/srv/irclogs.ubuntu.com/2013/12/02/#ubuntu-server.txt

bluekingI managed to fuck up some on mine server... believed I didn't need apparmor... removed it   and with it  followed LOT stuff :O00:09
bluekingincluded gnome... now it seems desktop window  are borked00:10
=== bradm_ is now known as bradm
ikoniablueking: please try to control your language00:15
bluekingsorry ikonia00:18
ikoniano problem, just a nudge00:19
smoserjrwren, http://pad.ubuntu.com/server-seed-review00:39
smoserthat is jamespage seed review notes.00:39
smoseri was / am adding yours00:39
jrwrenthanks.00:55
ancasterhello all. I'm the defacto sysadmin for a uni neuroimaging lab. We have 15 pretty powerful workstations and one server, all ubuntu.01:29
ancasterWe have more workstations on the way. all are clustered together using sun grid engine, but also seat humans during the day.01:30
ancasterI'm thinking about a better way to provision everything and keep bits of software and whatnot coordinated across all the machines.01:31
ancasterI've been playing with ansible, and now recently with MAAS to manage PXE booting (something we don't do).01:31
ancasterIs MAAS overkill for a 20+ desktop stations? is there something more apt I could be using?01:32
ancasterDoes it make sense to combine MAAS and ansible to manage configurations?01:32
=== jp__ is now known as ancaster
=== worth is now known as mushtar
=== Gnubie is now known as Guest28707
=== Guest28707 is now known as Gnubie_
pmatulisancaster: MaaS is for rolling out machines on a regular basis.  that doesn't sound like what you're doing02:20
ancasterpmatulis: thanks.  Okay, I guess I  just thought it might be helpful for getting PXE booting up and running.02:25
ancasterpmatulis: do you think this is something better to just roll my own?02:25
pmatulisancaster: try cobbler02:26
ancasterah, i'd seen that but read somewhere that for ubuntu it was the basis of MAAS so just when directly there.02:27
ancaster*went02:27
ancasterpmatulis: so cobbler runs well on/for ubuntu then?02:27
pmatulisancaster: that's what MaaS used to have under the hood i'm quite sure.  but now MaaS contains rewrites of just the necessary bits that cobbler gave MaaS02:28
ancasterpmatulis: ah, I see.02:28
bigjoolsplease, don't use cobbler02:28
bigjoolsmaas will work fine here02:28
ancasterbigjools: oh?02:28
bigjoolscobbler is ancient and has more holes than swiss cheese02:29
ancasterbigjools: hmmm.  is there something better?02:30
bigjoolsyou can provision with maas and use landscape for package management02:30
ancasterlandscape costs $$ right?  I'm not sure our lab admin will spring for that.02:30
bigjoolsit's free up to so many seats IIRC02:31
ancaster(even though they'll happily pay for my time to sort all this cruft out)02:31
ancasterah, okay.02:31
bigjoolsfailing that you might try puppet02:31
bigjoolsbut ymmv02:31
ancasteri've been playing with ansible for most of the post install setup actually. seems easy enough.02:32
pmatulisthe only way landscape can be free is for a trial account, which expires after 30 days02:34
bigjoolsah02:38
anunakkiso uhhh02:44
anunakkiayone else have like major issues setting up xen on ubuntu-server02:44
anunakkicause i most certainly have  been having a miserable time with it02:45
anunakkilol02:45
ancasterbigjools: pmatulis: okay, thanks for your ideas.  I'll consider.02:46
=== gfrog is now known as gfrog_busy
=== gfrog_busy is now known as gfrog
parallel21Anyone have experience with preseeding ubuntu installs?04:29
pmatulis!ask | parallel2104:33
ubottuparallel21: Please don't ask to ask a question, simply ask the question (all on ONE line and in the channel, so that others can read and follow it easily). If anyone knows the answer they will most likely reply. :-) See also !patience04:33
parallel21kk04:33
=== TDog_ is now known as TDog
parallel21I'm getting an error when at the end of my preseed on the command `d-i finish-install/reboot_in_progress node` failed with exit code 12704:46
=== freeflying_away is now known as freeflying
TheLordOfTimeCan anyone point me at a method to block all (or at least most) Tor traffic?07:03
andolTheLordOfTime: As in blocking traffic from tor exit nodes? https://www.torproject.org/docs/faq-abuse.html.en#Bans07:27
eagles0513875_hey all I have a postfix dovecot mysql with virtual user and domain and for some reason two mac mail clients cannot connect to outgoing postfix smtp server using tls and port 58708:59
mac_nibbletWhere does the iptables save the configuration to in 13.10 ?09:00
andolmac_nibblet: To wherever you have iptables-save output it.09:10
andolmac_nibblet: https://help.ubuntu.com/community/IptablesHowTo#Configuration_on_startup09:11
mac_nibbleti see09:13
mac_nibbletthanks09:13
marcolinoHi, is it possible to create new directories with the owner being the owner of the parent directory instead of the user that created the sub directory?10:01
rbasakmaroloccio: yes. See: http://en.wikipedia.org/wiki/Setuid#setgid_on_directories10:11
maksymovhi!10:22
marcolinorbasak, I've already tried setgid and acl, will attempt one more time once my backups is done. Going to attempt acl recursive, hopefully that will sort it out as at the moment it is not doing what I want10:22
maksymovHelp me with manual partitioning raid on uefi10:23
maksymovhttp://ubuntuone.com/35paRglcvXUeGxZooESxaP10:23
maksymovbut uefi don't see grub10:24
marcolinomaksymov, can't really help, I don't have systems with uefi but this link could be a starting point http://askubuntu.com/questions/355727/how-to-install-ubuntu-server-with-uefi-and-raid1-lvm also try doing a search on google, it might help you come up with something.10:28
jamespagezul, I poked the precise-icehouse archive full of the main staging archive in the lab10:37
jamespagehowever I did lose the backports you had already done - I'll try sort that out now10:37
Davieyjamespage: added you to ~ubuntu-reports-dev10:52
jamespageDaviey, thanks - opening report for icehouse cloud-archive10:53
jamespageDaviey: does this https://code.launchpad.net/~james-page/ubuntu-reports/cloud-archive-icehouse/+merge/197337 look OK?10:53
ttxcloud-init ported to FreeBSD10:54
Davieyjamespage: yeah, ideally... it might make sense to consider a bzr controlled wrapper script.. the cronjob is getting mental.10:54
Davieycrontab*10:55
jamespagettx, yeah - I saw that10:55
Davieyttx: Yeah, and based on the windows codebase.. found that odd, personally10:55
jamespageported or re-implemented10:55
sorenDaviey: Licensing concerns, perhaps.11:11
sorenDaviey: Those guys seem to avoid anything that even smells of GPL (in any of its many varieties) like the plague.11:11
Davieysoren: ah!11:30
Davieycould well be11:30
sorenDaviey: I haven't actually looked, but I'm guessing the windows edition is Apache licensed or something.11:30
Davieyit is11:31
babinlonstonDownloaded Ubuntu Alternate Server 12.04 , In my server there are 4 HDD, How can i Configure Software RAID5 in it .11:34
marcolinojust came to realise that maybe acl isn't what I need, it seems to give write permission which is good but what I need is a way to create directories owned as the owner of the parent directory instead of as myself11:35
=== wickedpuppy3 is now known as wickedpuppy
marcolinoI need the newly directories to be foobar:user instead of user:foobar, anyone care to help me or at least point me in the right direction11:36
marcolinoWould like for foobar to be constant whenever I create a directory, I could chown but that becomes tedious after the fifth to tenth time11:38
sorenmarcolino: Just set the sgid bit on the parent directory.11:38
sorenmarcolino: sudo chmod g+s /path/to/directory11:39
marcolinosoren, tried that didn't see a difference when creating test directories even tried u+s which is what I need, yet newly directories are still owned by me also tried acl since this is what google pointed me to. I think it is a combination of both, however, the problem is getting it to work11:41
sorenOh, sorry, I misread.11:42
sorenYeah, setuid on directories won't work. setgid will.11:43
marcolinoI will be happy to just be able to create a sub directory as foobar instead of myself or maybe I am just going around this the wrong way...11:44
=== jml_ is now known as jml
sorenmarcolino: What are you trying to do?11:45
marcolinosoren, just built an ubuntu development server, quite happy with the current initial basic setup. The problem I have is with /var/www which is owned by www-data, I am a member of it, however, drupal doesn't like the permission user:www-data, so I am attempting if possible to swap it around without having to chown all the time11:49
marcolinosince I've been using ubuntu I have never so far managed to do this, but I've decided I should look into it, it is actually tedious when apps expect www-data and not me as the user and acl, set(gid/ui) is not helping11:50
=== gazoombo_ is now known as gazoombo
=== seiflotfy_ is now known as seiflotfy
=== mrmist is now known as mist
jamespagesmoser, if you are happy with the initial list I've prepared for seed review, I'll circulate that via email as well.12:23
jamespagezul, how about using {upstream_version}+master when we rebase patches on trunk etc...12:27
jamespagezul, https://code.launchpad.net/~james-page/python-heatclient/ftbfs-1/+merge/19735412:33
jamespagezul: https://code.launchpad.net/~james-page/python-ceilometerclient/icehouse-ftbfs/+merge/19736112:52
=== gary_pos` is now known as gary_poster
zuljamespage:  +113:29
jamespagezul, ta13:43
zuljamespage:  git seems broken13:43
jamespagezul, yeah - its stuck in new in -proposed13:44
jamespageI pinged in -release to get it accepted13:44
zulack13:44
knoppixquestion about  amp13:44
knoppixhow to downgrade from php 5.4 to 5.313:45
zuljamespage:  its too early in the morning how do you wrap and sort again13:48
jamespagezul, wrap-and-sort13:48
zuljamespage:  duh13:48
jamespagezul, do you reckon smb would include your LDFLAGS export fix for the cloud-archive in the xen package?13:49
zuljamespage:  probably13:50
smbjamespage, If smb knew anything about those13:50
jamespagelooks failry no-op for trusty imho13:50
=== jibel_ is now known as jibel
smbzul, Which xen version is in cloud-archive anyway?13:52
zulsmb: the latest that was in saucy13:52
smbzul, The one in saucy should actually need no LDFLAGS patch naymore after I merged back some Debian changes13:53
smbI believe there was some chunk in there which caused them correctly to get passed on for userspace13:54
zulsmb: i think i ran in the ldflags issue when i was building for precise though memory is hazy right now because of lack of caffine13:55
smbzul, It might be. I feels like a while ago and I think to remember that there was a version in between which at least had issues. Cannot remember either whether that was the final one or a previous.13:57
smbProbably best to re-try current and we would see13:57
smb(given enough caffeine)13:58
zuljamespage:  libvirt 1.2.0 is out as well (with the python split)13:58
zuljamespage:  https://code.launchpad.net/~zulcss/python-novaclient/d2to1/+merge/19737314:02
smoserjamespage, i added some things.14:08
smoseri know that some of them are annoying (in that the're dependencies from other places)14:08
zuljamespage:  https://code.launchpad.net/~zulcss/python-glanceclient/d2to1/+merge/19738014:21
smoserrbasak, ping14:46
rbasaksmoser: pong14:47
smoserhttps://code.launchpad.net/~smoser/maas/maas.ubuntu.com.images-ephemeral.saucy-generic/+merge/19679014:47
smoserhad you seen that ?14:47
rbasaksmoser: I have. I've been speaking to others on the Canonical hyperscale team who I thought would validate it. I'll check with them. If not, I can check it.14:47
rbasaksmoser: I mean it looks good in principle; just not verified that it actually works for us.14:48
ogra_we have a hyperscale team ?!?14:48
rbasaksmoser: also, what do we need to validate releases other than saucy? Or will that change only affect saucy images?14:49
ogra_if my team doesnt scale to the workload, can i offload some of it to the hyperscale team then ?14:49
ogra_;)14:49
rbasakogra_: juju add-unit :-P14:49
ogra_lol14:49
smoserrbasak, well, i verifed all releases with diff.14:49
rbasaksmoser: oh, that's handy.14:49
smoseri thought i might try this morning to do a "compare-output"14:50
smoserthat did all i did manually to just compare what youv'e built to what is on cloud-images14:50
smoser(diff was of the .manifest files)14:50
smoserwhich should ble sufficient here.14:50
rbasaksmoser: sounds like you've done much more of the validation I thought I'd need to do.14:50
rbasaksmoser: I guess I can do a run through of my other Saucy fixes from scratch, but use your patch instead of my workaround, and see if that works, and then we'll be good.14:51
smoserk.14:51
smoseri will try to put together a compare script for easier validation14:51
=== gary_poster is now known as gary_poster|away
=== gary_poster|away is now known as gary_poster
savidDoes anyone know why "df -H /" would show a drastically different number for space used than "du -s /"?  I'm showing 20GB used when using df, but only 11GB used when using du.15:35
jrwrensavid: duckduckgo search for du v. df gives top 2 answers both with great explainations15:39
jrwrentl;dr: usually its an open file descriptor that has been deleted, but not closed. (hence, open)15:40
zuljamespage/hallyn: ping when you are both available (re: libvirt-python bindings)15:43
savidjrwren, cool, thanks15:43
=== freeflying is now known as freeflying_away
caraconanHi there. What could be the equivalent on Ubuntu of this Suse command? chkconfig --list |grep -i sendmail Thanks15:52
caraconanI know how to enable/disable services with update-rc.d , now I want to check if the service is already enabled15:53
jamespagejodh, ^^ chkconfig for Ubuntu? I think I know the answer16:03
jodhjamespage/caraconan: no chkconfig as yet. An equiv would be "sudo initctl show-config sendmail|grep -q 'start on' || echo DISABLED"16:06
rbasakWhat about services using init.d on Ubuntu, rather than upstart?16:13
TimRcan anybody tell me how I would be able to mount an other hard drive to my server16:17
TimRanybody?16:35
sarnoldTimR: where is that hard drive? what options are available to you?16:36
sarnoldman lj1's connection resets are annoying...16:37
TimRI dont know I just want to know how to mount an other hard drive16:38
sarnoldTimR: mkdir -p /mnt/other_drive ; mount /dev/sdh1 /mnt/other_drive    (replace /dev/sdh1 with whatever disk and partition the kernel reports for the drive in dmesg output or from sudo lshw -class disk17:00
jamespagezul, adam_g: when icehouse archive pockets get populated this report will complete - http://reqorts.qa.ubuntu.com/reports/ubuntu-server/cloud-archive/icehouse_versions.html17:01
zuljamespage:  ack...ill start queueing stuff up and making sure it builds locally17:03
jamespagesmoser, I uploaded the juju-core SRU that just got accepted into saucy into the cloud-tools staging area17:03
jamespagezul, nice17:03
jamespageyou might have problems with ipxe17:03
jamespagenot sure that debhelper format 9 is supported on 12.0417:03
zuljamespage:  nice17:03
jamespageoh - no - I am mistaken17:04
jamespageprobably ok17:04
jamespagesmoser, I'm drafting the seed review email to -devel -server -cloud17:28
smoserwant to put that in an etherpad ?17:28
jamespagedo you think I should include the pad contents or just refer people to the pad?17:28
smoserinclude the changes we are dicussiong17:29
smoseryou can link to the padd for more info if you'd like17:29
smoserbut people responding there will want to respond to something inline.17:29
jamespagesmoser: http://pad.ubuntu.com/server-seed-review17:30
szaus18any manual on how to install openstack on 13.10, all I found is for 12.0417:43
jamespageszaus18, broadly the instructions are the same - just skip the bits about enabling the cloud-archive for 12.0417:53
jamespageits all in distro17:53
jamespageszaus18, fwiw the recommended platform is 12.0417:53
jamespage13.10 works just fine - but you only get 9 months before you have to upgrade17:54
szaus18jamespage: thanks, trying here. I need 13.10 as I'm trying this on a powerpc 64b server17:56
jamespageszaus18, that sounds like a good reason to use powerpc17:56
jamespage13.10 rather17:56
jamespage(cloud-archive for 12.04 does not support powerpc port)17:57
szaus18i could spin devstack for a quick try, which i normally do on x86, but powerpc does not have nodejs17:57
jamespageszaus18, really interested to see how that goes for you - we don't get to many powerpc openstack users17:57
jamespageszaus18, the nodejs requirement in horizon is no longer present in havana17:58
jamespageit uses python-lesscpy17:58
szaus18really? devstack havana branch still complains no nodejs package17:58
jamespageszaus18, that sounds like a devstack bug to me17:58
szaus18let me try python-lesscpy on powerpc then see if that gets devstack going17:58
szaus18thanks!17:58
jamespagenp17:59
szaus18Package nodejs is not available, but is referred to by another package.18:01
szaus18this is for powerpc/13.10, let me see if i can workaround this in devstack, it's good to know nodejs is no longer mandatory18:01
TheLordOfTimeis there any somewhat-easy method to set up the firewall to block tor traffic?18:02
TheLordOfTimei want to block tor traffic on a specific port (which a specific web-facing service runs on)18:02
andolTheLordOfTime: The link I gave you earlier today, that didn't cover it for you?18:09
TheLordOfTimeandol, missing in the scrollback18:10
TheLordOfTimebecause i don't have a ton of scrollback lines set here.18:10
TheLordOfTime(for good reason, if i set it to the 20000 lines i'd need the ZNC would OutOfMemory)18:10
andolhttps://www.torproject.org/docs/faq-abuse.html.en#Bans18:10
TheLordOfTimeandol, that's a half answer18:11
TheLordOfTimeno better than the tards at ServerFault who never specified a way to translate the exit node lists into actual firewall rules18:11
andolTheLordOfTime: The the specific way you do that all depends on your specific setup. Nothing Tor specific about that.18:12
TheLordOfTimeandol, then i guess i'm not getting any useful data from here, either... what I have are multiple tor exit node lists available to me.18:12
TheLordOfTimewhat I need is to get those into firewall rules18:13
TheLordOfTimeso far all i've been getting are lists of IPs.18:13
TheLordOfTimewith no way to turn those to iptables rules other than me doing everything by hand18:13
TheLordOfTimeand with large lists that seems somewhat inefficient18:13
andolScript something, and put the block list in a dedicated chain?18:14
smoserjamespage, do you tihnk 'w3m' could be dropped ?18:15
smoseri think it makes sense to at least to add it to the list of candidates. its listed as "Documentation", but I don't think i've ever used 'w3m' for doc on a server.18:15
smoser(or anywhere else)18:15
sarnold:( I use w3m for both local documenation and troubleshooting-web-browsing..18:17
zulhallyn:  i have libvirt 1.2.0 built18:31
szaus18jamespage: i 'fixed' devstack and now it's running on powerpc ;)18:32
szaus18did not read release notes carefully and it's  good to know nodejs is no longer mandatory18:33
szaus18will do a patch18:33
bluekingwhat's fastest filetransfer method between two pc's  (server + pc) on local net gigabit  net ?18:40
bluekingare there ftp server for ubuntu that support multipart ?18:43
zulmdeslaur:  hey they new libvirt 1.2.0 splits off the python bindings into its own package...just thought you would want to know18:45
mdeslaurzul: ah, thanks18:45
tonyyarussoI'm having some trouble with LDAP authentication.  There's a machine running 12.04 that a former coworker set up, and as far as I can tell he did it right and it seems to match our other clients, but 'getent passwd' only returns the local accounts.  I have confirmed connectivity to our LDAP server with ldapsearch.  Thoughts?18:51
sarnoldtonyyarusso: does /etc/nsswitch.conf look right?18:55
tonyyarussosarnold: yeah.  passwd: files ldap18:55
tonyyarussosarnold: Know of any other troubleshooting I can try?19:10
zulhallyn:  ping19:11
sarnoldtonyyarusso: sorry, that was my one shot :)19:12
tonyyarussoaww :P19:12
hallynzul: .19:18
zulhallyn:  i have libvirt 1.2.0 and libvirt-python 1.2.0 packaged, ill put it in a ppa for you to test19:19
hallynzul: ok, thanks.19:19
hallyni'll set up a test vm, lemme know when ppa is ready19:20
zulhallyn:  https://launchpad.net/~zulcss/+archive/libvirt-1.2.0 when built19:21
bluekingnfs server, it can share /home/<username>/  ?    and require one to logon it with password  from windows pc with mapped network drive?20:01
zuljamespage:  do you want to take care of ceph and openvswitch?20:02
zuljamespage:  er for the CA20:03
HiddenDjinnblueking, you'd probably get more mileage with samba20:03
bluekingHiddenDjinn:  wasn't fast enough with samba :/20:03
bluekingHiddenDjinn:  got only 28MB/s on samba20:04
tonyyarussosarnold: Dumb mistake.  Typo in our domain...20:10
moparisthebestso i've got multiple different-sized drives in mdadm RAID1 configuration20:43
moparisthebestover top of which I have an LVM, so they all show up as 1 big drive20:43
moparisthebestthat's entirely mirrored so a single hard drive failure doesn't lose any data20:44
moparisthebesti'm planning on adding LUKS encryption to this setup, but where should I add it?20:44
moparisthebestso, right now, ext4 -> LVM -> RAID1 -> physical disks20:45
moparisthebestand I think my choices are ext4 -> LUKS -> LVM -> RAID1 -> physical disks20:45
moparisthebestor20:45
moparisthebestext4 -> LVM -> LUKS -> RAID1 -> physical disks20:45
moparisthebestI guess technically 'ext4 -> LVM -> RAID1 -> LUKS -> physical disks' is an option too, but it doesn't sound like the best one20:47
xnoxmoparisthebest: your reasoning is correct. last one is a pain, as you'd need to enter password for each physical disk.21:00
xnoxmoparisthebest: forlast, is good if you want to have _all_ LMV volumes encrypted21:00
xnoxmoparisthebest: the first one is good if you still want to have unecrypted volues.21:00
moparisthebestI don't want any unencrypted volumes, and I'll be using keyfile(s) instead of passwords so that's not an issue either21:02
moparisthebestI also think btrfs could replace ext4, LUKS, and MDADM RAID1, entirely, but I'm not sure if it's ready to be used like that yet21:11
=== jemurray_ is now known as jemurray
=== Ursinha_ is now known as Ursinha
bluekingwhat is wrong with apt-get install nis  ?  I get  3 issues ->  initctl: unknown job: rpcbind, initctl: unknown job: ypbind, initctl: unknown job: ypserv   <-   something wrong or can keep on installation ?21:21
bekksblueking: You could take a look which files are actually installed by that package.21:27
=== PaulePan1er is now known as PaulePanter
bluekingbekks:  how I do that ?21:32
bekksdpkg-query -L nis21:32
bluekingbekks:  when do apt-get install rpcbind    i get initctl: unknows job: rpcbind21:36
bekks!info rpcbind21:37
ubotturpcbind (source: rpcbind): converts RPC program numbers into universal addresses. In component main, is optional. Version 0.2.0-8.2ubuntu2 (saucy), package size 40 kB, installed size 152 kB21:37
bekksblueking: Well, then look at the content of that package :)21:37
bluekingbut what does initctl do ?21:38
bluekinghmm  think I have problem with D-Bus21:41
bekksblueking: look at the first three lines of the installed files: http://packages.ubuntu.com/raring/amd64/rpcbind/filelist21:41
bekksthat are the "jobs" you may start/stop.21:41
bluekingI get error messages when run initctl reload-configuration21:43
chaos_When I save oneliners to my collection I usually do this for variables (is there a shorter way?)   /sbin/udevadm [..] --name=`read -p "Device (sda): " r; echo -n ${r:-sda}`21:48
jamespagezul: will do21:57
Nox_404hi, i need help for a raid5 recovery, here is what happend : RAID5 mdam with 3 disks and a lvm on it. A  disk was disconnected because of a bad connection (the sata went away). So i received a notification and i  plugged back the disk without doing anything else. Later i had to reboot the system (install requirement),  but i'm stuck after GRUB, there is only a black screen !22:46
Nox_404(ubuntu server 12.04)22:46
xnoxNox_404: drop to root shell (recovery boot option)22:48
xnoxNox_404: read mdadm man pages online22:48
xnoxNox_404: do --scan & --add devices to assemble the array back together.22:49
xnoxit will need a resync.22:49
Nox_404ok i'll try but why it doesn't boot, it's a raid5 so i can still use the 2 others no ?22:50
=== mibofra- is now known as mibofra
xnoxNox_404: depends on what happened, depends if "boot_degrated=true" was configured / set.22:52
Nox_404xnox: Can you tell me the procedure ?23:00
ikoniaNox_404: you're not running your root file system on the raid array are you ?23:04
Nox_404i do.... why ?23:06
ikoniawell, that will make it harder and a chicken and egg situation23:06
Nox_404everything is on the raid5 exept GRUB23:06
ikoniaI'm assuming your root file system is under lvm control on the aray23:06
ikonia /boot can't be ?23:06
Nox_404 /boot is not on the raid23:08
ikoniaok good23:08
Nox_404and yes there is a lvm23:08
ikoniaputting the root on the raid makes it a bit more complex under lvm control23:08
ikoniatry to assemble the array from a livecd23:08
Nox_404i said it stop after grub so it's not that bad23:08
=== gary_poster is now known as gary_poster|away
Nox_4046 hours.....23:13
ikoniawindow 1423:13
ikoniaoops23:13
Nox_404but thanks for your help23:13
jkyleso, I'm getting periodic and very hard to track down failures with apt-cacher-ng. they've just cropped up recently in our deploys...could be version related, but not sure.23:18
jkylethey generally look something like: apt-cacher.err:Mon Dec  2 14:37:09 2013|uburep/pool/main/c/cpio/cpio_2.11-7ubuntu3_amd64.deb storage error [500 Server reports unexpected range], last errno: Operation now in progress23:18
jkylethe error is the same, but hte package (or packages) are always different23:18
jkylethey only happen once, restarting the debian installer or runnign apt-get install again resolves the issue23:19
jkyleand it doesn't come back till the next fresh start23:19
jkylefrom what I can tell from the acng source, this error means the range header it received was not complete23:20
jkyleso anyone else seen this?23:21
sarnoldtonyyarusso: oh, good! thanks for reporting back :)23:27
sarnoldjkyle: https://bugs.launchpad.net/ubuntu/+source/apt-cacher-ng/+bug/123494623:28
uvirtbotLaunchpad bug 1234946 in apt-cacher-ng ""Size mismatch" caused by writing wrong data" [Undecided,Confirmed]23:28
jkylesarnold: nice, didn't find that one when searching23:32
jkylefound one for disablign range header checks that was pushed in a previous version23:32
jkylebut that sounds _exactly_ like what I'm seeing23:33
sarnoldjkyle: yeah, I went nuts for a few hours as I tried to figure out what was broken in my setup, and when I started checking the data on disk against what I could see from the mirror I was using apt-cacher-ng was the highest point of failure for me.23:34
roaksoaxhallyn: any ideas? http://paste.ubuntu.com/6511799/23:35
sarnoldjkyle: since it had worked fine for me from 12.04, 12.10, 13.04, I didn't suspect it as quickly as I should have when it failed for me under 13.10...23:35
jkylesarnold: well, if it makes you feel any better I'm on 12.0423:35
jkyle0.7.11-1~ubuntu12.04.123:36
jkylebut this is definitely it23:36
jkyleseen the sum mismatch and the bad header errors23:36
sarnoldjkyle: oh! cool! you've probably got a much smaller potential diff23:36
jkyleso 0.7.10 clears it up?23:37
sarnoldthe funny version number makes me think that's quite likely23:37
sarnoldif it does, that'd be very useful to -know-23:37
jkylewe'v eben on 12.04 for quite a while and this really is a recent development23:37
jkylerelatively. like the last few weeks I'd say23:38
hallynroaksoax: looks like lxcbr0 doesn' texist :)23:38
jkylehot servers dont' seem to show it, so it'd only crop up on new deployments that had an empty cache23:38
hallynroaksoax: what's in host's /var/log/upstart/lxc-net.log?23:38
roaksoaxhallyn: dnsmasq: failed to create listening socket for 10.0.3.1: Address already in use23:38
hallynroaksoax: is this a nested container?23:39
roaksoaxhallyn: the thing is i installed, it worked jhust fine. Didn't use lxc in couple of days and it doesn't work23:39
jkylesarnold: was wondering if squid-deb-proxy works during an unattended install23:39
roaksoaxhallyn: not it is not23:39
hallynroaksoax: so what is using 10.0.3.1?23:39
hallynroaksoax: pastebin 'ifconfig -a' output23:39
roaksoaxhallyn: that is from lxc-net.log.1.gz23:39
roaksoaxhallyn: so noone is using 10.0.3.1 now23:40
hallynroaksoax: so if you do 'sudo start lxc-net' what do you see?23:40
jkylesarnold: it's failing at line# 438 : http://git.fsinf.at/apt/apt-cacher-ng/blobs/d656c645d99ac99b0045e663492f0824d8cfee2e/source/fileitem.cc23:40
roaksoaxhallyn: start: Job is already running: lxc-net23:40
hallynroaksoax: and you're telling me lxcbr0 does not exist?23:40
roaksoaxhallyn: i just restarted and after that it *now* exists23:41
roaksoaxhallyn: apparently not creating it on machine restart23:41
roaksoaxthat might be the cause23:41
hallynreboot and prove it :)23:41
hallynroaksoax: do you have ufw instlaled and running/23:41
sarnoldjkyle: hrm, I don't think I ever got log messages, I just had corrupted data.23:41
roaksoaxhallyn: i do, let me reboot23:42
jkylesarnold: well, to be honest that error might be a red herring23:42
sarnoldjkyle: sorry, no direct ideas re: squid-deb-proxy during an install, but I -hope- it does, it just looks like a standard http proxy..23:42
hallynroaksoax: if you have ufw enabled then actually this is a real bug - iptables call in lxc-net.conf needs to add -w to args list.23:42
hallyns/is/could be/23:42
roaksoaxhallyn: uhmm rebooting this time had br023:44
roaksoaxerr23:44
roaksoaxlxcbr023:44
hallynroaksoax: was there really nothing in /var/log/upstart/lxc-net.log ?23:46
hallynroaksoax: if it is the ufw race, then it'll be a once-in-awhile thing23:46
roaksoaxhallyn: the file didn't even exist, only a .gz one which was old23:46
jkylesarnold: well, I'll know in about 30m hehe23:46
roaksoaxhallyn: that might be it indeed23:46
hallynroaksoax: ok, well let me open a bug for that and we'll go from there - thanks23:46
roaksoaxhallyn: cool thanks!23:46
hallynroaksoax: bug 125711723:48
uvirtbotLaunchpad bug 1257117 in lxc "lxc-net must use -w flag for iptables" [High,In progress] https://launchpad.net/bugs/125711723:48
jkylesquid-deb-proxy seems to work easily/well enough.23:48
sarnoldjkyle: I didn't have good success with the squid-deb-proxy-client package, fwiw; I just hard-coded the proxy into my clients. It's not ideal, but I didn't feel like fighting avahi at the time.23:48
jkylesarnold: that's what I'm doing. it's easy enough to set the proxy in the preseed23:49
jkylebesides, I don't want my servers bypassing the cache server if it can't find it. I'd rather they fail and alert me to a problem. Also, pretty sure setting the proxy in the preseed is required if you want the client to pull down packages from the cache during install23:50
hallynand, fix for that pushed to trusty, but waiting on saucy sru23:50
hallynroaksoax: you were on saucy i hope?23:51
roaksoaxhallyn: yes. so a few days ago i create a saucy container, destroyed it. rebooted machine and tried to create a trusty container.. then it failed to start as i showed you23:53
roaksoaxhallyn: but yes, this was saucy23:53
sarnoldjkyle: cool :D23:54
hallynroaksoax: ok, thanks.  ttyl23:55
hallynsarnold: hey!  is that a bored look on your face? :)23:55
sarnoldhallyn: uhoh :) what's up? :)23:56
hallynsarnold: so there's a bit of code up at github.com/hallyn/cgmanager23:56
hallynsarnold: in particular, the cgmanager_move_pid and get_scm_cred() functions in cgmanager.c, and the movepid.c standalone test program...23:57
sarnoldhallyn: no kidding? man you're quick ;)23:57
hallynsarnold: movepid sends a dbus request, then tries to send an scm_credential after the dbus message23:57
hallynbut there's much raciness going on in the scm_credential sending.23:57
hallynas you know (sigh) you have to setsockopt() to so_passcred before the other end can send you an scm-crednetial23:58
hallynso i'm trying to have the receivig end first send a character with write(sock, buf 1) so the client knows its safe to send.  that never gets received...23:58
hallynso anyway, i'm just asking if you know anything about the state of the underlying socket fd while you're doing dbus junk :)23:58
sarnoldhallyn: hrm, I don't see any _move_ functions in cgmanager.c23:59
hallynoh, sorry, you have to git co dec2.123:59
sarnoldhallyn: ah, that's easier, I don't know much about the dbus implementation :(23:59
hallyni should set a default branch :)23:59

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!