sss_cache spam trying to open /var/lib/sss/db/config.ldb, even in offline mode

[jlebon]

When rpm-ostree is assembling the rootfs in a tmpdir, any scriptlet which adds users or groups will trigger a spam from sss_cache trying to access it:

Installing 397 packages:
  ...
  sssd-ad-2.5.1-1.fc34.x86_64 (fedora-coreos-pool)
  sssd-client-2.5.1-1.fc34.x86_64 (fedora-coreos-pool)
  sssd-common-2.5.1-1.fc34.x86_64 (fedora-coreos-pool)
  sssd-common-pac-2.5.1-1.fc34.x86_64 (fedora-coreos-pool)
  sssd-ipa-2.5.1-1.fc34.x86_64 (fedora-coreos-pool)
  sssd-krb5-2.5.1-1.fc34.x86_64 (fedora-coreos-pool)
  sssd-krb5-common-2.5.1-1.fc34.x86_64 (fedora-coreos-pool)
  sssd-ldap-2.5.1-1.fc34.x86_64 (fedora-coreos-pool)
...
systemd.prein: (2021-06-15 21:49:50): [sss_cache] [confdb_init] (0x0010): Unable to open config database [/var/lib/sss/db/config.ldb]
systemd.prein: Could not open available domains
systemd.prein: groupadd: sss_cache exited with status 5
systemd.prein: groupadd: Failed to flush the sssd cache.
systemd.prein: (2021-06-15 21:49:50): [sss_cache] [confdb_init] (0x0010): Unable to open config database [/var/lib/sss/db/config.ldb]
systemd.prein: Could not open available domains
systemd.prein: groupadd: sss_cache exited with status 5
systemd.prein: groupadd: Failed to flush the sssd cache.
systemd.prein: (2021-06-15 21:49:50): [sss_cache] [confdb_init] (0x0010): Unable to open config database [/var/lib/sss/db/config.ldb]
systemd.prein: Could not open available domains
systemd.prein: groupadd: sss_cache exited with status 5
systemd.prein: groupadd: Failed to flush the sssd cache.
systemd.prein: (2021-06-15 21:49:50): [sss_cache] [confdb_init] (0x0010): Unable to open config database [/var/lib/sss/db/config.ldb]
systemd.prein: Could not open available domains
systemd.prein: groupadd: sss_cache exited with status 5
systemd.prein: groupadd: Failed to flush the sssd cache.
dnsmasq.prein: (2021-06-15 21:49:50): [sss_cache] [confdb_init] (0x0010): Unable to open config database [/var/lib/sss/db/config.ldb]
dnsmasq.prein: Could not open available domains
dnsmasq.prein: groupadd: sss_cache exited with status 5
dnsmasq.prein: groupadd: Failed to flush the sssd cache.
dnsmasq.prein: (2021-06-15 21:49:50): [sss_cache] [confdb_init] (0x0010): Unable to open config database [/var/lib/sss/db/config.ldb]
dnsmasq.prein: Could not open available domains
dnsmasq.prein: groupadd: sss_cache exited with status 5
dnsmasq.prein: groupadd: Failed to flush the sssd cache.
dnsmasq.prein: (2021-06-15 21:49:50): [sss_cache] [confdb_init] (0x0010): Unable to open config database [/var/lib/sss/db/config.ldb]
dnsmasq.prein: Could not open available domains
dnsmasq.prein: useradd: sss_cache exited with status 5
dnsmasq.prein: useradd: Failed to flush the sssd cache.
dnsmasq.prein: (2021-06-15 21:49:50): [sss_cache] [confdb_init] (0x0010): Unable to open config database [/var/lib/sss/db/config.ldb]
dnsmasq.prein: Could not open available domains
dnsmasq.prein: useradd: sss_cache exited with status 5
dnsmasq.prein: useradd: Failed to flush the sssd cache.
samba-common.prein: (2021-06-15 21:49:51): [sss_cache] [confdb_init] (0x0010): Unable to open config database [/var/lib/sss/db/config.ldb]
samba-common.prein: Could not open available domains
samba-common.prein: groupadd: sss_cache exited with status 5
samba-common.prein: groupadd: Failed to flush the sssd cache.
samba-common.prein: (2021-06-15 21:49:51): [sss_cache] [confdb_init] (0x0010): Unable to open config database [/var/lib/sss/db/config.ldb]
samba-common.prein: Could not open available domains
samba-common.prein: groupadd: sss_cache exited with status 5
samba-common.prein: groupadd: Failed to flush the sssd cache.
clevis.prein: (2021-06-15 21:49:51): [sss_cache] [confdb_init] (0x0010): Unable to open config database [/var/lib/sss/db/config.ldb]
clevis.prein: Could not open available domains
clevis.prein: groupadd: sss_cache exited with status 5
clevis.prein: groupadd: Failed to flush the sssd cache.
clevis.prein: (2021-06-15 21:49:51): [sss_cache] [confdb_init] (0x0010): Unable to open config database [/var/lib/sss/db/config.ldb]
clevis.prein: Could not open available domains
clevis.prein: groupadd: sss_cache exited with status 5
clevis.prein: groupadd: Failed to flush the sssd cache.
clevis.prein: (2021-06-15 21:49:51): [sss_cache] [confdb_init] (0x0010): Unable to open config database [/var/lib/sss/db/config.ldb]
clevis.prein: Could not open available domains
clevis.prein: useradd: sss_cache exited with status 5
clevis.prein: useradd: Failed to flush the sssd cache.
clevis.prein: (2021-06-15 21:49:51): [sss_cache] [confdb_init] (0x0010): Unable to open config database [/var/lib/sss/db/config.ldb]
clevis.prein: Could not open available domains
clevis.prein: useradd: sss_cache exited with status 5
...

This was previously discussed in https://pagure.io/SSSD/sssd/pull-request/3959 but it doesn't seem to have gone away.

[alexey-tikhonov]

Since 'files provider' is deprecated and planned to be removed in F40+, this will be "fixed" via removal of 'sss_cache' invocation from shadow-utils.