Bug 441738

Summary: Software Updater abnormally terminated when launched
Product: Red Hat Enterprise Linux 5 Reporter: Mark Knox <mark>
Component: yum-rhn-pluginAssignee: Pradeep Kilambi <pkilambi>
Status: CLOSED ERRATA QA Contact:
Severity: urgent Docs Contact:
Priority: low    
Version: 5.3CC: bholden, bperkins, cperry, jhutar, pkilambi, rlerch, sshechte
Target Milestone: rc   
Target Release: ---   
Hardware: i386   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
the software updater (pup) did not parse OpenSSL error messages correctly. Therefore, when it encountered an invalid or missing SSL certificate, the updater would crash. The parsing code is now corrected, so invalid or missing SSL certificate will not result in a crash.
 Story Points: ---
Clone Of: Environment:
Last Closed: 2009-09-02 11:22:39 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Attachments:
Description Flags
Dump of Crash after attempting to run Software Updater
none
Updated error report from Software Updater none

Description Mark Knox 2008-04-09 18:32:09 UTC 
Error Dump attempting to run Software Updator
Comment 1 Mark Knox 2008-04-09 18:32:09 UTC 
Created attachment 301873 [details]
Dump of Crash after attempting to run Software Updater
Comment 2 John Matthews 2008-05-27 19:09:40 UTC 
It looks like an OpenSSL exception is being thrown, but we aren't parsing it
correctly.  

If you would apply the below change and include the new output it would aid us
in understanding what the problem is.

/usr/share/rhn/up2date_client

Index: rhnserver.py
===================================================================
--- rhnserver.py        (revision 172967)
+++ rhnserver.py        (working copy)
@@ -58,7 +58,7 @@
             error = error.strip("[()]")
             pieces = error.split(',')
             message = ""
-            if len(pieces) >= 2:
+            if len(pieces) > 2:
                 message = pieces[2].strip(" '")
             if message == 'certificate verify failed':
                 raise up2dateErrors.SSLCertificateVerifyFailedError()
Comment 3 Mark Knox 2008-06-03 17:21:32 UTC 
Created attachment 308265 [details]
Updated error report from Software Updater
Comment 8 Pradeep Kilambi 2009-06-10 12:52:26 UTC 
*** Bug 481053 has been marked as a duplicate of this bug. ***
Comment 13 Ruediger Landmann 2009-08-28 01:49:15 UTC 
Release note added. If any revisions are required, please set the 
"requires_release_notes" flag to "?" and edit the "Release Notes" field accordingly.
All revisions will be proofread by the Engineering Content Services team.

New Contents:
the software updater (pup) did not parse OpenSSL error messages 
correctly. Therefore, when it encountered an invalid or missing SSL 
certificate, the updater would crash. The parsing code is now corrected, 
so invalid or missing SSL certificate will not result in a crash.
Comment 14 errata-xmlrpc 2009-09-02 11:22:39 UTC 
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on therefore solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.

http://rhn.redhat.com/errata/RHBA-2009-1355.html