TWiki>
EGEE Web>SA3>EGEECertification>SA3Testing>PXCertificationReportForEMIRC2 (2011-03-30, ZdenekSustr)
EditAttachPDF
EGEE Web>SA3>EGEECertification>SA3Testing>PXCertificationReportForEMIRC2 (2011-03-30, ZdenekSustr) EditAttachPDFCertification Report for PX EMI-1 RC2 (PX 1.0.7-1, x86, SL5)
Origins
| Build Report | http://etics-repository.cern.ch/repository/reports/name/emi_B_1_rc2/-/reports/index.html |
| YUM repo file | https://twiki.cern.ch/twiki/pub/EMI/EMI-1/rc2.repo |
| Patch | — |
| Task | https://savannah.cern.ch/task/?18714 |
| Components | emi.px subsystem |
| Status | Certified |
| Duration | 10 hours |
| Previous Report | https://twiki.cern.ch/twiki/bin/view/EGEE/PXCertificationReportForEMIRC1 |
Clean installation
Environment
Clean SL5 installation according to gLite guidelines (CA certificates, ...). EPEL repository installed by callingcd /etc/yum.repos.d; wget http://download.fedora.redhat.com/pub/epel/5/x86_64/epel-release-5-4.noarch.rpm; rpm -Uvh epel-release-5*.rpm. VOMS installed and configured.
Process
cd /etc/yum.repos.d wget http://download.fedora.redhat.com/pub/epel/5/x86_64/epel-release-5-4.noarch.rpm rpm -Uvh epel-release-5*.rpm cat << EOF > rc2.repo [EMI-1-RC2] name=EMI 1 RC2 Repository baseurl=http://emisoft.web.cern.ch/emisoft/dist/EMI/1/RC2/sl5/\$basearch/ priority=45 protect=1 enabled=1 EOF yum install -y glite-PX glite-px-proxyrenewal #Workaround in case the MetaPackage is missing yum install -y glite-version myproxy-admin myproxy-server fetch-crl bdii glite-yaim-bdii glue-schema nc glite-info-provider-service glite-px-myproxy-yaim glite-px-proxyrenewal cd ~/ mkdir -m 700 yaim cd yaim cat << EOF > site-info.def SITE_NAME=krakonosovo PX_HOST=`hostname -f` GRID_AUTHORIZED_RETRIEVERS="\*" GRID_AUTHORIZED_RENEWERS="`openssl x509 -in /etc/grid-security/hostcert.pem -noout -subject |sed -e 's/subject= //'`" EOF /opt/glite/yaim/bin/yaim -c -s ./site-info.def -n glite-PX mkdir ~glite/.certs cp /etc/grid-security/host* ~glite/.certs/ chown -R glite ~glite/.certs/ export GLITE_USER=glite export GLITE_HOST_KEY=/home/glite/.certs/hostkey.pem export GLITE_HOST_CERT=/home/glite/.certs/hostcert.pem /etc/init.d/glite-proxy-renewald start
Full output of the installation
[root@delwin ~]# cd /etc/yum.repos.d
[root@delwin yum.repos.d]# wget http://download.fedora.redhat.com/pub/epel/5/x86_64/epel-release-5-4.noarch.rpm
--2011-03-30 11:09:04-- http://download.fedora.redhat.com/pub/epel/5/x86_64/epel-release-5-4.noarch.rpm
Resolving download.fedora.redhat.com... 209.132.181.27, 209.132.181.23, 209.132.181.24, ...
Connecting to download.fedora.redhat.com|209.132.181.27|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 12232 (12K) [application/x-rpm]
Saving to: `epel-release-5-4.noarch.rpm.2'
100%[===================================================================================================================================================================>] 12,232 32.8K/s in 0.4s
2011-03-30 11:09:05 (32.8 KB/s) - `epel-release-5-4.noarch.rpm.2' saved [12232/12232]
[root@delwin yum.repos.d]# rpm -Uvh epel-release-5*.rpm
Preparing... ########################################### [100%]
package epel-release-5-4.noarch is already installed
[root@delwin yum.repos.d]#
[root@delwin yum.repos.d]# #cd /etc/yum.repos.d/
[root@delwin yum.repos.d]# #wget http://etics-repository.cern.ch/repository/pm/volatile/repomd/name/emi_B_1_rc2/etics-volatile-build-by-name-protect.repo
[root@delwin yum.repos.d]#
[root@delwin yum.repos.d]#
[root@delwin yum.repos.d]# cat << EOF > rc2.repo
> [EMI-1-RC2]
> name=EMI 1 RC2 Repository
> baseurl=http://emisoft.web.cern.ch/emisoft/dist/EMI/1/RC2/sl5/\$basearch/
> priority=45
> protect=1
> enabled=1
> EOF
[root@delwin yum.repos.d]# yum install -y glite-PX glite-px-proxyrenewal
Loaded plugins: kernel-module
Setting up Install Process
No package glite-PX available.
Resolving Dependencies
--> Running transaction check
---> Package glite-px-proxyrenewal.x86_64 0:1.3.17-1.sl5 set to be updated
--> Processing Dependency: myproxy-libs for package: glite-px-proxyrenewal
--> Processing Dependency: libglobus_xio.so.0()(64bit) for package: glite-px-proxyrenewal
--> Processing Dependency: libmyproxy.so.5()(64bit) for package: glite-px-proxyrenewal
--> Processing Dependency: libglobus_gss_assist.so.3()(64bit) for package: glite-px-proxyrenewal
--> Processing Dependency: libglobus_callout.so.0()(64bit) for package: glite-px-proxyrenewal
--> Processing Dependency: libglobus_usage.so.0()(64bit) for package: glite-px-proxyrenewal
--> Running transaction check
---> Package globus-callout.x86_64 0:0.7-6.el5 set to be updated
---> Package globus-gss-assist.x86_64 0:5.9-2.el5 set to be updated
---> Package globus-usage.x86_64 0:1.4-1.el5 set to be updated
---> Package globus-xio.x86_64 0:2.8-2.el5 set to be updated
---> Package myproxy-libs.x86_64 0:5.3-3.el5 set to be updated
--> Processing Dependency: libvomsapi.so.0()(64bit) for package: myproxy-libs
--> Running transaction check
---> Package voms-compat.x86_64 0:1.9.19.2-1.el5 set to be updated
--> Finished Dependency Resolution
Beginning Kernel Module Plugin
Finished Kernel Module Plugin
Dependencies Resolved
=============================================================================================================================================================================================================
Package Arch Version Repository Size
=============================================================================================================================================================================================================
Installing:
glite-px-proxyrenewal x86_64 1.3.17-1.sl5 EMI-1-RC2 81 k
Installing for dependencies:
globus-callout x86_64 0.7-6.el5 epel 15 k
globus-gss-assist x86_64 5.9-2.el5 epel 30 k
globus-usage x86_64 1.4-1.el5 epel 15 k
globus-xio x86_64 2.8-2.el5 epel 123 k
myproxy-libs x86_64 5.3-3.el5 epel 118 k
voms-compat x86_64 1.9.19.2-1.el5 EMI-1-RC2 417 k
Transaction Summary
=============================================================================================================================================================================================================
Install 7 Package(s)
Upgrade 0 Package(s)
Total download size: 799 k
Downloading Packages:
(1/7): globus-usage-1.4-1.el5.x86_64.rpm | 15 kB 00:00
(2/7): globus-callout-0.7-6.el5.x86_64.rpm | 15 kB 00:00
(3/7): globus-gss-assist-5.9-2.el5.x86_64.rpm | 30 kB 00:00
(4/7): glite-px-proxyrenewal-1.3.17-1.sl5.x86_64.rpm | 81 kB 00:00
(5/7): myproxy-libs-5.3-3.el5.x86_64.rpm | 118 kB 00:00
(6/7): globus-xio-2.8-2.el5.x86_64.rpm | 123 kB 00:00
(7/7): voms-compat-1.9.19.2-1.el5.x86_64.rpm | 417 kB 00:00
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Total 1.1 MB/s | 799 kB 00:00
Running rpm_check_debug
Running Transaction Test
Finished Transaction Test
Transaction Test Succeeded
Running Transaction
Installing : globus-xio 1/7
Installing : globus-callout 2/7
Installing : globus-gss-assist 3/7
Installing : globus-usage 4/7
Installing : voms-compat 5/7
Installing : myproxy-libs 6/7
Installing : glite-px-proxyrenewal 7/7
Installed:
glite-px-proxyrenewal.x86_64 0:1.3.17-1.sl5
Dependency Installed:
globus-callout.x86_64 0:0.7-6.el5 globus-gss-assist.x86_64 0:5.9-2.el5 globus-usage.x86_64 0:1.4-1.el5 globus-xio.x86_64 0:2.8-2.el5 myproxy-libs.x86_64 0:5.3-3.el5 voms-compat.x86_64 0:1.9.19.2-1.el5
Complete!
[root@delwin yum.repos.d]#
[root@delwin yum.repos.d]# yum install -y emi-px
Loaded plugins: kernel-module
Setting up Install Process
No package emi-px available.
Nothing to do
[root@delwin yum.repos.d]# yum install -y glite-version myproxy-admin myproxy-server fetch-crl bdii glite-yaim-bdii glue-schema nc glite-info-provider-service glite-px-myproxy-yaim glite-px-proxyrenewal
Loaded plugins: kernel-module
Setting up Install Process
Package glite-version-3.2.3-1.noarch already installed and latest version
Package fetch-crl-2.8.4-2.el5.noarch already installed and latest version
Package bdii-5.2.0-1.noarch already installed and latest version
Package glite-yaim-bdii-4.3.1-1.noarch already installed and latest version
Package glue-schema-2.0.7-1.noarch already installed and latest version
Package nc-1.84-10.fc6.x86_64 already installed and latest version
Package glite-info-provider-service-1.5.2-1.noarch already installed and latest version
Package glite-px-proxyrenewal-1.3.17-1.sl5.x86_64 already installed and latest version
Resolving Dependencies
--> Running transaction check
---> Package glite-px-myproxy-yaim.x86_64 0:4.1.4-1.sl5 set to be updated
---> Package myproxy-admin.x86_64 0:5.3-3.el5 set to be updated
--> Processing Dependency: myproxy = 5.3-3.el5 for package: myproxy-admin
--> Processing Dependency: globus-gsi-cert-utils-progs for package: myproxy-admin
---> Package myproxy-server.x86_64 0:5.3-3.el5 set to be updated
--> Running transaction check
---> Package globus-gsi-cert-utils-progs.x86_64 0:6.7-1.el5 set to be updated
--> Processing Dependency: globus-common-setup >= 2 for package: globus-gsi-cert-utils-progs
--> Processing Dependency: globus-openssl-progs >= 1 for package: globus-gsi-cert-utils-progs
---> Package myproxy.x86_64 0:5.3-3.el5 set to be updated
--> Processing Dependency: globus-proxy-utils for package: myproxy
--> Processing Dependency: voms-clients for package: myproxy
--> Running transaction check
---> Package globus-common-progs.x86_64 0:11.6-1.el5 set to be updated
---> Package globus-openssl-progs.x86_64 0:5.1-2.el5 set to be updated
---> Package globus-proxy-utils.x86_64 0:3.9-1.el5 set to be updated
---> Package voms-clients.x86_64 0:2.0.0-1.sl5 set to be updated
--> Finished Dependency Resolution
Beginning Kernel Module Plugin
Finished Kernel Module Plugin
Dependencies Resolved
=============================================================================================================================================================================================================
Package Arch Version Repository Size
=============================================================================================================================================================================================================
Installing:
glite-px-myproxy-yaim x86_64 4.1.4-1.sl5 EMI-1-RC2 8.7 k
myproxy-admin x86_64 5.3-3.el5 epel 52 k
myproxy-server x86_64 5.3-3.el5 epel 51 k
Installing for dependencies:
globus-common-progs x86_64 11.6-1.el5 epel 63 k
globus-gsi-cert-utils-progs x86_64 6.7-1.el5 epel 26 k
globus-openssl-progs x86_64 5.1-2.el5 epel 4.3 k
globus-proxy-utils x86_64 3.9-1.el5 epel 44 k
myproxy x86_64 5.3-3.el5 epel 82 k
voms-clients x86_64 2.0.0-1.sl5 EMI-1-RC2 200 k
Transaction Summary
=============================================================================================================================================================================================================
Install 9 Package(s)
Upgrade 0 Package(s)
Total download size: 530 k
Downloading Packages:
(1/9): globus-openssl-progs-5.1-2.el5.x86_64.rpm | 4.3 kB 00:00
(2/9): glite-px-myproxy-yaim-4.1.4-1.sl5.x86_64.rpm | 8.7 kB 00:00
(3/9): globus-gsi-cert-utils-progs-6.7-1.el5.x86_64.rpm | 26 kB 00:00
(4/9): globus-proxy-utils-3.9-1.el5.x86_64.rpm | 44 kB 00:00
(5/9): myproxy-server-5.3-3.el5.x86_64.rpm | 51 kB 00:00
(6/9): myproxy-admin-5.3-3.el5.x86_64.rpm | 52 kB 00:00
(7/9): globus-common-progs-11.6-1.el5.x86_64.rpm | 63 kB 00:00
(8/9): myproxy-5.3-3.el5.x86_64.rpm | 82 kB 00:00
(9/9): voms-clients-2.0.0-1.sl5.x86_64.rpm | 200 kB 00:00
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Total 804 kB/s | 530 kB 00:00
Running rpm_check_debug
Running Transaction Test
Finished Transaction Test
Transaction Test Succeeded
Running Transaction
Installing : myproxy-server 1/9
Installing : voms-clients 2/9
Installing : globus-proxy-utils 3/9
Installing : myproxy 4/9
Installing : globus-common-progs 5/9
Installing : globus-openssl-progs 6/9
Installing : globus-gsi-cert-utils-progs 7/9
Installing : glite-px-myproxy-yaim 8/9
Installing : myproxy-admin 9/9
Installed:
glite-px-myproxy-yaim.x86_64 0:4.1.4-1.sl5 myproxy-admin.x86_64 0:5.3-3.el5 myproxy-server.x86_64 0:5.3-3.el5
Dependency Installed:
globus-common-progs.x86_64 0:11.6-1.el5 globus-gsi-cert-utils-progs.x86_64 0:6.7-1.el5 globus-openssl-progs.x86_64 0:5.1-2.el5 globus-proxy-utils.x86_64 0:3.9-1.el5 myproxy.x86_64 0:5.3-3.el5
voms-clients.x86_64 0:2.0.0-1.sl5
Complete!
You have new mail in /var/spool/mail/root
[root@delwin yum.repos.d]# cd ~/
[root@delwin ~]# mkdir -m 700 yaim
mkdir: cannot create directory `yaim': File exists
[root@delwin ~]# cd yaim
[root@delwin yaim]#
[root@delwin yaim]# cat << EOF > site-info.def
> SITE_NAME=krakonosovo
> PX_HOST=`hostname -f`
> GRID_AUTHORIZED_RETRIEVERS="\*"
> GRID_AUTHORIZED_RENEWERS="`openssl x509 -in /etc/grid-security/hostcert.pem -noout -subject |sed -e 's/subject= //'`"
> EOF
[root@delwin yaim]#
[root@delwin yaim]# /opt/glite/yaim/bin/yaim -c -s ./site-info.def -n glite-PX
INFO: Using site configuration file: ./site-info.def
INFO:
###################################################################
. /'.-. ')
. yA,-"-,( ,m,:/ ) .oo. oo o ooo o. .oo
. / .-Y a a Y-. 8. .8' 8'8. 8 8b d'8
. / ~ ~ / 8' .8oo88. 8 8 8' 8
. (_/ '====' 8 .8' 8. 8 8 Y 8
. Y,-''-,Yy,-.,/ o8o o8o o88o o8o o8o o8o
. I_))_) I_))_)
current working directory: /root/yaim
site-info.def date: Mar 30 11:13 ./site-info.def
yaim command: -c -s ./site-info.def -n glite-PX
log file: /opt/glite/yaim/bin/../log/yaimlog
Wed Mar 30 11:13:06 CEST 2011 : /opt/glite/yaim/bin/yaim
Installed YAIM versions:
glite-lb-yaim 4.3.4-1
glite-px-myproxy-yaim 4.1.4-1
glite-yaim-bdii ame:-ame:
glite-yaim-core ame:-ame:
####################################################################
INFO: The default location of the grid-env.(c)sh files will be: /opt/glite/etc/profile.d
INFO: Sourcing the utilities in /opt/glite/yaim/functions/utils
INFO: Detecting environment
WARNING: No gLite version has been detected. The variable GLITE_VERSION used by yaim can't be defined.
WARNING: If you are configuring gLite, please make sure the command glite-version is installed or YAIM may fail to configure things properly.
INFO: Executing function: config_host_certs_check
INFO: Executing function: config_edgusers_check
INFO: Executing function: config_proxy_server_check
INFO: Executing function: config_bdii_5.2_check
INFO: Executing function: config_info_service_px_check
INFO: Executing function: config_crl
INFO: Executing function: config_host_certs
INFO: Executing function: config_edgusers
INFO: Executing function: config_proxy_server_setenv
INFO: Executing function: config_proxy_server
INFO: Reloading MyProxy server
INFO: MyProxy server not running so starting
Starting myproxy-server: [ OK ]
INFO: Executing function: config_bdii_5.2
Stopping BDII update process: [ OK ]
Stopping BDII slapd: [ OK ]
Starting BDII slapd: [ OK ]
Starting BDII update process: [ OK ]
INFO: Executing function: config_info_service_px_setenv
INFO: Executing function: config_info_service_px
INFO: Configuration Complete. [ OK ]
INFO: YAIM terminated succesfully.
[root@delwin yaim]# mkdir ~glite/.certs
mkdir: cannot create directory `/home/glite/.certs': File exists
[root@delwin yaim]# cp /etc/grid-security/host* ~glite/.certs/
cp: overwrite `/home/glite/.certs/hostcert.pem'? y
cp: overwrite `/home/glite/.certs/hostkey.pem'? y
[root@delwin yaim]# /etc/init.d/glite-proxy-renewald start
Starting ProxyRenewal Daemon: glite-proxy-renewd ... done
Tests
| TestPlan | https://twiki.cern.ch/twiki/bin/view/EGEE/PXSoftwareVerificationandValidationPlan |
| Tests | http://glite.cvs.cern.ch/cgi-bin/glite.cgi/org.glite.testsuites.ctb/MyProxy/ |
su - glite JOBID=https://fake.job.id/xxx myproxy-init -s localhost --certfile /tmp/usercred.p12 --keyfile /tmp/usercred.p12 -d -n voms-proxy-init -valid 0:40 -voms voce -key /tmp/usercred.p12 -cert /tmp/usercred.p12 -vomses /etc/vomses ORIG_PROXY=`voms-proxy-info | grep -E "^path" | sed 's/^path\s*:\s*//'` REGISTERED_PROXY=`glite-proxy-renew -s localhost -f $ORIG_PROXY -j $JOBID start` printf "\tProxy:\t$ORIG_PROXY\n\tRenew:\t$REGISTERED_PROXY\n"; \ printf "Registered proxy -- "; \ voms-proxy-info -file $REGISTERED_PROXY | grep timeleft; \ printf "sleeping..."; \ sleep 600; \ printf "\nRegistered proxy -- ";\ voms-proxy-info -file $REGISTERED_PROXY | grep timeleft; \ printf "Original proxy -- "; \ voms-proxy-info -file $ORIG_PROXY | grep timeleft; \ printf "\nRegistered proxy -- "; \ voms-proxy-info -file $REGISTERED_PROXY -fqan -actimeleft; \ printf "Original proxy -- "; \ voms-proxy-info -file $ORIG_PROXY -fqan -actimeleft; \ printf "\nRegistered proxy -- "; \ voms-proxy-info -file $REGISTERED_PROXY -identity; \ printf "Original proxy -- ";\ voms-proxy-info -file $ORIG_PROXY -identity; \ glite-proxy-renew -j $JOBID stop; \ ls $REGISTERED_PROXY 2>&1 | grep 'No such file or directory' > /dev/null && echo OKOutput
[glite@delwin ~]$ myproxy-init -s localhost --certfile /tmp/usercred.p12 --keyfile /tmp/usercred.p12 -d -n Enter GRID pass phrase for this identity: Your identity: /DC=org/DC=terena/DC=tcs/C=CZ/O=CESNET/CN=Zdenek Sustr 4040 Creating proxy .................................. Done Proxy Verify OK Your proxy is valid until: Wed Apr 6 11:42:22 2011 A proxy valid for 168 hours (7.0 days) for user /DC=org/DC=terena/DC=tcs/C=CZ/O=CESNET/CN=Zdenek Sustr 4040 now exists on localhost. [glite@delwin ~]$ voms-proxy-init -valid 0:40 -voms voce -key /tmp/usercred.p12 -cert /tmp/usercred.p12 -vomses /etc/vomses Enter GRID pass phrase for this identity: Your identity: /DC=org/DC=terena/DC=tcs/C=CZ/O=CESNET/CN=Zdenek Sustr 4040 Creating temporary proxy .............................. Done Contacting voms1.egee.cesnet.cz:7001 [/DC=cz/DC=cesnet-ca/O=CESNET/CN=voms1.egee.cesnet.cz] "voce" Done Creating proxy ................................................................................ Done Your proxy is valid until Wed Mar 30 12:22:32 2011 [glite@delwin ~]$ ORIG_PROXY=`voms-proxy-info | grep -E "^path" | sed 's/^path\s*:\s*//'` [glite@delwin ~]$ REGISTERED_PROXY=`glite-proxy-renew -s localhost -f $ORIG_PROXY -j $JOBID start` [glite@delwin ~]$ printf "\tProxy:\t$ORIG_PROXY\n\tRenew:\t$REGISTERED_PROXY\n"; \ > printf "Registered proxy -- "; \ > voms-proxy-info -file $REGISTERED_PROXY | grep timeleft; \ > printf "sleeping..."; \ > sleep 600; \ > printf "\nRegistered proxy -- ";\ > voms-proxy-info -file $REGISTERED_PROXY | grep timeleft; \ > printf "Original proxy -- "; \ > voms-proxy-info -file $ORIG_PROXY | grep timeleft; \ > printf "\nRegistered proxy -- "; \ > voms-proxy-info -file $REGISTERED_PROXY -fqan -actimeleft; \ > printf "Original proxy -- "; \ > voms-proxy-info -file $ORIG_PROXY -fqan -actimeleft; \ > printf "\nRegistered proxy -- "; \ > voms-proxy-info -file $REGISTERED_PROXY -identity; \ > printf "Original proxy -- ";\ > voms-proxy-info -file $ORIG_PROXY -identity; \ > glite-proxy-renew -j $JOBID stop; \ > ls $REGISTERED_PROXY 2>&1 | grep 'No such file or directory' > /dev/null && echo OK Proxy: /tmp/x509up_u155 Renew: /var/glite/spool/glite-renewd/46f28dc374755cd61d02c581fea41d04.0 Registered proxy -- timeleft : 0:39:50 sleeping... Registered proxy -- timeleft : 9:57:07 Original proxy -- timeleft : 0:29:50 Registered proxy -- 43026 /voce/Role=NULL/Capability=NULL Original proxy -- 1788 /voce/Role=NULL/Capability=NULL Registered proxy -- /DC=org/DC=terena/DC=tcs/C=CZ/O=CESNET/CN=Zdenek Sustr 4040/CN=1625388275/CN=250173619/CN=1529429015 Original proxy -- /DC=org/DC=terena/DC=tcs/C=CZ/O=CESNET/CN=Zdenek Sustr 4040 OK
Upgrade from production
N/AResolution of Linked Bugs
N/A -- ZdenekSustr - 18-Mar-2011Topic revision: r6 - 2011-03-30 - ZdenekSustr
- EGEE Web
- EGEE Web Home
- gLite
- ProductTeams
- SA3
- JRA1
- TMB
- EMT
- SA1
- SA2
- NA2
- NA4
- EGEE-UIG
- List of registered projects
- List of EGEE-RP interactions
- Changes
- Index
- Search
Main.WebList
 |
|
Copyright &© by the contributing authors. All material on this collaboration platform is the property of the contributing authors. Ideas, requests, problems regarding TWiki? Ask a support question or Send feedback