I'm trying to run an instance of koji for my own internal builds, and I'm struggling through the limited documentation. I've run into a roadblock with kojira. I'm using username/password authentication, but kojira seems to error out while loading CAcerts, even though I've specified the username and password in the config file:
[centos@localhost kojira]$ kojira --user=kojira --password=kojiiscool -v --logfile=$HOME/kojira.log Traceback (most recent call last): File "/usr/sbin/kojira", line 805, in <module> session.login() File "/usr/lib/python2.7/site-packages/koji/__init__.py", line 2026, in login sinfo = self.callMethod('login', self.opts['user'], self.opts['password'], opts) File "/usr/lib/python2.7/site-packages/koji/__init__.py", line 2245, in callMethod return self._callMethod(name, args, opts) File "/usr/lib/python2.7/site-packages/koji/__init__.py", line 2362, in _callMethod return self._sendCall(handler, headers, request) File "/usr/lib/python2.7/site-packages/koji/__init__.py", line 2276, in _sendCall return self._sendOneCall(handler, headers, request) File "/usr/lib/python2.7/site-packages/koji/__init__.py", line 2321, in _sendOneCall r = self.rsession.post(handler, **callopts) File "/usr/lib/python2.7/site-packages/requests/sessions.py", line 507, in post return self.request('POST', url, data=data, json=json, **kwargs) File "/usr/lib/python2.7/site-packages/requests/sessions.py", line 464, in request resp = self.send(prep, **send_kwargs) File "/usr/lib/python2.7/site-packages/requests/sessions.py", line 576, in send r = adapter.send(request, **kwargs) File "/usr/lib/python2.7/site-packages/requests/adapters.py", line 431, in send raise SSLError(e, request=request) requests.exceptions.SSLError: [Errno 2] No such file or directory
If I uncomment the configuration line for serverca and set it to something reasonable, I can get past the missing file exception, but then I fail because it seems to be trying to authenticate using a client certificate.
serverca
This is causing my test builds to be stuck, waiting on createrepo:
[centos@localhost ~]$ koji --user=koji --password=kojiiscool build testTarget *.src.rpm Uploading srpm: js-jquery-2.2.4-3.el7.src.rpm [====================================] 100% 00:00:00 621.33 KiB 59.72 MiB/sec Created task: 1 Task info: https://koji.example.com/koji/taskinfo?taskID=1 Watching tasks (this may be safely interrupted)... 1 build (testTarget, js-jquery-2.2.4-3.el7.src.rpm): free 1 build (testTarget, js-jquery-2.2.4-3.el7.src.rpm): free -> open (koji.example.com) 2 waitrepo (3): free 2 waitrepo (3): free -> open (koji.example.com)
I'm running this on CentOS 7 with koji-utils-1.11.0-5.el7.centos.noarch. My kojiweb httpd server is running with LetsEncrypt certificates, but I'm not using SSL for authentication.
koji-utils-1.11.0-5.el7.centos.noarch
kojiweb
Luckily, I can change my kojira config to use http instead of https (because I have httpd listening on both, but port 80 is accessible only from localhost). This seems to trick kojira into skipping the SSL stuff and just doing authentication with passwords.
Hi, this problem is with kojira and koji itself. I've created copy of issue https://pagure.io/koji/issue/395 in main project and I'm closing this one.
Metadata Update from @tkopecek: - Issue close_status updated to: Invalid - Issue status updated to: Closed (was: Open)
Login to comment on this ticket.