Bug 765813 - Puppet: create-nss-db fails on RHEL 6.2
Summary: Puppet: create-nss-db fails on RHEL 6.2
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Red Hat Satellite
Classification: Red Hat
Component: Packaging
Version: 6.0.0
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: Unspecified
Assignee: Lukas Zapletal
QA Contact: Garik Khachikyan
URL:
Whiteboard:
Depends On:
Blocks: katello-blockers
TreeView+ depends on / blocked
 
Reported: 2011-12-09 14:09 UTC by Lukas Zapletal
Modified: 2019-09-25 21:08 UTC (History)
4 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2012-08-22 18:12:08 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)

Description Lukas Zapletal 2011-12-09 14:09:34 UTC 
# katello-configure
Starting Katello configuration
The top-level log file is [/var/log/katello/katello-configure-20111209-091609/main.log] err: /Stage[main]/Certs::Config/Exec[create-nss-db]/returns: change from notrun to 0 failed: /bin/rm -f /etc/pki/katello/nssdb//*; certutil -N -d '/etc/pki/katello/nssdb/' -f '/etc/katello/nss_db_password-file'; certutil -A -d '/etc/pki/katello/nssdb/' -n 'ca' -t 'TCu,Cu,Tuw' -a -i '/usr/share/katello/KATELLO-TRUSTED-SSL-CERT'; certutil -A -d '/etc/pki/katello/nssdb/' -n 'broker' -t ',,' -a -i '/etc/pki/tls/certs/qpid-broker.crt'; certutil -A -d '/etc/pki/katello/nssdb/' -n 'tomcat' -t ',,' -a -i '/etc/pki/tls/certs/httpd-ssl.crt' returned 255 instead of one of [0] at /usr/share/katello/install/puppet/modules/certs/manifests/config.pp:184

katello-0.1.135-2.el6.x86_64
katello-all-0.1.135-2.el6.x86_64
katello-certs-tools-1.0.1-2.el6.noarch
katello-cli-0.1.23-3.el6.noarch
katello-cli-common-0.1.23-3.el6.noarch
katello-common-0.1.135-2.el6.noarch
katello-configure-0.1.31-2.el6.noarch
katello-glue-candlepin-0.1.135-2.el6.x86_64
katello-glue-foreman-0.1.135-2.el6.x86_64
katello-glue-pulp-0.1.135-2.el6.x86_64
katello-qpid-broker-key-pair-1.0-1.noarch
katello-trusted-ssl-cert-1.0-1.noarch
Comment 2 Lukas Zapletal 2011-12-09 14:11:38 UTC 
2678cbb 765813 - Puppet: create-nss-db fails on RHEL 6.2 [TEMP FIX]
Comment 3 Lukas Zapletal 2011-12-20 16:26:23 UTC 
Fedora release 15 - nss-tools-3.12.10-6.fc15.x86_64
EL 6.1 - nss-tools-3.12.9-9.el6.x86_64
EL 6.2 - nss-tools-3.12.10-16.el6.x86_64

I tried on EL 6.2 again today with reverted fix 2678cbb and it worked. I am thinking about turning this on and then trying to follow when it fails for somebody...
Comment 5 Lukas Zapletal 2011-12-21 10:50:11 UTC 
@Mike - Garik confirms it works. Report here if you enconuter any problems.
Comment 6 Garik Khachikyan 2011-12-21 10:52:23 UTC 
# VERIFIED

starts to WFM on:
:: [   INFO   ] :: katello-0.1.151-1.git.0.acb9f28.el6.noarch
:: [   INFO   ] :: katello-cli-0.1.30-1.git.0.7b8087d.el6.noarch
:: [   INFO   ] :: candlepin-0.5.8-1.el6.noarch
:: [   INFO   ] :: pulp-0.0.255-1.el6.noarch
:: [   INFO   ] :: katello-configure-0.1.43-1.git.0.0b38c9a.el6.noarch

redhat-release: Red Hat Enterprise Linux Server release 6.2 (Santiago)
kernel: 2.6.32-220.el6.x86_64
Note You need to log in before you can comment on or make changes to this bug.