=== jono is now known as Guest43238
[00:25] <lemao> I am looking for pointers on how to use juju OSX client with a local VagrantBox
[00:26] <lemao> I see that I have to juju switch manual (the ~/.juju/environment.yml contains a "null"  instead of "manual", though(
[00:27] <sarnold> lemao: I think the 'null' provider is renamed 'manual' in a development branch. probably 'null' still works for whatever you've got installed..
[00:28] <lemao> sarnold: ok. It seems that my initial problem is that vagrant boxes use port 2222 instead of port 22 for ssh. How can I change the default ssh port in the environment?
[00:28] <sarnold> lemao: hrm, I don't know for certain, but probably ~/.ssh/config could be omdified to use the port 2222
[00:29] <lemao> sarnold: true. Forgot about that. It would be nice though to have a self-contained configuration for juju ... Let me try that for now
[00:42] <arosales> lemao: there is also this workflow https://juju.ubuntu.com/docs/howto-vagrant-workflow.html
[00:42] <sarnold> lemao: yeah, I know what you mean...
[00:43] <sarnold> lemao: did you get it sorted out?
[00:43] <arosales> and the folks at altoros whipped up https://github.com/Altoros/juju-dev-box
[00:43] <arosales> though sarnold may have gotten you what you need too :-)
[00:44] <sarnold> heh, the Altoros thig looks pretty cool
[02:28] <lemao> sarnold: sorry, stepped out for dinner. Let me take take a look at the urls
[02:39] <lemao> sarnold, arosales: I was trying something slightly different: using juju OSX to interface with a Vagrant JujuBox, but just vagrant ssh may be the simplest route.
[02:39] <lemao> sarnold, arosales: but the link is superb since it covers the next question: how to create charms in this env
=== vladk|offline is now known as vladk
=== vladk is now known as vladk|offline
=== CyberJacob|Away is now known as CyberJacob
=== zchander_work is now known as zchander
[08:17] <jose> hey guys, does `unit-get public-address` give the public address? or that command doesn't exist?
=== CyberJacob is now known as CyberJacob|Away
[09:18] <yolanda> jamespage, what should i do about keystone and postgresql? what branch should i use as base?
=== vladk|offline is now known as vladk
[10:06] <jamespage> yolanda, hmm
[10:06] <jamespage> one second - just reviewing branches atm
[10:31] <jamespage> marcoceppi, if you have time - https://code.launchpad.net/~openstack-charmers/charm-helpers/ssl-everywhere/+merge/209301
[10:31] <jamespage> I think that is the last big branch for this cycle; once we have that landed I can start landing ssl-everywhere and icehouse branches for the charms
=== Overmind is now known as overm1nd
[11:14] <marcoceppi> jamespage: ack, will review in 30
[11:14] <zchander> What would be the best way to test for an existing relation (e.g. a relation to a MySQL charm is required), so I can keep the charm stopped until the relation established?
[11:17] <jamespage> marcoceppi, thanks
[11:17] <jamespage> zchander, you can query relations from any relation context - so you could write a check to see if a) mysql relation is present and b) mysql has provided credentials
[11:17] <jamespage> which would indicate its all good to work
[11:19] <zchander> jamespage: Thanks. Going to search for that… (maybe I am going to ask a über-noob question, but where can I find documentation about all available relation/etc context keys I can query from my shell scripts?)
[11:20] <jamespage> zchander, juju docs (http://juju.ubuntu.com/docs)
[11:20] <jamespage> the commands you need are
[11:20] <jamespage> relation-ids <relation-name>
[11:20] <jamespage> relation-list -r <relation_id>
[11:20] <jamespage> and relation-get -r <realtion_id> attribute <unit>
[11:21] <jamespage> relation-list gives you a list of related service units.
[11:22] <jamespage> zchander, this is written in python but it give you and idea - http://bazaar.launchpad.net/~charm-helpers/charm-helpers/devel/view/head:/charmhelpers/core/hookenv.py#L295
[13:05] <tvansteenburgh> so i'm working on a Meteor charm. Meteor is basically a node app that requires mongodb (won't run without it, as far as i know). my thought is to make the "start" hook a no-op until/unless the mongodb relation is joined. is there a better way?
[13:07] <marcoceppi> tvansteenburgh: you could create a dot file, like .db-added, which the start hook checks, if it exists, start the service, if it doesn't exit 0
[13:07] <marcoceppi> tvansteenburgh: so every hook could call hooks/start which wouldn't actually happen until it was ready
[13:07] <marcoceppi> atlernatively, just having the service start in the db-hooks is fine too
[13:08] <tvansteenburgh> ok cool, thanks
[13:10] <tvansteenburgh> and all the hooks run as root right?
[13:12] <marcoceppi> yup
[13:12] <tvansteenburgh> is there a preferred place for installing stuff (stuff that doesn't come from apt)
[13:12] <tvansteenburgh> like /opt or other?
[13:12] <tvansteenburgh> or no one cares? :)
=== roadmr_afk is now known as roadmr
[13:23] <marcoceppi> tvansteenburgh: well, IS says /srv/<service>
[13:23] <marcoceppi> tvansteenburgh: but anywhere outside of $CHARM_DIR is good, follow whatever the community expects
[13:24] <marcoceppi> the community of the service you're setting up*
[13:24] <tvansteenburgh> ok
[14:04] <rbasak> frankban: around? Thanks for the reply. Can we keep this conversation in the bug, please?
[14:04] <rbasak> frankban: specifically then, I think think mterry's question is that for juju-quickstart installed on Ubuntu from the official archive, why is its behaviour not to install juju also from the same archive?
[14:05] <arosales> marcoceppi: any chance meteor would run in node app
[14:05] <marcoceppi> arosales: maybe, haven't tried
[14:05] <arosales> tvansteenburgh: ^
[14:06] <arosales> tvansteenburgh: we do have a node.js framework charm, "node-app"  that can wrap node apps . .  .
[14:06] <rbasak> frankban: and if we could do that for the on Ubuntu from archive special case, then it could be done via dependencies in packaging, and so eliminate a need for a sudo call for that.
[14:07] <rbasak> rick_h_: ^^
[14:07] <tvansteenburgh> arosales: meteor uses node to run the app, but you still need the meteor framework
[14:07] <rick_h_> rbasak: otp the moment but will catch up
[14:08] <arosales> tvansteenburgh: ah ok so mabye not a good fit for the node-app charm, but thought I would check
[14:08] <tvansteenburgh> arosales: if the app was already bundled i guess you could run it on node/mongodb
[14:11] <zchander> Just a ‘quick’ non-juju question (not directly)………. I am strugling to replace a line in a php file (config) file using sed (in bash).
[14:19] <rick_h_> rbasak: have time to chat real quick? I'm not 100% following the question there
[14:19] <frankban> rbasak, rick_h_ : I'll copy observations on the bug. I think the point is that quickstart wants to set up a working juju installation independently from how you obtained the application. E.g. in saucy the PPA is required because the juju version we support (and other dependencies) is not in the official archives. In general, the idea is that we set up the code sources we require, and put there the things we want to ins
[14:19] <frankban> tall. In trusty, quickstart currently installs the juju-core located in universe (since it is the most recent version), and that's fine, but we'd like to have the ability to keep that under control, so that we can guarantee the same user experience on different times and series.
[14:20] <rick_h_> rbasak: I think we're walking a line of company wishes vs packaging rules/standards and might need to get a better idea on those rules
[14:22] <rbasak> rick_h_, frankban: sure. Hangout?
[14:22] <rick_h_> rbasak: sure thing, sec I'll get a url
[14:23] <rbasak> rick_h_: I need to reboot. Five minutes. Please can you see if you can find me and send me an invite from within the app? I can't c&p the URL to my hangout machine :(
[14:23] <rick_h_> rbasak: https://plus.google.com/hangouts/_/7acpidcv17rkrcgi24kle76rpk?authuser=1&hl=en
[14:23] <rick_h_> rbasak: will do
[14:24] <rick_h_> frankban: will redo in 5min
[14:25] <rick_h_> sorry about the confusion there
[14:25] <frankban> np
[14:28] <rick_h_> frankban: https://plus.google.com/hangouts/_/7ecpjtb43orhuo5sivafe2e6m8
=== hatch__ is now known as hatch
=== vladk is now known as vladk|offline
=== Darkwing_ is now known as Darkwing
[15:21] <jose> lazyPower: hey, mind if I ask a little question?
[15:21] <lazyPower> sure, whats up jose?
[15:22] <jose> erm, give me a couple mins so I can try this again and make sure it *is* failing
[15:28] <lazyPower> jose: ack. Ping when ready
[15:34] <jose> lazyPower: disregard, looks like yesterday tiredness was playing a trick on me :)
[15:34] <lazyPower> jose: fatigue is a developers 'best friend' </sarcasm>
[15:34] <jose> :P
[15:39] <jose> lazyPower: now an actual question: what should be done in case a charm has no copyright file? just file a bug and assign the maintainer?
[15:42] <marcoceppi> jose which charm doesn't have a copyright?
[15:42] <marcoceppi> it must be an old one
[15:42] <jose> marcoceppi: correct, 2011, cf-mongodb, cf-mysql and cf-redis afaict
[15:43] <jose> haven't looked further
[15:43] <jose> they don't have a README nor an icon or categories, but those I can fix
[15:43] <marcoceppi> jose those are negronjl charms I think
[15:43] <jose> yep
[15:44] <marcoceppi> you can ping him and have him update with copyright files
[15:44] <marcoceppi> there shouldn't be many others floating around
[15:44] <jose> ok, I found another 2 charms
[15:44] <jose> I'll send him an email in a while, then :)
[15:45] <marcoceppi> jose any other you find just ping me with the names
[15:45] <jose> cool
[15:45] <jose> thanks
[16:00] <jose> jcastro: hey, don't forget to push your own fix to the postfix charm (Markdown), I have no permissions
[16:06] <wesleymason> lazyPower: btw - haven't forgotten about giving you feedback on relations / docs, just ended up being massively busy last night, feel free to give me a poke if I don't get round to it ;)
=== vladk|offline is now known as vladk
[16:23] <jose> marcoceppi: to push a fix for the juju gui I need to have signed Canonical's Contributor Level Agreement, right?
[16:24] <lazyPower> wesleymason: perfect, no rush :)
=== roadmr is now known as roadmr_afk
[17:25] <_sEBAs_> hi!
[17:26] <_sEBAs_> im trying to connect juju with our openstack using lxc as a hypervisor
[17:27] <_sEBAs_> but im getting an error at the time to get the container at the bootstrap
[17:27] <_sEBAs_> open.go:278 failed to write bootstrap-verify file: cannot make Swift control container: failed to create container: juju-cece0b9817a68cba4780784bf0663e45
[17:27] <_sEBAs_> Im stuck in this like a day now
[17:27] <_sEBAs_> someone knows whats the problem here?
[17:28] <_sEBAs_> i sow some issues related to this, where i have to do a "juju metadata generate-image......"
[17:28] <_sEBAs_> but I thought juju bootstrap was doing that already :P
[17:31] <jose> _sEBAs_: are you doing the bootstrap with sudo?
[17:31] <_sEBAs_> ow
[17:31] <_sEBAs_> not
[17:31] <_sEBAs_> jose: I will try that!
[17:32] <jose> afaik when bootstrapping to lxc you need to do sudo, otherwise juju won't have enough permissions to create the container
[17:32] <_sEBAs_> but in the openstack provider?
[17:32] <jose> maybe yes?
[17:32] <jose> give it a try
[17:33] <_sEBAs_> ok, I would thanks!!
[17:38] <_sEBAs_> now something changed, 2014-03-26 17:35:11 ERROR juju.cmd supercommand.go:300 failed to GET object provider-state from container juju-cece0b9817a68cba4780784bf0663e45
[17:39] <_sEBAs_> caused by: Authentication response not received in 1m0s.
[17:39] <_sEBAs_> thats wired
[17:40] <_sEBAs_> i think i have all the info for authentication right
[17:55] <_sEBAs_> i'm trying to introduce private cloud with juju here in a big company at Brazil, but I'm more than a day now stuck in this problem
[17:56] <_sEBAs_> jose, jcastro or marcoceppi some light, please! :)
[17:58] <jose> _sEBAs_: maybe sudo was expecting a password?
[17:59] <jose> it actually shouldn't require sudo, but I'm wondering why it's not able to create the container
[18:00] <jose> maybe others may be able to guide you better, I've personally not used openstack :)
[18:00] <marcoceppi> _sEBAs_: run juju bootstrap with --debug
[18:01] <bada> hi guys. Is it mandatory to have a Swift infrastructure to une Juju ?
[18:02] <_sEBAs_> jose: maybe, but it isn't asking for one
[18:02] <marcoceppi> bada: if you're doing openstack, yes
[18:02] <marcoceppi> jose _sEBAs_ you don't need sudo for any prodvider other than local
[18:02] <_sEBAs_> marcoceppi: im running bootstrap with --debug
[18:02] <_sEBAs_> greate!
[18:02] <_sEBAs_> i was expecting something like that
[18:03] <bada> marcoceppi : OK and it should use x509 certificat ? Because i have an error x509: cannot validate certificate for xxxxxxx because it doesn't contain any IP SANs
[18:03] <marcoceppi> bada: so juju creates a x509 cert, iirc, for secure communication with the bootstrap server
[18:03] <marcoceppi> bada: when are you getting this error
[18:03] <bada> marcoceppi : when i run the bootstrap command
[18:04] <bada> marcoceppi : i'm not the only one https://bugs.launchpad.net/juju-core/+bug/1261780
[18:04] <_mup_> Bug #1261780: go 1.1.2 TLS-enabled client does not accept our CACert <security> <tech-debt> <juju-core:Triaged> <https://launchpad.net/bugs/1261780>
[18:04] <bada> yep
[18:04] <bada> :)
[18:05] <sarnold> note that we've removed CACert from the certificates packages
[18:05] <sarnold> if you want to trust CAcert, you'll have to install the certificate manually
=== roadmr_afk is now known as roadmr
[18:06] <bada> sanrnold : how and where ?
[18:08] <sarnold> bada: even though this is about intermediate certs I suspect it would work for top-level certs as well: http://yob.id.au/2013/02/06/trusting-new-ssl-certificates-in-debian.html
[18:09] <bada> sarnold: Ok i'll try this. Thanks
[18:10] <_sEBAs_> marcoceppi: can i show you the debug log of the bootstrap ?
[18:11] <marcoceppi> _sEBAs_: yeah, just make sure to scan it for any private information first
[18:21] <lazyPower> make
[18:23] <_sEBAs_> marcoceppi: http://pastebin.com/UFmBgAG7
[18:23] <_sEBAs_> marcoceppi: thanks in advance ;)
=== vladk is now known as vladk|offline
[18:37] <hazmat> allomov, greetings :-)
[18:37] <allomov> Hello %)
=== allomov is now known as allomo
=== allomo is now known as allomov
=== allomov is now known as code1n
[18:49] <_sEBAs_> marcoceppi: any ideias? maybe my openstack credentials?
=== CyberJacob|Away is now known as CyberJacob
[19:25] <tvansteenburgh> i deployed my service (forgot to run `juju debug-log`) and my service is now in error state. wondering about the best path forward to determine what went wrong.
[19:26] <tvansteenburgh> destroy the service and rerun with debug-log?
[19:28] <jose> tvansteenburgh: juju ssh [unit], logs are stored in /var/log/juju
[19:28] <tvansteenburgh> jose: thanks!
[19:28] <jose> sure :)
[19:30] <Fishy_> Q about virsh and maas
[19:30] <Fishy_> http://askubuntu.com/questions/292061/how-to-configure-maas-to-be-able-to-boot-virtual-machines/295976#295976   says to use the url:   qemu:///system
[19:30] <_mup_> Bug #295976: LTSP Fat client unable to mount network shares in fstab <mountall (Ubuntu):Expired> <https://launchpad.net/bugs/295976>
[19:30] <Fishy_> is /system the real system name
[19:30] <Fishy_> or literally ///system
[19:33] <jcw4> I expect that 'qemu://' is the scheme and '/system' is the path
[19:34] <jcw4> just like file:///etc/blah/blah
[19:34] <jcw4> resolves to /etc/blah/blah
[19:35] <Fishy_> Ok so real machine dns name
[19:35] <Fishy_> cool
=== timrc is now known as timrc-afk
[19:37] <jcw4> I think /system is a path on a default name (probably localhost)
[19:37] <jcw4> otherwise qemu://dns_name_of_machine.com/system
[19:37] <Fishy_> hum  ok
[19:37] <Fishy_> trying to make power on work for a local guy
[19:38] <Fishy_> think thats whats blockin me
[19:38] <jcw4> Well, I'm at my limit; nothing more to contribute :)
[19:38] <jcw4> sorry
[19:39] <Fishy_> haha thanks anyway i have some more ideas to guess and check
[19:39] <jcw4> good luch
[19:39] <jcw4> luck
[19:40] <Fishy_> i have resorted to naming all my juju machines prefixed with turd_
[20:01] <_sEBAs_> here is someone using juju with openstack? and working?
[20:04] <_sEBAs_> I tried everything and i'm with two errors, "GET object provider-state from container juju-..." is given and apache time out, and the second one "failed to write bootstrap-verify file: cannot make Swift control container"
[20:22] <Fishy_> openstack is complicated
[20:26] <_sEBAs_> Fishy_: tell me about it
[20:27] <_sEBAs_> took me like 3 days to install and configurate with lxc hypervisor ¬¬
[20:30] <Fishy_> been trying for 3 days to get juju status to return
[20:30] <Fishy_> for maas
[20:30] <Fishy_> still failure
[20:30] <Fishy_> no useful logs
[20:32] <_sEBAs_> Fishy_: i feel you bro
[20:33] <_sEBAs_> im stuck with an error trying to connect openstack to juju
[20:33] <_sEBAs_> ops juju to openstack
[20:33] <Fishy_> we need a juju emotional support group
[20:44] <_sEBAs_> hehe
[20:49] <marcoceppi> sounds like you need an openstack emotional support group
[20:49] <marcoceppi> ;)
[20:54] <Fishy_> OT, but does anyone know why a maas configurd bind9 dns proxy would fail 66% of the time, but succeed 33% of the time.. on a dns request to a random website like google.com ?
[20:54] <Fishy_> i set a forwarder to a real working dns server
[20:56] <marcoceppi> Fishy_: that's, fishy.. ;) what does the logs in /var/log/maas/<bind or seomthing> show?
[20:57] <Fishy_> logs there are:  celery.log  celery-region.log  maas.log  maas.log.1.gz  oops  pserv.log  pserv.log.1.gz  rsyslog  txlongpoll.log  txlongpoll.log.1.gz
[20:57] <marcoceppi> Fishy_: huh, none of those are helpful
[20:57] <marcoceppi> Fishy_: is there a dns-y log in /var/log ?
[20:58] <Fishy_> nope
[20:59] <Fishy_> oo i think I see it in syslog
[20:59] <Fishy_> Mar 26 15:57:47 cgta-dev-6 named[27714]:   validating @0x7fa468022410: com SOA: got insecure response; parent indicates it should be secure Mar 26 15:57:47 cgta-dev-6 named[27714]: error (no valid RRSIG) resolving 'google.com/DS/IN': 192.168.78.202#53
[20:59] <marcoceppi> Fishy_: that seems to be your issue
[20:59] <Fishy_> dnssec-enable no; and dnssec-validation no;    worth a try!
[21:01] <Fishy_> marcoceppi: fixed it yay thanks
[21:02] <_sEBAs_> \o/
[21:03] <_sEBAs_> marcoceppi: i sent an email to explain my issue with juju and openstack, any help would be appreciated :)
[21:04] <marcoceppi> _sEBAs_: thanks, a bit busy at the moment, will look a little later today. Sorry!
[21:04] <_sEBAs_> to the juju group :)
[21:04] <marcoceppi> _sEBAs_: perfect
[21:05] <_sEBAs_> marcoceppi: I imaging that!! sorry to bug you, and thanks!
=== timrc-afk is now known as timrc
=== roadmr is now known as roadmr_afk
[21:34] <mbruzek> So I deployed a charm to hp-cloud that provides a web page.  Without exposing the charm I am able to view the web page.  Can someone explain why that is?  According to juju status  exposed: false and no open ports
[21:40] <thumper> mbruzek: no
[21:40] <thumper> mbruzek: I don't think so, the firewall needs to have ports opened
[21:40] <mbruzek> thumper I am checking the charm... I don't see firewall config, apache config yes, but no firewall configuration
[21:41] <thumper> mbruzek: juju handles the firewall by the charm opening ports
[21:41] <mbruzek> thumper, yeah but open-port is not called in the hooks that I can see
[21:42] <thumper> that may well be the problem
[21:44] <mbruzek> thumper, So I would not expect that I could have got to the 80 port on this system if there are no open-port commands.  Is it possible to confiure a charm to be open without calling open-ports?
[21:44] <thumper> I'm not sure, but I don't think so
[21:44] <thumper> perhaps jcastro knows
[21:45] <thumper> or marcoceppi
[21:47] <marcoceppi> thumper: does juju reuse sec groups?
[21:47] <marcoceppi> that could explain it
[21:47]  * thumper shrugs
[21:47] <marcoceppi> if a sec group was left behind machine-0-secgruop
[21:47] <marcoceppi> whatever
[21:47] <marcoceppi> etc
[21:47] <marcoceppi> yadda
[22:15] <jose> hey lazyPower, mind a PM?
[22:15] <lazyPower> jose: not atm, brb
[22:15] <jose> ok!
[22:46] <smarter> Is there any way to get juju working on Debian currently? Here's what I get when I try to bootstrap with the local environment: http://sprunge.us/ZCMC
[22:50] <marcoceppi> smarter: you /can/ but it requires a bit of work
[22:51] <marcoceppi> smarter: and I don't think it'll work with local at all, only a "real" cloud
[22:51] <marcoceppi> I tried earlier, and got pretty far, but had to stop because of time constraints
[22:53] <smarter> I see, thanks for the information
[23:03] <jose> hey marcoceppi, still around? I heard back from negronjl
[23:03] <marcoceppi> jose yo
[23:03] <negronjl> who dares mention my name :)
[23:03] <jose> :P
[23:03] <marcoceppi> <3 negronjl
[23:03] <negronjl> marcoceppi, the cf-* charms should be shot ... they are old stuff :)
[23:03] <marcoceppi> negronjl: shot as in unpromulgated?
[23:04] <negronjl> marcoceppi: yup
[23:04] <marcoceppi> negronjl: ack, will remove from store
[23:04] <negronjl> marcoceppi, thx man
[23:04] <jose> I also mentioned the cloudfoundry ones
[23:04] <jose> those too?
=== CyberJacob is now known as CyberJacob|Away
[23:45] <Fishy_> when I "accept an commision" a new node.. should MAAS use WOL to wake that node up and start the process?
[23:46] <Fishy_> right now i need to boot each node 3 times.. one to get registered.. once to get comissioned.. and a third time to actually do what he is suppsed to