384
edits
Changes
From SME Server
Jump to navigationJump to search→Koji Build Servers
Line 403:
Line 403:
You'll need to set up your network: You can do this during the install or post install (ensure network activated, IP address, FQDN, Gateway, DNS) +Log into your server as root and<syntaxhighlight lang="bash">+nmtui+ip addr+ping google.com+dnf update+ +</syntaxhighlight><more to come...>+ +===== Koji Hub setup for build server =====
FQDN: build1.koozali.org
FQDN: build1.koozali.org
−===== Koji Hub setup for build server =====
+First off, set up some items on the koji hub for your build server/s
−Create a ssl cert for the build server with CN=build1.koozali.org<syntaxhighlight lang="bash">
−koji_make_cert.sh build1.koozali.org
−</syntaxhighlight>
−Add the build server into the koji database<syntaxhighlight lang="bash">
−</syntaxhighlight>Let's bring the server up to date<syntaxhighlight lang="bash">
+su - kojiadmin
−koji add-host build1.koozali.org x86_64 noarch
−koji add-host-to-channel build1.koozali.org createrepo
−exit
−</syntaxhighlight>
−We'll want the build servers to have access to the koji filesystem via nfs, so on the koji hub server (koji.koozali.org)<syntaxhighlight lang="bash">
We'll want the build servers to have access to the koji filesystem via nfs, so on the koji hub server (koji.koozali.org)<syntaxhighlight lang="bash">
dnf install nfs-utils
dnf install nfs-utils
Line 432:
Line 432:
firewall-cmd --reload
firewall-cmd --reload
+</syntaxhighlight>
+
+===== Build Server setup =====
+You'll need to set up your network: You can do this during the install or post install (ensure network activated, IP address, FQDN, Gateway, DNS)
+
+Log into your build server as root and<syntaxhighlight lang="bash">
+nmtui
+ip addr
+ping google.com
+</syntaxhighlight>Let's bring the server up to date<syntaxhighlight lang="bash">
+dnf update
+
+</syntaxhighlight>Add the epel repository and some tools to help with debugging (cockpit available at http://<IP addr or FQDN>:9090<syntaxhighlight lang="bash">
+systemctl enable --now cockpit.socket
+systemctl start cockpit.socket
+dnf config-manager --set-enabled powertools
+dnf install epel-release
+dnf install rsyslog
+dnf install setroubleshoot-server
+
+</syntaxhighlight>Install the koji build tools<syntaxhighlight lang="bash">
+dnf install koji-builder
+</syntaxhighlight>Edit the kojid config file<syntaxhighlight lang="bash">
+nano /etc/kojid/kojid.conf
+</syntaxhighlight>Point the builder at your koji hub and setup user/SSL credentials<syntaxhighlight lang="ini">
+; The directory root where work data can be found from the koji hub
+topdir=/mnt/koji
+
+; The directory root for temporary storage
+workdir=/tmp/koji
+
+; The URL for the xmlrpc server
+server=http://koji.koozali.org/kojihub
+user=build1.koozali.org
+
+; The URL for the file access
+topurl=http://koji.koozali.org/kojifiles
+
+;client certificate
+cert = /etc/kojid/client.crt
+
+;certificate of the CA that issued the HTTP server certificate
+serverca = /etc/kojid/serverca.crt
+</syntaxhighlight>Copy over you ssl certs from your koji hub and set their correct permissions<syntaxhighlight lang="bash">
+scp root@koji.koozali.org:/etc/pki/koji/build1.koozali.org.pem /etc/kojid/client.crt
+scp root@koji.koozali.org:/etc/pki/koji/koji_ca_cert.crt /etc/kojid/serverca.crt
+chmod 0600 /etc/kojid/*.crt
+
+</syntaxhighlight>Enable and start the kojid service<syntaxhighlight lang="bash">
+systemctl enable kojid --now
+systemctl start kojid
</syntaxhighlight>
</syntaxhighlight>
