subject:"\[Freeipa\-devel\] \[PATCH\] 0004 Fix ipa\-server\-install in pure IPv6 environment"

Re: [Freeipa-devel] [PATCH] 0004 Fix ipa-server-install in pure IPv6 environment

2016-08-25 Thread Martin Basti




On 24.08.2016 18:41, Martin Basti wrote:




On 19.08.2016 14:09, Tomas Krizek wrote:

Hi,

please review the attached patch.

Make sure the hostname isn't resolved to link local IPv6(feXX:...) 
during testing, which doesn't work (and isn't supposed to).





It did not work for me,

pki-ca-spawn.log:
/ca/getStatus (Caused by 
NewConnectionError('object at 0x7f3d35854310>: Failed to establish a new connection: 
[Errno 111] Connection refused',))
2016-08-24 18:07:12 pkispawn: ERROR... server failed to 
restart

2016-08-24 18:07:12 pkispawn: DEBUG... Error Type: Exception
2016-08-24 18:07:12 pkispawn: DEBUG... Error Message: 
server failed to restart
2016-08-24 18:07:12 pkispawn: DEBUG...   File 
"/usr/sbin/pkispawn", line 528, in main

scriptlet.spawn(deployer)
  File 
"/usr/lib/python2.7/site-packages/pki/server/deployment/scriptlets/configuration.py", 
line 375, in spawn

raise Exception("server failed to restart")


journalctl:
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: Java virtual machine used: 
/usr/lib/jvm/jre-1.8.0-openjdk/bin/java
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: classpath used: 
/usr/share/tomcat/bin/bootstrap.jar:/usr/share/tomcat/bin/tomcat-juli.jar:/usr/lib/java/commons-daemon.jar
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: main class used: org.apache.catalina.startup.Bootstrap
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: flags used: -DRESTEASY_LIB=/usr/share/java/resteasy 
-Djava.library.path=/usr/lib64/nuxwdog-jni
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: options used: -Dcatalina.base=/var/lib/pki/pki-tomcat 
-Dcatalina.home=/usr/share/tomcat -Djava.endorsed.dirs= 
-Djava.io.tmpdir=/var/lib/pk
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: arguments used: stop
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: Aug 24, 2016 6:06:22 PM 
org.apache.catalina.startup.Catalina stopServer
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: SEVERE: Catalina.stop:
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: java.net.SocketException: Network is unreachable
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at 
java.net.PlainSocketImpl.socketConnect(Native Method)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at 
java.net.AbstractPlainSocketImpl.doConnect(AbstractPlainSocketImpl.java:350)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at 
java.net.AbstractPlainSocketImpl.connectToAddress(AbstractPlainSocketImpl.java:206)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at 
java.net.AbstractPlainSocketImpl.connect(AbstractPlainSocketImpl.java:188)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at 
java.net.SocksSocketImpl.connect(SocksSocketImpl.java:392)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at java.net.Socket.connect(Socket.java:589)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at java.net.Socket.connect(Socket.java:538)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at java.net.Socket.(Socket.java:434)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at java.net.Socket.(Socket.java:211)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at 
org.apache.catalina.startup.Catalina.stopServer(Catalina.java:450)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at 
sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at 
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at 
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at java.lang.reflect.Method.invoke(Method.java:498)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at 
org.apache.catalina.startup.Bootstrap.stopServer(Bootstrap.java:400)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at 
org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:487)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com systemd[1]: 
pki-tomcatd@pki-tomcat.service: Control process exited, code=exited 
status=1
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com systemd[1]: 
pki-tomcatd@pki-tomcat.service: Unit entered failed state.
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com

Re: [Freeipa-devel] [PATCH] 0004 Fix ipa-server-install in pure IPv6 environment

2016-08-24 Thread Martin Basti




On 19.08.2016 14:09, Tomas Krizek wrote:

Hi,

please review the attached patch.

Make sure the hostname isn't resolved to link local IPv6(feXX:...) 
during testing, which doesn't work (and isn't supposed to).





It did not work for me,

pki-ca-spawn.log:
/ca/getStatus (Caused by 
NewConnectionError('object at 0x7f3d35854310>: Failed to establish a new connection: [Errno 
111] Connection refused',))

2016-08-24 18:07:12 pkispawn: ERROR... server failed to restart
2016-08-24 18:07:12 pkispawn: DEBUG... Error Type: Exception
2016-08-24 18:07:12 pkispawn: DEBUG... Error Message: server 
failed to restart
2016-08-24 18:07:12 pkispawn: DEBUG...   File 
"/usr/sbin/pkispawn", line 528, in main

scriptlet.spawn(deployer)
  File 
"/usr/lib/python2.7/site-packages/pki/server/deployment/scriptlets/configuration.py", 
line 375, in spawn

raise Exception("server failed to restart")


journalctl:
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com server[58257]: 
Java virtual machine used: /usr/lib/jvm/jre-1.8.0-openjdk/bin/java
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com server[58257]: 
classpath used: 
/usr/share/tomcat/bin/bootstrap.jar:/usr/share/tomcat/bin/tomcat-juli.jar:/usr/lib/java/commons-daemon.jar
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com server[58257]: 
main class used: org.apache.catalina.startup.Bootstrap
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com server[58257]: 
flags used: -DRESTEASY_LIB=/usr/share/java/resteasy 
-Djava.library.path=/usr/lib64/nuxwdog-jni
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com server[58257]: 
options used: -Dcatalina.base=/var/lib/pki/pki-tomcat 
-Dcatalina.home=/usr/share/tomcat -Djava.endorsed.dirs= 
-Djava.io.tmpdir=/var/lib/pk
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com server[58257]: 
arguments used: stop
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com server[58257]: 
Aug 24, 2016 6:06:22 PM org.apache.catalina.startup.Catalina stopServer
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com server[58257]: 
SEVERE: Catalina.stop:
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com server[58257]: 
java.net.SocketException: Network is unreachable
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at java.net.PlainSocketImpl.socketConnect(Native 
Method)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at 
java.net.AbstractPlainSocketImpl.doConnect(AbstractPlainSocketImpl.java:350)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at 
java.net.AbstractPlainSocketImpl.connectToAddress(AbstractPlainSocketImpl.java:206)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at 
java.net.AbstractPlainSocketImpl.connect(AbstractPlainSocketImpl.java:188)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at 
java.net.SocksSocketImpl.connect(SocksSocketImpl.java:392)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at java.net.Socket.connect(Socket.java:589)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at java.net.Socket.connect(Socket.java:538)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at java.net.Socket.(Socket.java:434)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at java.net.Socket.(Socket.java:211)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at 
org.apache.catalina.startup.Catalina.stopServer(Catalina.java:450)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at 
sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at 
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at 
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at java.lang.reflect.Method.invoke(Method.java:498)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at 
org.apache.catalina.startup.Bootstrap.stopServer(Bootstrap.java:400)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com 
server[58257]: at 
org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:487)
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com systemd[1]: 
pki-tomcatd@pki-tomcat.service: Control process exited, code=exited status=1
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com systemd[1]: 
pki-tomcatd@pki-tomcat.service: Unit entered failed state.
Aug 24 18:06:22 vm-058-188.abc.idm.lab.eng.brq.redhat.com systemd[1]: 
pki-tomcatd@pki-tomcat.service:

[Freeipa-devel] [PATCH] 0004 Fix ipa-server-install in pure IPv6 environment

2016-08-19 Thread Tomas Krizek


Hi,

please review the attached patch.

Make sure the hostname isn't resolved to link local IPv6(feXX:...) 
during testing, which doesn't work (and isn't supposed to).


--
Tomas Krizek

From d4a7a4e637951fca5331e9dc0622df912e828a26 Mon Sep 17 00:00:00 2001
From: Tomas Krizek 
Date: Fri, 19 Aug 2016 12:16:54 +0200
Subject: [PATCH] Fix ipa-server-install in pure IPv6 environment

Installation in pure IPv6 environment failed because pki-tomcat tried to use
IPv4 loopback. Configuring tomcat to use IPv6 loopback instead of IPv4 fixes
this issue.

https://fedorahosted.org/freeipa/ticket/4291
---
 ipaserver/install/cainstance.py | 4 
 1 file changed, 4 insertions(+)

diff --git a/ipaserver/install/cainstance.py b/ipaserver/install/cainstance.py
index 2ec02d6628ebc9e3a9bad141ec636c84eab14cef..c4b8e9ae326fb7ebda9e927cd4d0b5bad9743db4 100644
--- a/ipaserver/install/cainstance.py
+++ b/ipaserver/install/cainstance.py
@@ -578,6 +578,10 @@ class CAInstance(DogtagInstance):
 config.set("CA", "pki_external_ca_cert_chain_path", cert_chain_file.name)
 config.set("CA", "pki_external_step_two", "True")
 
+# PKI IPv6 Configuration
+config.add_section("Tomcat")
+config.set("Tomcat", "pki_ajp_host", "::1")
+
 # Generate configuration file
 with open(cfg_file, "wb") as f:
 config.write(f)
-- 
2.7.4

-- 
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code

Re: [Freeipa-devel] [PATCH] 0004 Fix ipa-server-install in pure IPv6 environment

Re: [Freeipa-devel] [PATCH] 0004 Fix ipa-server-install in pure IPv6 environment

[Freeipa-devel] [PATCH] 0004 Fix ipa-server-install in pure IPv6 environment

3 matches

Site Navigation

Mail list logo

Footer information