Bug 1353831
| Summary: | ipa-server-install fails in container because of hostnamectl set-hostname | ||
|---|---|---|---|
| Product: | Red Hat Enterprise Linux 7 | Reporter: | Jan Pazdziora <jpazdziora> |
| Component: | ipa | Assignee: | IPA Maintainers <ipa-maint> |
| Status: | CLOSED ERRATA | QA Contact: | Kaleem <ksiddiqu> |
| Severity: | unspecified | Docs Contact: | |
| Priority: | unspecified | ||
| Version: | 7.3 | CC: | jcholast, jpazdziora, mbasti, pvoborni, rcritten |
| Target Milestone: | rc | Keywords: | Regression |
| Target Release: | --- | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | |||
| Fixed In Version: | ipa-4.4.0-6.el7 | Doc Type: | If docs needed, set a value |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2016-11-04 05:56:35 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
|
Description
Jan Pazdziora
2016-07-08 06:50:36 UTC
Upstream ticket: https://fedorahosted.org/freeipa/ticket/6071 Fixed upstream master: https://fedorahosted.org/freeipa/changeset/a83523e37ee70a10e49b40f8880c2d0fb3088562 https://fedorahosted.org/freeipa/changeset/80e544e7a98ff22469e9d3a4f7bda2ed234601aa Things work when --hostname option is not passed.
However, when the container is run with
docker run -t --name freeipa-server-container -h ipa.example.test -v /dev/urandom:/dev/random:ro -v /opt/ipa-data-rhel-7.3-nightly:/data -v /sys/fs/cgroup:/sys/fs/cgroup:ro --cap-add=SYS_TIME freeipa-server --hostname ipa.example.test
and even when the --hostname parameter value matches the hostname set in the container by -h, I get
The IPA Master Server will be configured with:
Hostname: ipa.example.test
IP address(es): 172.17.0.2
Domain name: example.test
Realm name: EXAMPLE.TEST
BIND DNS server will be configured to serve IPA domain with:
Forwarders: 10.10.160.1
Forward policy: only
Reverse zone(s): No reverse zone
ipa.ipapython.install.cli.install_tool(Server): ERROR Command '/bin/hostnamectl set-hostname ipa.example.test' returned non-zero exit status 1
ipa.ipapython.install.cli.install_tool(Server): ERROR The ipa-server-install command failed. See /var/log/ipaserver-install.log for more information
with /var/log/ipaserver-install.log showing
2016-09-08T13:21:56Z DEBUG Checking DNS server: 10.10.160.1
2016-09-08T13:21:56Z DEBUG will use DNS forwarders: [CheckedIPAddress('10.10.160.1')]
2016-09-08T13:21:56Z DEBUG Backing up system configuration file '/etc/hostname'
2016-09-08T13:21:56Z DEBUG Saving Index File to '/var/lib/ipa/sysrestore/sysrestore.index'
2016-09-08T13:21:56Z DEBUG Loading StateFile from '/var/lib/ipa/sysrestore/sysrestore.state'
2016-09-08T13:21:56Z DEBUG Saving StateFile to '/var/lib/ipa/sysrestore/sysrestore.state'
2016-09-08T13:21:56Z DEBUG Starting external process
2016-09-08T13:21:56Z DEBUG args=/bin/hostnamectl set-hostname ipa.example.test
2016-09-08T13:22:21Z DEBUG Process finished, return code=1
2016-09-08T13:22:21Z DEBUG stdout=
2016-09-08T13:22:21Z DEBUG stderr=Failed to open /dev/tty: No such device or address
Could not set property: Activation of org.freedesktop.hostname1 timed out
2016-09-08T13:22:21Z DEBUG File "/usr/lib/python2.7/site-packages/ipapython/admintool.py", line 171, in execute
return_value = self.run()
File "/usr/lib/python2.7/site-packages/ipapython/install/cli.py", line 318, in run
cfgr.run()
File "/usr/lib/python2.7/site-packages/ipapython/install/core.py", line 310, in run
self.execute()
File "/usr/lib/python2.7/site-packages/ipapython/install/core.py", line 332, in execute
for nothing in self._executor():
File "/usr/lib/python2.7/site-packages/ipapython/install/core.py", line 372, in __runner
self._handle_exception(exc_info)
File "/usr/lib/python2.7/site-packages/ipapython/install/core.py", line 394, in _handle_exception
six.reraise(*exc_info)
File "/usr/lib/python2.7/site-packages/ipapython/install/core.py", line 362, in __runner
step()
File "/usr/lib/python2.7/site-packages/ipapython/install/core.py", line 359, in <lambda>
step = lambda: next(self.__gen)
File "/usr/lib/python2.7/site-packages/ipapython/install/util.py", line 81, in run_generator_with_yield_from
six.reraise(*exc_info)
File "/usr/lib/python2.7/site-packages/ipapython/install/util.py", line 59, in run_generator_with_yield_from
value = gen.send(prev_value)
File "/usr/lib/python2.7/site-packages/ipapython/install/core.py", line 586, in _configure
next(executor)
File "/usr/lib/python2.7/site-packages/ipapython/install/core.py", line 372, in __runner
self._handle_exception(exc_info)
File "/usr/lib/python2.7/site-packages/ipapython/install/core.py", line 449, in _handle_exception
self.__parent._handle_exception(exc_info)
File "/usr/lib/python2.7/site-packages/ipapython/install/core.py", line 394, in _handle_exception
six.reraise(*exc_info)
File "/usr/lib/python2.7/site-packages/ipapython/install/core.py", line 446, in _handle_exception
super(ComponentBase, self)._handle_exception(exc_info)
File "/usr/lib/python2.7/site-packages/ipapython/install/core.py", line 394, in _handle_exception
six.reraise(*exc_info)
File "/usr/lib/python2.7/site-packages/ipapython/install/core.py", line 362, in __runner
step()
File "/usr/lib/python2.7/site-packages/ipapython/install/core.py", line 359, in <lambda>
step = lambda: next(self.__gen)
File "/usr/lib/python2.7/site-packages/ipapython/install/util.py", line 81, in run_generator_with_yield_from
six.reraise(*exc_info)
File "/usr/lib/python2.7/site-packages/ipapython/install/util.py", line 59, in run_generator_with_yield_from
value = gen.send(prev_value)
File "/usr/lib/python2.7/site-packages/ipapython/install/common.py", line 63, in _install
for nothing in self._installer(self.parent):
File "/usr/lib/python2.7/site-packages/ipaserver/install/server/install.py", line 1357, in main
install(self)
File "/usr/lib/python2.7/site-packages/ipaserver/install/server/install.py", line 267, in decorated
func(installer)
File "/usr/lib/python2.7/site-packages/ipaserver/install/server/install.py", line 711, in install
tasks.set_hostname(host_name)
File "/usr/lib/python2.7/site-packages/ipaplatform/redhat/tasks.py", line 473, in set_hostname
ipautil.run([paths.BIN_HOSTNAMECTL, 'set-hostname', hostname])
File "/usr/lib/python2.7/site-packages/ipapython/ipautil.py", line 494, in run
raise CalledProcessError(p.returncode, arg_string, str(output))
2016-09-08T13:22:21Z DEBUG The ipa-server-install command failed, exception: CalledProcessError: Command '/bin/hostnamectl set-hostname ipa.example.test' returned non-zero exit status 1
2016-09-08T13:22:21Z ERROR Command '/bin/hostnamectl set-hostname ipa.example.test' returned non-zero exit status 1
2016-09-08T13:22:21Z ERROR The ipa-server-install command failed. See /var/log/ipaserver-install.log for more information
According to the fix it is expected. I.e.
* Fix was to stop running hostnamectl every time.
* It is expected that `hostnamectl set-hostname` is run when --hostname option is provided.
But man pages says something different:
--hostname=HOST_NAME
The fully-qualified DNS name of this server. If the hostname does not match system hostname, the system hostname will be updated accordingly to prevent service failures.
I'm not sure if current behavior is a regression to behavior in RHEL 7.2
Man page should be updated, when --hostname option is used installer will always use hostnamectl set-hostname This should be evaluated in the context of workaround needed to be carried in IdM container indefinitely then. Jan what do you mean by the workaround? Is there any reason to use --hostname option in a container? Or do you want a workaround for the case when somebody uses the option, e.g. by accident. (In reply to Petr Vobornik from comment #13) > Jan what do you mean by the workaround? Forcing hostnamectl a symlink to /bin/true to stop it from failing. > Is there any reason to use --hostname option in a container? Or do you want > a workaround for the case when somebody uses the option, e.g. by accident. We need a way to name the container and using --hostname seemed like the best way to do that. So we parse options that are passed and use the --hostname value. We potentially could remove it from the list of options that are later passed to ipa-server-install but we got burned in the past by trying to be too clever and diverging the in-container behaviour from the on-host one, so I'd rather not do that. Users will likely be confused when they use the option and then will not see it set in the logs, for example. I agree that removal of the option in process might confuse users. Why not use separate, container specific option for the container name? For the container name/--hostname issue I've file new bug 1375648. Let's continue with checking the fix described in comment 8 For the man page change, ticket https://fedorahosted.org/freeipa/ticket/6330 was opened. Verified SanityOnly on the basis of #comment16 and ipa-server-install with/without hostname parameter. IPA version: ============ [root@dhcp207-129 ~]# rpm -q ipa-server ipa-server-4.4.0-12.el7.x86_64 [root@dhcp207-129 ~]# Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://rhn.redhat.com/errata/RHBA-2016-2404.html |