date:20150209

Re: [Spacewalk-list] Osad errors on Spacewalk 2.2 Server

2015-02-09 Thread Boyd, Robert

I am using an NFS share as my storage for the spacewalk repositories under 
/var/satellite.  I discovered today that I needed to do these:

setsebool -P httpd_use_nfs 1
setsebool -P spacewalk_nfs_mountpoint 1

Those 2 adjustments resolved a number of problems that I was seeing.

I’m now successfully running rhnpush.

I found the fix while running “denied” entries in  /var/log/audit/audit.log 
through audit2why

type=AVC msg=audit(1423517214.815:213656): avc:  denied  { add_name } for  
pid=25064 comm="httpd" name="Deployment_Guide-de-DE-5.8-1.el5-noarchTA2GNf" 
scontext=unconfined_u:system_r:httpd_t:s0 tcontext=system_u:object_r:nfs_t:s0 
tclass=dir

Was caused by:
One of the following booleans was set incorrectly.
Description:
spacewalk_nfs_mountpoint

Allow access by executing:
# setsebool -P spacewalk_nfs_mountpoint 1
Description:
Allow httpd to access nfs file systems

Allow access by executing:
# setsebool -P httpd_use_nfs 1

Robert Boyd
Sr. Systems Engineer
PeopleFluent
p. 919-645-2972 | c. 919-306-4681
e. robert.b...@peoplefluent.com

[http://mktg.peoplefluent.com/rs/peopleclick/images/140410_PF4colorLOGOx150.png]
Click here to experience the power of the new 
PeopleFluent Mirror Suite ™
Visit: www.peoplefluent.com | Read: PeopleFluent 
Blog | Follow: 
@PeopleFluent

From: spacewalk-list-boun...@redhat.com 
[mailto:spacewalk-list-boun...@redhat.com] On Behalf Of Boyd, Robert
Sent: Monday, February 09, 2015 3:45 PM
To: spacewalk-list@redhat.com
Subject: Re: [Spacewalk-list] Osad errors on Spacewalk 2.2 Server

One issue turned out to be an SElinux issue with osa-dispatcher.



___
Spacewalk-list mailing list
Spacewalk-list@redhat.com
https://www.redhat.com/mailman/listinfo/spacewalk-list

Re: [Spacewalk-list] Osad errors on Spacewalk 2.2 Server

2015-02-09 Thread Boyd, Robert

One issue turned out to be an SElinux issue with osa-dispatcher.


I’m still seeing this error when I attempt to do rhnpush:

[Mon Feb 09 15:31:47 2015] [error] Exception reported from 
###spacewalkserver-redacted###
[Mon Feb 09 15:31:47 2015] [error] Time: Mon Feb  9 15:31:47 2015
[Mon Feb 09 15:31:47 2015] [error] Exception type 
[Mon Feb 09 15:31:47 2015] [error] Request object information:
[Mon Feb 09 15:31:47 2015] [error] URI: /APP
[Mon Feb 09 15:31:47 2015] [error] Remote Host: localhost.localdomain
[Mon Feb 09 15:31:47 2015] [error] Server Name: localhost:80
[Mon Feb 09 15:31:47 2015] [error] Headers passed in:
[Mon Feb 09 15:31:47 2015] [error] \tAccept-Encoding: identity
[Mon Feb 09 15:31:47 2015] [error] \tCONTENT_LENGTH: 152
[Mon Feb 09 15:31:47 2015] [error] \tCONTENT_TYPE: application/binary
[Mon Feb 09 15:31:47 2015] [error] \tContent-Encoding: x-gzip
[Mon Feb 09 15:31:47 2015] [error] \tContent-Transfer-Encoding: binary
[Mon Feb 09 15:31:47 2015] [error] \tDOCUMENT_ROOT: /var/www/html
[Mon Feb 09 15:31:47 2015] [error] \tGATEWAY_INTERFACE: CGI/1.1
[Mon Feb 09 15:31:47 2015] [error] \tHTTP_ACCEPT_ENCODING: identity
[Mon Feb 09 15:31:47 2015] [error] \tHTTP_CONTENT_ENCODING: x-gzip
[Mon Feb 09 15:31:47 2015] [error] \tHTTP_CONTENT_TRANSFER_ENCODING: binary
[Mon Feb 09 15:31:47 2015] [error] \tHTTP_HOST: localhost
[Mon Feb 09 15:31:47 2015] [error] \tHTTP_USER_AGENT: rhn.rpclib.py/2.5.72-1.el6
[Mon Feb 09 15:31:47 2015] [error] \tHTTP_X_CLIENT_VERSION: 1
[Mon Feb 09 15:31:47 2015] [error] \tHTTP_X_INFO: RPC Processor (C) Red Hat, 
Inc (version 2.5.72-1.el6)
[Mon Feb 09 15:31:47 2015] [error] \tHTTP_X_RHN_TRANSPORT_CAPABILITY: 
follow-redirects=3
[Mon Feb 09 15:31:47 2015] [error] \tHTTP_X_TRANSPORT_INFO: Extended 
Capabilities Transport (C) Red Hat, Inc (version 2.5.72-1.el6)
[Mon Feb 09 15:31:47 2015] [error] \tHost: localhost
[Mon Feb 09 15:31:47 2015] [error] \tPATH_INFO:
[Mon Feb 09 15:31:47 2015] [error] \tQUERY_STRING:
[Mon Feb 09 15:31:47 2015] [error] \tREMOTE_ADDR: ::1
[Mon Feb 09 15:31:47 2015] [error] \tREMOTE_PORT: 54880
[Mon Feb 09 15:31:47 2015] [error] \tREQUEST_METHOD: POST
[Mon Feb 09 15:31:47 2015] [error] \tREQUEST_URI: /APP
[Mon Feb 09 15:31:47 2015] [error] \tSCRIPT_FILENAME: /usr/share/rhn/wsgi/app.py
[Mon Feb 09 15:31:47 2015] [error] \tSCRIPT_NAME: /APP
[Mon Feb 09 15:31:47 2015] [error] \tSCRIPT_URI: http://localhost/APP
[Mon Feb 09 15:31:47 2015] [error] \tSCRIPT_URL: /APP
[Mon Feb 09 15:31:47 2015] [error] \tSERVER_ADDR: ::1
[Mon Feb 09 15:31:47 2015] [error] \tSERVER_ADMIN: root@localhost
[Mon Feb 09 15:31:47 2015] [error] \tSERVER_NAME: localhost
[Mon Feb 09 15:31:47 2015] [error] \tSERVER_PORT: 80
[Mon Feb 09 15:31:47 2015] [error] \tSERVER_PROTOCOL: HTTP/1.1
[Mon Feb 09 15:31:47 2015] [error] \tSERVER_SIGNATURE: Apache Server 
at localhost Port 80
[Mon Feb 09 15:31:47 2015] [error]
[Mon Feb 09 15:31:47 2015] [error] \tSERVER_SOFTWARE: Apache
[Mon Feb 09 15:31:47 2015] [error] \tUser-Agent: rhn.rpclib.py/2.5.72-1.el6
[Mon Feb 09 15:31:47 2015] [error] \tX-Client-Version: 1
[Mon Feb 09 15:31:47 2015] [error] \tX-Info: RPC Processor (C) Red Hat, Inc 
(version 2.5.72-1.el6)
[Mon Feb 09 15:31:47 2015] [error] \tX-RHN-Transport-Capability: 
follow-redirects=3
[Mon Feb 09 15:31:47 2015] [error] \tX-Transport-Info: Extended Capabilities 
Transport (C) Red Hat, Inc (version 2.5.72-1.el6)
[Mon Feb 09 15:31:47 2015] [error] \tmod_ssl.is_https: 
[Mon Feb 09 15:31:47 2015] [error] \tmod_ssl.var_lookup: 
[Mon Feb 09 15:31:47 2015] [error] 
\tmod_wsgi.application_group<##spacewalkserver redacted##>|/app
[Mon Feb 09 15:31:47 2015] [error] \tmod_wsgi.callable_object: application
[Mon Feb 09 15:31:47 2015] [error] \tmod_wsgi.handler_script:
[Mon Feb 09 15:31:47 2015] [error] \tmod_wsgi.input_chunked: 0
[Mon Feb 09 15:31:47 2015] [error] \tmod_wsgi.listener_host:
[Mon Feb 09 15:31:47 2015] [error] \tmod_wsgi.listener_port: 80
[Mon Feb 09 15:31:47 2015] [error] \tmod_wsgi.process_group:
[Mon Feb 09 15:31:47 2015] [error] \tmod_wsgi.request_handler: wsgi-script
[Mon Feb 09 15:31:47 2015] [error] \tmod_wsgi.script_reloading: 1
[Mon Feb 09 15:31:47 2015] [error] \tmod_wsgi.version: (3, 2)
[Mon Feb 09 15:31:47 2015] [error] \twsgi.errors: 
[Mon Feb 09 15:31:47 2015] [error] \twsgi.file_wrapper: 
[Mon Feb 09 15:31:47 2015] [error] \twsgi.input: 
[Mon Feb 09 15:31:47 2015] [error] \twsgi.multiprocess: True
[Mon Feb 09 15:31:47 2015] [error] \twsgi.multithread: False
[Mon Feb 09 15:31:47 2015] [error] \twsgi.run_once: False
[Mon Feb 09 15:31:47 2015] [error] \twsgi.url_scheme: http
[Mon Feb 09 15:31:47 2015] [error] \twsgi.version: (1, 1)
[Mon Feb 09 15:31:47 2015] [error]
[Mon Feb 09 15:31:47 2015] [error] Exception Handler Information
[Mon Feb 09 15:31:47 2015] [error] Traceback (most recent call last):
[Mon Feb 09 15:31:47 2015] [error]   File 
"/usr/lib/python2.6/site-packages/spacewalk/server/apacheHandler.py", line 80, 
in headerParserHandler
[Mon Feb 09 15:31:47 2015] [error] rh

Re: [Spacewalk-list] Scheduled Action Stuck

2015-02-09 Thread Wojtak, Greg

Yes, and it hasn¹t helped.  The action has been picked up, spacewalk just
doesn¹t know that it completed it or not.


On 2/6/15, 6:09 PM, "Brian Kinney"  wrote:

>Have you run an rhn_check on the target of interest?
>
>--
>Brian
>
>This e-mail is private and may be confidential and is for the intended
>recipient only. If misdirected, please notify us by telephone and confirm
>that it has been deleted from your system and any copies destroyed. If you
>are not the intended recipient you are strictly prohibited from using,
>printing, copying, distributing or disseminating this e-mail or any
>information contained in it.  We use reasonable measures to virus scan all
>E-mails leaving UNICOM Global but no warranty is given that this E-mail
>and any attachments are virus free. You should ensure you have adequate
>measures in place for your own virus checking.
>
>-Original Message-
>From: spacewalk-list-boun...@redhat.com
>[mailto:spacewalk-list-boun...@redhat.com] On Behalf Of Wojtak, Greg
>Sent: Friday, February 06, 2015 7:39 AM
>To: spacewalk-list@redhat.com
>Subject: [Spacewalk-list] Scheduled Action Stuck
>
>I have an action in the ³Schedule² tab, ³Activation Key Config
>Auto-Deploy².  It doesn¹t have an option to cancel it like I¹ve done in
>the past with other jobs.  There is one system Pending, and when I check
>the ³Events² detail for the system, it shows that ³This action will be
>executed after 8/21/14², ³This action¹s status is: Picked up,², ³This
>client picked up this action on 8/21/14,² and ³The client has not yet
>completed this action.²
>
>I¹m not sure if the config files were actually deployed or not, but at
>this point I don¹t really care.  I¹ve been seeing some oddities with the
>scheduler that I hadn¹t seen previously and I¹m wondering if this has
>something to do with it.  I¹d like to just wipe this out  is there a way
>to mark this complete or something in the database?  I¹m using PostgreSQL
>back end.
>
>Thanks!
>
>Greg
>
>___
>Spacewalk-list mailing list
>Spacewalk-list@redhat.com
>https://www.redhat.com/mailman/listinfo/spacewalk-list
>
>___
>Spacewalk-list mailing list
>Spacewalk-list@redhat.com
>https://www.redhat.com/mailman/listinfo/spacewalk-list


___
Spacewalk-list mailing list
Spacewalk-list@redhat.com
https://www.redhat.com/mailman/listinfo/spacewalk-list

Re: [Spacewalk-list] Oracle Linux: reposync Java SE ULN channel

2015-02-09 Thread Avi Miller

Hey Daniel,

> On 10 Feb 2015, at 12:06 am, Schindler, Daniel (STEAG Energy Services GmbH) 
>  wrote:
> 
> I’m trying to sync Java SE channels from ULN via Spacewalk 2.2 (for Oracle 
> Linux) but I get:
> Repo URL: uln:///ol6_x86_64_JavaSE8_public
> ERROR: Cannot retrieve repository metadata (repomd.xml) for repository: 
> ol6_u5_jre7_public_x86_64. Please verify its path and try again

Let me look into this one and get back to you. :) 

Cheers,
Avi

--
Oracle 
Avi Miller | Product Management Director | +61 (3) 8616 3496
Oracle Linux and Virtualization
417 St Kilda Road, Melbourne, Victoria 3004 Australia


___
Spacewalk-list mailing list
Spacewalk-list@redhat.com
https://www.redhat.com/mailman/listinfo/spacewalk-list

Re: [Spacewalk-list] SSL Error SLES11 SP1 SP2 SP3

2015-02-09 Thread Michael Calmer

Hi,

Am Sonntag, 8. Februar 2015, 15:02:32 schrieb Bernd Helber:
> Hello List,
> 
> we installed a Spacewalk 2.2 Server for central Patchmanagement and
> Kickstart Rollouts. Most Things worked flawlessly.
> 
> But currently we face an annoying problem with the Spacewalk Clients
> for Sles11 SP2, SP3 and also SP1
> 
> From Time to time we see Problems  with the SSL Handshake between the
> Sles Clients and the Spacewalk Server
>  Error message: SSL certificate problem, verify that the CA cert is
> OK. Details:

Well, on SSL problems the first thing I would check is, if date and time of 
the client is set correct.
 
[...]
> For our SLES11 SP3 Machines we got the Client from the SuSE Repo
> zypper ar
> http://download.opensuse.org/repositories/systemsmanagement:/spacewalk:/2.2/
> SLE_11_SP3/x86_64/ spacewalk-tools
> 
> And installed the corresponding packages
> zypper install rhn-client-tools zypp-plugin-spacewalk rhnsd rhn-setup
> rhn-check yum
> 
> box704:~ # zypper refresh
> Retrieving repository 'sles11sp3' metadata [\]
> Download (curl) error for
> 'https://donkey101.gskv.org/XMLRPC/GET-REQ/bmb-extra_sles11sp3/repodata/repo
> md.xml?head_requests=no': Error code: Unrecognized error
> Error message: SSL certificate problem, verify that the CA cert is OK.
> Details:
> error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate
> verify failed

Take care that the CA certificate is copied to /etc/ssl/certs/ with the suffix 
".pem" and you run a "c_rehash /etc/ssl/certs/"
 
E.g.:
$> cp /usr/share/rhn/RHN-ORG-TRUSTED-SSL-CERT \
  /etc/ssl/certs/RHN-ORG-TRUSTED-SSL-CERT.pem
$> c_rehash /etc/ssl/certs/
 
-- 
Regards

Michael Calmer

--
Michael Calmer
SUSE LINUX GmbH, Maxfeldstr. 5, D-90409 Nuernberg
T: +49 (0) 911 74053 0
F: +49 (0) 911 74053575  - e-mail: michael.cal...@suse.com
--
SUSE Linux GmbH, GF: Felix Imendörffer, Jane Smithard, Jennifer Guild,
 Dilip Upmanyu, Graham Norton HRB 21284 (AG Nürnberg)


___
Spacewalk-list mailing list
Spacewalk-list@redhat.com
https://www.redhat.com/mailman/listinfo/spacewalk-list

[Spacewalk-list] Oracle Linux: reposync Java SE ULN channel

2015-02-09 Thread Schindler, Daniel (STEAG Energy Services GmbH)

This one might be directly addressed to Avi Miller :)

I'm trying to sync Java SE channels from ULN via Spacewalk 2.2 (for Oracle 
Linux) but I get:
Repo URL: uln:///ol6_x86_64_JavaSE8_public
ERROR: Cannot retrieve repository metadata (repomd.xml) for repository: 
ol6_u5_jre7_public_x86_64. Please verify its path and try again

I guess it has something to do with the way Java SE is published within ULN...? 
Do I need a machine registered with ULN and have package "yum-plugin-ulninfo" 
like Wim said in his blog 
(https://blogs.oracle.com/wim/entry/easy_access_to_java_se)?
I don't think it's possible to register spacewalk server with ULN?

--daniel
___
Spacewalk-list mailing list
Spacewalk-list@redhat.com
https://www.redhat.com/mailman/listinfo/spacewalk-list

Re: [Spacewalk-list] Osad errors on Spacewalk 2.2 Server

Re: [Spacewalk-list] Osad errors on Spacewalk 2.2 Server

Re: [Spacewalk-list] Scheduled Action Stuck

Re: [Spacewalk-list] Oracle Linux: reposync Java SE ULN channel

Re: [Spacewalk-list] SSL Error SLES11 SP1 SP2 SP3

[Spacewalk-list] Oracle Linux: reposync Java SE ULN channel

6 matches

Site Navigation

Mail list logo

Footer information