I removed the agent, performed a reboot, and then install proceeded successfully. Then I tried to do a reconfigure which failed due to virt-devel
++++++++++++++++
[2023-12-13T11:55:37-08:00] INFO: template[/opt/morpheus/embedded/nginx/conf/nginx.conf] sending restart action to runit_service[nginx] (delayed)
Recipe: morpheus-solo::nginx
runit_service[nginx] action restart (up to date)
Running handlers:
[2023-12-13T11:55:38-08:00] ERROR: Running exception handlers
Running handlers complete
[2023-12-13T11:55:38-08:00] ERROR: Exception handlers complete
Chef Client failed. 261 resources updated in 02 minutes 20 seconds
[2023-12-13T11:55:38-08:00] FATAL: Stacktrace dumped to /opt/morpheus/embedded/cookbooks/cache/chef-stacktrace.out
[2023-12-13T11:55:38-08:00] FATAL: Please provide the contents of the stacktrace.out file if you file a bug report
[2023-12-13T11:55:38-08:00] FATAL: Mixlib::ShellOut::ShellCommandFailed: execute[enable_virt-devel_module] (morpheus-solo::guac line 147) had an error: Mixlib::ShellOut::ShellCommandFailed: Expected process to exit with [0], but received ‘1’
---- Begin output of yum -y module enable virt-devel ----
STDOUT: Last metadata expiration check: 0:01:17 ago on Wed 13 Dec 2023 11:54:17 AM PST.
STDERR: Error: Problems in request:
missing groups or modules: virt-devel
---- End output of yum -y module enable virt-devel ----
Ran yum -y module enable virt-devel returned 1
Is the RHEL 8 CodeReady repository enabled? The previous steps if it is enabled, and if it not it will enabled it, and then it is checking is virt-devel module is enabled, and enables that if it is not, but seem the codeready step didnt succeed. Is this a rhel 8 ami? Can you try the below and reconfigure again? dnf config-manager --set-enabled codeready-builder-for-rhel-8-rhui-rpms
Thank you, got a lot further through the reconfigure and now I’m having trouble with guacd:
++++++++++++++
Running handlers:
[2023-12-13T13:31:21-08:00] ERROR: Running exception handlers
Running handlers complete
[2023-12-13T13:31:21-08:00] ERROR: Exception handlers complete
Chef Client failed. 207 resources updated in 09 minutes 06 seconds
[2023-12-13T13:31:21-08:00] FATAL: Stacktrace dumped to /opt/morpheus/embedded/cookbooks/cache/chef-stacktrace.out
[2023-12-13T13:31:21-08:00] FATAL: Please provide the contents of the stacktrace.out file if you file a bug report
[2023-12-13T13:31:21-08:00] FATAL: Mixlib::ShellOut::ShellCommandFailed: runit_service[guacd] (morpheus-solo::guac line 423) had an error: Mixlib::ShellOut::ShellCommandFailed: Expected process to exit with [0], but received ‘1’
---- Begin output of /opt/morpheus/embedded/bin/sv restart /opt/morpheus/service/guacd ----
STDOUT: timeout: down: /opt/morpheus/service/guacd: 0s, normally up, want up
STDERR:
---- End output of /opt/morpheus/embedded/bin/sv restart /opt/morpheus/service/guacd ----
Ran /opt/morpheus/embedded/bin/sv restart /opt/morpheus/service/guacd returned 1
I ran another reconfigure which finished this time, but the guacd process is still not starting. I tried morpheus-ctl stop to bring all of them down and a morpheus-ctl start to bring them up, but guacd start still times out
+++++++++++++++
Recipe: morpheus-solo::bootstrap
file[/var/opt/morpheus/.bootstrap] action create (up to date)
[2023-12-13T14:18:02-08:00] INFO: Chef Run complete in 42.360793753 seconds
I found the log file for guacd
/var/log/morpheus/guacd/current
there are a bunch of permission denied messages for /usr/local/sbin/guacd
however when I check the permissions I see
755 root:root /usr/local/sbin/guacd
which is the same on our other morpheus server
the morpheus-app user belongs to the same groups on this new server and the old one
morpheus-app and morpheus-local
Looks like the guacd process is run by a user called guac-morpheus
Again this user has the same permissions on the old instance and the new instance.
Okay I’ve definitely given the user enough permission but still seeing the same error in the guacd logs.
I ran the following and attempted to start the guacd process at each iteration:
setfacl -m u:guac-morpheus:r-x /usr/local/sbin/guacd
setfacl -m u:guac-morpheus:r-x /usr/local/sbin/
setfacl -m u:guac-morpheus:r-x /usr/local/
setfacl -m u:guac-morpheus:r-x /usr/
then when none of the above worked I added guac-morpheus to the root group and tried again.
I’m still getting permission denied error message in the guacd logs
Last thing I’ve tried is a reboot of the system to see if that would help. Still seeing permission denied in the logs.
In case anyone else needs to troubleshoot similar issues. The temporary fix was to disable fapolicy to get guacd and the morpheus-ui running. I need to add some kind of rule to fapolicy to allow the files Morpheus uses to execute without issue.