Mar 18, 2021
TechnologyInstall & Configuration
Install kata on archlinux, first install snapd:
$ yaourt snapd
$ sudo systemctl enable --now snapd.socket
Using snapd for installing kata:
$ sudo snap install kata-containers --classic
Check the kata-container runtimes:
$ kata-containers.runtime --version
kata-runtime : 1.12.1
commit : b967088a667018b7468a9f93d48cb81650e0dfa4
OCI specs: 1.0.1-dev
$ which kata-containers.runtime
/var/lib/snapd/snap/bin/kata-containers.runtime
Add the kata container runtime for docker-ce:
$ sudo mkdir -p /etc/systemd/system/docker.service.d
$ sudo vim /etc/systemd/system/docker.service.d/kata-containers.conf
[Service]
ExecStart=
ExecStart=/usr/bin/dockerd -D --add-runtime kata-runtime=/snap/kata-containers/current/usr/bin/kata-runtime
$ sudo systemctl daemon-reload
$ sudo systemctl restart docker
Check the docker info:
$ docker info | grep Runtime
Runtimes: io.containerd.runc.v2 io.containerd.runtime.v1.linux kata-runtime runc
Default Runtime: runc
Testing
Run a busybox using kata-runtime:
$ sudo docker run -ti --runtime kata-runtime busybox sh
Checking the docker hardware(qemu):
/ # free -m
total used free shared buff/cache available
Mem: 1993 26 1965 0 2 1948
Swap: 0 0 0
/ # uname -a
Linux 172144f42ad4 5.4.60.container #1 SMP Wed Jan 20 17:43:09 UTC 2021 x86_64 GNU/Linux
Comparing to runc busybox:
$ sudo docker run -it busybox /bin/sh
/ # free -m
total used free shared buff/cache available
Mem: 23932 3759 12883 1003 7289 18795
Swap: 2047 0 2047
/ # uname -a
Linux 7d484813ddd3 5.10.16-arch1-1 #1 SMP PREEMPT Sat, 13 Feb 2021 20:50:18 +0000 x86_64 GNU/Linux
Get the running qemu :
# ps -ef | grep qemu
root 130733 130681 0 14:41 ? 00:00:03 /var/lib/snapd/snap/kata-containers/716/usr/bin/qemu-system-x86_64 -name sandbox-172144f42ad4130671d2f3282f84be7d33f17ec9f308234d9172162f6dac8a1f -uuid 07ebc86a-91a7-4180-accd-c9d1dbd3ac29 -machine pc,accel=kvm,kernel_irqchip,nvdimm -cpu host,pmu=off -qmp unix:/
.....
Useful tips
Get the kata env:
$ kata-containers.runtime kata-env
See if the system is ready for running kata:
$ sudo kata-containers.runtime kata-check
Mar 12, 2021
Technology目标
基于树莓派的arm64快速验证平台。
系统准备
Ubuntu官网下载到Ubuntu 20.04.2 LTS 64位镜像:
https://ubuntu.com/download/raspberry-pi
插入tf卡,烧写img文件至tf卡中, Linux 命令为:
$ sudo dd if=./ubuntu-20.04.2-preinstalled-server-arm64+raspi.img of=/dev/sdd bs=1M && sudo sync
记录了3108+1 的读入
记录了3108+1 的写出
3259499520字节(3.3 GB,3.0 GiB)已复制,79.1856 s,41.2 MB/s
Windows下可自行下载rpi镜像烧写软件以完成烧写操作。
初次登陆
如果具备mini-hdmi转接线及鼠标,则可外接显示器用于登陆RPI。
如果不具备显示器,则可以通过接入网络来远程登陆RPI,登陆到局域网段的路由器上查看rpi获取到的Ip地址即可。
例如, 在路由器上获取到RPI IP地址:
$ cat /var/lib/misc/dnsmasq.leases
1615556943 dc:a6:32:e2:0b:44 10.137.149.171 ubuntu ff:dc:6b:56:57:00:02:00:00:ab:11:b2:87:a0:99:d0:fb:b1:ce
而后用ssh登陆, 默认用户名/密码为ubuntu/ubuntu,初次登陆后会强制要求更改:
$ ssh ubuntu@10.137.149.171
。。。。
WARNING: Your password has expired.
You must change your password now and login again!
Changing password for ubuntu.
Current password:
New password:
Retype new password:
passwd: password updated successfully
Connection to 10.137.149.171 closed.
$ ssh ubuntu@10.137.149.171
ubuntu@10.137.149.171's password:
Welcome to Ubuntu 20.04.2 LTS (GNU/Linux 5.4.0-1028-raspi aarch64)
虚拟机开发环境准备
安装基本桌面, 选择lightdm:
$ sudo apt-get install lxde virt-manager tightvncserver net-tools
开启vnc:
$ vncserver
You will require a password to access your desktops.
Password:
Verify:
Would you like to enter a view-only password (y/n)? y
Password:
Verify:
New 'X' desktop is ubuntu:1
Creating default startup script /home/ubuntu/.vnc/xstartup
Starting applications specified in /home/ubuntu/.vnc/xstartup
Log file is /home/ubuntu/.vnc/ubuntu:1.log
此时需要先关闭正在运行的vncserver, 配置默认桌面环境后再重新创建:
ubuntu@ubuntu:~$ vncserver -kill :1
Killing Xtightvnc process ID 30773
ubuntu@ubuntu:~$ vim ~/.vnc/xstartup
#!/bin/sh
exec startlxde
ubuntu@ubuntu:~$ vncserver
New 'X' desktop is ubuntu:1
Starting applications specified in /home/ubuntu/.vnc/xstartup
Log file is /home/ubuntu/.vnc/ubuntu:1.log
此时可以使用vncviewer登陆:
开启libvirtd权限:
$ sudo systemctl enable libvirtd
$ sudo systemctl start libvirtd
$ sudo usermod -a -G kvm,libvirt ubuntu
此时需重启rpi后,重新登陆/开启vnc后,验证virt-manager的可用性:
虚拟机系统安装
进入到安装界面后(All-In-One安装):
安装过程:
安装完毕后可以备份一下初始化镜像以便后续使用:
$ sudo virsh dumpxml ubuntu20.04 | grep qcow2
<driver name='qemu' type='qcow2'/>
<source file='/var/lib/libvirt/images/ubuntu20.04.qcow2'/>
ubuntu@ubuntu:~$ sudo cp /var/lib/libvirt/images/ubuntu20.04.qcow2 .
后续开始部署RONG:
部署完毕后资源占用情况:
root@node:/home/test/Rong# free -m
total used free shared buff/cache available
Mem: 5909 1790 132 2 3987 4205
Swap: 0 0 0
root@node:/home/test/Rong# df -h
Filesystem Size Used Avail Use% Mounted on
udev 2.9G 0 2.9G 0% /dev
tmpfs 591M 2.5M 589M 1% /run
/dev/mapper/vgnode-root 24G 13G 12G 52% /
XC适配
选择国产操作系统ISO用于安装:
安装界面:
外面ping:
ubuntu@ubuntu:~$ ping 192.168.122.30
PING 192.168.122.30 (192.168.122.30) 56(84) bytes of data.
64 bytes from 192.168.122.30: icmp_seq=1 ttl=64 time=0.941 ms
64 bytes from 192.168.122.30: icmp_seq=2 ttl=64 time=0.499 ms
8-> 设置root password.
如果无其他设置,则直接安装
安装过程:
安装完毕后,登陆:
$ ssh root@192.168.122.30
The authenticity of host '192.168.122.30 (192.168.122.30)' can't be established.
ECDSA key fingerprint is SHA256:wC8hcKiDjbz1+l9MAIUWMZju0evX4ZAIQjz+GPzEL4I.
Are you sure you want to continue connecting (yes/no/[fingerprint])? yes
Warning: Permanently added '192.168.122.30' (ECDSA) to the list of known hosts.
Authorized users only. All activities may be monitored and reported.
root@192.168.122.30's password:
Authorized users only. All activities may be monitored and reported.
Web console: https://localhost:9090/ or https://192.168.122.30:9090/
Last failed login: Thu Apr 2 03:46:11 CST 2020 from 192.168.122.1 on ssh:notty
There was 1 failed login attempt since the last successful login.
[root@localhost ~]#
部署完RONG后,检查:
[root@localhost Rong]# kubectl get node
NAME STATUS ROLES AGE VERSION
test01 Ready master 9m48s v1.18.8
[root@localhost Rong]# uname -a
Linux localhost.localdomain 4.19.90-17.ky10.aarch64 #1 SMP Sun Jun 28 14:27:40 CST 2020 aarch64 aarch64 aarch64 GNU/Linux
[root@localhost Rong]# cat /etc/issue
Authorized users only. All activities may be monitored and reported.
pod对应的指标:
[root@localhost ~]# kubectl get pods --all-namespaces
NAMESPACE NAME READY STATUS RESTARTS AGE
kube-system calico-kube-controllers-f874b4f5f-846zc 0/1 CrashLoopBackOff 12 24m
kube-system calico-node-4d869 0/1 CrashLoopBackOff 12 25m
kube-system coredns-dff8fc7d-f2n26 0/1 ContainerCreating 0 23m
kube-system dns-autoscaler-7b85bccb5f-264cz 0/1 ContainerCreating 0 23m
kube-system kube-apiserver-test01 1/1 Running 1 28m
kube-system kube-controller-manager-test01 1/1 Running 1 28m
kube-system kube-proxy-q6mnw 1/1 Running 1 28m
kube-system kube-scheduler-test01 1/1 Running 1 28m
kube-system kubernetes-dashboard-674bb5ff47-mw97w 0/1 ContainerCreating 0 23m
kube-system kubernetes-metrics-scraper-54fbb4d595-64b6j 0/1 ContainerCreating 0 23m
kube-system metrics-server-757968d55d-62czd 0/2 ContainerCreating 0 21m
kube-system tiller-deploy-75dc954ffd-psj68 0/1 ContainerCreating 0 22m
同样的vm在华为的HI1616机器上表现正常。可见YINHE 麒麟 V10的系统bug较多,可能未曾适配过完整的硬件列表。
Feb 13, 2021
Technology1. vagrant-libvirt
vagrant 2.2.14版中的一个包依赖BUG导致几乎所有的插件都没法装。解决方案是回归到旧版本的vagrant后安装vagrant-libvirt:
$ sudo pacman -U /var/cache/pacman/pkg/vagrant-2.2.10-2-x86_64.pkg.tar.zst
$ vagrant --version
Vagrant 2.2.10
Install vagrant-libvirt via:
$ vagrant plugin install vagrant-libvirt --plugin-clean-sources --plugin-source https://mirrors.tuna.tsinghua.edu.cn/rubygems/ --debug
$ vagrant plugin install vagrant-mutate --plugin-clean-sources --plugin-source https://mirrors.tuna.tsinghua.edu.cn/rubygems/ --debug
Examine the installed vagrant plugins:
$ vagrant plugin list
vagrant-libvirt (0.3.0, global)
vagrant-mutate (1.2.0, global)
2. Ignore PKG globally
For ignoring some package in archlinux’s pacman upgrade, do following:
$ sudo vim /etc/pacman.conf
IgnorePkg = vagrant
Then in next pacman -Syu --noconfirm we will ignore vagrant.
3. Enable dmesg
Enable dmesg for normal user:
# sudo sysctl kernel.dmesg_restrict=0
4. docker.io启动panic
现象: systemctl restart docker报错无法启动,查看原因怀疑是containerd问题,
# journalctl -xeu containerd>kkkk.txt
# cat kkkk.txt
在输出的日志中发现invalid page type: xx: xx问题,此时直接apt-get purge掉所有和docker/containerd相关的包,而后删除/var/lib/containerd目录, 问题得以解决。
5. System Installation Time
Detect the system installation time via:
# ls -lact --full-time /etc |tail
6. disable fedora initial-setup
via:
# systemctl stop initial-setup && systemctl disable initial-setup
7. python3’s SimpleHTTPServer
via:
$ python3 -m http.server 8888
8. curl and tar xzvf
via:
curl www.xxxxx.com/kkk.tar.gz | tar xzvf
9. On install scrot
Missing libgiblib.so.1:
$ find /usr -name libgiblib.so.1 Find this file in the location
/usr/local/lib/libgiblib.so.1
$ cat /etc/ld.so.conf View the current library load path to see if this file is included
include ld.so.conf.d/*.conf
$ echo "/usr/local/lib" >> /etc/ld.so.conf Add library path
$ ldconfig After loading the library file, scrot is used normally.
$ scrot --help View scrot help
Usage : scrot [OPTIONS]... [FILE]
Where FILE is the target file for the screenshot.
10. gnome 3 add hotkey
Via adding hotkey system->settings:
11. Install awesome on centos7
via:
#
# Copy and paste the lines below to install the 64-bit EL 7.x set.
#
BOOTSTRAP_TAR="bootstrap-el7-trunk-x86_64-20200724.tar.gz"
BOOTSTRAP_SHA="478d2e30f150712a851f8f4bcff7f60026f65c9e"
# Download the bootstrap kit to the current directory.
curl -O https://pkgsrc.joyent.com/packages/Linux/el7/bootstrap/${BOOTSTRAP_TAR}
# Verify the SHA1 checksum.
echo "${BOOTSTRAP_SHA} ${BOOTSTRAP_TAR}" >check-shasum
sha1sum -c check-shasum
# Verify PGP signature. This step is optional, and requires gpg.
curl -O https://pkgsrc.joyent.com/packages/Linux/el7/bootstrap/${BOOTSTRAP_TAR}.asc
curl -sS https://pkgsrc.joyent.com/pgp/56AAACAF.asc | gpg2 --import
gpg2 --verify ${BOOTSTRAP_TAR}{.asc,}
# Install bootstrap kit to /usr/pkg
sudo tar -zxpf ${BOOTSTRAP_TAR} -C /
## Add paths
#$ PATH=/usr/pkg/sbin:/usr/pkg/bin:$PATH
#$ MANPATH=/usr/pkg/man:$MANPATH
Then use pkgin for installing awesome:
# pkgin -y install awesome
12. Install rdesktop/smplayer
Install rdesktop/smplayer in centos7:
sudo rpm --import http://li.nux.ro/download/nux/RPM-GPG-KEY-nux.ro
sudo rpm -Uvh http://li.nux.ro/download/nux/dextop/el7/x86_64/nux-dextop-release-0-1.el7.nux.noarch.rpm
sudo yum install rdesktop
13. rsync centos 7 repo
via:
# rsync -vrt rsync://rsync.mirrors.ustc.edu.cn/repo/centos/7/updates/x86_64/ .
14. knoppix ssh
Start sshd via:
# /etc/init.d/ssh start
# passwd root
15. rpm belongs to which repo
via :
$ repoquery -i rpmname
16. sftp with port
via:
sftp -oPort=port_number host_name
17. lxc proxy
forwarding from host to lxc containers via:
lxc config device add mycontainer myport80 proxy listen=tcp:0.0.0.0:80 connect=tcp:127.0.0.1:80
18. lxc mount device(sda)
via:
lxc config device add teledb-node-test1 myrawdisk unix-block source=/dev/vda
lxc config device add teledb-node2 myrawdisk unix-block source=/dev/vda
19. lxc add config dynamically
via:
lxc config set mycontainer raw.lxc="lxc.cgroup.devices.allow = c 10 237" raw.lxc="lxc.cgroup.devices.allow = b 7 *"
$ lxc config show mycontainer
...
raw.lxc: lxc.cgroup.devices.allow = b 7 *
...
$
20.vim 中文乱码
Set following in ~/.vimrc:
set fileencodings=utf-8,gb2312,gb18030,gbk,ucs-bom,cp936,latin1
set enc=utf8
set fencs=utf8,gbk,gb2312,gb18030
21. lxc set static ip
via:
# lxc stop gitlabinstance
# lxc network attach lxdbr0 gitlabinstance eth0 eth0
# lxc config device set gitlabinstance eth0 ipv4.address 10.222.125.125
# lxc start gitlabinstance
22. lxc set directoy
add directory to running lxc instance:
lxc config device add Solr4StandAlone sdb disk source=/var/lib/lxc/Solr4StandAlone/rootfs/data path=mnt/ssd/solr_data
23. lxc set priviledge
For mkdir in external disk:
lxc config set lxc105PERF security.privileged=true
24. set multiple parameters
via:
printf 'lxc.cgroup.devices.allow = c 10 237\nlxc.cgroup.devices.allow = b 7 *' | lxc config set mycontainer raw.lxc -
25. limit lxcbr0 dhcp range
via:
lxc network set lxdbr0 ipv4.dhcp.ranges 10.0.8.2-10.0.8.200
26. lxc profile issues
solved via:
lxc exec mycontainer -- sudo --user ubuntu --login
27. lxc set ulimit
via:
lxc config set mycontainer limits.kernel.nofile 200000
lxc restart mycontainer
28. snap disable lxd
via;
# snap disable lxd
29. find which command
via:
yum whatprovides lsb_release
30. get public ip
via:
$ curl 'https://api.ipify.org?format=json'
{"ip":"144.34.187.48"}
31. downgrader qemu in ArchLinux
Install yay for replacing yaourt, yaourt is too old and will be removed from my tools:
$ git clone https://aur.archlinux.org/yay-git.git
$ cd yay-git
$ maekpkg -si
$ yay -S downgrader-git
$ downgrader qemu
$ qemu-system-x86_64 --version
QEMU emulator version 5.2.0
Copyright (c) 2003-2020 Fabrice Bellard and the QEMU Project developers
$ sudo vim /etc/pacman.conf
IgnorePkg = qemu
32. snap set proxy
via:
snap set system proxy.http="http://<proxy_addr>:<proxy_port>"
snap set system proxy.https="http://<proxy_addr>:<proxy_port>"
33. lxc start vm
Specify vm’s cpus and memory limits:
lxc init a4e0a3e72f3b ubuntu1804
lxc config device override ubuntu1804 root size=15GB
lxc config set ubuntu1804 limits.cpu 4
lxc config set ubuntu1804 limits.memory 16GB
echo -n '-device vfio-pci,host=40:00.0' | lxc config set ubuntu1804 raw.qemu -
lxc start ubuntu1804
34. lxc set proxy
via:
lxc config set core.proxy_https http://xxx.xxx.xxx.xx:8118
lxc config set core.proxy_http http://xxx.xxx.xxx.xx:8118
35. lxc start vm
via followinig commands:
lxc launch images:centos/8 centos --vm
lxc launch images:centos/8 centos --vm --config limits.cpu=4 --config limits.memory=16GB
lxc launch images:ubuntu/bionic ubuntu1804 --vm
vfio items(not ok):
echo -n '-device vfio-pci,host=0000:3e:00.0,id=hostdev0' | lxc config set king4 raw.qemu -
36. lxd spice connection
via:
# remote-viewer spice+unix:///var/snap/lxd/common/lxd/logs/win10/qemu.spice
Forward via socat:
# socat TCP-LISTEN:9777,reuseaddr,fork UNIX-CLIENT:/var/snap/lxd/common/lxd/logs/win10/qemu.spice
access via:
# remote-viewer spice://localhost:9777
37. undo commit
via:
git reset HEAD~
38. zerotier-one issue
In ArchLinux, cause the default tun won’t load at startup, it fails on start,
modified via:
# vim /etc/modprobe.d/modprobe.conf
options tun
Save and restart the service, now zero-tier works properly.
39. ssh via jump
Reverse ssh tunnel via(xxx.xxx.xxx.xxx is my own public ip):
ssh -o GatewayPorts=true -fNTR *:4381:localhost:22 -p 12222 root@xxx.xxx.xxx.xxx
After ssh forwardinig to local, ssh via jump. :
ssh -J root@192.168.1.2 -p4381 ctyun@localhost
40. fake usb
via:
sudo modprobe dummy_hcd
sudo modprobe g_mass_storage file=/media/sda5/16G.img idVendor=0x1d6b idProduct=0x0104 iManufacturer=Myself iProduct=VirtualBlockDevice iSerialNumber=123
Then you could directly use this usb disk .
41. sed remove last line
via:
# sed '$d' kkk.txt
42. run qemu in centos7
via:
/usr/libexec/qemu-kvm -net nic -net user,hostfwd=tcp::2228-:22 -hda ./ubutu200420200630.img -boot d -m 2048 --enable-kvm -vga virtio
Then we could login with ssh -p2228 root@localhost for login into vm, in vm
using 10.0.2.X for operations.
43. lxd cluster mode
edge01 initialization process:
# lxd init
Would you like to use LXD clustering? (yes/no) [default=no]: yes
What name should be used to identify this node in the cluster? [default=edge1]:
What IP address or DNS name should be used to reach this node? [default=192.168.100.208]:
Are you joining an existing cluster? (yes/no) [default=no]:
Setup password authentication on the cluster? (yes/no) [default=no]: yes
Trust password for new clients:
Again:
Do you want to configure a new local storage pool? (yes/no) [default=yes]:
Name of the storage backend to use (zfs, btrfs, dir, lvm) [default=zfs]:
Create a new ZFS pool? (yes/no) [default=yes]:
Would you like to use an existing empty block device (e.g. a disk or partition)? (yes/no) [default=no]:
Size in GB of the new loop device (1GB minimum) [default=30GB]:
Do you want to configure a new remote storage pool? (yes/no) [default=no]:
Would you like to connect to a MAAS server? (yes/no) [default=no]:
Would you like to configure LXD to use an existing bridge or host interface? (yes/no) [default=no]: yes
Name of the existing bridge or host interface: eth0
Would you like stale cached images to be updated automatically? (yes/no) [default=yes]
Would you like a YAML "lxd init" preseed to be printed? (yes/no) [default=no]:
44. apt proxy via sock5
via:
Acquire::http::proxy "socks5h://server:port";
via:
https://gist.github.com/lanceliao/75c368f16238ae4c741d
https://github.com/fanchangyong/blog/issues/22
https://www.shangyexinzhi.com/article/485648.html
https://thenewstack.io/the-use-case-for-kubernetes-at-the-edge/
https://blog.ismisv.com/2015/09/raspberry-pi-as-a-fucking-gfw-gateway/
https://www.youtube.com/watch?v=cB8fNytQXTY
https://www.aularon.com/linux/transparent-proxy-via-another-computer/
https://www.cnblogs.com/develon/p/11830726.html
46. Disable ipv6
in ubuntu, via:
# sudo vim /etc/default/grub
GRUB_CMDLINE_LINUX_DEFAULT="quiet splash ipv6.disable=1"
GRUB_CMDLINE_LINUX="ipv6.disable=1"
# sudo update-grub
47. snap install failed
Tested via:
curl https://api.snapcraft.io/api/v1/snaps/sections
48. Completely disable nvidia card
In archlinux, via:
$ sudo systemctl enable nvidia-xrun-pm
49. recover sudo
via:
chown root:root /usr/bin/sudo && chmod 4755 /usr/bin/sudo
Solved problem:
sudo: /usr/bin/sudo must be owned by uid 0 and have the setuid bit set
50 sway in archlinux
via:
add LIBSEAT_BACKEND=logind to my /etc/environment
useradd -m xxxx
sudo passwd xxxx
Then login with xxxx
sway
51. keep mosue moving
via:
sudo snap install keep-presence
Then run it:
keep-presence --seconds 30
52. k8s profile for lxd
via:
name: k8s
config:
boot.autostart: "true"
linux.kernel_modules: ip_vs,ip_vs_rr,ip_vs_wrr,ip_vs_sh,ip_tables,ip6_tables,netlink_diag,nf_nat,overlay,br_netfilter
raw.lxc: |
lxc.apparmor.profile=unconfined
lxc.mount.auto=proc:rw sys:rw cgroup:rw
lxc.cgroup.devices.allow=a
lxc.cap.drop=
security.nesting: "true"
security.privileged: "true"
description: ""
devices:
aadisable:
path: /sys/module/nf_conntrack/parameters/hashsize
source: /sys/module/nf_conntrack/parameters/hashsize
type: disk
#aadisable1:
# path: /sys/module/apparmor/parameters/enabled
# source: /dev/null
# type: disk
aadisable2:
path: /dev/kmsg
source: /dev/kmsg
type: disk
aadisable3:
path: /sys/fs/bpf
source: /sys/fs/bpf
type: disk
53. dnscrypt-proxy issue
Changing the dnscrypt-proxy after ccp 100years birthday, I have to change the proxy port from 1080(sslocal) to 2x1xx(v2ray)
54. lxd use external ceph
via:
snap set lxd ceph.external=true
systemctl reload snap.lxd.daemon
55. gucamole xrdp issue
via:
cd /tmp/
curl -Lo 'freerdp2libplugins.zip' 'https://community.bitnami.com/uploads/default/original/3X/b/9/b9c8a1945544603988ffd12e0bc2b9377d1653e2.zip'
unzip freerdp2libplugins.zip
sudo mv freerdp2 /usr/lib/x86_64-linux-gnu/
56. python missing
When building android, meet: /usr/bin/env: python: No such file or directory
solved via:
# sudo apt-get install python-is-python3
57. ubuntu18.04.5 python2 default
via:
update-alternatives --install /usr/bin/python python /usr/bin/python2 10
then we could build android.
58. /var/log/journal too big
shrink via:
# journalctl --vacuum-size=100M
59. XMind
Install xmind on archlinux via:
$ yay xmind
8 aur/xmind 3.7.9+8update9-1 (+30 0.03) (Installed)
# vim /usr/share/xmind/XMind/XMind.ini
-vm
/usr/lib/jvm/java-8-openjdk/jre/bin
-configuration
.....
Then we could use XMind.
60. Android building
Problem:
....
No DEX files specified
...
via:
$ make clean-apache-xml
$ make apache-xml
Then:
# make clean-ims-common && make ims-common && make apache-xml && m -j12 iso_img
61. Install fcitx5
Replace fcitx4 with fcitx5 with:
$ sudo pacman -R fcitx-configtool fcitx-googlepinyin fcitx-libpinyin fcitx-qt4 fcitx-qt5
$ sudo pacman -S fcitx5
$ sudo pacman -S fcitx5-chinese-addons
$ sudo pacman -S fcitx5-qt fcitx5-gtk
$ sudo pacman -S fcitx5-configtool
62. hostapd
In shida box:
# git clone https://github.com/lwfinger/rtl8188eu.git
# cd rtl8188eu
# make all
# sudo make install
63. driver in anbox
Added lxc device via:
lxc-device -n android add /dev/ashmem
64. PRoot working Tips
Install termux from F-droid, then:
pkg install proot
pkg install proot-distro
proot-distro install archlinux
65. Check if android booted
via:
# getprop sys.boot_completed
67. Overwrite cmd for docker
via:
# docker run [other options] --entrypoint '/bin/sh' $IMAGE -c 'npm link gulp gulp-sass gulp-sourcemaps'
68. update python for ubuntu18.04
via:
# update-alternatives --config python
69. gdm vs lightdm
Changing from ubuntu:
sudo dpkg-reconfigure gdm3
70. Start anbox in ubuntu
exited in ubuntu18.04, solved via:
export EGL_PLATFORM=x11
anbox.appmgr
71. rsync ignore directory
via:
rsync -av --progress aic-cg/ /root/fenxi/ --exclude workdir
(aic-cg) -----> /root/fenxi
source ----> dest
72. redsocks iptables issue
On Ubuntu18.04, solved via:
rm /usr/sbin/iptables
ln -s /usr/sbin/iptables-legacy /usr/sbin/iptables
73. dd write xz to rpi
Via:
xz -d < /home/dash/Downloads/ubuntu-20.04.3-preinstalled-server-arm64+raspi.img.xz - | dd of=/dev/sdb && sync
74. virsh console
via:
virsh ttyconsole vuserv
Enable grub output via:
# vim /etc/default/grub
GRUB_DISTRIBUTOR=`lsb_release -i -s 2> /dev/null || echo Debian`
GRUB_TERMINAL_INPUT="console serial"
GRUB_TERMINAL_OUTPUT="gfxterm serial"
GRUB_SERIAL_COMMAND="serial --unit=0 --speed=115200"
GRUB_CMDLINE_LINUX_DEFAULT="console=tty0 console=ttyS0,115200 maybe-ubiquity"
GRUB_CMDLINE_LINUX=""
# update-grub2
75. logcat
view only crash logs:
logcat -b crash
76. lxc enter container
via:
lxc-attach -n Name -- command
77. apt-fast
via:
sudo add-apt-repository ppa:apt-fast/stable
sudo apt-get update
sudo apt-get -y install apt-fast
78. adb tips
list all of the connected devices:
adb devices
connect to specific device via:
adb -s 192.168.1.41:5555 shell
79. anbox/redroid preparation
related kernel modules should be inserted:
sudo modprobe ashmem_linux
sudo modprobe binder_linux devices=binder,hwbinder,vndbinder
examine via:
root@vp1:/home/dash# grep binder /proc/filesystems
nodev binder
root@vp1:/home/dash# grep ashmem /proc/misc
121 ashmem
80. pipewire
Install and enable via:
$ sudo pacman install -y pipewire
$ systemctl --user enable pipewire pipewire-pulse pipewire-media-session
$ systemctl --user restart pipewire pipewire-pulse pipewire-media-session
Feb 12, 2021
Technology无线接入点配置
1. 基本配置
树莓派4B 8G版本,刷入了Ubuntu 20.04.2 arm64版本:
ubuntu@rpi1:~$ cat /etc/issue
Ubuntu 20.04.2 LTS \n \l
ubuntu@rpi1:~$ uname -a
Linux rpi1 5.4.0-1028-raspi #31-Ubuntu SMP PREEMPT Wed Jan 20 11:30:45 UTC 2021 aarch64 aarch64 aarch64 GNU/Linux
2. 网络配置
默认Ubuntu20.04采用netplan作为网络配置方式,一般情况下满足网络配置需求,然而在配置无线接入点的时候,需要固定wlan0 IP地址的情况下,netplan配置就不能成功,因为它在配置wlan0 固定IP地址时需要配置ssid。因而我们采用传统的ifupdown作为网络配置手段:
关闭netplan配置:
# mv /etc/netplan/50-cloud-init.yaml /root
安装必要的软件:
# apt-get install -y resolvconf netctl ifupdown hostapd dnsmasq
配置网络:
# vim /etc/network/interfaces
# Include files from /etc/network/interfaces.d:
source-directory /etc/network/interfaces.d
source /etc/network/interfaces.d/*
auto lo
iface lo inet loopback
auto eth0
iface eth0 inet dhcp
auto wlan0
iface wlan0 inet static
address 10.0.70.1
netmask 255.255.255.0
# chmod 777 /etc/network/interfaces
现在重新启动树莓派,发现eth0配置成功,然而wlan0尚未配置, 我们通过在crontab中配置定时任务的方法来配置wlan0:
# crontab -e
PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/usr/local/games:/snap/bin
@reboot sleep 120 && /usr/bin/systemctl restart networking
使能crontab:
# systemctl enable cron
3. hostapd配置
配置hostapd(/etc/hostapd/hostapd.conf):
# the interface used by the AP
interface=wlan0
driver=nl80211
# "g" simply means 2.4GHz band
hw_mode=g
# the channel to use
channel=10
# limit the frequencies used to those allowed in the country
ieee80211d=1
# the country code
country_code=CN
# 802.11n support
ieee80211n=1
# QoS support
wmm_enabled=1
# the name of the AP
ssid=rpiwifi
macaddr_acl=0
# 1=wpa, 2=wep, 3=both
auth_algs=1
ignore_broadcast_ssid=0
# WPA2 only
wpa=2
wpa_passphrase=xxxxxxxxxxxxx
wpa_key_mgmt=WPA-PSK
#wpa_pairwise=TKIP
rsn_pairwise=CCMP
编辑文件/etc/default/hostapd, 更改含有DAEMON_CONF的行为: DAEMON_CONF="/etc/hostapd/hostapd.conf".
然而此时hostapd在启动以后并不会重新启动,我们需要在crontab中添加其自动启动.
# crontab -e
@reboot sleep 120 && /usr/bin/systemctl restart networking && systemctl restart hostapd
4. IP地址配置
此时hostapd无法给客户端配置IP地址,为此我们需要配置dnsmasq(/etc/dnsmasq.conf):
#配置监听地址
listen-address=127.0.0.1,10.0.70.1
#配置DHCP分配段
dhcp-range=10.0.70.50,10.0.70.150,12h
dhcp-option=3,10.0.70.1
5. iptables配置
编辑/etc/sysctl.conf并取消这一行的注释:
net.ipv4.ip_forward=1
为eth0出站流量添加伪装:
# sudo iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
我们调节crontab为:
@reboot sleep 30 && /usr/bin/systemctl restart networking && systemctl restart hostapd && /usr/sbin/iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
到现在为止,我们应该可以配置出了一个随时可以访问internet的rpi接入点。
后续需要注意点
以该rpi为接入点,接入到某个网络中,然而该网络中的Internet是通过另台rpi的WIFI所共享的。
另台RPI上的无线连接通过wifi-menu来配置:
# apt-get install -y netctl
