def _update_certificates(self):
"""Delete and insert certificates needed for syncing from CDN repositories."""
# Remove all previously used certs/keys
self._remove_certificates()
# Read RHSM cert
f = open(constants.CA_CERT_PATH, 'r')
try:
ca_cert = f.read()
finally:
if f is not None:
f.close()
if not satCerts.verify_certificate_dates(str(ca_cert)):
log2(0, 0, "WARNING: '%s' certificate is not valid." % constants.CA_CERT_PATH, stream=sys.stderr)
# Insert RHSM cert and certs from manifest into DB
satCerts.store_rhnCryptoKey(
constants.CA_CERT_NAME, ca_cert, None)
for entitlement in self.manifest.get_all_entitlements():
creds = entitlement.get_credentials()
cert_name = constants.CLIENT_CERT_PREFIX + creds.get_id()
key_name = constants.CLIENT_KEY_PREFIX + creds.get_id()
if not satCerts.verify_certificate_dates(str(creds.get_cert())):
log2(0, 0, "WARNING: '%s' certificate is not valid." % cert_name, stream=sys.stderr)
satCerts.store_rhnCryptoKey(cert_name, creds.get_cert(), None)
satCerts.store_rhnCryptoKey(key_name, creds.get_key(), None)
def _update_certificates(self):
"""Delete and insert certificates needed for syncing from CDN repositories."""
# Remove all previously used certs/keys
self._remove_certificates()
# Read RHSM cert
f = open(constants.CA_CERT_PATH, 'r')
try:
ca_cert = f.read()
finally:
if f is not None:
f.close()
# Insert RHSM cert and certs from manifest into DB
satCerts.store_rhnCryptoKey(constants.CA_CERT_NAME, ca_cert, None)
for entitlement in self.manifest.get_all_entitlements():
creds = entitlement.get_credentials()
satCerts.store_rhnCryptoKey(
constants.CLIENT_CERT_PREFIX + creds.get_id(),
creds.get_cert(), None)
satCerts.store_rhnCryptoKey(
constants.CLIENT_KEY_PREFIX + creds.get_id(), creds.get_key(),
None)
def _update_certificates(self):
"""Delete and insert certificates needed for syncing from CDN repositories."""
# Read RHSM cert
with open(constants.CA_CERT_PATH, 'r') as f:
ca_cert = f.read()
# Insert RHSM cert and certs from manifest into DB
satCerts.store_rhnCryptoKey(
constants.CA_CERT_NAME, ca_cert, None)
for entitlement in self.manifest.get_all_entitlements():
creds = entitlement.get_credentials()
satCerts.store_rhnCryptoKey(
constants.CLIENT_CERT_PREFIX + creds.get_id(), creds.get_cert(), None)
satCerts.store_rhnCryptoKey(
constants.CLIENT_KEY_PREFIX + creds.get_id(), creds.get_key(), None)
def _update_certificates(self):
"""Delete and insert certificates needed for syncing from CDN repositories."""
# Read RHSM cert
with open(constants.CA_CERT_PATH, 'r') as f:
ca_cert = f.read()
# Insert RHSM cert and certs from manifest into DB
satCerts.store_rhnCryptoKey(constants.CA_CERT_NAME, ca_cert, None)
for entitlement in self.manifest.get_all_entitlements():
creds = entitlement.get_credentials()
satCerts.store_rhnCryptoKey(
constants.CLIENT_CERT_PREFIX + creds.get_id(),
creds.get_cert(), None)
satCerts.store_rhnCryptoKey(
constants.CLIENT_KEY_PREFIX + creds.get_id(), creds.get_key(),
None)
def _update_certificates(self):
"""Delete and insert certificates needed for syncing from CDN repositories."""
# Remove all previously used certs/keys
self._remove_certificates()
# Read RHSM cert
f = open(constants.CA_CERT_PATH, 'r')
try:
ca_cert = f.read()
finally:
if f is not None:
f.close()
# Insert RHSM cert and certs from manifest into DB
satCerts.store_rhnCryptoKey(
constants.CA_CERT_NAME, ca_cert, None)
for entitlement in self.manifest.get_all_entitlements():
creds = entitlement.get_credentials()
satCerts.store_rhnCryptoKey(
constants.CLIENT_CERT_PREFIX + creds.get_id(), creds.get_cert(), None)
satCerts.store_rhnCryptoKey(
constants.CLIENT_KEY_PREFIX + creds.get_id(), creds.get_key(), None)
initCFG('server.satellite')
rhnSQL.initDB(CFG.DEFAULT_DB)
def deleteCertRow():
# get rhn_cryptokey_id (there can only be one, bugzilla: 120297)
h = rhnSQL.prepare(_querySelectCryptoCertInfo)
h.execute(description=description, org_id=1)
row = h.fetchone_dict()
if row:
rhn_cryptokey_id = int(row['id'])
print 'found a cert, nuking it! id:', rhn_cryptokey_id
h = rhnSQL.prepare('delete rhnCryptoKey where id=:rhn_cryptokey_id')
h.execute(rhn_cryptokey_id=rhn_cryptokey_id)
rhnSQL.commit()
# bugzilla: 127324 - segfaults if you remove next line (if no delete in
# the store_rhnCryptoKey function)
#deleteCertRow()
print 'store CA cert once'
open('XXXca.crt', 'wb').write('X'*5031)
store_rhnCryptoKey(description, 'XXXca.crt')
os.unlink('XXXca.crt')
print 'store new one without deleting old one! Should just work.'
open('XXXca.crt', 'wb').write('Y'*5031)
store_rhnCryptoKey(description, 'XXXca.crt')
os.unlink('XXXca.crt')
rhnSQL.initDB()
def deleteCertRow():
# get rhn_cryptokey_id (there can only be one, bugzilla: 120297)
h = rhnSQL.prepare(_querySelectCryptoCertInfo)
h.execute(description=description, org_id=1)
row = h.fetchone_dict()
if row:
rhn_cryptokey_id = int(row['id'])
print 'found a cert, nuking it! id:', rhn_cryptokey_id
h = rhnSQL.prepare('delete rhnCryptoKey where id=:rhn_cryptokey_id')
h.execute(rhn_cryptokey_id=rhn_cryptokey_id)
rhnSQL.commit()
# bugzilla: 127324 - segfaults if you remove next line (if no delete in
# the store_rhnCryptoKey function)
#deleteCertRow()
print 'store CA cert once'
open('XXXca.crt', 'wb').write('X' * 5031)
store_rhnCryptoKey(description, 'XXXca.crt')
os.unlink('XXXca.crt')
print 'store new one without deleting old one! Should just work.'
open('XXXca.crt', 'wb').write('Y' * 5031)
store_rhnCryptoKey(description, 'XXXca.crt')
os.unlink('XXXca.crt')
