keylime: keylime_webapp don't work after package install

Is your an issue a feature request? If so, please raise it as an enhancement

Environment

OS / version: Fedora Server 33
Processor architecture: x86_64
TPM Manufacturer: Simulator
Keylime version: 5.7.2

Description

keylime_webapp fails to start after installation. Complains about static content missing.

Expected behavior vs. actual behavior

Expected: should start Actual: fails to start

Steps to reproduce problem

dnf install -y keylime
keylime_webapp

Relevant logs

Attach any relevant log files that can help to debug your issue.

[root@fedora-server keylime]# keylime_webapp
Using config file /etc/keylime.conf
2021-01-22 17:41:31.998 - keylime.tenant - WARNING - CAUTION: using default password for private key, please set private_key_pw to a strong password
2021-01-22 17:41:31.998 - keylime.tenant - INFO - Setting up client TLS in /var/lib/keylime/cv_ca
2021-01-22 17:41:32.007 - keylime.tenant_webapp - INFO - Starting Tenant WebApp (tornado) on port 443 use <Ctrl-C> to stop
Traceback (most recent call last):
  File "/usr/bin/keylime_webapp", line 10, in <module>
    sys.exit(main())
  File "/usr/lib/python3.9/site-packages/keylime/cmd/webapp.py", line 15, in main
    tenant_webapp.main()
  File "/usr/lib/python3.9/site-packages/keylime/tenant_webapp.py", line 639, in main
    raise Exception(
Exception: Static resource directory could not be found in /usr/lib/python3.9/site-packages/keylime!

[root@fedora-server keylime]# ls /usr/lib/python3.9/site-packages/keylime
ca_impl_cfssl.py           cmd            db                      keylime_logging.py   revocation_actions      tenant_webapp.py
ca_impl_openssl.py         cmd_exec.py    httpclient_requests.py  openstack.py         revocation_notifier.py  tornado_requests.py
ca_util.py                 common.py      ima.py                  __pycache__          secure_mount.py         tpm
cloud_verifier_common.py   cryptodome.py  __init__.py             registrar_client.py  serve_uuid.py           tpm_ek_ca.py
cloud_verifier_tornado.py  crypto.py      keylime_agent.py        registrar_common.py  tenant.py               vtpm_manager.py

About this issue

Original URL
State: closed
Created 3 years ago
Comments: 26 (23 by maintainers)

Most upvoted comments

After the update, the verifier and registrar cannot start.

[root@fedora-server keylime]# rpm -qa keylime
keylime-5.8.0-1.fc33.noarch

[root@fedora-server keylime]# keylime_verifier
Using config file /etc/keylime.conf
Traceback (most recent call last):
  File "/usr/bin/keylime_verifier", line 33, in <module>
    sys.exit(load_entry_point('keylime==0.0.0', 'console_scripts', 'keylime_verifier')())
  File "/usr/bin/keylime_verifier", line 25, in importlib_load_entry_point
    return next(matches).load()
  File "/usr/lib64/python3.9/importlib/metadata.py", line 77, in load
    module = import_module(match.group('module'))
  File "/usr/lib64/python3.9/importlib/__init__.py", line 127, in import_module
    return _bootstrap._gcd_import(name[level:], package, level)
  File "<frozen importlib._bootstrap>", line 1030, in _gcd_import
  File "<frozen importlib._bootstrap>", line 1007, in _find_and_load
  File "<frozen importlib._bootstrap>", line 986, in _find_and_load_unlocked
  File "<frozen importlib._bootstrap>", line 680, in _load_unlocked
  File "<frozen importlib._bootstrap_external>", line 790, in exec_module
  File "<frozen importlib._bootstrap>", line 228, in _call_with_frames_removed
  File "/usr/lib/python3.9/site-packages/keylime/cmd/verifier.py", line 10, in <module>
    from keylime import cloud_verifier_tornado
  File "/usr/lib/python3.9/site-packages/keylime/cloud_verifier_tornado.py", line 22, in <module>
    from keylime import cloud_verifier_common
  File "/usr/lib/python3.9/site-packages/keylime/cloud_verifier_common.py", line 24, in <module>
    from keylime import ima_file_signatures
  File "/usr/lib/python3.9/site-packages/keylime/ima_file_signatures.py", line 25, in <module>
    import asn1
ModuleNotFoundError: No module named 'asn1'

dnoliver on Jan 25, 2021