Project

General

Profile

Bug #11686

Katello-Installer: --certs-default-ca-name does not update httpd configuration

Added by Matthias Thubauville almost 4 years ago. Updated 11 months ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
Installer
Target version:
Difficulty:
easy
Triaged:
Yes
Bugzilla link:
Pull request:
Team Backlog:
Fixed in Releases:
Found in Releases:

Description

Specifying the option

--certs-default-ca-name="some-name-here" 

generates the correct files in
/etc/pki/katello/certs/

but the httpd configuration still points to
/etc/pki/katello/certs/katello-default-ca.crt

This causes the installer to fail (since the httpd cannot start), with the following error message

  Something went wrong! Check the log for ERROR-level output
  The full log is at /var/log/katello-installer/katello-installer.log
[ INFO 2015-09-04 10:04:40 verbose] All hooks in group post finished
[ERROR 2015-09-04 10:04:40 verbose] Repeating errors encountered during run:
[ERROR 2015-09-04 10:04:40 verbose]  Could not start Service[httpd]: Execution of '/usr/share/katello-installer/modules/service_wait/bin/service-wait start httpd' returned 1: Redirecting to /bin/systemctl start  httpd.service
[ERROR 2015-09-04 10:04:40 verbose]  /Stage[main]/Apache::Service/Service[httpd]/ensure: change from stopped to running failed: Could not start Service[httpd]: Execution of '/usr/share/katello-installer/modules/service_wait/bin/service-wait start httpd' returned 1: Redirecting to /bin/systemctl start  httpd.service
[ERROR 2015-09-04 10:04:40 verbose]  /Stage[main]/Foreman::Database/Foreman::Rake[db:seed]/Exec[foreman-rake-db:seed]: Failed to call refresh: /usr/sbin/foreman-rake db:seed returned 1 instead of one of [0]
[ERROR 2015-09-04 10:04:40 verbose]  /Stage[main]/Foreman::Database/Foreman::Rake[db:seed]/Exec[foreman-rake-db:seed]: /usr/sbin/foreman-rake db:seed returned 1 instead of one of [0] 
[...]

The easy workaround is to create symlink

/etc/pki/katello/certs/katello-default-ca.crt -> /etc/pki/katello/certs/some-name-here.crt 

But the installer should update the httpd configuration to point to the correct location.

History

#1 Updated by Eric Helms over 3 years ago

  • Legacy Backlogs Release (now unused) set to 70
  • Triaged changed from No to Yes

#2 Updated by Justin Sherrill over 3 years ago

  • Legacy Backlogs Release (now unused) changed from 70 to 86

#3 Updated by Eric Helms about 3 years ago

  • Legacy Backlogs Release (now unused) changed from 86 to 143

#4 Updated by Justin Sherrill almost 3 years ago

  • Legacy Backlogs Release (now unused) changed from 143 to 114

This parameter isn't really supported to be changed, ideally we'd just remove it.

Also available in: Atom PDF