Re: Is FAS (Fedora Account System) broken?
On 11/12/2011 09:58 PM, Toshio Kuratomi wrote: > On Fri, Nov 11, 2011 at 08:10:09PM +0100, Gregor Tätzner wrote: >> Am Freitag, 11. November 2011, 10:47:12 schrieb Adam Tkac: >>> Hello, >>> >>> today I tried to upload new bind tarball via `fedpkg new-sources` >>> command but it failed with >>> "pycurl.error: (60, 'Peer certificate cannot be authenticated with given >>> CA certificates')" error. >> I have a similar problem when working with git - F16 updates-testing: >> git fetch >> error: Peer certificate cannot be authenticated with given CA certificates >> while >> accessing https://brum...@github.com...fatal: HTTP request failed >> > These seem to be a problem with the F16 nss update that is in > updates-testing. Downgrading from that should make this work. > > > https://admin.fedoraproject.org/updates/FEDORA-2011-15612 > > -Toshio It was nss issue, thanks for the hint! A -- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel
Re: Is FAS (Fedora Account System) broken?
On Fri, Nov 11, 2011 at 08:10:09PM +0100, Gregor Tätzner wrote: > Am Freitag, 11. November 2011, 10:47:12 schrieb Adam Tkac: > > Hello, > > > > today I tried to upload new bind tarball via `fedpkg new-sources` > > command but it failed with > > "pycurl.error: (60, 'Peer certificate cannot be authenticated with given > > CA certificates')" error. > > I have a similar problem when working with git - F16 updates-testing: > git fetch > error: Peer certificate cannot be authenticated with given CA certificates > while > accessing https://brum...@github.com...fatal: HTTP request failed > These seem to be a problem with the F16 nss update that is in updates-testing. Downgrading from that should make this work. https://admin.fedoraproject.org/updates/FEDORA-2011-15612 -Toshio pgpuua3RNzJce.pgp Description: PGP signature -- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel
Re: Is FAS (Fedora Account System) broken?
On Fri, 2011-11-11 at 10:47 +0100, Adam Tkac wrote: > Hello, > > today I tried to upload new bind tarball via `fedpkg new-sources` > command but it failed with > "pycurl.error: (60, 'Peer certificate cannot be authenticated with given > CA certificates')" error. > > I though there is problem with my ~/.fedora* certificates but after > inspection all fedora* commands (fedora-cert -v, fedora-cert -n, > fedora-packager-setup) fails with the same error, example: > > $ fedora-packager-setup > Setting up Fedora packager environment > You need a client certificate from the Fedora Account System, lets get > one now > FAS Username: atkac > FAS Password: > Traceback (most recent call last): > File "/usr/bin/fedora-packager-setup", line 148, in > main() > File "/usr/bin/fedora-packager-setup", line 112, in main > fedora_cert.create_user_cert() > File "/usr/lib/python2.7/site-packages/fedora_cert/__init__.py", line > 96, in create_user_cert > cert = fas.user_gencert() > File "/usr/lib/python2.7/site-packages/fedora/client/fas2.py", line > 565, in user_gencert > request = self.send_request('user/dogencert', auth=True) > File "/usr/lib/python2.7/site-packages/fedora/client/baseclient.py", > line 344, in send_request > auth_params=auth_params, retries=retries) > File "/usr/lib/python2.7/site-packages/fedora/client/proxyclient.py", > line 380, in send_request > request.perform() > pycurl.error: (60, 'Peer certificate cannot be authenticated with given > CA certificates') > > Is anyone experiencing same issue? I'm using up2date F16 system. > > Regards, Adam If you're running with updates-testing, you may be hitting the certificate validation regression introduced by https://admin.fedoraproject.org/updates/FEDORA-2011-15612 Try downgrading the 'nss' package and see if things start working again. signature.asc Description: This is a digitally signed message part -- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel
Re: Is FAS (Fedora Account System) broken?
Am Freitag, 11. November 2011, 10:47:12 schrieb Adam Tkac: > Hello, > > today I tried to upload new bind tarball via `fedpkg new-sources` > command but it failed with > "pycurl.error: (60, 'Peer certificate cannot be authenticated with given > CA certificates')" error. I have a similar problem when working with git - F16 updates-testing: git fetch error: Peer certificate cannot be authenticated with given CA certificates while accessing https://brum...@github.com...fatal: HTTP request failed Any advice? Cheers, Greg signature.asc Description: This is a digitally signed message part. -- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel
Re: Is FAS (Fedora Account System) broken?
On 11/11/2011 12:11 PM, Michael Schwendt wrote: > On Fri, 11 Nov 2011 10:17:20 + (UTC), AR (Andre) wrote: > >> Adam Tkac redhat.com> writes: >> >>> today I tried to upload new bind tarball via `fedpkg new-sources` >>> command but it failed with >>> "pycurl.error: (60, 'Peer certificate cannot be authenticated with given >>> CA certificates')" error. >> I saw the same error trying to use fedora-easy-karma in F16. >> >> https://bugzilla.redhat.com/show_bug.cgi?id=752990 > Is this including updates from > https://admin.fedoraproject.org/updates/FEDORA-2011-15056 > ? > > Can you reproduce after downgrading the packages mentioned in there? This update is out for quite time and yesterday I was able to upload & build git pkg. None of those pkgs were updated today and per my /var/log/yum.log no related package was updated. Regards, Adam -- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel
Is FAS (Fedora Account System) broken?
Michael Schwendt gmail.com> writes: > Is this including updates from > https://admin.fedoraproject.org/updates/FEDORA-2011-15056 python-gitdb-0.5.4-1.fc16.x86_64 python-smmap-0.8.1-3.fc16.noarch GitPython-0.2.0-0.6.beta1.fc16.noarch fedpkg-0.5.9.2-2.fc16.noarch package rpkg is not installed fedora-packager-0.5.9.2-2.fc16.noarch I am currently unable to access the fedora and updates repos, only updates-testing, and have no available updates from that. Error: Cannot retrieve repository metadata (repomd.xml) for repository: fedora. Error: Cannot retrieve repository metadata (repomd.xml) for repository: updates. -- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel
Re: Is FAS (Fedora Account System) broken?
On Fri, 11 Nov 2011 10:17:20 + (UTC), AR (Andre) wrote: > Adam Tkac redhat.com> writes: > > > today I tried to upload new bind tarball via `fedpkg new-sources` > > command but it failed with > > "pycurl.error: (60, 'Peer certificate cannot be authenticated with given > > CA certificates')" error. > > I saw the same error trying to use fedora-easy-karma in F16. > > https://bugzilla.redhat.com/show_bug.cgi?id=752990 Is this including updates from https://admin.fedoraproject.org/updates/FEDORA-2011-15056 ? Can you reproduce after downgrading the packages mentioned in there? -- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel
Is FAS (Fedora Account System) broken?
Adam Tkac redhat.com> writes: > today I tried to upload new bind tarball via `fedpkg new-sources` > command but it failed with > "pycurl.error: (60, 'Peer certificate cannot be authenticated with given > CA certificates')" error. I saw the same error trying to use fedora-easy-karma in F16. https://bugzilla.redhat.com/show_bug.cgi?id=752990 -- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel
Is FAS (Fedora Account System) broken?
Hello, today I tried to upload new bind tarball via `fedpkg new-sources` command but it failed with "pycurl.error: (60, 'Peer certificate cannot be authenticated with given CA certificates')" error. I though there is problem with my ~/.fedora* certificates but after inspection all fedora* commands (fedora-cert -v, fedora-cert -n, fedora-packager-setup) fails with the same error, example: $ fedora-packager-setup Setting up Fedora packager environment You need a client certificate from the Fedora Account System, lets get one now FAS Username: atkac FAS Password: Traceback (most recent call last): File "/usr/bin/fedora-packager-setup", line 148, in main() File "/usr/bin/fedora-packager-setup", line 112, in main fedora_cert.create_user_cert() File "/usr/lib/python2.7/site-packages/fedora_cert/__init__.py", line 96, in create_user_cert cert = fas.user_gencert() File "/usr/lib/python2.7/site-packages/fedora/client/fas2.py", line 565, in user_gencert request = self.send_request('user/dogencert', auth=True) File "/usr/lib/python2.7/site-packages/fedora/client/baseclient.py", line 344, in send_request auth_params=auth_params, retries=retries) File "/usr/lib/python2.7/site-packages/fedora/client/proxyclient.py", line 380, in send_request request.perform() pycurl.error: (60, 'Peer certificate cannot be authenticated with given CA certificates') Is anyone experiencing same issue? I'm using up2date F16 system. Regards, Adam -- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel