ipa-client-install fails on restarting non-existing chrony.service
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
freeipa (Debian) |
Fix Released
|
Unknown
|
|||
freeipa (Ubuntu) |
Invalid
|
Undecided
|
Unassigned |
Bug Description
DistroRelease: Ubuntu 21.10
Package: freeipa-client 4.8.6-1ubuntu6
This is a bug that just doesn't want to die -- the package *really* should grow an autopkgtest that checks if a basic ipa-client-install actually works. It's very similar to bug 1890786 except that it now fails on "chrony.service", not "chronyd.service":
# ipa-client-install --domain cockpit.lan --realm COCKPIT.LAN --principal admin -W
This program will set up FreeIPA client.
Version 4.8.6
WARNING: conflicting time&date synchronization service 'ntp' will be disabled in favor of chronyd
Discovery was successful!
Do you want to configure chrony with NTP server or pool address? [no]:
Client hostname: x0.cockpit.lan
Realm: COCKPIT.LAN
DNS Domain: cockpit.lan
IPA Server: f0.cockpit.lan
BaseDN: dc=cockpit,dc=lan
Continue to configure the system with these values? [no]: yes
Synchronizing time
No SRV records of NTP servers found and no NTP server or pool address was provided.
Using default chrony configuration.
CalledProcessEr
The ipa-client-install command failed. See /var/log/
This also happens if I say "yes" to the NTP question.
Now, the chrony package is indeed rather weird/broken:
| root@x0:~# find /etc/systemd -name '*chrony*' | xargs ls -l
| lrwxrwxrwx 1 root root 9 Mar 24 05:54 /etc/systemd/
| lrwxrwxrwx 1 root root 34 Mar 23 04:31 /etc/systemd/
| lrwxrwxrwx 1 root root 34 Mar 23 04:31 /etc/systemd/
| # systemctl status chrony chronyd
| Warning: The unit file, source configuration file or drop-ins of chronyd.service changed on disk. Run 'systemctl daemon-reload' to relo>
| ○ chrony.service
| Loaded: masked (Reason: Unit chrony.service is masked.)
| Active: inactive (dead)
|
| ○ chronyd.service
| Loaded: error (Reason: Unit chronyd.service failed to load properly, please adjust/correct and reload service manager: File exists)
| Active: inactive (dead)
Again, this is unconfigured and out of the box -- the idea is that FreeIPA
sets up everything and configures NTP/chrony/etc. to listen to the FreeIPA
server.
Purging chrony doesn't really help, though:
| dpkg -P chrony
| # no '*chrony*' files in /etc any more
Exactly the same failure, and it still tries to configure chrony even though
it's not there any more:
| WARNING: conflicting time&date synchronization service 'ntp' will be disabled in favor of chronyd
|
| Discovery was successful!
| Do you want to configure chrony with NTP server or pool address? [no]: yes
| Enter NTP source server addresses separated by comma, or press Enter to skip:
| Enter a NTP source pool address, or press Enter to skip:
| Client hostname: x0.cockpit.lan
| Realm: COCKPIT.LAN
| DNS Domain: cockpit.lan
| IPA Server: f0.cockpit.lan
| BaseDN: dc=cockpit,dc=lan
|
| Continue to configure the system with these values? [no]: yes
| Synchronizing time
| No SRV records of NTP servers found and no NTP server or pool address was provided.
| Using default chrony configuration.
| CalledProcessEr
+not found.\n')
| The ipa-client-install command failed. See /var/log/
Changed in freeipa (Debian): | |
status: | Unknown → New |
Changed in freeipa (Debian): | |
status: | New → Fix Released |
Hi, chrony.service is masked for some reason? And I can't find chronyd.service file shipped by any package, so dunno why systemctl thinks it's available.
There is code to disable chrony in a particular case during uninstall, but everything should work fine if you have a clean install.