Lance Laursen
2011-06-02 03:18:58 UTC
Hi list,
First issue:
On a vanilla, base install CentOS5.5 and on a fully updated CentOS5.6, after
doing 'yum install certmaster' ( certmaster-0.28-1.el5 , EPEL ), starting
certmaster results in the following line:
"Starting certmaster daemon: /bin/bash: line 1: 2477 Segmentation fault
certmaster --daemon"
Starting certmaster again results in it starting and binding to its default
port. I have strace output of certmaster --daemon when this occurs, but to
repro just rm -rf /etc/pki/certmaster and restart the daemon.
Second issue, likely related to first issue:
Running the following, without changing any configs and with having
'certmaster' resolvable and running (and nc'ing crap to it from minion
results in an http 400 being returned) results in this:
[***@minion]# certmaster-request
Traceback (most recent call last):
File "/usr/bin/certmaster-request", line 23, in ?
requester.request_cert()
File "/usr/lib/python2.4/site-packages/certmaster/requester.py", line 22,
in request_cert
utils.create_minion_keys(hostname)
File "/usr/lib/python2.4/site-packages/certmaster/utils.py", line 174, in
create_minion_keys
result, cert_string, ca_cert_string = submit_csr_to_master(csr_file,
master_uri)
File "/usr/lib/python2.4/site-packages/certmaster/utils.py", line 246, in
submit_csr_to_master
return s.wait_for_cert(csr)
File "/usr/lib64/python2.4/xmlrpclib.py", line 1096, in __call__
return self.__send(self.__name, args)
File "/usr/lib64/python2.4/xmlrpclib.py", line 1383, in __request
verbose=self.__verbose
File "/usr/lib64/python2.4/xmlrpclib.py", line 1147, in request
return self._parse_response(h.getfile(), sock)
File "/usr/lib64/python2.4/xmlrpclib.py", line 1286, in _parse_response
return u.close()
File "/usr/lib64/python2.4/xmlrpclib.py", line 744, in close
raise Fault(**self._stack[0])
xmlrpclib.Fault: <Fault 1: "exceptions.AttributeError:'CertMaster' object
has no attribute 'handlers'">
/var/log/certmaster, even after adding log_level = DEBUG to certmaster.conf.
This is running certmaster-0.28-1.el5. Both issues happen on a base install
CentOS5.5, as well as a fully updated base install CentOS5.6. Wanted to
throw this issue at the list before debugging further to see if this is a
known issue with the new package.
Regards,
First issue:
On a vanilla, base install CentOS5.5 and on a fully updated CentOS5.6, after
doing 'yum install certmaster' ( certmaster-0.28-1.el5 , EPEL ), starting
certmaster results in the following line:
"Starting certmaster daemon: /bin/bash: line 1: 2477 Segmentation fault
certmaster --daemon"
Starting certmaster again results in it starting and binding to its default
port. I have strace output of certmaster --daemon when this occurs, but to
repro just rm -rf /etc/pki/certmaster and restart the daemon.
Second issue, likely related to first issue:
Running the following, without changing any configs and with having
'certmaster' resolvable and running (and nc'ing crap to it from minion
results in an http 400 being returned) results in this:
[***@minion]# certmaster-request
Traceback (most recent call last):
File "/usr/bin/certmaster-request", line 23, in ?
requester.request_cert()
File "/usr/lib/python2.4/site-packages/certmaster/requester.py", line 22,
in request_cert
utils.create_minion_keys(hostname)
File "/usr/lib/python2.4/site-packages/certmaster/utils.py", line 174, in
create_minion_keys
result, cert_string, ca_cert_string = submit_csr_to_master(csr_file,
master_uri)
File "/usr/lib/python2.4/site-packages/certmaster/utils.py", line 246, in
submit_csr_to_master
return s.wait_for_cert(csr)
File "/usr/lib64/python2.4/xmlrpclib.py", line 1096, in __call__
return self.__send(self.__name, args)
File "/usr/lib64/python2.4/xmlrpclib.py", line 1383, in __request
verbose=self.__verbose
File "/usr/lib64/python2.4/xmlrpclib.py", line 1147, in request
return self._parse_response(h.getfile(), sock)
File "/usr/lib64/python2.4/xmlrpclib.py", line 1286, in _parse_response
return u.close()
File "/usr/lib64/python2.4/xmlrpclib.py", line 744, in close
raise Fault(**self._stack[0])
xmlrpclib.Fault: <Fault 1: "exceptions.AttributeError:'CertMaster' object
has no attribute 'handlers'">
From strace and tcpdump output, the certmaster server is responding to the
minion, just not with the correct output I assume. Nothing special in/var/log/certmaster, even after adding log_level = DEBUG to certmaster.conf.
This is running certmaster-0.28-1.el5. Both issues happen on a base install
CentOS5.5, as well as a fully updated base install CentOS5.6. Wanted to
throw this issue at the list before debugging further to see if this is a
known issue with the new package.
Regards,