Attachment 601308 Details for Bug 813072 – Verifying screen log

Verifying screen log

log (text/plain), 9.07 KB, created by mkovacik on 2012-07-30 16:30:43 UTC

(hide)

Description:

Filename:

MIME Type:

Creator: mkovacik

Created: 2012-07-30 16:30:43 UTC

Size: 9.07 KB

patch

obsolete

>[root@ip-10-38-10-161 ~]# mount
>/dev/xvde1 on / type ext4 (rw)
>none on /proc type proc (rw)
>none on /sys type sysfs (rw)
>none on /dev/pts type devpts (rw,gid=5,mode=620)
>none on /dev/shm type tmpfs (rw,rootcontext="system_u:object_r:tmpfs_t:s0")
>none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)
>/dev/xvdj1 on /var/lib/pulp type ext4 (rw)
>/root/RHEL-6.3-RHUI-2.1-20120719.0-Server-x86_64-DVD1.iso on /tmp/mnt type iso9660 (rw,loop=/dev/loop0)
>[root@ip-10-38-10-161 ~]# cd /tmp/mnt/
>[root@ip-10-38-10-161 mnt]# vim install_tools.sh
>[root@ip-10-38-10-161 mnt]# find ./ -name "*.sh" -exec grep nss {} \;
>echo "Executing /usr/bin/nss-db-gen"
>/usr/bin/nss-db-gen
>[root@ip-10-38-10-161 mnt]# find ./ -name "*.sh" -exec grep nss {} \; -print
>echo "Executing /usr/bin/nss-db-gen"
>/usr/bin/nss-db-gen
>./install_tools.sh
>[root@ip-10-38-10-161 mnt]# rpm -ql rh-rhui-tools | grep nns
>[root@ip-10-38-10-161 mnt]# rpm -ql rh-rhui-tools | grep nss
>/usr/bin/nss-db-gen
>[root@ip-10-38-10-161 mnt]# cat /usr/bin/nss-db-gen
>#!/bin/bash
># Copyright (c) 2010 Red Hat, Inc.
>#
># This software is licensed to you under the GNU General Public License,
># version 2 (GPLv2). There is NO WARRANTY for this software, express or
># implied, including the implied warranties of MERCHANTABILITY or FITNESS
># FOR A PARTICULAR PURPOSE. You should have received a copy of GPLv2
># along with this software; if not, see
># http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt.
>#
># Red Hat trademarks are not licensed under GPLv2. No permission is
># granted to use or replicate Red Hat trademarks that are incorporated
># in this software or its documentation.
>#
>
>DIR="/tmp/tmp$RANDOM"
>HOST=`hostname`
>PWDFILE="password"
>SEEDFILE="seed"
>INST_DIR='/etc/rhui/qpid'
>DB_PASSWORD=$RANDOM
>VALID="12"
>
>echo ""
>echo "Working in: $DIR"
>echo ""
>
>#
># ========== SETUP ============
>#
>
># create temporary db directory
>rm -rf $DIR
>mkdir $DIR
>cd $DIR
>#
># ========== KEY SEED ===========
>#
>touch $SEEDFILE
>i=0
>while [ $i -lt 20 ]; do
>  echo $RANDOM >> $SEEDFILE
>  i=`expr $i + 1`
>done
>
>#
># ========== PASSWORD ===========
>#
>
># create the password file
>echo "$DB_PASSWORD" > $PWDFILE
>
>echo ""
>echo "Password file created."
>
>#
># ========== DATABASE ============
>#
>
># create the nss db
>certutil -N -d . -f $PWDFILE
>
>echo ""
>echo "Database created."
>
>#
># =========== CA =================
>#
>
># create the CA cert
>echo ""
>echo "Creating CA certificate:"
>SUBJECT="CN=rhua,O=pulp,ST=Alabama,C=US"
>certutil -S -d . -n "ca" -s $SUBJECT -t "TC,," -f $PWDFILE -z $SEEDFILE -x -v $VALID
>
># export CA cert
>certutil -L -d . -n "ca" -a -o ca.crt -f $PWDFILE
>
>echo "CA created"
>
>#
># =========== BROKER =============
>#
>
># create broker cert signing request
>echo ""
>echo "Creating BROKER certificate:"
>SUBJECT="CN=$HOST,O=pulp,ST=Alabama,C=US"
>certutil -R -d . -s $SUBJECT -a -o broker.req -f $PWDFILE -z $SEEDFILE
>
># sign the broker cert w/ CA
>certutil -C -d . -c "ca" -v $VALID -uV -m1 -a -i broker.req -f $PWDFILE -o broker.crt
>
># import the broker cert
>certutil -A -d . -n "broker" -t ",," -a -i broker.crt
>
>echo "Broker certificate created."
>
>#
># =========== CLIENT =============
>#
>
># create the nss db
>mkdir client
>certutil -N -d client -f $PWDFILE
>
># create client cert signing request
>echo ""
>echo "Creating CLIENT certificate:"
>SUBJECT="CN=client,O=pulp,ST=Alabama,C=US"
>certutil -R -d client -s $SUBJECT -a -o client.req -f $PWDFILE -z $SEEDFILE
>
># sign the client cert w/ CA
>certutil -C -d . -c "ca" -v $VALID -uC -m2 -a -i client.req -f $PWDFILE -o client.crt
>
># import the client cert
>certutil -A -d client -n "client" -t ",," -a -i client.crt
>echo "Client certificate created."
>
># export client p12 bundle
>pk12util -d client -n "client" -o client.p12 -w $PWDFILE -W $DB_PASSWORD -k $PWDFILE -K $DB_PASSWORD -w $PWDFILE -W $DB_PASSWORD -k $PWDFILE -K $DB_PASSWORD
>
># using openssl, generate a key & cert using the p12.
>openssl pkcs12 -in client.p12 -nodes -out client.crt -password file:$PWDFILE -password file:$PWDFILE
>
>echo "Client key & certificate exported"
>
>#
># =========== INSTALL =============
>#
>
># clean unused artifacts
>rm -f *.req
>rm -f *.p12
>rm -rf client
>
># create target directory and install files
>mkdir -p $INST_DIR
>mkdir -p $INST_DIR/nss
>cp $DIR/*.crt $INST_DIR
>cp $DIR/*.db $INST_DIR/nss
>cp $DIR/$PWDFILE $INST_DIR/nss
>
># update perms
>chmod 644 $INST_DIR/*.crt
>chmod 644 $INST_DIR/nss/*
>
>echo ""
>echo "Artifacts copied to: $INST_DIR."
>echo ""
>
>#
># =========== CLEANUP =============
>#
>
>cd /tmp
>rm -rf $DIR
>
>[root@ip-10-38-10-161 mnt]# find ./ -name "*.sh" -exec grep nss {} \; -print
>echo "Executing /usr/bin/nss-db-gen"
>/usr/bin/nss-db-gen
>./install_tools.sh
>[root@ip-10-38-10-161 mnt]# rpm -ql rh-rhui-tools | grep nss
>/usr/bin/nss-db-gen
>[root@ip-10-38-10-161 mnt]# ls /etc/rhui/qpid
>broker.crt  ca.crt  client.crt  nss
>[root@ip-10-38-10-161 mnt]# mount
>/dev/xvde1 on / type ext4 (rw)
>none on /proc type proc (rw)
>none on /sys type sysfs (rw)
>none on /dev/pts type devpts (rw,gid=5,mode=620)
>none on /dev/shm type tmpfs (rw,rootcontext="system_u:object_r:tmpfs_t:s0")
>none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)
>/dev/xvdj1 on /var/lib/pulp type ext4 (rw)
>/root/RHEL-6.3-RHUI-2.1-20120719.0-Server-x86_64-DVD1.iso on /tmp/mnt type iso9660 (rw,loop=/dev/loop0)
>[root@ip-10-38-10-161 mnt]# mv  /etc/rhui/qpid/ /etc/rhui/qpid~
>[root@ip-10-38-10-161 mnt]# ./install_tools.sh
>Installing RHUI Tools packages
>
>Loaded plugins: amazon-id, pulp-profile-update, rhui-lb, security
>Setting up Local Package Process
>Examining Packages/rh-rhui-tools-2.1.4-1.el6_3.noarch.rpm: rh-rhui-tools-2.1.4-1.el6_3.noarch
>Packages/rh-rhui-tools-2.1.4-1.el6_3.noarch.rpm: does not update installed package.
>Examining Packages/PyYAML-3.09-14.el6_1.x86_64.rpm: PyYAML-3.09-14.el6_1.x86_64
>Packages/PyYAML-3.09-14.el6_1.x86_64.rpm: does not update installed package.
>Examining Packages/libyaml-0.1.3-3.el6_1.x86_64.rpm: libyaml-0.1.3-3.el6_1.x86_64
>Packages/libyaml-0.1.3-3.el6_1.x86_64.rpm: does not update installed package.
>Examining Packages/pulp-consumer-0.0.263-24.el6_3.noarch.rpm: pulp-consumer-0.0.263-24.el6_3.noarch
>Packages/pulp-consumer-0.0.263-24.el6_3.noarch.rpm: does not update installed package.
>Examining Packages/pulp-client-lib-0.0.263-24.el6_3.noarch.rpm: pulp-client-lib-0.0.263-24.el6_3.noarch
>Packages/pulp-client-lib-0.0.263-24.el6_3.noarch.rpm: does not update installed package.
>Examining Packages/pulp-common-0.0.263-24.el6_3.noarch.rpm: pulp-common-0.0.263-24.el6_3.noarch
>Packages/pulp-common-0.0.263-24.el6_3.noarch.rpm: does not update installed package.
>Examining Packages/python-isodate-0.4.4-4.pulp.el6.noarch.rpm: python-isodate-0.4.4-4.pulp.el6.noarch
>Packages/python-isodate-0.4.4-4.pulp.el6.noarch.rpm: does not update installed package.
>Examining Packages/gofer-0.64-1.el6.noarch.rpm: gofer-0.64-1.el6.noarch
>Packages/gofer-0.64-1.el6.noarch.rpm: does not update installed package.
>Examining Packages/gofer-package-0.64-1.el6.noarch.rpm: gofer-package-0.64-1.el6.noarch
>Packages/gofer-package-0.64-1.el6.noarch.rpm: does not update installed package.
>Examining Packages/python-gofer-0.64-1.el6.noarch.rpm: python-gofer-0.64-1.el6.noarch
>Packages/python-gofer-0.64-1.el6.noarch.rpm: does not update installed package.
>Examining Packages/gofer-package-0.64-1.el6.noarch.rpm: gofer-package-0.64-1.el6.noarch
>Packages/gofer-package-0.64-1.el6.noarch.rpm: does not update installed package.
>Nothing to do
>Executing /usr/bin/nss-db-gen
>
>
>Working in: /tmp/tmp22089
>
>
>Password file created.
>
>Database created.
>
>Creating CA certificate:
>
>
>Generating key.  This may take a few moments...
>
>CA created
>
>Creating BROKER certificate:
>
>
>Generating key.  This may take a few moments...
>
>Broker certificate created.
>
>Creating CLIENT certificate:
>
>
>Generating key.  This may take a few moments...
>
>Client certificate created.
>pk12util: PKCS12 EXPORT SUCCESSFUL
>MAC verified OK
>Client key & certificate exported
>
>Artifacts copied to: /etc/rhui/qpid.
>
>
>Red Hat Update Infrastructure Tools packages sucessfully installed and can be started by
>executing rhui-tools from the prompt.
>
>[root@ip-10-38-10-161 mnt]# find /etc/rhui/qpid
>/etc/rhui/qpid
>/etc/rhui/qpid/client.crt
>/etc/rhui/qpid/ca.crt
>/etc/rhui/qpid/broker.crt
>/etc/rhui/qpid/nss
>/etc/rhui/qpid/nss/cert8.db
>/etc/rhui/qpid/nss/secmod.db
>/etc/rhui/qpid/nss/key3.db
>/etc/rhui/qpid/nss/password
>[root@ip-10-38-10-161 mnt]# rm -rf /etc/rhui/qpid
>[root@ip-10-38-10-161 mnt]# mv /etc/rhui/qpid~/ /etc/rhui/qpid
>[root@ip-10-38-10-161 mnt]#
>[root@ip-10-38-10-161 mnt]# rpm -qi rh-rhui-tools
>Name        : rh-rhui-tools                Relocations: (not relocatable)
>Version     : 2.1.4                             Vendor: Red Hat, Inc.
>Release     : 1.el6_3                       Build Date: Tue 17 Jul 2012 03:11:15 PM EDT
>Install Date: Fri 27 Jul 2012 06:56:04 AM EDT      Build Host: x86-008.build.bos.redhat.com
>Group       : Applications/Internet         Source RPM: rh-rhui-tools-2.1.4-1.el6_3.src.rpm
>Size        : 744501                           License: GPLv2
>Signature   : (none)
>Packager    : Red Hat, Inc. <http://bugzilla.redhat.com/bugzilla>
>URL         : http://redhat.com
>Summary     : Tools for installing and configuring the Red Hat Update Infrastructure
>Description :
>Tools necessary to configure the Red Hat Update Infrastructure.
>[root@ip-10-38-10-161 mnt]#

Actions: View

Attachments on bug 813072: 585051 | 585055 | 601308