Bug 1162899
| Summary: | JSS does not provide enough information to troubleshoot issues | ||
|---|---|---|---|
| Product: | [Fedora] Fedora | Reporter: | Endi Sukma Dewata <edewata> |
| Component: | jss | Assignee: | Christina Fu <cfu> |
| Status: | CLOSED EOL | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
| Severity: | unspecified | Docs Contact: | |
| Priority: | unspecified | ||
| Version: | 22 | CC: | cfu, edewata, gsterlin, jdennis, mharmsen, nkinder, rmeggins |
| Target Milestone: | --- | ||
| Target Release: | --- | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2016-07-19 12:23:43 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
|
Description
Endi Sukma Dewata
2014-11-12 00:05:42 UTC
I agree the NSS error code should be available, as well as the NSS error description that matches the error code. For better or worse NSS does not provide an entry point to get the error message, you have to code this yourself and it requires access to 3 different error header files (NSPRerrs.h, SECerrs.h, SLerrs.h) which contain the message strings. python-nss implements this in py_nspr_error.c, I know other applications have done similar things, if you search for use of those header files you'll probably find it. You may also want to look at NSS utility code (which is not exported as a library). Look in cmd/lib/basicutil.c But ... don't think just because you've got an NSS error code and/or message that's it's going to help you :-( NSS is notorious for returning bogus unhelpful errors which are often unrelated to the actual problem. Based on lots of experience I've learned if you actually need to understand what went wrong you're going to have to run the code under the debugger and trace through it I'm sorry to say. :-( It would have been a way better design if NSS internally used more than just an error code, but instead also formatted a dynamic error string with the specific problem. As it stands now you'll get an error code something like INVALID_KEY but you'll have no idea why that key was invalid which could be any of a dozen reasons. Argh!!! Although NSS may not provide specific enough error code, JSS should still return the NSS error code so failures can be investigated without requiring a custom build to provide some additional debugging information. Once this is implemented, NSS-related issues can be investigated more quickly. This bug appears to have been reported against 'rawhide' during the Fedora 22 development cycle. Changing version to '22'. More information and reason for this action is here: https://fedoraproject.org/wiki/Fedora_Program_Management/HouseKeeping/Fedora22 Fedora 22 changed to end-of-life (EOL) status on 2016-07-19. Fedora 22 is no longer maintained, which means that it will not receive any further security or bug fix updates. As a result we are closing this bug. If you can reproduce this bug against a currently maintained version of Fedora please feel free to reopen this bug against that version. If you are unable to reopen this bug, please file a new report against the current release. If you experience problems, please add a comment to this bug. Thank you for reporting this bug and we are sorry it could not be fixed. |