Issue #3704: ipactl command returns traceback - freeipa

freeipa

#3704 ipactl command returns traceback

Closed: Fixed None Opened 10 years ago by lroot.

Steps
1. local Fedora 18 VM was suspended -> started it up
2. kinit admin on IPA Server (ok)
3. kinit admin on other enrolled machines -> got "kinit: Cannot contact any KDC for realm 'EXAMPLE.COM' while getting initial credentials"
4. ipactl restart on IPA Server (got error below)
5. ipactl start on IPA Server (ok)
6. kinit admin everywhere (ok)

System:
Fedora 18, IPA server & clients: 3.1.4-1.fc18

[root@ipaserver ~]# ipactl restart
Failed to read data from Directory Service: Failed to get list of services to probe status:
Directory Server is stopped
Shutting down
ipa: INFO:   File "/usr/lib/python2.7/site-packages/ipaserver/install/installutils.py", line 619, in run_script
    return_value = main_function()

  File "/sbin/ipactl", line 494, in main
    ipa_restart(options)

  File "/sbin/ipactl", line 319, in ipa_restart
    raise IpactlError(rval=e.rval)

ipa: INFO: The ipactl command failed, exception: IpactlError:

From /var/log/messages L

Jun 10 09:43:35 localhost ipactl[1284]: Failed to start pki-tomcatd Service
Jun 10 09:43:35 localhost ipactl[1284]: Shutting down
Jun 10 09:43:35 localhost systemd[1]: Stopping Kerberos 5 KDC...
Jun 10 09:43:35 localhost systemd[1]: Stopped Kerberos 5 KDC.
Jun 10 09:43:35 localhost systemd[1]: Stopping Kerberos 5 Password-changing and Administration...
Jun 10 09:43:35 localhost systemd[1]: kadmin.service: main process exited, code=exited, status=2/INVALIDARGUMENT
Jun 10 09:43:35 localhost systemd[1]: Stopped Kerberos 5 Password-changing and Administration.
Jun 10 09:43:35 localhost systemd[1]: Unit kadmin.service entered failed state
Jun 10 09:43:35 localhost systemd[1]: Stopping Berkeley Internet Name Domain (DNS)...
Jun 10 09:43:35 localhost named[3885]: received control channel command 'stop'
Jun 10 09:43:35 localhost named[3885]: shutting down: flushing changes
Jun 10 09:43:35 localhost named[3885]: stopping command channel on 127.0.0.1#953
Jun 10 09:43:35 localhost named[3885]: stopping command channel on ::1#953
Jun 10 09:43:35 localhost named[3885]: no longer listening on ::#53
Jun 10 09:43:35 localhost named[3885]: no longer listening on 127.0.0.1#53
Jun 10 09:43:35 localhost named[3885]: no longer listening on 10.0.2.15#53
Jun 10 09:43:35 localhost named[3885]: no longer listening on 192.168.10.15#53
Jun 10 09:43:35 localhost named[3885]: exiting
Jun 10 09:43:35 localhost systemd[1]: Stopped Berkeley Internet Name Domain (DNS).
Jun 10 09:43:35 localhost systemd[1]: Stopping IPA memcached daemon, increases IPA server performance...
Jun 10 09:43:35 localhost systemd[1]: Stopped IPA memcached daemon, increases IPA server performance.
Jun 10 09:43:35 localhost systemd[1]: Stopping The Apache HTTP Server...
Jun 10 09:43:36 localhost systemd[1]: Stopped The Apache HTTP Server.
Jun 10 09:43:36 localhost systemd[1]: Stopping PKI Tomcat Server.
Jun 10 09:43:36 localhost systemd[1]: Stopped target PKI Tomcat Server.
Jun 10 09:43:36 localhost systemd[1]: Stopping 389 Directory Server EXAMPLE-COM....
Jun 10 09:43:38 localhost systemd[1]: Stopped 389 Directory Server EXAMPLE-COM..
Jun 10 09:43:38 localhost systemd[1]: Stopping 389 Directory Server.
Jun 10 09:43:38 localhost systemd[1]: Stopped target 389 Directory Server.
Jun 10 09:43:38 localhost ipactl[1284]: ipa: INFO:   File "/usr/lib/python2.7/site-packages/ipaserver/install/installutils.py", line 619, in run_script
Jun 10 09:43:38 localhost ipactl[1284]: return_value = main_function()
Jun 10 09:43:38 localhost ipactl[1284]: File "/usr/sbin/ipactl", line 490, in main
Jun 10 09:43:38 localhost ipactl[1284]: ipa_start(options)
Jun 10 09:43:38 localhost ipactl[1284]: File "/usr/sbin/ipactl", line 261, in ipa_start
Jun 10 09:43:38 localhost ipactl[1284]: raise IpactlError("Aborting ipactl")
Jun 10 09:43:38 localhost ipactl[1284]: ipa: INFO: The ipactl command failed, exception: IpactlError: Aborting ipactl
Jun 10 09:43:38 localhost ipactl[1284]: Aborting ipactl
Jun 10 09:43:38 localhost ipactl[1284]: Starting Directory Service
Jun 10 09:43:38 localhost ipactl[1284]: Starting krb5kdc Service
Jun 10 09:43:38 localhost ipactl[1284]: Starting kadmin Service
Jun 10 09:43:38 localhost ipactl[1284]: Starting named Service
Jun 10 09:43:38 localhost ipactl[1284]: Starting ipa_memcached Service
Jun 10 09:43:38 localhost ipactl[1284]: Starting httpd Service
Jun 10 09:43:38 localhost ipactl[1284]: Starting pki-tomcatd Service
Jun 10 09:43:38 localhost systemd[1]: ipa.service: main process exited, code=exited, status=1/FAILURE
Jun 10 09:43:38 localhost systemd[1]: Failed to start Identity, Policy, Audit.
Jun 10 09:43:38 localhost systemd[1]: Unit ipa.service entered failed state
Jun 10 09:43:38 localhost systemd[1]: Starting Multi-User.
Jun 10 09:43:38 localhost systemd[1]: Reached target Multi-User.
Jun 10 09:43:38 localhost systemd[1]: Starting Update UTMP about System Runlevel Changes...
Jun 10 09:43:38 localhost systemd[1]: Starting Stop Read-Ahead Data Collection 10s After Completed Startup.
Jun 10 09:43:38 localhost systemd[1]: Started Stop Read-Ahead Data Collection 10s After Completed Startup.
Jun 10 09:43:38 localhost systemd[1]: Started Update UTMP about System Runlevel Changes.
Jun 10 09:43:38 localhost systemd[1]: Startup finished in 1s 136ms 981us (kernel) + 3s 115ms 744us (initrd) + 3min 18s 961ms 757us (userspace) = 3min 23s 214ms 482us.

akrivoka commented 10 years ago

I can reproduce this also on F19 with current master. The problem occurs when trying to ipactl restart with dirsrv instance stopped. I also noticed that when the dirsrv is stopped, ipactl status incorrectly states it is running:

[root@vm-090 ~]# service dirsrv@IDM-LAB-BOS-REDHAT-COM stop
Redirecting to /bin/systemctl stop  dirsrv@IDM-LAB-BOS-REDHAT-COM.service
[root@vm-090 ~]# service dirsrv@IDM-LAB-BOS-REDHAT-COM status
Redirecting to /bin/systemctl status  dirsrv@IDM-LAB-BOS-REDHAT-COM.service
dirsrv@IDM-LAB-BOS-REDHAT-COM.service - 389 Directory Server IDM-LAB-BOS-REDHAT-COM.
   Loaded: loaded (/lib/systemd/system/dirsrv@.service; enabled)
   Active: inactive (dead) since Thu 2013-06-13 11:32:59 EDT; 6min ago
  Process: 32112 ExecStopPost=/bin/rm -f /var/run/dirsrv/slapd-%i.pid (code=exited, status=0/SUCCESS)
  Process: 31651 ExecStart=/usr/sbin/ns-slapd -D /etc/dirsrv/slapd-%i -i /var/run/dirsrv/slapd-%i.pid -w /var/run/dirsrv/slapd-%i.startpid (code=exited, status=0/SUCCESS)
 Main PID: 31653 (code=exited, status=0/SUCCESS)
   CGroup: name=systemd:/system/dirsrv@.service/dirsrv@IDM-LAB-BOS-REDHAT-COM.service

Jun 13 11:32:12 vm-090.idm.lab.bos.redhat.com ns-slapd[31653]: GSSAPI server step 3
Jun 13 11:32:40 vm-090.idm.lab.bos.redhat.com ns-slapd[31653]: GSSAPI server step 1
Jun 13 11:32:40 vm-090.idm.lab.bos.redhat.com ns-slapd[31653]: GSSAPI server step 2
Jun 13 11:32:40 vm-090.idm.lab.bos.redhat.com ns-slapd[31653]: GSSAPI server step 3
Jun 13 11:32:40 vm-090.idm.lab.bos.redhat.com ns-slapd[31653]: GSSAPI server step 1
Jun 13 11:32:40 vm-090.idm.lab.bos.redhat.com ns-slapd[31653]: GSSAPI server step 2
Jun 13 11:32:40 vm-090.idm.lab.bos.redhat.com ns-slapd[31653]: GSSAPI server step 3
Jun 13 11:32:59 vm-090.idm.lab.bos.redhat.com systemd[1]: Stopping 389 Directory Server IDM-LAB-BOS.....
Jun 13 11:32:59 vm-090.idm.lab.bos.redhat.com systemd[1]: Stopped 389 Directory Server IDM-LAB-BOS-.....
Jun 13 11:39:47 vm-090.idm.lab.bos.redhat.com systemd[1]: Stopped 389 Directory Server IDM-LAB-BOS-.....
[root@vm-090 ~]# ipactl status
Directory Service: RUNNING
krb5kdc Service: RUNNING
kadmin Service: RUNNING
named Service: RUNNING
ipa_memcached Service: RUNNING
httpd Service: RUNNING
pki-tomcatd Service: RUNNING
smb Service: RUNNING
winbind Service: RUNNING
ipa-otpd Service: RUNNING
ipa: INFO: The ipactl command was successful
[root@vm-090 ~]# ipactl restart
Failed to read data from Directory Service: Unknown error when retrieving list of services from LDAP: [Errno 111] Connection refused
Shutting down
ipa: INFO:   File "/usr/lib/python2.7/site-packages/ipaserver/install/installutils.py", line 614, in run_script
    return_value = main_function()

  File "/sbin/ipactl", line 480, in main
    ipa_restart(options)

  File "/sbin/ipactl", line 305, in ipa_restart
    raise IpactlError(rval=e.rval)

ipa: INFO: The ipactl command failed, exception: IpactlError:

pviktori commented 10 years ago

ipa-3-2: 06074b0 [[BR]]
master: 2775dec [[BR]]

Metadata Update from @lroot:
- Issue assigned to akrivoka
- Issue set to the milestone: FreeIPA 3.2.x - 2013/06 (bug fixing)

7 years ago

Metadata

Assignee

akrivoka

Tags

None

Blocking

None

Depending on

None

Priority

normal

Milestone

FreeIPA 3.2.x - 2013/06 (bug fixing)

None

affects_doc

None

source

None

knownissue

None

type

defect

blockedby

None

test_case

None

component

IPA

blocking

None

on_review

keywords

None

test_coverage

None

reviewer

None

external_tracker

None

rhbz

tester

None

changelog

None

design

None

freeipa

Source Code

#3704 ipactl command returns traceback Closed: Fixed None Opened 10 years ago by lroot.

Metadata

#3704 ipactl command returns traceback

Closed: Fixed None Opened 10 years ago by lroot.