[00:31] i'm running two ubuntu server on two machines. Both systems are NUMA systems [00:32] but on one system, numactl -H shows only one node [00:32] I don't know why.... [00:35] Aison: does your system bios allow disabling it? [00:37] uhm, I have to check.... but I already used the motherboard with the OS that recognizing NUMA. And there it worked [00:37] maybe there was a BIOS reset when I moved the motherboard to the new casing?!? [00:51] Aison: i can try and help you debug if that isn't it, tmrw :) [00:57] nacc, thx, just checking the bios now === eZethNesthrown__ is now known as ezethnesthrown [01:19] nacc, on boot, the BIOS posts 4 Nodes [01:19] but ubuntu don't detect them [01:20] Aison: is there anything informative in dmesg output? [01:23] that's all: [ 0.000000] NUMA: Initialized distance table, cnt=1 [01:23] maybe it is some cpu setting in bios that produce that problem [01:24] I don't understand all options, eg. IOMMU [01:24] Client: HexChat 2.12.4 • OS: Microsoft Windows 10 Home Single Language (x64) • CPU: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz (2.19GHz) • Memory: 7.8 GiB Total (1.8 GiB Free) • Storage: 483.3 GiB / 807.9 GiB (324.6 GiB Free) • VGA: NVIDIA GeForce GTX 950M, Intel(R) HD Graphics 5500 • Uptime: 4d 14h 6m 10s [01:25] that's interesting; my laptop spits out: [ 0.000000] No NUMA configuration found [01:25] different from count=1... [01:26] maybe it is worth updating the bios? [01:46] Aison: bios updates may help (the numa table is in the firmware on the mobo) [01:46] Aison: what type of hardware? [01:46] Aison: also, there *might* be BIOS settings that turn a NUMA system into a UMA system for compatibility reasons [01:48] Aison: there will be some more info than that normally [01:48] Aison: i'm eod, but if you can pastebin your dmesg on boot, i can try and look [01:49] Aison: the non-x86 arches have numa debug in the kernel [01:59] bios update helped [01:59] woot? :) [02:00] but now I get this error with grub: [02:00] grub attempt to read or write outside of disk [02:00] hd0 [02:00] when I select the first kernel [02:00] the 2nd and 3rd one works [02:00] eww [02:01] never ever had such a strange error === eehackr is now known as eehackr_ === eehackr_ is now known as eehackr [05:50] coreycb: thanks for updating me on newton 9.3.x for Xenial! [06:44] In smb.conf, where does 'auth methods' sit? [06:46] Good morning [06:47] The letter G in parentheses indicates that a parameter is [06:47] specific to the [global] section. [06:51] Okay thanks. [06:52] [[ sudo ldapmodify -x -D 'cn=config' -W -f config_loglevel.ldif ]] > Enter password > Invalid credentials (49) [06:52] [[ sudo ldapwhoami -x -D cn=admin,dc=testserver,dc=ord -W ]] > Enter password > Password is correct [06:56] Oh wait, it says no such user in the ldap log [06:58] Nevermind, found the solution [06:58] yay? [07:09] I'm currently having problem with Samba + LDAP. I can't access to Samba with 'smbclient' after adding user with 'smbldap-useradd' command. [07:10] log.openLDAP says > NT_STATUS_ACCESS_DENIED === eZethNesthrown is now known as ezethnesthrown [08:38] could someone take a look at https://bugs.launchpad.net/ubuntu/+source/libguestfs/+bug/1632405 and maybe bump priorities? it's sad to see openstack projects moving from xenial to centos because of this https://review.openstack.org/463677 [08:38] Launchpad bug 1632405 in libguestfs (Ubuntu) "virt-customize enters infinite loop: dhclient-script: cannot open /etc/fstab" [Undecided,Confirmed] [10:31] nacc: are you around to help me learn how to create updated packages for Nagios? cpaelzer suggested I pop in here for the bug squashing event [10:31] bug report is https://bugs.launchpad.net/ubuntu/+source/nagios3/+bug/1686768 -- it's patched, I think I just need to get the new packages sorted? [10:31] Launchpad bug 1686768 in nagios3 (Ubuntu Zesty) "Restricted contacts can see servers that do not belong to them" [Medium,Triaged] [12:30] if i need to reach out to landscape support, and all the web methods are dead, how do I go about doing that? [12:31] (SalesForce SSO error, or "Connection Reset" to the generic "Contact Canonical" page) === Poster is now known as Poster` === Poster` is now known as Poster [13:12] coreycb: I guess you are in Boston at the moment [13:12] coreycb: I rebuild Horizon for stable/newton and I got into this bug again https://bugs.launchpad.net/horizon/+bug/1643964 [13:12] Launchpad bug 1643964 in horizon (Ubuntu) "compressing static assets fails with xstatic-bootswatch 3.3.7.0" [Undecided,Fix released] [13:12] Hi, I run a very typical PAM+LDAP setup with posixAccount and shadowAccount, we use shadowExpire to expire accounts that haven't renewed (yet), now I can't seem to find how I can check through CLI whether an account has expired without using ldap_search. I presume there should be some regular or PAM command to do this. Can anyone help me out? === dasjoe_ is now known as dasjoe [13:52] zioproto: yes i'm at the summit so hard to dig into much but i think that may occur on newton if you generate new xstatic files [13:53] how could I reset ? [13:53] I tried deleting completely /usr/lib/python2.7/dist-packages/horizon/ [13:53] and I deleted also /usr/share/openstack-dashboard/ [13:53] but I am never able to reinstall Horzin [13:53] this is the staging system, dont panic :) [13:59] Teasing the idea if I can set up rotating tar backups and use archivemount (in read only) to keep files presented to the user. [14:01] Incremental rotating backups, sorry. [14:02] Since tar has it built in from what I'm aware. [14:03] And I think I can use tarcat on archive.0.gz.tar and archive.1.gz.tar to archive.0.gz.tar, then rename archive.n.gz.tar to shift them back a number before creating archive.x.gz.tar. [14:04] But how successful and stable that will be is up to debate. [14:07] Is the 'man slapd.conf' is a little out of date? The example at the bottom of the page looks different to my non-existent slapd.conf [14:14] ezethnesthrown: A config file called slapd.conf can still be used, that's why the manpage is still there. Doesn't mean it's the default configuration mechanism [14:14] (it's not) [14:14] Oh, sorry about that. [14:15] Thank you [14:15] Probably not wise of me to use tarcat on a file that I'll be overwriting with new information? [14:18] How do I connect to a Samba server with an smbclient using an LDAP user made by smbldap-useradd command? [14:20] ezethnesthrown: a good test is smbclient. Use smbclient -L -U [14:20] that will prompt for the password, and list all the shares of [14:32] I have added an LDAP group to 'valid users' in smb.conf but I still can't login with a user inside that specific group. [16:15] aaronr: sure! give me a bit (sorry didn't see it in my backlog until just now) [17:02] aaronr: i'm around now, will be out for lunch, but around otherwise === ejat_ is now known as ejat [17:11] smoser: I uploaded the latest uvtool to artful yesterday. It includes the new ssh public key stuff so --insecure is no longer needed. That feature had been siting in the daily builds for a long time. [17:12] I'm trying to setup landscape with the free 10 server license, but I seem to have got stuck [17:12] From what I can see of the source it is trying to use an SSH public key as a SSL CA, which seems wrong [17:13] dpb1: --^ maybe you can help direct? [17:14] The file is /usr/lib/python2.7/dist-packages/landscape/broker/transport.py, and the SSH key reference is in __init__, the SSL usage is in _curl [17:17] But it does work on my laptop, so it might be a red herring [17:17] jrtappers: you probably want to back up a bit and state what problem you are hitting [17:17] I am trying to get servers linked to an on-prem instance of landscape [17:19] nacc: great, thank you! so it was suggested i check in for the bug squashing event and learn how to build the updated packages myself. where should I start with that? [17:19] I managed to enroll an ubuntu desktop client, but neither the server that runs landscape nor a secondary server can connect [17:20] The log contains this > http://paste.ubuntu.com/24549951/ [17:21] ok, how did you get your desktop to work? is your key signed by a trusted CA, or is it self-signed [17:21] aaronr: np! let me take a look at the bug [17:22] Trusted CA (LetsEncrypt) [17:22] Using curl against the URL from the stack trace works [17:23] aaronr: there are a couple of different approaches [17:23] jrtappers: the systems are xenial? [17:23] aaronr: we have a git-based workflow for which i'm importing nagios3 rightnow but that will take a while to finish [17:23] aaronr: we can start on the SRUs without it [17:24] aaronr: so what i'd do first, is `pull-lp-source nagios3 xenial` in a place you want to download the source packge to [17:24] dpb1, Yeah [17:24] aaronr: (you might need to install ubuntu-dev-tools) [17:25] aaronr: that will result in a directory like nagios3- wherever you ran the command [17:25] okay sounds good, doing that now [17:25] aaronr: (and we'll do similar for each release out there) [17:26] aaronr: but the process will be repetitive [17:26] okay that makes sense [17:27] aaronr: once you have the source package pulled down, you're going to cd to that directory [17:27] jrtappers: my first instinct is that's it's something to do with the CN. Can you check that the certificate subject CN matches the hostname. Check landscape.canonical.com for cross reference. [17:27] aaronr: you're going to make whatever changes you need to the srcpkg [17:28] aaronr: then run `dpkg-source --commit`, which will generate a quilt patch and open EDITOR on it [17:28] aaronr: in that file, there will be a header that explains what to do to the patch, but basically, you want to follow the DEP3 specification (http://dep.debian.net/deps/dep3/) [17:28] aaronr: which gives a well-formatted information about the patch (if it's a backport from upstream, e.g., where the upstream commit is) [17:29] aaronr: and who wrote it, etc. [17:29] aaronr: once you're satisfied with the patch, you'll save & quit as appropritae for your editor [17:29] jrtappers: I used this for checking: openssl s_client -connect landscape.canonical.com:443 2>/dev/null < /dev/null [17:29] aaronr: then you'll use `dep3changelog debian/patches/` (from devscripts) [17:30] aaronr: (dpkg-source --commit will prompt you to name the patch file) [17:30] aaronr: dep3changelog will insert a changelog entry appropriately [17:30] aaronr: once it finishes, run `dch --edit` [17:30] rbasak, horay! [17:30] ezethnesthrown: did you prepend the group name with @ or +?, and is "valid users" in a share context in smb.conf? [17:30] dpb1, It returns OK on both servers [17:30] aaronr: verify the changelog entry looks ok, then, update the release from UNRELEASED to xenial (in this case) [17:31] ahasenack, with a + [17:31] ezethnesthrown: check if "getent group " returns the list of users you expect, on the samba server [17:31] aaronr: dep3changelog should have incremented the version correctly too, but we'll check it before you provide the debdiff [17:32] without the + [17:32] jrtappers: and the CN... [17:32] okay, i'll run through that lot now. thanks so much! [17:32] aaronr: in any case, once the changelog is done, you'll run `dpkg-buildpackage -S -nc -d -uc -us` (which builds a new source package, without running clean, ignoring build-depends, and not signing the result) [17:32] jrtappers: it matches what you are trying to contact? [17:32] aaronr: that will generate a .dsc file in .. [17:32] dpb1, It's an exact match [17:32] ahasenack, it doesn't [17:33] I'm pretty sure I added the user to the group [17:33] aaronr: and then pastebin `debdiff ` and we can review it :) [17:33] aaronr: identical process (s/xenial/yakkety/ or s/xenial/zesty/) throughout for the other SRUs [17:34] hmm [17:34] ive had to put the harddrives of a ubuntu system to another server [17:34] jrtappers: ignore the landscape server itself, focus on the other server. time is correct there? [17:34] now i need to know the mac adress of the last server [17:34] is there anyway to find out old mac-adress saved somewhere in the ubuntu system? [17:35] dpb1, Yep [17:35] or any other way, to identify the origin server ? [17:36] DK2: um, mac address is on the physical device [17:36] DK2: i mean, it depends on if you hardcoded it into /e/n/i, which would be uncommon [17:36] DK2: otherwise the mac is not stored in state [17:38] ezethnesthrown: then you may not have nss_ldap configured properly, or the new guy, sssd [17:38] jrtappers: then I'm not sure. I would say file a bug on lp:landscape-client [17:38] so [17:38] ezethnesthrown: I'm slowly updating the ubuntu guide about ldap, samba and kerberos, I think I'll get to samba by the end of the week [17:38] something you can do to workaround [17:38] nacc: im just curious if there is anyway to identify the origin server of the old system the hdd used to be [17:38] such as mac adress or smth like that [17:39] DK2: i guess you could try looking in the logs -- but generally, i don't think so [17:39] all i could think of was the netrules if it hadnt be deleted [17:39] jrtappers: openssl s_client -connect landscape.canonical.com:443 > /etc/landscape/server.crt 2>/dev/null < /dev/null [17:39] which obviously was deleted [17:40] ahasenack, Any way for me to fix that or something? Can I add a user to a group? [17:40] jrtappers: then use the 'ssl_public_key = /etc/landscape/server.crt' config value in /etc/landscape/client.conf [17:40] nacc: thanks! crunching away at that now, will let you know how I get on [17:40] aaronr: sure, i'll be headed to lunch in a bit, but i'll be back soon [17:41] jrtappers: this is what you would have to do if it was self-signed [17:41] nacc: No problem. I'll tackle Xenial only for now and if that goes well I'll replicate what I've done for the others [17:41] jrtappers: if that fails, it's also good data for the bug report. [17:53] jrtappers, ahasenack informs me that the ssl_public_key workaround I gave you wont work on a real cert. [17:54] dpb1, Ah, ok [17:54] if he has other ideas, I'd love to hear them. [17:54] but, I think a bug report at a minimum is a good start [17:54] what is the error? [17:54] dpb1, I have added all the parameters to the deepest method, so I can include the parameters that were used [17:54] http://paste.ubuntu.com/24549951/ [17:54] *To the exception thrown [17:55] jrtappers: thx, that would be great data for the bug report. even if it's not a pure bug in the code, at least that will get the right people looking at it [17:55] jrtappers: was that server cert generated in-house? Or purchased from a non-custom CA? [17:55] ahasenack, non-custom (LetsEncrypt) [17:56] jrtappers: are wget and curl happy with contacting https://? [17:56] ahasenack: and it works on a desktop machine he has [17:56] Yeah [17:56] specifically curl, since landscape-client uses libcurl [17:56] but not on another server machine [17:56] jrtappers: so curl https://server/ works without ssl errors on that same machine where landscape-client fails? [17:57] ahasenack, Exactly [17:57] jrtappers: try that curl as the landscape user, something like sudo -u landscape -H curl https://server/ [17:57] the landscape user has no shell by default, so "sudo -u landscape -i" and then curl won't work [17:57] I have some more data now, 1 moment [17:57] ahasenack, That worked [17:58] sudo -u landscape -H curl? [17:58] ezethnesthrown: can you show an ldif representation of your ldap group? [18:00] ahasenack, That worked too [18:02] jrtappers: try curl with --cacert /etc/ssl/certs/ca-certificates.crt [18:02] ahasenack, Successful [18:03] jrtappers: try starting the client interactively to see if it spits out more details about the error: sudo landscape-client [18:04] it will not fork into the background in that case [18:04] it will take a few seconds to try to contact the server, just hang on [18:04] ahasenack, Method params for fetch -> http://paste.ubuntu.com/24550120/ [18:04] cainfo -> '/root/key.pem' <-- what's that? [18:04] do you have a client.conf somewhere in $PWD perhaps? [18:05] ahasenack, http://paste.ubuntu.com/24550123/ [18:05] ahasenack, I used that folder for /etc/landscape/server.crt [18:05] I'll try making it 777 [18:06] do you have ssl_public_key pointing at /root/key.pem in /etc/landscape/client.conf? [18:06] Yeah [18:06] dop that [18:06] drop [18:06] I mean, remove ssl_public_key from client.conf [18:07] curl worked with /etc/ssl/certs/ca-certificates.crt explicitly, which is the default cafile, so let's let landscape try that too (the default) [18:07] and yeah, landscape wouldn't be able to read /root/key.pem [18:08] ezethnesthrown: that seems ok, are you using nss_ldap or sssd? [18:08] ahasenack, How do I check that? [18:09] It seems to be working now, thanks [18:09] No idea why it didn't work before I added that to try to fix it though [18:09] do you have either packages installed? dpkg -l|grep -E "(libnss-ldap|sssd)" [18:09] I think I re-installed ca-certificates [18:10] jrtappers: what did you try now, landscape-config? [18:10] to register? [18:10] Yeah [18:10] did it become a pending computer in the UI? [18:10] (or even automatically registered, if you are using registration_key) === Tzunamii_ is now known as Tzunamii [18:11] ezethnesthrown: do you have either packages installed? dpkg -l|grep -E "(libnss-ldap|sssd)" [18:13] ahasenack, neither [18:14] ahasenack, It added successfully, but adding the server that hosts landscape to landscape crashed the whole system [18:14] Is there a way to manage that server from the same UI? [18:15] jrtappers: sure, and it's common. What do you mean by "crashed"? [18:15] Sent the load on the box to maximum and stopped the web UI working [18:16] I get a message saying Sorry for the inconvenience. Please contact your system administrator for more information. [18:17] Ok, did it again, the load stayed OK, but the UI was taken offline again [18:18] ezethnesthrown: that wil need some work, I won't have ready answers for you now [18:18] jrtappers: how much ram do you have in that box? [18:19] jrtappers: if the UI is "offline", that means the appserver process isn't running, or not reachable [18:20] you can check /var/log/landscape-server/appserver.log [18:20] and/or dmesg if you suspect the OOM killer is being triggeed [18:25] I think it could be a memory issue [18:25] nacc: I think I've done that right for Xenial now. debdiff at http://pastebin.ubuntu.com/24550198/ [18:25] I thought a VM with 1/2 GB per managed host should be ok? [18:35] Hi, I run a very typical PAM+LDAP setup with posixAccount and shadowAccount, we use shadowExpire to expire accounts that haven't renewed (yet), now I can't seem to find how I can check through CLI whether an account has expired without using ldap_search. I presume there should be some regular or PAM command to do this. Can anyone help me out? [18:37] jrtappers: hm, you mean half a gigabyte of RAM? or do you mean "1 or 2"? [18:38] Half per managed server, (1.5 total). Is this too low? [18:38] jrtappers: anyway, I would suggest 4Gb to start with landscape server. I assume you are using quickstart? i.e., all-in-one? Database, rabbit, landscape itself, etc? [18:39] Ah oh [18:39] Yeah [18:39] for the clients, that depends what you run on them of course [18:39] but the server needs more. Of course that also depends how many clients you have talking to it, i.e., how many registered computers [18:42] jrtappers: see also https://bugs.launchpad.net/ubuntu/+source/landscape-client/+bug/1685885 [18:42] Launchpad bug 1685885 in landscape-client (Ubuntu) "Extreme RAM and SWAP usage" [High,New] [18:46] ahasenack, Anyhting that could guide me to make it work? [18:54] ezethnesthrown: the users and groups need to show up in the output of "getent passwd" and "getent group", respectively [18:55] ezethnesthrown: if they are only in ldap, then you need nss_ldap, or a more recent tech like sssd [18:56] ahasenack, Should I use nss_ldap or sssd? [18:56] libnss-ldap has been dropped from main in favor of sssd [18:56] and https://bugs.launchpad.net/serverguide/+bug/1479495 is about recommending sssd instead of nssldap [18:56] Launchpad bug 1479495 in Ubuntu Server Guide "Only recommend sssd for 16.04" [Wishlist,New] [18:56] so sssd is the way forward, but I have no experience with it yet [18:57] and my experience with nssldap is that it can be quite buggy and may be unmaintained nowadays [18:58] ahasenack, Thank you. I'll try using sssd then. Anything that I need to know of to get started? [18:58] ezethnesthrown: just that your end goal is for the ldap users and group to appear in the output of those getent commands [18:58] or maybe "getent passwd " and "getent passwd " explicitly (instead of listing all of them) [19:00] ahasenack, What kind of results or output should I be expecting? Right now I'm not getting anything. [19:00] ezethnesthrown: the same type you get for a local user [19:01] ezethnesthrown: which is essentially a single line, just like what is in /etc/passwd for the user (and /etc/group in the group case) [19:01] ahasenack, Thank you very much for your time. I'll be moving on then. [19:01] good luck [19:01] Any problems arise, I'll find myself here [19:02] yep [19:12] I'm trying to install 16.04 server with raid. It keeps failing when installing grub. I've googled a bit and have found a few references to the problem but no solutions === oerheks_ is now known as oerheks [19:33] speaker1234: what error do you get? I do that routinely and found no problems with it [19:33] both on raid1, 6 and 10 [19:34] s/both// [19:35] warning is something about grub not being to be installed on /dev/sda [19:36] find exact error messages; you can search for those in source code [19:36] mmmh, so it doesn't ask you whree to install it? is this a manual install or preseed? [19:37] manual install [19:39] I tried hte default partitioning then changing hte swap and / partitions to swap. when I tried to do the same with the second disk, the install hung. [19:41] how come that a tcpdump on tun0 shows no traffic but the traffic is going through? [19:41] trying to debug a vpn [19:41] in a container if that makes a diff [19:41] I don't see traffic from the vpn client neither on eth0 nor on tun0 [19:42] but I see the traffic on the destination host [19:42] speaker1234: so you're doing manual partitioning? [19:42] or you tried that after default failed? [19:42] what happens if you let it just "use the whole volume" [19:42] in automatic [19:43] drab, it does not let me raid. I'll try it now [19:44] s/it/it again/ [19:44] drab is tun0 a bridge? [19:47] no it's a tun/tap interface created by openvpn [19:48] it's strange because even then on eth0 I should see traffic since the traffic does reach destination and that's the physical interface [19:48] I think this is something else, I think I'm just not allowed to do tcpdump inside a container [19:51] drab, I have experienced sometimes tcpdumping an openvpn connection does not always work [19:52] context being a linux based firewall (ipcop/ipfire) [19:53] drab: are you using tcpdump inside a lxd container? [19:53] this is definitely the container, I just can't tcpdump inside it [19:53] ahasenack: yeah [19:53] was trying to [19:53] drab: there is a bug [19:53] drab: tcpdump can't write to stdout/stderr [19:54] drab: workaround: use -s 0 -w traffic.pcap [19:54] ah, I see [19:54] thanks [19:54] let it capture, and read it elsewhere [19:54] drab: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1667016 [19:54] Launchpad bug 1667016 in apparmor (Ubuntu) "tcpdump in lxd container: apparmor blocks writing to stdout/stderr" [Undecided,Confirmed] [19:55] it can capture the traffic, just not print to the console :) [19:56] I was also hit by that the other day, very annoying [19:56] so glad you were here and saw this :) [19:56] thanks [19:57] welcome :) [19:57] ahasenack, great clue :-) I would have also beat my head against that problem for *hours* [19:58] one would think that lxd/apparmor would have trouble letting tcpdump capture the traffic, not printing to stdout/stderr :) [19:58] drab, guided part worked fine. I just can't get a raid install to work grrr. [19:58] speaker1234: mmmmh, so it worked through the partitions, installed everything adn got to the last step and threw an error? [19:58] what's in Alt-f4 log terminal? [19:58] any clue what it's failing on? [19:59] no. the guided install worked fine. [19:59] oh, you mean the whole thing, including writing grub [19:59] yes [19:59] oh, eeeer, but you want a diff partition layout? [20:00] diff partition in that it uses raid [20:00] speaker1234: is this the text mode installer? [20:00] oh so when you say auto part you don't mean auto on a raid [20:00] ahasenack, yes. 16.04.2 server [20:01] I guess there's no such thing, I'm just so used to preseed it's all "auto"... [20:01] speaker1234: can you specify the steps you take? I think I had to do it once or twice recently and it worked, altho I was on 16.4.1, but I doubt that makes a diff [20:02] drab, ok here is what I do as far as I can recall [20:02] you said something about the installer freezing as well, when does that happen exactly? and you can't get any terminal at that point? [20:04] drab, the freezing symptom first.. I selected manual partitioning, new partition table, and then automatic partitioning of the first drive [20:04] I did the same thing on the second drive except when I selected automatic partitioning, the system "froze" and the screen displayed the usual blue background without any text UI information [20:05] aaronr: back from lunch, reviewing it [20:05] what I do when trying to make the install work with raid at the very beginning, [20:05] speaker1234: ok, did you try manual on the first one and second one? [20:05] I go to the normal install process, choose manual partitioning [20:05] manually create swap, root, and home partitions [20:05] label each one first as a raid partition [20:06] aaronr: it looks good overall -- few nits [20:06] aaronr: the patch Author should be the upstream author [20:06] then go and build the raid MD devices [20:06] speaker1234: that all sounds good [20:06] after I have MD devices, I format them with EXT4 or swap as appropriate [20:07] and mark them to be used as root etc? [20:07] then I finish the partitioning step and let the rest of the install continue [20:07] and bootable flag [20:07] oh yes, I do assignment the appropriate mount points [20:07] ok [20:07] but I'm not able to set the boot flag [20:07] * drab scratches head [20:07] that all seems correct [20:07] I've seen bug reports for this back with vversion 11 and occasionally version 9 [20:07] I'm not sure the boot flag is even there, I seem to remember I had to do it, but not 100% sure [20:08] aaronr: i would also not use the #diff suffix for the github URL, even if only backporting that bit [20:08] speaker1234: wait, you create the swap, root and home partitions and label them as raid? Then you create the MD device? [20:09] I think he just meant he partitions the disks so he gets sda1/b1 etc for swap/root to make up the raid and then makes the raid swap etc [20:09] but good point, maybe that's not what he meant and I just read into it [20:09] ahasenack, no, I create the partitions that will be used as swap, root and home. Then I label them as raid partitions create the MD device, format the MD devices as appropriate, and assigned to the appropriate mount points [20:09] ok [20:09] so in the end you have something like /dev/md2 for /home, etc [20:10] ahasenack, md126 but yea [20:10] speaker1234: what happens if you try something simpler, create only root and swap, in that order? or even just / [20:10] are the disks of the same size? [20:10] what puzzles me the most is I'm not allowed to set the boot flag and when I do an automatic partitioning, it gives me some sort of a boot dedicated partition eff?? [20:10] and partitions of same size [20:11] oooh, are you booting in efi mode? [20:11] discs are the same size, same vendor, within a month of manufacture of each other [20:11] booting/installing in efi mode? [20:11] I thought I was selecting the not efi mode [20:11] well, what's the bios saying? [20:11] once the installer starts, if it booted in efi there's no selecting anymore afaik [20:11] let me check [20:12] both the bios mode and the boot mode must be correct [20:13] like you could have bios mode, but then hit f9 or whatever to choose media nd pick an EFI boot mode [20:13] or the other way around [20:13] UEFI and legacy [20:13] can you force to legacy to test? [20:13] and make sure that when you press f9 or whatever to choose boot media you don't pick from the EFI subtree [20:14] (at least that's how I've normally seen them presented, two sort of trees, oen for efi one for legacy) [20:17] interesting. when I switched to Legacy boot mode, the USB flash boot image is no longer visible. [20:17] lol,it works \o/ [20:19] (I'm connected over vpn to a container inside a desktop that gets me into a byobu session with irc open) [20:19] just getting ready for a little trip to censored-internet-land :) [20:20] .cn? [20:20] or .us [20:21] USA, the newest 3ed world country on the planet [20:21] (and I live there...) [20:22] bybou/tmux are pretty impressive, it even reorients as I put the phone landscape [20:22] it's pretty funny to see [20:22] I'm out of time for the day. Thank for the help, I have something to try tomorrow morning [20:22] or even when I minimize the phone keyboard it enlarges the console windows [20:22] speaker1234: yeah, give legacy only a go [20:23] it sounds to me like you're definitely booting in efi [20:23]