[Bug 2133437] New: Fatal errors in log during Anaconda installation: "CRIT sss_cache:No domains configured, fatal error!"
https://bugzilla.redhat.com/show_bug.cgi?id=2133437
Bug ID: 2133437 Summary: Fatal errors in log during Anaconda installation: "CRIT sss_cache:No domains configured, fatal error!" Product: Fedora Version: rawhide Status: NEW Component: sssd Assignee: sssd-maintainers@lists.fedoraproject.org Reporter: rvykydal@redhat.com QA Contact: extras-qa@fedoraproject.org CC: abokovoy@redhat.com, atikhono@redhat.com, jhrozek@redhat.com, lslebodn@redhat.com, luk.claes@gmail.com, mzidek@redhat.com, pbrezina@redhat.com, sbose@redhat.com, ssorce@redhat.com, sssd-maintainers@lists.fedoraproject.org Target Milestone: --- Classification: Fedora
Created attachment 1917056 --> https://bugzilla.redhat.com/attachment.cgi?id=1917056&action=edit /tmp/syslog from installer environment
Description of problem:
We have new CRIT error messages appearing in kickstart during root password setup in chroot (and also in one other place):
09:32:55,063 WARNING org.fedoraproject.Anaconda.Modules.Users:INFO:anaconda.modules.common.task.task:Configure root password 09:32:55,136 WARNING org.fedoraproject.Anaconda.Modules.Users:INFO:program:Running... chpasswd -R /mnt/sysroot -e 09:32:55,267 CRIT sss_cache:No domains configured, fatal error! 09:32:55,317 CRIT sss_cache:No domains configured, fatal error! 09:32:55,328 WARNING org.fedoraproject.Anaconda.Modules.Users:INFO:program:Running... chage -R /mnt/sysroot -d root 09:32:55,402 NOTICE audit:USER_MGMT pid=20479 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=change-last-change-date id=0 exe="/usr/bin/chage" hostname=? addr=? terminal=? res=success' 09:32:55,499 CRIT sss_cache:No domains configured, fatal error! 09:32:55,515 WARNING org.fedoraproject.Anaconda.Modules.Users:INFO:program:[sss_cache] [confdb_get_domains] (0x0010): No domains configured, fatal error! 09:32:55,515 WARNING org.fedoraproject.Anaconda.Modules.Users:DEBUG:program:Return code: 0
Version-Release number of selected component (if applicable):
https://dl.fedoraproject.org/pub/fedora/linux/development/rawhide/COMPOSE_ID: Fedora-Rawhide-20221009.n.0
It seems to start happening when sssd-2.8.0-1 replaced sssd-2.7.4-1.
Are we missing some configuration in installation environment?
How reproducible:
Do Fedora Server installation with latest development rawhide
Steps to Reproduce: 1. 2. 3.
Actual results:
Error messages in the log, but installation seems to finish without issues.
Expected results:
No CRIT error messages by sss in the logs.
Additional info:
The CRIT messages make Anaconda kickstart test fail. We can put them on a ignore list but we should try to fix the origin of the messages first.
https://bugzilla.redhat.com/show_bug.cgi?id=2133437
Alexey Tikhonov atikhono@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Flags| |needinfo?(rvykydal@redhat.c | |om)
--- Comment #1 from Alexey Tikhonov atikhono@redhat.com --- Hi,
do you have anything under `/etc/sssd/`?
https://bugzilla.redhat.com/show_bug.cgi?id=2133437
--- Comment #2 from Alexey Tikhonov atikhono@redhat.com --- (In reply to Alexey Tikhonov from comment #1)
Hi,
do you have anything under `/etc/sssd/`?
Most probably there is no and I can confirm change of behavior of `sss_cache` in this case.
Probably the reason is https://github.com/SSSD/sssd/commit/003b94fb382c18784831adc03afa1a5860f760d0 that made `confdb_get_enabled_domain_list()` to return `ENOENT` and this results in sys log message https://github.com/SSSD/sssd/blob/master/src/confdb/confdb.c#L1803
https://bugzilla.redhat.com/show_bug.cgi?id=2133437
Radek Vykydal rvykydal@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Flags|needinfo?(rvykydal@redhat.c | |om) |
--- Comment #3 from Radek Vykydal rvykydal@redhat.com --- (In reply to Alexey Tikhonov from comment #2)
(In reply to Alexey Tikhonov from comment #1)
Hi,
do you have anything under `/etc/sssd/`?
In the installer environment there is no /etc/sssd at all. The chpasswd and change command are run in the installer environment, so without the config files.
https://bugzilla.redhat.com/show_bug.cgi?id=2133437
Alexey Tikhonov atikhono@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Keywords| |Regression
https://bugzilla.redhat.com/show_bug.cgi?id=2133437
--- Comment #4 from Pavel Březina pbrezina@redhat.com --- Upstream PR: https://github.com/SSSD/sssd/pull/6388
https://bugzilla.redhat.com/show_bug.cgi?id=2133437
Alexey Tikhonov atikhono@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Whiteboard| |sync-to-jira review Keywords| |Triaged Link ID| |Github SSSD/sssd/pull/6388 Assignee|sssd-maintainers@lists.fedo |pbrezina@redhat.com |raproject.org |
https://bugzilla.redhat.com/show_bug.cgi?id=2133437
Red Hat One Jira (issues.redhat.com) redhat-one-jira@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Link ID| |Red Hat Issue Tracker | |SSSD-5106
https://bugzilla.redhat.com/show_bug.cgi?id=2133437
Pavel Březina pbrezina@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |POST
--- Comment #5 from Pavel Březina pbrezina@redhat.com --- Pushed PR: https://github.com/SSSD/sssd/pull/6388
* `master` * df55b1f16ea2fb5e56f0fe69419904d50b7e2476 - confdb: chande debug level when no domain are found in confdb_get_domains * 64c22dd1c4f79f953b879fc167b535de928f4bfd - sss_cache: use ERR_NO_DOMAIN_ENABLED instead of ENOENT * 4da861368b88c03b22993f95de5b508ad5637c25 - monitor: read all enabled domains in add_implicit_services * b38fdc8185fcd6a2e5d4b483d3119964f9922070 - confdb: avoid syslog message when no domains are enabled * `sssd-2-8` * ab7cbb5f0f74e5061136cf632f487d7a8c023272 - confdb: chande debug level when no domain are found in confdb_get_domains * a6312c46daebcf39b9331cc2c99f5abfe25f64d0 - sss_cache: use ERR_NO_DOMAIN_ENABLED instead of ENOENT * 1df029470df8af58cf63e41bdad7b8882b141ac3 - monitor: read all enabled domains in add_implicit_services * a6d521458460593afc7585f2d269aa4c6f326ecb - confdb: avoid syslog message when no domains are enabled
https://bugzilla.redhat.com/show_bug.cgi?id=2133437
Alexey Tikhonov atikhono@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Whiteboard|sync-to-jira review |sync-to-jira
https://bugzilla.redhat.com/show_bug.cgi?id=2133437
Fedora Update System updates@fedoraproject.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|POST |MODIFIED
--- Comment #6 from Fedora Update System updates@fedoraproject.org --- FEDORA-2022-34184a1bbe has been submitted as an update to Fedora 37. https://bodhi.fedoraproject.org/updates/FEDORA-2022-34184a1bbe
https://bugzilla.redhat.com/show_bug.cgi?id=2133437
Pavel Březina pbrezina@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Resolution|--- |RAWHIDE Fixed In Version| |sssd-2.8.0-2.fc38 Status|MODIFIED |CLOSED Last Closed| |2022-10-24 11:28:20
https://bugzilla.redhat.com/show_bug.cgi?id=2133437
--- Comment #7 from Fedora Update System updates@fedoraproject.org --- FEDORA-2022-34184a1bbe has been pushed to the Fedora 37 testing repository. Soon you'll be able to install the update with the following command: `sudo dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2022-34184a1bbe` You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2022-34184a1bbe
See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates.
https://bugzilla.redhat.com/show_bug.cgi?id=2133437
--- Comment #8 from Fedora Update System updates@fedoraproject.org --- FEDORA-2022-34184a1bbe has been pushed to the Fedora 37 stable repository. If problem still persists, please make note of it in this bug report.
sssd-maintainers@lists.fedoraproject.org
-
bugzilla@redhat.com