[Bug 1681470] Re: [ocata] libvirt-daemon-system package post scriptlet of Ubuntu-Cloud Occata for Xenial breaks /etc/group
ChristianEhrhardt
1681470 at bugs.launchpad.net
Tue Apr 18 11:23:11 UTC 2017
Hi Carsten,
thanks for the report.
The reason behind this was to get Debian and Ubuntu versions of Libvirt closer together from what they derived over the years.
On of these changes was the naming of the group that owns directories/files and so on.
To allow to have the new name on any new installation as well as upgrades, but at the same time do not mess with old scripts that might insist on the old naming this was created as an "alias".
Not the most official source, but as in [1].
In some sense I'd doubt that groupadd would have a "--non-unique" option
if it would be a generally invalid configuration. And it did support so
since "pre-history" in the sense that [2] only goes back to 2007 and
this was already supported before - I could not find older history when
I was looking for a better link to prove that this is ok - but given
that this is supported such a long time as well as fixed every now and
then (instead of dropped) I think that is an invalid bug for now.
But I'd still let Serge comment on this as well as he was part of the
development and discussions back then - so I subscribed him here.
[1]: https://superuser.com/questions/1072428/group-alias-in-linux
[2]: https://pkg-shadow.alioth.debian.org/
** Changed in: libvirt (Ubuntu)
Status: New => Invalid
--
You received this bug notification because you are a member of Ubuntu
OpenStack, which is subscribed to Ubuntu Cloud Archive.
https://bugs.launchpad.net/bugs/1681470
Title:
[ocata] libvirt-daemon-system package post scriptlet of Ubuntu-Cloud
Occata for Xenial breaks /etc/group
Status in Ubuntu Cloud Archive:
New
Status in libvirt package in Ubuntu:
Invalid
Bug description:
== Comment: #0 - Carsten Jacobi - 2017-04-10 05:35:09 ==
---Problem Description---
Post installation scriptlet of package libvirt-daemon-system renders /etc/group database inconsistent, the identical group id is assigned to two different names
Machine Type = IBM zSeries 2827 (EC12)
---Steps to Reproduce---
The addressed package is part of the Ubuntu-Cloud update repository for Occata on xenial:
APT-Sources: http://ubuntu-cloud.archive.canonical.com/ubuntu xenial-
updates/ocata/main s390x Packages
In case version 1.3.3 of libvirt-daemon-system was installed on the
system and you install version 2.5.0 from the Occata-Repository over
it, the Post-Installation scriptlet will create a setup like this in
/etc/group
root at compzfw1:~# getent group | grep :121:
libvirtd:x:121:
libvirt:x:121:ubuntu,nova
This is not a valid configuration, for example IBM internal tools detect those setups and mark the corresponding server "non-compliant".
The post-scriptlet in question looks like this:
[...]
add_users_groups()
{
if ! getent group libvirt >/dev/null; then
if getent group libvirtd >/dev/null; then
gid=`getent group libvirtd | getent group libvirtd | cut -d: -f3`
groupadd --system --non-unique --gid "$gid" libvirt
[...]
If a new group with an existing GID is added, the group which previously was assigned to that GID must be consequently remove beforehand!
---uname output---
Linux compzfw1 4.8.0-45-generic #48~16.04.1-Ubuntu SMP Fri Mar 24 12:52:18 UTC 2017 s390x s390x s390x GNU/Linux
Userspace rpm: libvirt-daemon-system_2.5.0-3ubuntu5~cloud0
To manage notifications about this bug go to:
https://bugs.launchpad.net/cloud-archive/+bug/1681470/+subscriptions
More information about the Ubuntu-openstack-bugs
mailing list