IRRd-Discuss
Date Prev | Date Next |
Date Index |
Thread Index |
Author Index |
Historical
RE: Compiling IRRd 2.2.3
- From: Olmsted, Brian
- Date: Mon Mar 07 08:55:09 2005
That should have been "/chroot-jail/irrd" instead of "/chroot-jain/irrd" Typo ;)
-----Original Message-----
From: Olmsted, Brian
Sent: Monday, March 07, 2005 8:54 AM
To: 'Javier Bermejo'
Cc: irrd-discuss@merit.edu; Rasheeduddin, Tariq; Islam, Saiful; Olmsted,
Brian
Subject: RE: Compiling IRRd 2.2.3
Thanks I found out what the problem was by using truss and found I was missing the /usr/.../TIMEZONE (can't remember exact path) file and /usr/lib/libresolv* libraries, among a few others.
Fot others that wish to do this, you can do "truss chroot /chroot-jain/irrd /usr/local/sbin/irrd ..." and see where it stops and copy the missing libraries (from a patched system mind you!) into the chroot and away you go ;) (There's a little more to it then that but I can point others in the proper direction if need be)
-----Original Message-----
From: Javier Bermejo [mailto:jbermejo@dit.upm.es]
Sent: Monday, March 07, 2005 4:21 AM
To: Olmsted, Brian
Cc: irrd-discuss@merit.edu; Rasheeduddin, Tariq; Islam, Saiful
Subject: Re: Compiling IRRd 2.2.3
Hello Brian,
I'm glad to hear you it's working.
I don't know too much about chroot enviroments, I have only used them to
install some Linux distributions such Gentoo or similar.
Have you tried to enter the chroot enviroment and ping directly
whois.radb.net?
> chroot /chroot-jail/irrd/
> ping whois.radb.net
If ping doesn't answer, it looks a network configuration problem. I suppose
that your system where you are doing the chroot has connectivity to Internet.
To distinguish if the problem is a dns lookup problem or a network problem you
can try to ping the IPv4 address from whois.radb.net (in your chroot
enviroment)
> ping 198.108.0.18
If this ping works the problem is in the DNS configuration.
I'm sorry but I don't know any links that can help you with this problem.
I hope this information could be usefull for you.
Best regards
Javier Bermejo
El Jueves, 3 de Marzo de 2005 16:18, Olmsted, Brian escribió:
> Thanks Javier, that seemed to do the trick by downgrading the flex version
> to 2.5.4a that was up on SunFreeware from the 2.5.31 version that is up
> there now.
>
> Here's the last few lines where things are linked together fine now.
> -----------------------
> Linking: gcc call_pipeline.o auth.o pgpchk.o mailchk.o main.o comdata.o
> util.o notifyif.o synchkif.o trans_list.o ../hdr_comm/libhdrs.a
> ../irr_rpsl_check/librpslchk.a ../irr_notify/libnfy.a
> ../irrd_ops/libirrd_ops.a ../compat/libcompat.a -o irr_rpsl_submit gcc
> call_pipeline.o auth.o pgpchk.o mailchk.o main.o comdata.o util.o
> notifyif.o synchkif.o trans_list.o ../hdr_comm/libhdrs.a
> ../irr_rpsl_check/librpslchk.a ../irr_notify/libnfy.a
> ../irrd_ops/libirrd_ops.a ../compat/libcompat.a -o irr_rpsl_submit -lsocket
> -lnsl -lpthread -lcrypt -L../../lib/ make[3]: Leaving directory
> `/export/home/olm8980/source/IDC/irrd/irrd2.2.3/src/programs/irr_rpsl_submi
>t' make[2]: Leaving directory
> `/export/home/olm8980/source/IDC/irrd/irrd2.2.3/src/programs' make[1]:
> Leaving directory `/export/home/olm8980/source/IDC/irrd/irrd2.2.3/src'
> [olm8980@t1000 src]%
> -----------------------
>
>
> Now, I just have to see if I can find an easy way to setup IRRd in a
> chroot/jail cell for improved security, etc. Have you seen any links to
> this around? I'm following a process similar for another program. At this
> point I'm having problems with it trying to look up whois.radb.net even
> though I have a resolv.conf and the NSS libraries in the chroot.
>
> -----------------------
> root@t1000# chroot /chroot-jail/irrd /usr/local/sbin/irrd -f
> /usr/local/etc/irrd.conf -l irrd -g irrd -u -v Mar 3 15:15:52 [1] UII
> command !
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command uii_port %d
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command irr_directory %s
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command irr_port %d
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command irr_mirror_interval %d
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command !
> Mar 3 15:15:52 [1] UII command irr_database %s mirror_host %s %d
> Mar 3 15:15:52 [1] IRRD CONFIG radb mirror
> Mar 3 15:15:52 [1] IRRD ** Unknown error while looking up IP address for
> whois.radb.net ** Mar 3 15:15:52 [1] IRRD CONFIG Error -- could not
> resolve whois.radb.net Mar 3 15:15:52 [1] *ERROR* IRRD CONFIG ERROR at
> line 31
> Mar 3 15:15:52 [1] irr_database radb mirror whois.radb.net 43
> root@t1000#
>
> root@t1000# ls -l /chroot-jail/irrd/etc/resolv.conf
> -rw-r--r-- 1 root other 80 Feb 7 2004
> /chroot-jail/irrd/etc/resolv.conf root@t1000#
>
> root@t1000# ls -l /chroot-jail/irrd/etc/nsswitch.conf
> -rw-r--r-- 1 root sys 784 Feb 7 2004
> /chroot-jail/irrd/etc/nsswitch.conf root@t1000# ls -l
> /chroot-jail/irrd/usr/lib/nss*
> -rwxr-xr-x 1 root bin 26228 Mar 16 2000
> /chroot-jail/irrd/usr/lib/nss_compat.so.1 -rwxr-xr-x 1 root bin
> 24540 Jul 13 2004 /chroot-jail/irrd/usr/lib/nss_dns.so.1 -rwxr-xr-x 1
> root bin 44836 Dec 16 17:42
> /chroot-jail/irrd/usr/lib/nss_files.so.1 -rwxr-xr-x 1 root bin
> 91432 Dec 16 17:42 /chroot-jail/irrd/usr/lib/nss_ldap.so.1 -rwxr-xr-x 1
> root bin 46180 Dec 16 17:42
> /chroot-jail/irrd/usr/lib/nss_nis.so.1 -rwxr-xr-x 1 root bin
> 54900 Dec 16 17:42 /chroot-jail/irrd/usr/lib/nss_nisplus.so.1 -rwxr-xr-x
> 1 root bin 13376 Jan 5 2000
> /chroot-jail/irrd/usr/lib/nss_user.so.1 -rwxr-xr-x 1 root bin
> 14564 Jan 5 2000 /chroot-jail/irrd/usr/lib/nss_xfn.so.1 root@t1000#
> -----------------------
>
>
>
> -----Original Message-----
> From: Javier Bermejo [mailto:jbermejo@dit.upm.es]
> Sent: Thursday, March 03, 2005 4:09 AM
> To: Olmsted, Brian
> Cc: irrd-discuss@merit.edu
> Subject: Re: Compiling IRRd 2.2.3
>
>
> Hello Brian,
>
> I had the same problem until I downgraded the version of flex used in the
> system to compile IRRD.
>
> You can see in your log that rpslcheck is never compiled, this is why later
> you don't find librpslchk.a
>
> To solve the problem, I have tested that using flex-2.5.27 or previous
> versions it compiles, but not using newer versions.
>
> I hope this could help you.
>
> Best regards
> Javier Bermejo
>
> El Miércoles, 2 de Marzo de 2005 22:11, Olmsted, Brian escribió:
> > > /usr/local/bin/flex rpsl.fl
> > > gcc -g -O2 -Wall -Wno-char-subscripts -DHAVE_CONFIG_H
> > > -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DFUNCPROTO -I../../include
> > > -c lex.yy.c rpsl.fl: In function `copy_line':
> > > rpsl.fl:911: error: `yytext_ptr' undeclared (first use in this
> > > function) rpsl.fl:911: error: (Each undeclared identifier is reported
> > > only once rpsl.fl:911: error: for each function it appears in.)
> > > rpsl.fl:914: warning: implicit declaration of function
> > > `yy_set_bol' make[3]: *** [lex.yy.o] Error 1
|
