Created attachment 745 [details] arm-dvd镜像存在启动失败的服务 Description of problem: 使用anolis-23-aarch64-dvd1-20230524.6.iso镜像,通过virt-install安装虚拟机: virt-install --name an23_test --ram 4096 --vcpus 8 --disk path=/disk/path/virt1.qcow2,format=raw --cdrom /disk/path/anolis-23-aarch64-dvd1-20230524.6.iso --os-type generic --graphics vnc,listen=xxxx,port=xxxx --network=default --noautoconsole ;安装虚拟机后重启启动虚拟机,执行 systemctl --failed存在失败的服务:rngd.service,rtkit-daemon.service 查看失败服务状态: systemctl status 失败服务 失败状态见附件 Version-Release number of selected component (if applicable): # uname -r 5.10.134-14.1.an23.aarch64 Steps to Reproduce: 1.使用anolis-23-aarch64-dvd1-20230524.6.iso,创建虚拟机,并启动 2.执行systemctl --failed Actual results: 存在启动失败的服务 rngd.service,rtkit-daemon.service Expected results: 没有启动失败的服务 Additional info:
内核升级到 5.10.134-14.1.an23.aarch64 重启后,未复现。 # uname -r 5.10.134-14.1.an23.aarch64 # systemctl --failed UNIT LOAD ACTIVE SUB DESCRIPTION 0 loaded units listed. # systemctl status rngd.service ● rngd.service - Hardware RNG Entropy Gatherer Daemon Loaded: loaded (/usr/lib/systemd/system/rngd.service; enabled; preset: enabled) Active: active (running) since Mon 2023-06-12 10:24:00 CST; 8min ago Main PID: 862 (rngd) Tasks: 5 (limit: 36821) Memory: 8.2M CPU: 44.294s CGroup: /system.slice/rngd.service └─862 /usr/sbin/rngd -f -x pkcs11 -x nist -D daemon:daemon Jun 12 10:24:00 iZbp18q6gac7xc31yrwadnZ rngd[862]: Disabling 5: NIST Network Entropy Beacon (nist) Jun 12 10:24:00 iZbp18q6gac7xc31yrwadnZ rngd[862]: Initializing available sources Jun 12 10:24:00 iZbp18q6gac7xc31yrwadnZ rngd[862]: [hwrng ]: Initialization Failed Jun 12 10:24:00 iZbp18q6gac7xc31yrwadnZ rngd[862]: [rndr ]: No HW SUPPORT Jun 12 10:24:00 iZbp18q6gac7xc31yrwadnZ rngd[862]: [rndr ]: Initialization Failed Jun 12 10:24:00 iZbp18q6gac7xc31yrwadnZ rngd[862]: [jitter]: JITTER timeout set to 5 sec Jun 12 10:24:00 iZbp18q6gac7xc31yrwadnZ rngd[862]: [jitter]: Initializing AES buffer Jun 12 10:24:03 iZbp18q6gac7xc31yrwadnZ rngd[862]: [jitter]: Enabling JITTER rng support Jun 12 10:24:03 iZbp18q6gac7xc31yrwadnZ rngd[862]: [jitter]: Initialized Jun 12 10:24:03 iZbp18q6gac7xc31yrwadnZ rngd[862]: Process privileges have been dropped to 2:2 # systemctl status rtkit-daemon.service ○ rtkit-daemon.service - RealtimeKit Scheduling Policy Service Loaded: loaded (/usr/lib/systemd/system/rtkit-daemon.service; enabled; preset: enabled) Active: inactive (dead)
anolis-23-aarch64-dvd1-20230524.6.iso还是存在rngd.service和rtkit-daemon.service的报错,在开发新给出的ISO:anolis-23-x86_64-dvd1-20230606.1.iso里,没有再出现rngd.service的失败服务,但rtkit-daemon.service失败依旧存在,失败原因是没有rtkit用户,创建用户时报错为存在rtkit组,删除rtkit组后成功创建rtkit用户,重启rtkit服务,成功启动,rtkit服务失败及启动情况见附件截图
Created attachment 772 [details] rtkit服务信息截图
Created attachment 773 [details] rtkit-daemon 状态图 新版 rtkit-0.11-4 已修复 rtkit-daemon 服务失败
已修复
(In reply to 任博 from comment #5) > 已修复 0606.1的arm镜像依旧存在rngd服务报错的问题,报错信息见附件
Created attachment 781 [details] rngd服务报错
(In reply to liuyaqing from comment #7) > Created attachment 781 [details] > rngd服务报错 该报错可能跟机器硬件有关,对于qemu启动的虚拟机,可能没有硬件熵源导致rngd服务失败,需要手动指定服务的启动所用熵源。(通过rngd -l 可以查看系统中可用的熵源)。 对于没有可用熵源可以在服务启动时通过-r指定随机数生成方式。具体操作如下: # cp /usr/lib/systemd/system/rngd.service /etc/systemd/system # 将ExecStart那一行由 ExecStart=/usr/sbin/rngd -f $RNGD_ARGS 修改为ExecStart=/sbin/rngd -f -r /dev/urandom # 重启服务 # systemctl daemon-reload # systemctl restart rngd