将 FreeIPA 服务器作为 docker 容器启动时出错

Question

I am getting error when I run the following command:运行以下命令时出现错误：

docker run --name freeipa-server-container -ti \
   -h ipa.example.test \
   --read-only \
   -v /var/lib/ipa-data:/data:Z freeipa-server [ opts ]

ERROR:错误：

systemd 239 running in system mode. systemd 239 在系统模式下运行。 (+PAM +AUDIT +SELINUX +IMA -APPARMOR +SMACK +SYSVINIT +UTMP +LIBCRYPTSETUP +GCRYPT +GNUTLS +ACL +XZ +LZ4 +SECCOMP +BLKID +ELFUTILS +KMOD +IDN2 -IDN +PCRE2 default-hierarchy=legacy) （+PAM +AUDIT +SELINUX +IMA -APPARMOR +SMACK +SYSVINIT +UTMP +LIBCRYPTSETUP +GCRYPT +GNUTLS +ACL +XZ +LZ4 +SECCOMP +BLKID +ELFUTILS +KMOD +IDN2 -IDN +PCRE2 default-hierarchy=legacy）

Detected virtualization container-other.检测到虚拟化容器-其他。

Detected architecture x86-64.检测到架构 x86-64。 Set hostname to <ipa.example.test> .将主机名设置为<ipa.example.test> 。

Initializing machine ID from random generator.从随机生成器初始化机器 ID。

Couldn't move remaining userspace processes, ignoring: Input/output error无法移动剩余的用户空间进程，忽略：输入/输出错误

Sun Mar 22 16:47:43 UTC 2020 /usr/sbin/ipa-server-configure-first 2020 年 3 月 22 日星期日 16:47:43 UTC /usr/sbin/ipa-server-configure-first

IPv6 stack is enabled in the kernel but there is no interface that has ::1 address assigned.内核中启用了 IPv6 堆栈，但没有分配 ::1 地址的接口。 Add ::1 address resolution to 'lo' interface.将 ::1 地址解析添加到“lo”接口。 You might need to enable IPv6 on the interface 'lo' in sysctl.conf.您可能需要在 sysctl.conf 中的接口“lo”上启用 IPv6。 The ipa-server-install command failed. ipa-server-install 命令失败。 See /var/log/ipaserver-install.log for more information有关详细信息，请参阅 /var/log/ipaserver-install.log

Last part says I need to enable enable IPv6 on the interface 'lo' in sysctl.conf.最后一部分说我需要在 sysctl.conf 中的接口“lo”上启用 IPv6。

Here is the output of ifconfig .这是ifconfig的输出。 It is already enabled.它已经启用。 Isn't it?不是吗？

lo: flags=73<UP,LOOPBACK,RUNNING>  mtu 65536
        inet 127.0.0.1  netmask 255.0.0.0
        inet6 ::1  prefixlen 128  scopeid 0x10<host>
        loop  txqueuelen 1000  (Local Loopback)
        RX packets 661  bytes 56283 (56.2 KB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 661  bytes 56283 (56.2 KB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

and also I couldn't find much about而且我也找不到太多关于

Couldn't move remaining userspace processes, ignoring: Input/output error

Any pointers??有什么指点吗？？ I am following this resource: https://github.com/freeipa/freeipa-container我正在关注此资源： https : //github.com/freeipa/freeipa-container

Answer 1

I was able to resolve the same issue following this other answer , basically by adding --sysctl net.ipv6.conf.lo.disable_ipv6=0 into my docker run ... command.我能够在这个其他答案之后解决同样的问题，基本上是通过将--sysctl net.ipv6.conf.lo.disable_ipv6=0添加到我的--sysctl net.ipv6.conf.lo.disable_ipv6=0 docker run ...命令中。 I don't actually know why it needs to be there but my symptoms were the same as yours and this did the trick.我实际上不知道为什么它需要在那里，但我的症状和你的一样，这就是诀窍。 Here is my full command for testing:这是我的完整测试命令：

$ docker run -it --rm \
    --sysctl net.ipv6.conf.lo.disable_ipv6=0 
    --name freeipa-server-container \
    -h idm.example.test \
    -v /sys/fs/cgroup:/sys/fs/cgroup:ro \
    -v /var/lib/ipa-data:/data \
    --tmpfs /run \
    --tmpfs /tmp \
    freeipa/freeipa-server:latest

Sorry this isn't a great answer, but it might at least get you further down the road if you're still stuck.抱歉，这不是一个很好的答案，但如果您仍然被卡住，它至少可以让您走得更远。

将 FreeIPA 服务器作为 docker 容器启动时出错

问题描述

1 个解决方案

解决方案1
5 已采纳 2020-04-16 21:58:07

将 FreeIPA 服务器作为 docker 容器启动时出错

问题描述

1 个解决方案

解决方案1 5 已采纳 2020-04-16 21:58:07

解决方案1
5 已采纳 2020-04-16 21:58:07