July 24, 2021
by dhoytt
Comments Off on Fedora Workstation Crashes Possibly Resolved/ Updates of XCP-ng Packages

Fedora Workstation Crashes Possibly Resolved/ Updates of XCP-ng Packages

Well my Fedora 33 workstation desktop kept freezing and crashing whether I used KDE Plasma, Cinnamon, MATE or Gnome desktop environments. I suspected my Nvidia Quadro K1200 drivers and wa going to really dive into that when I had time. I first updated to Fedora 34 which I wanted to do anyway and had the same issues so looking through the logs and then noticing some selinux alerts I simply ran the sealerts listed and created selinux policies and now my workstation’s desktop is noticeably more responsive and stable.

This is what I found in the logs:

SELinux is preventing gnome-shell from write access on the sock_file dbus-O849AHv64T.

Plugin catchall (100. confidence) suggests *

If you believe that gnome-shell should be allowed write access on the dbus-O849AHv64T sock_file by default.
Then you should report this as a bug.
You can generate a local policy module to allow this access.
Do
allow this access for now by executing:

ausearch -c ‘gnome-shell’ –raw | audit2allow -M my-gnomeshell

semodule -X 300 -i my-gnomeshell.pp

Additional Information:
Source Context system_u:system_r:xdm_t:s0-s0:c0.c1023
Target Context system_u:object_r:tmp_t:s0
Target Objects dbus-O849AHv64T [ sock_file ]
Source gnome-shell
Source Path gnome-shell
Port
Host mamba
Source RPM Packages
Target RPM Packages
SELinux Policy RPM selinux-policy-targeted-34.14-1.fc34.noarch
Local Policy RPM selinux-policy-targeted-34.14-1.fc34.noarch
Selinux Enabled True
Policy Type targeted
Enforcing Mode Enforcing
Host Name mamba
Platform Linux mamba 5.13.4-200.fc34.x86_64 #1 SMP Tue Jul
20 20:27:29 UTC 2021 x86_64 x86_64
Alert Count 223
First Seen 2021-07-12 22:03:50 PDT
Last Seen 2021-07-23 22:38:07 PDT
Local ID c4845b11-2638-4728-8e79-27e115f54210

Raw Audit Messages
type=AVC msg=audit(1627105087.981:551): avc: denied { write } for pid=27398 comm=”gsd-power” name=”dbus-O849AHv64T” dev=”tmpfs” ino=657 scontext=system_u:system_r:xdm_t:s0-s0:c0.c1023 tcontext=system_u:object_r:tmp_t:s0 tclass=sock_file permissive=0

Hash: gnome-shell,xdm_t,tmp_t,sock_file,write

For this alert I simply followed directions after changing directories into my security folder I store my selinux policies and then ran:

# ausearch -c 'gnome-shell' --raw | audit2allow -M my-gnomeshell
semodule -i my-gnomeshell.pp

There appeared to be another sealert that I found that also affected my desktops stability and possibly spoke to issues with the Nvidia driver:

SELinux is preventing gdb from read access on the chr_file card1.

Plugin catchall (100. confidence) suggests *

If you believe that gdb should be allowed read access on the card1 chr_file by default.
Then you should report this as a bug.
You can generate a local policy module to allow this access.
Do
allow this access for now by executing:

ausearch -c ‘gdb’ –raw | audit2allow -M my-gdb

semodule -X 300 -i my-gdb.pp

Additional Information:
Source Context system_u:system_r:abrt_t:s0-s0:c0.c1023
Target Context system_u:object_r:dri_device_t:s0
Target Objects card1 [ chr_file ]
Source gdb
Source Path gdb
Port
Host mamba
Source RPM Packages
Target RPM Packages
SELinux Policy RPM selinux-policy-targeted-34.14-1.fc34.noarch
Local Policy RPM selinux-policy-targeted-34.14-1.fc34.noarch
Selinux Enabled True
Policy Type targeted
Enforcing Mode Enforcing
Host Name mamba
Platform Linux mamba 5.13.4-200.fc34.x86_64 #1 SMP Tue Jul
20 20:27:29 UTC 2021 x86_64 x86_64
Alert Count 384
First Seen 2021-07-12 22:04:07 PDT
Last Seen 2021-07-23 22:38:06 PDT
Local ID 88f4d8fa-ca05-404e-8449-bd42cfc3bedb

Raw Audit Messages
type=AVC msg=audit(1627105086.850:543): avc: denied { read } for pid=27221 comm=”gdb” name=”card1″ dev=”devtmpfs” ino=523 scontext=system_u:system_r:abrt_t:s0-s0:c0.c1023 tcontext=system_u:object_r:dri_device_t:s0 tclass=chr_file permissive=0

Hash: gdb,abrt_t,dri_device_t,chr_file,read

Once again I just followed the notice from selinux and ran the following:

ausearch -c 'gdb' --raw | audit2allow -M my-gdb
semodule -i my-gdb.pp

For the second alert addressing the “gdb” issue I discovered a number of people are having similar issues that are listed in bug alerts at Red Hat: https://bugzilla.redhat.com/show_bug.cgi?id=1896648

I decided to look up the first sealert as well and there are a numbr of bug listings for that as well plus a forum discusion I found: https://ask.fedoraproject.org/t/selinux-is-preventing-gnome-shell-from-write-access-on-the-sock-file-dbus-xodxlwour5/14515

https://bugzilla.redhat.com/show_bug.cgi?id=1942775

I also went ahead migrated virtual systems from one XCP-ng to another updated both XCP-ng hosts hypervisor systems after the migrations and then moved the virtual systems back to their respective hosts after performing the updates on each physical host. During the migration of the relays server that brief microsecond may have affected people streaming Snakeice’s House of Beats without a media streaming player that buffers and does not attempt restarts after minor interruptions .. All in all a very productive morning now time for breakfast.

July 22, 2021
by dhoytt
Comments Off on Evening Workout Music Mixture

Evening Workout Music Mixture

Just sprinkling in a mix of music for a nice muddled workout. Artists like Original Concept, Nicki Minaj, Def Leppard, Michael Henderson, Michel’le, Polo G and then will go into some mellow sounds with artists like The Commodores, Sade, Dua Lipa with many more.

The usual mixture of different genres here at Snakeice’s House of Beats!

July 22, 2021
by dhoytt
Comments Off on Brief Update of Virtual Infrastructure

Brief Update of Virtual Infrastructure

I performed some updates of my virtual environment that caused me to briefly take down my IceCast and ShoutCast relays and then my websites.

Once again more data here : https://dhoytt.com/mainblog/2021/07/updated-xcp-ng-from-8-1-to-8-2/.

July 21, 2021
by dhoytt
Comments Off on Updated XCP-ng from 8.1 to 8.2

Updated XCP-ng from 8.1 to 8.2

I’m prepping to move the dhoytt.com web server to a different web server. So I decided to update the underlying hypervisor XCP-ng first.

First I migrated all of my virtual systems off of my slave Xcp-ng system then loaded the XCP-ng 8.2 ISO via ILO of my BL460c Gen 8 blade system, rebooted booted of the XCP-ng ISO, verified the XCP-ng and started the install.

The reasons I want to move the dhoytt.com web server to a new version of software was so that I could have the most recent versions of PHP and MariaDB without having to manually just update the packages or the repositories. I just want to use the OS’ current repositories for less work.

In doing the updates I updated my slave XCP-ng system first which is the incorrect procedure so I had a little downtime as I shutdown the VM’s on the master installed it and then brought my webserver and relay server back up after in updating the XCP-ng master server. Since I took down the relays for the streaming server I decided to update the W2019 server that hosts my music and then streams to my relay servers of IceCast and ShouCast which took me down quite a bit longer since the W2019 Data Center updates were large and took two reboots of my physical BL460c gen8 blade system.

Everything is up to the outside world after updating and rebooting my w2019 music server, relay server and web server but still have to get the slave in my XCP-ng pool correct since it was not showing the network properly because I updated it first. Even after updating the master of the XCP-ng pool then rebooting the slave it never picked up the networking information from the master of the XCP-ng pool. I restored the old 8.1.1 version of XCP-ng then perform the upgrade of the XCP-ng slave again and that failed as well. After trying a slew of things I finally just did a flat new install on the slave system, redid the networking and everything is solid again.

Next step create a new VM and make sure it has the correct versions of software and move the bits and about 7 databases running on the MariaDB instance over and start making some long needed changes to the site.

Just a curiosity note I did notice a brief microsecond loss of network connectivity from my relays when doing a live migration of the relay stream server that hosts IceCast and ShoutCast. I will investigate that at a later date if I remember. This is one reason I write to this blog as some historical reference and weird partial biography.

July 18, 2021
by dhoytt
Comments Off on Music Relays Operating on New Server

Music Relays Operating on New Server

The music relays of IceCast and ShoutCast are now operating on one of my my new virtual servers running Fedora 34. I created my firewall openings on my router and on the OS plus created new selinux policies for ShoutCast and IceCast. Tested connecting locally and remotely and everything looks good.

The Snakeice’s House of Beats streams are back up on the streaming relays!

July 18, 2021
by dhoytt
Comments Off on Moving Music Stream Relays to New Server

Moving Music Stream Relays to New Server

Moving my music streaming relays of IceCast and ShoutCast to a new server that’s dedicated and virtual. I was always planning on making this move but some memory leaks by another program has made it more critical. This is always my goal to make operations more modular. I can also clone this virtuals system for a backup very easily. I still need to point my firewall to the appropriate system and ports along with my streaming application so there will be a moment of no streaming music. I’ll post after all is up and running again.

July 14, 2021
by dhoytt
Comments Off on Snakeice House of Beats Updates Mid-Morning

Snakeice House of Beats Updates Mid-Morning

I did some updates to the streaming system and relay system for the House of beats as mentioned elsewhere on my site : https://dhoytt.com/mainblog/2021/07/mid-morning-system-updates/.

July 14, 2021
by dhoytt
Comments Off on Mid-Morning System Updates

Mid-Morning System Updates

Had some critical system updates of my w2019 Data Center system that hosts my Sam Broadcasting system here from my home data center and decided to also update my Centos 8 Linux system and Centos 7 Linux web server.

The Centos 8 system hosts my IceCast and ShoutCast relays that you connect to when streaming the music from my W2019 system. The Centos 7 system of course houses my WordPress CMS system and a database that syncs with the w2019 system and then publishes information to that Snakeice House of Beats blog https://dhoytt.com/snake-ice-radio-blog/.

The Centos 8 Linux system also hosts my Zoneminder CCTV system which was also updates along with one of my Plex server instances.

July 5, 2021
by dhoytt
Comments Off on Utilizing Garden Produce

Utilizing Garden Produce

The utilization of all that great produce from your garden is why you go
through the trouble of growing a garden in the first place. Once that
production of food stops you long for that season to begin again so you do not
have to make trips to the store for fresh vegetables.

Here below you can see me frying squash, Lemon boy and cherry tomatoes. I
tried lightly battered and egg batter to find my preference was lightly
battered fried vegetables not double dipped in egg batter.

I made some salsa numerous times as
you can dress up many dishes with salsa as well as use as dips for chips as you
watch TV.

I made a salad of squash, cucumber, Swiss chard, lemon boy, black pearl,
yellow pear beef eater and early girl tomatoes. I added in some sweet onions,
mushrooms not from the garden and then basil, rosemary, tarragon and chives
from the garden. I then put some salmon over the salad and dresses it with
white balsamic dressing.

Another way I always utilize my garden produce is making teas and today I
gathered up my herbs of mint, basil, sage, lemon thyme, rosemary, I forgot my
stevia this time, but it still came out just fine. I had a little warm and put
the rest into a container in the refrigerator and indulge that for a few days.
That nice clean refreshing taste is something I long for now.

So many ways to use what I have in the garden, and I still have not even
made the pizza sauce as I did last year or used my food storage device.

Today I had my first cucumbers of the season and habanero peppers as well.
The habanero peppers kicked the salsa up a few notches with the jalapeno and
serrano peppers and the cucumbers were refreshing with the salad.

July 4, 2021
by dhoytt
Comments Off on Delicious July 4th Mini Meatloaves

Delicious July 4th Mini Meatloaves

I didn’t want a long smoke today so I thought for a while about what ingredients I had that would make something fast and easy then decided on meatloaf. I didn’t want to deal with leftovers and get up early due to planning on working on projects late into the nights this weekend. I had bought ground beef planning on burgers but wanted something more to go along with vegetables.

I started looking up meatloaf recipes and came across several I thought would be good but settled on this one: https://gimmesomegrilling.com/mini-smoked-meatloaf/.

Since I don’t have oats and wanted to use them instead of breadcrumbs I used some Quaker Instant oat meal (an opportunity to use an item that will help me clear space in my kitchen pantry) with strawberry flavors. It was delicious even with that hint of strawberry flavor from the instant oatmeal. This will now be a go to for me in my bag of BBQ recipes.