Bug 1103809
| Summary: | [abrt] subscription-manager: certificate2.py:65:create_from_file:IOError: [Errno 13] Permission denied: 'redhat-uep.pem' | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Product: | [Fedora] Fedora | Reporter: | Aaron Thomas <aathomas> | ||||||
| Component: | subscription-manager | Assignee: | Devan Goodwin <dgoodwin> | ||||||
| Status: | CLOSED NOTABUG | QA Contact: | Fedora Extras Quality Assurance <extras-qa> | ||||||
| Severity: | unspecified | Docs Contact: | |||||||
| Priority: | unspecified | ||||||||
| Version: | 20 | CC: | awood, bkearney, dgoodwin, dgoodwin, jbowes | ||||||
| Target Milestone: | --- | ||||||||
| Target Release: | --- | ||||||||
| Hardware: | x86_64 | ||||||||
| OS: | Unspecified | ||||||||
| URL: | https://retrace.fedoraproject.org/faf/reports/bthash/7812c8c0e0718f1a8ad0eb00c747adb0739b3d68 | ||||||||
| Whiteboard: | abrt_hash:a08d058e4c370d11e4001fb70938c177deab21cf | ||||||||
| Fixed In Version: | Doc Type: | Bug Fix | |||||||
| Doc Text: | Story Points: | --- | |||||||
| Clone Of: | Environment: | ||||||||
| Last Closed: | 2014-11-03 18:21:37 UTC | Type: | --- | ||||||
| Regression: | --- | Mount Type: | --- | ||||||
| Documentation: | --- | CRM: | |||||||
| Verified Versions: | Category: | --- | |||||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||||
| Embargoed: | |||||||||
| Bug Depends On: | |||||||||
| Bug Blocks: | 1005618 | ||||||||
| Attachments: |
|
||||||||
Created attachment 901481 [details]
File: backtrace
Created attachment 901482 [details]
File: environ
I don't think there's a bug here, this seems like legitimate behavior when you do not have permission to read the file in question. Also rct cat-cert is for entitlement/product certs, not redhat-uep.pem (which is a CA cert for our CDN). Please feel free to re-open if there are concerns but this looks correct to me. Please note that I have recently changed the permissions (https://github.com/candlepin/python-rhsm/commit/e21393f3e7b71a27e0d68d957cfa5c2326374ea3) on the redhat-uep.pem file so that it is no longer 640 but 644. In the future that file will be world-readable. Notwithstanding that change, rct cat-cert will still be of little use when run against a CA certificate. |
Version-Release number of selected component: subscription-manager-1.11.1-1.fc20 Additional info: reporter: libreport-2.2.1 cmdline: /usr/bin/python -S /usr/bin/rct cat-cert redhat-uep.pem dso_list: python-rhsm-1.11.1-1.fc20.x86_64 executable: /usr/bin/rct kernel: 3.13.9-200.fc20.x86_64 runlevel: N 5 type: Python uid: 1000 Truncated backtrace: certificate2.py:65:create_from_file:IOError: [Errno 13] Permission denied: 'redhat-uep.pem' Traceback (most recent call last): File "/usr/bin/rct", line 49, in <module> sys.exit(abs(main() or 0)) File "/usr/bin/rct", line 44, in main return RctCLI().main() File "/usr/share/rhsm/subscription_manager/cli.py", line 160, in main return cmd.main() File "/usr/share/rhsm/rct/commands.py", line 39, in main return_code = self._do_command() File "/usr/share/rhsm/rct/cert_commands.py", line 74, in _do_command cert = self._create_cert() File "/usr/share/rhsm/rct/cert_commands.py", line 43, in _create_cert return certificate.create_from_file(cert_file) File "/usr/lib64/python2.7/site-packages/rhsm/certificate.py", line 59, in create_from_file return _CertFactory().create_from_file(path) File "/usr/lib64/python2.7/site-packages/rhsm/certificate2.py", line 65, in create_from_file pem = open(path, 'r').read() IOError: [Errno 13] Permission denied: 'redhat-uep.pem' Local variables in innermost frame: path: 'redhat-uep.pem' self: <rhsm.certificate2._CertFactory object at 0x7f2a6b43a210>