Bug 112541

Summary: Cactus complains about the rhn-org-trusted-ssl-cert package before kickstarting
Product: [Retired] Red Hat Network Reporter: Christian Stelter <christian.stelter>
Component: RHN/Web SiteAssignee: Matt Jamison <jamisonm>
Status: CLOSED CURRENTRELEASE QA Contact: Fanny Augustin <fmoquete>
Severity: high Docs Contact:
Priority: high    
Version: rhn310CC: rhn-bugs
Target Milestone: ---   
Target Release: ---   
Hardware: i686   
OS: Linux   
URL: https://beta.rhn.mediaways.net/network/systems/ssm/provisioning/missing_packets.pxt
Whiteboard:
Fixed In Version: rhn320hosted Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2005-09-14 18:06:01 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 108937    
Attachments:
Description Flags
Missing package dialog none

Description Christian Stelter 2003-12-22 16:39:07 UTC 
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.4.1)
Gecko/20031030

Description of problem:
Hi!

When scheduling a kickstart via web frontend Cactus complains
about the package rhn-org-trusted-ssl-cert-1.0-1 when choosing
"With System Profile" of the server which should be kickstarted.

After choosing "Do not synch package profile" I'm able to 
proceed the schedule of the kickstart.

It seems that I have to build an extra channel for this
cert package. Is this correct?

Best regards,

            cos


Version-Release number of selected component (if applicable):
rhn-base-2.9.99-21

How reproducible:
Always

Steps to Reproduce:
1. Try to schedule a kickstart.


Actual Results:  "Missing package" (certs)

Expected Results:  A smart way to put the needed package into the
kickstart profile
without defining an extra channel for it (if this is the solution).

Additional info:
Comment 1 Christian Stelter 2003-12-22 16:39:44 UTC 
Created attachment 96668 [details]
Missing package dialog
Comment 2 Greg DeKoenigsberg 2004-01-13 00:12:38 UTC 
We now solve for this case in the web UI by allowing the user to
ignore the offending package.  What we really need, however, is to do
one of two things:

(a) Put the SSL package into a channel; or
(b) Document the bootstrap script explaining the need to put the RPM
in a channel.

Since (a) is impossible in many cases, the next best thing is to do
(b).  Todd, please document these issues in the body of the bootstrap
script itself.
Comment 3 Todd Warner 2004-01-13 23:01:15 UTC 
NOTE: the two fixed (currently) package names for the CA Certificate
RPMs are:

old: rhns-ca-cert-VER-REL.noarch.rpm
new: rhn-org-trusted-ssl-cert-VER-REL.noarch.rpm
Comment 4 Todd Warner 2004-01-13 23:16:31 UTC 
This was added to the bootstrap script. It is NOT outputed to the
screen. Review please!!!

"""

#
# PROVISIONING/KICKSTART NOTE:
#   A client, in order to be properly provisioned with operational SSL
needs to
#   have the SSL CA Cert installed. In order to do this, the package,
#   rhn-org-trusted-ssl-cert-<version>-<release).noarch.rpm, will need
to be
#   imported into a child channel of the pertinent base operating system
#   channel. This child channel needs to also be accessible to the client.
#

"""
Comment 5 Todd Warner 2004-01-13 23:17:28 UTC 
Back to rnorwood to do his "skip those packages" magic.
Comment 6 Robin Norwood 2004-01-14 20:29:08 UTC 
The "skip those packages" magic turns out to not be feasible for
rhn310 - created bug #113511 to explain why and track this issue.

Moving this bug into on_dev to test the 'remove packages' sync feature
for kickstarts.
Comment 7 Matt Jamison 2004-02-10 16:17:06 UTC 
punting to joe because he has the sat knowledge for this.
Comment 8 Josef Komenda 2004-03-09 19:29:57 UTC 
Looks good.