Tedious indeed. Here is the list of users with different uid/gid between xcat
server and my stateless image:
# join -j 1 <(awk -F: '{print $1" "$3":"$4}'
/install/image/netboot/cpu/netboot-cpu-centos8.1/img/rootimg/etc/passwd|sort)
<(awk -F: '{print $1" "$3":"$4}'
/etc/passwd | sort) | column -t | awk '{ if ($2!=$3) { print $0} }'
chrony 994:990 995:992
pcp 997:994 400:399
polkitd 998:995 998:996
sssd 995:991 996:993
unbound 996:993 997:995
I need to think about the best way to handle this. I can't say if there is a
solution on the xcat side though, aside of
not using yum --installroot and run yum in the chroot context ?
Jean-Baptiste
On 7/14/20 1:15 PM, Jean-Baptiste Denis wrote:
> Details here:
>
> https://bugzilla.redhat.com/show_bug.cgi?id=1718146
> https://github.com/rpm-software-management/rpm/issues/882
>
> I was not aware of this behavior, but it makes sense.
>
> The only viable solution seems to remove all the xcat pkglist packages that
> are creating user and directories during
> installation. That's doable, but it's quite tedious.
>
> Jean-Baptiste
>
> On 7/14/20 1:01 PM, Jean-Baptiste Denis wrote:
>> In fact, I can reproduce the problem only using yum:
>>
>> $ yum --installroot /tmp/chronytest install chrony
>>
>> The resulting /tmp/chronytest/var/lib/chrony has the uid/gid of the chrony
>> user of /etc/passwd, not
>> /tmp/chronytest/etc/passwd.
>>
>> Jean-Baptiste
>>
>> On 7/14/20 12:41 PM, Jean-Baptiste Denis wrote:
>>> Hello,
>>>
>>> I've got a problem regarding some uid inside a stateless image.
>>>
>>> I've got my xcat server with chrony installed:
>>>
>>> $ grep chrony /etc/passwd
>>> chrony:x:995:992::/var/lib/chrony:/sbin/nologin
>>>
>>> The chrony user has uid 995 and gid 992 on the xcat server.
>>>
>>> Inside the stateless image, just after the genimage (chrony is installed
>>> using a pkglist), the chrony user has uid 994
>>> and gid 990:
>>>
>>> $ grep chrony
>>> /install/image/netboot/cpu/netboot-cpu-centos8.1/img/rootimg/etc/passwd
>>> chrony:x:994:990::/var/lib/chrony:/sbin/nologin
>>>
>>> The problem is that the chrony package installation is creating a
>>> /var/lib/chrony directory in the rootimg directory
>>> using the chrony user from the xcat host and not the one from the image:
>>>
>>> $ ls -nd
>>> /install/image/netboot/cpu/netboot-cpu-centos8.1/img/rootimg/var/lib/chrony/
>>> drwxr-xr-x 2 995 992 6 Nov 19 2019
>>> /install/image/netboot/cpu/netboot-cpu-centos8.1/img/rootimg/var/lib/chrony/
>>>
>>> It should be 994:990.
>>>
>>> This is problematic, because when I boot on the image, the /var/lib/chrony
>>> directory owner is 'sssd' and group is
>>> 'systemd-coredump'. I've only spotted this specific problem, but it could
>>> potentially concerns other users/groups. I'd
>>> rather not just 'fixing' the owner/group of this directory. One solution
>>> could be to remove all packages that create
>>> users from the pkglist and install them after directory in the chroot.
>>>
>>> It seems to me quite difficult to synchronize *system* user/group on the
>>> xcat server and within the images. It basically
>>> depends on the package order installation.
>>>
>>> So I was wondering if I was doing something wrong here ? Maybe I missed
>>> something.
>>>
>>> Thank you,
>>>
>>> Jean-Baptiste
>>>
>>>
>>> _______________________________________________
>>> xCAT-user mailing list
>>> [email protected]
>>> https://lists.sourceforge.net/lists/listinfo/xcat-user
>>>
>>
>>
>>
>> _______________________________________________
>> xCAT-user mailing list
>> [email protected]
>> https://lists.sourceforge.net/lists/listinfo/xcat-user
>>
>
_______________________________________________
xCAT-user mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/xcat-user
