SELinux for Kubevirt on Centos
Without disabling SELinux enforcement, an attempt to deploy a VM generates the following audit message: type=AVC msg=audit(1504194626.938:877): avc: denied { transition } for pid=9574 comm="libvirtd"...
View ArticleSE Linux for CentOS Continued
Trying to troubleshoot the issues from Yesterday’s SELinux errors. Immediately after a new deploy of the manifests, I want to look at the context on the qemu file: $ kubectl get pods libvirt-81sdh NAME...
View ArticleSE Linux for CentOS Part 3
After the previous two days debugging, Simo Sorce suggested that I need to tell the OS to show all AVCs, some are hidden by default. The problem is that not all AVCs are reported. We can disable this....
View ArticleSolutions Architect
Today is my first day at Red Hat! Well, OK, I’ve been here a few years, but today I move from Engineering to Sales. My new role is “Specialist Solutions Architect” where that specialty is Cloud. I have...
View ArticleA minor addition for todo.txt
I had a simple todo list I managed using shell scripts and git, but I wanted something for the Cell phone. The todo.txt application fills that need now. But I was able to reuse something from my old...
View ArticleDeliberate Elevation of Privileges
“Ooops.” — Me, doing something as admin that I didn’t mean to do. While the sudo mechanism has some warranted criticism, it is still an improvement on doing everything as the root account. The...
View ArticleIn Satellite server, Organization != Organization_ID
Spent a good chunk of yesterday and some of this morning stumped by a simple mistake I made. I was trying to use our Satellite server via the Hammer command line tool to launch an instance, and kept...
View ArticleGetting a Virtual Machine’s IP Address from virsh
Ten Years later, and I finally know how to get virsh to tell me the IP address for a VM. So, I have a virtual machine image called cfme. To launch it, I run sudo virsh start cfme That gets me a running...
View ArticleClik here to view.
Different CloudForms Catalogs for Different Groups
One of the largest value propositions of DevOps is the concept of Self Service provisioning. If you can remove human interaction from resource allocation, you can reduce both the response time and the...
View Articletodo.txt done
While I like the functionality of the todo.txt structure, I do not like the fact that done tasks stay in my todo list in perpetuity, and I also don’t want to lose them. So, I’ve made a simple hack...
View ArticleOn Password Management: Firefox Yes, Chrome No
Summary: Firefox allows me to store passwords locally, encrypted, and password protected. Chrome wants to store passwords on line, which is not acceptable. A recent, noticeable slowdown in Firefox...
View ArticleCloudForms’ Domains Import and Export
DevOps requires that everything goes into Revision Control. CloudForms’ modifications are no exception. But how do you revision control something that is managed by a GUI and stored in a database?...
View ArticleClik here to view.
Tracing a Tempest Failure in Keystone
The tools that we’ve used to develop Keystone have changed a bit over the years. As I work on some long standing bugs, I’ve had to learn what the latest tools are, and how to use them. Recently I had...
View ArticlePicking the Right Hammer for the Job
Red Hat Satellite Server is a key tool in the provisioning process for the systems in our Labs. In one of our labs we have an older deployment running Version 1.11 on RHEL 6. Since I want to be able...
View ArticleFreeing up a Volume from a Nova server that errored
Trial and error. Its a key part of getting work done in my field, and I make my share of errors. Today, I tried to create a virtual machine in Nova using a bad glance image that I had converted to a...
View ArticleDeploying an image on OpenStack that is bigger than the available flavors.
Today I tried to use our local OpenStack instance to deploy CloudForms Management Engine (CFME). Our OpenStack deployment has a set of flavors that all are defined with 20 GB Disks. The CFME image is...
View ArticleMatching Create and Teardown in an Ansible Role
Nothing lasts forever. Except some developer setups that no-one seems to know who owns, and no one is willing to tear down. I’ve tried to build the code to clean up after myself into my provisioning...
View ArticleKeystonerc for RDO cloud
If you are using RDO Cloud and want to do command line Ops, here is the outline of a keystone.rc file you can use to get started. unset $( set | awk '{FS="="} /^OS_/ {print $1}' ) export...
View ArticleDeleting an image on RDO
So I uploaded a qcow image…but did it wrong. It was tagged as raw instead of qcow, and now I want it gone. Only problem….it is stuck. $ openstack image delete rhel-server-7.4-update-4-x86_64 Failed to...
View ArticleClik here to view.
Virtualization Setup for RH CSA study
While my company has wonderful resources to allow employees to study for our certifications, they are time limited to prevent waste. I find I’ve often kicked off the lab, only to get distracted with a...
View Article