 6 months
