Merge ~sergiodj/ubuntu/+source/sssd:bug1900642-condpathexists-hirsute into ubuntu/+source/sssd:ubuntu/devel
Status: | Merged | ||||
---|---|---|---|---|---|
Approved by: | Sergio Durigan Junior | ||||
Approved revision: | e923697337a03b6e315f842f2e6be162ee349bd5 | ||||
Merged at revision: | e923697337a03b6e315f842f2e6be162ee349bd5 | ||||
Proposed branch: | ~sergiodj/ubuntu/+source/sssd:bug1900642-condpathexists-hirsute | ||||
Merge into: | ubuntu/+source/sssd:ubuntu/devel | ||||
Diff against target: |
80 lines (+47/-1) 4 files modified
debian/changelog (+8/-0) debian/control (+2/-1) debian/patches/condition-path-exists-sssd-conf.patch (+36/-0) debian/patches/series (+1/-0) |
||||
Related bugs: |
|
Reviewer | Review Type | Date Requested | Status |
---|---|---|---|
Lucas Kanashiro (community) | Approve | ||
Canonical Server Core Reviewers | Pending | ||
Review via email: mp+395170@code.launchpad.net |
Description of the change
This is the fix for bug 1900642 on hirsute. I will create another MP (with its corresponding SRU) for groovy as well.
The problem here is that SSSD by default doesn't make any assumptions regarding the user setup and a desired configuration. However, the sssd service requires a valid configuration present at /etc/sssd/sssd.conf in order to successfully start.
Starting from groovy, sssd became a dependency of ubuntu-desktop, which means that it will be installed automatically when the user installs Ubuntu (with a desktop). Because of what I explained above, the user will see a bunch of error messages in the log files (journalctl) during boot time because sssd will fail to start (unless the user has configured Ubuntu to be part of an Active Directory setup, in which case sssd will have been configured during installation time).
In order to avoid these scenarios from happening, we're proposing that sssd.service has a "ConditionPathE
I've rebuilt and installed the new sssd in a pristine system, and verified that the error messages are not present in the logs anymore. The user will still see a bunch of warning messages regarding the socket-activated units:
Dec 09 18:44:29 focal-desktop systemd[1]: sssd-nss.socket: Bound to unit sssd.service, but unit isn't active.
Dec 09 18:44:29 focal-desktop systemd[1]: Dependency failed for SSSD NSS Service responder socket.
Dec 09 18:44:29 focal-desktop systemd[1]: sssd-nss.socket: Job sssd-nss.
Dec 09 18:44:29 focal-desktop systemd[1]: sssd-autofs.socket: Bound to unit sssd.service, but unit isn't active.
Dec 09 18:44:29 focal-desktop systemd[1]: Dependency failed for SSSD AutoFS Service responder socket.
Dec 09 18:44:29 focal-desktop systemd[1]: sssd-autofs.socket: Job sssd-autofs.
...
but these messages are harmless, and Timo Aaltonen (Debian maintainer of the sssd package) has already mentioned that he will get rid of those units soon.
Last, but not least, I submitted a PR to the sssd upstream project proposing this same modification to the sssd.service file:
https:/
There is a PPA with the proposed build here:
https:/
autopkgtest is still happy:
autopkgtest [14:40:25]: @@@@@@@
ldap-user-
ldap-user-
The solution looks good and the packing changes as well. No additions to the SRU bug description.
LGTM, +1.