| We have the following in group {} and user {} allowdupe => true
forcelocal => true Using Fedora 37 shipping with libuser 0.63, duplicate user/group account uid/gid add fine.
Using Fedora 38 shipping with libuser 0.64, duplicate user/group account uid/gid returns an error
Error: Could not create group user2: Execution of '/usr/sbin/lgroupadd -g 4080 user2' returned 2: Group creation failed: ID 4080 already in use by user
Error: /Stage[main]/Account::User/Account::Create[user2]/Group[user2]/ensure: change from 'absent' to 'present' failed: Could not create group user2: Execution of '/usr/sbin/lgroupadd -g 4080 user2' returned 2: Group creation failed: ID 4080 already in use by user (corrective)
Error: Could not create user user2: Execution of '[redacted]' returned 3: Account creation failed: ID 4080 already in use by user.
Error: /Stage[main]/Account::User/Account::Create[user2]/User[user2]/ensure: change from 'absent' to 'present' failed: Could not create user user2: Execution of '[redacted]' returned 3: Account creation failed: ID 4080 already in use by user. (corrective) With libuser 0.64, If I add allow_id_duplicates = true under the [files] section of /etc/libuser.conf, the duplicate users/groups add fine on the cli but not with puppet. Puppet is loading /opt/puppetlabs/puppet/lib/ruby/vendor_ruby/puppet/util/libuser.conf which does not have that config directive and is failing to allow duplicate users/groups. libuser 0.64 changed the default behavior of allowing duplicate uid/gids to false where libuser 0.63 was default of true. |
