def persist(path):
try:
from ovirt.node.utils.fs import Config
cfg = Config()
cfg.persist(path)
except ImportError:
raise RuntimeError(
'Use ohostedcons.CoreEnv.NODE_SETUP for ensuring module '
'availability'
)
keys_to_model = {"rhn_type": "rhn.rhntype",
"rhn_url": "rhn.url",
"rhn_ca_cert": "rhn.ca_cert",
"rhn_username": "******",
"rhn_profile": "rhn.profile",
"rhn_activationkey": "rhn.activationkey",
"rhn_org": "rhn.org",
"rhn_proxy": "rhn.proxy",
"rhn_proxyuser": "******",
}
changes = dict((keys_to_model[key], args[key]) for key in keys if key in args)
if __name__ == "__main__":
cfg = Config()
if cfg.exists(RHSM_CONF) or cfg.exists(SYSTEMID):
# skip rerunning again
exit()
rhn = rhn_model.RHN()
cfg = rhn.retrieve()
rhn_password = _functions.OVIRT_VARS["OVIRT_RHN_PASSWORD"] \
if "OVIRT_RHN_PASSWORD" in _functions.OVIRT_VARS else ""
rhn_proxypassword = _functions.OVIRT_VARS["OVIRT_RHN_PROXYPASSWORD"] \
if "OVIRT_RHN_PROXYPASSWORD" in _functions.OVIRT_VARS \
else ""
effective_model = Changeset({
"rhn.rhntype": cfg['rhntype'],
"rhn.url": cfg['url'],
"rhn.ca_cert": cfg['ca_cert'],
"rhn.username": cfg['username'],
def __is_persisted(self, path):
return Config().exists(path)
def _persist1(f):
Config().persist(f)
def __persist_configs(self):
dirs = ["/etc/ovirt-hosted-engine", "/etc/ovirt-hosted-engine-ha",
"/etc/ovirt-hosted-engine-setup.env.d"]
[Config().persist(d) for d in dirs]
def commit(self):
cfg = RHN().retrieve()
self.logger.debug(cfg)
# rhntype = cfg["rhntype"]
org = cfg["org"]
serverurl = cfg["url"]
cacert = cfg["ca_cert"]
activationkey = cfg["activationkey"]
username = cfg["username"]
profilename = cfg["profile"]
proxy = cfg["proxy"]
proxyuser = cfg["proxyuser"]
conf = Config()
if os.path.exists("/etc/sysconfig/rhn/systemid"):
conf.unpersist("/etc/sysconfig/rhn/systemid")
extra_args = ['--force']
# Don't autosubscribe for now, since it may cause entitlement
# problems with SAM and Sat6
# if not activationkey:
# extra_args.append("--autosubscribe")
sm = ['/usr/sbin/subscription-manager']
args = list(sm)
args.append('register')
if activationkey and org:
args.append('--activationkey')
args.append(activationkey)
args.append('--org')
args.append(org)
elif username:
args.append('--username')
args.append(username)
if password:
args.append('--password')
args.append(password)
if org:
args.append('--org')
args.append(org)
else:
# skip RHN registration when neither activationkey
# nor username/password is supplied
# return success for AUTO w/o rhn_* parameters
return
if serverurl:
(host, port) = parse_host_port(serverurl)
parsed_url = urlparse(serverurl)
prefix = parsed_url.path
if cacert.endswith(".pem") and rhntype == "satellite":
prefix = "/rhsm"
if port == 0:
port = "443"
else:
port = str(port)
else:
prefix = "/subscription"
host = "subscription.rhn.redhat.com"
port = "443"
location = "/etc/rhsm/ca/candlepin-local.pem"
if cacert:
if not os.path.exists(cacert):
self.logger.info("Downloading CA cert.....")
RHN().retrieveCert(cacert, location)
if os.path.isfile(location):
if os.stat(location).st_size > 0:
conf.persist(location)
else:
raise RuntimeError("Error Downloading CA cert!")
smconf = list(sm)
smconf.append('config')
smconf.append('--server.hostname')
smconf.append(host)
smconf.append('--server.port')
smconf.append(port)
if cacert and not cacert.endswith(".pem") or \
rhntype == "satellite":
smconf.append('--server.prefix')
smconf.append(prefix)
else:
smconf.append('--rhsm.baseurl')
if prefix:
smconf.append("%s/%s" % (host, prefix))
else:
smconf.append(host + '/pulp/repos')
if cacert:
smconf.append('--rhsm.repo_ca_cert')
smconf.append('/etc/rhsm/ca/candlepin-local.pem')
try:
subprocess.check_call(smconf)
conf.persist("/etc/rhsm/rhsm.conf")
except:
raise RuntimeError("Error updating subscription manager \
configuration")
if profilename:
args.append('--name')
args.append(profilename)
if proxy:
try:
args.append('--proxy')
args.append(proxy)
if proxyuser:
args.append('--proxyuser')
args.append(proxyuser)
cmd = ["subscription-manager", "config",
"--server.proxy_user", proxyuser]
process.check_call(cmd)
if proxypass:
args.append('--proxypassword')
args.append(proxypass)
cmd = ["subscription-manager", "config",
"--server.proxy_password", proxypass]
logged_args = list(cmd)
remove_values_from_args = [
"--server.proxy_password"]
for idx, arg in enumerate(cmd):
if arg in remove_values_from_args:
logged_args[idx+1] = "XXXXXXX"
logged_args = str(logged_args)
self.logger.info(logged_args)
subprocess.check_call(cmd)
except:
raise RuntimeError("Error updating subscription \
manager proxy configuration")
args.extend(extra_args)
self.logger.info("Registering to RHN account.....")
rhsm_configs = (["/var/lib/rhsm/cache/installed_products.json",
"/var/lib/rhsm/facts/facts.json"])
[Config().unpersist(f) for f in rhsm_configs]
[Config().unpersist(f) for f in
glob.glob("/etc/pki/consumer/*pem")]
def unlink_if_exists(f):
if os.path.exists(f):
os.unlink(f)
for f in rhsm_configs:
unlink_if_exists(f)
logged_args = list(args)
remove_values_from_args = ["--password", "--proxypassword"]
for idx, arg in enumerate(logged_args):
if arg in remove_values_from_args:
logged_args[idx+1] = "XXXXXXX"
logged_args = str(logged_args)
self.logger.info(logged_args)
# This may block if waiting for input with check_output.
# pipe doesn't block
smreg_output = process.pipe(args)
if "been registered" not in smreg_output:
if "Invalid credentials" in smreg_output:
raise RuntimeError("Invalid Username / Password")
elif "already been taken" in smreg_output:
raise RuntimeError("Hostname is already " +
"registered")
if "Organization" in smreg_output:
raise RuntimeError("Organization must be specified "
"with Satellite 6")
if activationkey:
cmd = ["subscription-manager", "auto-attach"]
try:
subprocess.check_call(cmd)
except:
raise RuntimeError("Error Setting Auto Attach")
else:
raise RuntimeError("Registration Failed")
else:
for cfg in rhsm_configs:
conf.persist(cfg)
conf.persist("/etc/pki/consumer/key.pem")
conf.persist("/etc/pki/consumer/cert.pem")
self.logger.info("System %s sucessfully registered \
to %s" % (profilename, serverurl))
def commit(self):
cfg = RHN().retrieve()
self.logger.debug(cfg)
rhntype = cfg["rhntype"]
serverurl = cfg["url"]
cacert = cfg["ca_cert"]
activationkey = cfg["activationkey"]
username = cfg["username"]
profilename = cfg["profile"]
proxy = cfg["proxy"]
proxyuser = cfg["proxyuser"]
# novirtinfo: rhn-virtualization daemon refreshes virtinfo
extra_args = ['--novirtinfo', '--norhnsd', '--nopackages',
'--force']
args = ['/usr/sbin/rhnreg_ks']
if rhntype == "rhn":
sys.path.append("/usr/share/rhn/up2date_client")
import rhnreg
rhnreg.cfg.set("serverURL", RHN_XMLRPC_ADDR)
rhnreg.cfg.set("sslCACert", RHN_SSL_CERT)
rhnreg.cfg.save()
self.logger.info("ran update")
if serverurl:
cacert = cacert if cacert is not None else serverurl + \
"/pub/RHN-ORG-TRUSTED-SSL-CERT"
if not serverurl.endswith("/XMLRPC"):
serverurl = serverurl + "/XMLRPC"
args.append('--serverUrl')
args.append(serverurl)
location = "/etc/sysconfig/rhn/%s" % \
os.path.basename(cacert)
if cacert:
if not os.path.exists(cacert):
self.logger.info("Downloading CA cert.....")
self.logger.debug("From: %s To: %s" %
(cacert, location))
RHN().retrieveCert(cacert, location)
if os.path.isfile(location):
if os.stat(location).st_size > 0:
args.append('--sslCACert')
args.append(location)
Config().persist(location)
else:
raise RuntimeError("Error Downloading \
CA cert!")
if activationkey:
args.append('--activationkey')
args.append(activationkey)
elif username:
args.append('--username')
args.append(username)
if password:
args.append('--password')
args.append(password)
else:
# skip RHN registration when neither activationkey
# nor username/password is supplied
self.logger.debug("No activationkey or "
"username+password given")
return
if profilename:
args.append('--profilename')
args.append(profilename)
if proxy:
args.append('--proxy')
args.append(proxy)
if proxyuser:
args.append('--proxyUser')
args.append(proxyuser)
if proxypass:
args.append('--proxyPassword')
args.append(proxypass)
args.extend(extra_args)
self.logger.info("Registering to RHN account.....")
conf = Config()
conf.unpersist("/etc/sysconfig/rhn/systemid")
conf.unpersist("/etc/sysconfig/rhn/up2date")
logged_args = list(args)
remove_values_from_args = ["--password", "--proxyPassword"]
for idx, arg in enumerate(logged_args):
if arg in remove_values_from_args:
logged_args[idx+1] = "XXXXXXX"
logged_args = str(logged_args)
self.logger.debug(logged_args)
try:
subprocess.check_call(args)
conf.persist("/etc/sysconfig/rhn/up2date")
conf.persist("/etc/sysconfig/rhn/systemid")
self.logger.info("System %s sucessfully registered to %s" %
(profilename, serverurl))
# sync profile if reregistering, fixes problem with
# virt guests not showing
sys.path.append("/usr/share/rhn")
from virtualization import support
support.refresh(True)
# find old SAM/Sat 6 registrations
if Config().exists("/etc/rhsm/rhsm.conf"):
process.call(["subscription-manager",
"remove", "--all"])
process.call(["subscription-manager", "clean"])
Config().unpersist("/etc/rhsm/rhsm.conf")
except:
self.logger.exception("Failed to call: %s" % logged_args)
raise RuntimeError("Error registering to RHN account")