Wednesday, 2008-06-04

[2008/06/04 00:06:22] @ nvquang joined channel #puppet
[2008/06/04 00:17:39] @ Quit: johnf: Read error: 104 (Connection reset by peer)
[2008/06/04 00:25:19] @ ricky__ joined channel #puppet
[2008/06/04 00:25:54] @ Quit: ricky: Nick collision from services.
[2008/06/04 00:25:58] @ ricky__ is now known as ricky
[2008/06/04 00:26:26] @ Quit: ricky: Client Quit
[2008/06/04 00:26:30] @ ricky joined channel #puppet
[2008/06/04 00:35:04] @ johnf joined channel #puppet
[2008/06/04 00:39:24] @ f--z joined channel #puppet
[2008/06/04 00:39:37] @ Quit: flakrat: Read error: 113 (No route to host)
[2008/06/04 00:40:04] @ Quit: jvanzyl: Read error: 110 (Connection timed out)
[2008/06/04 00:41:38] @ Quit: lefant: Remote closed the connection
[2008/06/04 00:41:44] @ lefant joined channel #puppet
[2008/06/04 00:48:31] @ jvanzyl joined channel #puppet
[2008/06/04 00:59:42] <msf> hrm
[2008/06/04 01:00:15] <msf> is there any way from within a class to use facts about another node than the one the class is being applied to ?
[2008/06/04 01:01:37] <fujin> iClassify
[2008/06/04 01:03:55] @ Quit: \ask_:
[2008/06/04 01:29:59] @ andrewcshafer joined channel #puppet
[2008/06/04 01:36:34] @ Quit: nvquang: Remote closed the connection
[2008/06/04 01:44:11] <holoway> msf: and even then, really it only works well within a template
[2008/06/04 01:44:26] <holoway> msf: which works fine, in most cases
[2008/06/04 01:44:40] <holoway> otherwise, you'll want to model what your doing as resource definitions, and export/collect them
[2008/06/04 01:44:44] <holoway> instead of the raw data
[2008/06/04 01:47:21] <fujin> holoway: Just getting skype up
[2008/06/04 01:47:37] <holoway> fujin: I'm holoway42
[2008/06/04 01:48:47] <fujin> gohh
[2008/06/04 01:48:50] <fujin> my wife is in bed asleep
[2008/06/04 01:48:54] <fujin> it's 5:48pm!
[2008/06/04 01:48:56] <fujin> what a useless
[2008/06/04 02:00:35] @ Quit: f--z: Read error: 110 (Connection timed out)
[2008/06/04 02:05:33] @ vitasoy joined channel #puppet
[2008/06/04 02:06:06] <vitasoy> should I consider puppet to be another tool -- when comparing it to rpath/conary?
[2008/06/04 02:06:45] <vitasoy> i figure you can use conary's packaging to push out configuration changes, or like how ubuntu has some debs that alter certain text configs
[2008/06/04 02:07:28] <vitasoy> i intend to see for myself, i'm just wondering aloud to "look before I leap"
[2008/06/04 02:07:33] @ f--z joined channel #puppet
[2008/06/04 02:11:41] @ jvanzyl_ joined channel #puppet
[2008/06/04 02:11:42] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 02:22:13] @ Quit: johnf: Read error: 110 (Connection timed out)
[2008/06/04 02:28:54] @ Quit: silent: Remote closed the connection
[2008/06/04 02:29:56] @ shake-n-bake joined channel #puppet
[2008/06/04 02:36:51] @ Quit: vitasoy: "Leaving"
[2008/06/04 02:57:12] @ Quit: Ol_:
[2008/06/04 03:08:56] @ Quit: shake-n-bake:
[2008/06/04 03:14:35] @ Quit: andrewcshafer:
[2008/06/04 03:16:50] @ johnf joined channel #puppet
[2008/06/04 03:17:09] @ johnf left channel #puppet ("Leaving.")
[2008/06/04 03:24:27] @ DerekW joined channel #puppet
[2008/06/04 03:29:11] @ Quit: f--z: Read error: 110 (Connection timed out)
[2008/06/04 03:48:29] @ raasdnil left channel #puppet ()
[2008/06/04 03:56:52] <DerekW> jamesturnbull: Hi mate. Do you know what the future holds for git access over http?
[2008/06/04 04:07:38] @ thegcat joined channel #puppet
[2008/06/04 04:15:28] @ jsgotangco joined channel #puppet
[2008/06/04 04:31:21] @ Quit: ricky: Read error: 104 (Connection reset by peer)
[2008/06/04 04:31:42] @ ricky__ joined channel #puppet
[2008/06/04 04:40:37] @ Quit: tim\|imac: Read error: 110 (Connection timed out)
[2008/06/04 04:42:33] @ Quit: jvanzyl_:
[2008/06/04 04:51:55] @ Innocenti joined channel #puppet
[2008/06/04 04:58:13] @ DavidS joined channel #puppet
[2008/06/04 04:58:36] <DavidS> howdy!
[2008/06/04 04:59:28] @ fbe_ joined channel #puppet
[2008/06/04 05:00:00] @ Quit: fbe: Read error: 104 (Connection reset by peer)
[2008/06/04 05:03:08] @ Quit: randybias:
[2008/06/04 05:19:56] @ john1 joined channel #puppet
[2008/06/04 05:20:20] <duritong> hou
[2008/06/04 05:23:24] @ johnf joined channel #puppet
[2008/06/04 05:23:26] @ Quit: john1: Read error: 104 (Connection reset by peer)
[2008/06/04 05:39:12] <DerekW> fujin: Regarding #1348, should I be looking at the 0.24.x branch still?
[2008/06/04 05:52:09] @ Quit: jsgotangco: "brb"
[2008/06/04 05:54:20] @ kolla joined channel #puppet
[2008/06/04 05:59:20] @ sparanjape joined channel #puppet
[2008/06/04 06:02:58] @ roald joined channel #puppet
[2008/06/04 06:35:09] @ pookey left channel #puppet ()
[2008/06/04 06:48:27] @ Quit: ricky__: "leaving"
[2008/06/04 06:48:34] @ ricky joined channel #puppet
[2008/06/04 06:56:31] @ exodos joined channel #puppet
[2008/06/04 07:09:04] @ Quit: thegcat:
[2008/06/04 07:14:11] @ silent joined channel #puppet
[2008/06/04 07:14:53] <msf> is there any reason why this shouldn't work from within
[2008/06/04 07:14:58] <msf> a definition ?
[2008/06/04 07:15:28] <msf> import "foo/${name}.pp"
[2008/06/04 07:16:34] <msf> pastie: url me
[2008/06/04 07:16:52] <DavidS> msf: imports are done before interpreting defines
[2008/06/04 07:16:59] <pastie> http://pastie.org/208556 by msf.
[2008/06/04 07:17:06] <DavidS> put everytihng in there in a class and include the class
[2008/06/04 07:17:13] <DavidS> ~~
[2008/06/04 07:17:34] <DavidS> .. or another define
[2008/06/04 07:17:43] <msf> I don't think that is going to work
[2008/06/04 07:17:59] <msf> in my particular situation
[2008/06/04 07:18:07] <msf> I'm trying to so something kind of twisted
[2008/06/04 07:18:22] <msf> anyways.. time to go for the day
[2008/06/04 07:18:26] <msf> I will ponder it tomorrow
[2008/06/04 07:18:27] * DavidS hasn't seen the $name,
[2008/06/04 07:18:33] <DavidS> g'night!
[2008/06/04 07:18:46] <DavidS> you can use autoimport from modules
[2008/06/04 07:18:54] <msf> the name in this case is "test"
[2008/06/04 07:19:04] <msf> autoimport ?
[2008/06/04 07:19:22] <DavidS> "include $module::$name" will load $modulesdir/$module/manifests/$name.pp
[2008/06/04 07:19:41] <DavidS> can be a define too
[2008/06/04 07:19:54] <msf> even inside a define ?
[2008/06/04 07:20:17] <DavidS> include should to that
[2008/06/04 07:20:37] <msf> ok thanks for the tip
[2008/06/04 07:20:40] <msf> will try that later
[2008/06/04 07:20:50] <msf> :-)
[2008/06/04 07:20:55] <msf> gotta catch my train
[2008/06/04 07:20:59] <DavidS> c ya!
[2008/06/04 07:21:49] <silent> Hi.
[2008/06/04 07:21:51] <silent> After I reinstalled puppet server, client can't connect to server:
[2008/06/04 07:21:52] <silent> Certificates were not trusted: certificate verify failed
[2008/06/04 07:21:54] <silent> How can I fix this?
[2008/06/04 07:22:45] <DavidS> silent: get the $ssldir from the old installation or clean the $ssldir on all clients and re-issue certs
[2008/06/04 07:24:12] <silent> ok. thanks
[2008/06/04 07:39:52] <ska-fan> Hi. I'm getting Could not retrieve configuration: Could not find server puppet when starting puppetd
[2008/06/04 07:40:12] <ska-fan> what's that about? is puppet the host name it tries to connect to? where can I change it?
[2008/06/04 07:40:58] @ abbe joined channel #puppet
[2008/06/04 07:41:08] <abbe> hi channel
[2008/06/04 07:41:57] * abbe is trying to make redundant puppet servers, so I've placed configs on drbd partiton, and created a symlink /etc/puppet -> /mnt/drbd/puppet
[2008/06/04 07:42:48] <abbe> and now, whenever he starts puppetmasterd, it wipes off /etc/puppet symlink and creates a new /etc/puppet
[2008/06/04 07:44:05] * abbe is running puppetmaster 0.24.4-6 on Debian "etch"
[2008/06/04 07:44:33] @ Quit: choffee: Read error: 113 (No route to host)
[2008/06/04 07:46:42] <abbe> any ideas why is this ?
[2008/06/04 07:49:53] <Volcane> abbe: cos puppetmaster likes to do things its not been told to do
[2008/06/04 07:50:15] <abbe> Volcane: hmm...?
[2008/06/04 07:51:10] <Volcane> i think someone opened a bug for exactly this recently
[2008/06/04 07:51:20] <Volcane> search through the tickets and tell them its a big problem for you too :)
[2008/06/04 07:51:36] @ Quit: kolla: Remote closed the connection
[2008/06/04 07:51:44] <abbe> Volcane: oh, thanks, but this is really idiotic.
[2008/06/04 07:51:51] <Volcane> abbe: indeed
[2008/06/04 07:55:17] @ Quit: exodos: "leaving"
[2008/06/04 08:11:21] <abbe> http://reductivelabs.com/redmine/issues/show/650 is 370 days old
[2008/06/04 08:16:35] <Volcane> abbe: hmm, i rmember a bug filed last week or even this week
[2008/06/04 08:16:45] <Volcane> abbe: maybe the dude said he would file a bug and never did :P
[2008/06/04 08:16:55] @ pookey joined channel #puppet
[2008/06/04 08:17:04] <Volcane> yes
[2008/06/04 08:17:07] <Volcane> 1239
[2008/06/04 08:17:12] <Volcane> and #750
[2008/06/04 08:17:14] <gepetto> Volcane: #750 is http://reductivelabs.com/trac/puppet/ticket/750 "Puppetmasterd changes /etc/puppet/manifests symlink into directory"
[2008/06/04 08:18:12] <Volcane> so all i can suggest is add to the bug suggesting it really is a problem for you
[2008/06/04 08:18:26] <Volcane> or if you know ruby, make a patch
[2008/06/04 08:18:45] <pookey> hi all. We run our own distro that's based very much on debian ( it uses dpkg/apt/.debs ) - I'm wondering what steps I need to take to write a fact that will allow the distro to be correctly identified. Assuming I know how to write a check to identify our distro - what steps do I need to take to write/distribute the fact and use it within my puppet definitions?
[2008/06/04 08:19:20] <Volcane> pookey: http://reductivelabs.com/trac/puppet/wiki/AddingFacts
[2008/06/04 08:19:42] <pookey> Volcane: perfect, thanks :)
[2008/06/04 08:20:01] <pookey> now I just need to learn ruby ;)
[2008/06/04 08:20:12] @ DavidS left channel #puppet ()
[2008/06/04 08:20:18] <Volcane> how would you know if its your distro? is there some file identifying it in /etc or something?
[2008/06/04 08:22:51] <pookey> well, there will be, at the moment it's a bit nasty in that we will check for a file called /lib/synos/startup - but.. don't help me with the ruby bit, I'll figure it out :)
[2008/06/04 08:23:33] <Volcane> pookey: kewl, well what u need sounds very easy :)
[2008/06/04 08:25:33] <pookey> yeah, it's a good introduction thing I think... I'm not totally sold on the idea yet, but... I'm getting there :)
[2008/06/04 08:27:34] <Volcane> well your custom fact shouldnt need more than 3 lines code :)
[2008/06/04 08:27:38] <Volcane> so not a big ruby intro
[2008/06/04 08:33:39] @ thegcat joined channel #puppet
[2008/06/04 08:47:47] <sparanjape> hey guys
[2008/06/04 08:48:09] <sparanjape> i'm getting Could not request certificate: Certificate does not match private key error when i try to restart puppet on my client
[2008/06/04 08:48:43] <sparanjape> i deleted my ssl directory under /var/lib/puupet
[2008/06/04 08:48:56] <sparanjape> did a puppetca --clean servername.pem
[2008/06/04 08:49:09] <sparanjape> restarted puppet-master & puppetd..
[2008/06/04 08:49:13] <sparanjape> still the error persists
[2008/06/04 08:57:04] @ Quit: abbe: Read error: 113 (No route to host)
[2008/06/04 08:58:49] @ Quit: MrProper__: "Leaving"
[2008/06/04 09:02:35] <ashp> holoway: Slowest replying ever from my part, but if I use nodes.pp I can call say, network::ip {} as a define. I assume to do that in iclassify I just throw it in as a tag?
[2008/06/04 09:05:49] @ kambiz joined channel #puppet
[2008/06/04 09:09:22] @ mccune joined channel #puppet
[2008/06/04 09:09:50] @ mccune is now known as jmccune
[2008/06/04 09:11:46] @ Quit: jmccune: Client Quit
[2008/06/04 09:12:41] @ mccune joined channel #puppet
[2008/06/04 09:13:07] @ mccune is now known as jmccune
[2008/06/04 09:28:00] @ Quit: thegcat:
[2008/06/04 09:32:06] <ashp> I kind of wish I could do environments from nodes.pp, then I wouldn't need an external node database.
[2008/06/04 09:37:54] @ Quit: kambiz: "Leaving"
[2008/06/04 09:46:40] @ shenson_not_here is now known as shenson
[2008/06/04 09:49:31] <jamesturnbull> gepetto: seen lak?
[2008/06/04 09:49:32] <gepetto> jamesturnbull: lak was last seen 21 hours, 29 minutes and 52 seconds ago, quitting IRC ()
[2008/06/04 09:49:51] <jamesturnbull> gepetto: please update yourself to retrieve redmine urls
[2008/06/04 09:57:51] <ashp> arghhhhhhhhhhhh, remind me to kill holoway :(
[2008/06/04 09:58:15] <ashp> jamesturnbull: Is there any technical reason you've seen that environments aren't allowed to come from node{} statements?
[2008/06/04 09:59:47] <ashp> I've just discovered I have to do all the checkout/install of iclassify just to run icagent it seems :/
[2008/06/04 09:59:55] <ashp> I wonder if I can just check it out adn run it from there to register hosts..
[2008/06/04 10:00:06] <ashp> So I am back to wishing I didn't have external nodes JUST for environments
[2008/06/04 10:03:14] @ h1d joined channel #puppet
[2008/06/04 10:03:26] <jamesturnbull> ashp: ah you'd have to ask holoway
[2008/06/04 10:04:29] <jamesturnbull> ashp: but as to environments from nodes... hmmm not really sure I understand
[2008/06/04 10:04:46] <jamesturnbull> ashp: you set enviroments at the level up from manifests
[2008/06/04 10:08:48] @ h1d left channel #puppet ("Leaving")
[2008/06/04 10:11:01] <ashp> It's just a frustrating thing in that I require all this additional infrastructure and work
[2008/06/04 10:11:07] <ashp> just to provide environments
[2008/06/04 10:11:18] <ashp> and I don't grasp what's so different from looking up a node in ldap to looking up a node in a node statement
[2008/06/04 10:31:54] @ andrewcshafer joined channel #puppet
[2008/06/04 10:33:36] @ kolla joined channel #puppet
[2008/06/04 10:41:23] @ jvanzyl joined channel #puppet
[2008/06/04 10:43:58] @ Quit: kolla: Remote closed the connection
[2008/06/04 10:44:15] @ kolla joined channel #puppet
[2008/06/04 10:46:42] @ brscott joined channel #puppet
[2008/06/04 10:46:53] * Volcane is still happy with individual node files, and each day or listening to ashp makes me happier :P
[2008/06/04 10:47:48] @ martha joined channel #puppet
[2008/06/04 10:48:32] @ brscott left channel #puppet ()
[2008/06/04 10:48:36] <pookey> ra! I have anohter question. I run 'puppetd --server... --test', and I see "notice: Starting catalog run \n wrong number of arguments (2 for 1) \n wrong number of arguments (2 for 1)" - but.... no information as to what's causing that error
[2008/06/04 10:48:43] <pookey> can someone suggset a way of debugging it?
[2008/06/04 10:49:45] @ Quit: andrewcshafer:
[2008/06/04 10:51:13] @ tim\|imac joined channel #puppet
[2008/06/04 10:53:07] <ashp> Volcane: to be honest I was happier with node files
[2008/06/04 10:53:20] <ashp> Volcane: But the environments let's me tweak stuff easily and maintain different sets of modules
[2008/06/04 10:53:29] <ashp> Volcane: yet for no reason I can figure out you can only do that if you query an external tool :/
[2008/06/04 10:53:48] <Volcane> ashp: i have environments with node files just fine?
[2008/06/04 10:54:08] <Volcane> ashp: or arent you saying that it wasnt possible before, maybe I'm not following :)
[2008/06/04 10:54:30] <ashp> The docs say it doesn't work
[2008/06/04 10:54:32] <ashp> what do you do to make it work?
[2008/06/04 10:55:19] <Volcane> well, i create a custom fact that parses a file /etc/facts.txt full of all sorts, one of the facts is environmnet
[2008/06/04 10:55:22] <Volcane> that works
[2008/06/04 10:55:31] <Volcane> other option is to push puppet.conf out to clients based on what environment u need them in
[2008/06/04 10:55:59] <Volcane> not sure you can just set $environment in a node file though, cant say i tried
[2008/06/04 10:56:39] <ashp> Oh ok, that's the thing I'm complaining about
[2008/06/04 10:56:56] <Volcane> why is pushing out puppet.conf's not a viable alternative for you?
[2008/06/04 10:57:12] <ashp> Well, my worry is how do I easily maintain that?
[2008/06/04 10:57:23] <ashp> I could use a template that sets an environment based on a variable
[2008/06/04 10:57:27] <Volcane> yeah
[2008/06/04 10:57:28] <ashp> but then for the first run it'll pick up development as a default
[2008/06/04 10:57:38] <ashp> maybe there's a way to set the default environment to something else
[2008/06/04 10:57:53] <Volcane> ashp: nods, keep your 'development' environment really minimal, just takes care of small bootstrapping bits
[2008/06/04 10:57:54] <ashp> I could set up like, 'default', and then in there JUST have a single module that sets the environment
[2008/06/04 10:58:01] <Volcane> put down facts, set the right environment etc
[2008/06/04 10:58:02] <ashp> I was using development, foolishly, for development :)
[2008/06/04 10:58:11] <Volcane> prolly is a way
[2008/06/04 10:58:17] <ashp> I might do exactly that, and have a minimal development if i can't just change it in the conf
[2008/06/04 10:58:34] <ashp> I wonder..
[2008/06/04 10:58:42] <Volcane> yeah, while i dont do it like that, now that i have thought about it for you, it does seem like a fine idea :)
[2008/06/04 10:58:42] <ashp> right now I have import "template" in my site.pp
[2008/06/04 10:58:51] <ashp> I wonder if there's a way to have a template.pp under each environment
[2008/06/04 10:58:57] <ashp> that sets different baseclasses etc
[2008/06/04 10:59:16] <ashp> That would be a really easy way to run things rather than addign logic into the template.pp to set baseclass different with a switch or something
[2008/06/04 10:59:21] <Volcane> ashp: just setting environment=whatever in puppetmaster decides the default environment
[2008/06/04 10:59:51] <Volcane> ie. inside [puppetmaster] section
[2008/06/04 11:00:19] <Volcane> so make a bootstrap environment
[2008/06/04 11:00:24] <Volcane> i like this, I'm gonna do the same.
[2008/06/04 11:02:30] <ashp> :)
[2008/06/04 11:02:33] <ashp> it's actually a really nice idea!
[2008/06/04 11:04:15] <Volcane> I'd go a looong way to make this work rather than introduce external tools like iclassify, I'm very much against over complexity on the puppetmasters
[2008/06/04 11:05:32] <ashp> The external node database has been nothing but extra complexity for little gain
[2008/06/04 11:05:39] <ashp> we only have like 30 nodes, maybe if we had thousands
[2008/06/04 11:05:44] <Volcane> indeed
[2008/06/04 11:05:50] <ashp> the other thing is I can always maintain iclassify for scripting purposes
[2008/06/04 11:05:54] <ashp> and just not drag it into puppet
[2008/06/04 11:06:03] <ashp> it meant during kickstart i had to install iclassfy, some ruby gems, register the server..
[2008/06/04 11:06:13] <ashp> None of it was 'hard', but the issue I have is readability
[2008/06/04 11:06:23] <ashp> with node statements you can see easily what's included, add comments, call defines..
[2008/06/04 11:06:50] <Volcane> yeah, nasty. yeah i avoid too much inheritance etc in node files as well
[2008/06/04 11:07:08] <ashp> before I go back to nodes I should really find out
[2008/06/04 11:07:17] <ashp> why it reset my network to nothing on the next run :)
[2008/06/04 11:08:06] <ashp> I have $ip = "140.247.207.210" for example in the node "blah", and then in the baseclass that's included I have
[2008/06/04 11:08:22] <ashp> oh, I moved it from baseclass to site.pp
[2008/06/04 11:08:32] <ashp> I bet if I put it back it'll work :)
[2008/06/04 11:08:45] <Volcane> theres issues with inheritance in nodes and node variables, not sure if thats whats bitig you
[2008/06/04 11:09:41] <ashp> Well I think it reads site.pp stuff and processes it before doing the nodes
[2008/06/04 11:09:50] <ashp> when I called them from external it got the variables before processing site.pp
[2008/06/04 11:10:08] * Volcane 's site.pp just includes nodes, classes, nothing else
[2008/06/04 11:10:41] <ashp> I was working on ways to force servers to set up the network before anything else
[2008/06/04 11:10:41] <Volcane> anyway, gotta go improve my memcache monitoring
[2008/06/04 11:10:45] <ashp> as I can't add global dependencies :)
[2008/06/04 11:10:57] <Volcane> ashp: ah, well, bootstrap environment :P
[2008/06/04 11:11:32] <ashp> i'm working on that right now, i really like the idea of it
[2008/06/04 11:11:45] <Volcane> kewl, let me know how it works out I'll be keen to hear
[2008/06/04 11:11:49] <ashp> I will add the network, repos and environment into it
[2008/06/04 11:12:01] <ashp> oh i'll post on the list if it works nicely as it's a good plan
[2008/06/04 11:13:08] <Volcane> sweet
[2008/06/04 11:16:11] @ andrewcshafer joined channel #puppet
[2008/06/04 11:24:33] <pookey> fujin: ping
[2008/06/04 11:26:10] <pookey> fujin: just letting you know RE #1347, I'm here if you want any more information to help track down the issue
[2008/06/04 11:28:16] <pookey> unfortunatly, I'm a ruby noob :)
[2008/06/04 11:29:47] <pookey> I have a feeling there's probbaly some ext ention/stack trace being eaten somewhere that would show useful info, behond that... I'm at a loss currently
[2008/06/04 11:37:50] @ Quit: Innocenti: Client Quit
[2008/06/04 11:42:33] @ Quit: kolla: Remote closed the connection
[2008/06/04 11:59:04] @ Quit: andrewcshafer:
[2008/06/04 12:01:52] @ andrewcshafer joined channel #puppet
[2008/06/04 12:04:03] <ashp> Hmm.
[2008/06/04 12:04:14] <ashp> I wonder if I can do a case statement around an import in site.pp
[2008/06/04 12:04:26] <ashp> so I can import modules/$environment/template
[2008/06/04 12:04:35] <Volcane> nods, you'd think you could
[2008/06/04 12:04:54] <ashp> Maybe I'll just have to put the case statement in the standard template and just provide a different baseclass if the environment is boostrap
[2008/06/04 12:05:27] <ashp> I'm not sure when it would evalulate $environment
[2008/06/04 12:06:04] <DerekW> jamesturnbull: You about?
[2008/06/04 12:06:13] <DerekW> Quick Q about ipmess.rb facts
[2008/06/04 12:06:41] <DerekW> I know you are up till about 1am in Oz ;-)
[2008/06/04 12:07:25] @ flakrat joined channel #puppet
[2008/06/04 12:15:01] <pookey> i don't surpose anyone happens to have a dell PE2850 lying about they could look at for me do they? :)
[2008/06/04 12:15:12] <ashp> Oh god, what have I done.
[2008/06/04 12:15:30] <ashp> Could not retreive catalog: undefined method 'safeevaluate' for nil:NilClass at templates.pp:45
[2008/06/04 12:15:58] <Volcane> ashp: hehe
[2008/06/04 12:16:12] <ashp> this is with a case {} around my baseclass
[2008/06/04 12:17:00] <stick> does anyone have an example type that modifies entries on a single line?
[2008/06/04 12:17:28] <sigmonsays> somehow puppet discovered the hostname of the machine but the system command `hostname` says Unknown host. Are there variables I could use in puppet to put the correct entries into /etc/hosts ?
[2008/06/04 12:17:29] <ashp> This safeevaluate thing sounds bad.
[2008/06/04 12:17:32] <stick> or more specifically has anyone done any work around typing sshd_config (and even more specifically AllowGroups/Users)
[2008/06/04 12:17:57] <ashp> andrewcshafer: you should totally wake up and help ;)
[2008/06/04 12:18:37] <martha> sigmonsays: http://pastie.caboo.se/208714
[2008/06/04 12:20:26] <andrewcshafer> ashp: I'm in the training class trying to learn how to use puppet :) Can I see a pastie?
[2008/06/04 12:21:05] <sigmonsays> cheers martha
[2008/06/04 12:23:03] <sigmonsays> :: is basically / in a module path right?
[2008/06/04 12:23:19] <martha> yes
[2008/06/04 12:23:28] <sigmonsays> so you can include "dns::hosts::default" and dns/init.pp knows how to load the rest.
[2008/06/04 12:23:31] @ plathrop joined channel #puppet
[2008/06/04 12:23:32] <sigmonsays> ok. just wanted to make sure
[2008/06/04 12:23:33] <martha> that file is in modules/dns/manifests/hosts/default.pp
[2008/06/04 12:24:46] <ashp> andrewcshafer: I just changed everything to a different method, let me test this first :)
[2008/06/04 12:25:47] @ plathrop_ joined channel #puppet
[2008/06/04 12:28:23] @ Quit: DerekW: "Leaving"
[2008/06/04 12:30:20] @ Quit: markl_: "Lost terminal"
[2008/06/04 12:32:17] <ashp> This is tricker than I hoped.
[2008/06/04 12:34:07] @ markl_ joined channel #puppet
[2008/06/04 12:37:17] * Volcane will have to try tonight :)
[2008/06/04 12:37:43] <Volcane> though i suspect your whole setup is way more complex than mine, I'm sure it'll be trivial to get going for me with my manifests
[2008/06/04 12:46:27] @ Quit: plathrop_: Remote closed the connection
[2008/06/04 12:46:29] @ Quit: plathrop: Remote closed the connection
[2008/06/04 12:46:58] @ plathrop joined channel #puppet
[2008/06/04 12:47:44] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 12:47:57] @ jvanzyl joined channel #puppet
[2008/06/04 12:50:04] @ jvanzyl_ joined channel #puppet
[2008/06/04 12:50:36] @ Quit: jvanzyl: Connection reset by peer
[2008/06/04 12:51:22] @ jvanzyl joined channel #puppet
[2008/06/04 12:51:24] @ Quit: jvanzyl_: Read error: 104 (Connection reset by peer)
[2008/06/04 12:53:42] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 12:54:42] @ jvanzyl joined channel #puppet
[2008/06/04 12:59:44] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 13:00:12] @ jvanzyl joined channel #puppet
[2008/06/04 13:06:00] @ Quit: roald: Remote closed the connection
[2008/06/04 13:07:01] <Volcane> ashp: i got it working.
[2008/06/04 13:07:37] <Volcane> ashp: fresh installed machine uses a default node, and defaults to bootstrap enviroment, it then fetches custom facts, does some general fiddling like delete junk yum repos
[2008/06/04 13:07:52] <Volcane> ashp: 2nd puppet run it is in the production/development/whatever environment and does the rest
[2008/06/04 13:08:13] <ashp> wow, you're smarter than me
[2008/06/04 13:08:39] <Volcane> so my bootsrap environment has no nodes, just default node
[2008/06/04 13:08:50] <Volcane> that includes the puppet client, custom facts etc
[2008/06/04 13:09:02] <Volcane> 2nd run based on data in the customfact its then in the righ environment
[2008/06/04 13:09:08] <ashp> Hmm, I didn't use the custom node idea, because I set a hostname as part of the kickstart
[2008/06/04 13:09:09] <Volcane> and uses the node file in that environment
[2008/06/04 13:09:12] <ashp> er, default node
[2008/06/04 13:09:31] <Volcane> yeah, but how will you have a minimal run if you use a known node?
[2008/06/04 13:09:36] <ashp> I was struggling with how to pick the stuff to run on the nodes depending on what environment exists
[2008/06/04 13:09:41] <Volcane> maintain different node files depending on environment?
[2008/06/04 13:09:58] <Volcane> ashp: hmm
[2008/06/04 13:09:58] <ashp> well what I was doing was running a define called defaultclass
[2008/06/04 13:10:03] <ashp> providing the environment to that define
[2008/06/04 13:10:08] <ashp> and then in the define doing case $name
[2008/06/04 13:10:14] <ashp> and bootstrap: {include bootstrap}
[2008/06/04 13:10:22] <ashp> but that didn't work :)
[2008/06/04 13:10:26] <Volcane> right, seee, i keep things simple :P
[2008/06/04 13:10:38] <ashp> I realised if there's no $environment set at all
[2008/06/04 13:10:39] <Volcane> will msg you rather than bore the gneral # ppl
[2008/06/04 13:10:48] <ashp> hmm, In a case can I do "":
[2008/06/04 13:12:07] <ashp> Can I do "": to match on an empty variable?
[2008/06/04 13:12:08] <ashp> in a case
[2008/06/04 13:12:44] <benp-> ive seen it done
[2008/06/04 13:12:53] <ashp> it's ok I didn't realise that templatedir existed
[2008/06/04 13:12:57] <ashp> that solves all my problems
[2008/06/04 13:14:40] <ashp> if you include modules that don't exist as part of a baseclass
[2008/06/04 13:14:47] <ashp> do they get ignored if in an environment that doesn't provide them?
[2008/06/04 13:14:49] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 13:15:20] @ jvanzyl joined channel #puppet
[2008/06/04 13:17:53] @ Quit: sparanjape: "If your not living on the edge, you're taking up too much space"
[2008/06/04 13:21:15] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 13:21:29] @ jvanzyl joined channel #puppet
[2008/06/04 13:23:25] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 13:24:35] @ muerr joined channel #puppet
[2008/06/04 13:24:49] @ jvanzyl joined channel #puppet
[2008/06/04 13:25:25] <muerr> Ah, finally. http://github.com/jtimberman/puppet/tree/master
[2008/06/04 13:25:30] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 13:26:05] @ jvanzyl joined channel #puppet
[2008/06/04 13:28:34] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 13:29:00] @ jvanzyl joined channel #puppet
[2008/06/04 13:30:27] <ashp> i am being driven insane by this
[2008/06/04 13:30:54] <ashp> muerr: Your modules?
[2008/06/04 13:30:55] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 13:31:17] @ jvanzyl joined channel #puppet
[2008/06/04 13:31:31] <ashp> I should steal the dell module as we use dell servers
[2008/06/04 13:31:36] <ashp> i don't even install that stuff
[2008/06/04 13:31:48] <muerr> ashp: hehe
[2008/06/04 13:31:59] <muerr> ashp: yeah thats what i've been given the ok on posting.
[2008/06/04 13:32:15] <muerr> there's all kinds of implied configuration that i didn't document (and probably won't)
[2008/06/04 13:32:17] <ashp> :)
[2008/06/04 13:32:26] <muerr> see also the disclaimer in my group posting.
[2008/06/04 13:32:30] <ashp> it's ok, my modules are an incesteous nest of terror when it comes to things like that
[2008/06/04 13:32:38] <muerr> terror and woe!
[2008/06/04 13:32:54] <muerr> the md3000 stuff is a work in progress, as is the heartbeat.
[2008/06/04 13:32:56] <ashp> we're busy adding a default environment 'bootstrap', that'll add puppet clients to an environment pulled from a variable set in nodes.pp, it's horrible and doesn't work properly
[2008/06/04 13:33:00] <ashp> but it means no more external node stuff
[2008/06/04 13:33:51] <ashp> so why are they so conservative about letting you publish this stuff?
[2008/06/04 13:36:46] <muerr> primarily that we maintain a vendor neutral stance as far as our training/courses go, and senior management doesn't want anyone to think that we're "endorsing" particular tools.
[2008/06/04 13:36:47] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 13:36:54] @ jvanzyl joined channel #puppet
[2008/06/04 13:37:20] <muerr> and it took awhile for me to take the 10 minutes to actually push it out.
[2008/06/04 13:37:23] <muerr> :)
[2008/06/04 13:38:07] <benp-> sounds like you work in a big organisation
[2008/06/04 13:42:19] <muerr> It sounds that way.
[2008/06/04 13:43:59] @ jvanzyl_ joined channel #puppet
[2008/06/04 13:44:00] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 13:46:03] <ashp> ahhh, neutrality, i get you
[2008/06/04 13:46:27] <ashp> so, my next step is to hack github and add comments all through your tree saying ## USE DELL HERE BECAUSE HP ARE A TERRIBLE MONSTER OF A COMPANY
[2008/06/04 13:46:47] <muerr> Okay.
[2008/06/04 13:47:02] <ashp> "We here at SANS despise mysql"
[2008/06/04 13:47:11] <muerr> Its set up on my own github account, so SANS could easily deny any association :-)
[2008/06/04 13:47:17] <ashp> that's no fun :)
[2008/06/04 13:47:22] <muerr> That was on purpose.
[2008/06/04 13:47:30] <ashp> i'm just glad i don't ahve a commit history on github
[2008/06/04 13:47:39] <ashp> because most of my commit messages aren't... publishable
[2008/06/04 13:48:03] @ jvanzyl joined channel #puppet
[2008/06/04 13:48:28] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 13:49:40] @ Quit: jvanzyl_: Read error: 104 (Connection reset by peer)
[2008/06/04 13:50:19] <muerr> lol
[2008/06/04 13:50:30] @ jvanzyl joined channel #puppet
[2008/06/04 13:50:40] <muerr> most of mine are ... repeats. that may not be relevant to the actual files being committed.
[2008/06/04 13:51:00] <ashp> actually 90% of mine, on checking are
[2008/06/04 13:51:03] <muerr> i have an alias for svn ci -F ~/svnlog, and svnlog may not be updated necessarily.
[2008/06/04 13:51:03] <ashp> fix?
[2008/06/04 13:51:06] <ashp> and test
[2008/06/04 13:51:24] <ashp> 90% of the time it's dozens of small changes to try and fix whatever I broke this time
[2008/06/04 13:52:03] @ Quit: jvanzyl: Connection reset by peer
[2008/06/04 13:52:07] @ jvanzyl joined channel #puppet
[2008/06/04 13:52:29] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 13:54:12] @ jvanzyl joined channel #puppet
[2008/06/04 13:55:40] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 13:56:35] @ jvanzyl joined channel #puppet
[2008/06/04 13:57:50] <muerr> :-)
[2008/06/04 13:58:09] <muerr> someone needs to disable their autorejoin on disconnect :-\
[2008/06/04 13:59:43] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 13:59:44] <benp-> whats wrong with HP?
[2008/06/04 13:59:57] <benp-> hp > dell
[2008/06/04 14:00:25] <ashp> i prefer hp machines
[2008/06/04 14:03:52] @ jvanzyl joined channel #puppet
[2008/06/04 14:05:57] <muerr> We've already got a pile of Dell at our old data center, and were able to get pretty good pricing on the new Dells, so therefore, we have Dells :-)
[2008/06/04 14:06:06] @ Quit: ssm: Remote closed the connection
[2008/06/04 14:06:19] @ ssm joined channel #puppet
[2008/06/04 14:06:37] <ashp> We use dells because we use dells
[2008/06/04 14:06:41] <ashp> that's the logic as best I can tell :)
[2008/06/04 14:06:45] <muerr> rad.
[2008/06/04 14:07:48] @ jvanzyl_ joined channel #puppet
[2008/06/04 14:08:58] <benp-> we don't use dells because they change too quickly
[2008/06/04 14:09:07] <benp-> we want to be able to buy the same servers in 6 months
[2008/06/04 14:09:25] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 14:13:33] @ Quit: jvanzyl_: Read error: 104 (Connection reset by peer)
[2008/06/04 14:13:56] @ jvanzyl joined channel #puppet
[2008/06/04 14:16:23] @ jvanzyl left channel #puppet ()
[2008/06/04 14:16:56] @ dysinger joined channel #puppet
[2008/06/04 14:18:05] <muerr> benp-: fair enough. we were bummed when they released lower power usage 2950's not two months after we went through a power circuit issue with the ones we have.
[2008/06/04 14:18:30] <benp-> ouch
[2008/06/04 14:19:19] <muerr> got it resolved now - turned up a couple more circuits.
[2008/06/04 14:19:44] <muerr> wasn't a huge deal, we couldn't power on two additional systems we wanted to deploy initially.
[2008/06/04 14:20:18] <muerr> and even then, we could have, but the hosting provider said we were over the 80% required by 'code'.
[2008/06/04 14:20:53] <benp-> dealing with power is no fun
[2008/06/04 14:21:19] <benp-> although, it usually gets better if your data center is a warehouse instead of an office building
[2008/06/04 14:21:25] <benp-> or a building built to be a data center
[2008/06/04 14:21:29] <Volcane> i like IBMs but they do work out pretty pricey
[2008/06/04 14:21:36] <Volcane> sun intel kit isnt half bad either
[2008/06/04 14:22:57] <Volcane> well, intel/amd
[2008/06/04 14:23:54] @ jvanzyl joined channel #puppet
[2008/06/04 14:25:15] <muerr> IBM hardware is pretty good, but I was always frustrated at IBM that RSA cards weren't required purchase :-\.
[2008/06/04 14:25:27] <muerr> And many customers taht actually had them didn't have them connected to any network
[2008/06/04 14:25:37] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 14:25:52] @ jvanzyl joined channel #puppet
[2008/06/04 14:25:57] <Volcane> muerr: yeah i think they should be required too!
[2008/06/04 14:26:09] <Volcane> muerr: though i mostly buy blades from ibm thesedays
[2008/06/04 14:26:31] <muerr> Mmmm. Blades.
[2008/06/04 14:26:37] <Volcane> muerr: so much easier on cabling, but now we get such a dismal power allowance from ISPs here that its becoming difficult
[2008/06/04 14:26:41] <muerr> Only worked on one account with a bladecenter.
[2008/06/04 14:27:28] <Volcane> bladecenter + alteon layer 7 switches in the chassis, very nice web server group
[2008/06/04 14:29:30] @ Innocenti joined channel #puppet
[2008/06/04 14:29:48] <ashp> http://www.nanowerk.com/news/newsid=5935.php <-- this is not puppet related but sheer awesome
[2008/06/04 14:30:10] <Volcane> yeah self hosting hardware is way kewl :)
[2008/06/04 14:30:23] <ashp> They made a mistake, they should have made it create itself 10% smaller :)
[2008/06/04 14:30:32] <Volcane> hehe
[2008/06/04 14:30:34] <ashp> Then let it go to work until they had tiny tiny nanobots :)
[2008/06/04 14:33:28] @ jvanzyl_ joined channel #puppet
[2008/06/04 14:33:29] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 14:34:11] @ Quit: jvanzyl_: Read error: 104 (Connection reset by peer)
[2008/06/04 14:34:42] @ jvanzyl joined channel #puppet
[2008/06/04 14:38:22] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 14:40:54] @ jvanzyl joined channel #puppet
[2008/06/04 14:42:16] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 14:43:46] @ jvanzyl joined channel #puppet
[2008/06/04 14:46:23] @ jvanzyl_ joined channel #puppet
[2008/06/04 14:46:26] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 14:48:26] @ jvanzyl joined channel #puppet
[2008/06/04 14:48:28] @ Quit: jvanzyl_: Read error: 104 (Connection reset by peer)
[2008/06/04 14:48:59] <ashp> I just don't get it!
[2008/06/04 14:49:05] <ashp> Once again it's trying to read in development/ modules
[2008/06/04 14:49:07] <ashp> Rather than bootstrap/
[2008/06/04 14:50:03] <ashp> Jun 4 14:44:35 hlslinutil02 puppetmasterd[3996]: Failed to parse template dns/hosts.erb: Could not find value for 'puppet' at /etc/puppet/modules/development/dns/manifests/hosts.pp:23 on node hlsbuild01.law.harvard.edu
[2008/06/04 14:50:05] <muerr> well, development is the default environment puppet uses.
[2008/06/04 14:50:19] <ashp> <%= puppet %> puppet iclassify iclassify.law.harvard.edu
[2008/06/04 14:50:24] <ashp> muerr: not on my configuration.
[2008/06/04 14:50:59] <ashp> Hmm, the issue seems to be
[2008/06/04 14:51:20] <ashp> in hosts.pp: case $location {
[2008/06/04 14:51:23] <ashp> "internal":
[2008/06/04 14:51:30] <ashp> And it seems like it's not getting $location from nodes.pp
[2008/06/04 14:51:42] <ashp> oh god i'm so stupid
[2008/06/04 14:51:45] <ashp> this is so painful :(
[2008/06/04 14:51:52] <ashp> I should just fire myself and hire someone new to do this.
[2008/06/04 14:52:33] <ashp> I forgot to reimport nodes.pp after swapping back.
[2008/06/04 14:53:21] <plathrop> ashp: You might want to make the hire before you fire... otherwise you lose your authority :-P
[2008/06/04 14:54:04] @ Ol_ joined channel #puppet
[2008/06/04 14:54:18] <ashp> I can't believe I forgot to include nodes again, no wonder it wasn't picking up $location
[2008/06/04 14:56:46] <muerr> :)
[2008/06/04 14:57:08] <ashp> It still, despite not having an environment, defaulted to my development tree, so it's not fixed yet, but at least it's running.
[2008/06/04 14:58:17] @ shake-n-bake joined channel #puppet
[2008/06/04 14:58:20] <ashp> [puppetmaster]
[2008/06/04 14:58:23] <ashp> environment = bootstrap
[2008/06/04 14:58:32] <ashp> That should have set the default environment to bootstrap, but it seems not to work.
[2008/06/04 14:58:40] <Volcane> what does puppetmaster --genconfig say?
[2008/06/04 14:58:50] <Volcane> does it say environment is now bootstrap instead of development?
[2008/06/04 14:59:26] <ashp> root@hlslinutil02(puppet)$ /usr/sbin/puppetmasterd --genconfig \| grep environ
[2008/06/04 14:59:28] <Volcane> # puppetmasterd --genconfig\|grep "environment ="
[2008/06/04 14:59:28] <Volcane> environment = bootstrap
[2008/06/04 14:59:34] <ashp> There's no uncommented matches
[2008/06/04 14:59:48] <Volcane> sheesh dude, you're stuff broken bad :P
[2008/06/04 14:59:57] <ashp> I wonder what on earth :)
[2008/06/04 15:00:03] <ashp> can you paste your working conf?
[2008/06/04 15:00:05] <ashp> Something somewhere is mangled badly
[2008/06/04 15:01:41] <Volcane> you dont still have puppetmaster.conf or something lying around?
[2008/06/04 15:01:42] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 15:01:44] @ jvanzyl joined channel #puppet
[2008/06/04 15:01:58] <ashp> nope, didn't use puppet that long ago
[2008/06/04 15:02:02] <Volcane> hehe
[2008/06/04 15:02:13] <ashp> I just don't know why my configuration is so broken but I want to see a working one :)
[2008/06/04 15:03:18] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 15:03:33] @ jvanzyl joined channel #puppet
[2008/06/04 15:03:41] <ashp> --genconfig just shows 'available' configuration, not my existing, right?
[2008/06/04 15:03:46] <ashp> So it wouldn't appear in there anyway
[2008/06/04 15:03:48] <Volcane> existing
[2008/06/04 15:03:54] <ashp> Oh. hmm
[2008/06/04 15:03:55] <Volcane> it appears in mine :)
[2008/06/04 15:04:09] <ashp> I should see things like my other (working) environments then I guess
[2008/06/04 15:04:17] <Volcane> see your privmsg
[2008/06/04 15:04:19] <ashp> # environment = development
[2008/06/04 15:04:57] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 15:05:03] @ jvanzyl joined channel #puppet
[2008/06/04 15:05:24] <ashp> Solved, thanks volcane :)
[2008/06/04 15:05:38] <Volcane> sweet
[2008/06/04 15:08:03] * Volcane wonders what will happen if you say before => Filebucket["puppet"] or another of those internal classes lke Schedule["weekly"] etc
[2008/06/04 15:08:13] <Volcane> since it seems to put those in real early into the execution
[2008/06/04 15:09:59] @ jvanzyl_ joined channel #puppet
[2008/06/04 15:10:00] @ Quit: jvanzyl: Read error: 104 (Connection reset by peer)
[2008/06/04 15:11:34] @ jvanzyl joined channel #puppet
[2008/06/04 15:11:40] @ Quit: jvanzyl_: Read error: 104 (Connection reset by peer)
[2008/06/04 15:12:23] @ Quit: jvanzyl: Connection reset by peer
[2008/06/04 15:12:30] @ jvanzyl joined channel #puppet
[2008/06/04 15:20:48] @ jvanzyl_ joined channel #puppet
[2008/06/04 15:22:30] @ Quit: andrewcshafer:
[2008/06/04 15:24:48] <ashp> This was a brilliant idea, the bootstrap thing is really nice
[2008/06/04 15:24:55] @ Quit: shake-n-bake:
[2008/06/04 15:24:55] <ashp> I wonder if this is what everyone else was doing and we're just silly ;)
[2008/06/04 15:26:44] <muerr> we're not using environments [yet].
[2008/06/04 15:26:59] <Volcane> works best if you're only using modules
[2008/06/04 15:28:42] <ashp> muerr: What we're doing is setting the default environment to 'bootstrap', having that template puppet.conf to add a environment = development (or whatever) via a $localenv = development variable in nodes.pp
[2008/06/04 15:28:50] <ashp> and then on next run it's in the right environment
[2008/06/04 15:29:00] <ashp> It lets me put servers into an environment without managing anything
[2008/06/04 15:29:13] <ashp> changing the variable will change the environment in future, so it's always functional
[2008/06/04 15:29:30] <Volcane> also means u can force things to be done first
[2008/06/04 15:29:34] <Volcane> which is really hard in puppet atm
[2008/06/04 15:29:52] <ashp> Yes, I also now setup my network, two repos and rhn-reg in the bootstrap enviroment
[2008/06/04 15:30:01] <ashp> so I no longer require any require => lines elsewhere in my modules
[2008/06/04 15:30:10] <ashp> seperating site requirements from 'module' requirements which was my aim
[2008/06/04 15:33:13] <muerr> Yeah, pretty slick actually. ashp, you might put that on the wiki :)
[2008/06/04 15:33:33] <ashp> I'm going to post up to the list when i finish all the testing to make sure it works
[2008/06/04 15:33:37] <muerr> thats something i had considered doing with environments, but there were a couple bugs with environments open at the time i looked into it that i stayed away.
[2008/06/04 15:33:41] <ashp> as it 'seemed' to find dev/ stuff still
[2008/06/04 15:33:44] <muerr> might have to revisit them though.
[2008/06/04 15:33:53] <ashp> i think it actually was just running puppetd in the background before I manually typed in puppetd -tv h owever
[2008/06/04 15:33:56] @ greenmoss joined channel #puppet
[2008/06/04 15:34:14] <ashp> hmm no, it did install dev stuff first
[2008/06/04 15:34:35] <ashp> I'm still working out if a/ i can pick different template.pp based on the module path and remove it from the globla area
[2008/06/04 15:34:43] <greenmoss> hey, all: is there a way to get puppet to source a file IFF the source file exists, but fall back on a default if not?
[2008/06/04 15:35:02] <ashp> or b/ make a define instead of include baseclass, one that checks $environment and sets include bootstrap if $enviroment = "", and sets include baseclass for any other value
[2008/06/04 15:36:53] <Volcane> greenmoss: if you specify an array to source => it wil take the first one that exist
[2008/06/04 15:37:10] <greenmoss> Volcane: oh yeah, forgot about that... excellent, thanks!
[2008/06/04 15:38:18] <ashp> oh my god
[2008/06/04 15:38:21] <ashp> that was beautiful
[2008/06/04 15:38:21] <greenmoss> dude, I think that just saved me at least an hour of futzing
[2008/06/04 15:38:29] <Volcane> greenmoss: hehe
[2008/06/04 15:38:33] @ Quit: plathrop: Read error: 110 (Connection timed out)
[2008/06/04 15:38:34] <ashp> It added environment = development, reparsed puppet.conf and then ran the rest of the configuration
[2008/06/04 15:38:38] <ashp> my define works perfectly apparently!
[2008/06/04 15:38:42] <Volcane> ashp: sweet :)
[2008/06/04 15:38:48] <muerr> Nice.
[2008/06/04 15:38:50] <ashp> I'll go post it up now, this is fantastic
[2008/06/04 15:39:40] @ Quit: jvanzyl: Read error: 110 (Connection timed out)
[2008/06/04 15:42:37] <ashp> how bizarre, I ran pupept on the puppetmaster
[2008/06/04 15:42:44] <ashp> and it removed its own hostname from /etc/sysconfig/network
[2008/06/04 15:42:55] @ jvanzyl_ left channel #puppet ()
[2008/06/04 15:42:57] <ashp> That was unexpected as the template uses hostname from facter
[2008/06/04 15:43:36] @ muer1 joined channel #puppet
[2008/06/04 15:43:41] <holoway> ashp: you should be putting things you used to put in the body of a node definition inside classes
[2008/06/04 15:43:53] <holoway> there is no way with any external node tool to do anything else
[2008/06/04 15:44:01] <holoway> (this isn't an iClassify thing, it's a puppet thing)
[2008/06/04 15:44:38] <holoway> and for icagent, all you need is ./bin, ./lib and ./icagent
[2008/06/04 15:45:01] <ashp> holoway: That makes sense, I was pulling in the bits of ruby I needed for icagent and actually got it working
[2008/06/04 15:45:14] <ashp> but I also worked out a way to use no external node classifer to get environments working
[2008/06/04 15:45:18] <ashp> which is also making me happy :)
[2008/06/04 15:45:34] <ashp> I may use puppet to deploy icagent onto every server and have them register in anywhere as a central base that I can switch to later
[2008/06/04 15:45:42] <holoway> right
[2008/06/04 15:45:45] <ashp> it also fixed my problem with needing some site dependencies before packages
[2008/06/04 15:45:48] <holoway> that's a pretty cvommon migration path
[2008/06/04 15:45:56] <ashp> because I have a 'bootstrap' environment that does just that
[2008/06/04 15:45:57] <holoway> if you already have puppet
[2008/06/04 15:46:29] <ashp> I have the iclassify up and running anyway so I can meddle at my leisure, I'm out soon because my wife is going to give birth, so they want me to have something 'tested' up quickly before I run off
[2008/06/04 15:46:39] <ashp> leaving my coworker to puzzle out iclassify, so I moved to nodes.pp for now :)
[2008/06/04 15:46:47] <muer1> lol
[2008/06/04 15:48:07] @ jvanzyl joined channel #puppet
[2008/06/04 15:51:49] @ sazma joined channel #puppet
[2008/06/04 15:54:23] <sazma> hi all... lak around?
[2008/06/04 15:54:37] <holoway> ashp: congrats on the birth, btw
[2008/06/04 15:55:03] <sazma> or anyone who knows the code well enough to talk about librubyshadow or whatever it's called
[2008/06/04 15:55:40] * Volcane knows to install it and hey presto passwords get set :P
[2008/06/04 15:55:55] <sazma> yea, it's very linux-y
[2008/06/04 15:56:12] <holoway> sazma: what do you want to know
[2008/06/04 15:56:16] <muer1> yeah, double congrats, is that your first?
[2008/06/04 15:56:24] <sazma> and I'm wondering if there's a way to, if I know how to slam crypts on other OSes, quickly get them working
[2008/06/04 15:56:26] <ashp> my first, yes :)
[2008/06/04 15:56:29] <ashp> not my wifes first, but mine!
[2008/06/04 15:56:30] <muer1> awesome.
[2008/06/04 15:56:45] <ashp> She's busy having all kinds of serious contractions at this point, we ended up at hospital once
[2008/06/04 15:56:49] <ashp> so it can't be too much longer
[2008/06/04 15:56:55] <muer1> heh heh
[2008/06/04 15:56:57] <ashp> I just posted to the list, can anyone have a quick read and see if that makes some sort of sense
[2008/06/04 15:56:59] <muer1> yeah. we did that.
[2008/06/04 15:57:06] <muer1> they sent us home.
[2008/06/04 15:57:07] <ashp> she was so mad i made her go to the hospital :)
[2008/06/04 15:57:18] <ashp> yeah, I got double grief for being sent home after 2 hours of walking
[2008/06/04 15:57:32] <muer1> I bet.
[2008/06/04 15:58:21] <sazma> any ideas?
[2008/06/04 16:00:38] <ashp> ruby-shadow?
[2008/06/04 16:00:42] <ashp> I just shoved it into an rpm
[2008/06/04 16:00:47] <ashp> that i install in kickstart
[2008/06/04 16:00:49] <ashp> what is it you're trying to do?
[2008/06/04 16:01:11] <holoway> sazma: I think it should work fine -- all libshadow is really doing is letting you parse the shdaow file, I believe
[2008/06/04 16:01:28] <holoway> it doesn't do encryption for you
[2008/06/04 16:02:02] <holoway> so assuming the platform supports /etc/shadow at all, you should be able to throw whatever crypted string you want in there
[2008/06/04 16:02:07] <sazma> holoway: yea I'm just looking at the code now... sadly it has it's own shadow.c that's compiled and req's some linuxy libs :(
[2008/06/04 16:02:15] @ Quit: muerr: Read error: 110 (Connection timed out)
[2008/06/04 16:02:18] <holoway> sazma: ahhh
[2008/06/04 16:02:27] * Volcane just grabbed ruby-shadow rpm from rpmforge and popped it into local repos
[2008/06/04 16:02:40] <holoway> sazma: what platform do you want to use it on?
[2008/06/04 16:02:59] <sazma> hp-ux and solaris
[2008/06/04 16:03:12] <sazma> and our HP-UX is TCB
[2008/06/04 16:03:28] <sazma> but there's a command for stuffing crypts into the right place
[2008/06/04 16:04:53] <sazma> yea, librubyshadow create's a shared object that ruby loads I guess... I was hoping it was just written in ruby
[2008/06/04 16:05:10] <holoway> right, it links against libshadow
[2008/06/04 16:05:36] <holoway> you might just need to patch the solaris and hp-ux providers
[2008/06/04 16:11:44] <Volcane> OT but is anyone here misfortuned enough to have to serve up flash files to new flash clients that require the custom daemon to listen on port 843?
[2008/06/04 16:13:02] <sigmonsays> if I remove files from /var/lib/puppet/ssl/ca/signed and /var/lib/puppet/ssl/* from clients -- is it all I need to re-reg 'em?
[2008/06/04 16:13:06] <sigmonsays> (hostnames changed)
[2008/06/04 16:14:07] <sazma> sigmonsays: I think there's a --clean option to puppetca... might be better than going around the app
[2008/06/04 16:14:20] <sigmonsays> ahh -- ok. cheers sazma
[2008/06/04 16:14:22] <Volcane> yes
[2008/06/04 16:14:52] <ashp> yes, puppetca --clean
[2008/06/04 16:14:55] <ashp> i do this like 100 times a day :)
[2008/06/04 16:16:12] <sigmonsays> does ti do anything besides remove the file? :)
[2008/06/04 16:16:21] <Volcane> it knows which to remove :)
[2008/06/04 16:18:53] <sigmonsays> cheers
[2008/06/04 16:25:06] @ Quit: greenmoss:
[2008/06/04 16:26:22] <sigmonsays> how do I keep puppetmasterd from going daemon() ?
[2008/06/04 16:27:07] @ muer1 is now known as muerr
[2008/06/04 16:27:46] @ Quit: jvanzyl:
[2008/06/04 16:27:50] <sigmonsays> i'm reliably crashing puppetd w/ my new batch of signed nodes and I wanna figger out why!
[2008/06/04 16:28:01] <sigmonsays> s/puppetd/puppetmasterd/
[2008/06/04 16:30:26] <Volcane> --no-daemonize i think
[2008/06/04 16:33:32] <sigmonsays> cheers
[2008/06/04 16:34:39] @ heydrick joined channel #puppet
[2008/06/04 16:35:41] <sigmonsays> does this mean anything to anyone?
[2008/06/04 16:35:56] <sigmonsays> "rb_gc_mark(): unknown data type "
[2008/06/04 16:36:11] <sigmonsays> from my strace
[2008/06/04 16:39:00] @ plathrop joined channel #puppet
[2008/06/04 16:40:59] @ andrewcshafer joined channel #puppet
[2008/06/04 16:42:13] @ londo_ is now known as londo
[2008/06/04 16:42:47] <ashp> I swear this whole thing I did today doesn't work and it still shovels over things from development.
[2008/06/04 16:43:00] <ashp> I can tell by the Defaultclass[development] thing :O
[2008/06/04 16:43:40] * sigmonsays is tracing down a mysterious puppetmasterd crash
[2008/06/04 16:43:44] <ashp> I wonder why it doesn't work properly, it's kind of frustrating.
[2008/06/04 16:44:38] @ shadoi joined channel #puppet
[2008/06/04 16:44:50] @ Quit: kenvandine: "Ex-Chat"
[2008/06/04 16:44:52] <ashp> It's odd because there's no way it should be able to even find stuff in development/ by default.
[2008/06/04 16:46:47] <ashp> Maybe it still puts them in development if there's a node entry
[2008/06/04 16:46:53] @ Quit: pawalls: Read error: 104 (Connection reset by peer)
[2008/06/04 16:47:23] @ roald joined channel #puppet
[2008/06/04 16:48:33] <ashp> I guess I'll have to check with lak@ on that one.
[2008/06/04 16:49:17] <sigmonsays> anyone know what C extensions puppetmasterd uses?
[2008/06/04 16:49:21] <sigmonsays> i'm not sure hwo to debug them...
[2008/06/04 16:49:26] <shadoi> ashp: I missed what you said before, but development is the default environment.
[2008/06/04 16:49:32] <shadoi> sigmonsays: none?
[2008/06/04 16:49:40] <ashp> I have set environment = bootstrap in [puppetmasterd]
[2008/06/04 16:49:57] <ashp> My understanding was any node that didn't have an explicit environment would attempt to use bootstrap after that
[2008/06/04 16:50:03] <sigmonsays> shadoi, not according to my bug, "rb_gc_mark(): [BUG] .. " says ruby referenced an invalid variable
[2008/06/04 16:50:12] <sigmonsays> (in a C extension)
[2008/06/04 16:50:37] <shadoi> sigmonsays: I've never heard of any C extensions. They are likely from other gems or ruby libs.
[2008/06/04 16:50:54] <shadoi> rb_gc_mark is the ruby garbage collector I think
[2008/06/04 16:51:25] <sigmonsays> I can only see this error in strace write() stmt. I can't seem to get logging to work -- or the daemon is segfaulting before it gets flushed9)
[2008/06/04 16:51:37] <sigmonsays> (I don't have the full error ;-()
[2008/06/04 16:51:43] <shadoi> sigmonsays: what platform & ruby version?
[2008/06/04 16:51:57] <sigmonsays> 1.81 on x86_64
[2008/06/04 16:52:04] <sigmonsays> 1.8.1*
[2008/06/04 16:52:20] <shadoi> 1.8.2 is required, and has had some reported issues. I'd go for 1.8.6.
[2008/06/04 16:53:12] <sigmonsays> seems like a dependancy nightmare on my old machines but i'll look into it.
[2008/06/04 16:53:25] <sigmonsays> strange part it is only happens when 20+ hosts clobber the master
[2008/06/04 16:53:54] <shadoi> hmm, it sounds like a buffer overrun <cringe/>
[2008/06/04 16:54:04] <shadoi> never heard of it on newer versions though
[2008/06/04 16:55:37] <mmestnik> It's hard to find anything about puppet that is not related to templates, manifests, objects... cloth and string.
[2008/06/04 16:56:18] <Volcane> puppetmasters that aret in mongel does all manner of weird++ shit when concurrency gets high
[2008/06/04 16:57:14] <holoway> sigmonsays: ruby 1.8.1 is reeeally old
[2008/06/04 16:57:49] <holoway> aanyone in here familiar with Control Tier?
[2008/06/04 16:59:14] <mmestnik> I'm looking for the instructions on using cron to run puppet. I'm only loading Ruby into memory, just for puppet and I need to free 24m of ram. I guess I could stand to have my cache polluted, but I'm now wishing puppet was written in perl, php, or c.
[2008/06/04 16:59:57] @ muerr left channel #puppet ()
[2008/06/04 17:00:03] <shadoi> mmestnik: look at the --onetime option
[2008/06/04 17:00:26] <Volcane> yeah, puppetd --onetime --no-daemonize
[2008/06/04 17:00:30] @ shenson is now known as shenson_not_here
[2008/06/04 17:00:34] <holoway> mmestnik: and probably the --no-daemonize
[2008/06/04 17:00:36] <mmestnik> ...so lazy. I need to copy and paste or my life force will be forever drained.
[2008/06/04 17:00:44] <ashp> Volcane: I just confirmed
[2008/06/04 17:00:50] <Volcane> ashp: yeah?
[2008/06/04 17:00:51] <ashp> that if you have no env set in the puppet.conf on the client
[2008/06/04 17:00:54] <ashp> regardless of what you set the server to
[2008/06/04 17:00:58] <ashp> it uses development anyway
[2008/06/04 17:01:10] @ Quit: sazma: "Ex-Chat"
[2008/06/04 17:01:39] <Volcane> well that goes 100% againt what puppetmaster --genconfig suggests
[2008/06/04 17:01:44] <Volcane> and what my own nodes does
[2008/06/04 17:01:56] @ kenvandine joined channel #puppet
[2008/06/04 17:03:37] <ashp> How odd, I removed it from the puppet.conf on the client
[2008/06/04 17:03:41] <ashp> added a statement in nodes.pp to say
[2008/06/04 17:03:49] <ashp> notice "env is $environment"
[2008/06/04 17:03:54] <ashp> and it put in the logs env is development
[2008/06/04 17:04:01] * Volcane checks
[2008/06/04 17:04:26] <shadoi> ashp: had the node checked in previously in the development environment?
[2008/06/04 17:04:40] <ashp> yes
[2008/06/04 17:04:44] <shadoi> That's probably why.
[2008/06/04 17:04:49] <ashp> well no hang on
[2008/06/04 17:04:55] <ashp> from the server or client POV?
[2008/06/04 17:05:00] <ashp> because I reinstalled the client fully from scratch
[2008/06/04 17:05:03] <shadoi> If the server has never seen the client before it will use the environment specified.
[2008/06/04 17:05:06] <ashp> but from the server POV it's checked in before
[2008/06/04 17:05:22] <ashp> And I take it that --clean and --sign doesn't remove that environment state?
[2008/06/04 17:05:29] <shadoi> I'm not certain
[2008/06/04 17:05:39] <shadoi> probably not
[2008/06/04 17:05:42] <ashp> i'd say not based on testing, but i need to dive in further
[2008/06/04 17:05:47] <ashp> well damn, this explains what i'm seeing at least
[2008/06/04 17:05:55] <ashp> if you do --clean it should probably remove any state related to the client
[2008/06/04 17:06:04] <shadoi> clean is CA related
[2008/06/04 17:06:07] <martha> maybe in the yaml on the server?
[2008/06/04 17:06:10] <ashp> or at least have a puppetmaster --clean option
[2008/06/04 17:06:14] <shadoi> and client state wasn't stored on the server until very recently
[2008/06/04 17:06:22] <ashp> ah so this is a new feature
[2008/06/04 17:06:31] <ashp> well at leasti know where to look, i'll work out a way to clean it up
[2008/06/04 17:06:40] <ashp> i gotta go check on my wife, but i'll brb in an hour or so to fix this :)
[2008/06/04 17:06:41] <shadoi> I didn't think it was even read.... so I may be spewing lies
[2008/06/04 17:09:53] <sigmonsays> can I mix puppetd's with 1.8.1 ruby and puppetmasters with 1.8.6 ruby's ?
[2008/06/04 17:10:13] * sigmonsays thinks so but never knows...
[2008/06/04 17:10:17] <shadoi> probably, but I don't recommend it.
[2008/06/04 17:10:23] <holoway> sigmonsays: I wouldn't trust 1.8.1 ruby to run puppet
[2008/06/04 17:10:34] <holoway> at least 1.8.5
[2008/06/04 17:10:43] <sigmonsays> hehe. been workin thus far :)
[2008/06/04 17:10:49] <sigmonsays> puppetmasterd sucks though
[2008/06/04 17:10:58] <holoway> and really, you'll want some of the patches from 1.8.5's release series
[2008/06/04 17:11:01] <holoway> like the hash memory leak fix
[2008/06/04 17:11:17] <sigmonsays> word. 1.8.6 is stable I see anyways. i've jsut got some really outdated boxes
[2008/06/04 17:11:24] <holoway> (hence shadoi saying 1.8.6)
[2008/06/04 17:11:27] <holoway> yeah
[2008/06/04 17:11:40] <holoway> (more evidence that ruby is perl stuck in a time warp)
[2008/06/04 17:14:04] <stick> so I recently started getting this error:
[2008/06/04 17:14:13] <Volcane> ashp: Jun 4 22:13:17 78.47.195.194 puppetmasterd[30447]: (Scope(Node[default])) Bootstrapping dev1.me.com in bootstrap
[2008/06/04 17:14:18] <stick> "Failed to generate additional resources during transaction: You must set the 'external_nodes' parameter to use the external node terminus"
[2008/06/04 17:14:42] <Volcane> ashp: donno mate, you've got weird stuff, just pop a puppet.conf out of your build environent with the config bits to force the node into bootstrap first run
[2008/06/04 17:14:49] <stick> but I do have set:
[2008/06/04 17:14:50] <stick> external_nodes = /usr/local/bin/puppet_node.pl
[2008/06/04 17:14:50] <stick> node_terminus = exec
[2008/06/04 17:14:54] <shadoi> stick: is your external_node script timing out?
[2008/06/04 17:15:15] <stick> hmm, shouldn't be it's pretty simple
[2008/06/04 17:15:17] * stick looks
[2008/06/04 17:15:51] <shadoi> if it queries a DB or something, it may time out occasionally
[2008/06/04 17:16:51] <mmestnik> I used a system called by cron prior to starting to use puppet, one feature I would like it to stagger server config changes.
[2008/06/04 17:16:55] <stick> nope, it just reads a yaml file from the fs adds a 'base' class and dumps it back out
[2008/06/04 17:17:25] <mmestnik> I used this to build my crontabs: mark=$(( $(hostname \| sum \| cut -f1 -d\ ) % 30 )); echo ${mark},$(( ${mark} + 30 ))
[2008/06/04 17:17:29] <stick> mmestnik: there's a splay option you can use, also some people don't run the puppet daemon but instead run puppet standalone out of cron
[2008/06/04 17:19:17] @ Quit: plathrop: Remote closed the connection
[2008/06/04 17:19:25] @ Quit: auxesis: Remote closed the connection
[2008/06/04 17:19:34] <stick> shadoi: the other thing that has me confused is this just started today, with no obvious changes around that part of things
[2008/06/04 17:19:41] @ plathrop joined channel #puppet
[2008/06/04 17:19:46] @ randybias joined channel #puppet
[2008/06/04 17:20:00] <fujin> morning
[2008/06/04 17:20:01] <fujin> chaps
[2008/06/04 17:20:01] <fujin> !
[2008/06/04 17:20:05] <shadoi> stick: it happens every time now?
[2008/06/04 17:20:06] <shadoi> fujin: yo
[2008/06/04 17:20:39] <stick> it was
[2008/06/04 17:20:40] <stick> hmm
[2008/06/04 17:20:50] <stick> bounced puppetmaster and it seems to have cleared up
[2008/06/04 17:20:53] * stick tests some more
[2008/06/04 17:20:58] <shadoi> stick: eek, that sounds nasty.
[2008/06/04 17:21:08] <shadoi> might want to file a bug while you've still got logs, etc.
[2008/06/04 17:22:33] <stick> pastie: url
[2008/06/04 17:22:41] <pastie> http://pastie.org/208951 by stick.
[2008/06/04 17:22:49] <stick> that's the extent
[2008/06/04 17:23:04] <fujin> wtf?
[2008/06/04 17:23:07] <fujin> that's weird.
[2008/06/04 17:24:59] <stick> yeah
[2008/06/04 17:25:08] <mmestnik> ne1 know the debian package for RDoc::usage?
[2008/06/04 17:27:11] <Volcane> rdoc
[2008/06/04 17:27:50] <fujin> ^
[2008/06/04 17:29:01] <sigmonsays> anyone know if puppet requires ruby to be built with tcltk ?
[2008/06/04 17:29:10] <fujin> shouldn't hope so
[2008/06/04 17:29:15] <sigmonsays> ;)
[2008/06/04 17:29:16] <fujin> I've never 'built' ruby :}
[2008/06/04 17:29:22] @ jmccune left channel #puppet ()
[2008/06/04 17:29:47] <shadoi> sigmonsays: I'd recommend looking at the build configs in a well-known package
[2008/06/04 17:33:49] @ Quit: roald: Remote closed the connection
[2008/06/04 17:33:57] @ Quit: flakrat: "Leaving"
[2008/06/04 17:34:12] @ muerr joined channel #puppet
[2008/06/04 17:35:51] @ auxesis joined channel #puppet
[2008/06/04 17:42:08] @ Quit: muerr: Read error: 104 (Connection reset by peer)
[2008/06/04 17:42:22] @ muerr joined channel #puppet
[2008/06/04 17:43:23] <fujin> bleh - redmine needs an inline ticket attachment viewer
[2008/06/04 17:52:47] @ Quit: Innocenti: Client Quit
[2008/06/04 17:59:41] @ Quit: auxesis: Remote closed the connection
[2008/06/04 17:59:54] @ auxesis joined channel #puppet
[2008/06/04 18:13:44] @ patobrien joined channel #puppet
[2008/06/04 18:14:17] @ kolla joined channel #puppet
[2008/06/04 18:16:00] <patobrien> I ran into a weird problem with filebucket today, I am not sure if it was a bug, I found this ticket which sort of relates to it: http://reductivelabs.com/trac/puppet/ticket/890
[2008/06/04 18:16:51] <patobrien> I had a file function which all it did was make sure the folder exists
[2008/06/04 18:17:06] <patobrien> and whenever it ran, it would back up the entire contents of the folder to filebucket, which would in turn fill up the entire partition
[2008/06/04 18:17:12] <patobrien> has anyone run into this?
[2008/06/04 18:17:32] <fujin> backup => false
[2008/06/04 18:17:44] <patobrien> yeah, we did that afterward
[2008/06/04 18:17:53] <patobrien> is that behavior typical, though?
[2008/06/04 18:20:33] <fujin> hrmmrhm
[2008/06/04 18:20:36] <fujin> yes, I'd say it is.
[2008/06/04 18:20:51] <fujin> especially if you're overriding all Files with backup => true.
[2008/06/04 18:24:44] <patobrien> ok, I didn't expect it to back everything up, just make sure that the folder was present
[2008/06/04 18:24:52] <patobrien> now I know :)
[2008/06/04 18:27:46] <fujin> well, ensuring that a folder is present with backup => true means it'll ensure the changes, and store anything prior to that
[2008/06/04 18:27:55] <fujin> it's a bit tricky
[2008/06/04 18:28:20] <patobrien> is backup => true assumed by default?
[2008/06/04 18:28:33] <fujin> no, don't think so ;]
[2008/06/04 18:28:39] <patobrien> hm
[2008/06/04 18:28:41] <fujin> you've probably got a File { backup => blah }
[2008/06/04 18:29:26] <patobrien> probably, but why wouldn't it do it to the other ensure => directory, 's that I had else where
[2008/06/04 18:29:34] <patobrien> oh well, live and learn
[2008/06/04 18:31:26] @ Quit: dysinger:
[2008/06/04 18:34:13] <ashp> Volcane: From the reply to my mail, someone else had my problem :)
[2008/06/04 18:38:59] <Volcane> ashp: nods, I've been doing some testing
[2008/06/04 18:39:06] <Volcane> ashp: its seems unpredictable
[2008/06/04 18:39:29] <Volcane> ashp: but, u can make it do what it should always by just deploing a puppet.conf from your kickstart that forces the thing into bootstrap env
[2008/06/04 18:40:11] <ashp> I think that's probably what I'll do
[2008/06/04 18:40:18] <Volcane> works 100%
[2008/06/04 18:40:26] <ashp> I just have to work out how to dist a file in kickstart
[2008/06/04 18:40:31] <ashp> i guess i can just wget it on top
[2008/06/04 18:41:45] <Volcane> nods, all u need is 2 echo's >> /etc/puppet/puppet.conf
[2008/06/04 18:41:54] <Volcane> environments = bootstrap
[2008/06/04 18:41:59] <Volcane> environment = bootstrap
[2008/06/04 18:42:06] <Volcane> just append that to the default puppet config
[2008/06/04 18:48:48] <Volcane> k, well now that i had time to test it proper in detail, I think we'll defo need to push a puppet config on the clients
[2008/06/04 18:48:53] <Volcane> but other than that, it works a charm
[2008/06/04 18:48:59] <Volcane> still. easier than installing iclassify :P
[2008/06/04 18:51:50] <ashp> aye
[2008/06/04 18:51:59] <ashp> I can modify the puppet.conf easily enough, it's not a big deal
[2008/06/04 18:52:07] <ashp> it makes sense that the client always overrides the server
[2008/06/04 18:52:19] <ashp> but ideally we should modify puppet that if no environment is added
[2008/06/04 18:52:23] <ashp> it should use the servers default
[2008/06/04 18:52:28] <ashp> and not randomly select development :)
[2008/06/04 18:55:48] <Volcane> yes, it should do what the comments in puppetmaster --genconfig says it does
[2008/06/04 18:55:49] <Volcane> which it doesnt
[2008/06/04 18:55:53] <Volcane> or perhaps
[2008/06/04 18:56:03] <Volcane> the client is defaulting to sending development as an environment
[2008/06/04 18:56:10] <Volcane> and so theres no default in the master to apply
[2008/06/04 18:56:12] <Volcane> thats no doubt it
[2008/06/04 18:57:29] <muerr> ugh rhel4 sucks.
[2008/06/04 18:58:49] <shadoi> amen.
[2008/06/04 18:58:54] * fujin nods
[2008/06/04 19:00:12] <fujin> I'm pretty much satisfied that all RHEL sucks :)
[2008/06/04 19:01:12] <muerr> rhel5 at least uses yum
[2008/06/04 19:01:51] <muerr> but i've gotta kludge together a yum installation in order to use half the crap i had written for rhel5 in puppet, all because zimbra hasn't bothered to start supporting RHEL 5 with RHCS 5 on the cluster version.
[2008/06/04 19:02:27] <muerr> and that was all because they don't support zimbra on centos 5.
[2008/06/04 19:02:34] <fujin> <3 RHCS!
[2008/06/04 19:02:44] <muerr> <3 VCS :P
[2008/06/04 19:02:50] <fujin> blagh
[2008/06/04 19:02:52] <muerr> lol
[2008/06/04 19:05:07] <ashp> hmm, what's --tag for, i don't see that in --help :)
[2008/06/04 19:05:12] <Volcane> zimbra works ok on centos 5, just not officially so
[2008/06/04 19:06:33] <fujin> ashp: only runs stuff with the tag you specify
[2008/06/04 19:06:45] <ashp> hmm, so puppetd -o --tag no_such_tag --waitforcert 600
[2008/06/04 19:06:50] <ashp> should actually generate a cert request?
[2008/06/04 19:06:58] <fujin> maybe? :)
[2008/06/04 19:06:59] <ashp> It's not working during kickstart so I thought I'd finally look at why
[2008/06/04 19:07:00] <fujin> Does it?
[2008/06/04 19:07:23] <Volcane> ashp: theres another way to bootstrap - tag your bootstrap stuff with bootstrap and run it once with --tag.
[2008/06/04 19:07:40] <ashp> it sets up puppet enough to send the cert request when the machine does the regular reboot
[2008/06/04 19:07:49] <ashp> so I guess I'm close :)
[2008/06/04 19:09:44] <muerr> Volcane: yeah, it "works ok" but we specifically need "supported by."
[2008/06/04 19:09:55] <Volcane> nods, figured :)
[2008/06/04 19:10:01] <muerr> which. is. retarded.
[2008/06/04 19:10:35] <muerr> that was why rhel was required by my team at ibm, because customers needed vendor support (to point a finger at, probably).
[2008/06/04 19:10:40] <ashp> ahaha, welcome to my pain
[2008/06/04 19:10:47] <ashp> we're all in the 'forced to use rhel' club
[2008/06/04 19:11:04] <ashp> I had to use it for rhythmyx, possibly the WORST piece of java ever written
[2008/06/04 19:11:11] * Volcane likes it :P
[2008/06/04 19:11:20] <ashp> true fact: the guy who ran support for 8 years for percussion cannot get the server to bind on 443
[2008/06/04 19:11:21] <Volcane> well i like centos
[2008/06/04 19:11:25] <ashp> because it runs as rhythmyx, not as root
[2008/06/04 19:11:29] <ashp> i should tell him about selinux, but..
[2008/06/04 19:11:41] <Volcane> i dont like bloody rhn
[2008/06/04 19:12:10] <muerr> i really like centos.
[2008/06/04 19:12:13] <muerr> and i really like yum.
[2008/06/04 19:12:29] <muerr> i have had a deep unreasonable loathing for rhel and rhn since it was created.
[2008/06/04 19:12:51] <ashp> i miss apt :(
[2008/06/04 19:12:51] <Volcane> yeah its amazing how centos making yum work properly can make such a huge difference between rhel proper and it
[2008/06/04 19:12:51] <fujin> up2date
[2008/06/04 19:13:00] <muerr> AH - found the stupid hidden location to enable the stupid cluster suite channel entitlement for this server.
[2008/06/04 19:13:21] <ashp> apt is the superior package handler!
[2008/06/04 19:13:27] <muerr> Volcane: i'm pleased that rhel 5 at least uses yum, and works with third party or even local yum repos.
[2008/06/04 19:13:56] <ashp> I hate rpms because writing spec files is HORRIBLE
[2008/06/04 19:13:57] <muerr> wow. i'd hate to have to use this to manage extra entitlements for more than just two servers.
[2008/06/04 19:14:01] <Volcane> yeah
[2008/06/04 19:14:01] <Volcane> i made yum work on rhel 4 recently
[2008/06/04 19:14:08] <muerr> yeah i just did that today.
[2008/06/04 19:14:11] <ashp> I wonder if rpm 5 is any nicer, or whatever the new version is.
[2008/06/04 19:14:11] <Volcane> made life much better
[2008/06/04 19:14:11] <Volcane> puppet+yum+rhel4 is pretty kewl
[2008/06/04 19:14:12] <muerr> and its retarded beyond belief.
[2008/06/04 19:14:25] <ashp> Manually kludging together giant lists of files that are part of the package is horrible
[2008/06/04 19:14:31] <Volcane> ashp: i much prefer spec files over debs shudder
[2008/06/04 19:14:34] <ashp> Someone should write a REAL .spec generator that works properly
[2008/06/04 19:14:42] <muerr> we'll use yum for our custom packages, and up2date for all the "os" stuff.
[2008/06/04 19:14:48] <ashp> Volcane: I like gentoo/freebsd ports systems for writing my own stuff, so much nicer
[2008/06/04 19:15:01] <Volcane> nods
[2008/06/04 19:15:06] <fujin> yeah, portage is nice
[2008/06/04 19:15:10] <fujin> ebuilds and whatnot.
[2008/06/04 19:15:11] <muerr> finally. system-config-cluster 1.0.51 2.0.el4_6.2 noarch
[2008/06/04 19:15:21] <Volcane> well I've been using rh since the first beta
[2008/06/04 19:15:26] <fujin> blah! system-config-cluster is for girls!
[2008/06/04 19:15:31] <Volcane> so maybe I'm just more used to it
[2008/06/04 19:15:35] <muerr> fujin: required by zimbra.
[2008/06/04 19:15:57] <fujin> oh that's poos.
[2008/06/04 19:15:58] <muerr> and that was the first package off the top of my head i knew was in the RHCS channel :)
[2008/06/04 19:16:01] * Volcane 's yet to do any RH cluster stuff, dont have fence hardware to play with
[2008/06/04 19:16:10] <fujin> you'd be surprised, Volcane
[2008/06/04 19:16:11] <muerr> fujin: yeah worse yet, it doesn't actually use system-config-cluster.
[2008/06/04 19:16:30] <muerr> I was pleased to find that Dell DRAC is supported by the fence daemon.
[2008/06/04 19:16:39] <muerr> Since we're using... Dell DRAC.
[2008/06/04 19:16:44] <muerr> They don't support our avocent PDUs
[2008/06/04 19:16:45] @ jvanzyl joined channel #puppet
[2008/06/04 19:17:01] <Volcane> i know u can now use xen dom0 for fencing i think which might be worth looking at
[2008/06/04 19:17:02] <Volcane> i can use my ibm kit for fencing ofcourse
[2008/06/04 19:17:10] <muerr> oh and i don't agree with the fencing idea of powering off systems completely if they fail.
[2008/06/04 19:17:11] <Volcane> bu ti dont have dev ibm kit
[2008/06/04 19:17:26] <muerr> on VCS, those systems get "frozen" so you can't migrate resources to them
[2008/06/04 19:17:31] <fujin> I use APC bars here, but the systems I run on clusters have drac too
[2008/06/04 19:17:36] <fujin> have had better luck with the apc shit
[2008/06/04 19:17:57] <muerr> i don't like our avocent PDUs. their web interface is terrible.
[2008/06/04 19:18:08] <muerr> you can create multiple users, but only one can be logged in at a time. O.o ?
[2008/06/04 19:18:26] <ashp> I haven't dared touch clustering.
[2008/06/04 19:18:31] <Volcane> anyway, bed time
[2008/06/04 19:18:51] <Volcane> ashp: good luck :)
[2008/06/04 19:18:53] <muerr> ashp: Veritas, Sun and HACMP clustering have caused me many hours of overtime.
[2008/06/04 19:19:13] <muerr> I imagine RHCS will be no different. :-\
[2008/06/04 19:19:51] <muerr> Its come a long way since RHEL 2.1 AS's "I want to be a real cluster when I grow up" cluster.
[2008/06/04 19:20:13] <ashp> Luckily weve just been able to load balance stuff and never 'cluster' anything
[2008/06/04 19:20:29] <fujin> rhcs is pretty
[2008/06/04 19:20:33] <fujin> prefer it to heartbeat anywho
[2008/06/04 19:20:54] <muerr> We've got heartbeat too... in fact, I've been working on our heartbeat module.
[2008/06/04 19:21:12] <muerr> http://github.com/jtimberman/puppet/tree/master/heartbeat
[2008/06/04 19:21:13] <muerr> :)
[2008/06/04 19:21:21] <fujin> the hacks you have to do to get similar functionality out of heartbeat compared to RHCS
[2008/06/04 19:21:25] <fujin> make me cringe
[2008/06/04 19:21:39] <fujin> anyway I digrses
[2008/06/04 19:21:44] <fujin> ressss
[2008/06/04 19:21:45] <muerr> Yes. Having read through documentation and sample haresources, I do not look forward to it.
[2008/06/04 19:21:54] <fujin> ;P
[2008/06/04 19:22:02] <muerr> :)
[2008/06/04 19:22:23] <muerr> Well, I don't know what to think of RHCS yet, I don't know how well it will be handled via Puppet.
[2008/06/04 19:22:36] <fujin> mm
[2008/06/04 19:22:49] <fujin> handling it with Puppet doesn't really seem smart to me, especially with fencing and so on
[2008/06/04 19:23:18] <fujin> probably just not thinking about it correctly though
[2008/06/04 19:23:23] <muerr> Course, Zimbra installation for cluster environments has a special script that supposedly writes the cluster.conf file, so I think it'll just be "get the software installed" from Puppet.
[2008/06/04 19:23:46] <muerr> Yeah. I wrote a bunch of notes about how to go about this a couple weeks ago. Then I had to set up a kickstart+puppet environment for rhel4.
[2008/06/04 19:24:01] <gepetto> ::puppet:: Whos Using Puppet edited by huangmingyou @ http://reductivelabs.com/trac/puppet/wiki/WhosUsingPuppet (by huangmingyou@gmail.com)
[2008/06/04 19:29:46] @ andrewcshafer left channel #puppet ()
[2008/06/04 19:30:03] @ andrewcshafer joined channel #puppet
[2008/06/04 19:30:33] @ Quit: patobrien: "Leaving"
[2008/06/04 19:30:57] @ Quit: markl_: "Lost terminal"
[2008/06/04 19:34:45] <heydrick> is there a good way to regenerate puppetca's certs and stuff?
[2008/06/04 19:34:57] <heydrick> like wipe everything in /var/lib/puppet/ssl/ca and start fresh?
[2008/06/04 19:35:13] <shadoi> you just said it.
[2008/06/04 19:35:42] <heydrick> ha, k I'll try that
[2008/06/04 19:36:02] <ashp> goddamn stupid kickstart, make a cert request :/
[2008/06/04 19:38:57] <ashp> hmm, invalid environment bootstrap, i wonder if it even checked the server before erroring
[2008/06/04 19:39:58] <ashp> I don't have to list environments = etc,etc,etc in puppet.conf on CLIENTS, right?
[2008/06/04 19:40:55] <shadoi> nope
[2008/06/04 19:41:17] <ashp> Hmm, I wonder why it insists my bootstrap environment is invalid suddenly then
[2008/06/04 19:41:22] <muerr> spite
[2008/06/04 19:41:23] * muerr poof
[2008/06/04 19:41:27] @ Quit: muerr: "Leaving."
[2008/06/04 19:42:45] <ashp> It checks Puppet::Node::Environment.valid?
[2008/06/04 19:42:52] <ashp> Now to try and figure out if that checks serverside.
[2008/06/04 19:44:50] <ashp> Turns out you need environments = in the client too.
[2008/06/04 19:49:57] @ Quit: jvanzyl:
[2008/06/04 19:52:59] <ashp> I really must learn to use svn branches or move to git.
[2008/06/04 19:53:21] <fujin> git wins
[2008/06/04 19:53:29] <ashp> I now have about 6 module branches
[2008/06/04 19:53:44] <ashp> and currently I manage this by just cp'ing the files on top of other files when I want to update those branches
[2008/06/04 19:53:49] <ashp> because I don't use real svn branches :)
[2008/06/04 19:54:21] <ashp> I know it's the wrong thing to do, I just haven't had time to do the right thing yet
[2008/06/04 19:54:59] <ashp> I should be able to go into bootstrap and just check out the modules from development right into there, without lots of fuss
[2008/06/04 19:55:11] <shadoi> ashp: file that environments thing as a bug (even if it's just against the docs)
[2008/06/04 19:55:31] <ashp> It's probably a bug as it should really check against the server
[2008/06/04 19:55:40] <ashp> just like how it shouldn't override the servers default environment
[2008/06/04 19:56:28] <shadoi> yeah
[2008/06/04 20:08:29] <plathrop> gepetto: wiki:TypeReference
[2008/06/04 20:11:08] @ Quit: plathrop: "ERC Version 5.2 (IRC client for Emacs)"
[2008/06/04 20:15:45] @ jvanzyl joined channel #puppet
[2008/06/04 20:18:37] @ Quit: johnf: Read error: 110 (Connection timed out)
[2008/06/04 20:19:45] @ Quit: andrewcshafer:
[2008/06/04 20:20:10] @ andrewcshafer joined channel #puppet
[2008/06/04 20:26:04] @ Quit: shadoi: "leaving"
[2008/06/04 20:31:29] <ashp> One day I will find a way to murder Bri