Image build not including rechunk changes #2088

tbelway · 2025-01-07T14:58:16Z

Describe the bug

It looks like rechunk is not applying the appropriate changes to the bazzite image, resulting in retained sssd failures.

hhd-dev/rechunk#9
Which should fix:
#2030

What did you expect to happen?

Changes applied in rechunk should be used in bazzite image generation.

Output of `rpm-ostree status`

N/A

Hardware

N/A

Extra information or context

sssd capabilities have changed. Please see upstream: https://sssd.io/release-notes/sssd-2.10.1.html

Capabilities in current image:

getcap /usr/libexec/sssd/*
/usr/libexec/sssd/krb5_child cap_chown,cap_dac_override,cap_setgid,cap_setuid=ep
/usr/libexec/sssd/ldap_child cap_chown,cap_dac_override,cap_setgid,cap_setuid=ep
/usr/libexec/sssd/selinux_child cap_setgid,cap_setuid=p
/usr/libexec/sssd/sssd_pam cap_dac_read_search=p

Expected caps:

/usr/libexec/sssd/krb5_child cap_dac_read_search,cap_setgid,cap_setuid=p
/usr/libexec/sssd/ldap_child cap_dac_read_search=p
/usr/libexec/sssd/selinux_child cap_setgid,cap_setuid=p 
/usr/libexec/sssd/sssd_pam cap_dac_read_search=p

The text was updated successfully, but these errors were encountered:

tbelway · 2025-01-21T03:21:58Z

Latest testing and latest stable both address this issue.

dosubot bot added bug Something isn't working upstream labels Jan 7, 2025

tbelway closed this as completed Jan 21, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Image build not including rechunk changes #2088

Image build not including rechunk changes #2088

tbelway commented Jan 7, 2025

tbelway commented Jan 21, 2025

Image build not including rechunk changes #2088

Image build not including rechunk changes #2088

Comments

tbelway commented Jan 7, 2025

Describe the bug

What did you expect to happen?

Output of rpm-ostree status

Hardware

Extra information or context

tbelway commented Jan 21, 2025

Output of `rpm-ostree status`