Fedora Linux Support Community & Resources Center
  #1  
Old 9th September 2017, 03:25 PM
smadsen Offline
Registered User
 
Join Date: Sep 2017
Location: Denmark
Posts: 3
linuxchrome
Smile "Oldschool" subversion-server installation help needed.

Subversion (svnserve) troubleshooting:
Hi Fedora Forum

I am trying to setup a svnserve server using the basic svn protocol. This is primarily for learning/relearning and eventually I will probably enable a webinterface for the server.
But for the moment I do not want a running apache server to access the subversion repositories through http/https.

Requirements for my setup.
- Use oldschool svn://iportno/repo access method.
- Basic file based authentication for now.
- Authentication without config-file, so each repo has its own config-, authz-db and passwd-db file.
- My own repository mount-point on my btrfs-mirror: /mnt/svn_root_folder

I have done the following:
- Made a restricted svn user and svn group. No login. Not a real system user, but a locked account because the user gui (system-config-users) didn't support making a clean system user account.
I am using the group id right now and not the user id since fedora starts svnserve as root using systemd.

- The svn_root_folder mount-point is owned by root:svn. I have confirmed that the users who are members of the svn group can read and write to the mount-point aswell as root.

- svnserve is started using this /etc/sysconfig/svnserve setup:
- OPTIONS="--log-file=/mnt/svn_root_folder/svnserve/svnserve.log -r /mnt/svn_root_folder/repositories
--listen-host=SERVER-IP-ADDRESS --listen-port=MY_CUSTOM_PORT"

- I have put SELinux in permissive mode for svnserve_t labels. This is to avoid that SELinux interfering with svnserve during basic installation and test. I plan on activating SELinux again to learn how to give a simple server process access through the SELinux MAC layer.

- I have confirmed that the port chosen for the service is open in firewalld using netcat (nc) from another pc on my lan.
I added it using:
firewall-cmd --permanent --add-port=4690/tcp
and reloaded using:
firewall-cmd –reload

Current problem:
- If I start svnserve with --listen-host=My_Specific_Ip it fails to start with the error:
svnserve: E000099: Can't bind server socket: Cannot assign requested address

- If I start svnserve with --listen-host=0.0.0.0 the service is running.
If I try to checkout a repository it fails:
- svn co svn://SERVER-IP-ADDRESS:MY_CUSTOM_PORT/repository
Error:
svn: E170013: Unable to connect to a repository at URL 'svn://SERVER-IP-ADDRESS:MY_CUSTOM_PORT/repository'
svn: E170001: No access allowed to this repository

I have tried creating a new repository using svnadmin create repository_name.
- Added svnserve.conf
[general]
passwd-db = /mnt/svn_root_folder/repositories/repository1/conf/passwd
authz-db = /mnt/svn_root_folder/repositories/repository1/conf/authz
anon-access = none
#auth-access = write
realm = hostname

- authz
[groups]
admin = admin_user
users = user_name

[/]
@admin = rw
* =

[/repository1]
@admin = rw
@users = rw
* =

[/repository2]
@admin = rw
user_name = rw
* =

- passwd
[users]
user_name = userPassword

I also tried to import an existing reposity and updated the config files also without luck.

Is it a firewall rule that i'm not defining? I prefer having svnserve only listening on my primary nic, since I only plan on accessing my repositories using my lan.
Reply With Quote
  #2  
Old 9th September 2017, 03:51 PM
flyingdutchman Offline
Registered User
 
Join Date: Jan 2015
Location: Al Ain, UAE
Posts: 723
macosfirefox
Re: "Oldschool" subversion-server installation help needed.

"svn: E170001: No access allowed to this repository"

First, change the SELinux configuration so that it is not enforcing, then try again.
__________________
--
Have fun!
http://www.aeronetworks.ca
Reply With Quote
  #3  
Old 9th September 2017, 06:10 PM
smadsen Offline
Registered User
 
Join Date: Sep 2017
Location: Denmark
Posts: 3
linuxchrome
Re: "Oldschool" subversion-server installation help needed.

Hi Flyingdutchman
I'm already testing this in permissive mode. I tried this both just making the label svnserve_t permissive and booting in full permissive mode with no success.
Reply With Quote
  #4  
Old 9th September 2017, 06:44 PM
flyingdutchman Offline
Registered User
 
Join Date: Jan 2015
Location: Al Ain, UAE
Posts: 723
macosfirefox
Re: "Oldschool" subversion-server installation help needed.

Then check which user svn is running as with ps and ensure that the directories are indeed owned by that user.
__________________
--
Have fun!
http://www.aeronetworks.ca
Reply With Quote
  #5  
Old 9th September 2017, 07:02 PM
smadsen Offline
Registered User
 
Join Date: Sep 2017
Location: Denmark
Posts: 3
linuxchrome
Re: "Oldschool" subversion-server installation help needed.

As stated in my original post the svn root folder is owned by root:svn, because svnserve runs as a daemon and according to ps aux is owned by root.
Reply With Quote
Reply

Tags
installation , needed , oldschool , server , subversion , subversionserver , svnserve

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Can't access "lost+found" or "root" in "Computer" directory jeb3121 Installation, Upgrades and Live Media 5 27th November 2013 04:36 PM
unpredictable "delete" "move to trash" or "cut" file menu option dorianrenato Using Fedora 1 21st November 2011 04:09 AM
MySQL: "plugin" and "server" tables corrupt? mbratch Using Fedora 4 7th February 2010 02:22 AM
Error:visibility arg must be one of "default", "hidden", "protected" or "internal" wangfeng Using Fedora 0 23rd May 2005 04:59 AM
Installation of "small server" (FC1) - a bunch of questions bjoel EOL (End Of Life) Versions 2 26th July 2004 05:31 AM


Current GMT-time: 12:47 (Wednesday, 18-10-2017)

TopSubscribe to XML RSS for all Threads in all ForumsFedoraForumDotOrg Archive
logo

All trademarks, and forum posts in this site are property of their respective owner(s).
FedoraForum.org is privately owned and is not directly sponsored by the Fedora Project or Red Hat, Inc.

Privacy Policy | Term of Use | Posting Guidelines | Archive | Contact Us | Founding Members

Powered by vBulletin® Copyright ©2000 - 2012, vBulletin Solutions, Inc.

FedoraForum is Powered by RedHat