[OpenAFS] Initial configuring openafs server: got some obscured errors
ayvango
ayvango@zoho.com
Fri, 25 May 2012 04:29:53 -0700
I tried to install openafs server and build a cell on my gentoo box.
net-fs/openafs version: 1.6.1[kerberos pam -doc]
net-fs/openafs-kernel version: 1.6.1[kernel_linux]
app-crypt/mit-krb5 version: 1.9.2-r2[keyutils pkinit threads -doc -openldap -test -xinetd]
I had followed this guide: http://en.gentoo-wiki.com/wiki/OpenAFS_with_MIT_Kerberos
MIT Kerberos realm was configured smoothly, I can access it with administrator password via kadmin and it shows all principals mentioned in the guide.
I'm stack at point of first-time client run. http://en.gentoo-wiki.com/wiki/OpenAFS_with_MIT_Kerberos#Starting_the_client
If I run
afsd -fakestat -stat 2000 -dcache 800 -daemons 2 -volumes 70 -debug
(not using afsdb to get rid of possible dns-configuration errors)
I got some debug messages with this:
...
afsd: All AFS daemons started.
...
SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 afsd: Calling AFSOP_GO with cacheSetTime = 0
SScall(137, 28, 100)=0 afsd: All AFS daemons started.
afsd: Forking trunc-cache daemon.
afsd: Mounting the AFS root on '/afs', flags: 0.
SScall(137, 28, 3)=0 afsd: Can't mount AFS on /afs(22)
If I try to do aklog first, I got this:
# aklog -d
Authenticating to cell asu.aaa.bb (server dali.asu.aaa.bb).
Trying to authenticate to user's realm STA.
Getting tickets: afs/asu.aaa.bb@STA
Using Kerberos V5 ticket natively
About to resolve name afsadmin to id in cell asu.aaa.bb.
Id 1
Set username to AFS ID 1
Setting tokens. AFS ID 1 @ asu.aaa.bb
aklog: a pioctl failed while obtaining tokens for cell asu.aaa.bb
The documentation on the official site seemed to be outdated, I can not find any actual one more detailed than the guide I've used.
I'm sure there is a trivial error in my configurations and I need help to find it.
Detailed info below:
Filesystems:
reiserfs is mounted over /afs for cell data
reiserfs is mounted over /afs_cache for client cache
kernel:
Linux dali.asu.aaa.bb 3.3.2 i686 Intel(R) Core(TM)2 Quad CPU Q9550 @ 2.83GHz GenuineIntel GNU/Linux
experimental native kernel support is disabled in sake of provided libafs module.
dmesg over libafs:
libafs: module license 'http://www.openafs.org/dl/license10.html' taints kernel.
Disabling lock debugging due to kernel taint
enabling dynamically allocated vcaches
Starting AFS cache scan...found 0 non-empty cache files (0%).
servers are started normally, bos server has appropriate keytab.afs file
ps ax | grep afs
9913 ? S 0:00 /usr/libexec/openafs/ptserver
9914 ? S 0:00 /usr/libexec/openafs/vlserver
9915 ? S<l 0:00 /usr/libexec/openafs/fileserver
9916 ? Sl 0:00 /usr/libexec/openafs/volserver
19579 ? S 0:00 [afs_pagecopy]
19618 ? S 0:00 [afs_callback]
19619 ? S 0:00 [afs_rxlistener]
19620 ? S 0:00 [afs_rxevent]
19622 ? S 0:00 [afsd]
19624 ? S 0:00 [afs_checkserver]
19627 ? S 0:00 [afs_background]
19628 ? S 0:00 [afs_background]
19630 ? S 0:00 [afs_cachetrim]
configuration files:
#cat /etc/openafs/BosConfig
restarttime 11 0 4 0 0
checkbintime 3 0 5 0 0
bnode simple ptserver 1
parm /usr/libexec/openafs/ptserver
end
bnode simple vlserver 1
parm /usr/libexec/openafs/vlserver
end
bnode fs fs 1
parm /usr/libexec/openafs/fileserver
parm /usr/libexec/openafs/volserver
parm /usr/libexec/openafs/salvager
end
# cat /etc/openafs/bosserver.rxbind
127.0.0.1
# cat /etc/openafs/cacheinfo
/afs:/afs_cache:4500000
# cat /etc/openafs/CellServDB
>asu.aaa.bb #main cell
192.168.1.128 #dali.asu.aaa.bb
# cat /etc/openafs/krb.conf
STA
# cat /etc/openafs/ThisCell
asu.aaa.bb
# cat /etc/openafs/server/CellServDB
>asu.aaa.bb #main cell
192.168.1.128 #dali.asu.aaa.bb
# cat /etc/openafs/server/ThisCell
asu.aaa.bb
What may the mistake be? How can I check it? What is the appropriate order of client initialization (afsd first or aklog first)?
Thanks, ayvango