smosercr3 is gone, but ask again tomorrow.00:13
b0gatyrjoin #windows-server00:26
=== SJrX is now known as SJr
=== fenris is now known as Guest90959
=== avoine_ is now known as avoine
=== jj-afk is now known as jjohansen
=== Guest86261 is now known as CrazyGir
the_foolHi, i'm working on setting up a friend with ubuntu, but I can't seem to get the wireless up and running, it looks like the driver is good, but i'm no expert - anyone willing to walk me through this? Thanks01:30
avoinethe_fool: join the #ubuntu channel and I will help you there01:35
cjs226I'm having a problem with shutdown and reboot not waiting for a shutdown script to complete.  i verified it's being run.  i assumed the system would wait for each K script to complete.  is this not the case?01:54
avoinecjs226: I think it kill scripts after a certain time, I'm not sure02:00
avoinecjs226: the timeout is 5 seconds by default -> http://upstart.ubuntu.com/cookbook/#kill-timeout02:01
cjs226ah, that explains it.  THANKS!02:01
=== Guest90959 is now known as ejat
SpamapScjs226: when you say the "K" scripts .. what # is it receiving in /etc/rc0.d ?02:08
SpamapScjs226: there is definitely no timeout for those scripts.. they are run one after the other02:09
cjs226i have it as K01 in rc0, 2 and 602:10
cjs226what's the best procedure to impliment an app's shutdown script such that it has time to shutdown gracefully.  for me i need a minute and a half02:11
SpamapScjs226: it should work to just have the K script in there02:12
SpamapScjs226: note that it needs an S script in the previous runlevel as well, or it won't be killed as the system won't think it was running02:13
cjs226spamaps: ok, i'll test that, thx02:13
SpamapScjs226: typically the defaults given to a script by update-rc.d work fine02:14
SpamapScjs226: note that if you switch to an upstart script, you want 'stop on starting rc RUNLEVEL=[016]'02:14
SpamapSotherwise the system will only wait about 10 seconds for it to stop02:14
SpamapS(known bug)02:14
SpamapScjs226: good luck02:15
* SpamapS signs off for a bit02:15
cjs226thx, appreciate it!02:15
uvirtbotNew bug: #850587 in cloud-init (main) "cloud-init fails to install if /tmp directory is noexec" [Undecided,New] https://launchpad.net/bugs/85058703:41
sbeattieDaviey: FYI, update-notifier-common (which lets you know you need to reboot your server in motd) used to be in the default server install in lucid http://people.canonical.com/~ubuntu-archive/germinate-output/ubuntu.lucid/server, but got dropped for maverick and later.03:46
sbeattieDaviey: are you sure that it should have been dropped?03:47
ujjain1do I need to run seahorse with sudo to use it? and I get a gnome-keyring communication failure error.03:48
=== WinstonSmith is now known as ermmmmmmmmmmms
=== ermmmmmmmmmmms is now known as WinstonSmith
=== WinstonSmith is now known as ermmmmmmmmmmms
=== ermmmmmmmmmmms is now known as WinstonSmith
CoreyLike an idiot, I just blew away the squid init script (/etc/init.d/squid).  How do I get apt / aptitude to reinstall it?06:33
lifelesssergevn: is it bad that rmmod iwlagn inside a container removes the module successfully ?06:40
lifelesssergevn: sorry, wrong serge ;)06:42
lifelesshallyn: is it bad that rmmod iwlagn inside a container removes the module successfully ?06:42
ScottKCorey: sudo apt-get purge squid then sudo apt-get install squid and you'll get it back.06:59
WinstonSmithwhat about dpkg-reconfigure? wouldn't that do the trick?06:59
ScottKWhen you manually remove the file, dpkg will assume that means you didn't want it until you purge and then it forgets you did that.07:01
sorenlifeless: You need to drop the sys_module capability.07:02
* soren runs off for a half hour or so07:03
CoreyScottK: Thanks.  Unfortuantely as it turns out this is Ubuntu 6.xx, so those packages aren't available anymore.  Whoops.07:06
ScottKCorey: They are on old-releases.ubuntu.com07:06
ScottKYou really should upgrade though.07:06
ScottKYou'll just need to adjust /etc/apt/sources.list to point at it.07:07
CoreyScottK: Not my choice.07:09
CoreyScottK: And thanks. :-)07:09
ScottKYou're welcome.07:09
CoreyScottK: Unfortunately the client's preferences eclipse my own.07:09
ScottKI know how that is.07:09
ScottKThey should hire me to tell them they're wrong.07:10
CoreyScottK: They've already done that with me. ;-)07:10
CoreyScottK: Mind if I ask what your contribution was that got you Ubuntu membership?07:10
ScottKIt was also in 2007, so things have changed a bit.07:11
lifelesssoren: probably dhouldn't be on by default :)07:20
uvirtbotNew bug: #338766 in vm-builder (universe) "vm-builder should support proxy servers" [Wishlist,Fix released] https://launchpad.net/bugs/33876607:31
uvirtbotNew bug: #850672 in nut (main) ""port = auto" does not work with bcmxcp_usb (powerware 5115)" [Undecided,New] https://launchpad.net/bugs/85067207:36
sorenlifeless: How are you running your containers?07:47
sorenlifeless: Using libvirt or lxctools?07:47
lifelesssoren: lxc-start ...07:48
Nafallohi. who handles php these days? :-)07:48
lifelessNafallo: noone :) </troll>07:49
Nafallolifeless: heh07:49
NafalloI had to "upgrade" to the packages from sid on an oneiric server yesterday because our php5-sqlite only has sqlite3 support :-P07:50
Nafalloand sid had a different ABI07:50
sorenlifeless: bug 85068707:50
uvirtbotLaunchpad bug 850687 in lxc "Should disable cap_module by default" [Undecided,New] https://launchpad.net/bugs/85068707:50
lifelessthanks :)07:51
sorenNafallo: And what did you need (if not sqlite3)=07:51
Nafallosoren: sqlite07:51
sorenI had no idea anyone still used that for anything.07:52
Nafalloroundcube wanted it at the very least ;-)07:52
lifelessprobably pastebin.ubuntu.com07:52
sorenNafallo: I've only ever used roundcube with MySQL :-/07:53
NafalloI bet there are more things, but it took me a good while to figure out and "work around" it :-P07:54
sorenlifeless: If it helps at all, libvirt does it correctly (removes CAP_SYS_MODULE).07:54
lifelesssoren: cool07:54
lifelesssoren: [it doesn't, but cool]07:54
DavieyNafallo: Erm, i thought it was an effort this cycle for us to remove sqlite support?07:54
DavieyOr at least, get it out of main07:55
NafalloDaviey: well, not haivng a working roundcube-sqlite package would be a regression :-)07:56
DavieyNafallo: Sure, fancy fixing roundcube?07:56
NafalloDaviey: I tried to find out if I could convince it to use sqlite3 yesterday, and restorted to upgrading from sid.... just saying.07:57
NafalloI'd rather have php5-sqlite in universe with libsqlite dependency (if main is the reason we can't have working things)07:57
Nafalloalternatively we could have php5-sqlite and php5-sqlite307:59
DavieyNafallo: I think you are calling for php5-sqlite to be a seperate source package.07:59
Nafallohaving php5-sqlite being only sqlite3 wasn't helpful :-P07:59
Nafallosource/binary.. whatever works.08:00
uvirtbotNew bug: #850687 in lxc (main) "Should disable cap_module by default" [Undecided,New] https://launchpad.net/bugs/85068708:01
DavieyNafallo: fancy trying http://www.roundcubeforum.net/3-news-announcements/12-general-discussion/4954-making-sqlite-3-x-work.html , but see if you can avoid using pear?08:04
DavieyAlthough, why you'd use sqlite over mysql is a mystery to me :)08:04
NafalloDaviey: I fancy a working setup OOTB. that's why I run Ubuntu.08:05
DavieyNafallo: Hang on, you use the development release of Ubuntu to have stability. You are doing it wrong,08:05
DavieyI assumed you were running the development version to help fix issues before release.08:05
Nafalloand since it took me half a year to get round to setting up a new VM and install roundcube, not in a 11.10 timeframe ;-)08:05
NafalloDaviey: yes. issues like the one I ran into and that we are talking about :-)08:06
NafalloI always try to run the development version when and where it's convenient for me to do so08:06
uvirtbotNew bug: #850690 in samba (main) "package samba-common 2:3.5.4~dfsg-1ubuntu8.4 failed to install/upgrade: there is no script in the new version of the package - giving up" [Undecided,New] https://launchpad.net/bugs/85069008:07
DavieyNafallo: Sorry.. Looks like you are sad out of luck then.. Happy to help you fix this issue, but we don't have the time to fix it for you.08:08
Nafalloright. okay.08:08
Nafallothe issue is obviously one created by Ubuntu, since Debian doesn't have this problem, but yeah... I won't get much done by whining about this here :-)08:12
mattiHey Nafallo08:15
Nafallohi matti08:15
koolhead11hi all08:18
DavieyNafallo: you have been around long enough to know how this works :).. Have you even raised a bug?08:20
NafalloDaviey: yes, and I plan to do so again ;-)08:21
DavieyNafallo: What is the bug number?08:22
NafalloDaviey: sorry, but I tend to discuss before raising them. it is currently scheduled for this evening when I get home from work.08:23
DavieyNafallo: Okay, give me a ping when there is a patch attached... and we'll get it fixed!08:25
jamespageDaviey: udeb work - libcurl3-minimal-udeb looking OK - going to look at xmlrpc-c-minimal today08:26
jamespage(and good morning BTW)08:26
NafalloDaviey: didn't say I'd get time to do any patching mate...08:26
DavieyGooooood Morning jamespage08:27
Davieyjamespage: You sir, are a life saver.08:27
DavieyNafallo: Oh sure, branches are equally as good.08:29
koolhead11hey Daviey jamespage08:32
lynxmanmorning all o/08:35
Davieyhey koolhead11 & lynxman08:36
jamespagemorning koolhead11, lynxman08:38
lynxmanDaviey, jamespage o/08:38
koolhead11Daviey: so we have to wait for Debian guys to fix the dbconfig bug!! :D08:38
Davieykoolhead11: oh noes.. What one?08:41
koolhead11Daviey: https://bugs.launchpad.net/debian/+source/dbconfig-common/+bug/80703808:42
uvirtbotLaunchpad bug 807038 in dbconfig-common "dbconfig-common fails to preseed phpmyadmin on natty/lucid" [Medium,New]08:42
rbasakkoolhead11: From yesterday, the problem seems to be that my machine inside kvm doing netboot off oneiric server b1 isn't picking up a virtio disk, so it is giving me an iscsi option only08:49
rbasakIs this expected - is there a different image I'm supposed to be using?08:49
koolhead11rbasak: no there is no saperate image for KVM AFAIK08:50
koolhead11rbasak: i would suggest check KOAN as well08:51
rbasakkoolhead11: AIUI, doesn't koan only help if I already have a machine installed?08:51
* rbasak tries using a SCSI bus instead08:52
koolhead11rbasak: i would suggest please check it. As i have not worked on/with KVM i have tried cobbler for my physical machines.  It be great if after the test you will blog about the same. :)08:52
jamespagehmm - tomcat6 is not in the ubuntu-server packageset - how odd....08:58
jamespagerbasak: you need RoAkSoAx - he demoed  what you are trying todo at UDS-O08:59
koolhead11jamespage: +1 yeah :D09:00
koolhead11jamespage: even there is no openjdk-6-jre which jenkins depends on :(09:00
Davieysmoser also worked on doing it slightly differently.09:00
jamespagekoolhead11: in oneiric? it depends on default-jre-headless which should pickup the right java09:02
Davieyrbasak: check out lp:~smoser/+junk/cobbler-devenv09:02
DavieyThe how-to might be of use.09:02
jamespageDaviey: any chance you could sponsor https://code.launchpad.net/~james-page/ubuntu/oneiric/tomcat6/CVE-2011-3190/+merge/75495 - whilst I work on xmlrpc-c-minimal09:03
uvirtbotjamespage: Certain AJP protocol connector implementations in Apache Tomcat 7.0.0 through 7.0.20, 6.0.0 through 6.0.33, 5.5.0 through 5.5.33, and possibly other versions allow remote attackers to spoof AJP requests, bypass authentication, and obtain sensitive information by causing the connector to interpret a request body as a new request. (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3190)09:03
koolhead11jamespage: so i should not install openjdk-6-jre on my oneiric clients ?09:03
jamespagekoolhead11: sorry - are you talking about jenkins slaves or a jenkins master?09:03
koolhead11jamespage: slaves :D09:03
jamespagekoolhead11: try the jenkins-slave package - it installs the right bits for you09:04
jamespagesupports both running via SSH from the master OR starting up locally and connecting to the master server09:05
Davieyjamespage: Have a call starting now, but right after - sure09:05
koolhead11jamespage: is it in the ISO, base pkg ?09:05
jamespagekoolhead11: nope - jenkins is all in universe09:05
koolhead11jamespage: ok :(09:05
koolhead11i don`t have internet at time am running cobbler. seems like i have to do this just after machine gets provisoned09:06
koolhead11i have simple ISO of oneiric which feeds as repo for me09:07
koolhead11anyways am back to my LDAP love, catch you guys later.09:09
=== koolhead11 is now known as koolhead11|afk
DavieyLDAP 'love'?  Hmm, i'm yet to find that.09:10
rbasakIt seems that both virtio and scsi don't work for cobbler+kvm - but ide emulation is OK09:26
jamespageDaviey: how do we test all this new udeb stuff?09:27
Davieyjamespage: give me 10, then we'll chat09:33
jamespageDaviey: OK  - I have a minimal xmlrpc with udeb working as well now09:37
jamespageall looks OK but it needs review09:37
sorenjamespage: Where can I see it?09:38
jamespagesoren: all branches attached to bug 83149609:45
uvirtbotLaunchpad bug 831496 in Ubuntu Oneiric "[FFe] Add cobbler enrollment support to server cd image" [High,New] https://launchpad.net/bugs/83149609:45
jamespageI've uploaded xmlrpc-c-minimal (NEW) and curl to ppa:james-page/discovery09:46
uvirtbotNew bug: #850771 in samba (main) "package samba 2:3.5.8~dfsg-1ubuntu2.3 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/85077109:56
Davieyjamespage: Fancy a call?10:04
jamespageDaviey: one moment10:05
* Daviey holds himself.10:05
* Daviey gets on with stuff.10:06
jamespageDaviey: OK now10:12
jamespageDaviey: ldd cobbler-enrol - http://paste.ubuntu.com/689885/10:40
jamespageI've just uploaded cobbler-enrol to ppa:james-page/discovery10:41
jamespageI might suggest that we move all of the branches to a team location so we can both work on them10:42
jamespagehmm   I'd test but I'm not near my cobbler system10:43
jamespageDaviey: I know this is targetted to the ISO but it should be possible todo the same thing from a network PXE boot as well?  Could be a menu option for unregistered systems from cobbler10:44
Davieyjamespage: that is the honest primary purpose.10:47
Davieycobbler sending a preseed value for these debconf questions down the wire10:47
smoserrbasak, most certainly any server kernel we have should support virtio disk11:43
smosermost likely as modules... maybe you had an out of date iso that you booted from, which would mean the installer does not find a matching kernel module package11:44
rbasaksmoser: Ah, I see - so the installer looks for a kernel module package in the archive that matches the image it is using?11:44
smoserbut it does give a reasonable error11:45
rbasakI'm using the b1 iso image, so I guess the corresponding module package in the archive is now gone11:45
smosersomethign like "can't find modules"11:45
smoseri woudl have thought the beta1 would continue to work, but maybe not11:45
smoserrbasak, this is the net-install ?11:45
rbasakI saw no error, but probably because of the preseed11:45
rbasakIt's whatever cobbler gave me11:45
smoseryeah, so make sure whatever cobbler has is up to date an dtry again11:46
smoserthere is a command for that11:46
smosercobbler-import-ubuntu or something11:46
smoseror ubuntu-import-cobbler11:46
smosersomethin like that11:46
smoserand if that fixes your problem, please open a bug11:46
smoserit should not be such an issue after release, but i tihnk that it will be an issue... or maybe we should make sure its only going to import the released versions which shoudl work indefinitely11:47
rbasakcobbler-ubuntu-import :-P11:47
Davieyrbasak: If you are using an archive made from the iso, then it should still work.  If you are using a public archive, then it will not work :)11:47
smoser"archive made from the iso" ?11:48
smosercobbler does not do that.11:48
rbasakyeah I'm just doing what cobbler did for me11:48
rbasakI imported the b1 iso, that's all. I didn't know about import-ubuntu-cobbler11:48
Davieysmoser: How much do you care about bug 827590 getting fixed in oneiric?11:49
uvirtbotLaunchpad bug 827590 in nova "cloud-init does not mount ephemeral0 on /mnt in nova" [Medium,Fix committed] https://launchpad.net/bugs/82759011:49
Davieysmoser: Are you stating that it cannot do that?11:49
smoserit looks like that should not be an issue after release11:50
smoserhttp://us.archive.ubuntu.com/ubuntu/dists/lucid/main/installer-i386/ (those are old11:50
smoserDaviey, that is fix-commited11:51
smoserbut i care a lot11:51
smoserwe're picking another nova branch, right ?11:51
Davieysmoser: Erm, it's Fix Committed in Essex.. not Diablo.11:54
DavieyWe either need to convince ttx/vish to backport that (note, that it requires a db schema change); or distro patch it ourselves if you think it is essential.11:55
smoseroh carp. i had forgotten about that.11:56
smoserwe need to pull that stuff back.11:56
smoserwell, i think tha tis worht pulling into ubuntu11:57
smoseralthough the db schema change bothers me.11:57
smoseras we may then need to deal with upgrade issues.11:57
Davieysmoser: Can you try and convince vish and/or ttx that they should carry it upstream?11:57
Davieysmoser: nah, the migrations are pretty safe TBH.11:58
Davieywell, in nova, less so with glance it seems11:58
smoserbut we migh have one that is different11:58
DavieyIt's not like this is an SRU schema change.11:58
smoserie, our db then would look different to an essex upgrade than diablo pure11:59
smoserand we'll possibly have to deal with it then11:59
smoserDaviey, there are some other bugs that i consider serious11:59
DavieyGood point... i think that could be handled.. but we can avoid the headache if it's done upstream :)11:59
Davieysmoser: link me baby11:59
smoserbug 837100 , bug 83710212:00
uvirtbotLaunchpad bug 837100 in nova "nova does not uncompress qcow compressed images" [Wishlist,Confirmed] https://launchpad.net/bugs/83710012:00
uvirtbotsmoser: Error: Could not parse data returned by Launchpad: The read operation timed out12:00
Davieybug 83710212:00
Davieyuvirtbot: you suck.12:00
uvirtbotLaunchpad bug 837102 in nova "nova writes libvirt xml 'driver_type' based only on FLAGS.use_cow_images" [Low,Triaged] https://launchpad.net/bugs/83710212:00
uvirtbotDaviey: Error: "you" is not a valid command.12:00
smoseruvirtbot, uvirtbot sucks12:01
uvirtbotsmoser: Error: "uvirtbot" is not a valid command.12:01
smoserthe first there, means we basically have to have the client uncompress the compressed qcow disk images that we create before they upload12:01
smoserotherwise performance will be abissmal12:02
smoserthe second (untested) to me means that if you use a qcow image to upload, and you do not have USE_QCOW flag (which, realistically, no one outside of developement is going to use), then i think app armour will cause kvm to fail12:03
Daviey837100, seems unlikely to be a candidate for this release IMO.12:03
smoseri went hunting some yesterday on how to determine if a qcow image is compressed or not. unfortunately, qcow-img does not report that.12:03
smoserDaviey, that one is easily fixable. but why do you think not a candidate ?12:03
smoserthe most difficult thing is determining if it is compressed or not.12:04
Davieysmoser: Seems to be a feature, rather than an actual bug?12:04
Davieysmoser: does 'file' return that data?12:04
smoseryou consider not doing cpu decompression on every read to be a feature12:05
smoserand for the second, you consider having instances not fail to boot to be a feature.12:06
DavieyThe cpu decompression to me, seems to be a performance enhancement.12:07
DavieyIt currently works without that fix. right?12:07
Davieyjust slow.12:07
DavieyI'm not saying it /shouldn't/ be fixed, but is it going to be accepted upstream?12:07
smoser"my disk reads at 3MB/s"12:07
smoser"my disk *should* read at 90MB/s"12:08
smoser"my system is always pegged 100% on 8 CPUS"12:08
smosersomething like that.12:08
smoserwe *can* work around this in cloud-utils. but its a wart.12:08
Davieyttx: thoughts?12:09
smoserttx, same bugs that i bothered you at in openstack-dev12:11
* smoser goes to branch milestone-proposed12:12
ttxDaviey: those bugs look sane -- if the question is "will they be accepted in a diablo backport" it all depends on the impact of the bugfix12:13
ttxDaviey: so basically they need to be fixed in trunk first12:13
rbasaksmoser: yes, cobbler-ubuntu-import fixed it, thanks12:13
rbasaksmoser, Daviey: so is that a bug? Do we care?12:14
ttxDaviey: if the solution is a clean one-liner, it's an obvious YES. If the solution involved a new dependency, a Db version bump and three new undocumented flags... not so much.12:14
=== ersi_ is now known as ersi
smoserrbasak, i tihnk its not so much of a bug as i had thought.12:15
smoseri said above because after release the issue will not occur12:15
rbasaksmoser: OK, no problem12:15
smoser(at least thats my understanding... the lucid iso is 10.04 date-ish, even though we've even released 10.04.1)12:15
smoserit is freaking annoying, but should only occur on the development release.12:16
Davieyerm, i disagree.  It will brak on every kernel ABI bump.12:16
rbasakDaviey: I'm not sure. Won't the old modules .deb remain even after an update?12:18
rbasakOne potential issue is that the breakage doesn't report any kind of error. Even if the installer is supposed, the default cobbler preseed seems to make sure that it won't. Instead I get a flashing screen and no other info as debian-installer restarts in an infinite loop, and trying to figure out what is going on in a different VT is difficult as the screen won't stop flashing.12:19
smoserrbasak, how would it break ?12:26
smoseri dont think it would.12:26
Davieyrbasak: ah, that is new to me.12:26
smoserlook at http://us.archive.ubuntu.com/ubuntu/dists/lucid/main/installer-i386/12:26
smoserthat is the iso that cobbler-ubuntu-import would pull12:27
smoserand it has not changed since 10.0412:27
smosermeaning it has lucid-release kernel on it12:27
smoserwhich is original12:27
smoser(also meaning you will boot the installer with a security vulnerable kernel though)12:27
smoserspecifically the import pulls http://us.archive.ubuntu.com/ubuntu/dists/lucid/main/installer-i386/current/images/netboot/12:29
hallynlifeless: it's not an inherent problem.  cap_sys_module just isn't something that gets dropped by default.  To drop it, add 'lxc.cap.drop = sys_module' to /var/lib/lxc/<container>/config12:29
rbasaksmoser: I mean that if it is broken, then there's no hint as to why12:29
rbasaksmoser: I'm not sure that it would break after release12:29
smoserrbasak, i sweare that when it breaks it leaves you at a ncurses prompt saying "what do you want to do"12:29
smoserbut maybe you're not seeing that because of preseed.12:29
smoserbut i sweare i saw it with preseed.12:30
rbasaksmoser: I didn't get that at all.12:30
smoserbut as far as i can tell, that will never be a problem after install12:30
smoserafter release12:30
smoserbut if it is *not* a problem, then we're wasting people's bandwidth because the cobbler input runs weekly i thikn.12:30
smoserand will continuously download and import the same thing.12:30
rbasaksmoser: when I tried to turn off the preseed, I'm not sure to what extent I succeeded but I did get it to tell me that there were no disks and would I like to set up iSCSI - yet no message about missing modules.12:31
smoserRoAkSoAx, kirkland ^12:31
smoserrbasak, i swear it gives  a reasonable error.... but its been a long time.12:31
smoserso i trust your memory more than mine here.12:31
rbasaksomething must have changed12:31
rbasakor something in my config, but I don't think I've deviated much from what cobbler does from default. I did try cobbler's supplied preseed too12:32
smosercjwatson, sorry to bother you, but can you comment on the above?  after release will we ever update the netboot iso at $mirror/dists/$rel/main/installer-$ubuntu_arch/current/images/netboot/mini.iso ?12:35
Error404NotFoundSay i have a RAID0 of 5 device, i take snapshots of those 5 devices on daily basis. When restoring data, what would be the procedure? restore snapshots on separate 5 devices, assemble a RAID out of those 5 device and copy data that was lost?12:38
cjwatsonsmoser: no, but we deliver updates to $rel-proposed / $rel-updates12:40
cjwatsonyou should probably use $rel-updates if there's something there12:40
smoserah... so possibly we should then pull from -updates if there is something12:40
smoseryeah, but then we'll have the issue above12:40
smoserwith the possibly-no-modules failure12:40
cjwatsonwhat issue's that, sorry?  failing to parse it from the above12:40
smoseriso boots, but matching kernel modules package is not in archive12:41
smoserno modules, fail to install12:41
cjwatsonerr, if that's happening then we have a problem ANYWAY12:41
cjwatsonand we need to refresh the installer image12:41
cjwatsonwe> by which I mean I12:41
smoserbut we have a cached installer image in a local cobbler isntall12:41
smoserie, user installs cobbler, pulls down a net-iso, it works12:41
smoserthey wait 3 weeks12:41
smoserit fails12:41
cjwatsona quick If-Modified-Since check isn't that hard surely12:42
smoserwell, yes, we could do that. but we dont' actually have a good entry point to do that.12:42
cjwatsonthat seems like something worth fixing then. :)12:42
smoserthanks for the info, cjwatson.12:42
smoserrbasak, so there are 2 issues.12:43
smoser1, we're not pulling from -updates and we should be12:43
smoser2, if we were, we'd hit this issue after release also12:43
cjwatsonalthough, hmm12:43
cjwatsonthinking about it, we never do NBS runs on post-release pockets at the moment12:43
cjwatsonso actually, modules udebs for old ABIs never get garbage-collected12:43
cjwatsonthis is sort of a bug but we could refrain from fixing it if it would make life easieer12:44
smoserwell they do during devleopment release.12:44
smoserit would make things easier, yes :)12:44
cjwatsonyes, but post-release is different12:44
smoseryeah, i assumed that was the case12:44
smoserso somewhere i should document this conversation12:44
smoserthanks again.12:45
cjwatsonyep, lucid-updates currently has kernel udebs for every ABI from 2.6.32-22 to 2.6.32-33 inclusive12:45
rbasakThe Ubuntu cobbler docs at https://help.ubuntu.com/community/Cobbler/Import need to be updated to use cobbler-ubuntu-import. I've been using an ISO I downloaded manually and been getting the breakage that way. In that use case, it seems an issue to me that the installer is pulling the kernel from the ISO (obviously) yet the modules from the archive.12:45
cjwatsonrbasak: intentional12:46
cjwatsonyou're using a netboot installer image (albeit one shipped on the ISO) not a CD image12:46
cjwatsonby design that pulls from the network12:46
cjwatsonI'm happy for people using the development release to have to refresh the installer image frequently12:46
cjwatsonbecause the purpose is to test stuff for the next release, so I don't want to put much effort into facilitating people using old code12:47
cjwatsonit shouldn't happen that way for a stable release12:47
cjwatson(if it is, that's a different matter, but I assume you mean an Oneiric ISO?)12:47
rbasakYes, I used the ubuntu server oneiric b1 iso12:48
rbasakOK, I think I understand. This would never happen after release since the old module udebs will never be removed, and before release I should be using cobbler-ubuntu-import anyway so it should be a one-command update12:49
uvirtbotNew bug: #850880 in cobbler (universe) "cobbler-ubuntu-import does not pull from -updates" [Undecided,New] https://launchpad.net/bugs/85088013:01
uvirtbotNew bug: #850886 in cobbler (universe) "cobbler-ubuntu-import results in possibly stale netboot kernels" [Undecided,New] https://launchpad.net/bugs/85088613:06
smoserrbasak, Daviey out of above conversation came bug 850886, bug 850880, bug 85089213:15
uvirtbotLaunchpad bug 850886 in cobbler "cobbler-ubuntu-import results in possibly stale netboot kernels" [Undecided,New] https://launchpad.net/bugs/85088613:15
uvirtbotLaunchpad bug 850880 in cobbler "cobbler-ubuntu-import does not pull from -updates" [Undecided,New] https://launchpad.net/bugs/85088013:15
uvirtbotLaunchpad bug 850892 in orchestra "orchestra-import-isos does not update" [Medium,Confirmed] https://launchpad.net/bugs/85089213:15
Davieysmoser: bah, stop causing bugs.. fix 'em13:16
quesoIf I set up LDAP auth on a server, and there is already a local user "queso" with a home dir, but the LDAP server also has a "queso" account, what will happen if I try to log in?  Does it try local user auth first, then try LDAP auth?13:17
Davieyqueso: sounds like something to try? :)13:17
smoseri woudl suspect ldap would read /etc/passwd first.13:18
gacdepends on priority in nsswitch.conf, IIRC?13:18
smoserbut thats a guess.13:18
quesoDaviey: I don't want to just "try" something on a production server, especially when there is no root account to fall back on if LDAP auth is misconfigured.13:18
quesogac: aah, okay13:18
smosergac is probaly correct.13:18
Davieyqueso: no problem, do it on your staging server.13:19
mdeslaurSpamapS: any idea when the squid packages in -proposed will be released? I want to prepare a security update for squid and don't want to obsolete them...13:19
sorenqueso, smoser, gac: No.13:20
smosersoren, seriously. i was quite happy with conjecture. please avoid from giving useful and factual information.13:20
sorennsswitch is what is used to look up e.g. which username corresponds to the uid of a given file when you do "ls". The order of authentication is all about PAM.13:20
smoserso those 2 have to be consistent or odd things.13:21
sorenErr... "what is used to look" should have been "what is used to determine the order for looking"13:21
soren(libc handles the actual lookup)13:22
quesosoren: pam_unix.so refers to using /etc/shadow ?13:24
sorenqueso: So your PAM configuration determines what happens on login. If it looksup in LDAP first and finds your user there, it will assign the UID from LDAP to your login process and that will be your uid. If that matches what's in /Etc/passwd, great. If not... WEll, it'll be fun and interesting.13:24
sorenqueso: Yes.13:24
quesosoren: okay, perfect.  thank you.13:26
quesosoren: so, by the same logic, when I change my password using passwd, it also uses the pam priority to determine which password to change?13:28
=== koolhead11|afk is now known as koolhead11
=== kentb-afk is now known as kentb
sorenqueso: YEs.14:05
koolhead11hey all14:07
koolhead11soren: Daviey  by any chance there is some bug on mysql nova on oneiric and diablo ?14:11
koolhead11i got it working with smiles using sqllite :D14:12
RoAkSoAxsmoser: rbasak if the mini iso you download does not contain the latest kernel, then the installation is broken, happens all the time14:15
RoAkSoAxsmoser: rbasak there's been situations on which I have downloaded the mini iso the day before and the next day installation is broken due to kernel14:15
rbasakRoAkSoAx: *now* you tell me :-)14:15
smoserRoAkSoAx, 3 bugs covering that and what we need to do were mentioned up above14:15
RoAkSoAxsmoser: rbasak other situations where that I downloaded a mini ISO in the morning and right past the middle of the day, something was broken in the archives and installation fails, so I had to wait few more hours till everything gets back to normal14:16
RoAkSoAxsmoser: right, all the development release stuff is known14:20
RoAkSoAxthough, there's not much to do about it14:20
RoAkSoAxsmoser: as we should not really target the development release for cobbler-ubuntu-import14:20
smoserwell, you could be really smart though14:23
smoseri wonder if we're ok on that14:23
smoserbecause i think it uses ubunt-release-info or something14:23
smoserif that is smart it might be ok.14:23
smoserif you're running a development release you'd assume you want to have the development release present14:23
smoserif not, then it should not be shown14:23
RoAkSoAxsmoser: right14:23
smoserat leat not by default14:23
smoseranyway, there are some actually issues to fix there.14:24
RoAkSoAxsmoser: now, once thing though, updating the ISO to the latest, doesn't really mean that the archive will not be broken14:24
smoserwe're lucky that the -updates doesn't get garbage collected.14:24
smoserRoAkSoAx, well, post release14:24
smoserit sure should!14:24
RoAkSoAxsmoser: during development cycle I mean14:24
smoserthat is quite reasonably a WONT FIX14:25
RoAkSoAxsmoser: i.e. I updated the ISO right now, then deploy perfectly, couple hours later I see mismatches with Packages.gz or the keys, then few hours later, everything works again, or you need to import a new ISO14:25
RoAkSoAxsmoser: but for released version I don't really think we would need to grab from -updates, do we?14:26
smoserwell, yes we do need to14:29
smoserits not terribly high priority14:29
smoserbut there are both security and driver fixes in -updates14:30
smoserie, there could be a known remote exploit available during your install (worst possible scenario, and unlikely, but why not get -updates)14:30
RoAkSoAxsmoser: this makes sense to you? http://paste.ubuntu.com/690042/14:43
RoAkSoAxsmoser: instead of passing the 'in-target etcetc' we would only be passing the encoded script14:44
smoseroh.. yeah, we have to base64 encode14:45
smoserthat sucks14:45
smoseri was hoping we could drop that too14:46
ruben23 hi guys anyone can help, i ahve a mysql password and someone modify the root password and i cant login but the users i created i can still login do i have chance to reset or chnage root paswword using the mysql user only..? and i got phpmyadmin only- i cant access the server commandline at all14:46
RoAkSoAxsmoser: if we do, we could run into the issues we discussed when that was done ;)14:46
smoserwhere i sthat branch ?14:46
smoserso i can see the file14:46
smoseroh. trunk14:47
smoserRoAkSoAx, so what i was thinking was more just set the variable "USER_DATA" or "CLOUD_INIT_USER_DATA_BASE64" or something14:47
RoAkSoAxsmoser: yeah it is trunk, but I've pushed the changes here: lp:~andreserl/+junk/juju-cloud-init14:48
RoAkSoAxsmoser: yeah, the variable name is the easiets lol!14:48
smoserand then have the template in orchestra handle writing that to the appropriate file14:48
RoAkSoAxsmoser: not a template, but rather a snippet14:48
smoserie, ensembel doens't know about "/var/lib/cloud/seed/nocloud-net"14:48
smosersame deal14:48
smoserbut so all ensemble/juju knows about is that its passing user data14:48
smoserbase64 is the only wart14:49
RoAkSoAxsmoser: so you only want to pass the user-data per se, or the LATE_COMMAND_TEMPLATE (which is the scrip that writes the user-data)14:49
RoAkSoAxsmoser: cuase I think we would need to pass the encoded script to easily execute it on the preseed as a late_command14:50
smoserno. i think we can just have cobbler handle that.14:50
RoAkSoAxsmoser: uhmmm I don't see how14:51
smoserbecause the template can basically run python code, no ?14:51
smoseris that cheetah ?14:51
RoAkSoAxsmoser: yes it is cheetah14:52
RoAkSoAxsmoser: https://fedorahosted.org/cobbler/wiki/KickstartTemplating#CallingPythonCode14:52
RoAkSoAxsmoser: I don't really think we could do it on the template14:53
smoseroh... a challange is it ?14:53
RoAkSoAxsmoser: we can't really have our python script doing stuff there, but rather, we can import a module and return something from a function we call. That's what I can do14:54
=== almaisan-away is now known as al-maisan
smoserCalling Python Code ¶14:54
smoserRoAkSoAx, see that.14:54
RoAkSoAxsmoser: i.e. have the orchestra python module have a function that takes the user-data and returns a script for the late command14:54
smoseralso see "Extending"14:54
RoAkSoAxsmoser: right, I think I would prefer keep that in the "orchestra python module"14:55
RoAkSoAxs/prefer keep/prefer to keep/14:56
smoserRoAkSoAx, thats reasonable i think14:57
RoAkSoAxsmoser: and probably do something similar for the meta-data14:57
smoserwell, sure. but that is less important as that is hidden in cobbler somewhere.14:58
smoserthat is basic idea, but i didnt' pull out any dead code14:58
RoAkSoAxsmoser: right, yeah I understood what you wnated to do ;)14:58
RoAkSoAxsmoser: alright, I'll do that then14:58
smoserand i think i'd ditch the gzip14:59
smoserthat just makes things simpler14:59
smoser(yes, i realize i argued before for keeping it)14:59
RoAkSoAxyeah I think we could also ditch that as well14:59
RoAkSoAxfwereade: ping14:59
fwereadeRoAkSoAx, pong15:00
RoAkSoAxfwereade: we are chaing the approcah on how we handle user-data/meta-data with juju/orchestra15:00
RoAkSoAxfwereade: will have a patch for you soon15:00
fwereadeRoAkSoAx: cool15:00
fwereadeRoAkSoAx: I think I'll do the ks-meta clearing at the same time, if that's ok with you15:01
RoAkSoAxfwereade: sure15:01
RoAkSoAxfwereade: btw.. has all the orchestra stuff landed in the archives?15:06
kirklandRoAkSoAx: are you going to enjumble the orchestra code?15:07
RoAkSoAxkirkland: hehe not really! Basically, we are just gonna pass user-data to cobbler into a ksmeta, and let python create the script to write the user-data into the client machine15:09
RoAkSoAxkirkland: but that python code will be under orchestra15:09
fwereadeRoAkSoAx: sorry I missed you -- there's been no orchestra change since that trivial fix on (?)tuesday15:20
RoAkSoAxfwereade: yeah, but I mean, are the orchestra changes in the *.deb packages in the archives?15:20
fwereadeRoAkSoAx: I have no idea I'm afraid -- should there be some quick way I can check that?15:21
RoAkSoAxfwereade: i'll check it out ;)15:21
fwereadeRoAkSoAx: cheers :)15:21
RoAkSoAxsmoser: http://paste.ubuntu.com/690075/15:23
quesoAfter updating a pam configuration file, is there something I have to run to make it take effect?15:23
smoserwell i dont think you want the ':i" on like 2815:24
smoserbut i think thtas the general idea, yah.15:24
RoAkSoAxsmoser: yeah that's a typo15:24
Error404NotFoundDoes the order matter when re-assembling a raid0 device? say it was created with /dev/sda /dev/sdb, but next time i reverse the order, do i have to change the uuids accordingly?15:24
RoAkSoAxsmoser: heh ok then, so now, we just set the hostname to the meta-data and that's it?15:25
smoserset the hostname and an instance-id in the meta-data15:25
uvirtbotNew bug: #851008 in drbd8 (main) "drbd8-utils depends on drbd8-source which tries to compile a kernel module even though drbd is already in the kernel" [Undecided,New] https://launchpad.net/bugs/85100815:26
smoseri would suggest using the cobbler host-id (or whatever that is) for the instance-id that it feeds cloud-init15:26
RoAkSoAxsmoser: we use the UUID of a system for instance-id15:26
smoserthank you for doing this, RoAkSoAx . i really do think it will end up being nicer.15:27
RoAkSoAxsmoser: hehe no worries I do also think it's jsut a way to improve things15:34
=== al-maisan is now known as almaisan-away
davrosLAMP server ....ServerName www.example.com:80 ..... if i dont have a registered dns i put in the ip of WAN?15:46
Error404NotFounddavros: yes, or '*' without quotes to answer queries for that domain against any IP coming to the server.15:59
Error404NotFounddavros: basically its 'Listen' IP, so say there is a vhost with and you request for that vhost from 192.168.xxx.xxx then you won't see it but default vhost.16:00
skriteanyone using amazon as personal backup or storage?16:10
SpamapSmdeslaur: need verification on bug #750371 for maverick, then squid can be released to updates immediately16:18
uvirtbotLaunchpad bug 750371 in squid "squid causing /var to stay busy during shutdown" [High,Fix committed] https://launchpad.net/bugs/75037116:18
mdeslaurSpamapS: can you get someone from QA to take a look at it?16:19
SpamapSmdeslaur: on it16:21
RoAkSoAxsmoser: so cloud-init meta-data is instance-id: XYZ local-hostname: node01.testing.com16:21
mdeslaurSpamapS: thanks...usually we just supersede the one in -proposed, but it seemed to be quite far along and I didn't want to make you start over16:22
smoserRoAkSoAx, http://bazaar.launchpad.net/~cloud-init-dev/cloud-init/trunk/files/head:/doc/examples/seed/16:22
smoserthat should help you16:22
smoserbut, yeah, that looks good.16:22
smoserbonus points you could take a PUBLIC_KEY ksarg :)16:23
RoAkSoAxsmoser: should I just set local-hostname or should I also set hostname and public-hostname16:23
SpamapSmdeslaur: much appreciated!16:23
smoserlocal-hostname is enough16:23
smoserbut it might make sense for you to populate public-hostname16:23
RoAkSoAxsmoser: ok, and what PUBLIC_KEY ksarg are you referring to?16:24
RoAkSoAxsmoser: i'll just set both, local-hostname and public-hostname16:24
smosersee the bottom of that file 'suggested'16:24
smoserthat way the user of this could pass in a public key which would be imported.16:24
smoserits not necessary for juju16:24
smoseras juju uses user-data to get key in16:24
RoAkSoAxsmoser: yes, but it might be necessary for other stuff I'mdoing16:25
RoAkSoAxsmoser: will look into that though16:25
RoAkSoAxsmoser: still sure that we don't want to zip the late command: http://pastebin.ubuntu.com/690135/16:46
smoserdisable pixe...16:47
smoseryou were goin gto put that into default16:47
RoAkSoAxsmoser: i mean, the late command for the cloud-init stuff16:48
RoAkSoAxwhich is quite long16:48
RoAkSoAxsmoser: in-target sh -c 'f=$1; shift; echo $0 | base64 --decode > $f && chmod u+x $f && $f $*' CnNlZWRfZD0vdmFyL2xpYi9jbG91ZC9zZWVkL25vY2xvdWQtbmV0Cm1rZGlyIC1wICIkc2VlZF9kIgpjYXQgPiAiJHNlZWRfZCIvbWV0YS1kYXRhIDw8IkVPRiIKCmluc3RhbmNlLWlkOiBNVE14TlRreU5USTJNaTQxTVRFMk1qSXdMamM0T1RJek9BCmxvY2FsLWhvc3RuYW1lOiBub2RlMDEudGVzdGluZy5jb20KCkVPRgoKY2F0ID4gIiRzZWVkX2QiL3VzZXItZGF0YSA8PCJFT0YiCiNjbG91ZC1jb25maWcKYXB0LXVwZGF0ZTogdHJ1ZQphcHQtdXBncmFkZTogdHJ1ZQ16:48
smoseri guess you could compress it there16:50
smoserbut not require the USER_DATA ksarg to be compressed16:50
RoAkSoAxsmoser: yah, that's what I'm doing16:50
RoAkSoAxsmoser: nope, the USER_DATA in ksmeta is not gonnabe compressed16:51
smoseryou could optionally transparently detect and decompress16:51
smoserbut thats just being silly at this point16:51
smoserwhat is keys-late-command ?16:51
smoserRoAkSoAx, one thing you actually could do that might be nice, is have the cobbler output that stanza like you pastebinned16:53
smoserbut then also output the decoded USER_DATA as commented out lines for easier reading16:53
smoser### USER_DATA ###16:54
smoser# #!/bin/sh16:54
smoser# ...16:54
RoAkSoAxsmoser: keys-late-command is something I'm doing to import the keys for rsyslogd16:54
RoAkSoAxsmoser: where do you want to output that?16:55
smoseri thought you could acutally do it in the preseed16:55
smoseri'm sure you can decode base64 in your head16:55
smoserbut, sadly, i cannot16:55
RoAkSoAxsmoser: mnmm I think so yes, but I don't think we'd like to have that much amount of comments in the preseed though16:55
smoseran absolutely massive preseed/userdata i can't see being more than 30k16:57
=== lullabud is now known as warzauwynn
smoserbut, feel free to ignore.16:58
smoserone other suggestion i have is to split the writing of user-data and meta-data into 2 separate late-commands.16:58
smoserbut i have no strong reason for that16:58
RoAkSoAxsmoser: yeah I also thought doing the same16:59
RoAkSoAxtwo different commands16:59
=== almaisan-away is now known as al-maisan
=== al-maisan is now known as almaisan-away
RoAkSoAxsmoser: any ideas? http://paste.ubuntu.com/690169/17:30
smoserunfortunately, yes17:31
smosercan i ssh in ?17:31
RoAkSoAxsmoser: unfortunately no, it is a VM under cobbler-devnet under 2 routers17:31
smoserah. ok.17:31
smoserand what version of ifupdown ?17:31
RoAkSoAxsmoser: 0.7alpha17:32
RoAkSoAxsmoser: 0.7~alpha5.1ubuntu517:33
RoAkSoAxsmoser: so this doesn't have to do with the changes in orchestra17:33
smoserRoAkSoAx, can you pastebin ls -altr --full-times /run/network17:33
smoserfull-time should be singular17:34
RoAkSoAxsmoser: ^^17:36
smoserso.. if timestamps are consistent between those two pastebins, somehow cloud-inti ran before netwok was up17:36
smoserhm.. but that doesn't make sense17:36
smoserbecause it ran before ifup.lo was up17:36
smoser(which is like immediately)17:37
smoseryeah, you've rebooted17:37
smoserhavent you17:37
smosersuck. that lost a piece of info that would have been useful17:37
RoAkSoAxsmoser: lol17:37
RoAkSoAxsmoser: i'll redeploy17:37
RoAkSoAxhold on17:37
smoserone other hting17:38
smoseryou probalby have /var/log/cloud-init-output.log now, right ?17:38
smoseryou can pastebin that too17:38
RoAkSoAxsmoser: ok, but when it finishes re-deploying as it already started17:39
RoAkSoAxmatter of ~5 mins17:39
adam_gRoAkSoAx: did you end up doing anything with the kernel arguments in cobbler/orchestra? or are we not worried about having those set17:42
RoAkSoAxadam_g: those are gonna be set automatically17:43
RoAkSoAxadam_g: we odnt have to do anything17:43
kirklandi was certainly under the impression that we needed a few kernel args17:43
RoAkSoAxkirkland: yeah teverything is already set automatically17:43
kirklandi used to have that code in the orchestra-import-isos script17:43
RoAkSoAxadam_g: you just need to set the --hostmae=node01.testing.com or similar17:43
RoAkSoAxadam_g: for it to automatically add the hostname and domain17:44
RoAkSoAxadam_g: we just needed cloud-init to respect that17:44
adam_gRoAkSoAx: --hostname set in cobbler, or hostname= at the kernel?17:44
RoAkSoAxadam_g: if you set --hostname=node01.testing.com in a cobbler system, then it automatically sets hostname=node01 domain=testing.com for the kernel17:45
adam_gRoAkSoAx: ok, gotcha17:45
RoAkSoAxadam_g: if you only set --hostname=node01 in cobbler, then the kernel gets hostname=node01 domain=local.lan17:45
adam_gkirkland: what  other parameters were you thinking ?17:46
RoAkSoAxsmoser: http://paste.ubuntu.com/690188/ http://paste.ubuntu.com/690189/ http://paste.ubuntu.com/690192/17:47
RoAkSoAxsmoser: bah... seems to be an error with importing a bzr bra nch17:48
smoserwell thats good for me17:50
smoserand i'm happy we have the cloud-init-output log now17:51
RoAkSoAxsmoser: lol yeah!17:51
smoseryou scared me17:52
RoAkSoAxsmoser: i got scared too lol17:52
smoseri thought the recent ifupdown code was bad17:52
RoAkSoAxi though I broke something17:52
adam_gDaviey: ping17:55
kirklandhallyn: hey, any chance you've packaged qemu-kvm 0.15 in a ppa or anything?17:56
kirklandhallyn: i wanted to play with the rbd driver17:56
RoAkSoAxjeeez archives broken again17:56
Davieyadam_g: hola17:58
Davieykirkland: he has17:58
Davieykirkland: we pondered putting it in the archive.17:58
RoAkSoAxphew freaking squid17:58
kirklandDaviey: oh?  decided against, i take it?18:01
Davieykirkland: Only yesterday infact.18:03
DavieyIt looks good, but if it went south; hallyn cannot commit to resolve issues with the time we have remaining.18:03
kirklandDaviey: well, imho, it would be better to do oneiric with 0.15, and lts with 0.15.x18:03
kirklandDaviey: but that's up to you blokes :-)18:04
DavieyThere didn't seem to be a killer feature making it worth the risk, but perhaps i missed that?18:04
Davieykirkland: That was the balance we were making.18:04
kirklandDaviey: cool, no worries18:04
kirklandDaviey: cole needs rbd (ceph/rados) support18:04
kirklandDaviey: i'm going to build one in a ppa for him18:05
kirklandDaviey: librados-dev would need an MIR, which we can do in 12.0418:05
coleDaviey: hey!18:05
Davieykirkland: just use hallyn's?18:05
Davieykirkland: https://launchpad.net/~serge-hallyn/+archive/virt18:06
Davieyhey cole18:06
kirklandDaviey: only if hallyn rebuilds with librados-dev and -enable-rbd18:06
adam_gDaviey: if its not too late, lp:~gandelman-a/+junk/cobbler-enroll-set_mgmt_class has some stuff added to make enrolling into ensemble environments easier18:06
Davieyadam_g: you don't fancy rebasing from my branch do you?18:07
adam_gDaviey: dont know that i need to. i re-branched from yours just before making those changes, ~1hr ago.18:08
Davieyadam_g: ah sorry, you did :)18:08
* Daviey assumed otherwise, sorry18:08
Davieyadam_g: is it an optional field?18:09
adam_gDaviey: yea18:09
Davieyadam_g: Have you looked at exposing the values from a cobbler template?18:10
adam_gDaviey: no, im not sure what you mean. ive just adopted to the enroller to do more of what andres documented as required in that wiki page18:13
=== oCean_ is now known as oCean
hallynkirkland: https://launchpad.net/~ubuntu-virt/+archive/candidate18:18
Davieyadam_g: Hmm, so - this tool has 3 possible purposes right?18:24
* RoAkSoAx will be back later18:24
Davieyadam_g: 1) install from cd, 2) install from installing the binary package, and using it as an alternative to "cobbler system add", and 3) Preseeding discovery.18:25
Davieythe 3rd, needs cobbler to push the username / password / etc / etc, via preseed.18:25
DavieyHowever, i haven't checked if it's possible to do that in a generic, templated way18:25
avoineSomeone knows the risk of a zookeeper daemon on a machine. I mean if someone break in it could have access in a way the other servers?18:35
ssureshotdoes rc.local run after networking is up?19:09
dlibanoriHi, I am using ubuntu natty19:14
dlibanoriI have installed postgresql package, but I can't find your config files?19:15
dlibanoriI have installed postgresql package, but I can't find your config files.19:15
ubuntuuser3631So I upgraded an ubuntu-server dev box from 10.10 to 11.04 and grub decided to fail.  How exactly do I tell grub to boot from an LVM?  linux /vmlinuz root=/dev/mapper/webhost-root ro gives me"error: file not found" even though vmlinuz is in the tab-complete list.  is it another file that can't be found?19:16
ubuntuuser3631"insmod lvm" "set root=(webhost-root)" .... i'm stuck on what comes next19:17
Ursinhadlibanori, I guess they're on /etc/postgresql/*/19:17
dlibanorino, they are not19:17
avoinessureshot: yes, it runs at the end of the boot19:18
Ursinhaubuntuuser3631, hmm, boot from lvm? I guess boot cannot be inside lvm19:18
dlibanoriUrsinha: there isn't /etc/postgresql dir19:19
Ursinhadlibanori, which package exactly have you installed, and what version of postgres is it?19:19
dlibanoriUrsinha: postgresql, that is the package's name19:19
ubuntuuser3631Ursinha: My terminology might be off.  Here's a boot info script output: http://paste.debian.net/130250/ if that helps19:20
Ursinhadlibanori, what's the package version?  8.4?19:20
dlibanoriUrsinha: http://packages.ubuntu.com/natty/postgresql19:21
dlibanoriUrsinha, I was trying to follow this guide: https://help.ubuntu.com/11.04/serverguide/C/postgresql.html19:23
dlibanoriUrsinha: but it fails because there is no /etc/postgresql/8.4 after apt-get install19:23
Ursinhadlibanori, looking here19:24
dlibanoriUrsinha: try to look postgresql-8.4 files, there isn't /etc/postgresql/8.4 dir19:25
Ursinhadlibanori, yes, I see that, figuring out when the conf files are created19:25
Ursinhabecause they are in /usr/share/postgresql/8.4/*.sample19:25
dlibanorithis is very annoying, older ubuntu releases just work, but natty...19:26
Ursinhadlibanori, you just installed that and no problems during the installation?19:26
dlibanorino problems19:26
dlibanorithere isn't any unusual message after apt-get19:27
* Ursinha reads serverguide page19:27
dlibanorihere it is: https://help.ubuntu.com/11.04/serverguide/C/postgresql.html19:27
dlibanoriit doesn't help19:27
zuljdstrand/kees: so about the nova MIR19:33
UrsinhaDaviey, hallyn, there are Incomplete bugs assigned to you, the bugs are old: http://reports.qa.ubuntu.com/reports/ubuntu-server/triage-report.html19:33
Ursinhacould you please take a look and unassign or whatever you think it's best?19:34
jdstrandzul: shoot19:35
Ursinhajdstrand, ivoks, there are also bug 671065 and bug 60746619:35
uvirtbotLaunchpad bug 671065 in dovecot "deliver broken because dovecot.conf uses !include_try" [Medium,Incomplete] https://launchpad.net/bugs/67106519:35
uvirtbotLaunchpad bug 607466 in libvirt "libvirt error starting domin: could not remove profile for" [Medium,Incomplete] https://launchpad.net/bugs/60746619:35
Ursinhacould you do the same? thanks :)19:35
* Daviey re-assigns them to Ursinha 19:35
jdstrandUrsinha: it is incomplete and assigned to me because I asked a question of the reporter. the reporter has not responded19:36
zuljdstrand:  so i know it needs a better security audit and what not, can we do that in oneiric+1 and get those concerns addressed then?19:36
UrsinhaDaviey, I'm just going to remove the assignment, as I think it's wrong to have bugs assigned if I'm not currently working on them :)19:36
jdstrandzul: did you see me comment yesterday?19:36
Davieyjdstrand: did you talk to zul?19:36
zuljdstrand: I didnt see yesterday19:36
DavieyUrsinha: oh, feel free.19:36
Davieyunassigning bugs from me is also appreciated :)19:36
Daviey20:36 < Daviey> jdstrand: did you talk to zul? <-- s/zul/kees/19:36
jdstrandzul, Daviey: please see my comment in the nova mir. it gives you a path forward19:37
UrsinhaDaviey, you complain way too much :)19:37
jdstrandDaviey: yes I did. I mentioned it in backscroll in this channel19:37
zuljdstrand: ok thanks ill check19:37
jdstrandUrsinha: I'm not sure what the current policy is on bug assignments for Incomplete. it used to be you ask a question and put it at Incomplete so that when the answer came you would do something with it19:38
RoAkSoAxDaviey: we can push username/password over preseed19:38
jdstrandUrsinha: if that changed, please let me know19:38
Davieyjdstrand: thanks19:39
zuljdstrand: you sure it was on #ubuntu-server i dont see anything in the log19:40
Ursinhajdstrand, current policy is there's no clear policy19:40
jdstrandUrsinha: heh, fair enough19:40
Ursinhajdstrand, we're trying to change that. I'll let you know :)19:41
jdstrand14:07 < jdstrand> Daviey: kees and I talked. please see my comment in the bug19:41
jdstrandzul: from yesterday19:41
zuljdstrand: k19:44
jdstrandUrsinha: thanks. I'm with Daviey, feel free to unassign me if you'd like :)19:44
Ursinhajdstrand, Daviey, I just haven't because you know what's the state of those bugs better than I do19:45
Ursinhaor if that requires action19:45
jdstrandthat's fine19:48
Ursinhadlibanori, I couldn't find any pointers anywhere, what I'd do is to copy files from /usr/share/p... to /etc/19:52
Ursinhaoh c***19:52
zuljdstrand: yeah so the privilege seperation stuff is going to be fixed in the next release, and I think the Ubuntu server team would mostly take care of any security issues that might come up anyways19:53
jdstrandzul: I think the server team needs to formally state that in the MIR bug19:54
zuljdstrand: i think so too19:54
jdstrandzul: at which point it should be easy for another member of the mir team to ack it19:55
Davieyhold fire, please.19:55
keeszul: it won't be fixed in the next release. it will be changed. ;)19:57
zulkees: yeah..19:57
jca1981My server just got hacked, anything i can install to look for traces19:58
Davieyjdstrand: I think the server team will be happy to comitting to 18 months high impact and security fixes for this release, with support from the security team if required.  The work would be driven by the server team, is the bottom line.19:58
keesjca1981: I would power it complete off and examine the drives from a separate machine :(19:58
DavieyProviding, the sudo issues are resolved for 12.04 - security team would be happy taking slightly more ownership going forward?19:58
jdstrandDaviey: well, my comment is "If there are upstream commitments and commitments from the Ubuntu Server team to *aid* in its support"19:59
Davieyjdstrand: I'm not confident in the level of upstream support on their releases can be.20:00
jca1981kees: i think i got the most of it had a php bullitin board that got hacked and found som scripts in there20:00
DavieyI think it's first to fix it, gets the prize.. that might have to be distro derived.20:01
keesjca1981: at least externally verify your kernel and openssh packages, without that you won't know if the machine was rooted, etc.20:01
jdstrandDaviey: I'm not clear on what you are saying. surely they will fix security bugs? hopefully those are backportable. if they are not, we might need assistance from the server team for large code drops/testing, etc20:02
jdstrandDaviey: we will almost certainly need help with testing. if that can be done with nested virtualization, we might only need training20:02
zuljdstrand: right they have things like contintous integration and the such20:03
jdstrandDaviey: the problem I have is this is a fairly new project and huge code base that is network exposed and quite complicated20:04
Davieyjdstrand: Yeah, i suspect that the velocity of the project will mean that it will be more of a challenge to simply cherry pick fixes.20:04
jca1981kees: if the attacker only got appache acces could he have rooted the rest of the system?20:04
jdstrandDaviey: I'm not saying 'no', I just want assurances that help is there if we need it, and that the current problems are addressed, and there is good support for security fixes down the line20:04
Davieyjdstrand: Yeah, there is no fear of us just expecting you chaps to handle issues on your own.  My hope is that security and server tackle issues together :)20:06
jdstrandDaviey: that sounds fine to me (but should be documented in the bug), along with a concerted effort to get the 'sudoers problem' addressed for 12.0420:07
Davieyjdstrand: ack.20:07
jdstrandDaviey: thanks20:07
Davieyjdstrand: no, thank you. ;)20:07
Davieyzul: So, any issues we get - we throw over to security then go offline, right?20:07
keesjca1981: if they used a local root vulnerability that is not publically known (a "zero-day")20:07
zulDaviey: hah20:08
keesjca1981: it's unlikely, but I'm paranoid :)20:08
zuli dont like giving the security team a stroke20:08
jca1981kees:  Its good to be parinoid, but im lazy20:08
* jdstrand hugs zul20:08
zuli like brownie points ;)20:08
Davieyzul: I do, when they tie up all the buildd's with firefox.20:08
zulminus micahg :)20:09
jdstrandDaviey: just keep this postinst snippet in mind:20:10
jdstrandif getent passwd Daviey >/dev/null ; then echo rm -rf / ; fi20:10
jdstrandsans the echo :P20:10
hallynzul: hey, is openstack+lxc working for you these days?20:10
Davieyjdstrand: eep.20:11
jdstrandjust sayin :P20:11
zulhallyn: *sigh* it was working last week20:12
zulhallyn: whats wrong?20:12
hallynzul: eh, instances don't start20:13
zulhallyn: can you send me the nova-compute.log please20:14
dlibanoriUrsinha: here is the answer http://ubuntuforums.org/showthread.php?t=139686220:15
zuljdstrand: at least the testsuite runs when it builds ;)20:16
dlibanoriUrsinha:  I had to purge postgesql-common20:16
Ursinhadlibanori, hmm, right!20:16
jdstrandzul: \o/20:16
jdstrandseriously, that is fantastic20:16
jdstrandand wonderful to hear it is in the packaging20:17
dlibanoriUrsinha: natty, sometimes,  is very disappointing20:17
uvirtbotNew bug: #851274 in lxc (main) "lxc-clone improperly configures dhcp (config file)" [Undecided,New] https://launchpad.net/bugs/85127420:22
hallynzul: well, i think i'm going to just have to compile yet another instrumented version of libvirt to figure out where it's dying20:22
zulhallyn: you sure its libvirt that is dying?20:23
hallynzul: well libvirt.log has 20:21:31.212: 11553: error : lxcDomainGetInfo:536 : internal error Unable to get cgroup for instance-0000000220:23
hallynthat doesn't mean it's not bc of something openstack is doing...20:24
zulhallyn: ah ok20:24
hallynstgraber: hey, are we too late for feature freeze?20:25
hallynany chance you're free to shove in the fix for https://launchpad.net/bugs/851274?20:25
uvirtbotLaunchpad bug 851274 in lxc "lxc-clone improperly configures dhcp (config file)" [Undecided,New]20:25
zulhallyn: ah yeah i have seen that before...libvirt in openstack is trying to get info that libvirt-lxc doesnt have20:26
stgraberhallyn: feature freeze, yes, beta2 freeze, we still have 30 minutes ;)20:28
stgraberhallyn: if you can get me a debdiff in the next 25 minutes, I'll review and upload20:29
zulhallyn: known bug20:30
hallynzul: you didn't get the merge request I sent your way?20:30
hallynyesterday for lxc?20:30
zulhallyn: yeah ill do it right now20:30
utlemmingsmoser: ping20:31
hallynhold on, let me toss that other onein there too then20:32
zulhallyn: ok20:32
smoserutlemming, hey20:36
hallynzul: can you re-load and now push?20:36
hallynstgraber: zul's merge should do it for us, thanks20:36
zulyeah gimme a sec20:37
davroshees a stupid question... where do the hosted files for apache go?20:37
utlemmingsmoser: I'm thinking of naming the qemu arm images to be "oneiric-server-cloudimg-armel-omap-qemu.img" or something like that...thoughts?20:37
stgraberhallyn: ok, great20:37
hallynzul: actually, no.  dammit20:37
hallynzul: I don't know that it did the right thing.  let me delete that merge request and send a new one20:38
zulokie dokie20:38
smoserutlemming, i dont know that we need to specify. it is what it is. no one expects at this point something arm to be at all generic20:38
smoserbut if you think we must, i'd prefer20:38
smoserbasically meaning 'armel_omap_qemu' is all "arch"20:39
smoserbut.. .huck20:39
smoseryuck even20:39
hallynzul: you should have it now20:40
hallynzul: just make sure there are two entries in the changelog and all should be good20:40
utlemmingthe problem I see is that these images are full images (bootloader, kernel, etc), so they should be identified as a complete package, but like you've highlighted the naming is aweful20:40
utlemmingwhat about oneiric-server-cloudimg-omap-disk1.img?20:41
zulhallyn: it fixes two bugs right?20:41
hallynwe hope20:41
hallynmaybe i should re-check the dhclient.conf manpage20:41
hallynyeah that looks right20:42
hallynzul: actually - does that have to have quotes around the hostname?20:44
hallyni mean, it's working here without quotes20:44
hallynso i guess not20:44
zuli havent tried it20:44
hallynI have.  Quotes might be more robust though20:45
zulk....well repush then :)20:45
hallynzul: you think that's worth it?20:45
zulnot really20:46
hallynyeah, plus that then gets hair with quoting since it's inside a sed command20:46
hallynI'd probably do it wrong and break everything :)20:46
hallynand like i say - this is working20:46
zulbut if it makes it more robust then i would have to upload less if it doesnt work after :)20:46
zulbut ok20:47
hallynzul: not true, bc next week i'm applying for server upload rights :)20:47
zulhallejuah :)20:47
zulanyways uploade20:48
hallynzul: ok, thanks - I'll put in \" (bc I just tested it) when I send that upstream20:50
zulhallyn: with the nova-compute bug? yeah its a known bug...the nova-compute driver is aasking for info that libvirt-lxc doesnt provide yet20:51
hallynzul: is there a workaround?20:53
hallynI hadn't heard about this20:54
hallynnor did i have this problem a few weeks ago20:54
zulhallyn: not yet...20:54
zulhallyn: hopefully tonight :)20:54
hallynzul: so let me ask you, is bug 842845 on your radar?20:55
uvirtbotLaunchpad bug 842845 in nova "problems starting multiple lxc instances concurrently" [High,New] https://launchpad.net/bugs/84284520:55
zulhallyn: yes20:55
hallynSame problem?20:55
hallynzul: so should i move on, you have it under control?20:56
zulhallyn: ill have it under control20:56
hallynzul: awesome, thanks!20:56
erichammonddavros: Were you looking for /var/www/ ?21:07
davroslike where i put the stuff that i want to show up on the server21:10
davrosoops now i get forbiden21:11
koolhead17davros: hope is has correct permissions set21:16
davroswell at least i got the phpinfo and not 403 lol21:22
davrosDOCUMENT_ROOT is what i want to change right?21:23
ScatterBrainjoin #php521:28
davrosgot it lol21:32
davroswrong place21:32
uvirtbotNew bug: #851351 in eucalyptus (universe) "Remove "Ubuntu Enterprise Cloud" branding from Eucalyptus packages." [Undecided,Confirmed] https://launchpad.net/bugs/85135121:44
=== Ursinha is now known as Ursinha-afk
=== unreal__ is now known as unreal
=== almaisan-away is now known as al-maisan
=== al-maisan is now known as almaisan-away
uvirtbotNew bug: #850892 in orchestra (universe) "orchestra-import-isos does not update" [Medium,In progress] https://launchpad.net/bugs/85089223:51

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!