Bug 1955955
| Summary: | satellite installer does not generate the katello-ca-consumer rpm for version > 1.0-9 | |||
|---|---|---|---|---|
| Product: | Red Hat Satellite | Reporter: | Dhananjay Pramod Mule <dmule> | |
| Component: | Installation | Assignee: | Eric Helms <ehelms> | |
| Status: | CLOSED ERRATA | QA Contact: | Omkar Khatavkar <okhatavk> | |
| Severity: | high | Docs Contact: | ||
| Priority: | unspecified | |||
| Version: | 6.9.0 | CC: | dhjoshi, ehelms, jjeffers, kagarwal, pcreech, saydas, sraut | |
| Target Milestone: | 6.9.3 | Keywords: | Triaged | |
| Target Release: | Unused | |||
| Hardware: | x86_64 | |||
| OS: | Linux | |||
| Whiteboard: | ||||
| Fixed In Version: | foreman-installer-2.3.1.14-1 | Doc Type: | If docs needed, set a value | |
| Doc Text: | Story Points: | --- | ||
| Clone Of: | ||||
| : | 1962863 (view as bug list) | Environment: | ||
| Last Closed: | 2021-07-01 14:56:52 UTC | Type: | Bug | |
| Regression: | --- | Mount Type: | --- | |
| Documentation: | --- | CRM: | ||
| Verified Versions: | Category: | --- | ||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
| Cloudforms Team: | --- | Target Upstream Version: | ||
| Embargoed: | ||||
Created redmine issue https://projects.theforeman.org/issues/32529 from this bug Moving this bug to POST for triage into Satellite since the upstream issue https://projects.theforeman.org/issues/32529 has been resolved. Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (Satellite 6.9.3 Async Bug Fix Update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2021:2636 |
Description of problem: Having satellite with katello-ca-consumer-${FQDN}-1.0-9.[noarch|src].rpm and forcing the satellite-installer to update the certificate does not generated the updated version for katello-ca-consumer rpm package, (it seems the package is updated but the version is stuck on 1.0-9) Version-Release number of selected component (if applicable): 6.9.1 How reproducible: every-time Steps to Reproduce: 1 Install an older version of satellite server (6.8 should work) 2 Install a custom certificate, using satellite-installer 3 You should see katello-ca-consumer-latest.noarch.rpm pointing to the latest one. 4 Repeat steps 2 approximately 10 times. 5 on satellite CLI # ls -la /var/www/html/pub 6 You should now see a large number (probably about 12) versions of the katello-ca-consumer RPM. 7 You should see katello-ca-consumer-latest.noarch.rpm pointing to the latest one. 8 Upgrade to satellite 6.9.1 9 on satellite CLI : # ls -la /var/www/html/pub 10 Apply new certificate on the satellite 12 On satellite CLI : # ls -la /var/www/html/pub Actual results: step result 5 satellite generates the 10 versions katello-ca-consumer RPM and katello-ca-consumer-latest.noarch.rpm points to version 10 of the rpm ~~~ lrwxrwxrwx. 1 root root 90 May 1 16:15 katello-ca-consumer-latest.noarch.rpm -> /var/www/html/pub/katello-ca-consumer-dmule-rhsat.syslab.pnq2.redhat.com-1.0-12.noarch.rpm ~~~ 9 satellite links the katello-ca-consumer-latest.noarch.rpm to version 9 of the katello-ca-consumer RPM while higher versions are present ~~~ lrwxrwxrwx. 1 root root 89 May 1 17:58 katello-ca-consumer-latest.noarch.rpm -> /var/www/html/pub/katello-ca-consumer-dmule-rhsat.syslab.pnq2.redhat.com-1.0-9.noarch.rpm -rw-r--r--. 1 root root 10000 May 1 17:34 katello-ca-consumer-dmule-rhsat.syslab.pnq2.redhat.com-1.0-10.noarch.rpm ~~~ 11 same as step 9 Expected results: For step 9 satellite installer script should be linked to the latest 'katello-ca-consumer-latest.noarch.rpm' for step 11 satellite installer script should create higher version of katello-ca-consumer RPM and link it with katello-ca-consumer-latest.noarch.rpm Additional info: After step 8, updated the katello-ca-consumer RPM on the registered client, and it was able to list the identity $ subscription-manager identity system identity: 99fddb6b-7a4d-4092-b0d0-9ce16ea7fb9f name: host.dhananjay.com org name: RedHat org ID: RedHat environment name: Library After installing the new certificates on the satellite (step 10) ... lrwxrwxrwx. 1 root root 89 May 1 18:32 katello-ca-consumer-latest.noarch.rpm -> /var/www/html/pub/katello-ca-consumer-dmule-rhsat.syslab.pnq2.redhat.com-1.0-9.noarch.rpm ... Host is not able to show the identity # subscription-manager identity Unable to verify server's identity: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:618) I installed the new rpm (it is of the same version) # curl --insecure --output katello-ca-consumer-latest.noarch.rpm https://dmule-rhsat.syslab.pnq2.redhat.com/pub/katello-ca-consumer-latest.noarch.rpm ... # yum reinstall katello-ca-consumer-latest.noarch.rpm -y .... katello-ca-consumer-dmule-rhsat.syslab.pnq2.redhat.com noarch 1.0-9 /katello-ca-consumer-latest.noarch 14 k .... Now host is able to show the identity # subscription-manager identity system identity: 99fddb6b-7a4d-4092-b0d0-9ce16ea7fb9f name: host.dhananjay.com org name: RedHat org ID: RedHat environment name: Library This Indicates the satellite actually updates the version '1.0-9' every-time we apply custom certificate on the satellite