Page MenuHomePhabricator
Create Task
Maniphest T156826

Thumbor role breaks /etc/group
Closed, ResolvedPublic
Actions

Description

For some reason provisioning the Thumbor role (on Jessie at least) results in addgroup failing from that point on:

vagrant@mediawiki-vagrant:~$ sudo groupadd snackbar
groupadd: failure while writing changes to /etc/group

It doesn't seem to be caused by any of the other roles the thumbor one requires.

Details

SubjectRepoBranchLines +/-
[WIP] Make Thumbor role upgrade linux kernelmediawiki/vagrantmaster+34 -0
Customize query in gerrit

Related Objects
Search...

Event Timeline

Gilles created this task.Jan 31 2017, 4:50 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptJan 31 2017, 4:50 PM
Gilles added projects: MediaWiki-Vagrant, Performance-Team.Jan 31 2017, 4:51 PM
Gilles triaged this task as Low priority.Feb 1 2017, 8:04 PM
Gilles moved this task from Inbox, needs triage to Backlog: Maintenance, non-prioritized on the Performance-Team board.
Gilles added a subtask: T161610: Apt::pin now causes circular dependency on Swift and Thumbor vagrant roles.Mar 28 2017, 3:21 PM
Gilles closed subtask T161610: Apt::pin now causes circular dependency on Swift and Thumbor vagrant roles as Resolved.Mar 29 2017, 7:12 AM
Gilles added a comment.EditedMar 29 2017, 1:09 PM

I've removed the superfluous creation attempt of the thumbor group and user from the role, which are created by the Debian package, but it hasn't helped.

Gilles added a comment.Mar 29 2017, 1:43 PM

stracing what groupadd does, it seems to be:

  • reading the contents from /etc/group
  • dumping said contents into /etc/group-
  • write new contents into /etc/group+
  • attempt to rename /etc/group+ to /etc/group and fail:
rename("/etc/group+", "/etc/group")     = -1 EBUSY (Device or resource busy)

Indeed, trying to do that manually fails:

vagrant@mediawiki-vagrant:~$ sudo mv /etc/group+ /etc/group
mv: cannot move ‘/etc/group+’ to ‘/etc/group’: Device or resource busy
Gilles added a comment.Mar 29 2017, 1:55 PM

Sigh... found the answer, it's firejail affecting things outside of what it jails on "older" kernels: https://github.com/netblue30/firejail/issues/270

Gilles changed the task status from Open to Stalled.Mar 29 2017, 1:55 PM
Gilles created subtask T161707: Upgrade linux kernel used on Vagrant to 4+.
Gilles moved this task from Backlog: Maintenance, non-prioritized to Blocked (old) on the Performance-Team board.Mar 29 2017, 1:58 PM
gerritbot subscribed.Mar 30 2017, 3:22 PM

Change 345584 had a related patch set uploaded (by Gilles):
[mediawiki/vagrant@master] [WIP] Make Thumbor role upgrade linux kernel

https://gerrit.wikimedia.org/r/345584

gerritbot added a project: Patch-For-Review.Mar 30 2017, 3:22 PM
Krinkle removed a project: Patch-For-Review.Sep 12 2017, 9:45 AM
bd808 closed subtask T161707: Upgrade linux kernel used on Vagrant to 4+ as Resolved.Jan 7 2018, 7:45 PM
gerritbot added a comment.Jan 8 2018, 9:10 AM

Change 345584 abandoned by Gilles:
[WIP] Make Thumbor role upgrade linux kernel

https://gerrit.wikimedia.org/r/345584

Gilles closed this task as Resolved.Jan 8 2018, 9:28 AM

Fixed on the Stretch branch.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL