def _update_certificates(self): """Delete and insert certificates needed for syncing from CDN repositories.""" # Remove all previously used certs/keys self._remove_certificates() # Read RHSM cert f = open(constants.CA_CERT_PATH, 'r') try: ca_cert = f.read() finally: if f is not None: f.close() if not satCerts.verify_certificate_dates(str(ca_cert)): log2(0, 0, "WARNING: '%s' certificate is not valid." % constants.CA_CERT_PATH, stream=sys.stderr) # Insert RHSM cert and certs from manifest into DB satCerts.store_rhnCryptoKey( constants.CA_CERT_NAME, ca_cert, None) for entitlement in self.manifest.get_all_entitlements(): creds = entitlement.get_credentials() cert_name = constants.CLIENT_CERT_PREFIX + creds.get_id() key_name = constants.CLIENT_KEY_PREFIX + creds.get_id() if not satCerts.verify_certificate_dates(str(creds.get_cert())): log2(0, 0, "WARNING: '%s' certificate is not valid." % cert_name, stream=sys.stderr) satCerts.store_rhnCryptoKey(cert_name, creds.get_cert(), None) satCerts.store_rhnCryptoKey(key_name, creds.get_key(), None)
def _update_certificates(self): """Delete and insert certificates needed for syncing from CDN repositories.""" # Remove all previously used certs/keys self._remove_certificates() # Read RHSM cert f = open(constants.CA_CERT_PATH, 'r') try: ca_cert = f.read() finally: if f is not None: f.close() # Insert RHSM cert and certs from manifest into DB satCerts.store_rhnCryptoKey(constants.CA_CERT_NAME, ca_cert, None) for entitlement in self.manifest.get_all_entitlements(): creds = entitlement.get_credentials() satCerts.store_rhnCryptoKey( constants.CLIENT_CERT_PREFIX + creds.get_id(), creds.get_cert(), None) satCerts.store_rhnCryptoKey( constants.CLIENT_KEY_PREFIX + creds.get_id(), creds.get_key(), None)
def _update_certificates(self): """Delete and insert certificates needed for syncing from CDN repositories.""" # Read RHSM cert with open(constants.CA_CERT_PATH, 'r') as f: ca_cert = f.read() # Insert RHSM cert and certs from manifest into DB satCerts.store_rhnCryptoKey( constants.CA_CERT_NAME, ca_cert, None) for entitlement in self.manifest.get_all_entitlements(): creds = entitlement.get_credentials() satCerts.store_rhnCryptoKey( constants.CLIENT_CERT_PREFIX + creds.get_id(), creds.get_cert(), None) satCerts.store_rhnCryptoKey( constants.CLIENT_KEY_PREFIX + creds.get_id(), creds.get_key(), None)
def _update_certificates(self): """Delete and insert certificates needed for syncing from CDN repositories.""" # Read RHSM cert with open(constants.CA_CERT_PATH, 'r') as f: ca_cert = f.read() # Insert RHSM cert and certs from manifest into DB satCerts.store_rhnCryptoKey(constants.CA_CERT_NAME, ca_cert, None) for entitlement in self.manifest.get_all_entitlements(): creds = entitlement.get_credentials() satCerts.store_rhnCryptoKey( constants.CLIENT_CERT_PREFIX + creds.get_id(), creds.get_cert(), None) satCerts.store_rhnCryptoKey( constants.CLIENT_KEY_PREFIX + creds.get_id(), creds.get_key(), None)
def _update_certificates(self): """Delete and insert certificates needed for syncing from CDN repositories.""" # Remove all previously used certs/keys self._remove_certificates() # Read RHSM cert f = open(constants.CA_CERT_PATH, 'r') try: ca_cert = f.read() finally: if f is not None: f.close() # Insert RHSM cert and certs from manifest into DB satCerts.store_rhnCryptoKey( constants.CA_CERT_NAME, ca_cert, None) for entitlement in self.manifest.get_all_entitlements(): creds = entitlement.get_credentials() satCerts.store_rhnCryptoKey( constants.CLIENT_CERT_PREFIX + creds.get_id(), creds.get_cert(), None) satCerts.store_rhnCryptoKey( constants.CLIENT_KEY_PREFIX + creds.get_id(), creds.get_key(), None)
initCFG('server.satellite') rhnSQL.initDB(CFG.DEFAULT_DB) def deleteCertRow(): # get rhn_cryptokey_id (there can only be one, bugzilla: 120297) h = rhnSQL.prepare(_querySelectCryptoCertInfo) h.execute(description=description, org_id=1) row = h.fetchone_dict() if row: rhn_cryptokey_id = int(row['id']) print 'found a cert, nuking it! id:', rhn_cryptokey_id h = rhnSQL.prepare('delete rhnCryptoKey where id=:rhn_cryptokey_id') h.execute(rhn_cryptokey_id=rhn_cryptokey_id) rhnSQL.commit() # bugzilla: 127324 - segfaults if you remove next line (if no delete in # the store_rhnCryptoKey function) #deleteCertRow() print 'store CA cert once' open('XXXca.crt', 'wb').write('X'*5031) store_rhnCryptoKey(description, 'XXXca.crt') os.unlink('XXXca.crt') print 'store new one without deleting old one! Should just work.' open('XXXca.crt', 'wb').write('Y'*5031) store_rhnCryptoKey(description, 'XXXca.crt') os.unlink('XXXca.crt')
rhnSQL.initDB() def deleteCertRow(): # get rhn_cryptokey_id (there can only be one, bugzilla: 120297) h = rhnSQL.prepare(_querySelectCryptoCertInfo) h.execute(description=description, org_id=1) row = h.fetchone_dict() if row: rhn_cryptokey_id = int(row['id']) print 'found a cert, nuking it! id:', rhn_cryptokey_id h = rhnSQL.prepare('delete rhnCryptoKey where id=:rhn_cryptokey_id') h.execute(rhn_cryptokey_id=rhn_cryptokey_id) rhnSQL.commit() # bugzilla: 127324 - segfaults if you remove next line (if no delete in # the store_rhnCryptoKey function) #deleteCertRow() print 'store CA cert once' open('XXXca.crt', 'wb').write('X' * 5031) store_rhnCryptoKey(description, 'XXXca.crt') os.unlink('XXXca.crt') print 'store new one without deleting old one! Should just work.' open('XXXca.crt', 'wb').write('Y' * 5031) store_rhnCryptoKey(description, 'XXXca.crt') os.unlink('XXXca.crt')