Bug 995592 - pywbem fails to verify any server certificate
pywbem fails to verify any server certificate
Product: Fedora
Classification: Fedora
Component: pywbem (Show other bugs)
All Linux
unspecified Severity medium
: ---
: ---
Assigned To: Michal Minar
Fedora Extras Quality Assurance
Depends On:
  Show dependency treegraph
Reported: 2013-08-09 15:19 EDT by Michal Minar
Modified: 2013-08-09 15:30 EDT (History)
4 users (show)

See Also:
Fixed In Version: pywbem-0.7.0-15.20130723svn623.fc20
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2013-08-09 15:30:55 EDT
Type: Bug
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
fix for pywbem (626 bytes, patch)
2013-08-09 15:19 EDT, Michal Minar
no flags Details | Diff

  None (edit)
Description Michal Minar 2013-08-09 15:19:52 EDT
Created attachment 784952 [details]
fix for pywbem

Description of problem:
  When using secured connection (over https), pywbem fails to verify server's certificate.

Version-Release number of selected component (if applicable):

How reproducible:

Steps to Reproduce:
1. install tog-pegasus on server
2. install openlmi-tools client
3. install server's pem certificate (/etc/Pegasus/server.pem on server) to client's certificates dir (/etc/pki/tls/certs on client)
4. rehash certificates on client:
      $ cacertdir_rehash /etc/pki/tls/certs
5. try to instantiate secure connection to server:
6.    $ lmishell
      > c = connect(server_address, 'user', 'password')

Actual results:
  Error: [('SSL routines', 'SSL3_GET_SERVER_CERTIFICATE', 'certificate verify failed')]

Expected results:
  No error

Additional info:
  OpenSSL library invoked by pywbem does not know, where to search for certificates, attached patch solves this by setting *defaults* search paths to context.

Note You need to log in before you can comment on or make changes to this bug.