Bug 2123835
| Summary: | System build based on "PXELess Discovery" will always fail if the "Installation token lifetime" has been disabled in Satellite 6.12 | ||
|---|---|---|---|
| Product: | Red Hat Satellite | Reporter: | Sayan Das <saydas> |
| Component: | Discovery Plugin | Assignee: | Leos Stejskal <lstejska> |
| Status: | CLOSED ERRATA | QA Contact: | sganar |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | 6.12.0 | CC: | gtalreja, lstejska, lzap, rabajaj, sganar, shwsingh, zhunting |
| Target Milestone: | 6.13.0 | Keywords: | Triaged |
| Target Release: | Unused | ||
| Hardware: | All | ||
| OS: | All | ||
| Whiteboard: | |||
| Fixed In Version: | foreman-3.5.1.5-1 | Doc Type: | If docs needed, set a value |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2023-05-03 13:21:46 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 2161304 | ||
| Bug Blocks: | |||
|
Description
Sayan Das
2022-09-02 18:23:12 UTC
I forgot to add one data: If token timeout is enabled i.e. set to 360, Then following is the kexec args: Sep 02 16:43:22 fdi sudo[1595]: foreman-proxy : TTY=unknown ; PWD=/ ; USER=root ; COMMAND=/usr/sbin/kexec --debug --force --append=inst.ks=http://sat612.example.com/unattended/provision?token=43f4ffbc-dd7f-4310-ae1d-112effcbbaa8&static=yes inst.ks.sendmac ip=192.168.239.100::192.168.239.1:255.255.255.0:::none nameserver=192.168.239.2 ksdevice=bootif BOOTIF=01-00-50-56-b4-ca-49 nomodeset nokaslr nomodeset --initrd=/tmp/initrd.img /tmp/vmlinuz The KS url is: http://sat612.example.com/unattended/provision?token=43f4ffbc-dd7f-4310-ae1d-112effcbbaa8&static=yes and this URL works because the token is there and The "&static=yes" part is completely ignored. And hence my second recommendation seems more suitable i.e. remove the "static=yes" part entirely unless there is any other reason to keep it. Created redmine issue https://projects.theforeman.org/issues/36019 from this bug Moving this bug to POST for triage into Satellite since the upstream issue https://projects.theforeman.org/issues/36019 has been resolved. Verified.
Tested on Satellite 6.13.0 Snap 12.0
Steps followed:
1. Goto Settings and Disable the "Installation token lifetime" from Satellite settings i.e. set it to 0
2. Set it up for "PXELess discovery" based deployments
3. Discover a system using foreman-discovery-image iso
4. Once discovered submit the "discovered host" for build.
5. Observe the console of the host
6. Come back to Satellite UI --> Hosts --> All Hosts --> Open the Host entry --> go to Templates tab --> Review the "Discovery Kexec" template and look at the ks= url
Observation:
Discovery Kexec template :
{
"kernel": "http://sat613.example.com/pulp/content/IdkGUyai/Library/LsiGkBcmAZlV/content/dist/rhel8/8.7/x86_64/baseos/kickstart//images/pxeboot/vmlinuz",
"initram": "http://sat613.example.com/pulp/content/IdkGUyai/Library/LsiGkBcmAZlV/content/dist/rhel8/8.7/x86_64/baseos/kickstart//images/pxeboot/initrd.img",
"append": "inst.ks=http://sat613.example.com:8000/unattended/provision?static=yes inst.ks.sendmac ip=::::::none nameserver= ksdevice=bootif BOOTIF= nomodeset nokaslr nomodeset",
"extra": []
}
I see `http://sat613.example.com:8000/unattended/provision?static=yes` is a valid URL used to fetch the kickstart file.
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (Important: Satellite 6.13 Release), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHSA-2023:2097 |