Difference between revisions of "Sme11BuildQueue"

This page lists all the packages that SME Server needs to build for SME 11. The starting point is the smeos directory from SME 10. For each package it should be checked if it is still needed, or can we use an upstream package if one is available. see bug https://bugs.koozali.org/show_bug.cgi?id=12424

Package Build Steps

things have changed between SME10 and SME11. we moved from cvs to git. We also need to change the name of a few old e-smith rpm to smeserver for better consistency, but without forgetting from where we are coming. git is available here : https://src.koozali.org

TODO; write how to checkout and start a build

TODO ; reference on how to configure a build environement.

Required dependencies

created from the work on SME10, and updated.

you can use http://pkgs.org to fill the blank, reference where the rpm can be found (EPEL8,ROCKY8,REMI8,OPENFUSION8,RPMFUSION8,smedev,smetest) and the status (Build OK, NEED COPY,NOTABUG,WONTFIX,FIXED).

fill bug before building a new package : https://bugs.contribs.org/enter_bug.cgi?product=SME%20Server%2011.X&component=build

RPM's from smeos directory

before attempting to buidl check if they are available and put them rather in the table above with source to copy from, with at least the version number we had on SME10.

if you need to build check if a newer version is available. Sometime we might need to stick to an old version so document here when uping version in reference.

koji build dist-sme11-os git+https://src.koozali.org/smeserver/PACKAGE.git?#GITTAG

where PACKAGE is listed under, and GITTAG should be found in https://src.koozali.org

Packages in git, but we will use upstream

Packages to obsolete from git / not to build

Bare install test

	Warning:
	WIP inspired from Sme10BuildQueue#Bare install test

Install minimal iso for rocky 8

https://download.rockylinux.org/pub/rocky/8/isos/x86_64/Rocky-8-latest-x86_64-minimal.iso

Configure network access during installation with option to restore. Configure only root user.

Install EPEL8 repo.

dnf install epel-release

Install remi 8 repos

dnf install https://rpms.remirepo.net/enterprise/remi-release-8.rpm

Update, and install those package, as the might get handy (nb iptraf is now iptraf-ng)

dnf update -y
dnf install mc htop iftop iptraf screen wget vim ppp traceroute setserial traceroute cyrus-sasl-md5 cyrus-sasl device-mapper-multipath dhcp-client fetchmail ftp iscsi-initiator-utils lm_sensors minicom mt-st sysfsutils tcpdump telnet wodim

• Disable SELinux

SELinux is enabled by default. We want to disable it for there are a few services (e.g. httpd) that get blocked by SELinux. To check the status of SELinux you can enter the command:

getenforce

SELinux uses policies that conflict with some of the SME Server services ports like https. One can adjust the allowed ports, or remove the SELinux policies and disable SELinux by the following commands:

setenforce 0
sed -i -e 's/SELINUX=.*/SELINUX=disabled/g' /etc/selinux/config
dnf remove selinux-policy-targeted

• SSH

SSH is present and is enabled by default at this stage. To check issue:

systemctl status sshd

You may have a slow login to ssh, if needed :

vi /etc/ssh/sshd_config

You have to restart the ssh service , You might also want to wget your public keys in /root/.ssh/authorized_keys

systemctl restart sshd

update packages

dnf update

install SME11 repo

vim /etc/yum.repos.d/smeserver11.repo

and paste

[smedev]
enabled=0
MirrorList=http://mirrorlist.contribs.org/mirrorlist/smedev-11
name=SME Server - dev
gpgcheck=1
enablegroups=1
[smetest]
enabled=0
MirrorList=http://mirrorlist.contribs.org/mirrorlist/smetest-11
name=SME Server - dev
gpgcheck=1
enablegroups=1
[smeos]
enabled=0
MirrorList=http://mirrorlist.contribs.org/mirrorlist/smeos-11
name=SME Server - dev
gpgcheck=1
enablegroups=1
[smeupdates]
enabled=0
MirrorList=http://mirrorlist.contribs.org/mirrorlist/smeupdates-11
name=SME Server - dev
gpgcheck=1
enablegroups=1

[koji-sme11-os]
enabled=1
name=sme11-os
baseurl=http://koji.koozali.org/kojifiles/repos/dist-sme11-build/latest/x86_64/
gpgcheck=0
enablegroups=1

install SME10 key

wget http://mirror.koozali.org/releases/10/smeos/x86_64/RPM-GPG-KEY-koozali
rpm --import RPM-GPG-KEY-koozali

install openfusion 8

dnf install http://repo.openfusion.net/centos8-x86_64/openfusion-release-0.8-2.of.el8.noarch.rpm

then

dnf --enablerepo=* clean all

try installing SME11 packages, you might need to enable some repo using --enablerepo=smedev,epel,elrepo ... e.g.

dnf module switch-to php:remi-8.3 -y
dnf module switch-to mariadb:10.5 -y
dnf module switch-to python36:3.6 -y
dnf module install php:remi-8.3
dnf install e-smith-manager smeserver-* --enablerepo=koji-sme11-os,epel,remi,remi-safe,of --exclude=smeserver-mariadb*  --exclude=smeserver-horde

	Warning:
	we will drop horde support, so we have no limitation in keeping php 8.1 which is obsolete, I suggest to go with 8.3 EOL 23 Nov 2026

et voilà, you have a non functional SME 11 over Rocky 8 minimal.

Also remember that the legacy server manager (SM1) is not installed by the above, so, perhaps:

dnf install e-smith-manager 

If you then find you get an SM1 login but the login just celars the fields and does not login, then you can fix this with:

expand-template /etc/e-smith/web/common//cgi-bin/AuthTKT.cfg

## This is safer to be done directly on tty, not via ssh:

Get rid of Network-Manager NOW!

systemctl stop NetworkManager
systemctl disable NetworkManager 
systemctl stop NetworkManager-wait-online.service
systemctl disable NetworkManager-wait-online.service
systemctl start networking
dnf remove NetworkManager* --noautoremove

then you could try, (you might have no network form there), unlink this to avoid root password locking

unlink  /etc/e-smith/events/post-install/S10init-passwords
/sbin/e-smith/signal-event post-install

if you want to avoid the reboot and configure loop for the moment you can do

passwd admin
/usr/bin/systemctl restart rsyslog
/sbin/e-smith/db accounts setprop admin PasswordSet yes
/sbin/e-smith/db configuration set PasswordSet yes
/sbin/e-smith/db configuration setprop bootstrap-console Restore disabled

then try to configure using console

/sbin/e-smith/console

To get better information from Server Manager 2 (this replaces the barfing dinosaur):

mkdir -p /etc/e-smith/templates-custom/usr/share/smanager/conf/srvmngr.conf/
cat <<EOF > /etc/e-smith/templates-custom/usr/share/smanager/conf/srvmngr.conf/30Other
    modules_dir => 'lib/SrvMngr/Controller',
    webapp => 'smanager',
    mode => 'development',
    debug => 1,
\}
EOF
expand-template /usr/share/smanager/conf/srvmngr.conf
signal-event smanager-refresh

then to be sure to get sshd back

/sbin/e-smith/db configuration setprop  sshd status enabled PermitRootLogin yes access public
# add PasswordAuthentication yes  to enable password login
/sbin/e-smith/expand-template /etc/ssh/ssh_config
/sbin/e-smith/expand-template /etc/ssh/sshd_config
/usr/bin/systemctl restart sshd.service 
/sbin/e-smith/signal-event  remoteaccess-update

then you can

signal-event post-upgrade; 
signal-event reboot; 

or maybe

signal-event bootstrap-console-save;
signal-event-reboot

## end of the part better on tty than on sshd

you can also tidy a little

dnf remove NetworkManager* --noautoremove

you might need avoid using sme* repo except for koji builsdsystem one as long as they are not populated to do so:

mkdir -p /etc/e-smith/templates-custom/etc/dnf/dnf.conf/
echo "#rem custom"> /etc/e-smith/templates-custom/etc/dnf/dnf.conf/20main_reposdir
expand-template /etc/dnf/dnf.conf

also you might want to plan ahead and put the koji repo for when you will have deleted the custom template.

vim /etc/yum.smerepos.d/koji.repo

and paste:

[koji-sme11-os]
enabled=1
name=sme11-os
baseurl=http://koji.koozali.org/kojifiles/repos/dist-sme11-build/latest/x86_64/
gpgcheck=0
enablegroups=1

from there if you are lucky it worked and you can try to test , report as bug or even create a patch

Notes

we will have horde 6 in remi Horde 6 requires PHP 8.1 or PHP 8.2 versions. Support for PHP 8.3 is in development. https://wiki.horde.org/Doc/Dev/H6/Installation/PHP?referrer=Doc%2FDev%2FH6%2FInstallation

Horde 6 has been tested with MariaDB 10.8 and MariaDB 10.9 - any MariaDB of the 10.x series should work.

* ensure mariadb uses "innodb" as its default engine

* ensure the PHP server can reach the database hostname and port

* use utf8mb4 as default charset.

* create a database schema. This documentation assumes the db name is "horde"

https://wiki.horde.org/Doc/Dev/H6/Installation?version=10

References

• https://dnf.readthedocs.io/en/latest/modularity.htm
• https://docs.fedoraproject.org/en-US/modularity/using-modules/
• https://dnf.readthedocs.io/en/latest/cli_vs_yum.html
• https://man7.org/linux/man-pages/man5/dnf.conf.5.html
• https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/considerations_in_adopting_rhel_8/software-management_considerations-in-adopting-rhel-8
• https://fedoraproject.org/wiki/Features/YumMetalinks
• https://www.tecmint.com/reset-forgotten-root-password-in-rocky-linux-almalinux/