mounting DFS filesystem with remote shares in it on Arch Linux

I have laptop joined to domain AAA. Have two DFS namespace servers which are also AD DC with Win Server 2012 R2. NAS is Synology server with CIFS enabled/domain joined.

Servers:

  • dc1.domain1.local – ip 10.8.0.3
  • dc2.domain1.local – ip 10.8.0.27
  • nas1.domain1.local – ip 10.8.0.7
  • laptop.domain1.local – 10.91.0.2

All setup was working until recently. (don’t know what happened, kernel upgrade? or Windows Update).

[sssd] domains = domain1.local config_file_version = 2 services = nss, pam  [domain/domain1.local] ad_domain = domain1.local krb5_realm = DOMAIN1.LOCAL realmd_tags = manages-system joined-with-adcli cache_credentials = True enumerate = True id_provider = ad default_shell = /bin/bash fallback_homedir = /home/%d/%u krb5_lifetime = 1h krb5_renewable_lifetime = 1d krb5_renew_interval = 60s ldap_id_mapping = True krb5_store_password_if_offline = True 
includedir /var/lib/sss/pubconf/krb5.include.d/ [logging]  default = FILE:/var/log/krb5libs.log  [libdefaults]  dns_lookup_realm = true  dns_lookup_kdc = true  ticket_lifetime = 24h  renew_lifetime = 7d  forwardable = true  clockskew = 300  rdns = false  default_ccache_name = KEYRING:persistent:%{uid} 

/etc/request-key.d/cifs.spnego.conf

create  cifs.spnego    * * /usr/bin/cifs.upcall -t %k 

I’m trying to mount share using

mount -t cifs -o sec=krb5,user=$  USER,cruid=$  USER,uid=$  USER //dc1.domain1.local/namespace1 /mnt/mp1 

I can go to /mnt/mp1. But I can’t access anything behind like //dc1.domain1.local/namespace1/share1 which is on Synology server (/mnt/mp1/share1).

Logs on laptop during mounting:

[   54.894236] No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3 (or SMB2.1) specify vers=1.0 on mount.           [   55.036042] CIFS VFS: Autodisabling the use of server inode numbers on new server. [   55.036046] CIFS VFS: The server doesn't seem to support them properly or the files might be on different servers (DFS). [   55.036049] CIFS VFS: Hardlinks will not be recognized on this mount. Consider mounting with the "noserverino" option to silence this message. 

When entering /mnt/mp1/share1 I got:

mar 20 08:05:57 LAPTOP.DOMAIN1.LOCAL cifs.upcall[14414]: key description: cifs.spnego;0;0;39010000;ver=0x2;host=DC1.domain.local;ip4=10.8.0.7;sec=krb5;uid=0x460c22f4;creduid=0x460c22f4;user=admin;pid=0x923                                                     mar 20 08:05:57 LAPTOP.DOMAIN1.LOCAL cifs.upcall[14414]: ver=2 mar 20 08:05:57 LAPTOP.DOMAIN1.LOCAL cifs.upcall[14414]: host=DC1.domain1.local mar 20 08:05:57 LAPTOP.DOMAIN1.LOCAL cifs.upcall[14414]: ip=10.8.0.7 mar 20 08:05:57 LAPTOP.DOMAIN1.LOCAL cifs.upcall[14414]: sec=1 mar 20 08:05:57 LAPTOP.DOMAIN1.LOCAL cifs.upcall[14414]: uid=1175200500 mar 20 08:05:57 LAPTOP.DOMAIN1.LOCAL cifs.upcall[14414]: creduid=1175200500 mar 20 08:05:57 LAPTOP.DOMAIN1.LOCAL cifs.upcall[14414]: user=admin mar 20 08:05:57 LAPTOP.DOMAIN1.LOCAL cifs.upcall[14414]: pid=2339 mar 20 08:05:57 LAPTOP.DOMAIN1.LOCAL cifs.upcall[14414]: get_cachename_from_process_env: pathname=/proc/2339/environ mar 20 08:05:57 LAPTOP.DOMAIN1.LOCAL cifs.upcall[14414]: get_cachename_from_process_env: cachename = KEYRING:persistent:1175200500 mar 20 08:05:57 LAPTOP.DOMAIN1.LOCAL cifs.upcall[14414]: get_existing_cc: default ccache is KEYRING:persistent:1175200500:krb_ccache_s3dU4cx                                                                                                                               mar 20 08:05:57 LAPTOP.DOMAIN1.LOCAL cifs.upcall[14414]: handle_krb5_mech: getting service ticket for server.poznan.tbhydro.net mar 20 08:05:57 LAPTOP.DOMAIN1.LOCAL cifs.upcall[14414]: handle_krb5_mech: obtained service ticket mar 20 08:05:57 LAPTOP.DOMAIN1.LOCAL cifs.upcall[14414]: Exit status 0 

Notice that it is asking for ticket for different host that it is resolved for IP address. (10.8.0.7 is host nas1.domain1.local).

And on nas1.domain1.local samba logs:

../source3/lib/access.c:338: [2019/03/20 08:08:50.530826, all 3, pid=26839] allow_access   Allowed connection from 10.91.0.2 (10.91.0.2) ../source3/smbd/oplock.c:1323: [2019/03/20 08:08:50.530929, locking 3, pid=26839] init_oplocks   init_oplocks: initializing messages. ../source3/smbd/process.c:1975: [2019/03/20 08:08:50.530968, all 3, pid=26839] process_smb   Transaction 0 of length 196 (0 toread) ../source3/smbd/smb2_negprot.c:281: [2019/03/20 08:08:50.531044, all 3, pid=26839] smbd_smb2_request_process_negprot   Selected protocol SMB3_11 ../source3/auth/auth_generic.c:246: [2019/03/20 08:08:50.531084, all 3, pid=26839] auth_generic_prepare   make_auth_context_subsystem [NT_STATUS_OK] ../source3/auth/auth_generic.c:377: [2019/03/20 08:08:50.531400, all 3, pid=26839] auth_generic_prepare   gensec_set_remote_address: [NT_STATUS_OK] ../source3/smbd/smb2_server.c:2687: [2019/03/20 08:08:50.558318, all 3, pid=26839] smbd_smb2_request_dispatch   SMB2: cmd=SMB2_OP_NEGPROT [NT_STATUS_OK] ../source3/smbd/smb2_sesssetup.c:811: [2019/03/20 08:08:50.572723, all 3, pid=26839] smbd_smb2_session_setup_send   in_session_id 0 ../source3/auth/auth_generic.c:246: [2019/03/20 08:08:50.572850, all 3, pid=26839] auth_generic_prepare   make_auth_context_subsystem [NT_STATUS_OK] ../source3/auth/auth_generic.c:377: [2019/03/20 08:08:50.572870, all 3, pid=26839] auth_generic_prepare   gensec_set_remote_address: [NT_STATUS_OK] ../source3/smbd/smb2_sesssetup.c:866: [2019/03/20 08:08:50.572877, all 3, pid=26839] smbd_smb2_session_setup_send   auth_generic_prepare [NT_STATUS_OK] ../source3/smbd/smb2_server.c:2687: [2019/03/20 08:08:50.572918, all 3, pid=26839] smbd_smb2_request_dispatch   SMB2: cmd=SMB2_OP_SESSSETUP [NT_STATUS_OK] ../source3/librpc/crypto/gse.c:503: [2019/03/20 08:08:50.599304, all 1, pid=26839] gse_get_server_auth_token   gss_accept_sec_context failed with [ Miscellaneous failure (see text): Failed to find cifs/dc1.domain1.local@DOMAIN1.LOCAL(kvno 76) in keytab MEMORY:cifs_srv_keytab (aes256-cts-hmac-sha1-96)] ../auth/gensec/spnego.c:544: [2019/03/20 08:08:50.599342, all 1, pid=26839] gensec_spnego_parse_negTokenInit   SPNEGO(gse_krb5) NEG_TOKEN_INIT failed: NT_STATUS_LOGON_FAILURE ../auth/gensec/spnego.c:719: [2019/03/20 08:08:50.599360, all 2, pid=26839] gensec_spnego_server_negTokenTarg   SPNEGO login failed: NT_STATUS_LOGON_FAILURE ../auth/gensec/gensec.c:476: [2019/03/20 08:08:50.599370, all 3, pid=26839] gensec_update_async_trigger   gensec_update [NT_STATUS_LOGON_FAILURE] ../source3/smbd/smb2_server.c:3111: [2019/03/20 08:08:50.599393, all 3, pid=26839] smbd_smb2_request_error_ex   smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_LOGON_FAILURE] || at ../source3/smbd/smb2_sesssetup.c:136 

Any idea where to look for answer for this?

Running jdk 8 in docker suddenly broken on arch linux with “unable to allocate file descriptor table – out of memory”

I am trying to restart my docker containers after upgrading my system yesterday. I am running an sbt (scala build tool) container. Unfortunately, it stopped working with the following error

library initialization failed - unable to allocate file descriptor table - out of memory/usr/share/sbt/bin/sbt-launch-lib.bash: line 46:    76 Aborted                 (core dumped) "$  @" 

I then found out that any java application I have dockerized stopped working. So I tried running a simple tomcat. The result is below (clipped at the bottom because it’s hundreds of lines of [Too many errors, abort]

docker run -it --rm tomcat:8.0                                                                                                                                              Using CATALINA_BASE:   /usr/local/tomcat Using CATALINA_HOME:   /usr/local/tomcat Using CATALINA_TMPDIR: /usr/local/tomcat/temp Using JRE_HOME:        /docker-java-home/jre Using CLASSPATH:       /usr/local/tomcat/bin/bootstrap.jar:/usr/local/tomcat/bin/tomcat-juli.jar library initialization failed - unable to allocate file descriptor table - out of memory# # A fatal error has been detected by the Java Runtime Environment: # #  SIGSEGV (0xb) at pc=0x00007fb6b7b3e532, pid=1, tid=140422755079936 # # JRE version: OpenJDK Runtime Environment (7.0_181-b01) (build 1.7.0_181-b01) # Java VM: OpenJDK 64-Bit Server VM (24.181-b01 mixed mode linux-amd64 compressed oops) # Derivative: IcedTea 2.6.14 # Distribution: Debian GNU/Linux 8.10 (jessie), package 7u181-2.6.14-1~deb8u1 # Problematic frame: # C  [libc.so.6+0x36532]  abort+0x232 # # Core dump written. Default location: /usr/local/tomcat/core or core.1 # # An error report file with more information is saved as: # /usr/local/tomcat/hs_err_pid1.log # # If you would like to submit a bug report, please include # instructions on how to reproduce the bug and visit: #   http://icedtea.classpath.org/bugzilla # The crash happened outside the Java Virtual Machine in native code. # See problematic frame for where to report the bug. # 

Metasploit – Installation problems on arch linux

I am trying to get metasploit up and running on my arch based linux system (Manjaro). While this might sound trivial I am having much more trouble than I expected. I pulled the latest version from the AUR using yay metasploit. It “installed” successfully. However I can’t seem to start it. There is no command “metasploit” or “msf” … What am I supposed to do? I checked the github page of metasploit which has installer scripts, however these don’t work on arch linux.

Resolution in Arch (using VMware) resetting to default after a blink

I have seen this problem in a few places on the internet but nobody gave a clear solution or at least identified the possible problem.

I have an Arch installed in VMware virtual machine. It has been working perfectly fine until today, when I powered it on and saw that the resolution had been reset to 800×600. This shouldn’t happen since I have some commands in .xprofile to add the resolution I want (following https://wiki.archlinux.org/index.php/Xrandr#Adding_undetected_resolutions, since said resolution isn’t detected by default). I initially thought it was a problem with xrandr or something, but I tried to manually set any other available resolution manually through the display settings and none of them worked. Instead, the screen appeared with the correct resolution for a moment, then automatically turned back to the 800×600 resolution.

Any ideas of what could be happening? I’ll provide all needed information.

Arch linux not booting in QEMU

I am using QEMU to install arch linux on a 5G raw img disk and everytime and install it and reboot it boots back into arch but when i close qemu and try boot back into arch i am not prompted with the grub boot but it says WARN: No MBR magic, treating disk as raw. Booting… So i am assuming its only using the RAM and not actually writing anything to the drive. I also thought it was the disk type i was using as i was using qcow2 at first but got the same error so i switched to raw and im still getting the same error. It will say booing and do nothing else forever

This is my command to start QEMU:

.\qemu-system-x86_64 -drive file=archlinux.img,index=0,media=disk,format=raw -cdrom archlinux.iso -m 3G -snapshot -cpu core2duo -smp 2 

I am installing arch following this tutorial:

https://www.howtoforge.com/tutorial/install-arch-linux-on-virtualbox/ 

I am not sure if im installing grub properly or not ive just been following the tutorial

What is the most basic Arch Linux configuration needed to run Drupal?

Till now I used to run Drupal CMS units on Debian/Ubuntu machines but the rolling release upgrade-model for Arch Linux attracts me and I desire to run Drupal (8.x.x) on Arch Linux but have no idea how to configure it to support Drupal.

Here is an example to how I configure a Debian for Drupal with Ansible.

How would you configure an Arch Linux for Drupal?

---  - hosts: all    become: yes   become_user: root   tasks:      - name: Update apt package-indexes cache       apt:         update_cache=yes      - name: Install external basics         apt: state=latest           with-items:             - ufw             - sshguard             - unattended-upgrades             - wget             - curl             - git             - zip             - unzip             - tree      - name: Setup firewall with ufw       ufw:         rule: allow         port: 22,25,80,443      - name: Establish a LAPMS (Linux, Apache, PHP, MySQL, SSMTP) server environment         apt: state=latest           with-items:             - apache2 # Web server             - python-certbot-apache             - php             - php-mysql # MySQL server              - php-cli             - php-curl             - php-mbstring             - php-mcrypt             - php-gd             - ssmtp # Email server             - phpmyadmin      - name: Install Composer       get_url:         url: https://getcomposer.org/installer         dest: /tmp/composer-setup.php       command: php /tmp/composer-setup.php --install-dir=/usr/local/bin --filename=composer      - name: Configure PHP variables       shell: |         cat <<-EOF > /etc/php*/conf.d/local.ini           upload_max_filesize = 2000M           post_max_size = 2000M         EOF       args:           executable: /bin/bash 

The Lack of MBR and MAR Notation in Comp. Sys. Arch, Morris Mano

there’s something that confuses me, in Computer System Architecture(Morris Mano), Chapter 5, the book uses a simple microprocessor which has the following instruction cycle:

e.g. LDA Operation:

AR<—PC (T0)

IR<—M[AR] (T1)

PC<—PC+1 (T1)

Decode (T2)

DR<—M[AR] (T3)

AC<—DR (T4)

But the lack of notation MBR and MAR confuses me. In my opinion, it should be like this:

MAR<–PC(T0)

MBR<—M(MAR](T1)

Decode(IR<—MBR)(T2)

MBR<–M(MAR](T3)

AC<—ALU Operation(T4)

What am I doing wrong?

When running clang++ in Arch it immediately segfaults

I get the following output if I simply run clang++ without arguments in my terminal (Konsole). I installed Clang from the extra/clang version 7.0.1-1 package with kernel 4.19.8-arch1-1-ARCH. Other packages like gcc work fine and rebooting did not make a difference.

[overv@arch ~]$ clang++ Stack dump: 0. Program arguments: clang++ 1. Compilation construction /usr/bin/../lib/libLLVM-7.so(_ZN4llvm3sys15PrintStackTraceERNS_11raw_ostreamE+0x2b)[0x7f41d2c5db1b] /usr/bin/../lib/libLLVM-7.so(_ZN4llvm3sys17RunSignalHandlersEv+0x34)[0x7f41d2c5bf74] /usr/bin/../lib/libLLVM-7.so(+0x8fd0fe)[0x7f41d2c5c0fe] /usr/bin/../lib/libc.so.6(+0x37e00)[0x7f41d1562e00] /usr/bin/../lib/libLLVM-7.so(_ZNSt23_Sp_counted_ptr_inplaceIN4llvm3sys2fs6detail12DirIterStateESaIS4_ELN9__gnu_cxx12_Lock_policyE2EE14_M_get_deleterERKSt9type_info+0x1b)[0x7f41d2bb4ecb] /usr/bin/../lib/libclangBasic.so.7(+0x1ddd04)[0x7f41d2207d04] /usr/bin/../lib/libclangDriver.so.7(+0x114e69)[0x7f41d1b06e69] /usr/bin/../lib/libclangDriver.so.7(+0x115de0)[0x7f41d1b07de0] /usr/bin/../lib/libclangDriver.so.7(+0x12a895)[0x7f41d1b1c895] /usr/bin/../lib/libclangDriver.so.7(_ZNK5clang6driver6Driver12getToolChainERKN4llvm3opt7ArgListERKNS2_6TripleE+0x34b)[0x7f41d1a5aacb] /usr/bin/../lib/libclangDriver.so.7(_ZN5clang6driver6Driver16BuildCompilationEN4llvm8ArrayRefIPKcEE+0x7f3)[0x7f41d1a65e93] clang++(main+0x10bc)[0x55d8d255b0ec] /usr/bin/../lib/libc.so.6(__libc_start_main+0xf3)[0x7f41d154f223] clang++(_start+0x2e)[0x55d8d255d5fe] Segmentation fault (core dumped)

Is that version currently unstable to the point of being broken or did I do something wrong? How would I go about debugging this?