[Freeipa-devel] [PATCH, 2.1] 0021 Fedora 16 and systemd support

Simo Sorce simo at redhat.com
Mon Oct 17 15:45:06 UTC 2011 

On Mon, 2011-10-17 at 14:21 +0300, Alexander Bokovoy wrote:
> On Fri, 14 Oct 2011, Simo Sorce wrote:
> > > > Attached a rebased patch with the modifications needed to apply it on
> > > > master.
> > > > 
> > > > Everything seem to work on master but I haven't tested ipa-2-1 so this
> > > > is a partial ACK of the original patch as well.
> > > 
> > > A bit of bad news, I restarted the machine and I am having issue
> > > properly restarting services.
> > > This patch is still better than nothing as otherwise nothing works at
> > > all on f16, but we need to work out why starting services is unreliable.
> > 
> > Ok found the issue and it is a bug in the conversion to systemd.
> > I opened ticket #1990 for this.
> > 
> > Attached find a rebased patch that fixes enough of the bug to let the
> > server work (they keytab part), but it doesn't address the ulimit part.
> KRB5_KTNAME was missing but LimitNOFile is available -- it is now 
> modified in dirsrv at .service file directly. The code in 
> ipapython/platform/fedora16.py goes to a great length to enable that 
> by copying file to /etc/systemd/system, modifying the config, and 
> relinking all dirsrv instances to it. That's how systemd is organized.
> 
> Now, I think I found actual issue preventing proper restarts. 
> wait_for_socket() only considered 'connection refused' as valid error 
> when unable to connect and waiting up until timeout is gone. 
> Unfortunately, directory services start a bit slower than we had hoped 
> and by the time we attempt to connect to local AF_UNIX socket, there 
> is no actual socket on file system yet so we get:
> 
> Oct 17 06:48:36 vm-114 ipactl[954]: Failed to read data from Directory 
> Service: Unknown error when retrieving list of services from LDAP: 
> [Errno 2] No such file or directory
> Oct 17 06:48:36 vm-114 ipactl[954]: Shutting down
> Oct 17 06:48:36 vm-114 ipactl[954]: Starting Directory Service
> 
> After applying attached patch I now have fully working FreeIPA 2.1 git 
> on Fedora 16.

ACk,
fixes my startup issue as well.

Simo.

-- 
Simo Sorce * Red Hat, Inc * New York

More information about the Freeipa-devel mailing list