作为 docker 容器启动 FreeIPA 服务器时出错
Error starting FreeIPA server as docker container
当我 运行 以下命令时出现错误:
docker run --name freeipa-server-container -ti \
-h ipa.example.test \
--read-only \
-v /var/lib/ipa-data:/data:Z freeipa-server [ opts ]
错误:
systemd 239 running in system mode. (+PAM +AUDIT +SELINUX +IMA
-APPARMOR +SMACK +SYSVINIT +UTMP +LIBCRYPTSETUP +GCRYPT +GNUTLS +ACL +XZ +LZ4 +SECCOMP +BLKID +ELFUTILS +KMOD +IDN2 -IDN +PCRE2 default-hierarchy=legacy)
Detected virtualization container-other.
Detected architecture x86-64. Set hostname to <ipa.example.test>.
Initializing machine ID from random generator.
Couldn't move remaining
userspace processes, ignoring: Input/output error
Sun Mar 22 16:47:43
UTC 2020 /usr/sbin/ipa-server-configure-first
IPv6 stack is enabled
in the kernel but there is no interface that has ::1 address assigned.
Add ::1 address resolution to 'lo' interface. You might need to enable
IPv6 on the interface 'lo' in sysctl.conf. The ipa-server-install
command failed. See /var/log/ipaserver-install.log for more
information
最后一部分说我需要在 sysctl.conf 中的接口 'lo' 上启用 IPv6。
这是 ifconfig 的输出。它已经启用。不是吗?
lo: flags=73<UP,LOOPBACK,RUNNING> mtu 65536
inet 127.0.0.1 netmask 255.0.0.0
inet6 ::1 prefixlen 128 scopeid 0x10<host>
loop txqueuelen 1000 (Local Loopback)
RX packets 661 bytes 56283 (56.2 KB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 661 bytes 56283 (56.2 KB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
而且我找不到太多关于
的信息
Couldn't move remaining userspace processes, ignoring: Input/output error
有什么指点吗??
我正在关注此资源:https://github.com/freeipa/freeipa-container
我能够在 this other answer 之后解决相同的问题,主要是通过将 --sysctl net.ipv6.conf.lo.disable_ipv6=0 添加到我的 docker run ... 命令中。我实际上不知道为什么它需要在那里,但我的症状和你的一样,这就成功了。这是我的完整测试命令:
$ docker run -it --rm \
--sysctl net.ipv6.conf.lo.disable_ipv6=0
--name freeipa-server-container \
-h idm.example.test \
-v /sys/fs/cgroup:/sys/fs/cgroup:ro \
-v /var/lib/ipa-data:/data \
--tmpfs /run \
--tmpfs /tmp \
freeipa/freeipa-server:latest
抱歉,这不是一个很好的答案,但如果您仍然被卡住,它至少可以让您走得更远。
当我 运行 以下命令时出现错误:
docker run --name freeipa-server-container -ti \
-h ipa.example.test \
--read-only \
-v /var/lib/ipa-data:/data:Z freeipa-server [ opts ]
错误:
systemd 239 running in system mode. (+PAM +AUDIT +SELINUX +IMA -APPARMOR +SMACK +SYSVINIT +UTMP +LIBCRYPTSETUP +GCRYPT +GNUTLS +ACL +XZ +LZ4 +SECCOMP +BLKID +ELFUTILS +KMOD +IDN2 -IDN +PCRE2 default-hierarchy=legacy)
Detected virtualization container-other.
Detected architecture x86-64. Set hostname to
<ipa.example.test>.Initializing machine ID from random generator.
Couldn't move remaining userspace processes, ignoring: Input/output error
Sun Mar 22 16:47:43 UTC 2020 /usr/sbin/ipa-server-configure-first
IPv6 stack is enabled in the kernel but there is no interface that has ::1 address assigned. Add ::1 address resolution to 'lo' interface. You might need to enable IPv6 on the interface 'lo' in sysctl.conf. The ipa-server-install command failed. See /var/log/ipaserver-install.log for more information
最后一部分说我需要在 sysctl.conf 中的接口 'lo' 上启用 IPv6。
这是 ifconfig 的输出。它已经启用。不是吗?
lo: flags=73<UP,LOOPBACK,RUNNING> mtu 65536
inet 127.0.0.1 netmask 255.0.0.0
inet6 ::1 prefixlen 128 scopeid 0x10<host>
loop txqueuelen 1000 (Local Loopback)
RX packets 661 bytes 56283 (56.2 KB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 661 bytes 56283 (56.2 KB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
而且我找不到太多关于
的信息Couldn't move remaining userspace processes, ignoring: Input/output error
有什么指点吗?? 我正在关注此资源:https://github.com/freeipa/freeipa-container
我能够在 this other answer 之后解决相同的问题,主要是通过将 --sysctl net.ipv6.conf.lo.disable_ipv6=0 添加到我的 docker run ... 命令中。我实际上不知道为什么它需要在那里,但我的症状和你的一样,这就成功了。这是我的完整测试命令:
$ docker run -it --rm \
--sysctl net.ipv6.conf.lo.disable_ipv6=0
--name freeipa-server-container \
-h idm.example.test \
-v /sys/fs/cgroup:/sys/fs/cgroup:ro \
-v /var/lib/ipa-data:/data \
--tmpfs /run \
--tmpfs /tmp \
freeipa/freeipa-server:latest
抱歉,这不是一个很好的答案,但如果您仍然被卡住,它至少可以让您走得更远。