rocky May 2023

rocky@lists.resf.org

6 participants
3 discussions

ldapmodify can't contact LDAP server inside an podman container
by Meikel 23 Jun '23

23 Jun '23

Hi folks, inside Podman I run Rocky Linux 8 podman run -dt --name rl8 docker.io/rockylinux/rockylinux:8 podman exec -it rl8 bash This is not for production, I use it as an interactive shell for playing around with OpenLDAP server for leraning purposes. After I finished my leraning I' ll get rid of the container and the image. Because inside the container I do not have any infrastructure like "systemd" I start OpenLDAP server simply with slapd and it seems to be running as I can see with ps aux | grep slapd root 547 0.0 2.2 482424 371196 ? Ssl 11:28 0:00 slapd root 553 0.0 0.0 16404 2176 pts/1 S+ 12:07 0:00 grep --color=auto slapd Now from inside the same container I want to run ldapmodify against that OpenLDAP server but I get an error: ldapmodify -Q -Y EXTERNAL -H ldapi:/// -d 5 -f grund.ldif ldap_url_parse_ext(ldapi:///) ldap_create ldap_url_parse_ext(ldapi:///??base) ldap_sasl_interactive_bind: user selected: EXTERNAL ldap_int_sasl_bind: EXTERNAL ldap_new_connection 1 1 0 ldap_int_open_connection ldap_connect_to_path ldap_new_socket: 4 ldap_connect_to_path: Trying /var/run/ldapi ldap_connect_timeout: fd: 4 tm: -1 async: 0 ldap_ndelay_on: 4 ldap_close_socket: 4 ldap_msgfree ldap_err2string ldap_sasl_interactive_bind_s: Can't contact LDAP server (-1) In the /etc/openldap/ldap.conf file I did NOT specify the BASE and URI configurations, not sure if this might cause a problem. With Netcat I see nc localhost 636 Ncat: Connection refused. and time nc localhost 389 ... nothing happesn, seems to hang forever Why can' t I connect from ldapmodify to the slapd? How can I further investigate the problem? Regards, Meikel

2 2

mock fails on lxc container with error read-only filesystem (selinux-related)
by Сергей Спиридонов 11 May '23

11 May '23

Hi I am running rocky linux in privileged lxc container on Debian 11 host. If I try to build any rpm I am getting an error from mock ERROR: Could not create dir /var/lib/mock/rocky+epel-9-x86_64-bootstrap/root/sys/fs/selinux. Error: [Errno 30] Read-only file system: '/var/lib/mock/rocky+epel-9-x86_64-bootstrap/root/sys/fs/selinux' I guess the reason is that selinux is disabled on Debian. Is there a way to tell mock to work with selinux disabled? I am afraid proper set up of selinux on Debian host would be not simple. -- Best regards, Sergey Spiridonov

2 1

Virt-install'ing Rocky with location url & kickstart not working
by Jos Vos 01 May '23

01 May '23

Hi, With CentOS I’m used to install VM’s using kickstart without local media (e.g. a boot iso) with a command like: virt-install ... -location "http://..../9-stream/BaseOS/x86_64/os/" \ --initrd-inject ks.cfg --extra-args="inst.ks=file:///ks.cfg" When I try a similar command with Rocky Linux (I tried both .../os/ and .../kickstart/ in the URL paths) it loads vmlinuz and initrd.img, but it fails later: for version 8 and 9 different things happen (timeouts in 8 and endless loops in 9). Is there a way to achieve a virt-install with kickstart (and without downloading and mounting stuff)? Thanks, Jos -- -- Jos Vos <jos(a)xos.nl> -- X/OS Experts in Open Systems BV | Office: +31 20 6938364 -- Amsterdam, The Netherlands | Mobile: +31 6 26216181

2 3

2024

2023

2022

2021

rocky May 2023