New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
PR - Issue 50550 - DS installer debug messages leaking to ipa-server-install #3607
Comments
Comment from spichugi (@droideck) at 2019-08-19 12:57:00 rebased onto 449840557709df06bddef3c31a935291340c4102 |
Comment from firstyear (@Firstyear) at 2019-08-20 02:32:29 This should stay as info to ALWAYS indicate clearly that no action is taken on dry run. |
Comment from firstyear (@Firstyear) at 2019-08-20 02:33:01 This doesn't look like a logging change ;) |
Comment from firstyear (@Firstyear) at 2019-08-20 02:33:52 Why are we changing stderr here? That seems incorrect .... |
Comment from firstyear (@Firstyear) at 2019-08-20 02:34:43 This change concerns me because the whole point of this logging was so that in the case of a failure we had the logs in ipa's install log still. So ... why are we removing this? It seems like "clean logs" matters less than "we have all the info needed to solve a problem". |
Comment from spichugi (@droideck) at 2019-08-20 21:32:58 1 new commit added
|
Comment from spichugi (@droideck) at 2019-08-20 21:40:43
Right. I was a bit harsh there... Setting it back.
As I mentioned in the PR/Commit message, it is done because
In case of a failure, we still have logging that is put to a separate file in IPA installation. |
Comment from spichugi (@droideck) at 2019-08-20 21:44:26 2 new commits added
|
Comment from firstyear (@Firstyear) at 2019-08-21 02:14:02 I'm worried about you removing these - these are important to detect and avoid selinux calls on systems without selinux (ie suse :) ). If there is an issue with the log message, just change it to log.warn instead? But this needs to stay. |
Comment from firstyear (@Firstyear) at 2019-08-21 02:14:11 As does this. |
Comment from firstyear (@Firstyear) at 2019-08-21 02:14:43 After these two comments I think it's okay :) but those blocks shouldn't be removed. |
Comment from spichugi (@droideck) at 2019-08-21 10:52:44
As I said previously, we have a check for
|
Comment from mreynolds (@mreynolds389) at 2019-08-21 17:27:30 Let's remove the initial newline from the text string, thanks |
Comment from spichugi (@droideck) at 2019-08-21 19:31:12 1 new commit added
|
Comment from spichugi (@droideck) at 2019-08-21 19:31:54
Fixed |
Comment from mreynolds (@mreynolds389) at 2019-08-30 22:28:38 I also see this seem annoying behavior from systemd every time I create an instance
I originally moved that message to DEVNULL as well but that change was rejected by William I think :-p I personally want to see these messages removed from STDOUT by whatever means possible. :-) Sorry just a side comment that's partially related to this issue |
Comment from firstyear (@Firstyear) at 2019-08-31 03:19:44 Gosh that William kid, just causing trouble for everyone, sheesh ;) Who even let that person be on the team anyway .... There is a difficult balance here - between too much detail when not needed, and not enough info when it is needed. My greatest concern is "when something breaks, can the admin resolve it with the information we provided?". This is why I always err to "too much detail" because in the good case, we wasted some terminal space. If we remove that detail, we now have people who can't solve their issues, have a negative experience and can't supply the needed details to us to fix their issues. I think that the current setup of the log system in lib389 is all focused around stdout/stderr. What we need is a way to also have it write as debug level to a location and then we can have a lower level in the stdout/stderr levels. So instead of directing these to devnull, we should direct them to a python buffer via subprocess, then we should write these buffers to the log.debug. From there we can have the log code setup the file back and stderr/stdout handlers. Thoughts? |
Comment from firstyear (@Firstyear) at 2019-09-02 01:20:42 Also what about the selinux bits? |
Comment from spichugi (@droideck) at 2019-09-03 02:20:52 rebased onto 462f9cdbf70d031b627559e702d213e1a79f8f39 |
Comment from spichugi (@droideck) at 2019-09-03 02:24:42
I moved it to debug level so it won't be bagging during the non-verbose installation.
Fully agree. Anyway, this issue is ready for review. :) |
Comment from firstyear (@Firstyear) at 2019-09-03 02:59:03 selinux comments? you haven't addressed these .... |
Comment from firstyear (@Firstyear) at 2019-09-03 03:00:20 Ahhh you refactored it and I missed it. |
Comment from spichugi (@droideck) at 2019-09-03 18:02:48 rebased onto aa17a8f |
Comment from spichugi (@droideck) at 2019-09-03 18:05:22 Pull-Request has been merged by droideck |
Patch |
Cloned from Pagure Pull-Request: https://pagure.io/389-ds-base/pull-request/50551
Bug Description:
DS installer debug messages are now leaked in the main ipa-server-install output.
This looks as a (very minor) regression, I did not see this text in the past.
Fix Description:
Clean up loging in lib389. Replace 'sepolicy' module with subprocess call
to 'semanage' tool. It is done because 'sepolicy' has verbose output that
appears on 'import'. Instead of developing a tricky workaround, direct
'semange' call was used.
Resolves: #3606
Reviewed by: ?
The text was updated successfully, but these errors were encountered: