F33 Silverblue rawhideã§ããŒã«ããã¯ã¹ã䜿çšããå Žåãæ°ããäœæãããããŒã«ããã¯ã¹ãå ¥åãããšã次ã®ãããªãšã©ãŒãçºçããŸã...
/usr/bin/id: cannot find name for group ID 1000
ããŒã«ããã¯ã¹å
ã§ãã³ãã³ããçºè¡ãããšãã¯ãdnfãªã©ã®sudoeræš©éãå¿
èŠã§ã...
sudo dnf install vim-enhanced terminatorã¯ããŠãŒã¶ãŒã«æ¬¡ã®ããã³ããã衚瀺ããŸã...
We trust you have received the usual lecture from the local System
Administrator. It usually boils down to these three things:
#1) Respect the privacy of others.
#2) Think before you type.
#3) With great power comes great responsibility.
次ã«ããŠãŒã¶ãŒãã¹ã¯ãŒããå ¥åãããšããã¹ã¯ãŒãã®è©Šè¡ã«å€±æããŸã...
[sudo] password for ssnow:
Sorry, try again.
[sudo] password for ssnow:
Sorry, try again.
ãã®åé¡ã¯å
ã
https://discussion.fedoraproject.org/t/toolbox-and-root/22123/29ã§å ±åãããŠãããç§ã¯åœåããŠãŒã¶ãŒã·ã¹ãã ãäœããã®æ¹æ³ã§å£ããŠããå¿
èŠããããšèããŠããŸããã ããã¯ç§ãSilverblueã®æ°ããçç®ããŒãžã§ã³ãã€ã³ã¹ããŒã«ãããŸã§ã§ããã
IMOãããŒã«ããã¯ã¹ã³ã³ããã«å
¥ã£ããšãã«æåã«è¡šç€ºãããã¡ãã»ãŒãžã«é¢é£ããŠããå¯èœæ§ããããŸãã ããããããŠãŒã¶ãŒãã³ã³ãããŒã®ã«ãŒããšããŠãããã³ã°ããŠããŸããã
Fedora Workstation32ãšFedoraWorkstation 33 ïŒä»®æ³ãã·ã³äžïŒã§ããã€ãã®ãã¹ããè¡ããF32ã§æ£åžžã«åäœããŠããããšã確èªã§ããŸããããF33ã§ãåãåé¡ãçºçããŸããã
ã ãããããã¯ãFedora 33èªäœã®åé¡ã ãã§ã¯ãªããSilverblueããŒãžã§ã³ã§ãã
ããã€ãã®ãã¹ãã®åŸãç§ã¯ããã€ãã®éãã«æ°ã¥ããŸããïŒ
2.0.2
2.1.0-dev
/etc/group
ãš/etc/shadow
ã¯ç°ãªããŸããFedora 33ã®ããŒã«ããã¯ã¹ã³ã³ãããŒã§ã¯ããŠãŒã¶ãŒã¯ç¬èªã®ã°ã«ãŒããæã£ãŠããããã°ã«ãŒãwheel
ãŸããã
ãŸãããŠãŒã¶ãŒã¯/etc/shadow
ãã¡ã€ã«ã«ãšã³ããªãæã£ãŠãããã root
ãŠãŒã¶ãŒã¯ãã¹ã¯ãŒããããã¯ããŠããŸãã
以äžã®ããã®å·®å/etc/group
ã®Fedora 32ãšFedora 33ãšã®éïŒå®¹åšå
ã®ïŒãã¡ã€ã«ã ãŠãŒã¶ãŒã®ãŠãŒã¶ãŒåã¯vagrant
ïŒ
--- f32-image-f33/group 2020-08-14 19:19:38.734363987 +0000
+++ f33-image-f33/group 2020-08-14 19:17:39.018504713 +0000
@@ -8,7 +8,7 @@
lp:x:7:
mem:x:8:
kmem:x:9:
-wheel:x:10:vagrant
+wheel:x:10:
cdrom:x:11:
mail:x:12:
man:x:15:
@@ -26,4 +26,3 @@
utempter:x:35:
ssh_keys:x:999:
tcpdump:x:72:
-vagrant:x:1000:
/etc/shadow
ã®å·®åïŒ
--- f32-image-f33/shadow 2020-08-14 19:15:25.125242112 +0000
+++ f33-image-f33/shadow 2020-08-14 19:17:11.658920405 +0000
@@ -1,4 +1,4 @@
-root::18488:0:99999:7:::
+root:!locked::0:99999:7:::
bin:*:18473:0:99999:7:::
daemon:*:18473:0:99999:7:::
adm:*:18473:0:99999:7:::
@@ -12,4 +12,3 @@
ftp:*:18473:0:99999:7:::
nobody:*:18473:0:99999:7:::
tcpdump:!!:18481::::::
-vagrant::18488:0:99999:7:::
ããŒã«ããã¯ã¹ã«å ¥ããšãã®ã¡ãã»ãŒãžïŒ/ usr / bin / idïŒã°ã«ãŒãID 1000ã®ååãèŠã€ãããŸããïŒããããã¢ããããªãããšãé€ããŠãåé¡ã¯rawhideïŒF33SBïŒã«ãŸã ååšããŸãã
ãšã©ãŒïŒ/ usr / bin / idïŒã°ã«ãŒãID 1000ã®ååãèŠã€ãããŸããïŒã衚瀺ãããããšã確èªããã®ã§ãfedora-toolbox-33ã€ã¡ãŒãžãåé€ããŠããŒã«ããã¯ã¹ãåäœæããŸãããã sudo
ã³ãã³ãã䜿çšã§ããªããªããŸããã ç§ã¯ä»ç«ã¡åŸçããŠããŸãã
å
æ¥è¡ã£ã調æ»çµæããã©ããŒã¢ãããã sudo
æ©èœãããããšãã§ããŸããã
ïŒããã¯ãã¹ãŠãVMã®Fedora Workstation 33ã«ãããŸãïŒ
[vagrant@ci-node-33 ~]$ toolbox create
Created container: fedora-toolbox-33
Enter with: toolbox enter
toolbox
ã䜿çšããŠã³ã³ããã«å
¥ããã³ãã³ãsudo
ãè©ŠããŠãã ããã⬢[vagrant<strong i="18">@toolbox</strong> ~]$ sudo ls
We trust you have received the usual lecture from the local System
Administrator. It usually boils down to these three things:
#1) Respect the privacy of others.
#2) Think before you type.
#3) With great power comes great responsibility.
[sudo] password for vagrant:
倱æããŸãïŒ ïŒæ®å¿µã ã£ãïŒ
podman
ã³ã³ããã«å
¥ããŸãïŒ[vagrant@ci-node-33 ~]$ podman exec -it fedora-toolbox-33 /bin/bash
shadow
ãã¡ã€ã«ã«ãªãã£ãããïŒåã®ã³ã¡ã³ãã§ç€ºããããã«ïŒãåãã³ãã³ãã䜿çšããŠãŠãŒã¶ãŒãåé€ããŠåäœæãã toolbox
ãå®è¡ãããã©ã¡ãŒã¿ãŒïŒ init-container
ã³ãã³ãã§ïŒïŒ# Delete the user
⬢[root<strong i="32">@toolbox</strong> /]# userdel --force vagrant
# Create the user
⬢[root<strong i="33">@toolbox</strong> /]# useradd --home-dir /home/vagrant/ --no-create-home --shell /bin/bash --uid 1000 --groups wheel vagrant
# Check the user groups (this time are OK)
⬢[root<strong i="34">@toolbox</strong> /]# id vagrant
uid=1000(vagrant) gid=1000(vagrant) groups=1000(vagrant),10(wheel)
# Delete the user password
⬢[root<strong i="35">@toolbox</strong> /]# passwd --delete vagrant
Removing password for user vagrant.
passwd: Note: deleting a password also unlocks the password.
passwd: Success
# Check that the user is at the file /etc/shadow (this is important for PAM authentication and sudo)
⬢[root<strong i="36">@toolbox</strong> /]# grep vagrant /etc/shadow
vagrant::18493:0:99999:7:::
# Logout from the container
⬢[root<strong i="37">@toolbox</strong> /]# exit
[vagrant@ci-node-33 ~]$
toolbox
ã䜿çšããŠã³ã³ããã«å
¥ãã sudo
ã³ãã³ããè©ŠããŠãã ããã[vagrant@ci-node-33 ~]$ toolbox enter
⬢[vagrant<strong i="44">@toolbox</strong> vagrant]$ sudo id
We trust you have received the usual lecture from the local System
Administrator. It usually boils down to these three things:
#1) Respect the privacy of others.
#2) Think before you type.
#3) With great power comes great responsibility.
uid=0(root) gid=0(root) groups=0(root)
ä»ããã¯åäœããŸãïŒ ïŒç¬é¡ïŒ
äœããã§ããŠãŒã¶ãŒçææã«ééã£ãŠè¡ãããã init-container
ïŒã©ããã®åšãã®ã³ãã³ããã¡ãïŒã
ãããå ±åããç¯äººãèŠã€ããããšããŠãããŠããããšãïŒ Rawhideã®Podmanã¯ãã³ã³ãããäœæãããšãã«--userns=keep-id
ãªãã·ã§ã³ãåŠçããæ¹æ³ãå€æŽããããã§ãã ããã§ããŠãŒã¶ãŒãšã°ã«ãŒããäœæãããŸãã æåã®åé¡ã¯ãæ£ããGUIDãããã«ãããããããŠãŒã¶ãŒã°ã«ãŒãã«ååããªãããããã®æ©èœèªäœã«é¢é£ããŠããããã§ãïŒã¢ããã¹ããªãŒã ïŒhttpsïŒ//github.com/containers/podman/issues/7389ãå ±åããŸããïŒã
ä»ã®éšåïŒsudoã®ãã¹ã¯ãŒããå
¥åããå¿
èŠãããïŒã¯ã @ juanjeã«ãã£ãŠãªãå Žåã«ã®ã¿ããªã¬ãŒããããšããäºå®ã«ãã£ãŠåŒãèµ·ããããŸãã ãã®ã³ãŒãã¯ããŠãŒã¶ãŒã®äœæãæ£ããã°ã«ãŒããžã®è¿œå ãããã³ãŠãŒã¶ãŒãšã«ãŒãã®ãã¹ã¯ãŒãã®åé€ãåŠçããŸãã init-container
ã³ãã³ãã®ã³ãŒãã¯ããã®ãããªå Žåã§ãåŒã³åºãããããã«å°ãåæ§ç¯ããå¿
èŠããããšæããŸãã
Rawhideã®Podmanãéãå€ããããã§ã
äœææã«--userns = keep-idãªãã·ã§ã³ãåŠçããŸã
ã³ã³ããã ããã§ããŠãŒã¶ãŒãšã°ã«ãŒããäœæãããŸãã NS
æåã®åé¡ã¯ãã®æ©èœã«é¢é£ããŠããããã§ã
ãŠãŒã¶ãŒã°ã«ãŒãã«ã¯ååããªããããããèªäœ
æ£ããGUIDãããã«ããããããïŒç§ã¯ãããã¢ããã¹ããªãŒã ã«å ±åããŸããïŒ
ã³ã³ãã/ podmanïŒ7389ïŒã
å®éã«ã¯ã°ã«ãŒããäœæããŠããªãããã§ãã ããã§ãªããã°ããªãã¯ååãæã£ãŠããã§ãããã ãŠãŒã¶ãŒãäœæããã ãã§ãã
ããŒã ãã£ã¬ã¯ããªãäœæããŠããã®ã§ã¯ãªãã§ããããã ç§ã¯ããããªãããšãæã¿ãŸãã
https://github.com/containers/podman/pull/6829ã¯ãåé¡ã®ããPodmanã®å€æŽã§ããã
ããã¯ãfedora- toolboxïŒ f32imageã䜿çšããŠSilverblue32ã§çºçããŠã
ããŒã«ããã¯ã¹ã®ããŒãžã§ã³ïŒ0.0.93
podmanããŒãžã§ã³ïŒ2.0.5
ããã¯ãfedora- toolboxïŒ f32imageã䜿çšããŠSilverblue32ã§çºçããŠã
ããŒã«ããã¯ã¹ã®ããŒãžã§ã³ïŒ0.0.93
podmanããŒãžã§ã³ïŒ2.0.5
ãããF32ã®æ°ããããŒã«ããã¯ã¹ã€ã³ã¹ã¿ã³ã¹ã§Silverblue32ã«åé¡ããããŸãã å€ãããŒã«ããã¯ã¹ã€ã³ã¹ã¿ã³ã¹ã§ã¯åŒãç¶ãæ©èœããŸãããæ°ããäœæã§ã¯æ©èœããŸããã ããã§ãããããä¿®æ£ãããããã«è¡ãããããšã¯äœã§ããF32ã§ãããå£ããŸããã
ããŒã«ããã¯ã¹0.0.93ããã³podman2.0.5ã䜿çšããFedora32SBã§ãã®åé¡ã確èªã§ããŸãã
ããã¯Fedoraã®ã¿ã«é¢é£ãããã®ã§ããéå®ããããã®ã§ããããŸãããArchwithtoolbox0.0.94ãšpodman2.0.5ã§ãåãåé¡ãçºçããŸãã
ããã¯ãfedora- toolboxïŒ f32imageã䜿çšããŠSilverblue32ã§çºçããŠã
ããŒã«ããã¯ã¹ã®ããŒãžã§ã³ïŒ0.0.93
podmanããŒãžã§ã³ïŒ2.0.5
ããã¯ãPodman2.0.5ãFedora32ã«çµã¿èŸŒãŸããããã§ãã
ãã®ãããªååž°ããã£ããããããã«ãpodmanãŸãã¯toolboxã®ãã¹ããè¿œå ããããšã¯å¯èœã§ããïŒ Silverblueã¯ãToolboxã®äœ¿çšãæ¬åœã«æšå¥šããŠããŸãããã®ããã«ã¯ãToolboxã¯gnome-terminalèªäœãšåããããä¿¡é Œã§ããå¿ èŠããããŸãã
podmanãŸãã¯toolboxã®ãã¹ããã«è¿œå ããããšã¯å¯èœã§ããïŒ
ãã®ãããªååž°ããã£ããããŸããïŒ ã·ã«ããŒãã«ãŒã¯æ¬åœã«å±ãŸããŸã
1ã€ã¯Toolboxã䜿çšããããã®ãã®ã§ããããã®ããã«ã¯Toolboxãå¿ èŠã§ãã
gnome-terminalèªäœãšåããããä¿¡é Œã§ããããšã
PodmanããŒã ã«äžäœäºææ§ãæ°ã«ãããŠãããããšããŸãã¯äœããã®å€æŽã«ãã£ãŠToolboxãå£ãããã©ããã確èªããããšã¯ãé©ãã»ã©å°é£ãªæŠãã§ããããšã蚌æãããŠããŸãã @HarryMichalã¯äžè²«ããŠç Žæã远跡ãããã¹ããæšé²ããŠããŸãããé²æã¯é ãã§ãã
podmanãŸãã¯toolboxã®ãã¹ããã«è¿œå ããããšã¯å¯èœã§ããïŒ
ãã®ãããªååž°ããã£ããããŸããïŒ ã·ã«ããŒãã«ãŒã¯æ¬åœã«å±ãŸããŸã
1ã€ã¯Toolboxã䜿çšããããã®ãã®ã§ããããã®ããã«ã¯Toolboxãå¿ èŠã§ãã
gnome-terminalèªäœãšåããããä¿¡é Œã§ããããšãPodmanããŒã ã«äžäœäºææ§ãæ°ã«ãããŠãããããšããŸãã¯äœããã®å€æŽã«ãã£ãŠToolboxãå£ãããã©ããã確èªããããšã¯ãé©ãã»ã©å°é£ãªæŠãã§ããããšã蚌æãããŠããŸãã @HarryMichalã¯äžè²«ããŠç Žæã远跡ãããã¹ããæšé²ããŠããŸãããé²æã¯é ãã§ãã
ãã®åé¡ãåé¿ãã1ã€ã®æ¹æ³ã¯ãSilverblueãpodmançšã«åå¥ã®rpmãªããžããªãæã¡ãããŒã«ããã¯ã¹ã«å¯Ÿããååž°ãã¹ãã«åæ ŒããŠããæŽæ°ã®ã¿ãèš±å¯ããããšã ãšæããŸãã
f32ã¢ããââããŒãã¯ãã€å ¥æã§ããã®ã§ããïŒ
æ©ã3ã€ã®æ£ã®ã«ã«ãã«å°éããŸã:)
èªåã§è¿œè·¡ã§ããŸã-> https://bodhi.fedoraproject.org/updates/FEDORA-2020-306addaac0
ãã®ã«ã«ãã·ã¹ãã ã¯ç§ã«ãšã£ãŠæ°ãããã®ã§ãããã©ã®ããã«æ©èœããŸããïŒ
è©æã·ã¹ãã ã«ãã°ã€ã³ããŠã¢ããããŒãã«æ祚ããã«ã¯ãFAS IDïŒ Fedoraã¢ã«ãŠã³ãIDïŒãå¿ èŠã§ãã https://fedoraproject.org/wiki/Bodhi#Karmaãåç §ããŠ
SilverBlueã§ãæå®ãããããã±ãŒãžã®ã¿ããã«ããŠãã¹ãã§ããŸããïŒ ããã±ãŒãžããã¹ãããã«ã¯ããªããŒã¹ããå¿ èŠãããããã§ãã åºæ¬ã·ã¹ãã ã«è§Šããããšãªããããã±ãŒãžïŒå¯èœã§ããã°ã³ã³ãããå«ãïŒããã¹ãããæ¹æ³ã¯ã©ãã§ãåé¡ãããŸããã
SilverBlueã§ãæå®ãããããã±ãŒãžã®ã¿ããã«ããŠãã¹ãã§ããŸããïŒ
ããã±ãŒãžããã¹ãããã«ã¯ããªããŒã¹ããå¿ èŠãããããã§ãã
ããã±ãŒãžããã¹ãããä»»æã®æ¹æ³ïŒã³ã³ãããå«ãã
å¯èœã§ããã°ïŒç§ã®ããŒã¹ã·ã¹ãã ã«è§Šããå¿ èŠãªãã§å€§äžå€«ã§ãã
rpm-ostree override replace
ãšrpm-ostree override reset
ã¯ããªãã®åéã§ãã
æ®å¿µãªãããã³ã³ããå ã§PodmanãToolboxãªã©ããã¹ãããããšã¯ã§ããŸããã
åé¿ç@juanjeãã©ããããããšã
# Create the user
⬢[root<strong i="7">@toolbox</strong> /]# useradd --home-dir /home/vagrant/ --no-create-home --shell /bin/bash --uid 1000 --groups wheel vagrant
Silverblueãã¹ãã§ãŠãŒã¶ãŒã«å ããå¯äžã®å€æŽã¯ãããŒã ãã£ã¬ã¯ããªã/var/home/<user>
ãããåéããå¿
èŠããããŸããïŒ ééããªããŸã 0.0.95ã§èµ·ãã£ãŠããŸãã toolbox create
ã¯ããŠãŒã¶ãŒãã²ã¹ãã®/ etc / passwdã«å
¥ããŠããããã§ããã /etc/group
ãšã³ããªãã³ããŒããããšãå¿ããŠããŸãã ã³ã³ããå
ã®echo 'martin:x:1000' | sudo tee -a /etc/group
ãããªãã®ããããä¿®æ£ããŸãã
https://github.com/containers/toolbox/issues/549#issuecomment -685740230ã«åãçµéšãèšé²ããŸãã-ããã¯ïŒéåžžïŒsudoãå£ããªãã®ã§ãããã«ã³ã¡ã³ãããŸããã
ééããªããŸã 0.0.95ã§èµ·ãã£ãŠããŸãã ããŒã«ããã¯ã¹ã®äœæã¯
ãŠãŒã¶ãŒãã²ã¹ãã®/ etc / passwdã«å ¥ããŸãããå¿ããŠããŸããŸã
/ etc / groupãšã³ããªãã³ããŒããŸãã äœãã®ãããªãã®
echo'martinïŒx ïŒ1000 '| ã³ã³ããå ã®sudotee -a / etc / groupãä¿®æ£ããŸãã
ãŸã äœãèµ·ãã£ãŠããã®ã§ããïŒ ã³ã³ããã«å ¥ããšãã«ãã®ãšã©ãŒã衚瀺ãããããšãæå³ããŸãã
/usr/bin/id: cannot find name for group ID 1000
ããã¯https://github.com/containers/podman/issues/7389ã§ã
/etc/login.defs
ãããªãã®ãæ£ããèæ
®ããªããããToolboxèªäœã«åæ§ã®åé¿çãè¿œå ããããšãé¿ããŸããã
ãããšãç§ã¯èª€è§£ããŸãããïŒ
@debarshiray ïŒpodmanã®åé¡ãã€ã³ã¿ãŒãããããšãïŒ ããã¯ç¢ºãã«æ ¹æ¬çãªåå ã®ããã«èŠããŸãã ãããŸã§ã®éãäžèšã®åé¿çã¯ç°¡åã§ãã
æãåèã«ãªãã³ã¡ã³ã
ãããåéããå¿ èŠããããŸããïŒ ééããªããŸã 0.0.95ã§èµ·ãã£ãŠããŸãã
toolbox create
ã¯ããŠãŒã¶ãŒãã²ã¹ãã®/ etc / passwdã«å ¥ããŠããããã§ããã/etc/group
ãšã³ããªãã³ããŒããããšãå¿ããŠããŸãã ã³ã³ããå ã®echo 'martin:x:1000' | sudo tee -a /etc/group
ãããªãã®ããããä¿®æ£ããŸãã