Wednesday, 2010-03-10

[2010/03/10 00:03:25] @ Log started by gepetto
[2010/03/10 00:03:25] @ PaulWay[w] joined channel #puppet
[2010/03/10 00:04:43] <PaulWay[w]> Curse. I've updated some of my clients and now they're complaining about being unable to "retrieve information from source"
[2010/03/10 00:04:53] @ Quit: GioGio: .net .split
[2010/03/10 00:05:19] @ p3rror joined channel #puppet
[2010/03/10 00:05:27] @ Quit: neh: Quit: leaving
[2010/03/10 00:07:09] <PaulWay[w]> Yay - updating puppetmaster fixes the problem!
[2010/03/10 00:07:54] @ WALoeIII joined channel #puppet
[2010/03/10 00:09:51] <ericlee> I encountered err: Could not request certificate: getaddrinfo: Name or service not known.
[2010/03/10 00:09:56] <ericlee> What happened?
[2010/03/10 00:10:09] <ericlee> My cmd: puppetd --test
[2010/03/10 00:10:26] @ GioGio joined channel #puppet
[2010/03/10 00:12:47] <PaulWay[w]> Sounds like your puppet daemon doesn't know what machine its puppetmaster is on.
[2010/03/10 00:12:57] <PaulWay[w]> Or it can't resolve it.
[2010/03/10 00:14:07] <ericlee> unbelievable
[2010/03/10 00:16:35] <ericlee> I set up host name in /etc/hosts file both
[2010/03/10 00:19:21] <bodepd> ericlee: check
[2010/03/10 00:19:32] <bodepd> puppetd --configprint server
[2010/03/10 00:19:50] <bodepd> telnet `puppetd --conigprint server` 8140
[2010/03/10 00:20:06] @ lak joined channel #puppet
[2010/03/10 00:21:08] <ericlee> Trying 192.168.1.1...
[2010/03/10 00:21:08] <ericlee> Connected to cat.
[2010/03/10 00:21:08] <ericlee> Escape character is '^]'.
[2010/03/10 00:21:09] <ericlee> Connection closed by foreign host.
[2010/03/10 00:21:27] <bodepd> looks like it can connect then.
[2010/03/10 00:21:53] <ericlee> so?
[2010/03/10 00:22:35] <bodepd> what do the puppetmaster logs say, can you see the connection?
[2010/03/10 00:22:51] <ericlee> bodepd, you are right
[2010/03/10 00:22:57] @ Quit: Bass10: Ping timeout: 276 seconds
[2010/03/10 00:23:00] <ericlee> I fixed hosts name.
[2010/03/10 00:25:08] @ Quit: WALoeIII: Quit: WALoeIII
[2010/03/10 00:26:35] @ WALoeIII joined channel #puppet
[2010/03/10 00:30:27] @ Quit: murkk: Quit: murkk
[2010/03/10 00:36:32] @ alban2 joined channel #puppet
[2010/03/10 00:38:00] @ Quit: stevenjenkins: Read error: Operation timed out
[2010/03/10 00:42:20] @ Quit: LinuxCode: Quit: Connection Closed
[2010/03/10 00:42:52] @ LinuxCode joined channel #puppet
[2010/03/10 00:46:48] <ericlee> [root@client1 ~]# puppetd --test
[2010/03/10 00:46:48] <ericlee> err: Could not retrieve catalog from remote server: hostname was not match with the server certificate
[2010/03/10 00:46:53] <ericlee> What happened?
[2010/03/10 00:47:36] <ohadlevy> ericlee: you changed the hostname after a certificate was generate for it?
[2010/03/10 00:47:45] <ericlee> no
[2010/03/10 00:48:24] <ericlee> [root@client1 ~]# telnet `puppetd --configprint server` 8140
[2010/03/10 00:48:25] <ericlee> Trying 192.168.1.1...
[2010/03/10 00:48:25] <ericlee> Connected to cat.
[2010/03/10 00:48:25] <ericlee> Escape character is '^]'.
[2010/03/10 00:48:25] <ericlee> Connection closed by foreign host.
[2010/03/10 00:51:09] @ Quit: bug: Quit: bug
[2010/03/10 00:51:39] <ericlee> how do I remove the signed certs?
[2010/03/10 00:58:56] <ericlee> anyone could help me with above error messages.
[2010/03/10 00:59:05] @ Quit: alban2: Quit: Leaving.
[2010/03/10 01:00:05] @ nexx joined channel #puppet
[2010/03/10 01:00:46] @ LinuxCode is now known as LinuxCode_away
[2010/03/10 01:02:09] @ LinuxCode_away is now known as LinuxCode
[2010/03/10 01:03:35] <PaulWay[w]> ericlee: remove signed certs with --del on the puppetmaster.
[2010/03/10 01:07:07] @ PaulWay[w] is now known as mildy_bad_paul
[2010/03/10 01:07:13] <ericlee> PaulWay[w], after I signed the cert at master, then run puppetd --test on the client I encountered following error messages:
[2010/03/10 01:07:14] <ericlee> err: Could not retrieve catalog from remote server: certificate verify failed
[2010/03/10 01:07:14] <ericlee> warning: Not using cache on failed catalog
[2010/03/10 01:07:14] <ericlee> err: Could not retrieve catalog; skipping run
[2010/03/10 01:09:14] @ stevenjenkins joined channel #puppet
[2010/03/10 01:12:50] @ Quit: wastrel: Ping timeout: 248 seconds
[2010/03/10 01:13:51] @ wastrel joined channel #puppet
[2010/03/10 01:16:23] @ bug joined channel #puppet
[2010/03/10 01:18:10] @ Quit: wastrel: Read error: Operation timed out
[2010/03/10 01:19:32] <mildy_bad_paul> Does it show up in the list of certificates on the server with --all?
[2010/03/10 01:20:03] <mildy_bad_paul> And is its host name by any chance the same as another host's?
[2010/03/10 01:22:28] @ Quit: WALoeIII: Quit: Bai.
[2010/03/10 01:23:55] @ m1nish joined channel #puppet
[2010/03/10 01:24:48] @ wastrel joined channel #puppet
[2010/03/10 01:26:04] <ericlee> [root@client1 ~]# puppetd --test
[2010/03/10 01:26:05] <ericlee> warning: peer certificate won't be verified in this SSL session
[2010/03/10 01:26:05] <ericlee> info: Caching certificate for client1
[2010/03/10 01:26:05] <ericlee> err: Could not retrieve catalog from remote server: certificate verify failed
[2010/03/10 01:26:05] <ericlee> warning: Not using cache on failed catalog
[2010/03/10 01:26:05] <ericlee> err: Could not retrieve catalog; skipping run
[2010/03/10 01:26:12] <ericlee> under client I run
[2010/03/10 01:26:49] @ Quit: p3rror: Ping timeout: 268 seconds
[2010/03/10 01:27:12] <mildy_bad_paul> on the puppetmaster, "puppetca --list --all" - is it listed correctly in there?
[2010/03/10 01:27:54] <ericlee> [root@dhcp-65-112 ~]# puppetca --list --all
[2010/03/10 01:27:54] <ericlee> + client1
[2010/03/10 01:28:55] <mildy_bad_paul> Is it listed in puppetca -l ?
[2010/03/10 01:29:11] @ mildy_bad_paul is now known as PaulWay[w]
[2010/03/10 01:29:22] <ericlee> No
[2010/03/10 01:29:27] <PaulWay[w]> Hmmm.
[2010/03/10 01:29:41] <ericlee> I have signed client1
[2010/03/10 01:29:47] <PaulWay[w]> I'd throw wireshark onto it and see what the SSL connection is doing.
[2010/03/10 01:31:08] <ericlee> so complex
[2010/03/10 01:31:36] <ericlee> Do you have any idea?
[2010/03/10 01:32:17] <PaulWay[w]> Nup.
[2010/03/10 01:32:47] <ericlee> :(
[2010/03/10 01:32:53] @ Quit: blahdeblah: Ping timeout: 260 seconds
[2010/03/10 01:32:56] <lak> ericlee: the faq has an openssl command you can run to see why the verify is failing
[2010/03/10 01:33:03] <lak> it should tell you the specific reason
[2010/03/10 01:33:14] @ ezmobius joined channel #puppet
[2010/03/10 01:33:16] <lak> are you running an older version of puppet? i thought we had better explanations in more recent version
[2010/03/10 01:33:40] @ Quit: m1nish: Read error: Connection reset by peer
[2010/03/10 01:34:24] <ericlee> could you show me a link on it?
[2010/03/10 01:35:03] <PaulWay[w]> I'm off - good luck.
[2010/03/10 01:35:04] @ PaulWay[w] left channel #puppet ("I must go, there are too many tangrams on this channel.")
[2010/03/10 01:36:23] <ericlee> [root@client1 ~]# openssl verify -CAfile /var/lib/puppet/ssl/certs/ca.pem /var/lib/puppet/ssl/certs/ca.pem
[2010/03/10 01:36:24] <ericlee> /var/lib/puppet/ssl/certs/ca.pem: OK
[2010/03/10 01:36:36] <ericlee> lak, it's on the client
[2010/03/10 01:37:46] @ p3rror joined channel #puppet
[2010/03/10 01:37:54] @ DrHouseMD is now known as HouseAway
[2010/03/10 01:38:14] <lak> ericlee: you're just verifying the CA cert there
[2010/03/10 01:38:20] <lak> you need to verify the client cert
[2010/03/10 01:38:30] <ericlee> How?
[2010/03/10 01:38:51] <ericlee> I just see this command in FAQ
[2010/03/10 01:39:57] <ericlee> Which server name puppet will consider about?
[2010/03/10 01:40:00] <lak> ericlee: really? then the faq is wrong :/ the client cert should be at something like /var/lib/puppet/ssl/certs/$hostname.pem
[2010/03/10 01:40:57] <ericlee> lak, I have a question about my puppet configuration
[2010/03/10 01:42:09] <ericlee> My box has a hostname called dhcp-65-112 and there's a virtual nic from vmware, this ip is 192.168.1.1 so I add the item 192.168.1.1 cat in /etc/hosts file
[2010/03/10 01:42:28] <ericlee> So the clients are running on VMware
[2010/03/10 01:42:41] <ericlee> I set up server = cat in puppet.conf
[2010/03/10 01:43:12] <ericlee> So my problem is do I have to use dhcp-65-112 as the hostname?
[2010/03/10 01:43:28] <ericlee> I think one ip <==> one hostname
[2010/03/10 01:44:02] @ kubicek joined channel #puppet
[2010/03/10 01:45:08] <ericlee> Am I right?
[2010/03/10 01:45:44] @ Quit: rcrowley: Quit: rcrowley
[2010/03/10 01:46:18] <lak> ericlee: there's a decent bit of flexibility in what you use as the certname in puppet, if that's what you mean -- people use UUIDs, for instance
[2010/03/10 01:47:14] <lak> but i'm not sure i actually understand what your question is
[2010/03/10 01:49:42] @ Quit: lordb: Quit: The computer fell asleep
[2010/03/10 01:49:43] <ericlee> Well, I will try to explain my question.
[2010/03/10 01:50:08] <ericlee> I have two machines. one is a real one, the other is a machine running on vmware.
[2010/03/10 01:51:06] <ericlee> real one's host name is from dhcp server named dhcp-65-112, and the virtual one is named client1 with ip 192.168.1.11
[2010/03/10 01:53:29] <lak> ok
[2010/03/10 01:53:36] @ m1nish joined channel #puppet
[2010/03/10 01:54:41] <LinuxCode> ericlee, seriously, buy James book or check the how to on the wiki
[2010/03/10 01:54:48] <LinuxCode> you should be up and running by now
[2010/03/10 01:55:00] <LinuxCode> also, you can use the same machine to test
[2010/03/10 01:55:15] <LinuxCode> and install puppetmaster and puppetd on it
[2010/03/10 01:56:10] <ericlee> Then as you know there's a virtual NIC will appear in dhcp-65-112 be connected with client1. So I add 192.168.1.1(cat) and 192.168.1.11(client1) in /etc/hosts on both machines
[2010/03/10 01:56:18] @ ckauhaus joined channel #puppet
[2010/03/10 01:57:04] <ericlee> I've made the proper configurations
[2010/03/10 01:57:15] <ericlee> Then run puppetd --test on client1
[2010/03/10 01:59:47] <nasrat> lak: yell if I'm not making sense on the facter location stuff
[2010/03/10 01:59:56] <lak> will do
[2010/03/10 01:59:57] <ericlee> n the facter location stuff
[2010/03/10 02:00:07] <ericlee> [root@client1 ~]# puppetd --test
[2010/03/10 02:00:07] <ericlee> info: Creating a new SSL key for client1
[2010/03/10 02:00:07] <ericlee> warning: peer certificate won't be verified in this SSL session
[2010/03/10 02:00:07] <ericlee> info: Caching certificate for ca
[2010/03/10 02:00:07] <ericlee> warning: peer certificate won't be verified in this SSL session
[2010/03/10 02:00:08] <ericlee> warning: peer certificate won't be verified in this SSL session
[2010/03/10 02:00:09] <ericlee> info: Creating a new SSL certificate request for client1
[2010/03/10 02:00:11] <ericlee> warning: peer certificate won't be verified in this SSL session
[2010/03/10 02:00:13] <ericlee> warning: peer certificate won't be verified in this SSL session
[2010/03/10 02:00:15] <ericlee> warning: peer certificate won't be verified in this SSL session
[2010/03/10 02:00:17] <ericlee> Exiting; no certificate found and waitforcert is disabled
[2010/03/10 02:00:19] <ericlee> Odd.
[2010/03/10 02:00:32] <jamesturnbull> ericlee: have you signed the certificate?
[2010/03/10 02:00:42] <ericlee> not yes
[2010/03/10 02:00:45] <ericlee> not yet
[2010/03/10 02:01:13] <jamesturnbull> ericlee: if waitforcert=0 then puppet will exit if no signed cert found
[2010/03/10 02:01:13] <ericlee> [root@dhcp-65-112 ~]# puppetca --list
[2010/03/10 02:01:13] <ericlee> client1
[2010/03/10 02:01:13] <ericlee> [root@dhcp-65-112 ~]# puppetca --sign client1
[2010/03/10 02:01:13] <ericlee> client1
[2010/03/10 02:01:13] <ericlee> notice: Signed certificate request for client1
[2010/03/10 02:01:14] <ericlee> notice: Removing file Puppet::SSL::CertificateRequest client1 at '/var/lib/puppet/ssl/ca/requests/client1.pem'
[2010/03/10 02:01:32] <jamesturnbull> ericlee: can you use pastie please
[2010/03/10 02:01:37] <ericlee> Now, I have signed it.
[2010/03/10 02:01:38] <ericlee> Sorry
[2010/03/10 02:01:42] @ Quit: p3rror: Read error: Operation timed out
[2010/03/10 02:01:47] <jamesturnbull> ericlee: so just go pastie url me
[2010/03/10 02:01:53] <jamesturnbull> pastie: url me
[2010/03/10 02:02:04] @ blue left channel #puppet ()
[2010/03/10 02:02:07] <pastie> http://pastie.org/862759 by jamesturnbull.
[2010/03/10 02:03:00] <ericlee> Thanks, so do you have any idea about this?
[2010/03/10 02:03:19] <jamesturnbull> ericlee: about which? you having a problem? I haven't been following the conversatiom
[2010/03/10 02:04:04] <ericlee> After I signed the client1, I type puppetd --test on client1 again then I got this:
[2010/03/10 02:04:36] <ericlee> http://pastie.org/862762
[2010/03/10 02:05:48] <ericlee> What's the meaning of " warning: peer certificate won't be verified in this SSL session"?
[2010/03/10 02:06:45] <lak> ericlee: it means you haven't signed the client's cert on the server
[2010/03/10 02:06:59] <ericlee> What?
[2010/03/10 02:07:18] <ericlee> [root@dhcp-65-112 ~]# puppetca --list
[2010/03/10 02:07:18] <ericlee> [root@dhcp-65-112 ~]# puppetca --list --all
[2010/03/10 02:07:18] <ericlee> + client1
[2010/03/10 02:07:34] <ericlee> I really have signed it.
[2010/03/10 02:07:49] <kjetilho> are you sure you're checking on the right puppetmaster?
[2010/03/10 02:08:07] <LinuxCode> ericlee, what is your distribution ?
[2010/03/10 02:09:50] <LinuxCode> jamesturnbull, is trac disabled ?
[2010/03/10 02:10:06] <LinuxCode> when I try and login I get a redirection erro in firefox
[2010/03/10 02:10:08] <ericlee> Fedora 12
[2010/03/10 02:10:16] <LinuxCode> Firefox has detected that the server is redirecting the request for this address in a way that will never complete
[2010/03/10 02:10:23] <jamesturnbull> LinuxCode: shouldn't be
[2010/03/10 02:10:23] <LinuxCode> ericlee, rpm -qa\|grep puppet
[2010/03/10 02:10:35] <LinuxCode> jamesturnbull, I cleared the cookies for reductive too
[2010/03/10 02:10:39] <LinuxCode> really weird
[2010/03/10 02:10:54] <ericlee> [root@dhcp-65-112 ~]# rpm -qa\|grep puppet
[2010/03/10 02:10:54] <ericlee> puppet-0.25.4-1.fc12.noarch
[2010/03/10 02:10:55] <ericlee> puppet-server-0.25.4-1.fc12.noarch
[2010/03/10 02:11:02] <LinuxCode> ericlee, ok
[2010/03/10 02:11:09] <LinuxCode> so Im using that version too
[2010/03/10 02:11:17] <LinuxCode> ericlee, did you update recently ?
[2010/03/10 02:11:20] <ericlee> yes
[2010/03/10 02:11:31] <LinuxCode> how many packages did you update ?
[2010/03/10 02:11:43] <jamesturnbull> LinuxCode: what URL is failing?
[2010/03/10 02:11:51] <LinuxCode> http://reductivelabs.com/trac/puppet/prefs/account
[2010/03/10 02:12:00] <LinuxCode> let me request another pass mate
[2010/03/10 02:12:01] <jamesturnbull> LinuxCode: ah
[2010/03/10 02:12:02] <ericlee> does it have something related with virtual machines
[2010/03/10 02:12:04] <ericlee> does it have something related with virtual machines?
[2010/03/10 02:12:17] <jamesturnbull> LinuxCode: we have had spam issues and that panel is disabled
[2010/03/10 02:12:23] <LinuxCode> jamesturnbull, aha!
[2010/03/10 02:12:27] <LinuxCode> thanks
[2010/03/10 02:12:34] <jamesturnbull> LinuxCode: oh wait - hang on works for me
[2010/03/10 02:12:38] <LinuxCode> haha
[2010/03/10 02:12:45] <LinuxCode> let me request another pass
[2010/03/10 02:12:51] <LinuxCode> maybe it expired or something
[2010/03/10 02:13:22] <LinuxCode> just brings me back to that error
[2010/03/10 02:13:31] <LinuxCode> so I must be logged in
[2010/03/10 02:13:33] <ericlee> So what I shall do next step?
[2010/03/10 02:13:46] <LinuxCode> ericlee, yum update reboot please
[2010/03/10 02:14:03] <LinuxCode> and then try removing the cert and try again
[2010/03/10 02:14:29] <ericlee> LinuxCode, are you sure that problem doesn't have relationship with vm?
[2010/03/10 02:14:36] <LinuxCode> ericlee, no
[2010/03/10 02:14:41] <LinuxCode> but update, then we will see
[2010/03/10 02:15:10] <ericlee> when I type hostname on server it shows dhcp-65-112
[2010/03/10 02:15:18] <LinuxCode> ericlee, just do as I said please
[2010/03/10 02:16:16] @ p3rror joined channel #puppet
[2010/03/10 02:17:41] <ericlee> debug: http://pastie.org/862772
[2010/03/10 02:17:47] @ globalc joined channel #puppet
[2010/03/10 02:17:52] <globalc> mornings
[2010/03/10 02:18:51] @ globalc left channel #puppet ()
[2010/03/10 02:19:18] @ globalc joined channel #puppet
[2010/03/10 02:19:38] <globalc> sorry, merged into one irssi-window.
[2010/03/10 02:22:13] <LinuxCode> jamesturnbull, did youchange something ?
[2010/03/10 02:22:18] <LinuxCode> I now saw a page
[2010/03/10 02:23:59] <LinuxCode> Trac detected an internal error:
[2010/03/10 02:24:00] <LinuxCode> TimeoutError: Unable to get database connection within 20 seconds
[2010/03/10 02:26:58] @ bodepd left channel #puppet ()
[2010/03/10 02:29:11] @ JJA joined channel #puppet
[2010/03/10 02:29:50] @ Quit: kubicek: Quit: kubicek
[2010/03/10 02:31:15] @ pmorillo joined channel #puppet
[2010/03/10 02:33:52] @ Quit: lak: Quit: lak
[2010/03/10 02:35:12] <jamesturnbull> LinuxCode: didn't touch it - I can get that page still
[2010/03/10 02:35:36] <LinuxCode> meh
[2010/03/10 02:35:39] <LinuxCode> lol
[2010/03/10 02:35:56] <LinuxCode> it loads something, progress bar, then dies
[2010/03/10 02:36:03] <LinuxCode> weird
[2010/03/10 02:37:24] @ DavidS joined channel #puppet
[2010/03/10 02:38:33] <LinuxCode> jamesturnbull, cleared my cookies, requested another password reset, tried to login, redirect error
[2010/03/10 02:39:19] <jamesturnbull> LinuxCode: odd
[2010/03/10 02:39:33] <LinuxCode> yeh
[2010/03/10 02:39:47] <LinuxCode> Ive been up all night mate, I will wireshark tomorrow
[2010/03/10 02:39:54] <LinuxCode> not in the mood right now hehe
[2010/03/10 02:40:05] <LinuxCode> If I find out whats going on I will let ya know
[2010/03/10 02:40:44] @ Quit: giskard: Remote host closed the connection
[2010/03/10 02:41:00] <ericlee> [root@client1 ~]# puppetd --test
[2010/03/10 02:41:00] <ericlee> info: Expiring the certificate cache of client1
[2010/03/10 02:41:00] <ericlee> notice: Removing file Puppet::SSL::Certificate client1 at '/var/lib/puppet/ssl/certs/client1.pem'
[2010/03/10 02:41:00] <ericlee> warning: Retrieved certificate does not match private key
[2010/03/10 02:41:12] @ Quit: ckauhaus: Quit: Leaving.
[2010/03/10 02:45:09] @ snerd joined channel #puppet
[2010/03/10 02:47:16] @ Quit: JJA: Ping timeout: 245 seconds
[2010/03/10 02:52:05] <DavidS> ericlee: seems like you have a old/different cert on the master than on the client. try using puppetca --revoke or --clean
[2010/03/10 02:52:33] <ericlee> I'll try thansl
[2010/03/10 02:59:48] <ericlee> [root@client1 puppet]# puppetd --test
[2010/03/10 02:59:48] <ericlee> warning: peer certificate won't be verified in this SSL session
[2010/03/10 02:59:48] <ericlee> warning: peer certificate won't be verified in this SSL session
[2010/03/10 02:59:48] <ericlee> info: Creating a new SSL certificate request for client1
[2010/03/10 02:59:48] <ericlee> warning: peer certificate won't be verified in this SSL session
[2010/03/10 02:59:49] <ericlee> err: Could not request certificate: Error 400 on SERVER: Cannot save client1; parent directory /var/lib/puppet/ssl/ca/requests does not exist
[2010/03/10 03:04:33] @ inhahe joined channel #puppet
[2010/03/10 03:04:36] @ Ramonster joined channel #puppet
[2010/03/10 03:05:58] @ inhahe left channel #puppet ()
[2010/03/10 03:06:54] <DavidS> ericlee: c'mon, that's an easy one! => "parent directory /var/lib/puppet/ssl/ca/requests does not exist"
[2010/03/10 03:07:09] <ericlee> mkdir?
[2010/03/10 03:07:21] <ericlee> I tried, the I encountered another problem.
[2010/03/10 03:07:32] <ericlee> [root@client1 puppet]# puppetd --test
[2010/03/10 03:07:32] <ericlee> warning: peer certificate won't be verified in this SSL session
[2010/03/10 03:07:32] <ericlee> info: Caching certificate for ca
[2010/03/10 03:07:32] <ericlee> warning: peer certificate won't be verified in this SSL session
[2010/03/10 03:07:32] <ericlee> info: Caching certificate for client1
[2010/03/10 03:07:33] <ericlee> err: Could not retrieve catalog from remote server: certificate verify failed
[2010/03/10 03:07:34] <ericlee> warning: Not using cache on failed catalog
[2010/03/10 03:07:36] <ericlee> err: Could not retrieve catalog; skipping run
[2010/03/10 03:10:22] @ Quit: gaveen_: Quit: Leaving
[2010/03/10 03:10:41] @ ckauhaus joined channel #puppet
[2010/03/10 03:12:38] @ kolla joined channel #puppet
[2010/03/10 03:12:39] @ Quit: Ramonster: Remote host closed the connection
[2010/03/10 03:12:56] @ Ramonster joined channel #puppet
[2010/03/10 03:13:06] @ giskard joined channel #puppet
[2010/03/10 03:14:07] @ Quit: p3rror: Ping timeout: 268 seconds
[2010/03/10 03:15:15] @ alban2 joined channel #puppet
[2010/03/10 03:15:56] <ericlee> is there any syntax error with it? http://pastie.org/862813
[2010/03/10 03:16:17] @ Robbie_ joined channel #puppet
[2010/03/10 03:17:42] @ verwilst joined channel #puppet
[2010/03/10 03:18:07] <LinuxCode> ericlee, it doesnt even get there
[2010/03/10 03:18:26] @ coronel2_ joined channel #puppet
[2010/03/10 03:18:27] @ Quit: MrHeavy_: Ping timeout: 276 seconds
[2010/03/10 03:18:32] <LinuxCode> ericlee, rpm -V puppet-server
[2010/03/10 03:18:41] <LinuxCode> what does that say ?
[2010/03/10 03:18:45] @ MrHeavy joined channel #puppet
[2010/03/10 03:18:52] <ericlee> S.5....T. c /etc/puppet/fileserver.conf
[2010/03/10 03:18:59] <LinuxCode> thats all ?
[2010/03/10 03:19:07] <ericlee> yes
[2010/03/10 03:19:10] <LinuxCode> k
[2010/03/10 03:19:13] <LinuxCode> rpm -V puppet
[2010/03/10 03:19:17] <LinuxCode> and that ?
[2010/03/10 03:19:28] <\|Mike\|> c4rg:
[2010/03/10 03:19:29] @ Quit: coronel2: Ping timeout: 256 seconds
[2010/03/10 03:19:29] <ericlee> S.5....T. c /etc/puppet/puppet.conf
[2010/03/10 03:19:29] <\|Mike\|> c4rg: Pleae don't hilight me for nothing. Thank you.
[2010/03/10 03:19:30] <\|Mike\|> +s
[2010/03/10 03:19:41] <LinuxCode> ericlee, ok
[2010/03/10 03:19:49] <LinuxCode> then you are doing something wrong with your certs
[2010/03/10 03:19:53] @ bodepd joined channel #puppet
[2010/03/10 03:19:56] <LinuxCode> or the dns doesnt match up
[2010/03/10 03:19:59] <ericlee> All my problem is from the host name
[2010/03/10 03:20:02] <ericlee> You are right
[2010/03/10 03:20:04] <LinuxCode> yeah
[2010/03/10 03:20:08] <LinuxCode> I would think so too
[2010/03/10 03:20:20] <ericlee> Now I fix them, thanks for your help.
[2010/03/10 03:21:26] <LinuxCode> np
[2010/03/10 03:22:58] @ Quit: sunny: Ping timeout: 248 seconds
[2010/03/10 03:23:12] @ Disconneu joined channel #puppet
[2010/03/10 03:23:12] @ bodepd left channel #puppet ()
[2010/03/10 03:24:10] @ Quit: ezmobius: Remote host closed the connection
[2010/03/10 03:24:17] @ Quit: Disconnect: Quit: ZNC - http://znc.sourceforge.net
[2010/03/10 03:24:17] @ Disconneu is now known as Disconnect
[2010/03/10 03:26:46] @ skiold joined channel #puppet
[2010/03/10 03:30:29] @ Quit: omry: Ping timeout: 260 seconds
[2010/03/10 03:31:32] @ omry joined channel #puppet
[2010/03/10 03:31:59] @ sunny joined channel #puppet
[2010/03/10 03:33:06] @ Quit: SyTonnerre: Ping timeout: 248 seconds
[2010/03/10 03:33:16] @ SyTonnerre joined channel #puppet
[2010/03/10 03:34:06] @ DavidS1 joined channel #puppet
[2010/03/10 03:34:14] @ Quit: fux: Read error: Operation timed out
[2010/03/10 03:34:21] @ fux joined channel #puppet
[2010/03/10 03:34:53] @ xerxas joined channel #puppet
[2010/03/10 03:34:58] @ a55 left channel #puppet ()
[2010/03/10 03:37:09] @ Quit: DavidS: Ping timeout: 245 seconds
[2010/03/10 03:42:34] @ DavidS joined channel #puppet
[2010/03/10 03:42:45] @ danielbln joined channel #puppet
[2010/03/10 03:46:00] @ Quit: LinuxCode: Quit: Connection Closed
[2010/03/10 03:46:01] @ Quit: DavidS1: Ping timeout: 245 seconds
[2010/03/10 03:46:36] <ericlee> Could I use puppet to set up hostname for client?
[2010/03/10 03:51:50] @ Quit: pmorillo: Quit: pmorillo
[2010/03/10 03:54:32] @ EdRandom joined channel #puppet
[2010/03/10 03:55:23] @ kubicek joined channel #puppet
[2010/03/10 03:57:02] @ MattyM joined channel #puppet
[2010/03/10 03:57:38] @ phips is now known as phips\|away
[2010/03/10 03:58:13] @ phips joined channel #puppet
[2010/03/10 04:02:58] @ Quit: zeroXten_: Quit: leaving
[2010/03/10 04:03:18] @ zeroXten joined channel #puppet
[2010/03/10 04:03:47] @ JD__ joined channel #puppet
[2010/03/10 04:03:53] <JD__> morning
[2010/03/10 04:05:26] <jamesturnbull> ericlee: you can populate the /etc/hosts file
[2010/03/10 04:05:44] <jamesturnbull> ericlee: depends on what you mean by "set the hostname"
[2010/03/10 04:08:16] @ Quit: Jenza: Ping timeout: 256 seconds
[2010/03/10 04:09:36] @ erlingre joined channel #puppet
[2010/03/10 04:12:02] @ TREllis joined channel #puppet
[2010/03/10 04:15:09] @ Quit: phips: Quit: phips
[2010/03/10 04:18:05] @ Quit: ashp: Read error: Connection reset by peer
[2010/03/10 04:18:08] @ ashp joined channel #puppet
[2010/03/10 04:20:06] @ Quit: vzctl_: Ping timeout: 268 seconds
[2010/03/10 04:21:33] @ Quit: EdRandom: Ping timeout: 252 seconds
[2010/03/10 04:23:58] @ JJA joined channel #puppet
[2010/03/10 04:27:16] @ Quit: pugnacity: Ping timeout: 245 seconds
[2010/03/10 04:28:37] @ pugnacity joined channel #puppet
[2010/03/10 04:32:39] @ Quit: biertie: Ping timeout: 240 seconds
[2010/03/10 04:40:52] @ Quit: ericlee: Remote host closed the connection
[2010/03/10 04:42:14] @ Welsh_Dwarf joined channel #puppet
[2010/03/10 04:44:24] @ raskas joined channel #puppet
[2010/03/10 04:44:58] @ PsychoSid joined channel #puppet
[2010/03/10 04:52:47] @ ericlee joined channel #puppet
[2010/03/10 05:05:56] <raskas> Hi All, i'm using several import statements in my site.pp. But I would like to dynamically generate one of those imports (with info from a db)
[2010/03/10 05:06:04] <raskas> Is this possible?
[2010/03/10 05:08:44] <doubleukay> raskas: check out http://reductivelabs.com/trac/puppet/wiki/ExternalNodes - but i'm not sure if you can mix site.pp-defined nodes with external nodes.
[2010/03/10 05:09:18] <doubleukay> in the worst case, i suppose you could generate a site2.pp out of the db periodically and include that from site.pp..
[2010/03/10 05:13:00] @ vzctl_ joined channel #puppet
[2010/03/10 05:15:30] <raskas> but the external node definition is that also for the generation of classes?
[2010/03/10 05:20:29] @ Quit: vzctl_: Remote host closed the connection
[2010/03/10 05:25:36] @ suchu joined channel #puppet
[2010/03/10 05:26:42] <JD__> I'm guessing if I want to use some ruby code in a conditional I need to write a function in a separate file under lib?
[2010/03/10 05:26:52] @ Quit: PsychoSid: Quit: Leaving.
[2010/03/10 05:28:12] @ vzctl_ joined channel #puppet
[2010/03/10 05:29:17] @ Quit: n0ts: Quit: Tiarra 0.1+svn-35634: SIGTERM received; exit
[2010/03/10 05:29:33] @ n0ts joined channel #puppet
[2010/03/10 05:29:50] @ Quit: n0ts: Client Quit
[2010/03/10 05:30:06] @ n0ts joined channel #puppet
[2010/03/10 05:30:29] <monachus> fn'JD__ yep. custom code is best handled as a function.
[2010/03/10 05:31:11] @ Quit: xerxas: Quit: Leaving.
[2010/03/10 05:37:27] @ Quit: bug: Quit: bug
[2010/03/10 05:45:35] @ EdRandom joined channel #puppet
[2010/03/10 05:47:41] @ Quit: GioGio: Quit: Page closed
[2010/03/10 05:48:07] @ GioGio joined channel #puppet
[2010/03/10 05:49:56] @ xerxas joined channel #puppet
[2010/03/10 05:50:09] @ Quit: TREllis: Quit: leaving
[2010/03/10 05:52:20] @ pmorillo joined channel #puppet
[2010/03/10 05:52:58] @ Quit: EdRandom: Ping timeout: 276 seconds
[2010/03/10 05:56:00] @ biertie joined channel #puppet
[2010/03/10 05:57:59] @ Quit: mattwynne: Remote host closed the connection
[2010/03/10 06:03:08] @ mattwynne joined channel #puppet
[2010/03/10 06:08:05] @ gebi joined channel #puppet
[2010/03/10 06:11:44] @ Quit: ckauhaus: Ping timeout: 268 seconds
[2010/03/10 06:11:59] @ holden247 joined channel #puppet
[2010/03/10 06:12:13] @ ckauhaus joined channel #puppet
[2010/03/10 06:19:40] @ TREllis joined channel #puppet
[2010/03/10 06:22:37] @ grisu_cl joined channel #puppet
[2010/03/10 06:27:29] @ PsychoSid joined channel #puppet
[2010/03/10 06:31:36] @ Babbelaar joined channel #puppet
[2010/03/10 06:36:26] @ grisu_cl left channel #puppet ()
[2010/03/10 06:40:53] @ grisu_cl joined channel #puppet
[2010/03/10 06:41:50] @ Quit: grisu_cl: Quit: Leaving.
[2010/03/10 06:42:54] @ grisu_cl joined channel #puppet
[2010/03/10 06:46:04] @ grisu_cl left channel #puppet ()
[2010/03/10 06:48:30] @ grisu_cl joined channel #puppet
[2010/03/10 06:51:28] <tim\|imac> does anyone have an easy commandline test to check if the regex used in a regsubst is what you need?
[2010/03/10 06:51:41] <tim\|imac> I'm not sure if the sed regex I'm using is interpreted the same in puppet
[2010/03/10 06:51:52] <barn> echo "fooo" \| egrep "foo\|cake"
[2010/03/10 06:52:03] <barn> not brilliant as egrep regexps aren't exactly right
[2010/03/10 06:52:09] <barn> but for non complex stuff
[2010/03/10 06:52:21] <tim\|imac> ah, of course, egrep
[2010/03/10 06:52:24] <tim\|imac> will try, thanks!
[2010/03/10 06:53:48] <monachus> tim\|imac - i use irb
[2010/03/10 06:53:48] @ rasputnik joined channel #puppet
[2010/03/10 06:53:56] <monachus> i'll pastie something
[2010/03/10 06:54:00] <tim\|imac> monachus: thx :D
[2010/03/10 06:54:20] <tim\|imac> my back references don't seem to be working as expected in egrep or sed :S
[2010/03/10 06:54:38] <tim\|imac> or my regex is faulty, of course, but I'm going to blame the tools until they start blaming me ;-)
[2010/03/10 06:54:48] <monachus> they won't
[2010/03/10 06:54:53] <monachus> sed/egrep use diff regex
[2010/03/10 06:54:56] <monachus> ruby is more like perl
[2010/03/10 06:55:04] @ EdRandom joined channel #puppet
[2010/03/10 06:55:35] <monachus> tim\|imac: http://monachus.pastebin.com/vKP5UWrr
[2010/03/10 06:55:45] <tim\|imac> thx monachus!
[2010/03/10 06:55:48] <monachus> np
[2010/03/10 06:56:47] <tim\|imac> hm... is there something like replace instead of match?
[2010/03/10 06:56:54] <tim\|imac> so i can test my backreferences :)
[2010/03/10 06:56:57] <monachus> sure
[2010/03/10 06:56:58] <monachus> one sec
[2010/03/10 06:58:05] @ Quit: TREllis: Quit: leaving
[2010/03/10 06:59:37] <c4rg> what's the best way to test configuration changes on puppetmaster... so that I know exactly what will change on client?
[2010/03/10 06:59:40] <c4rg> any URLs?
[2010/03/10 06:59:59] @ rasputnik_ joined channel #puppet
[2010/03/10 07:00:02] <monachus> c4rg - you can't test it on the puppetmaster, but you can run puppetd -vt --noop on the client to see what it would do
[2010/03/10 07:00:33] <tim\|imac> c4rg: you might want to add a --tags <modulename> to monachus' line, so you only get the relevant stuff
[2010/03/10 07:01:17] @ TREllis joined channel #puppet
[2010/03/10 07:01:20] <c4rg> ok, thanks. I'll check it out :)
[2010/03/10 07:01:35] <monachus> tim\|imac - http://monachus.pastebin.com/MCn5wxvk
[2010/03/10 07:01:57] <monachus> there's string.sub and string.gsub depending on if you want to match globally or not
[2010/03/10 07:02:10] <monachus> ruby regex tutorial is here: http://www.regular-expressions.info/ruby.html
[2010/03/10 07:02:18] <tim\|imac> ah thx man, that's really helpful!
[2010/03/10 07:02:26] <monachus> :)
[2010/03/10 07:05:38] @ plathrop-away is now known as plathrop
[2010/03/10 07:07:36] @ rasputnik left channel #puppet ("Leaving")
[2010/03/10 07:07:36] @ rasputnik_ is now known as rasputnik
[2010/03/10 07:12:28] @ spawnyd joined channel #puppet
[2010/03/10 07:12:34] <spawnyd> ruby-lang
[2010/03/10 07:14:00] @ Quit: mattwynne: Remote host closed the connection
[2010/03/10 07:14:13] @ spawnyd_ joined channel #puppet
[2010/03/10 07:16:15] @ Quit: spawnyd_: Client Quit
[2010/03/10 07:20:06] @ pdilung joined channel #puppet
[2010/03/10 07:20:24] <pdilung> all: hello
[2010/03/10 07:20:42] <pdilung> all: I'd like to ask a question
[2010/03/10 07:20:46] @ ahasenack joined channel #puppet
[2010/03/10 07:21:13] <pdilung> all: I am deploying puppet as CM tool, using LDAP
[2010/03/10 07:21:53] <pdilung> all: deployment is done mostly on SunOS 5.9 and 5.10, the LDAP backend is Sun DS 5.x and 6.x
[2010/03/10 07:22:13] @ Quit: rasputnik: Quit: rasputnik
[2010/03/10 07:22:32] @ themroc joined channel #puppet
[2010/03/10 07:22:33] @ rasputnik joined channel #puppet
[2010/03/10 07:23:40] <pdilung> all: works quite fine, however I am facing subtle problems implementing host resource type to talk with LDAP stored data
[2010/03/10 07:24:00] <pdilung> all: well, I am quite new to ruby and puppet either :)
[2010/03/10 07:24:45] @ joe-mac left channel #puppet ()
[2010/03/10 07:24:59] <pdilung> all: there is a multivalue attribute called Hostentry with should be a placeholder for host entries
[2010/03/10 07:25:30] @ Quit: rasputnik: Client Quit
[2010/03/10 07:25:42] <pdilung> all: the format of attribute is ip:fqdn[:alias1[:alias2[...[:aliasN]]]]
[2010/03/10 07:25:53] @ rasputnik joined channel #puppet
[2010/03/10 07:25:53] <pdilung> how can puppet use multivalue attributes?
[2010/03/10 07:26:09] <pdilung> how can I adopt this into my puppet class?
[2010/03/10 07:26:15] <pdilung> any ideas?
[2010/03/10 07:26:44] <pdilung> the resuling /etc/inet/hosts should be puppet aware, however local changes should be kept
[2010/03/10 07:26:54] <pdilung> thnaks
[2010/03/10 07:27:03] @ Jenza joined channel #puppet
[2010/03/10 07:28:15] <pdilung> all: in normal case, I would use templating, however it is not the way to go if local changes should be preserved
[2010/03/10 07:39:11] @ DavidS1 joined channel #puppet
[2010/03/10 07:40:49] @ grisu_cl left channel #puppet ()
[2010/03/10 07:41:15] @ jmccune joined channel #puppet
[2010/03/10 07:41:45] @ Quit: DavidS: Ping timeout: 245 seconds
[2010/03/10 07:42:20] <gebi> how to manage a file in puppet which i only know the location from a readlink -f?
[2010/03/10 07:44:47] <jmccune> gebi: Only know the location on the master?
[2010/03/10 07:45:19] <gebi> no i only know the location on the client through executing readlink -f
[2010/03/10 08:01:54] @ Quit: erlingre: Ping timeout: 248 seconds
[2010/03/10 08:08:39] @ terj joined channel #puppet
[2010/03/10 08:08:50] <terj> how call fact from template?
[2010/03/10 08:09:07] <terj> <% puts $domain %> does not work
[2010/03/10 08:09:10] <Jenza> <%= $fact %>
[2010/03/10 08:09:27] <tim\|imac> withou the $
[2010/03/10 08:09:34] <tim\|imac> without, even
[2010/03/10 08:09:56] <Jenza> oh yeah
[2010/03/10 08:09:59] <Jenza> good point :x
[2010/03/10 08:10:16] <terj> tim\|imac: could not find value for 'domain'
[2010/03/10 08:10:43] <tim\|imac> then it's not set?
[2010/03/10 08:10:56] <Jenza> does facter domain work from the console?
[2010/03/10 08:11:02] <tim\|imac> what does 'facter domain' give you?
[2010/03/10 08:11:05] <tim\|imac> yeah :)
[2010/03/10 08:11:10] <Jenza> :P
[2010/03/10 08:12:06] <terj> ah it is not set on server nr 1 but is set on server nr 2
[2010/03/10 08:13:01] @ raskas left channel #puppet ()
[2010/03/10 08:13:11] <Jenza> redhat?
[2010/03/10 08:13:35] <terj> debian
[2010/03/10 08:14:21] <tim\|imac> i'm not really sure where the fact gets it info from, i assume from /etc/resolv.conf
[2010/03/10 08:15:00] <Jenza> 'hostname -d' should return your domain as well
[2010/03/10 08:15:31] <Jenza> Actually it'll be /etc/hosts on debian
[2010/03/10 08:15:34] <Jenza> iirc
[2010/03/10 08:16:12] <Jenza> <ip address> <fqdn> <hostname>
[2010/03/10 08:17:45] <terj> hostname -d shows me domain
[2010/03/10 08:19:39] <terj> ok reboot fixed it
[2010/03/10 08:19:43] <terj> thanks
[2010/03/10 08:19:55] @ Quit: JJA: Read error: Operation timed out
[2010/03/10 08:25:00] <nico> rah I hate this variable scope thing !
[2010/03/10 08:30:58] @ Quit: swygue: Ping timeout: 264 seconds
[2010/03/10 08:31:07] <c4rg> if I do "include sudo::test" in a node, then it will refer to module "sudo" and file modules/sudo/manifests/test.pp, right?
[2010/03/10 08:32:27] <chrisg> I think that's how it's meant to work yeah
[2010/03/10 08:33:12] <chrisg> you can force import if you're out of scope though
[2010/03/10 08:35:21] <c4rg> tx
[2010/03/10 08:36:09] @ Quit: kaos01: Ping timeout: 240 seconds
[2010/03/10 08:36:17] @ cliff-hm joined channel #puppet
[2010/03/10 08:40:16] @ uphillian joined channel #puppet
[2010/03/10 08:42:43] <nico> #@#@#@!
[2010/03/10 08:43:51] <nico> I want a var to get a variable value but neither include or inherits allow me to do it... does someone have a trick ?
[2010/03/10 08:44:09] @ Bass10 joined channel #puppet
[2010/03/10 08:44:18] <nico> example : http://pastie.org/863124
[2010/03/10 08:44:57] <tim\|imac> nico: content => $tests::var1::myvar
[2010/03/10 08:45:34] <nico> isn't there a "cleaner" way to achieve this ?
[2010/03/10 08:45:51] <tim\|imac> yeah
[2010/03/10 08:46:05] <tim\|imac> you can do search tests::var1, I think that'll make $myvar available too
[2010/03/10 08:46:10] <tim\|imac> haven't tried that yet, though
[2010/03/10 08:46:37] <tim\|imac> nice thing about search is that you can use a variable to determine which module it should add to the search path
[2010/03/10 08:47:04] * nico does not know search
[2010/03/10 08:47:39] @ yure joined channel #puppet
[2010/03/10 08:47:46] <nico> gepetto help
[2010/03/10 08:47:46] <gepetto> nico: help topics: 10 core modules: auth, basics, config, filters, httputil, irclog, remote, unicode, userdata, wordlist; 9 plugins: debug, hudson, nickserv, redmineurls, rss, seen, shortenurls, time, tracurls (help <topic> for more info)
[2010/03/10 08:47:59] <tim\|imac> nico: http://docs.reductivelabs.com/references/latest/function.html#search
[2010/03/10 08:48:33] <nico> hm...
[2010/03/10 08:49:42] <nico> looks like it doesn't work with search
[2010/03/10 08:51:15] <chrisg> i'm guesing puppet's script language doesn't really like tuples?
[2010/03/10 08:51:32] @ Peanut joined channel #puppet
[2010/03/10 08:51:56] <Peanut> Hi - how can I debug why 'puppetrun' is not triggering anything on my hosts?
[2010/03/10 08:52:37] <nico> tim\|imac: using a "qualified name" for the var does not work either
[2010/03/10 08:52:56] <tim\|imac> nico: are you sure? that's working here...
[2010/03/10 08:53:11] <tim\|imac> which version of puppet are you using?
[2010/03/10 08:53:17] <nico> 0.25.4
[2010/03/10 08:53:29] <tim\|imac> that works for me :S
[2010/03/10 08:53:42] @ shenson_away is now known as shenson
[2010/03/10 08:53:55] <nico> tim\|imac: http://pastie.org/private/eptjj8s5so6pyuzmimdba
[2010/03/10 08:54:43] <tim\|imac> nico: in strings you're probably better of using ${syslog::configdir}
[2010/03/10 08:58:09] <nico> yeah
[2010/03/10 08:58:14] <nico> works !
[2010/03/10 08:58:20] <nico> tim\|imac: thx
[2010/03/10 08:58:32] @ Quit: kubicek: Quit: kubicek
[2010/03/10 08:58:33] <tim\|imac> yw :)
[2010/03/10 08:59:15] <ohadlevy> Peanut: did you configure the client to listen?
[2010/03/10 09:00:04] <Peanut> Yes, the config-file has "listen=true" in it, also added the server to namespaceauth.conf: "[puppetrunner] allow <server>"
[2010/03/10 09:00:18] <ohadlevy> Peanut: so run the client in debug mode and see
[2010/03/10 09:00:41] @ Quit: m1nish: Ping timeout: 246 seconds
[2010/03/10 09:04:11] @ Quit: ckauhaus: Quit: Leaving.
[2010/03/10 09:04:22] @ Quit: themroc: Remote host closed the connection
[2010/03/10 09:08:01] <Peanut> Err.. how to do that? If I give '--debug', it stil goes into background and returns to the shell.
[2010/03/10 09:09:09] <Peanut> Ah, 'no deamonize'
[2010/03/10 09:10:05] <Peanut> Running 'puppetrun --host xxxx --ignoreschedules --foreground' shows nothing happening on the puppetd client, and the puppetrunner just returns with 'Finished'.
[2010/03/10 09:10:21] @ rcrowley joined channel #puppet
[2010/03/10 09:10:53] <Peanut> Does anyone know which TCP port this uses?
[2010/03/10 09:13:26] <Peanut> puppetrun does not send any network clients to the puppetd on the remote machine, so the problem would be with puppetrun I guess.
[2010/03/10 09:15:25] <kjetilho> is there an empty production I can use to separate two resources which don't require parameters?
[2010/03/10 09:15:26] @ Quit: TREllis: Quit: brb
[2010/03/10 09:15:42] <kjetilho> e.g. file {"/a": "/b": } is a syntax error.
[2010/03/10 09:15:49] <zeroXten> any suggestions for debugging a puppetca --verify error 'Could not call verify: unable to get issuer certificate' - i'm trying to use my own CA, but other than a bunch of Autorequiring log statements i'm not really given an idea about why it cannot get the CA
[2010/03/10 09:15:59] @ themroc joined channel #puppet
[2010/03/10 09:16:05] <kjetilho> if all of them are empty, I can do file { ["/a", "/b"]: }
[2010/03/10 09:16:18] <kjetilho> but if there's a non-empty "/c", I get in trouble
[2010/03/10 09:18:28] @ TREllis joined channel #puppet
[2010/03/10 09:21:19] @ pheezy joined channel #puppet
[2010/03/10 09:21:20] @ Quit: terj: Quit: Page closed
[2010/03/10 09:22:42] @ ckauhaus joined channel #puppet
[2010/03/10 09:22:42] @ unxfrek joined channel #puppet
[2010/03/10 09:29:04] @ Quit: TREllis: Quit: leaving
[2010/03/10 09:31:03] @ TREllis joined channel #puppet
[2010/03/10 09:31:30] @ Quit: themroc: Remote host closed the connection
[2010/03/10 09:32:46] <Peanut> Ah, found it! Bug in Debian Lenny (?)
[2010/03/10 09:32:48] @ themroc joined channel #puppet
[2010/03/10 09:32:50] <Peanut> http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506305
[2010/03/10 09:35:43] @ mattwynne joined channel #puppet
[2010/03/10 09:35:49] @ kubicek joined channel #puppet
[2010/03/10 09:37:35] @ Quit: themroc: Remote host closed the connection
[2010/03/10 09:41:11] <ohadlevy> Peanut: you might want to upgrade your clients if you are still running 0.24.5
[2010/03/10 09:42:46] <chrisg> 0.24 is still in lots of "stable release" distros like say, rhel 5.4
[2010/03/10 09:42:49] @ notbrien joined channel #puppet
[2010/03/10 09:42:51] <chrisg> or rather EPEL
[2010/03/10 09:43:05] <chrisg> I don't think 0.25 has his epel stable yet and still in -testing :s
[2010/03/10 09:43:30] @ themroc joined channel #puppet
[2010/03/10 09:47:01] @ Quit: themroc: Read error: Connection reset by peer
[2010/03/10 09:47:02] @ swygue joined channel #puppet
[2010/03/10 09:47:18] @ Spruit_elf joined channel #puppet
[2010/03/10 09:47:22] <kjetilho> chrisg: 0.24.5 is truly ancient, though. you really want 0.24.8
[2010/03/10 09:47:56] <Peanut> ohadlevy: Actually, my clients run Debian Etch, and I've already pinned them to at least run the Lenny release of puppet.. sigh
[2010/03/10 09:48:58] @ themroc joined channel #puppet
[2010/03/10 09:49:30] <tmz> chrisg: 0.25.4 is in epel stable. It was pushed last week.
[2010/03/10 09:50:02] <Peanut> Err.. what is 'epel' ?
[2010/03/10 09:50:19] <tmz> Peanut: epel is 'extra packages for enterprise'
[2010/03/10 09:50:33] <tmz> It's rpm's for RHEL/CentOS
[2010/03/10 09:54:15] @ Quit: rmiller4pi8: Quit: Leaving.
[2010/03/10 09:54:33] <chrisg> tmz: ah!
[2010/03/10 09:54:35] @ Syn`work joined channel #puppet
[2010/03/10 09:54:42] <chrisg> i had to install it from epel-testing a few weeks ago :)
[2010/03/10 09:54:58] @ Quit: EdRandom: Ping timeout: 248 seconds
[2010/03/10 09:55:35] @ cwebber left channel #puppet ()
[2010/03/10 09:55:38] @ Quit: pheezy: Read error: Connection reset by peer
[2010/03/10 09:55:45] @ pheezy joined channel #puppet
[2010/03/10 09:56:06] <tmz> chrisg: See, procrastination would have paid off, as usual. ;)
[2010/03/10 09:58:16] @ mpdehaan joined channel #puppet
[2010/03/10 09:58:29] @ rgsteele joined channel #puppet
[2010/03/10 09:58:35] @ Quit: yure: Quit: Odhajam
[2010/03/10 10:00:20] @ Quit: afletcher: Quit: afletcher
[2010/03/10 10:02:14] @ bobbyz_ joined channel #puppet
[2010/03/10 10:06:30] @ bug_ joined channel #puppet
[2010/03/10 10:09:25] @ Quit: codec: Ping timeout: 264 seconds
[2010/03/10 10:16:29] @ codec joined channel #puppet
[2010/03/10 10:17:33] @ rmiller4pi8 joined channel #puppet
[2010/03/10 10:19:01] @ Quit: ckauhaus: Ping timeout: 268 seconds
[2010/03/10 10:22:13] @ ckauhaus joined channel #puppet
[2010/03/10 10:22:55] @ Quit: morphic: Ping timeout: 276 seconds
[2010/03/10 10:24:05] @ Quit: Spruit_elf: Quit: Spruit_elf
[2010/03/10 10:24:05] @ EdRandom joined channel #puppet
[2010/03/10 10:24:55] @ Norm joined channel #puppet
[2010/03/10 10:27:49] <Norm> i'm setting up a new host using the same process i've always used, but when the host talks to the puppetmaster, it's not requesting a certificate
[2010/03/10 10:27:49] @ fzzzt joined channel #puppet
[2010/03/10 10:28:00] <Norm> i just get "no certificates to sign" when i do a puppetca --list
[2010/03/10 10:28:34] <Norm> there's not an existing cert there
[2010/03/10 10:28:37] <Norm> am i missing something?
[2010/03/10 10:28:47] <fzzzt> I'm having a problem with selinux, it says puppet is trying to mount /home onto /tmp/puppet.#### (mounts aren't allowed in /tmp), wth?
[2010/03/10 10:29:00] <fzzzt> Does puppet mount in /tmp before the actual mount point?
[2010/03/10 10:29:33] @ afletcher joined channel #puppet
[2010/03/10 10:33:25] @ Quit: biertie: Quit: I'm off :)
[2010/03/10 10:34:53] <fzzzt> Ah, looks like 0.25.5 might have a fix
[2010/03/10 10:36:08] <Norm> ironically, 0.25 fixes my problem as well, involving hyphens in hostnames
[2010/03/10 10:36:49] @ kaptk2 joined channel #puppet
[2010/03/10 10:38:15] @ Quit: Robbie_: Remote host closed the connection
[2010/03/10 10:39:54] <fzzzt> I guess since Puppet uses /tmp for it's files, SELinux won't allow it to check that my /home is mounted correctly, since the mount command is denied for anything in /tmp and it uses a file somehow...but it works for some reason on my other hosts with SELinux enabled.
[2010/03/10 10:40:20] <fzzzt> hmmm
[2010/03/10 10:40:45] <fzzzt> might be an update to the selinux policies i haven't applied on this host yet
[2010/03/10 10:43:38] <fsweetser> sounds like it's a temporary file problem
[2010/03/10 10:44:00] <fsweetser> puppet typically runs commands and captures their output to a temp file, and reads the temp file, rather than trying to use pipes
[2010/03/10 10:44:34] @ lordb joined channel #puppet
[2010/03/10 10:44:39] <fzzzt> yeah
[2010/03/10 10:44:41] <fzzzt> #3033
[2010/03/10 10:44:42] <gepetto> fzzzt: #3033 is http://projects.reductivelabs.com/issues/show/3033 "Puppet - Bug #3033: Using temporary files in /tmp to comunicate with child processes is problematic in SELinux - ReductiveLabs.com"
[2010/03/10 10:47:09] @ Quit: EdRandom: Remote host closed the connection
[2010/03/10 10:48:00] @ Quit: ckauhaus: Ping timeout: 268 seconds
[2010/03/10 10:48:10] @ labrown joined channel #puppet
[2010/03/10 10:49:41] @ bodepd joined channel #puppet
[2010/03/10 10:54:25] @ bodepd left channel #puppet ()
[2010/03/10 10:56:40] @ Gemmazz joined channel #puppet
[2010/03/10 10:56:41] <Gemmazz> http://imgnow.info/DSC-1268236600.jpg does my ass look big?
[2010/03/10 10:56:42] @ Gemmazz left channel #puppet ()
[2010/03/10 10:56:53] @ Quit: skiold: Quit: skiold
[2010/03/10 11:01:25] <chrisg> lal
[2010/03/10 11:02:32] @ Quit: pdilung: Ping timeout: 252 seconds
[2010/03/10 11:06:07] @ bodepd joined channel #puppet
[2010/03/10 11:07:06] @ bodepd left channel #puppet ()
[2010/03/10 11:07:26] @ lak joined channel #puppet
[2010/03/10 11:08:05] @ Norm left channel #puppet ()
[2010/03/10 11:10:25] @ alfism joined channel #puppet
[2010/03/10 11:12:02] @ Quit: bug_: Quit: bug_
[2010/03/10 11:12:07] @ Quit: PsychoSid: Quit: Leaving.
[2010/03/10 11:12:59] @ suchu_ joined channel #puppet
[2010/03/10 11:15:35] @ Spruit_elf joined channel #puppet
[2010/03/10 11:16:59] @ Quit: suchu: Ping timeout: 268 seconds
[2010/03/10 11:17:09] @ Quit: Spruit_elf: Client Quit
[2010/03/10 11:20:02] @ Quit: pmorillo: Quit: pmorillo
[2010/03/10 11:21:47] <madduck> oh puppet, if you could at least provide me with sensible error messages, my life would be so much easier
[2010/03/10 11:22:00] <madduck> undefined method `closed?' for nil:NilClass
[2010/03/10 11:22:04] <madduck> very helpful
[2010/03/10 11:23:10] @ Quit: suchu_: Read error: Connection reset by peer
[2010/03/10 11:24:03] @ Quit: grim_radical: Remote host closed the connection
[2010/03/10 11:24:36] @ grim_radical joined channel #puppet
[2010/03/10 11:24:37] <madduck> http://slexy.org/view/s21PensjN9
[2010/03/10 11:24:39] <madduck> any ideas?
[2010/03/10 11:26:01] @ Quit: rasputnik: Ping timeout: 260 seconds
[2010/03/10 11:26:03] <Jenza> nil
[2010/03/10 11:26:32] <Jenza> post the file {} snippet for auth.conf?
[2010/03/10 11:26:45] @ suchu joined channel #puppet
[2010/03/10 11:26:55] <Jenza> oh, happens for all the others too
[2010/03/10 11:26:59] @ inveratulo joined channel #puppet
[2010/03/10 11:28:29] <madduck> Jenza: and it works fine on my production machine
[2010/03/10 11:28:46] <madduck> i was just trying to put puppet/puppetmaster onto my laptop for easy offline development
[2010/03/10 11:29:02] <Jenza> ah
[2010/03/10 11:29:04] <madduck> first, facter does not like to run without network, and second, well, puppet just doesn't want to run at all it seems
[2010/03/10 11:31:07] <nasrat> madduck: are you referring to the bug in facter when network goes away?
[2010/03/10 11:31:58] <madduck> nasrat: i don't know, i am referring to the fact that on an offline machine, facter takes 30 seconds or more to run because it cannot figure out the ipaddress
[2010/03/10 11:32:29] @ rasputnik joined channel #puppet
[2010/03/10 11:33:20] <nasrat> madduck: yeah we should fail fast if we detect no networking
[2010/03/10 11:33:24] <nasrat> will try look on w/e
[2010/03/10 11:33:50] <inveratulo> I'm having problems with the OS controlling the puppetmaster daemon, via /etc/init.d scripts... i poked around the init script but not sure why it isn't handling the pid properly
[2010/03/10 11:37:06] @ Quit: rasputnik: Client Quit
[2010/03/10 11:39:44] <inveratulo> figured it out. bad perms on /var/run/puppet
[2010/03/10 11:40:49] <inveratulo> actually nm -- still broken... "start-stop-daemon: warning: failed to kill 942: No such process" always 942
[2010/03/10 11:42:22] <\|shad0w\|> clear out the stale pid file?
[2010/03/10 11:45:28] <inveratulo> nope -- just doesn't work.
[2010/03/10 11:47:15] @ boomshankerx joined channel #puppet
[2010/03/10 11:47:57] @ Quit: suchu: Ping timeout: 260 seconds
[2010/03/10 11:48:26] <inveratulo> so... puppet is just supposed to be broken out of the box?
[2010/03/10 11:48:33] @ Quit: kubicek: Quit: kubicek
[2010/03/10 11:49:24] @ Quit: Ramonster: Quit: So long, thanx for all the fish
[2010/03/10 11:50:11] @ Quit: lak: Quit: lak
[2010/03/10 11:50:15] @ suchu joined channel #puppet
[2010/03/10 11:52:01] @ colyte_ is now known as colyte
[2010/03/10 11:52:58] @ legooolas joined channel #puppet
[2010/03/10 11:53:35] @ lutter joined channel #puppet
[2010/03/10 11:54:14] @ inveratulo left channel #puppet ()
[2010/03/10 11:55:18] @ bug joined channel #puppet
[2010/03/10 11:58:01] @ Quit: GioGio: Quit: Page closed
[2010/03/10 11:59:31] @ Quit: danielbln: Quit: Leaving.
[2010/03/10 12:01:27] @ biertie joined channel #puppet
[2010/03/10 12:02:51] <legooolas> I've been using puppet on and off for a while and was wondering how people do OS and version-specific stuff neatly
[2010/03/10 12:02:59] <legooolas> I tried to get something like this to work : http://pastie.org/863465
[2010/03/10 12:03:32] <legooolas> but "defined ( Class [...] )" just throws an error when a class isn't defined, rather than just being a false value
[2010/03/10 12:04:31] <legooolas> So I was wondering if there is a nice way to do this rather than a load of nested cases in each module (it seems like a pattern which should be fixable)
[2010/03/10 12:05:36] @ Quit: Welsh_Dwarf: Remote host closed the connection
[2010/03/10 12:06:31] @ danielbln joined channel #puppet
[2010/03/10 12:07:47] <elasticdog> legooolas: I'd be interested in a clean method for that too...
[2010/03/10 12:08:23] @ kubicek joined channel #puppet
[2010/03/10 12:08:26] <legooolas> The one in that paste also needs the classes to be parsed first, but I can cope with that as long as it's within a single manifest
[2010/03/10 12:08:44] <legooolas> I guess my actual questions are : Is that an insane way of doing it?
[2010/03/10 12:09:06] <legooolas> and : Is "defined ( Class [...] )" broken or is that the expected behaviour? :)
[2010/03/10 12:12:51] @ lilmatt joined channel #puppet
[2010/03/10 12:15:53] @ Quit: DavidS1: Quit: Leaving.
[2010/03/10 12:16:03] @ alexine_dsouza joined channel #puppet
[2010/03/10 12:17:52] <eric0> legooolas: that looks... semi-insane. i've never seen that syntax and i wouldn't really expect it to work, classes aren't really 'defined'
[2010/03/10 12:19:07] <legooolas> Is there another way to get sub-classes included if they exist, dependent on the $operatingsystem and $lsb*release vars in a similar way though?
[2010/03/10 12:19:41] <legooolas> (I may be completely missing the point and doing it all wrong, of course :)
[2010/03/10 12:20:21] <tim\|imac> my apache module is getting huge... i might be overengineering just a tad...
[2010/03/10 12:20:38] <zeroXten> he
[2010/03/10 12:20:40] <zeroXten> +h
[2010/03/10 12:21:01] <legooolas> I was just about to start on apache and was fearing the worst there too ;)
[2010/03/10 12:21:38] <zeroXten> i'm looking forward to worrying about apache... i'm still messing around with certs =(
[2010/03/10 12:22:08] <legooolas> I found that if it all went wrong trying to get a client to connect, vaping the /var/lib/puppet dir on the client and starting it again usually fixed things :)
[2010/03/10 12:22:40] @ Quit: danielbln: Quit: Leaving.
[2010/03/10 12:24:00] <zeroXten> i'm doing manual certs :'(
[2010/03/10 12:24:18] @ Quit: giskard: Remote host closed the connection
[2010/03/10 12:24:36] <eric0> legooolas: i'd question the need for all those micro-divided subclasses. are things really that different? or is it something you could roll up and use the selector syntax to pick appropriate right-hand-side values for resource attributes?
[2010/03/10 12:25:53] <zeroXten> and this is on the puppetmaster
[2010/03/10 12:26:59] @ spencert joined channel #puppet
[2010/03/10 12:27:27] @ weaselkeeper left channel #puppet ()
[2010/03/10 12:27:37] @ weaselkeeper joined channel #puppet
[2010/03/10 12:27:40] @ lak joined channel #puppet
[2010/03/10 12:28:12] <elasticdog> legooolas: I realize it's sort of nested case statements, but I've been using roughly this method for OS specific stuff, which could be applied to OS versions too something like this: http://pastie.org/863511
[2010/03/10 12:29:35] <elasticdog> you could split up the file by having a centos.pp and an ubuntu.pp to keep things somewhat clean
[2010/03/10 12:29:36] <legooolas> eric0: There aren't necessarily that many differences, but I wanted to make it generic enough that I just call "include_some_stuff" and it does it for whatever host is being run through
[2010/03/10 12:29:45] <legooolas> nod
[2010/03/10 12:30:07] <legooolas> I was just trying to avoid writing it out for each one, that's all :)
[2010/03/10 12:30:28] <legooolas> So you'd just define something generic and then subclasses for those which need changes, and if they exist they get used
[2010/03/10 12:30:31] <legooolas> otherwise the generic one
[2010/03/10 12:31:17] @ Quit: MattyM: Quit: ta ta
[2010/03/10 12:31:49] <elasticdog> yeah, a reliable define would be great for that...
[2010/03/10 12:31:58] <elasticdog> I might start messing with your paste and see what I come up with
[2010/03/10 12:32:52] <legooolas> As a separate question, did apt/dpkg support disappear? I'm sure I used it a while back, and now ubuntu clients complain that yum isn't functional on this platform...
[2010/03/10 12:33:07] <legooolas> elasticdog: Cool, ta.
[2010/03/10 12:37:07] @ eshamow joined channel #puppet
[2010/03/10 12:37:09] <weaselkeeper> I have puppet up and running, but I think I broke something in the filebucket stuff. It doesn't look like anything is actually getting to the filebucket, although the puppet run on the client reports it, and gives me the md5 hash, when I try to get that file, nil is returned, and I can find no file using other tools like find, on the filebucket server.
[2010/03/10 12:37:27] <weaselkeeper> any suggestions on what might be the issue?
[2010/03/10 12:37:44] <weaselkeeper> pretty sure I have something fubar, but not sure what
[2010/03/10 12:38:55] @ Quit: eshamow: Client Quit
[2010/03/10 12:39:14] @ alduin joined channel #puppet
[2010/03/10 12:39:29] @ eshamow joined channel #puppet
[2010/03/10 12:39:49] <alduin> If I've got multiple IPs on a machine, is there a way to tell puppetd which one to bind to when calling home to the puppetmaster?
[2010/03/10 12:40:18] @ Quit: eshamow: Client Quit
[2010/03/10 12:40:36] @ eshamow joined channel #puppet
[2010/03/10 12:41:55] @ toi joined channel #puppet
[2010/03/10 12:43:13] @ bodepd joined channel #puppet
[2010/03/10 12:48:12] <eric0> mpdehaan: umm, re your last email http://github.com/reductivelabs/puppet/blob/master/lib/puppet/agent.rb#L92
[2010/03/10 12:50:54] <mpdehaan> cool I'll reply and acknowledge I cannot read :)
[2010/03/10 12:51:23] @ allsystemsarego joined channel #puppet
[2010/03/10 12:52:35] * mpdehaan ponders whether if he's living in some strange world where if he thinks of a feature then it already exists
[2010/03/10 12:52:54] <mpdehaan> ... nope ... Lamborghini dispenser did not work
[2010/03/10 12:54:24] @ Dis_9 joined channel #puppet
[2010/03/10 12:55:07] <Dis_9> stupid question :) what is the recommended upgrade path? clients, then puppetmaster or puppetmaster then clients? (not doing all at once, its not gonna be that kind of day..)
[2010/03/10 12:56:11] <eric0> puppetmaster first
[2010/03/10 12:56:50] <Dis_9> ok cool. thanks :)
[2010/03/10 12:56:55] @ Quit: Dis_9: Client Quit
[2010/03/10 13:00:04] @ Alagar joined channel #puppet
[2010/03/10 13:00:26] @ cwebber joined channel #puppet
[2010/03/10 13:02:58] <zeroXten> dumb question - where by default does puppet store CA certs etc?
[2010/03/10 13:03:20] @ Quit: TREllis: Quit: leaving
[2010/03/10 13:03:49] <madduck> can i please have a reality check on why I cannot get a most basic puppetmaster installed on localhost (for offline testing)? http://slexy.org/view/s21gzlNiPe
[2010/03/10 13:04:32] <madduck> http://bitcube.co.uk/content/puppet-errors-explained says the error can occur when "you have a bad error in a template - for example missing a closing quote."
[2010/03/10 13:04:38] <madduck> I cannot find anything such
[2010/03/10 13:04:54] <ashp> hmm, let me look :)
[2010/03/10 13:05:00] <ashp> i am the master of bad syntax
[2010/03/10 13:06:03] <ashp> oh hmm, that doesn't look like a regular syntax error
[2010/03/10 13:06:32] <ashp> there's a way to test syntax with puppet
[2010/03/10 13:06:35] <ashp> puppet --parseonly
[2010/03/10 13:06:38] <ashp> try that on your various .pp's
[2010/03/10 13:06:50] <madduck> i only have one .pp
[2010/03/10 13:06:52] <madduck> site.pp
[2010/03/10 13:07:06] <ashp> oh, well, --parseonly it quickly?
[2010/03/10 13:07:16] <madduck> lapse:/etc/puppet# puppet --parseonly manifests/site.pp
[2010/03/10 13:07:17] <madduck> lapse:/etc/puppet# echo $?
[2010/03/10 13:07:17] <madduck> 0
[2010/03/10 13:07:33] <ashp> hmm ok, so the error isn't in your site.pp, it's not a syntax issue :)
[2010/03/10 13:07:42] <ashp> if you run puppetd --debug
[2010/03/10 13:07:45] <ashp> you might get something useful :/
[2010/03/10 13:08:38] <madduck> nothing in debug output, nor trace
[2010/03/10 13:08:52] <madduck> see the last comment on http://projects.reductivelabs.com/issues/3101
[2010/03/10 13:09:45] <ashp> that is the weirdest damn thing
[2010/03/10 13:09:59] <ashp> it's mad about auth.conf
[2010/03/10 13:10:02] <ashp> could it just be a permissions thing?
[2010/03/10 13:11:09] <madduck> it's also mad about /etc/default/puppet, but the exact same setup works elsewhere
[2010/03/10 13:11:20] <madduck> anyway, i have disabled all modules and just have the simple site.pp in place now
[2010/03/10 13:11:26] <madduck> anyway, gotta go eat food.
[2010/03/10 13:11:27] <madduck> bbiab
[2010/03/10 13:11:31] @ erm_ joined channel #puppet
[2010/03/10 13:12:13] @ giskard joined channel #puppet
[2010/03/10 13:13:34] @ Bryce joined channel #puppet
[2010/03/10 13:14:45] @ tonyskapunk joined channel #puppet
[2010/03/10 13:15:18] <alduin> madduck: I've been working on something like that for several days now. It's a production puppetmaster, but I'm also trying to run a client on the same machine. Clients on other machines work fine, but the local client keeps spitting back the same errors you're seeing seemingly at random.
[2010/03/10 13:16:41] @ Robbie_ joined channel #puppet
[2010/03/10 13:18:52] @ Quit: gebi: Ping timeout: 276 seconds
[2010/03/10 13:20:07] <ashp> why do people post on the list to say "I'm still running 0.24, and it's slow"
[2010/03/10 13:20:16] <ashp> there's clearly never going to be anything to say except '0.25 time'
[2010/03/10 13:21:39] @ Quit: lazzurs: Ping timeout: 252 seconds
[2010/03/10 13:23:05] <alduin> .24's the only version that lets me run a master and a client on the same machine. =P
[2010/03/10 13:24:04] @ Quit: xerxas: Ping timeout: 276 seconds
[2010/03/10 13:24:30] <weaselkeeper> I have master/client running on 25.4, works fine, except I can't get the filebucket stuff to work properly atm. (regardless of client)
[2010/03/10 13:24:35] <ashp> i run a master/client on 25.4!
[2010/03/10 13:24:43] <ashp> I upgraded from 24 and nothing changed..
[2010/03/10 13:25:00] <weaselkeeper> for some reason, it's not storing the files, although everything claims to be working in logs, and with --debug
[2010/03/10 13:25:08] <alduin> ashp: Do you use different hostnames for the master/client that are running on the same machine?
[2010/03/10 13:25:31] <ashp> hmm, the hostname of the box is hlslinutil1, but client's connect to 'puppet' which is just a /etc/hosts entry for them all
[2010/03/10 13:26:18] <weaselkeeper> I used a CNAME of puppet.domain.com pointing to the puppetmaster,
[2010/03/10 13:27:03] <orbit> Is it possible to use external nodes with the puppet binary (not puppetmasterd)?
[2010/03/10 13:28:43] <orbit> From what I read it doesn't look like it...
[2010/03/10 13:29:56] <eric0> orbit: node classification is a server-side thing
[2010/03/10 13:31:26] @ Quit: fluxdude: Ping timeout: 245 seconds
[2010/03/10 13:32:23] <alduin> ashp: If I try to let the master/client use the same hostname, I get "Retrieved certificate does not match private key".
[2010/03/10 13:32:51] <ashp> hmm, I let puppet make the certs so I didn't have to do anything clever, sorry :(
[2010/03/10 13:33:07] <alduin> As am I.
[2010/03/10 13:33:57] @ lazzurs joined channel #puppet
[2010/03/10 13:35:27] @ TREllis joined channel #puppet
[2010/03/10 13:35:43] <eric0> i have to close you #puppet, your problems are all more interesting/tractable than mine but they dont pay the bills
[2010/03/10 13:36:30] <tim\|imac> paying bills is overrated.
[2010/03/10 13:36:47] <alduin> ok, check that. It'll still let me sign them, but during the normal runs I still get the 'Failed to retrieve current state of resource: undefined method `closed?' for nil:NilClass Could not retrieve file metadata" errors.
[2010/03/10 13:38:34] @ JJA joined channel #puppet
[2010/03/10 13:39:13] <madduck> alduin: it works on puppetmaster.madduck.net, which is also a client. I cannot get things to work on localhost though
[2010/03/10 13:39:16] @ Quit: mattwynne: Ping timeout: 265 seconds
[2010/03/10 13:39:34] <madduck> alduin: I am getting the same error too about metadata
[2010/03/10 13:40:06] <madduck> weaselkeeper: mind sharing your configuration?
[2010/03/10 13:40:41] <weaselkeeper> madduck: which part?
[2010/03/10 13:42:50] @ Quit: toi: Ping timeout: 260 seconds
[2010/03/10 13:43:05] <alduin> I'd be interested in the puppetmasterd section and the config for the client on that machine.
[2010/03/10 13:43:17] @ mvn071 joined channel #puppet
[2010/03/10 13:43:19] @ Quit: lilmatt: Read error: Connection reset by peer
[2010/03/10 13:43:21] @ lilmatt joined channel #puppet
[2010/03/10 13:43:23] <madduck> weaselkeeper: the puppet part, and then maybe DNS
[2010/03/10 13:44:34] <weaselkeeper> dns is a simple CNAME of puppet.domain.com pointing to the A record for the server running as the puppetmaster
[2010/03/10 13:46:21] <weaselkeeper> The puppet.conf on the server is pretty stock I think, but I have put it at http://pastie.org/863679
[2010/03/10 13:46:46] <ashp> arghhhhhhhhhhhhhh
[2010/03/10 13:46:47] <ashp> Mar 10 13:38:23 hlslinutil1 puppetmasterd[22440]: Mysql::Error: MySQL server has gone away: SELECT * FROM `hosts` WHERE (`hosts`.`name` = 'hlsnexus.law.harvard.edu') LIMIT 1
[2010/03/10 13:47:23] <ashp> i get the strangest goddamn errors with puppet lately
[2010/03/10 13:48:16] <alduin> weaselkeeper: Nothing for [puppetmasterd]?
[2010/03/10 13:48:17] <tim\|imac> ashp: check how many open connections your puppetmaster makes to mysql?
[2010/03/10 13:48:57] <weaselkeeper> just whatever the default is.
[2010/03/10 13:49:01] <ashp> too many probably, I've had max hosts issues before
[2010/03/10 13:49:03] * alduin twitches.
[2010/03/10 13:49:06] <ashp> i connected by hand however and it worked fine
[2010/03/10 13:49:17] <ashp> i wonder if i need to tweak mysql's max up or puppet's down
[2010/03/10 13:49:25] <tim\|imac> ashp: I had to make sure I had the currect mysql driver for ruby
[2010/03/10 13:49:31] <weaselkeeper> alduin: I think I can run puppetmaster and get it to spit out it's config, but I forget how.
[2010/03/10 13:49:34] <tim\|imac> otherwise it would make a mysql connection for every puppetrun
[2010/03/10 13:49:43] <ashp> right now it only has a single connection
[2010/03/10 13:49:47] <ashp> tim\|imac: what was the correct mysql driver?
[2010/03/10 13:49:51] <ashp> because I use RHEL everything ruby is a nightmare
[2010/03/10 13:50:16] <tim\|imac> ashp: in that case I can't help you, I'm on ruby... I just had to install libruby-mysql and it was fixed
[2010/03/10 13:50:18] <tim\|imac> magically
[2010/03/10 13:50:39] <ashp> you're on ruby? :D
[2010/03/10 13:51:26] @ Quit: TREllis: Ping timeout: 245 seconds
[2010/03/10 13:51:37] <tim\|imac> lol
[2010/03/10 13:51:42] <tim\|imac> I'm on debian, i meant
[2010/03/10 13:51:52] <tim\|imac> too many channels... too little brain-bandwidth
[2010/03/10 13:51:54] <ashp> ruby-mysql-2.7.3-1.el5
[2010/03/10 13:52:12] <ashp> * LOCAL GEMS *
[2010/03/10 13:52:13] <ashp> mysql (2.7)
[2010/03/10 13:52:17] <ashp> i have no idea what's in use :/
[2010/03/10 13:52:37] @ Quit: JJA: Ping timeout: 264 seconds
[2010/03/10 13:53:28] <tim\|imac> libmysql-ruby 2.7.4-1
[2010/03/10 13:53:46] <ashp> hmm, so it's probably not ruby-mysql then
[2010/03/10 13:53:59] <tim\|imac> yeah
[2010/03/10 13:54:00] <ashp> unless there's a major fix in .4
[2010/03/10 13:54:07] <tim\|imac> i have no idea, really
[2010/03/10 13:54:07] <ashp> do you also have a mysql gem?
[2010/03/10 13:54:12] <tim\|imac> we dont use gems
[2010/03/10 13:54:42] <ashp> I wonder how puppet decides what to connect with :)
[2010/03/10 13:55:30] <tim\|imac> ashp: check if the magiceightball is installed! ;-)
[2010/03/10 13:55:55] <ashp> shake, 8ball says "No way."
[2010/03/10 13:56:23] <madduck> weaselkeeper: how does the client know where to find the server? oh, it's using the default name puppet, eh?
[2010/03/10 13:58:26] @ Quit: lak: Quit: lak
[2010/03/10 13:59:25] @ lak joined channel #puppet
[2010/03/10 13:59:26] <weaselkeeper> madduck: correct
[2010/03/10 14:00:31] <madduck> this does not make me happy
[2010/03/10 14:00:43] <alduin> madduck: I concur.
[2010/03/10 14:02:01] <alduin> weaselkeeper: In your manifests, what are you using as the source => parameter for your file definitions?
[2010/03/10 14:03:00] <weaselkeeper> eg source => "puppet:///modules/yum-repos/koji-edge.repo"
[2010/03/10 14:03:50] <alduin> damnit.
[2010/03/10 14:03:52] <weaselkeeper> any experts on the filebucket stuff? Something isn't working correctly in the filebucket.addfile bit for me
[2010/03/10 14:04:02] <weaselkeeper> alduin: whats wrong?
[2010/03/10 14:04:40] <alduin> I was hoping for something earth-shattering that blew open why my client was having trouble grabbing files, but what you pasted is exactly how I'm doing it. =P
[2010/03/10 14:06:58] <weaselkeeper> run puppetmasterd in debug nodeamonize mode, and run a client against it.
[2010/03/10 14:07:12] <weaselkeeper> run the client in debug mode also
[2010/03/10 14:07:41] <alduin> That's exacly what I'm doing as we type. =)
[2010/03/10 14:09:04] <weaselkeeper> rofl
[2010/03/10 14:09:39] @ Quit: ahasenack: Ping timeout: 245 seconds
[2010/03/10 14:09:55] @ ahasenack joined channel #puppet
[2010/03/10 14:11:07] @ Quit: rcrowley: Quit: rcrowley
[2010/03/10 14:13:18] @ jes51 joined channel #puppet
[2010/03/10 14:14:21] @ Quit: jes5: Ping timeout: 245 seconds
[2010/03/10 14:16:47] @ pting joined channel #puppet
[2010/03/10 14:17:45] @ Quit: jes51: Ping timeout: 252 seconds
[2010/03/10 14:18:27] @ andreas__ joined channel #puppet
[2010/03/10 14:18:56] @ Quit: ggillies: Ping timeout: 245 seconds
[2010/03/10 14:19:14] @ ggillies joined channel #puppet
[2010/03/10 14:19:22] @ Quit: ahasenack: Ping timeout: 265 seconds
[2010/03/10 14:21:26] @ Quit: mpdehaan: Quit: mpdehaan
[2010/03/10 14:22:16] @ jes5 joined channel #puppet
[2010/03/10 14:24:00] <alduin> Nothing helpful, unfortunately.
[2010/03/10 14:24:19] <madduck> the "undefined method closed?" error happens in /usr/lib/ruby/1.8/net/http.rb:1060
[2010/03/10 14:24:39] <madduck> how stupid is ruby actually that this can even happen??
[2010/03/10 14:25:29] @ toi joined channel #puppet
[2010/03/10 14:26:23] <weaselkeeper> madduck: well...
[2010/03/10 14:26:45] <madduck> wow, and running puppetd with ruby --debug is enlightening too
[2010/03/10 14:26:57] <weaselkeeper> ruby does one thing very well. It attracts developers
[2010/03/10 14:27:21] <madduck> really? i find it repulsive, and I know I am not alone.
[2010/03/10 14:27:23] <weaselkeeper> but my Ire is reserved for rails.
[2010/03/10 14:27:32] <madduck> anyway, I think I found the error:
[2010/03/10 14:27:33] <madduck> Exception `OpenSSL::SSL::SSLError' at /usr/lib/ruby/1.8/openssl/ssl.rb:123 - hostname was not match with the server certificate
[2010/03/10 14:27:53] <weaselkeeper> madduck: I think you can add the certname specifically to your config.
[2010/03/10 14:27:54] <alduin> http://valinor.net/puppet.txt - that's my client debug output. Each file_metadata supports formats: line is for a different file definition on the same server in the same module, but with each run, different files throw the error.
[2010/03/10 14:28:41] <madduck> weaselkeeper: yeah, i know.
[2010/03/10 14:28:44] <madduck> thanks
[2010/03/10 14:30:32] <madduck> MAGIC
[2010/03/10 14:30:34] <madduck> it works!
[2010/03/10 14:30:39] <alduin> What'd you do?
[2010/03/10 14:30:44] <weaselkeeper> alduin, is this a new puppet setup? or something that broke after working?
[2010/03/10 14:30:49] <alduin> weaselkeeper: New.
[2010/03/10 14:31:21] <weaselkeeper> alduin: I'd setup a recipe for the client that does almost nothing, and see if it still breaks.
[2010/03/10 14:31:41] <weaselkeeper> that is, have a client that just contacts and changes say one file.
[2010/03/10 14:31:47] <alduin> On it.
[2010/03/10 14:31:54] <weaselkeeper> if the error is moving around, it's something below that point.
[2010/03/10 14:32:12] <weaselkeeper> there's no hard order to the modules that I know of.
[2010/03/10 14:32:40] <weaselkeeper> also, are you running puppetmaster via apache/passenger etc, or via the built in server?
[2010/03/10 14:32:43] @ Dis__ joined channel #puppet
[2010/03/10 14:33:04] <weaselkeeper> for debug, use the built in, because passenger especially is really sensitive to file ownership issues and stuff
[2010/03/10 14:33:07] <madduck> jamesturnbull: thanks for fixing the entry, the WYSIWYG editor should really do that too, not indent.
[2010/03/10 14:33:11] @ Quit: lak: Quit: lak
[2010/03/10 14:33:28] <Dis__> just commented on http://projects.reductivelabs.com/issues/2238 - a straight upgrade from 0.24.8 (no other changes) results in that "Failed to generate additional resources using 'eval_generate':" error
[2010/03/10 14:33:31] <jamesturnbull> madduck: it does for me ... I think this is another example of Martin and technology :)
[2010/03/10 14:33:35] @ Quit: suchu: Quit: ChatZilla 0.9.86 [Firefox 3.5.8/20100202165920]
[2010/03/10 14:33:58] <alduin> weaselkeeper: I'm using the built-in one, and scaled down to just one file, it does the same thing. Sometimes that file works, sometimes it doesn't.
[2010/03/10 14:34:21] <weaselkeeper> check your timeclocks on both machines. SSL doesn't like big differences
[2010/03/10 14:34:26] <jamesturnbull> madduck: but I'll look over ticket too and not just critique formatting :)
[2010/03/10 14:34:30] <madduck> jamesturnbull: i cannot imagine why I would see things differently. JavaScript is fully enabled.
[2010/03/10 14:34:33] <alduin> weaselkeeper: It's the same machine.
[2010/03/10 14:34:41] <madduck> jamesturnbull: just skip over my polemic ruby ranting. ;)
[2010/03/10 14:34:43] <weaselkeeper> ah, ignore that then :P
[2010/03/10 14:35:09] <alduin> trying puppetd with ruby --debug to see if I come up with the same thing madduck did.
[2010/03/10 14:35:09] <jamesturnbull> madduck: didn't even notice it ... :P
[2010/03/10 14:35:35] @ Quit: mvn071: Quit: Leaving
[2010/03/10 14:35:44] <madduck> jamesturnbull: that's because you never took me seriously. ;)
[2010/03/10 14:35:48] <weaselkeeper> alduin: I know that setting up my puppet server I went through several itterations before I got it mostly working, removing the rpms, blowing away all configs, and restarting. Might be worth a shot if you aren't too far in.
[2010/03/10 14:36:21] <jamesturnbull> madduck: do you need a hug? :)
[2010/03/10 14:36:30] <weaselkeeper> now If I can just beat filebucket into submission...
[2010/03/10 14:36:41] <jamesturnbull> madduck: that's an interesting error you've got - so specifying certname fixed it?
[2010/03/10 14:37:09] <madduck> jamesturnbull: no, g/server=/s/localhost/$(hostname --fqdn)/ did
[2010/03/10 14:37:14] <madduck> on puppet.conf
[2010/03/10 14:37:18] * Dis__ needs a hug, this lovely gem didn't show up when i did my tests. Only when I rolled out the new client to most of the servers :(
[2010/03/10 14:37:20] <Dis__> :)
[2010/03/10 14:38:25] @ Quit: bug: Quit: bug
[2010/03/10 14:39:33] <jamesturnbull> madduck: on the clients?
[2010/03/10 14:39:41] <weaselkeeper> Dis__: that's one reason I hate ruby, the gem system, it's like cpan, only with more pitfalls
[2010/03/10 14:40:41] <Dis__> pretty sure this isn't (directly) gem related - using ubuntu with native packages for all the ruby dependencies.
[2010/03/10 14:40:46] <madduck> jamesturnbull: this is just my laptop, running offline, with puppetmaster+puppet on the same host.
[2010/03/10 14:41:25] <madduck> grrrr
[2010/03/10 14:41:26] <madduck> err: //apt/File[/var/lib/puppet/modules/apt]/ensure: change from absent to directory failed: Cannot create /var/lib/puppet/modules/apt; parent directory /var/lib/puppet/modules does not exist
[2010/03/10 14:41:30] <weaselkeeper> Dis__ do a gem list, and see if local gems show up. Some packages just drop to shell and do a gem install
[2010/03/10 14:41:30] <madduck> just create it then!
[2010/03/10 14:41:33] @ Quit: spawnyd: Quit: leaving
[2010/03/10 14:42:01] <weaselkeeper> yeah, you might have to create some dirs like that. The installer isn't always as correct as it needs to be.
[2010/03/10 14:42:12] <jamesturnbull> madduck: ah okay
[2010/03/10 14:42:21] <jamesturnbull> madduck: thanks have thrown some text into the ticket
[2010/03/10 14:42:52] * weaselkeeper loves puppet, wishes Luke had preferred Python to Ruby :P
[2010/03/10 14:42:53] <Dis__> weaselkeeper: just capistrano + deps (net-ssh, etc), mongrel-cluster and uuidtools.
[2010/03/10 14:42:59] <Dis__> weaselkeeper++
[2010/03/10 14:43:01] <madduck> weaselkeeper++
[2010/03/10 14:43:04] <Dis__> lol
[2010/03/10 14:43:20] <weaselkeeper> Dis__: yeah, just see if you have local gems installed, you might be surprised
[2010/03/10 14:43:22] <madduck> Clint: are you actually working on a lua conf manager?
[2010/03/10 14:43:43] <Dis__> weaselkeeper: btw if you ever wanna do somethign fun, run strace on a ruby bin. 75% or more of it is just setting (and resetting) the sigprocmask.
[2010/03/10 14:43:54] <Dis__> weaselkeeper: i did, thats where the above list came from.
[2010/03/10 14:43:59] <alduin> ok, if I change server= to localhost, I get the OpenSSL exception. If I change it back to my fqdn, it switches to Exception `Errno::ECONNRESET' at /usr/local/lib/ruby/1.8/openssl/buffering.rb:237 - Connection reset by peer
[2010/03/10 14:44:08] <weaselkeeper> yeah, I do that a lot, and have to filter out the crap calls made. <Sigh>
[2010/03/10 14:44:18] <madduck> if I ask puppet to ensure /foo/bar/baz exists, but /foo/bar does not, don't you think it's reasonable for it to create the parent directory?
[2010/03/10 14:44:19] <weaselkeeper> Dis__ k
[2010/03/10 14:44:35] <weaselkeeper> madduck: no, it specifically won't
[2010/03/10 14:44:47] <weaselkeeper> you have to do the parent independantly I think
[2010/03/10 14:44:57] <weaselkeeper> there's a note in the wiki about it IIRC
[2010/03/10 14:45:12] <Dis__> madduck: it will automatically require it (for ordering enforcement) but it doens't know if you wnat a dir, a link, or who should own it.
[2010/03/10 14:45:37] <weaselkeeper> yeah, what he said
[2010/03/10 14:46:01] <Dis__> (at least one version didn't do the require properly, such that we do it by hand now anyway)
[2010/03/10 14:46:41] <madduck> well, this is about /var/lib/puppet/module/apt, which I use from my apt module. So who should ensure /var/lib/puppet/module should exist??
[2010/03/10 14:47:03] @ Quit: Robbie_: Remote host closed the connection
[2010/03/10 14:47:22] <Dis__> whoa. way worse than it used to be. http://pastebin.com/aXgNmYAx - 700,000 syscalls. 20,000 of them _NOT_ sigprocmask.
[2010/03/10 14:47:56] <Clint> madduck: yes, but i think that's off-topic here
[2010/03/10 14:48:04] <madduck> Clint: just checking ;)
[2010/03/10 14:48:08] @ xerxas joined channel #puppet
[2010/03/10 14:49:35] <Dis__> weaselkeeper: just OOC what would cause gems to break this in such a way?
[2010/03/10 14:49:47] <whack> Dis__: that's a ruby thing, there are patches floating around that fix it.
[2010/03/10 14:50:09] <whack> Dis__: http://timetobleed.com/fix-a-bug-in-rubys-configurein-and-get-a-30-performance-boost/
[2010/03/10 14:53:32] <Dis__> whack: that was just commentary for the ruby/python discussion. i'm way more interested in "Failed to generate additional resources using 'eval_generate':"
[2010/03/10 14:55:34] * alduin scraps the config and starts over. Again.
[2010/03/10 14:56:09] @ bug joined channel #puppet
[2010/03/10 15:02:19] @ Quit: Groenleer: Remote host closed the connection
[2010/03/10 15:03:35] @ lak joined channel #puppet
[2010/03/10 15:03:39] @ Groenleer joined channel #puppet
[2010/03/10 15:03:40] @ Quit: Groenleer: Changing host
[2010/03/10 15:03:40] @ Groenleer joined channel #puppet
[2010/03/10 15:04:56] @ fluxdude joined channel #puppet
[2010/03/10 15:06:46] @ Quit: c4rg: Ping timeout: 276 seconds
[2010/03/10 15:11:46] @ ezmobius joined channel #puppet
[2010/03/10 15:16:32] @ Quit: toi: Ping timeout: 265 seconds
[2010/03/10 15:16:49] <weaselkeeper> Dis__ sry, was afk, cause gems to break in what way?
[2010/03/10 15:17:25] <weaselkeeper> unless you mean my objection to gem install?
[2010/03/10 15:17:43] <weaselkeeper> because gem install grabs the latest version from the gem repo, which may or may not be the one you tested with.
[2010/03/10 15:18:05] <weaselkeeper> unless you specify version, which is almost never done.
[2010/03/10 15:18:24] @ Quit: nwp: Quit: Ex-Chat
[2010/03/10 15:21:04] @ Quit: ezmobius: Remote host closed the connection
[2010/03/10 15:26:51] @ Quit: giskard: Remote host closed the connection
[2010/03/10 15:27:59] @ giskard joined channel #puppet
[2010/03/10 15:31:26] @ blahdeblah joined channel #puppet
[2010/03/10 15:33:08] <alduin> What the heck would cause the built-in web server to reset the connection? How do I even go about debugging that?
[2010/03/10 15:33:09] @ Quit: Alagar: Read error: Connection reset by peer
[2010/03/10 15:33:18] @ Alagar joined channel #puppet
[2010/03/10 15:34:39] <joe-mac1> you don't, you stop using it casue it sucks
[2010/03/10 15:34:44] <joe-mac1> webrick is suitable for development only
[2010/03/10 15:35:07] <ashp> i used webbrick for production for two years :(
[2010/03/10 15:35:27] <alduin> What's the simplest alternative?
[2010/03/10 15:35:40] <ashp> passenger, probably, i set that up just this week
[2010/03/10 15:35:44] <ashp> and it wasn't very hard once i stopped making mistakes
[2010/03/10 15:36:21] @ Quit: f3ew: Ping timeout: 265 seconds
[2010/03/10 15:38:25] @ f3ew joined channel #puppet
[2010/03/10 15:39:23] <madduck> so, who's responsible for creating /var/lib/puppet/modules ?
[2010/03/10 15:39:46] @ Quit: Jailbait: Ping timeout: 245 seconds
[2010/03/10 15:40:23] @ Jailbait joined channel #puppet
[2010/03/10 15:40:38] <fzzzt> apache/mongrel is easy
[2010/03/10 15:43:08] @ fzzzt left channel #puppet ()
[2010/03/10 15:43:34] @ Quit: omry\|work: Ping timeout: 264 seconds
[2010/03/10 15:46:30] @ Quit: jaredrhine: Ping timeout: 265 seconds
[2010/03/10 15:47:02] @ omry\|work joined channel #puppet
[2010/03/10 15:54:52] @ toi joined channel #puppet
[2010/03/10 16:01:06] <Dis__> weaselkeeper: ended up at a meeting. blah. anyway. now fighting 'too many connections' as well :( this is just not going well
[2010/03/10 16:01:41] @ Quit: toi: Ping timeout: 256 seconds
[2010/03/10 16:01:42] <weaselkeeper> Dis__ you just have the one client trying to connect so far?
[2010/03/10 16:03:31] @ Quit: unxfrek: Ping timeout: 245 seconds
[2010/03/10 16:05:31] @ Quit: holden247: Quit: Ex-Chat
[2010/03/10 16:06:11] @ ezmobius joined channel #puppet
[2010/03/10 16:08:53] <alduin> Completly clean puppetmasterd instance/config and it still gets the same "Connection reset by peer" errors.
[2010/03/10 16:09:16] @ morphic joined channel #puppet
[2010/03/10 16:11:45] @ Quit: allsystemsarego: Quit: Leaving
[2010/03/10 16:13:54] <cwebber> anyone out there have a fact that generates a list of currently mounted nfs filesystems?
[2010/03/10 16:14:26] <cwebber> i am struggling to come up with the best set of commands to use and on which platform
[2010/03/10 16:15:21] @ Quit: omry\|work: Ping timeout: 260 seconds
[2010/03/10 16:17:41] @ unxfrek joined channel #puppet
[2010/03/10 16:21:27] <Dis__> weaselkeeper: no, still the same several hundred clients as before.
[2010/03/10 16:22:31] <alduin> Does anyone have a working example of an apache virtualhost for use with passenger? Not knowing anything about rails or passenger and not using ubuntu/RHEL, the instructions aren't very... useful. =P
[2010/03/10 16:22:31] <Dis__> seems like some big regressions in 0.25 though, between 'too many connections' and the eval_generate problem
[2010/03/10 16:24:29] @ mpdehaan_ joined channel #puppet
[2010/03/10 16:24:49] <cwebber> is there a way to tell facter to look in $DIR for facts so that I can test them?
[2010/03/10 16:25:07] <nigelk> alduin: there is an example config in the source tarball
[2010/03/10 16:25:28] <nigelk> http://github.com/reductivelabs/puppet/tree/master/ext/rack
[2010/03/10 16:25:42] <nigelk> cwebber: FACTERLIB=/some/dir facter
[2010/03/10 16:26:24] <cwebber> nigelk: and do I pass that to facter or set it as an env variable
[2010/03/10 16:26:56] <nigelk> it's an environment variable, so either set it or pass it on the command line like I did above
[2010/03/10 16:27:04] <alduin> nigelk: ok, but what goes in /etc/puppet/rack and /etc/puppet/rack/public?
[2010/03/10 16:27:17] <nigelk> alduin: http://github.com/reductivelabs/puppet/blob/master/ext/rack/manifest.pp :)
[2010/03/10 16:27:31] <cwebber> nigelk: thanks
[2010/03/10 16:28:11] <alduin> nigelk: Thanks - that seems to put several puzzle pieces into place. =P
[2010/03/10 16:28:12] @ padraig_lennon joined channel #puppet
[2010/03/10 16:28:38] @ padraig_lennon left channel #puppet ()
[2010/03/10 16:31:51] @ Quit: cliff-hm: Ping timeout: 245 seconds
[2010/03/10 16:32:08] @ ReinH joined channel #puppet
[2010/03/10 16:32:16] @ Quit: Dis__: Quit: Java user signed off
[2010/03/10 16:32:30] @ Quit: cwebber: Quit: cwebber
[2010/03/10 16:34:00] @ cwebber joined channel #puppet
[2010/03/10 16:35:32] @ Quit: unxfrek: Ping timeout: 258 seconds
[2010/03/10 16:36:25] @ jab_doa joined channel #puppet
[2010/03/10 16:38:49] @ Quit: cwebber: Client Quit
[2010/03/10 16:40:38] @ jaredrhine joined channel #puppet
[2010/03/10 16:42:53] <weaselkeeper> alduin: my puppetmaster.conf for apache/passenger is at http://pastie.org/864002
[2010/03/10 16:43:18] <weaselkeeper> I have iptables limiting what can reach that port to our network, so I didn't bother limiting it within apache.
[2010/03/10 16:45:34] <alduin> weaselkeeper: Thanks. I'm really starting to wonder if it wouldn't just be best to shell out for a VPS somewhere and spin up a puppetmaster there just to get it off the main box. This is getting ridiculous. =P
[2010/03/10 16:46:04] @ HouseAway is now known as DrHouseMD
[2010/03/10 16:47:39] @ magnachef joined channel #puppet
[2010/03/10 16:48:01] @ Quit: labrown: Quit: Leaving
[2010/03/10 16:48:06] @ Quit: fluxdude: Ping timeout: 245 seconds
[2010/03/10 16:49:42] <weaselkeeper> depending on how many clients you are going to serve, a dedicated server/vps for puppet master is definitely the way to go.
[2010/03/10 16:49:54] <alduin> 3. 10 at the outside.
[2010/03/10 16:49:57] <weaselkeeper> We run it on a small vps, but then, we are a hosting company, so....
[2010/03/10 16:50:36] <weaselkeeper> I like to have roles have their own system, even if it's just a vps on a host
[2010/03/10 16:50:39] @ Quit: swygue: Ping timeout: 252 seconds
[2010/03/10 16:50:47] <weaselkeeper> isolates things better.
[2010/03/10 16:51:07] @ cwebber joined channel #puppet
[2010/03/10 16:51:12] <weaselkeeper> and makes migrations a piece of cake if hardware takes a dive
[2010/03/10 16:51:36] @ mdxp joined channel #puppet
[2010/03/10 16:52:20] @ mdxp left channel #puppet ()
[2010/03/10 16:55:20] <jason^> how can i get this puppet-dashboard to create tables using specific credentials? it keeps trying to use root as the username
[2010/03/10 17:00:29] @ Quit: morphic: Read error: Connection reset by peer
[2010/03/10 17:04:55] @ dy64a joined channel #puppet
[2010/03/10 17:04:59] <dy64a> hallo
[2010/03/10 17:05:04] <dy64a> !list
[2010/03/10 17:05:09] @ dy64a left channel #puppet ()
[2010/03/10 17:08:08] @ morphic joined channel #puppet
[2010/03/10 17:08:26] @ Quit: afletcher: Quit: afletcher
[2010/03/10 17:09:15] <ReinH> jason^: change database.yml
[2010/03/10 17:09:43] @ OpenMedia joined channel #puppet
[2010/03/10 17:09:53] @ Djelibeybi joined channel #puppet
[2010/03/10 17:12:50] <jY> i'm trying to install dashboard.. its not creating the mysql database.. how can i tell it what user to use?
[2010/03/10 17:14:55] <ReinH> jY: change database.yml
[2010/03/10 17:15:12] <ReinH> see http://guides.rubyonrails.org/getting_started.html#configuring-a-database
[2010/03/10 17:16:45] @ Quit: kvick: Ping timeout: 265 seconds
[2010/03/10 17:18:10] @ kvick joined channel #puppet
[2010/03/10 17:24:01] <jY> http://pastebin.com/FHevmtfd
[2010/03/10 17:24:05] <jY> that is what i'm getting
[2010/03/10 17:24:17] <jY> cept the passwords match up
[2010/03/10 17:27:41] <jY> ok the same is wrong
[2010/03/10 17:27:46] <jY> its username: and password:
[2010/03/10 17:27:50] <jY> sample*
[2010/03/10 17:28:09] @ Quit: Babbelaar: Remote host closed the connection
[2010/03/10 17:30:15] <ReinH> jY: ah, that would explain it. Thanks
[2010/03/10 17:30:30] <ReinH> I'll get that fixed
[2010/03/10 17:30:48] @ Quit: erm_: Ping timeout: 252 seconds
[2010/03/10 17:33:52] @ unxfrek joined channel #puppet
[2010/03/10 17:36:32] <nasrat> evening
[2010/03/10 17:37:59] <ReinH> nasrat: ello
[2010/03/10 17:39:43] <jY> ReinH, what reports = setting do i need to set for puppetmaster.. i just have log
[2010/03/10 17:41:27] <ReinH> jY: you can rake reports:import to get old reports. See the "Live report aggregation" section of the README to set up the dashboard report processor :)
[2010/03/10 17:41:57] <jY> ReinH, puppet was never setup to do reports
[2010/03/10 17:42:58] <ReinH> basically put lib/puppet/puppet_dashboard.rb in Puppet's load path or add lib/puppet to $libdir in your puppet.conf and then use "puppet_dashboard"
[2010/03/10 17:43:51] <jY> easy enough
[2010/03/10 17:47:24] @ Quit: blahdeblah: Remote host closed the connection
[2010/03/10 17:48:07] <jY> works great
[2010/03/10 17:48:23] @ afletcher joined channel #puppet
[2010/03/10 17:48:50] @ Quit: jmccune: Ping timeout: 245 seconds
[2010/03/10 17:48:51] <nasrat> ReinH: long time no see
[2010/03/10 17:52:37] @ Quit: lak: Quit: lak
[2010/03/10 17:54:13] @ lak joined channel #puppet
[2010/03/10 17:55:19] @ Quit: uphillian: Quit: Leaving.
[2010/03/10 17:55:57] @ Quit: lak: Client Quit
[2010/03/10 18:01:16] @ gebi joined channel #puppet
[2010/03/10 18:06:26] @ Quit: kolla: Remote host closed the connection
[2010/03/10 18:09:12] <ReinH> nasrat: I guess so
[2010/03/10 18:09:15] <ReinH> :)
[2010/03/10 18:12:35] @ Quit: pheezy: Remote host closed the connection
[2010/03/10 18:12:56] @ Quit: rgsteele: Quit: ChatZilla 0.9.86 [Firefox 3.0.7/2009030423]
[2010/03/10 18:13:10] @ pheezy joined channel #puppet
[2010/03/10 18:14:20] @ Quit: andreas__: Quit: Leaving
[2010/03/10 18:14:50] @ blahdeblah joined channel #puppet
[2010/03/10 18:14:52] <jY> i have libdir = /opt/puppet-dashboard/lib/puppet and reports = puppet_dashboard but my puppetmaster is saying warning: No report named 'puppet_dashboard'
[2010/03/10 18:17:41] @ Quit: pheezy: Ping timeout: 256 seconds
[2010/03/10 18:19:23] @ Quit: unxfrek: Ping timeout: 256 seconds
[2010/03/10 18:19:54] <ReinH> jY: hmm... you can always put the puppet_dashboard.rb in $vardir/lib
[2010/03/10 18:20:09] <ReinH> not sure why wetting $libdir isn't working
[2010/03/10 18:21:11] @ MattyM joined channel #puppet
[2010/03/10 18:21:48] <ReinH> *setting
[2010/03/10 18:22:57] @ DrHouseMD is now known as HouseAway
[2010/03/10 18:26:00] @ Quit: bug: Quit: bug
[2010/03/10 18:29:20] @ Quit: joe-mac1: Read error: Connection reset by peer
[2010/03/10 18:33:56] @ fluxdude joined channel #puppet
[2010/03/10 18:33:57] @ Quit: notbrien: Quit: notbrien
[2010/03/10 18:37:01] @ kolla joined channel #puppet
[2010/03/10 18:40:24] @ erm_ joined channel #puppet
[2010/03/10 18:41:49] @ Quit: jab_doa: Quit: Verlassend
[2010/03/10 18:45:10] @ Quit: erm_: Ping timeout: 276 seconds
[2010/03/10 18:45:24] @ Quit: weaselkeeper: Quit: Leaving.
[2010/03/10 18:47:23] @ Quit: kaptk2: Quit: Leaving.
[2010/03/10 18:47:35] @ mdxp joined channel #puppet
[2010/03/10 18:49:55] @ weaselkeeper joined channel #puppet
[2010/03/10 18:51:51] @ Quit: xerxas: Quit: Leaving.
[2010/03/10 18:55:33] @ Quit: bobbyz_: Read error: Operation timed out
[2010/03/10 18:55:36] @ Quit: fluxdude: Ping timeout: 245 seconds
[2010/03/10 18:57:32] @ p3rror joined channel #puppet
[2010/03/10 18:59:17] @ Quit: shenson: Quit: WeeChat 0.3.0
[2010/03/10 19:01:22] @ erm_ joined channel #puppet
[2010/03/10 19:08:39] @ Quit: MattyM: Quit: ta ta
[2010/03/10 19:08:41] @ Quit: gebi: Ping timeout: 256 seconds
[2010/03/10 19:09:26] @ Quit: p3rror: Read error: Operation timed out
[2010/03/10 19:09:38] @ kvick_ joined channel #puppet
[2010/03/10 19:12:16] @ Quit: kvick: Ping timeout: 245 seconds
[2010/03/10 19:13:33] @ Quit: spencert: Quit: Leaving.
[2010/03/10 19:14:21] @ Quit: bobbyz: Ping timeout: 256 seconds
[2010/03/10 19:18:39] @ Quit: mpdehaan_: Quit: Leaving
[2010/03/10 19:20:26] @ Quit: giskard: Remote host closed the connection
[2010/03/10 19:20:29] @ Quit: kvick_: Ping timeout: 265 seconds
[2010/03/10 19:20:33] @ mdxp1 joined channel #puppet
[2010/03/10 19:20:47] @ Quit: mdxp: Read error: Connection reset by peer
[2010/03/10 19:21:09] @ Quit: Edgan: Read error: Connection reset by peer
[2010/03/10 19:22:04] @ kvick joined channel #puppet
[2010/03/10 19:24:17] @ p3rror joined channel #puppet
[2010/03/10 19:25:10] @ Quit: cwebber: Quit: cwebber
[2010/03/10 19:27:23] @ rcrowley joined channel #puppet
[2010/03/10 19:29:11] @ Edgan joined channel #puppet
[2010/03/10 19:32:43] @ Quit: ezmobius: Remote host closed the connection
[2010/03/10 19:35:12] @ Quit: nigelk: Ping timeout: 245 seconds
[2010/03/10 19:35:12] @ Quit: DmosEmp: Ping timeout: 245 seconds
[2010/03/10 19:35:30] @ xerxas joined channel #puppet
[2010/03/10 19:41:50] @ Quit: lordb: Read error: Operation timed out
[2010/03/10 19:43:22] @ Quit: blahdeblah: Ping timeout: 258 seconds
[2010/03/10 19:43:54] @ artista_frustrad joined channel #puppet
[2010/03/10 19:48:10] @ Quit: nexx: Quit: quit
[2010/03/10 19:48:47] @ bodepd left channel #puppet ()
[2010/03/10 19:50:24] @ swygue joined channel #puppet
[2010/03/10 19:52:21] @ Quit: nb: Read error: Connection reset by peer
[2010/03/10 19:54:40] @ nb joined channel #puppet
[2010/03/10 19:57:48] @ Quit: nb: Excess Flood
[2010/03/10 19:59:49] @ Quit: rmiller4pi8: Ping timeout: 260 seconds
[2010/03/10 19:59:51] <eric0> umm..just sanity checking... comparator matches against facter facts like $operatingsystem are inherntly case-insensitive, right?
[2010/03/10 20:00:19] @ Quit: swygue: Read error: Connection reset by peer
[2010/03/10 20:01:17] @ Quit: Djelibeybi: Quit: Leaving
[2010/03/10 20:01:41] <eric0> yes of course, just tested. not going crazy, just yet
[2010/03/10 20:02:40] @ nb joined channel #puppet
[2010/03/10 20:06:58] @ ahuman joined channel #puppet
[2010/03/10 20:07:13] @ swygue joined channel #puppet
[2010/03/10 20:12:31] @ jcesario joined channel #puppet
[2010/03/10 20:13:04] @ Quit: ahuman: Remote host closed the connection
[2010/03/10 20:18:54] @ Quit: alfism: Quit: http://opensolaris.com/
[2010/03/10 20:19:43] @ bodepd joined channel #puppet
[2010/03/10 20:19:50] @ bodepd left channel #puppet ()
[2010/03/10 20:22:55] @ Quit: londo: Read error: Operation timed out
[2010/03/10 20:23:53] <eric0> wow, that's surprising. in fact, if/else comparators are case-sensitive, but 'case' is not!
[2010/03/10 20:25:55] <eric0> http://pastie.org/864338
[2010/03/10 20:26:36] <eric0> ah #3229
[2010/03/10 20:26:37] <gepetto> eric0: #3229 is http://projects.reductivelabs.com/issues/show/3229 "Puppet - Bug #3229: Case regex are not case-insensitive - ReductiveLabs.com"
[2010/03/10 20:30:36] @ londo joined channel #puppet
[2010/03/10 20:31:47] @ blahdeblah joined channel #puppet
[2010/03/10 20:32:18] @ Quit: tonyskapunk: Ping timeout: 248 seconds
[2010/03/10 20:36:22] @ Quit: artista_frustrad: Ping timeout: 265 seconds
[2010/03/10 20:36:46] @ cliff-hm joined channel #puppet
[2010/03/10 20:44:36] @ tonyskapunk joined channel #puppet
[2010/03/10 20:48:25] @ Quit: cliff-hm: Ping timeout: 256 seconds
[2010/03/10 20:49:32] @ artista_frustrad joined channel #puppet
[2010/03/10 20:51:37] @ Quit: artista_frustrad: Remote host closed the connection
[2010/03/10 20:53:50] @ artista_frustrad joined channel #puppet
[2010/03/10 20:57:36] @ Quit: artista_frustrad: Client Quit
[2010/03/10 20:58:32] @ Quit: Alagar: Ping timeout: 268 seconds
[2010/03/10 20:59:27] @ WALoeIII joined channel #puppet
[2010/03/10 21:00:54] @ artista_frustrad joined channel #puppet
[2010/03/10 21:00:58] @ Quit: tonyskapunk: Quit: Leaving
[2010/03/10 21:05:12] @ nigelk joined channel #puppet
[2010/03/10 21:05:47] @ joe-mac joined channel #puppet
[2010/03/10 21:07:09] @ Quit: kubicek: Quit: kubicek
[2010/03/10 21:07:45] @ Quit: WALoeIII: Quit: Bai.
[2010/03/10 21:09:49] @ Quit: nigelk: Client Quit
[2010/03/10 21:16:36] @ m1nish joined channel #puppet
[2010/03/10 21:16:44] @ Quit: alexine_dsouza: Read error: Connection reset by peer
[2010/03/10 21:16:49] @ plathrop is now known as plathrop-away
[2010/03/10 21:18:25] @ Quit: artista_frustrad: Ping timeout: 265 seconds
[2010/03/10 21:20:05] @ Quit: jaredrhine: Ping timeout: 260 seconds
[2010/03/10 21:20:37] @ Quit: SEJeff: Quit: Terminated with extreme prejudice - dircproxy 1.2.0
[2010/03/10 21:22:35] @ grisu_cl joined channel #puppet
[2010/03/10 21:22:38] @ mdxp joined channel #puppet
[2010/03/10 21:22:50] @ Quit: mdxp1: Read error: Connection reset by peer
[2010/03/10 21:23:32] <ericlee> hi, I run puppetca --clean client2 then I want to resign the client2, what I shall do in the master and client2?
[2010/03/10 21:23:52] @ Quit: mdxp: Client Quit
[2010/03/10 21:24:34] <ohadlevy> ericlee: rm -rf ~puppet/ssl on the client2, run puppetd -tv, and then go to your master and sign the cert
[2010/03/10 21:27:49] <ericlee> thanks. btw, where I shall run puppetca --clean <client_name>? Master or Client or both?
[2010/03/10 21:28:00] <ohadlevy> ca is only on the master
[2010/03/10 21:28:44] <ericlee> Okay, thanks very much.
[2010/03/10 21:32:18] @ Quit: swygue: Ping timeout: 260 seconds
[2010/03/10 21:52:29] @ ahuman joined channel #puppet
[2010/03/10 21:52:45] @ tjoe joined channel #puppet
[2010/03/10 21:58:44] @ Quit: m1nish: Ping timeout: 246 seconds
[2010/03/10 22:01:06] @ Djelibeybi joined channel #puppet
[2010/03/10 22:01:14] @ cliff-hm joined channel #puppet
[2010/03/10 22:02:03] @ Quit: blahdeblah: Ping timeout: 268 seconds
[2010/03/10 22:02:41] @ grisu_cl left channel #puppet ()
[2010/03/10 22:04:53] @ Quit: tjoe: Quit: leaving
[2010/03/10 22:05:20] @ Chiku\|dc joined channel #puppet
[2010/03/10 22:08:49] @ Quit: Chiku: Ping timeout: 264 seconds
[2010/03/10 22:15:36] @ bug_ joined channel #puppet
[2010/03/10 22:15:42] @ Quit: bug_: Client Quit
[2010/03/10 22:16:11] @ bug_ joined channel #puppet
[2010/03/10 22:16:24] @ bodepd joined channel #puppet
[2010/03/10 22:19:37] @ blahdeblah joined channel #puppet
[2010/03/10 22:21:09] @ Quit: felipe`: Ping timeout: 276 seconds
[2010/03/10 22:24:10] @ Quit: Djelibeybi: Quit: Leaving
[2010/03/10 22:27:23] @ stewartl421 joined channel #puppet
[2010/03/10 22:29:46] @ Quit: Syn`work: Ping timeout: 264 seconds
[2010/03/10 22:31:07] @ Quit: cliff-hm: Read error: Operation timed out
[2010/03/10 22:42:05] @ Quit: bkero: Quit: ZNC - http://znc.sourceforge.net
[2010/03/10 22:42:35] @ bkero joined channel #puppet
[2010/03/10 22:42:36] @ Quit: bkero: Changing host
[2010/03/10 22:42:37] @ bkero joined channel #puppet
[2010/03/10 22:50:37] @ Djelibeybi joined channel #puppet
[2010/03/10 22:51:07] @ scz_ joined channel #puppet
[2010/03/10 22:51:52] <justdave> I added a new class to do setup for an application I'm putting on a box. My external classifier is properly adding that class to that host, as evidenced by the new class being listed at the top of the yaml/node file for that host after it checks in. but the rules from that class aren't getting run on the host (puppetd --test --debug doesn't show them getting looked at and skipped either).
[2010/03/10 22:52:06] <justdave> where else should I look to debug why those rules aren't getting run?
[2010/03/10 22:53:00] <eric0> pepper a few 'notice' statements at the top of the class or if there's any conditionals
[2010/03/10 22:57:14] <justdave> does puppetmaster have to be restarted to notice new .pp files in the classes directory?
[2010/03/10 22:57:28] <joe-mac> no
[2010/03/10 22:57:39] @ Quit: scz_: Ping timeout: 240 seconds
[2010/03/10 23:00:01] <justdave> now it seems to be working. typical
[2010/03/10 23:00:08] <justdave> magically fixes itself when I start looking for help
[2010/03/10 23:01:00] @ rmiller4pi8 joined channel #puppet
[2010/03/10 23:09:06] @ Quit: bodepd: Ping timeout: 265 seconds
[2010/03/10 23:14:48] @ Quit: p3rror: Ping timeout: 240 seconds
[2010/03/10 23:16:12] @ Quit: erm_: Ping timeout: 252 seconds
[2010/03/10 23:16:35] @ bodepd joined channel #puppet
[2010/03/10 23:24:19] @ Quit: vzctl_: Read error: Operation timed out
[2010/03/10 23:26:00] @ p3rror joined channel #puppet
[2010/03/10 23:27:52] @ vzctl_ joined channel #puppet
[2010/03/10 23:32:45] @ Quit: lilmatt: Quit: lilmatt
[2010/03/10 23:57:09] @ Quit: Bass10: Ping timeout: 245 seconds

Generated by irclog2html.py 2.8 by Marius Gedminas - find it at mg.pov.lt!