Ticket was cloned from Red Hat Bugzilla (product Fedora): Bug 1677027
FreeIPA server deployment fails in current Rawhide (Fedora-Rawhide-20190213.n.0) due to a 'Permission denied' error during pki-tomcatd deployment:
2019-02-13T12:40:33Z DEBUG Configuring certificate server (pki-tomcatd). Estimated time: 3 minutes 2019-02-13T12:40:33Z DEBUG [1/28]: configuring certificate server instance 2019-02-13T12:40:33Z DEBUG Traceback (most recent call last): File "/usr/lib/python3.7/site-packages/ipaserver/install/service.py", line 605, in start_creation run_step(full_msg, method) File "/usr/lib/python3.7/site-packages/ipaserver/install/service.py", line 591, in run_step method() File "/usr/lib/python3.7/site-packages/ipaserver/install/cainstance.py", line 665, in __spawn_instance with open(cfg_file, "w") as f: PermissionError: [Errno 13] Permission denied: '/tmp/tmp7kyeiep5'
The following reproducer exposes the issue on rawhide:
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18
#!/usr/bin/python3 import tempfile import os import pwd if __name__ == "__main__": (cfg_fd, cfg_file) = tempfile.mkstemp() os.close(cfg_fd) pent = pwd.getpwnam("pkiuser") os.chown(cfg_file, pent.pw_uid, pent.pw_gid) try: with open(cfg_file, "w") as f: print ("file opened") except Exception as e: print ("failure") # os.remove(cfg_file)
as it works in f29 but not on rawhide due to a system change discussed at https://www.spinics.net/lists/fedora-devel/msg252452.html
Metadata Update from @fcami: - Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=1677027
Metadata Update from @fcami: - Issue assigned to fcami
Metadata Update from @fcami: - Custom field on_review adjusted to https://github.com/freeipa/freeipa/pull/2843
master:
ipa-4-7:
Metadata Update from @frenaud: - Issue close_status updated to: fixed - Issue status updated to: Closed (was: Open)
Metadata Update from @frenaud: - Issue set to the milestone: FreeIPA 4.7.3
Log in to comment on this ticket.