Red Hat Bugzilla – Bug 877591
SSL between qpidd and pulp seems to be broken
Last modified: 2012-11-28 09:29:17 EST
Description of problem:
Talked with jortel about this a lot, but essentially when pulp and qpidd are configured in similar ways to they were in pulpv1 with katello (with ssl communicaiton enabled), ssl seems broken.
When trying to delete a consumer for example you will get an error (see below).
Nov 7 14:10:14 (none) qpidd: 2012-11-07 14:10:14 [Security] error Error reading socket: Unable to find the certificate or key necessary for authentication. [-12285]
Speaking with Jeff, no one had tested pulpv2 with qpidd using SSL and he was going to setup a non-katello test box to debug.
Using 2.0.6-0.9.beta, I generated certificates using the playpen/nss-db-gen script and updated server.conf, consumer.conf and qpidd.conf to support only SSL connectivity to the qpid broker. Then, restarted qpidd, httpd and goferd. All connected as expected using SSL on port 5671. Then, I ran a successful package install test using pulp-admin.
The test suggests that SSL between QPID and Pulp is in good working order.