Add keystone to /etc/group and /etc/passwd
Add keystone to group, passwd to prevent issue on data-migration because keystone doesn't have permission to open the /var/log/keystone/keystone.log and the content of /opt/platform/keystone/fernet-keys/ as well on upgrade between 22.06 centos and 22.12 debian. The fernet-keys content files is created with an uid and gid specific (42424), without this change the keystone will not be the owner of the file, with that causing the permission error. So adding the keystone to these files the user/group will be keystone keystone instead of 42424 42424. We want to get the same behavior as we do in CentOS, in [1] [1]: https://opendev.org/starlingx/integ/src/branch/master/base/setup/centos/patches/0001-Change-group-passwd-and-uidgid.patch Test Plan: PASS: Data-migration-complete CentOS -> Debian upgrade PASS: Debian building test PASS: Debian AIO-SX unlocked PASS: Debian AIO-DX unlocked Story: 2009303 Task: 46093 Signed-off-by: Luis Eduardo Bonatti <LuizEduardo.Bonatti@windriver.com> Change-Id: Id9bfe914cd80552cb49029c3fdca77886c432a3e
This commit is contained in:
parent
df777c46ba
commit
db0fb615dc
@ -1,4 +1,4 @@
|
|||||||
From 7deb684d4cd0d9d1f176941c0e0482f9668119d7 Mon Sep 17 00:00:00 2001
|
From 78ad07ad266124cb5dad021e7bdc9d7ec5edc8f8 Mon Sep 17 00:00:00 2001
|
||||||
From: Al Bailey <Al.Bailey@windriver.com>
|
From: Al Bailey <Al.Bailey@windriver.com>
|
||||||
Date: Thu, 24 Oct 2019 11:53:01 -0500
|
Date: Thu, 24 Oct 2019 11:53:01 -0500
|
||||||
Subject: [PATCH 1/2] Change group,passwd
|
Subject: [PATCH 1/2] Change group,passwd
|
||||||
@ -13,13 +13,14 @@ Signed-off-by: Al Bailey <Al.Bailey@windriver.com>
|
|||||||
Signed-off-by: Yue Tao <yue.tao@windriver.com>
|
Signed-off-by: Yue Tao <yue.tao@windriver.com>
|
||||||
Signed-off-by: Charles Short <charles.short@windriver.com>
|
Signed-off-by: Charles Short <charles.short@windriver.com>
|
||||||
Signed-off-by: Dan Voiculeasa <dan.voiculeasa@windriver.com>
|
Signed-off-by: Dan Voiculeasa <dan.voiculeasa@windriver.com>
|
||||||
|
Signed-off-by: Luis Eduardo Bonatti <LuizEduardo.Bonatti@windriver.com>
|
||||||
---
|
---
|
||||||
group.master | 16 +++++++++-------
|
group.master | 17 ++++++++++-------
|
||||||
passwd.master | 13 ++++++++-----
|
passwd.master | 14 +++++++++-----
|
||||||
2 files changed, 17 insertions(+), 12 deletions(-)
|
2 files changed, 19 insertions(+), 12 deletions(-)
|
||||||
|
|
||||||
diff --git a/group.master b/group.master
|
diff --git a/group.master b/group.master
|
||||||
index ad1dd2d..69f4fff 100644
|
index ad1dd2d..5ab0d52 100644
|
||||||
--- a/group.master
|
--- a/group.master
|
||||||
+++ b/group.master
|
+++ b/group.master
|
||||||
@@ -1,15 +1,11 @@
|
@@ -1,15 +1,11 @@
|
||||||
@ -46,7 +47,7 @@ index ad1dd2d..69f4fff 100644
|
|||||||
dip:*:30:
|
dip:*:30:
|
||||||
www-data:*:33:
|
www-data:*:33:
|
||||||
backup:*:34:
|
backup:*:34:
|
||||||
@@ -30,10 +25,17 @@ src:*:40:
|
@@ -30,10 +25,18 @@ src:*:40:
|
||||||
gnats:*:41:
|
gnats:*:41:
|
||||||
shadow:*:42:
|
shadow:*:42:
|
||||||
utmp:*:43:
|
utmp:*:43:
|
||||||
@ -66,8 +67,9 @@ index ad1dd2d..69f4fff 100644
|
|||||||
+libvirt:x:991:nova
|
+libvirt:x:991:nova
|
||||||
+ironic:x:1874:ironic
|
+ironic:x:1874:ironic
|
||||||
+www:x:1877:www
|
+www:x:1877:www
|
||||||
|
+keystone:x:42424:keystone
|
||||||
diff --git a/passwd.master b/passwd.master
|
diff --git a/passwd.master b/passwd.master
|
||||||
index f1e69a4..cea9d1b 100644
|
index f1e69a4..c3a3ebc 100644
|
||||||
--- a/passwd.master
|
--- a/passwd.master
|
||||||
+++ b/passwd.master
|
+++ b/passwd.master
|
||||||
@@ -1,12 +1,7 @@
|
@@ -1,12 +1,7 @@
|
||||||
@ -83,7 +85,7 @@ index f1e69a4..cea9d1b 100644
|
|||||||
news:*:9:9:news:/var/spool/news:/usr/sbin/nologin
|
news:*:9:9:news:/var/spool/news:/usr/sbin/nologin
|
||||||
uucp:*:10:10:uucp:/var/spool/uucp:/usr/sbin/nologin
|
uucp:*:10:10:uucp:/var/spool/uucp:/usr/sbin/nologin
|
||||||
proxy:*:13:13:proxy:/bin:/usr/sbin/nologin
|
proxy:*:13:13:proxy:/bin:/usr/sbin/nologin
|
||||||
@@ -16,3 +11,11 @@ list:*:38:38:Mailing List Manager:/var/list:/usr/sbin/nologin
|
@@ -16,3 +11,12 @@ list:*:38:38:Mailing List Manager:/var/list:/usr/sbin/nologin
|
||||||
irc:*:39:39:ircd:/run/ircd:/usr/sbin/nologin
|
irc:*:39:39:ircd:/run/ircd:/usr/sbin/nologin
|
||||||
gnats:*:41:41:Gnats Bug-Reporting System (admin):/var/lib/gnats:/usr/sbin/nologin
|
gnats:*:41:41:Gnats Bug-Reporting System (admin):/var/lib/gnats:/usr/sbin/nologin
|
||||||
nobody:*:65534:65534:nobody:/nonexistent:/usr/sbin/nologin
|
nobody:*:65534:65534:nobody:/nonexistent:/usr/sbin/nologin
|
||||||
@ -95,6 +97,7 @@ index f1e69a4..cea9d1b 100644
|
|||||||
+nova:x:994:162:OpenStack Nova Daemons:/var/lib/nova:/sbin/nologin
|
+nova:x:994:162:OpenStack Nova Daemons:/var/lib/nova:/sbin/nologin
|
||||||
+ironic:x:1874:1874:OpenStack Ironic Daemons:/var/lib/ironic:/sbin/nologin
|
+ironic:x:1874:1874:OpenStack Ironic Daemons:/var/lib/ironic:/sbin/nologin
|
||||||
+www:x:1877:1877:www:/home/www:/sbin/nologin
|
+www:x:1877:1877:www:/home/www:/sbin/nologin
|
||||||
|
+keystone:x:42424:42424:OpenStack Keystone Daemons:/var/lib/keystone:/sbin/nologin
|
||||||
--
|
--
|
||||||
2.30.0
|
2.17.1
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user