Thursday, 2008-06-05

[2008/06/05 00:31:29] @ johnf joined channel #puppet
[2008/06/05 00:36:21] @ jvanzyl joined channel #puppet
[2008/06/05 00:40:31] @ Quit: randybias:
[2008/06/05 00:52:01] @ Quit: pdt:
[2008/06/05 01:01:48] @ Quit: mikearr: Read error: 104 (Connection reset by peer)
[2008/06/05 01:05:40] @ andrewcshafer joined channel #puppet
[2008/06/05 01:17:52] @ mikearr joined channel #puppet
[2008/06/05 01:29:20] <ska-fan> Ok, is there a getting started for 0.24? I have a site.pp which defines my node, puppetmaster is started on the same machine, starting puppetd -dv gives just some configuration loading and that's it.
[2008/06/05 01:29:57] <ska-fan> I don't see that it even tries to connect to the server
[2008/06/05 01:30:29] <ska-fan> which listens on 0.0.0.0:18140
[2008/06/05 01:36:46] <jamesturnbull> ska-fan: wiki:GettingStarted
[2008/06/05 01:36:49] <gepetto> jamesturnbull: ska-fan: wiki:GettingStarted is http://reductivelabs.com/trac/puppet/wiki/GettingStarted
[2008/06/05 01:40:29] @ Quit: shake-n-bake:
[2008/06/05 01:40:42] <ska-fan> why does puppetmasterd listen on 18140 by default, and puppet tries to connect to 8140 by default?
[2008/06/05 01:40:43] <jamesturnbull> ska-fan: and I am assuming Debian - I think that 18140 is a Debian bug
[2008/06/05 01:41:38] <ska-fan> debian, yes, ok, thanks
[2008/06/05 01:43:56] @ heydrick left channel #puppet ()
[2008/06/05 02:05:45] @ Quit: johnf: Read error: 104 (Connection reset by peer)
[2008/06/05 02:07:48] @ DavidS joined channel #puppet
[2008/06/05 02:09:19] @ randybias joined channel #puppet
[2008/06/05 02:17:55] @ johnf joined channel #puppet
[2008/06/05 02:18:04] @ Quit: fbe_: Read error: 110 (Connection timed out)
[2008/06/05 02:33:16] @ Quit: johnf: "Leaving."
[2008/06/05 02:39:32] @ johnf joined channel #puppet
[2008/06/05 02:44:31] @ Quit: randybias:
[2008/06/05 02:51:44] @ Innocenti joined channel #puppet
[2008/06/05 02:58:11] @ mfournier joined channel #puppet
[2008/06/05 03:16:12] @ DerekW joined channel #puppet
[2008/06/05 03:39:55] @ Quit: andrewcshafer:
[2008/06/05 03:47:30] <jamesturnbull> fujin: added the puppet-bugs cc
[2008/06/05 03:47:56] <DerekW> jamesturnbull: Evening! Got a quick Q about ipmess.rb facts...
[2008/06/05 03:48:00] <DerekW> Design decisin.
[2008/06/05 03:48:09] <jamesturnbull> DerekW: sure
[2008/06/05 03:48:14] <DerekW> We ignore interfaces without an IP when reporting the MAC
[2008/06/05 03:48:24] <DerekW> I'm unsure why - especially as we use bonded interfaces
[2008/06/05 03:48:31] <DerekW> Where eth0 and eth1 have no IP, but bond0 does
[2008/06/05 03:48:38] <DerekW> Unfortunately we don't get the facts for eth0 and eth1...
[2008/06/05 03:48:50] <jamesturnbull> DerekW: version?
[2008/06/05 03:48:59] <DerekW> 1.3.8
[2008/06/05 03:49:24] <jamesturnbull> DerekW: yeah okay - that makes sense
[2008/06/05 03:51:23] <DerekW> I'm currently using a custom fact, but I'm not sure if the mod should go mainstream
[2008/06/05 04:03:50] <jamesturnbull> DerekW: happy to have you patch Facter - you might want to do it in HEAD though - ipmess.rb got changed a lot
[2008/06/05 04:07:56] <DerekW> Cool - I'd prefer to report all MACs rather than just live or enslaved interfaces - you happy with that?
[2008/06/05 04:08:12] <DerekW> And have you moved this to github... I've been away for a bit and things have changed a little since then
[2008/06/05 04:10:37] @ Quit: jvanzyl:
[2008/06/05 04:15:10] <jamesturnbull> DerekW: um no the main repo is still at reductivelabs
[2008/06/05 04:15:18] @ Quit: dysinger:
[2008/06/05 04:15:28] <DerekW> jamesturnbull: thanks :)
[2008/06/05 04:15:38] <jamesturnbull> DerekW: not sure when luke last pulled from my repo though
[2008/06/05 04:38:59] @ Quit: kolla: Remote closed the connection
[2008/06/05 04:50:39] @ strerror_work joined channel #puppet
[2008/06/05 04:55:13] @ Quit: johnf: Read error: 110 (Connection timed out)
[2008/06/05 04:57:29] @ f--z joined channel #puppet
[2008/06/05 05:10:10] @ roald joined channel #puppet
[2008/06/05 05:17:10] @ Quit: jsgotangco: "Ciao"
[2008/06/05 05:21:46] @ kolla joined channel #puppet
[2008/06/05 05:31:19] @ Quit: strerror_work:
[2008/06/05 05:38:47] @ strerror_work joined channel #puppet
[2008/06/05 05:42:38] @ Quit: roald: "KVIrc 3.4.0 Virgo http://www.kvirc.net/"
[2008/06/05 06:04:39] @ johnf joined channel #puppet
[2008/06/05 06:33:41] @ roald joined channel #puppet
[2008/06/05 06:41:40] @ Quit: roald: Remote closed the connection
[2008/06/05 06:45:34] @ Quit: johnf: Read error: 113 (No route to host)
[2008/06/05 06:58:33] @ johnf joined channel #puppet
[2008/06/05 06:59:26] <madduck> where would i find a list of all variables puppet makes available to e.g. templates?
[2008/06/05 07:00:28] <DavidS> madduck: all facts and variables defined in your manifest
[2008/06/05 07:00:40] <DavidS> you can get at the facts by running "facter" from the CLI
[2008/06/05 07:01:02] <DavidS> (potentially setting additional factpaths via "RUBYLIB=")
[2008/06/05 07:01:10] <madduck> DavidS: excellent!
[2008/06/05 07:01:22] <madduck> now i need to figure out how to insert variable content right-aligned into a file! :)
[2008/06/05 07:01:32] <DavidS> there are a few more, like $servername, but they are usually not neccessary and well-hidden
[2008/06/05 07:01:39] <DavidS> madduck: good luck ;)
[2008/06/05 07:01:55] <madduck> ipaddress => 10.53.0.1
[2008/06/05 07:02:01] <DavidS> ruby has a % operator, it probably has formatting things like any other lang too
[2008/06/05 07:02:05] <madduck> that's wrong. that's the IP address of an openvpn interface
[2008/06/05 07:02:07] <madduck> not the primary one
[2008/06/05 07:02:53] <DavidS> madduck: define "primary", then send facter patch to jamesturnbull ;)
[2008/06/05 07:04:01] <DavidS> madduck: seriously, how can facter know which one of the many ips is "primary"?
[2008/06/05 07:04:48] <waawaamilkvampyr> 'ip route' says?
[2008/06/05 07:04:51] * waawaamilkvampyr guesses
[2008/06/05 07:05:05] <waawaamilkvampyr> er
[2008/06/05 07:05:09] <waawaamilkvampyr> ip addr that is
[2008/06/05 07:05:12] <madduck> DavidS: http://scratch.madduck.net/.tmp__mutt-lapse-1000-29632-1
[2008/06/05 07:06:10] <madduck> i filed a debian bug for now since i don't have much time
[2008/06/05 07:08:34] @ Quit: johnf: "Leaving."
[2008/06/05 07:08:59] @ Quit: f--z: "KVIrc 3.2.5 Anomalies http://www.kvirc.net/"
[2008/06/05 07:09:22] @ johnf joined channel #puppet
[2008/06/05 07:15:31] @ keithlard joined channel #puppet
[2008/06/05 07:30:17] <ska-fan> WHen using http://reductivelabs.com/trac/puppet/wiki/Recipes/Vim I have the problem that puppet tries to call update-alternatives before the vim package is installed, therefore update-alternatives fails. How can I make sure that vim is installed before update-alternatives is called?
[2008/06/05 07:32:19] <Volcane> in the exec{} add a 'require => Package["vim"],' line
[2008/06/05 07:33:52] <Volcane> so it will only do it once thats satisfied - vim is installed succesfully
[2008/06/05 07:33:53] <ska-fan> thanks
[2008/06/05 07:35:48] @ Quit: johnf: Read error: 113 (No route to host)
[2008/06/05 07:36:03] <ska-fan> that works, thanks :)
[2008/06/05 07:36:19] <Volcane> np
[2008/06/05 07:41:30] @ johnf joined channel #puppet
[2008/06/05 07:55:51] <madduck> is it intentional that with --onetime, puppet's debug and verbose output don't say anything beyond the standard SSLand yaml-related output?
[2008/06/05 07:59:48] <Volcane> add --verbose
[2008/06/05 08:00:03] <Volcane> and maybe --no-daemonize
[2008/06/05 08:00:23] <madduck> DavidS: so yorue CompleteConfiguration... if I use it, you'll take my patches? I saw you have some of Micah's patches in there...
[2008/06/05 08:03:03] @ thegcat joined channel #puppet
[2008/06/05 08:03:39] <Volcane> yeah this environment setting on the master does defo not work as advertised in the docs made by --genconfig
[2008/06/05 08:04:28] @ Quit: johnf: Read error: 113 (No route to host)
[2008/06/05 08:05:22] @ Quit: kenvandine: Read error: 110 (Connection timed out)
[2008/06/05 08:06:03] <DavidS> madduck: patches very welcome
[2008/06/05 08:14:10] <thegcat> if I have a user { "someuser": } and a file { "somefile": owner => "someuser", }, does puppet autorequire the user in the file?
[2008/06/05 08:15:20] <Volcane> nope
[2008/06/05 08:15:27] <fujin> DerekW: good to see you got it working :)
[2008/06/05 08:15:42] <Volcane> cos you dont need a user resource to use a username in user=>
[2008/06/05 08:16:19] <fujin> thegcat: you need to require => User[someuser]
[2008/06/05 08:16:26] @ f--z joined channel #puppet
[2008/06/05 08:16:27] <fujin> to achieve that relationship
[2008/06/05 08:17:07] <DavidS> Volcane, thegcat, fujin: really not? I was under impression that autorequiring was very optional, i.e. is only active iff the "other" resource actually is defined...
[2008/06/05 08:17:29] <thegcat> fujin: yes, I know I can force it, but puppet is afaik smart enough to autorequire some stuff
[2008/06/05 08:17:57] <DavidS> for a definitive answer look into lib/puppet/type/file.rb -> /autorequire/
[2008/06/05 08:18:24] <fujin> thegcat: hrm - not sure on that one.
[2008/06/05 08:18:36] <thegcat> like file { "/some/path": ensure => directory } and file { "/some/path/tofile": ensure => file} should autorequire the first for the second
[2008/06/05 08:19:01] <fujin> aye, looks like it'll autorequire the user and group
[2008/06/05 08:19:02] <thegcat> DavidS: damn, I keep forgetting the joys of OSS :-D
[2008/06/05 08:19:39] <DavidS> no comment :)
[2008/06/05 08:20:25] <thegcat> "# Autorequire the owner and group of the file." <== seems it does :-)
[2008/06/05 08:20:38] <thegcat> fujin: ACK
[2008/06/05 08:21:13] <fujin> sexy code
[2008/06/05 08:21:24] <Volcane> ah kewl, didnt know that, would be kewl if it would autorequire its parent dir for a file if its defined
[2008/06/05 08:21:55] <thegcat> Volcane: it does
[2008/06/05 08:22:04] <Volcane> nice, i should test that
[2008/06/05 08:22:08] <thegcat> Volcane: "# Autorequire any parent directories."
[2008/06/05 08:22:19] <Volcane> cos i think I've been putting them in by hand for completeness sake so far
[2008/06/05 08:22:29] <Volcane> so i probably wouldnt have noticed this behaviour :)
[2008/06/05 08:23:20] <thegcat> mmh, a user seems to autorequire its group
[2008/06/05 08:23:24] <thegcat> sweet too :->
[2008/06/05 08:24:06] <thegcat> puppet must be some sort of drug: the more I use it, the less I can imagine how I could live without ;-)
[2008/06/05 08:24:22] @ johnf joined channel #puppet
[2008/06/05 08:27:12] <jamesturnbull> madduck: if you patch Facter - can you work from HEAD please
[2008/06/05 08:28:33] <fujin> jamesturnbull: saw a bug email - they're pretty :)(
[2008/06/05 08:28:53] <fujin> replying to it and autoformatting into plaintext didn't munge anything too badly, either!
[2008/06/05 08:29:52] @ sparanjape joined channel #puppet
[2008/06/05 08:29:56] <fujin> ah well. my maintenance is done - going back to bed
[2008/06/05 08:29:57] <fujin> nightyall
[2008/06/05 08:30:26] <madduck> jamesturnbull: yes, sir.
[2008/06/05 08:30:59] @ Quit: f--z: "KVIrc 3.2.5 Anomalies http://www.kvirc.net/"
[2008/06/05 08:32:21] <DavidS> fujin: 'night!
[2008/06/05 08:32:59] <DavidS> madduck: yeah, patches are very welcome, just git-send-mail them to david@schmitt.edv-bus.at
[2008/06/05 08:33:14] <madduck> EDV Bus, huh?
[2008/06/05 08:33:44] @ f--z joined channel #puppet
[2008/06/05 08:36:56] <DavidS> madduck: yeah, from EDV-Beratung&Service ... (Electronic data processing - consulting and services for the non-german speakers)
[2008/06/05 08:37:49] <madduck> here was i thinking you drive around in a Volkswagen Hippie bus doing IT support
[2008/06/05 08:38:44] <evil_steve> madduck: no, that's jamesturnbull
[2008/06/05 08:38:53] <DavidS> I was thinking about getting someone to do me a logo like this, but I never developed the idea .. also I'd believe my father wouldn't be very "supportive" ;)
[2008/06/05 08:39:30] <DavidS> (*father, see http://www.edv-bus.at/, first picture )
[2008/06/05 08:40:50] <madduck> evil_steve: but not in austria
[2008/06/05 08:41:06] <madduck> DavidS: Parameter onlyif failed: 'grep -qFx 'EDITMOTD' '/etc/default/rcS'' is both unqualifed and specified no search path at /etc/puppet/modules/common/manifests/defines/line.pp:37; using cached catalog
[2008/06/05 08:41:13] <madduck> am i just missing path?
[2008/06/05 08:41:39] <Volcane> either do /bin/grep
[2008/06/05 08:41:43] <Volcane> or add path =>
[2008/06/05 08:41:57] <DavidS> madduck: yeah, specify Exec { path => "something sensible" } in your site.pp
[2008/06/05 08:44:53] <madduck> just an empty Exec like that?
[2008/06/05 08:46:05] <thegcat> madduck: it's upper case, so it defines a default for all exec {}s in the same scope, or in child scopes
[2008/06/05 08:46:55] <thegcat> so Exec { path => "something" } would the same as adding path => "something" to all your "underlying" exec {}s
[2008/06/05 08:48:08] <madduck> kewl
[2008/06/05 08:48:52] <jamesturnbull> evil_steve: I don't drive
[2008/06/05 08:48:53] <madduck> DavidS: any reason why your common module's line function uses grep -F? what if I want to remove all liens with EDITMOTD in them?
[2008/06/05 08:51:59] <Volcane> jamesturnbull: you in sydney? from what i remember of the few AU places I were Sydney is about one of the few you can manage without a car
[2008/06/05 08:54:19] <madduck> mlebourne is no-car-friendly
[2008/06/05 08:55:03] <Volcane> ah kewl, not mad it to melbourne, spent plenty of time in sydney though
[2008/06/05 08:55:08] <Volcane> mad=made
[2008/06/05 08:56:43] <jamesturnbull> Volcane: Melbourne
[2008/06/05 08:56:49] <madduck> how do classes and modules interact? if i am writing a module, do i put it into a class?
[2008/06/05 08:56:58] <madduck> or is that the job of the user of the module?
[2008/06/05 08:57:10] <jamesturnbull> Volcane: easy to get around. I walk or ride most places - inner city if very compact
[2008/06/05 08:57:22] <jamesturnbull> Volcane: s/if/is/
[2008/06/05 08:57:27] <madduck> else, how do i tell puppet which nodes use a module?
[2008/06/05 08:57:38] <DavidS> madduck: Line is only for complete lines (see also -x), there are quite a few difficult corner cases if you start talking about multiple lines and regexps
[2008/06/05 08:57:49] <Volcane> jamesturnbull: kewl, someone i work with is pestering me weekly to move there hehe
[2008/06/05 08:57:58] <jamesturnbull> Volcane: where are you?
[2008/06/05 08:58:03] <DavidS> madduck: a module is a collection of cooperating stuff
[2008/06/05 08:58:19] <DavidS> i.e. a type, a file and a supporting define
[2008/06/05 08:58:24] <Volcane> jamesturnbull: london
[2008/06/05 08:59:02] <DavidS> madduck: puppet helps by "include someclass" => "try to autoload $modulepath/$someclass/manifests/init.pp"
[2008/06/05 08:59:05] <jamesturnbull> Volcane: not my favourite place - too cold and too crowded - won't work there again I suspect :)
[2008/06/05 08:59:30] <Volcane> jamesturnbull: hehe, the heat is whats keeping me from sydney, i like the cold :)
[2008/06/05 08:59:35] <DavidS> but of course there can be many classes (and defines in a module) and modules can be loaded manually by "import modulename"
[2008/06/05 08:59:50] <jamesturnbull> Volcane: Melbourne's a nice mix
[2008/06/05 09:00:53] <Volcane> jamesturnbull: yeah so I am told, I am still really ejoying europe and being near things, also a comfortable timezone to my mother (in south africa) so no moving plans
[2008/06/05 09:01:05] <madduck> DavidS: so i just include the module from the node defintiion?
[2008/06/05 09:01:27] <madduck> DavidS: and to remove lines matching a regexp from a file, I have to use exec with sed -i?
[2008/06/05 09:02:43] <DavidS> madduck: there is the manifests git repo on http://git.black.co.at/ where you can look at (an old version) of my complete /etc/puppet to get a feeling for how to use this stuff
[2008/06/05 09:04:00] <DavidS> madduck: sed: yeah .. experiment with it a bit, If you get something working, I could arrange putting it into a polished define .. something like "line_set(ensure, content, source, position)" or something similar
[2008/06/05 09:04:16] <DavidS> something that is really usable and has a defined meaning
[2008/06/05 09:04:48] <madduck> ok
[2008/06/05 09:04:52] <madduck> one more question...
[2008/06/05 09:04:58] <madduck> I am preparing a motd module
[2008/06/05 09:05:43] <madduck> the idea is that /etc/motd.tail should be created from (a) a file from the fileserver, if one exists (b) a template otherwise, (c) /dev/null if neither a or b
[2008/06/05 09:06:03] <madduck> but i don't know how to combine fileserver, template, and local file like this.
[2008/06/05 09:06:23] <DavidS> madduck: look at concatenated_file in the common module
[2008/06/05 09:06:36] * Volcane wish++ templates had a method like source where you can choose a template based on first one that exist
[2008/06/05 09:08:21] <DavidS> but i think this requirement is too complex
[2008/06/05 09:11:15] <madduck> it's useful though
[2008/06/05 09:11:27] <madduck> and i don't know how concatenated_file is supposed to help here
[2008/06/05 09:13:34] <thegcat> can I "extend" types in some way?
[2008/06/05 09:14:57] <madduck> seems like you can trivially reuse them in your own definitions
[2008/06/05 09:15:00] <DavidS> madduck: client-side assemly
[2008/06/05 09:15:16] <thegcat> i.e.: class stuff::littlecontrol { user { "someuser": ensure => present, } } and class stuff { include stuff::littlecontrol }
[2008/06/05 09:15:33] <madduck> thegcat: you can derive classes
[2008/06/05 09:15:37] <thegcat> an being able to add a uid and a gid to someuser
[2008/06/05 09:15:49] <thegcat> in the stuff class, but only there
[2008/06/05 09:18:27] <madduck> hm...
[2008/06/05 09:18:29] <madduck> err: //File[/var/lib/puppet/modules]/source: Could not describe /common/modules: Certificates were not trusted: hostname was not match with the server certificate
[2008/06/05 09:18:49] <madduck> but the puppetd.server is set to the same FQDN as the server cert's CN...
[2008/06/05 09:18:53] <madduck> (puppetmaster.madduck.net)
[2008/06/05 09:21:58] <madduck> DavidS: git://git.black.co.at/manifests cannot be cloned
[2008/06/05 09:22:11] @ kambiz joined channel #puppet
[2008/06/05 09:22:31] <madduck> and manifests.git/.git seems like it should not be there...
[2008/06/05 09:23:51] <DavidS> dang
[2008/06/05 09:26:43] <DavidS> madduck: fixed
[2008/06/05 09:30:44] <madduck> DavidS: how do you manage the whole collection of modules? manually? mr?
[2008/06/05 09:30:55] <madduck> i mean, how would you update them all, or display any local changes in any of them?
[2008/06/05 09:31:40] <DavidS> for i in *; do (cd $i; git... ); done # which kind of sucks, but I haven't had the power to rise up to something more definitive
[2008/06/05 09:32:38] <DavidS> 99% of the time i do have production==development and 99% of the time I update all my (changed) modules together
[2008/06/05 09:32:49] <DavidS> so I don't have any need for more management
[2008/06/05 09:33:18] <DavidS> I would look into (scripting with) git submodules first though, if I really had to give them more structure
[2008/06/05 09:33:48] * Volcane is finding it hard keeping a dev and prod branch easily in sync for use in environments
[2008/06/05 09:34:26] <Volcane> need a way to take a module from whatever is your main branch, only using a dev one if its available
[2008/06/05 09:34:46] <Volcane> so once you've done whatever work you were doing on module, u can merge to prod and just ditch the dev one
[2008/06/05 09:35:04] @ shenson_not_here is now known as shenson
[2008/06/05 09:36:24] @ flakrat joined channel #puppet
[2008/06/05 09:37:15] @ jbt joined channel #puppet
[2008/06/05 09:38:46] <DavidS> Volcane: I have setup appropriate remotes in git and do git push . dev:prod && git push production when I'm satisfied
[2008/06/05 09:39:20] <Volcane> I'm on svn atm for this stuff, just cos i didnt really have time to learn something new hwen i needed it
[2008/06/05 09:39:38] <DavidS> yeah svn is a pita when working with more branches
[2008/06/05 09:39:50] <madduck> DavidS: http://git.madduck.net/v/puppet/motd.git -- still in development, I guess
[2008/06/05 09:39:53] <DavidS> but then I never used it "properly"
[2008/06/05 09:40:08] <madduck> wait, let me change the namespace
[2008/06/05 09:40:14] <madduck> http://git.madduck.net/v/puppet/modules/motd.git
[2008/06/05 09:42:51] <DavidS> you'll have to wrap the whole contents of manifests/init.pp into a class motd{...} if you want to "include motd", else it will be applied on all nodes IFF you "import motd" anywhere in your manifest
[2008/06/05 09:43:25] @ jvanzyl joined channel #puppet
[2008/06/05 09:43:44] <madduck> okay, that's the answer to an earlier question
[2008/06/05 09:44:59] <DavidS> madduck: ah, sorry, I did "get" that question ...
[2008/06/05 09:47:49] <madduck> np
[2008/06/05 09:47:57] <madduck> git submodules make most sense here, I think.
[2008/06/05 09:50:19] @ hiffy joined channel #puppet
[2008/06/05 09:50:50] <DavidS> madduck: but are even more (typing) overhead
[2008/06/05 09:51:09] <madduck> well... once i figure out how I am using puppet, I can streamline it.
[2008/06/05 09:52:53] <DavidS> yeah .. for a first shot though, they don't add any value
[2008/06/05 09:54:29] <madduck> they make git status be quiet! :)
[2008/06/05 09:54:39] <madduck> any clue what this is about?
[2008/06/05 09:54:41] <madduck> err: //File[/var/lib/puppet/modules]/source: Could not describe /common/modules: Certificates were not trusted: hostname was not match with the server certificate
[2008/06/05 09:55:08] <madduck> and also, am i correct in assuming that allow statements in fileserver.conf match the certificate CN, instead of DNS?
[2008/06/05 09:55:47] <DavidS> madduck: puppet:/// uses $servername or "puppet"
[2008/06/05 09:56:59] <madduck> DavidS: yes, and this is in your common/manifests/init.pp, it seems.
[2008/06/05 09:57:09] <madduck> but servername is set to puppetmaster
[2008/06/05 09:58:30] <madduck> DavidS: you use puppet://$servername/ in common, instead of puppet:/// - any reason why?
[2008/06/05 09:59:20] <madduck> (i can send a patch :)
[2008/06/05 10:00:09] <DavidS> hm ... "tradition" :)
[2008/06/05 10:00:31] <DavidS> can you override $servername in the site.pp??
[2008/06/05 10:01:11] <madduck> no idea; I don't.
[2008/06/05 10:04:47] <madduck> patch sent anyway
[2008/06/05 10:05:09] <jamesturnbull> holoway: do you have any iclassify screenshots you can email me?
[2008/06/05 10:05:26] <jamesturnbull> holoway: I'd like to use them in a presentation for OSCON
[2008/06/05 10:06:25] @ Quit: f--z: Read error: 110 (Connection timed out)
[2008/06/05 10:19:55] @ shake-n-bake joined channel #puppet
[2008/06/05 10:21:14] <DavidS> hmm .. how do i get madduck's mail from my local thunderbird to my server without breaking my fingers?
[2008/06/05 10:23:01] @ Quit: jbt: " HydraIRC -> http://www.hydrairc.com <- In tests, 0x09 out of 0x0A l33t h4x0rz prefer it :)"
[2008/06/05 10:23:35] @ Aji-Dahaka joined channel #puppet
[2008/06/05 10:34:56] <DavidS> damn, seems like git doesn't convert line-endings where appropriate :-/
[2008/06/05 10:35:08] @ verwilst joined channel #puppet
[2008/06/05 10:35:27] <verwilst> hi guys
[2008/06/05 10:35:39] <verwilst> trying to run puppetd on my client with --server xxxxxxx -d
[2008/06/05 10:35:54] <verwilst> i only see /Settings stuffs wrt my ssl keys
[2008/06/05 10:36:04] <verwilst> and in the end debug: Finishing transaction 23634123124420 with 0 changes
[2008/06/05 10:36:13] <verwilst> but no connection to the puppetmaster or anything..
[2008/06/05 10:36:15] <verwilst> any ideas?
[2008/06/05 10:36:57] <verwilst> jus lines like Autorequiring File[/var/lib/puppet/ssl/public_keys]
[2008/06/05 10:37:01] <verwilst> +t
[2008/06/05 10:37:18] <Volcane> put the whole output in a pastie, and send us the url lets see
[2008/06/05 10:37:21] <chadh> verwilst: what does the puppetmaster say?
[2008/06/05 10:38:13] <verwilst> nothing actually..
[2008/06/05 10:38:23] <verwilst> when i run with --test it creates the ssl request
[2008/06/05 10:38:25] <verwilst> i sign it
[2008/06/05 10:38:30] <verwilst> then try to run without --test
[2008/06/05 10:38:34] <verwilst> but nothing..
[2008/06/05 10:39:27] <Volcane> run it with --onetime --verbose --trace ----no-daemonize
[2008/06/05 10:39:30] <verwilst> i just see the autorequiring lines at the client, that's all
[2008/06/05 10:39:34] <Volcane> --no-daemonize even
[2008/06/05 10:39:40] @ Quit: kolla: Remote closed the connection
[2008/06/05 10:39:45] <Volcane> should spew loads more then
[2008/06/05 10:40:25] <verwilst> err: /File[/var/lib/puppet/lib]: Failed to generate additional resources during transaction: Certificates were not trusted: hostname was not match with the server certificate
[2008/06/05 10:40:31] <verwilst> it did :)
[2008/06/05 10:40:51] <Volcane> great, theres some ssl url in the topic, see if theres something that match your case
[2008/06/05 10:43:08] <verwilst> hm
[2008/06/05 10:43:20] <verwilst> maybe because i use the ip address to connect?
[2008/06/05 10:44:16] <verwilst> and the CN of my server cert is just the hostname
[2008/06/05 10:44:21] <verwilst> not the fqdn
[2008/06/05 10:46:27] <hiffy> verwilst: yes, that's what i found to be the case. Also, make sure you have a domain to your hostnames in /etc/host.
[2008/06/05 10:46:50] <hiffy> i.e. "debianbox" will screw up vs "debianbox.internal"
[2008/06/05 10:47:21] <hiffy> */etc/hosts
[2008/06/05 10:48:30] <verwilst> so i have to add the fqdn to puppetmaster on every host?
[2008/06/05 10:48:42] <thegcat> DavidS: send a forward to yourself, that should get the mail on the server ;-)
[2008/06/05 10:49:12] <DavidS> madduck: pushed
[2008/06/05 10:49:50] <hiffy> verwilst: aliasing 'puppet' to point to your puppetmaster's ip tends to work really well
[2008/06/05 10:49:52] <DavidS> thegcat: I should probably just make a new imap folder, move the mail ther and then git-am ~/Maildir/.puppet-patches
[2008/06/05 10:50:15] <DavidS> instead I save-as'd, sftp'd, recode'd and then did a git-am
[2008/06/05 10:50:21] <DavidS> which kinda sucke'd
[2008/06/05 10:50:36] <verwilst> hiffy: on the clients
[2008/06/05 10:50:42] <thegcat> oh, you meant get the mail on the server, like in as a file, not on the mail-server
[2008/06/05 10:50:59] <DavidS> thegcat: right
[2008/06/05 10:51:03] <thegcat> ah, ok
[2008/06/05 10:51:10] <hiffy> verwilst: yes.
[2008/06/05 10:51:26] <thegcat> I hate clients with too restrictive security policies
[2008/06/05 10:51:33] <DavidS> but i have shell access to my imap server, so it would have worked by using the imap-folder slaps himself with a trout
[2008/06/05 10:52:37] <thegcat> I mean: it's nice to see someone cares a little about security, but to the point where we sell them our software as a service, they buy 3 servers only for us, and we don't even get root for at least the installation phase
[2008/06/05 10:53:28] <thegcat> I'm done with writing mails for every little chmod or package install or user creation i need...
[2008/06/05 10:53:44] <DavidS> thegcat: I thought appliances/saas are bouth wholesale O:-)
[2008/06/05 10:54:19] <DavidS> anyways, I'm off, see ya all! and thanks for the patch madduck!
[2008/06/05 10:54:27] @ Quit: DavidS: "Leaving."
[2008/06/05 10:55:06] @ fbe_ joined channel #puppet
[2008/06/05 10:55:09] <verwilst> Could not describe /plugins: Cannot access mount[plugins]
[2008/06/05 10:55:09] <verwilst> hm
[2008/06/05 10:55:16] <verwilst> it needs a plugins mount somewhere too now?
[2008/06/05 10:55:24] <verwilst> ( been a year or so since i last used puppet :P )
[2008/06/05 10:55:31] <hiffy> mkdir /etc/puppet/plugins at worst methinks
[2008/06/05 10:55:35] @ _newbie_ joined channel #puppet
[2008/06/05 10:55:40] <thegcat> DavidS: small software foundry (7 ppl + 8 students or something), and we just don't have the capacity and the time to care about hardware, and our costumers already have people they pay for it
[2008/06/05 10:55:41] <verwilst> a simple empty dir is all it takes?
[2008/06/05 10:55:44] <verwilst> good
[2008/06/05 10:55:53] <hiffy> unless you're referring to it in your site.pp? I could be wrong, don't remember seeing that myself
[2008/06/05 10:55:59] <verwilst> im not
[2008/06/05 10:56:00] <verwilst> :)
[2008/06/05 10:56:18] <verwilst> warning: /File[/var/lib/puppet/lib]/ensure: No specified sources exist, seeing stuff like this too, but no idea where it comes from
[2008/06/05 10:56:26] <verwilst> i only have 1 node and 1 file to test :)
[2008/06/05 10:56:49] <thegcat> I'd just wish they would give us a vpn access to the servers, a base install of somedistro and the adress of a proxy to get to the internet
[2008/06/05 10:56:59] <hiffy> verwilst: you're doing a file { } with a source => right?
[2008/06/05 10:57:23] <thegcat> but the new servers they're rolling out for us don't even have a dns near them weeps
[2008/06/05 10:57:27] <thegcat> </rant>
[2008/06/05 10:57:53] @ Quit: _newbie_: Client Quit
[2008/06/05 10:57:56] <verwilst> hiffy: yip
[2008/06/05 10:58:05] <hiffy> verwilst: your source definition is wrong :P
[2008/06/05 10:58:14] <verwilst> hm
[2008/06/05 10:58:18] <verwilst> did that change too? :P
[2008/06/05 10:58:27] <hiffy> verwilst: also make sure /var/lib/puppet/lib exists
[2008/06/05 10:58:30] @ andrewcshafer joined channel #puppet
[2008/06/05 10:58:37] <hiffy> verwilst: well you might be referring to the client's local directory
[2008/06/05 10:58:51] <hiffy> instead of the puppetmasters; i've found the syntax to be a bit confusing when I first looked at it
[2008/06/05 10:59:08] @ roald joined channel #puppet
[2008/06/05 10:59:14] <hiffy> I wouldn't know, I picked this up earlier this week :P
[2008/06/05 10:59:15] <verwilst> nah: puppet://<puppetmaster-ip>/files/test/test.conf
[2008/06/05 10:59:18] <verwilst> something like that
[2008/06/05 10:59:43] <verwilst> but i read you dont need the ip anymore?
[2008/06/05 10:59:44] @ jbrothers joined channel #puppet
[2008/06/05 10:59:45] <hiffy> always use domains instead of ips, puppet/files/test, etc, AND you have to set up a fileserver.conf or something like that
[2008/06/05 10:59:59] <verwilst> fileserver.conf is setup :)
[2008/06/05 11:00:08] <verwilst> hm
[2008/06/05 11:00:19] <chadh> verwilst: yeah, puppet:///... is fine
[2008/06/05 11:00:23] @ Quit: shake-n-bake:
[2008/06/05 11:00:37] <thegcat> verwilst: if puppet is an alias for your puppetmaster machine everywhere, you could even just got with puppet:///files/test/test.conf
[2008/06/05 11:00:51] <chadh> assuming your fileserveris your puppetmaster, of course
[2008/06/05 11:03:27] <verwilst> that fileserver is puppetmaster itself eh?
[2008/06/05 11:03:33] <verwilst> no seperate daemon?
[2008/06/05 11:03:40] <verwilst> goddamn this has been a long time :P
[2008/06/05 11:08:57] <verwilst> arg i've got to run
[2008/06/05 11:09:00] <verwilst> but ill be back ;)
[2008/06/05 11:09:06] <verwilst> thanks for the help so far guys
[2008/06/05 11:09:09] @ Quit: verwilst: "Ex-Chat"
[2008/06/05 11:09:52] <Volcane> oh, u can have multiple directories in the module path
[2008/06/05 11:10:22] @ Quit: Innocenti: Read error: 113 (No route to host)
[2008/06/05 11:10:24] <Volcane> didnt know that, i am sure with that i can make my thing where i can use the same bunch of modules for all environments, and just copy into devel a module i am working on
[2008/06/05 11:15:03] @ martha joined channel #puppet
[2008/06/05 11:15:10] @ Quit: mfournier: Read error: 113 (No route to host)
[2008/06/05 11:16:00] @ Quit: hiffy: "leaving"
[2008/06/05 11:18:05] @ mfournier joined channel #puppet
[2008/06/05 11:19:39] @ muerr joined channel #puppet
[2008/06/05 11:20:46] @ Quit: andrewcshafer:
[2008/06/05 11:25:21] @ hiffy joined channel #puppet
[2008/06/05 11:31:09] @ andrewcshafer joined channel #puppet
[2008/06/05 11:34:20] @ dysinger joined channel #puppet
[2008/06/05 11:35:40] @ Quit: andrewcshafer: Client Quit
[2008/06/05 11:37:24] @ shake-n-bake joined channel #puppet
[2008/06/05 11:38:54] <mDuff> I have two puppet modules each of which try to define file{"/some/path": ensure=>directory}. I only control the code to one of them. Is there a clean way to make my code work with or without the other module short of switching to an exec doing a mkdir -p?
[2008/06/05 11:41:10] <mDuff> if(defined(File["/some/path"])) would seem to make sense, but one of my coworkers makes the point that it may be prone to race conditions depending on whose module is evaluated first.
[2008/06/05 11:47:15] @ Quit: wibbit: "Ex-Chat"
[2008/06/05 11:48:35] @ Quit: strerror_work:
[2008/06/05 11:54:39] @ andrewcshafer_ joined channel #puppet
[2008/06/05 12:00:14] @ Quit: thegcat:
[2008/06/05 12:01:02] @ DavidS joined channel #puppet
[2008/06/05 12:01:07] @ Quit: DavidS: Read error: 104 (Connection reset by peer)
[2008/06/05 12:10:12] <madduck> can't modules provide templates?
[2008/06/05 12:11:35] <madduck> i have modules/motd/init.pp read a template etc/motd.tail and modules/motd/templates/etc/motd.tail exists...
[2008/06/05 12:12:15] @ brscott joined channel #puppet
[2008/06/05 12:13:28] @ brscott left channel #puppet ()
[2008/06/05 12:19:43] @ markl_ joined channel #puppet
[2008/06/05 12:23:18] @ DavidS joined channel #puppet
[2008/06/05 12:23:32] <DavidS> zo
[2008/06/05 12:23:34] <DavidS> yo
[2008/06/05 12:23:40] <muerr> yo
[2008/06/05 12:23:47] <DavidS> damn english keyboard, but at least i can puppeteer :)
[2008/06/05 12:23:58] <muerr> :-)
[2008/06/05 12:24:28] * DavidS is currently twiddling on his commit mails
[2008/06/05 12:25:08] <DavidS> => http://groups.google.com/group/puppet-commit/browse_thread/thread/166b7a49f3403506
[2008/06/05 12:25:33] <martha> madduck: template(motd/etc/motd.tail)
[2008/06/05 12:28:11] <DavidS> actually i think i'd rather have one mail per commit, instead of one mail per push ... any opinions?
[2008/06/05 12:28:20] <DavidS> hi martha :)
[2008/06/05 12:28:33] <martha> hi David
[2008/06/05 12:29:04] <DavidS> gepetto: seen lak?
[2008/06/05 12:29:04] <gepetto> DavidS: lak was last seen 2 days, 9 minutes and 25 seconds ago, quitting IRC ()
[2008/06/05 12:30:55] <madduck> when does puppetmaster reload modules?
[2008/06/05 12:31:05] @ Quit: DerekW: "Leaving"
[2008/06/05 12:31:25] <martha> madduck: when the client connects, it re-compiles then
[2008/06/05 12:32:01] <madduck> but i tried to use motd/etc/motd.tail and yet after a client connected, the error in syslog still complains about a missing etc/motd.tail
[2008/06/05 12:32:33] <DavidS> madduck: have zou used --test on the client? this is neccesary to override various caches
[2008/06/05 12:32:42] <martha> what's the exact error? and can you pastie the manifest?
[2008/06/05 12:34:53] <madduck> Could not find template etc/motd.tail at /etc/puppet/modules/motd/manifests/init.pp:12 on node bell.madduck.net
[2008/06/05 12:35:17] <madduck> http://rafb.net/p/LPqoJ651.txt is the manifest
[2008/06/05 12:38:15] @ plathrop joined channel #puppet
[2008/06/05 12:38:26] <plathrop> j opsit
[2008/06/05 12:38:38] <plathrop> sorry.
[2008/06/05 12:49:54] @ Quit: hiffy: "Lost terminal"
[2008/06/05 12:50:53] <madduck> hm, it just keeps using a cached copy, I think.
[2008/06/05 12:51:05] <madduck> I put the template on line 13, but the error still says ":21"
[2008/06/05 12:51:09] <madduck> :12 even
[2008/06/05 12:52:05] @ Quit: sparanjape: "Man who run behind car get exhausted"
[2008/06/05 12:55:13] <madduck> restarting the puppetmaster fixed thigns
[2008/06/05 12:55:33] <madduck> maybe i have not restarted it since importing the module
[2008/06/05 12:55:39] <madduck> using some form of *?
[2008/06/05 12:56:16] <gepetto> ::puppet:: Development Lifecycle edited by DavidS @ http://reductivelabs.com/trac/puppet/wiki/DevelopmentLifecycle (by david@schmitt.edv-bus.at)
[2008/06/05 13:06:29] @ Quit: jvanzyl:
[2008/06/05 13:07:30] <benp-> redmine looks nice
[2008/06/05 13:18:20] @ Quit: plathrop: "ERC Version 5.2 (IRC client for Emacs)"
[2008/06/05 13:20:00] @ plathrop joined channel #puppet
[2008/06/05 13:21:08] @ jvanzyl joined channel #puppet
[2008/06/05 13:23:48] <DavidS> "all mail clients suck. webmails even more so" -- my corollary to the mutt mott
[2008/06/05 13:23:51] <DavidS> o
[2008/06/05 13:25:00] <muerr> heh. i prefer webmail.
[2008/06/05 13:25:22] <muerr> but i use three different computers and two with at least two OS's to access email :)
[2008/06/05 13:27:09] <benp-> i prefer cronolog's motto
[2008/06/05 13:28:46] <Volcane> yeah, zimbra webmail (after gmail started holding my mail to ranson with their imap throttling) is unfortunately the way to go
[2008/06/05 13:28:52] <Volcane> also use multiple computers etc
[2008/06/05 13:29:30] <muerr> Volcane: heh... zimbra. too bad their support hasn't extended to rhel 5 + rhcs 5, which has been out for a year.
[2008/06/05 13:29:46] <muerr> and their installation/config method doesn't translate well to puppet.
[2008/06/05 13:30:25] <Volcane> muerr: yeah thats true, but apart from those i am pretty happy with it, i only use it at a small client and for my own mail, both opensource edition, so luckily 'works on centos 5, not supported' is ok for me
[2008/06/05 13:30:48] <muerr> Indeed.
[2008/06/05 13:31:31] <Volcane> right, massive refactoring of my directory structures done.
[2008/06/05 13:31:37] <muerr> That would have been my preference, but email is pretty critical for us, since we have people all over the US
[2008/06/05 13:31:56] <Volcane> now i have a common set of modules, and when i want to develop on a module and test, i just svn copy it to the development branch and work on it - dev box will get it automatically
[2008/06/05 13:32:10] @ pleemans joined channel #puppet
[2008/06/05 13:32:57] <Volcane> muerr: yeah, i refuse to support overly complex systems for email, once opensource zimbra doesnt do it for someone i hook them up with a business partner that specialises in hosted exchanges and then its not my problem. I hate supporting email
[2008/06/05 13:33:22] <muerr> google apps for your domain ftw, apparently.
[2008/06/05 13:34:08] <Volcane> muerr: i was with it, used to imapsync my mail down for backups, but recently they've stasrted throtling imap. so a big update from a mail client or imampsync and it would either a) chop your mails off b) just not talk to you for a while
[2008/06/05 13:34:34] <Volcane> muerr: effectively holding my stuff to ransom, it took me a day to move my mail - one mail box - off google cos of that, dragging mail in thunderbird in groups of a 100
[2008/06/05 13:34:41] <muerr> Volcane: imap is just a terrible protocol though
[2008/06/05 13:35:00] @ Quit: madduck: Remote closed the connection
[2008/06/05 13:35:03] @ madduck joined channel #puppet
[2008/06/05 13:35:05] <Volcane> sure, but they've not totally broken it
[2008/06/05 13:35:25] <muerr> Volcane: yeah for that reason. we've got users who have so much email in their inbox, they're causing the disks to be near capacity, but moving off the imap server to their local system is time prohibitive.
[2008/06/05 13:35:33] <ashp> volcane: Adding the bootstrap env via kickstart worked in the end :)
[2008/06/05 13:35:40] <ashp> volcane: However! I discovered you need environments = in the client as well
[2008/06/05 13:35:57] <Volcane> ashp: yip, ditto :) well i told you that last night already, but i think you might have been afk at the time
[2008/06/05 13:36:36] <Volcane> ashp: the moduledir option can take multiple directories in a : sep list, so now have a common modules dir, and an environment specific module dir
[2008/06/05 13:36:37] <ashp> It works at least, I tested it a few times, I think I'm going to file some tickets in a bit about the whole thing, because I think environments = should be fetched from the server, not the client
[2008/06/05 13:36:49] <ashp> Ahhh, interesting
[2008/06/05 13:36:55] <Volcane> ashp: so unless i need a module to change - lets say i am working on it in dev - i only have 1 copy of a module anywhere
[2008/06/05 13:37:04] <ashp> I might have to explore that
[2008/06/05 13:37:11] <Volcane> ashp: when i want to dev it, svn copy it into development branch, and work on it, dev boxes will then get that copy
[2008/06/05 13:37:15] <Volcane> much much cleaner
[2008/06/05 13:37:19] <DavidS> ashp: why? push an appropriate puppet.conf to the client if you want
[2008/06/05 13:37:39] <DavidS> I think it is quite convenient to be able to say puppetd --test --environment=development --noop to test stuff
[2008/06/05 13:38:00] <ashp> davids: Well, what we were doing was trying to set environment = bootstrap in puppetmasterd, so that clients without an environment would bootstrap up
[2008/06/05 13:38:17] <ashp> It would bootstrap, run a minimal module set and push a puppet.conf with the real environment set
[2008/06/05 13:38:32] <ashp> (by having $localenv = whatever in the node.pp and then using a template to push out puppet.conf)
[2008/06/05 13:38:42] <ashp> But sadly the client ignores what the server has set, making it useless
[2008/06/05 13:38:49] <ashp> and defaults to development regardless of the server
[2008/06/05 13:38:57] <DavidS> why? for bootstrap you can just copy over some stuff and run puppet locally, if you really need to ....
[2008/06/05 13:38:58] <Volcane> DavidS: we have some requirements to do stuff always first, so we're putting machines into a bootstrap environment that just does a few things, the bootstrap will then put the box in a state where the 2nd puppet run will have requirements satisfied and the box will then be configured in its eventual environment
[2008/06/05 13:39:16] <DavidS> i c
[2008/06/05 13:39:17] <ashp> DavidS: I don't want to move more logic into the build environment
[2008/06/05 13:39:25] <Volcane> yeah, ditto
[2008/06/05 13:39:30] <ashp> I want the build environment to be a minimal copy of RHEL with just enough networking to run puppet for the rest
[2008/06/05 13:39:32] <DavidS> kickstart with environment=bootstrap
[2008/06/05 13:39:40] <Volcane> so bootstrap for me has just a default node in it
[2008/06/05 13:39:46] <ashp> I echo'ed environment = bootstrap in
[2008/06/05 13:39:50] <ashp> but, what I discovered that's silly is
[2008/06/05 13:39:54] <Volcane> and that node distributes custom facts and a file /etc/facts.txt, and creates some yum repos
[2008/06/05 13:39:59] <ashp> i had to add environments = development, bootstrap on the CLIENT puppet.conf
[2008/06/05 13:40:06] <ashp> the server has the same information in, but it doesn't check that
[2008/06/05 13:40:13] <Volcane> ashp: yeah its braindead, ditto
[2008/06/05 13:40:19] <ashp> and the SERVER should control environments, the clients should just try and use the environment
[2008/06/05 13:40:21] <DavidS> put it into the package's default puppet.conf
[2008/06/05 13:40:38] <ashp> I'm not going to maintain a custom puppet package, I pull directly from EPEL during the build
[2008/06/05 13:40:48] <ashp> it's not a huge deal and i worked around it - but it's a bug, if eel
[2008/06/05 13:40:52] <Volcane> DavidS: i just wget a bootstrap puppet.conf now onto a box during kickstart, works fine
[2008/06/05 13:40:54] <ashp> the client shouldn't have to know what environments are available
[2008/06/05 13:41:00] <ashp> they should query the server
[2008/06/05 13:41:11] <DavidS> ashp: tried doing a custom fact?
[2008/06/05 13:41:13] <ashp> the client should have minimal logic, the server should tell the client what environments are valid
[2008/06/05 13:41:17] <DavidS> i believe that is possible too
[2008/06/05 13:41:22] <ashp> i think that it's a bug and I shouldn't need to work around it with custom facts
[2008/06/05 13:41:29] <ashp> the client runs with enviroment = bootstrap
[2008/06/05 13:41:30] <Volcane> but i totally agree with ashp and if you read the comments produced by --genconfig, that seems to be the intended behavior but its not
[2008/06/05 13:41:36] <ashp> and the server should tell the client if that's acceptable
[2008/06/05 13:41:44] <ashp> so I need to check in with lak to see if it's a real bug :)
[2008/06/05 13:41:49] <Volcane> DavidS: i do it with a fact yes. bootstrap gets the fact on the machine
[2008/06/05 13:41:50] <ashp> Volcane: that's what I took away from genconfig too
[2008/06/05 13:42:00] <ashp> I think it's just a minor bug and when fixed we'll be in business
[2008/06/05 13:44:06] * Volcane really hates these idiots at microsoft who put PTR records on public IPs with invalid domains
[2008/06/05 13:44:25] <Volcane> PTRs like bl1sch4083702.phx.gbl
[2008/06/05 13:49:19] <DavidS> wtf?
[2008/06/05 13:49:29] <Volcane> yeah. they're retarded
[2008/06/05 13:49:57] <Volcane> had to tcpdump traffic, get the ips, do lookups on them all and found those PTRs, whois on the ip shows MS owns them
[2008/06/05 13:58:39] @ hiffy joined channel #puppet
[2008/06/05 14:02:24] @ Quit: f3ew: Read error: 113 (No route to host)
[2008/06/05 14:04:28] @ Quit: keithlard:
[2008/06/05 14:05:02] <DavidS> damn, git-fromat-patch wants to include mz update of puppet.deb (which is in git) into the commit mail, this is of course The Right Thing, but still not a good idea to send to the -commit mailing list :-/
[2008/06/05 14:06:16] <DavidS> how do you all handle the one-off big binary files in your manifests?
[2008/06/05 14:09:14] <DavidS> even deleting the thing creates a huge diff
[2008/06/05 14:09:49] <muerr> generally, source => "http://puppet/pub"
[2008/06/05 14:10:07] <muerr> puppet master is also the kickstart and yum server, so it has http running.
[2008/06/05 14:12:46] <dryrot> so where can i read about providers so that my puppet class installs mysql-server correctly in debian and centos ?
[2008/06/05 14:15:02] <DavidS> dryrot: wiki:TypeReference#package
[2008/06/05 14:15:30] <gepetto> DavidS: dryrot: wiki:TypeReference#package is http://reductivelabs.com/trac/puppet/wiki/TypeReference#package
[2008/06/05 14:16:47] <DavidS> assuming that the package name is the same on debian and centos, pacakge { "mysql-server": ensure => installed } will select the appropriate default provider depending on the puppets distri
[2008/06/05 14:20:51] <Volcane> is there a way to do a match on a fact, for instanse: lsbdistrelease => 4.6 i dont care if its 4.1 or 4.6 i just want to know if its 4
[2008/06/05 14:20:59] <Volcane> partual match i mean
[2008/06/05 14:22:02] <martha> DavidS: even worse than one big file is a directory with hundreds of little ones :-(
[2008/06/05 14:27:11] <plathrop> Volcane: custom function?
[2008/06/05 14:27:23] <benp-> Volcane: clever use of generate()
[2008/06/05 14:27:42] <benp-> custom function would be easier
[2008/06/05 14:27:43] <plathrop> benp-: s/use/abuse/
[2008/06/05 14:27:50] <benp-> :)
[2008/06/05 14:28:25] <dryrot> DavidS: the package name is not the same on debian and centos
[2008/06/05 14:28:46] <Volcane> hmmm, need to learn ruby :P
[2008/06/05 14:29:00] <Volcane> i might just add a fact
[2008/06/05 14:29:21] <muerr> dryrot: then you'll need to use a case...
[2008/06/05 14:29:25] <plathrop> dryrot: Then you use a selector. Decide on a 'canonical' name for your site, set the name paramater of the package using a selector based on $operatingsystem
[2008/06/05 14:29:47] <DavidS> dang, --no-binary was onlz added to git after 1.5.5 ...
[2008/06/05 14:29:50] <dryrot> so what are providers for then?
[2008/06/05 14:30:27] <muerr> http://pastie.org/209598
[2008/06/05 14:30:46] <plathrop> dryrot: Providers make it so you can talk about a "package" and not care whether under the hood you use a debian box (apt) or a redhat box (yum/rpm)
[2008/06/05 14:30:52] <muerr> dryrot: the provider looks at the $operatingsystem fact and determines if it needs to use apt-get or yum.
[2008/06/05 14:30:54] <DavidS> what plathrop said
[2008/06/05 14:31:05] <DavidS> muerr: not quite
[2008/06/05 14:31:23] <muerr> DavidS: for the package provider, pretty much :p
[2008/06/05 14:32:53] <DavidS> i'll build a git backport from experimental just to get this damned --no-binary switch
[2008/06/05 14:38:43] @ greenmoss joined channel #puppet
[2008/06/05 14:39:00] <greenmoss> greetings once again, puppeteers
[2008/06/05 14:39:10] <DavidS> muerr: if zou look at lib/puppet/provider/package/apt.rb, it onlz requires a few commands to be eligible, it is onlz defaultfor debian though
[2008/06/05 14:39:29] @ shadoi joined channel #puppet
[2008/06/05 14:39:42] <greenmoss> so yesterday I learned the cool file { myfile: [source1,source2] } trick
[2008/06/05 14:40:44] <greenmoss> but it looks like I can't do file {myfile: content => [template(template1),template(template2)] }
[2008/06/05 14:40:46] <greenmoss> ?
[2008/06/05 14:43:48] <Volcane> unfort not
[2008/06/05 14:43:51] <Volcane> wish u could
[2008/06/05 14:44:18] <Volcane> and template(["blah", "bleh") will concatenate the two
[2008/06/05 14:44:22] <Volcane> afaik
[2008/06/05 14:44:28] <greenmoss> right, which isn't what I want either
[2008/06/05 14:52:49] @ mfournie1 joined channel #puppet
[2008/06/05 14:53:55] <shadoi> greenmoss: you can use generate and do some logic in your script. But I usually just use template($somevar-template.erb)
[2008/06/05 14:54:49] <greenmoss> ah, I see... where $somevar is set using a selector
[2008/06/05 14:55:39] <greenmoss> so the default can be blank to look for "template.erb", but can contain a hostname for "template.myhost.erb" (for example)
[2008/06/05 14:55:45] <greenmoss> yeah, that would work
[2008/06/05 14:55:48] <greenmoss> thanks
[2008/06/05 14:56:30] @ Quit: johnf: Read error: 113 (No route to host)
[2008/06/05 14:57:17] @ kenvandine joined channel #puppet
[2008/06/05 14:57:32] @ DavidS1 joined channel #puppet
[2008/06/05 14:57:35] @ Quit: DavidS1: Remote closed the connection
[2008/06/05 15:03:28] <DavidS> of course, git 1.5.6-pre doesn't pass the tests in etch .. arrr
[2008/06/05 15:03:37] <DavidS> not my day ...
[2008/06/05 15:04:23] <DavidS> let'd try applying the --no-binary patch on top of 1.5.5 from backports
[2008/06/05 15:06:34] @ Quit: mfournier: Read error: 113 (No route to host)
[2008/06/05 15:10:14] <DavidS> of course, this also fails one (unrelated) test ...
[2008/06/05 15:11:55] @ Quit: shake-n-bake:
[2008/06/05 15:34:29] <holoway> jamesturnbull: sure
[2008/06/05 15:34:36] <holoway> jamesturnbull: what are you looking for specifically?
[2008/06/05 15:46:39] @ Quit: andrewcshafer_:
[2008/06/05 15:47:02] @ andrewcshafer joined channel #puppet
[2008/06/05 15:47:10] @ Quit: andrewcshafer: Client Quit
[2008/06/05 15:48:40] <stick> pastie: url
[2008/06/05 15:49:06] @ muerr left channel #puppet ()
[2008/06/05 15:49:07] @ muerr joined channel #puppet
[2008/06/05 15:50:28] <pastie> http://pastie.org/209690 by stick.
[2008/06/05 15:50:49] <stick> so I could use a hand debugging a ruby type if anyone is so inclined
[2008/06/05 15:51:24] <stick> I pretty much copied an existing (and working) type and yet I'm getting a 'no provider' error and I'm not sure why
[2008/06/05 15:51:31] @ greenmoss left channel #puppet ()
[2008/06/05 15:53:27] @ Quit: plathrop: Read error: 104 (Connection reset by peer)
[2008/06/05 15:54:33] <martha> stick: that needs to be in $libdir
[2008/06/05 15:55:19] @ andrewcshafer joined channel #puppet
[2008/06/05 15:55:56] <stick> find /var/lib/puppet/lib/ -name 'ckm' -print
[2008/06/05 15:55:56] <stick> /var/lib/puppet/lib/puppet/provider/ckm
[2008/06/05 15:55:56] <stick> /var/lib/puppet/lib/puppet/type/ckm.rb
[2008/06/05 15:56:08] <stick> and provider/ckm/ contains parsed.rb
[2008/06/05 15:59:01] <DavidS> stick: could zou be running into #1027?
[2008/06/05 15:59:03] <gepetto> DavidS: stick: #1027 is http://reductivelabs.com/redmine/issues/show/1027
[2008/06/05 15:59:18] <DavidS> you* damn non-standard keyboard lazout
[2008/06/05 15:59:30] <DavidS> layout!* damn non-standard keyboard layout
[2008/06/05 16:00:17] <martha> stick: that works for me
[2008/06/05 16:02:20] <stick> DavidS: dunno, my plugindest and libdir are the same place
[2008/06/05 16:02:41] <stick> I don't see that message in my log
[2008/06/05 16:03:49] <stick> hmm
[2008/06/05 16:03:56] <stick> so running with debug shows me
[2008/06/05 16:04:04] <stick> debug: Puppet::Type::Ckm::ProviderParsed: Not suitable: missing /tmp/ckm.conf
[2008/06/05 16:04:21] <stick> but when I create it (empty) the error is gone, but the file has no contents
[2008/06/05 16:04:27] <shadoi> what's Ckm?
[2008/06/05 16:04:59] <DavidS> stick: that could mean that zour provider "requires" in a waz that file and won't be "suitable" for the system unless the file exists
[2008/06/05 16:05:04] <DavidS> way
[2008/06/05 16:05:20] <stick> shadoi: my initials
[2008/06/05 16:05:26] <muerr> Hmm.
[2008/06/05 16:05:34] <shadoi> stick: you sir, are not suitable.
[2008/06/05 16:05:40] <stick> apparently :(
[2008/06/05 16:06:01] <muerr> I wonder - is there any way to automate luci server initialization? the init script asks for password via stdin.
[2008/06/05 16:06:12] <stick> DavidS: right I get that (deceiving error though) but that doesn't explain the lack of contents when the file does exist
[2008/06/05 16:07:02] <DavidS> ??
[2008/06/05 16:07:17] <DavidS> should the type fill it in?
[2008/06/05 16:08:59] @ Quit: andrewcshafer:
[2008/06/05 16:09:41] @ shake-n-bake joined channel #puppet
[2008/06/05 16:09:52] @ Quit: shake-n-bake: Client Quit
[2008/06/05 16:16:03] <stick> it should create that record if it doesn't exist
[2008/06/05 16:16:11] <shadoi> muerr: expect! :)
[2008/06/05 16:16:15] <stick> unless I did something else wrong in the record line
[2008/06/05 16:16:55] <muerr> shadoi :-\
[2008/06/05 16:17:03] <muerr> smells like 'kludge' when you say it that way.
[2008/06/05 16:17:29] <shadoi> muerr: it does indeed.
[2008/06/05 16:17:59] @ Quit: dysinger:
[2008/06/05 16:18:15] <DavidS> stick: in other news, have you seen http://brainspl.at/articles/2008/06/02/introducing-vertebra ? it's a strange cross of ruby, server monitoring and xmpp
[2008/06/05 16:18:25] <muerr> well as long as we're on the same page.
[2008/06/05 16:18:41] <holoway> DavidS: yeah, very interesting
[2008/06/05 16:18:50] <holoway> Ezra is going to be talking about it at Velocity
[2008/06/05 16:18:54] <muerr> i think since luci will be under the cluster's control itself, trying to do more with puppet than get it installed is out of scope.
[2008/06/05 16:19:03] <muerr> holoway: psst - msn ;-)
[2008/06/05 16:19:16] @ adoom42 joined channel #puppet
[2008/06/05 16:19:45] <ashp> more brand new software to horrify my coworker with!
[2008/06/05 16:19:49] <stick> DavidS: interesting
[2008/06/05 16:19:57] <holoway> DavidS: I think the most interesting aspects of Vertebra
[2008/06/05 16:20:03] @ shake-n-bake joined channel #puppet
[2008/06/05 16:20:06] <holoway> is the idea of doing XMPP presence notification
[2008/06/05 16:20:18] <DavidS> stick: and ejabberd at least has the possibility to scale to your needs ...
[2008/06/05 16:20:26] <holoway> if you think about it in the context of coordinated application automation
[2008/06/05 16:20:28] <muerr> mmmm jabber.
[2008/06/05 16:20:34] <stick> rhn satellite can use jabber to trigger remote events (for a couple of years now)
[2008/06/05 16:20:47] <holoway> lots of good possibilities in using XMPP
[2008/06/05 16:21:00] <adoom42> hey guys, I'm using puppetrun in a bash script which loops through a list of servers to connect to (not using LDAP). sometimes one of the servers is dead and puppetrun hangs for a long time before giving up. 15 minutes or so. is there some way to have a timeout setting?
[2008/06/05 16:21:01] <DavidS> still it's more of a push model ..
[2008/06/05 16:21:07] <stick> scale to my needs?
[2008/06/05 16:21:22] <holoway> DavidS: yep
[2008/06/05 16:21:36] <holoway> which is good for application deployment
[2008/06/05 16:21:43] <holoway> and not so good for systems management
[2008/06/05 16:22:10] <holoway> I'm looking forward to picking his brain about it
[2008/06/05 16:22:24] <holoway> I got pinged by the Control Tier guys as well
[2008/06/05 16:22:37] <stick> I think puppet could benefit from the concept in that you could have changes to a class trigger updates in all the nodes that have that class present
[2008/06/05 16:22:39] <holoway> http://www.controltier.com/
[2008/06/05 16:23:09] <stick> martha: so that type created an entry in that file without issue for you?
[2008/06/05 16:23:10] <ashp> stick: that would be kind of nice
[2008/06/05 16:23:12] <holoway> stick: yeah, there is certainly opportunity for some synergy there
[2008/06/05 16:24:02] <ashp> what would be nicer
[2008/06/05 16:24:08] <ashp> is if puppet could write my ldap::server class for me
[2008/06/05 16:24:51] <DavidS> stick: sorry, confused you with spike
[2008/06/05 16:24:52] @ Quit: pleemans: "Ex-Chat"
[2008/06/05 16:25:22] <stick> DavidS: that's ok (tab completion is a wicket mistress) I still found it interesting ;)
[2008/06/05 16:25:28] @ andrewcshafer joined channel #puppet
[2008/06/05 16:25:50] <holoway> DavidS: the source for Vertebra isn't available yet though, right?
[2008/06/05 16:28:45] <DavidS> no idea, I just saw that url on #puppet and wanted to point it out to stick, err, spike
[2008/06/05 16:28:48] <shadoi> DavidS: it's actually very similar to what we're doing.
[2008/06/05 16:29:10] <DavidS> but then it doesn't sound like there is much to the source
[2008/06/05 16:29:21] <shadoi> though I think we're a little further along on the architecture
[2008/06/05 16:29:38] <DavidS> the question of course is why not just program the whole app in erlang and be done with it ;)
[2008/06/05 16:29:53] <DavidS> (the whole app being the thing that makes money, not the monitoring)
[2008/06/05 16:29:53] <shadoi> {{{{{{{{{{BECAUSE I HATE ALL THIS}}}}}}}}}}}}}}}}
[2008/06/05 16:29:56] <shadoi> lol
[2008/06/05 16:29:58] <DavidS> lol
[2008/06/05 16:30:27] <shadoi> seriously though, major curly braces abuse in erlang.
[2008/06/05 16:30:30] <shadoi> it's nasty.
[2008/06/05 16:31:07] <holoway> -module(strangesyntax).
[2008/06/05 16:33:44] <DavidS> damn firewall needs like 5 minutes to apply the manifest :/
[2008/06/05 16:34:05] <DavidS> that makes testing a real drag ...
[2008/06/05 16:35:42] <DavidS> and that's after compiling the manifest on the puppetmaster for 62s
[2008/06/05 16:35:42] <muerr> DavidS: wow, thats ... a lot longer than our box with 12000 text files we push out (recurse => true, replace => false)
[2008/06/05 16:38:12] <DavidS> it's only a C7 box with 512MB behind a slow link with 1.5k resources
[2008/06/05 16:41:13] @ f--z joined channel #puppet
[2008/06/05 16:41:20] <muerr> heh.. our boxes are all at least 4G memory on gigabit ethernet on the same switch stack as the puppet master :)
[2008/06/05 16:41:28] <muerr> so we're cheating in that regard.
[2008/06/05 16:42:42] <holoway> totally off topic - CouchDB is awesome
[2008/06/05 16:42:45] <holoway> wow
[2008/06/05 16:44:49] <DavidS> muerr: drool
[2008/06/05 16:45:04] <shadoi> holoway: StrokeDB is better
[2008/06/05 16:45:08] <shadoi> or will be shortly.
[2008/06/05 16:45:21] <muerr> DavidS: hehe :-)
[2008/06/05 16:45:46] <DavidS> anyone playing with HEAD and storedconfigs?
[2008/06/05 16:47:10] @ Quit: kambiz: "Leaving"
[2008/06/05 16:47:12] <muerr> Yeah... luci is going to be installed via puppet, but no configuration done. There's just going to be far too much 'manual' intervention required on these stupid zimbra servers to try and get fancy with puppet.
[2008/06/05 16:47:12] <shadoi> DavidS: I haven't in a while, why?
[2008/06/05 16:47:18] <holoway> shadoi: yeah? is that the ruby based store?
[2008/06/05 16:47:41] @ Quit: mfournie1: "leaving"
[2008/06/05 16:47:50] <shadoi> holoway: yeah
[2008/06/05 16:47:58] <holoway> have you used it (and couch)?
[2008/06/05 16:48:00] <DavidS> I'm having strange effects and wanted to avoid doing a in-depth test
[2008/06/05 16:48:16] <holoway> the replication strategy for couch and the materialized map/reduce views are pretty sweet
[2008/06/05 16:48:22] <shadoi> holoway: I've been playing with strokedb, I want to use it for our apps
[2008/06/05 16:48:47] <shadoi> I've never used couchdb but I'm a ruby snob, so anything in ruby is automatically _better_. ;)
[2008/06/05 16:49:03] <holoway> I was just pleased that I could swap out our own JSON file store/indexing scheme with couch in like 10 minutes
[2008/06/05 16:49:09] <holoway> and it performs much better
[2008/06/05 16:49:13] <shadoi> nice
[2008/06/05 16:49:26] <holoway> (you can write the map/reduce functions in ruby as well as javascript with couchdb, btw)
[2008/06/05 16:49:52] @ Quit: shake-n-bake:
[2008/06/05 16:49:55] <holoway> but yeah, the core being in erlang makes it a bit more of a mind fuck if you have to contribute
[2008/06/05 16:50:28] <shadoi> I think they're adding all the custom view stuff to strokedb at the moment.
[2008/06/05 16:50:38] <shadoi> And their concept of Meta objects is really kickass
[2008/06/05 16:51:26] <holoway> I'll check it out
[2008/06/05 16:51:27] @ dysinger joined channel #puppet
[2008/06/05 16:51:34] <fujin> morning
[2008/06/05 16:51:34] <fujin> chaps
[2008/06/05 16:51:39] <muerr> Wow. I've been in IT for 10 years and have a degree in CIS. Reading the erlang article introduction on Wikipedia makes my brain bleed in pain.
[2008/06/05 16:51:41] <holoway> my day and a half of playing with CouchDB really, really impressed me
[2008/06/05 16:52:03] <ashp> I've been in IT for 8 years and everything computer related makes my brain bleed these days.
[2008/06/05 16:52:22] <shadoi> lol
[2008/06/05 16:52:35] <ashp> I need some of those brain pills I keep reading about, to make me smarter. :/
[2008/06/05 16:53:18] <muerr> ashp: yeah, i don't screw around with computers as much in my free time because of that too.. Like, I'm just peachy with Ubuntu defaults (except a couple keyboard shortcuts I've used forever) than trying to do something like, make gentoo behave :-x
[2008/06/05 16:53:48] <ashp> I used to have about 25 custom dot files that every box got
[2008/06/05 16:53:57] <ashp> and now i just install, fire up terminal and go
[2008/06/05 16:55:09] <muerr> :)
[2008/06/05 16:55:12] <muerr> i keep my .bashrc.
[2008/06/05 16:55:18] <muerr> I heart my .bashrc.
[2008/06/05 16:55:48] <DavidS> brb
[2008/06/05 16:55:52] @ Quit: DavidS: "leaving"
[2008/06/05 16:56:01] <muerr> http://github.com/jtimberman/puppet/tree/master/users/files/someuser/.bashrc
[2008/06/05 16:56:04] <muerr> hehehehehe
[2008/06/05 16:56:08] @ DavidS joined channel #puppet
[2008/06/05 16:56:47] <ashp> i still lug around a bash_profile/aliases/other, I must admit :)
[2008/06/05 16:56:48] <ashp> but that's it
[2008/06/05 16:56:59] @ fbe__ joined channel #puppet
[2008/06/05 16:57:12] @ Quit: andrewcshafer:
[2008/06/05 16:57:28] @ martha left channel #puppet ()
[2008/06/05 17:00:06] @ plathrop joined channel #puppet
[2008/06/05 17:00:55] * stick bashes face against this type problem
[2008/06/05 17:01:09] * fujin bashes stick
[2008/06/05 17:01:21] @ andrewcshafer joined channel #puppet
[2008/06/05 17:01:45] * DavidS bashes fujin with stick ;)
[2008/06/05 17:02:00] <fujin> o_0
[2008/06/05 17:02:15] <fujin> stick: what issue are you having? :}
[2008/06/05 17:02:33] <stick> I have a type that throws no errors but doesn't create any records
[2008/06/05 17:02:40] <jamesturnbull> holoway: just some "this is what the main screen with some stuff populated looks like"
[2008/06/05 17:02:51] <stick> http://pastie.org/209690
[2008/06/05 17:03:56] <holoway> jamesturnbull: no problem -- I can give you screens hots from actual client infrastructures, if you're cool with including their logo
[2008/06/05 17:04:09] <stick> I'm probably doing something inanly stupid or blatently obvious but whatever it is I don't see it and it don't work
[2008/06/05 17:04:23] <jamesturnbull> holoway: sure thanks
[2008/06/05 17:04:37] <holoway> jamesturnbull: cool, I'll shoot them your way
[2008/06/05 17:04:53] <holoway> if you have any iclassify questions, feel free to hit me up on email or IM
[2008/06/05 17:05:53] <jamesturnbull> holoway: okay - at this stage just demontrating some stuff that integrates with Puppet
[2008/06/05 17:05:58] <DavidS> stick: :default_target => ckm, ?? that should be a filename
[2008/06/05 17:06:15] <stick> it's a var, defined a couple of lines up
[2008/06/05 17:06:49] <DavidS> d'oh
[2008/06/05 17:08:03] <stick> how's iClassify going these days, I haven't (had time) to check up on it
[2008/06/05 17:08:56] <DavidS> stick: "confine :exists => ckm" this requires the file to exist, if it doesn't the provider is not eligible for handling the type
[2008/06/05 17:09:25] <stick> so in my test it exists, it's an empty file
[2008/06/05 17:10:26] <DavidS> stick: from your pastie: "Could not find a default provider for ckm"
[2008/06/05 17:10:37] <holoway> stick: it's quite stable
[2008/06/05 17:10:53] <holoway> I'm hoping to give it a bunch of love around how difficult it is to get up and running
[2008/06/05 17:10:58] <holoway> this month
[2008/06/05 17:11:04] <stick> DavidS: yeah, originally that was my problem, but now when the file exists no records get created
[2008/06/05 17:11:23] <DavidS> have you tried adding ensure=> present?
[2008/06/05 17:11:45] <stick> holoway: cool, does it's use supersede any other type of classification that someone might be doing or can you use it just from an information gathering standpoint?
[2008/06/05 17:12:10] @ Quit: fbe_: Read error: 110 (Connection timed out)
[2008/06/05 17:12:39] @ heydrick joined channel #puppet
[2008/06/05 17:12:46] <holoway> stick: either way
[2008/06/05 17:12:53] <holoway> it's a REST service
[2008/06/05 17:12:59] <holoway> so you can stick data in/get data out quite easily
[2008/06/05 17:13:26] @ shenson is now known as shenson_not_here
[2008/06/05 17:13:54] <fujin> nom nom rest service
[2008/06/05 17:14:22] <stick> holoway: coolio, I'll have to check it out when I get some (hahah) free time
[2008/06/05 17:14:41] @ shake-n-bake joined channel #puppet
[2008/06/05 17:15:03] <stick> DavidS: that was it (ensure => present)
[2008/06/05 17:15:04] <fujin> holoway: did you use merb or anything to build from? or is it all custom
[2008/06/05 17:15:18] <stick> I thought there was a way to not require that to get a type created
[2008/06/05 17:15:29] <holoway> fujin: it's a rails app
[2008/06/05 17:15:34] <fujin> ah, cool
[2008/06/05 17:15:41] <holoway> part of making it easier to install is likely moving it to merb
[2008/06/05 17:15:58] <holoway> and re-using some of what they have already done in terms of packaging up merb applications and distributing them as gems
[2008/06/05 17:16:04] <holoway> (once it's a gem, it's cake to turn into an OS package)
[2008/06/05 17:16:21] <holoway> typo does something similar with rails, but it... sucks
[2008/06/05 17:16:27] <fujin> mm
[2008/06/05 17:16:45] <stick> DavidS: thanks for the look, how familiar are you (or anyone else) with record_line, basically I'm trying to write a type for SSHAllowGroups (in sshd_config) but all the records have to be on the same line
[2008/06/05 17:16:53] @ Quit: kenvandine: "Ex-Chat"
[2008/06/05 17:17:22] <DavidS> stick: not much, but there are ways to add code for handling various parts of the parse and write process
[2008/06/05 17:17:40] <stick> yeah, my ruby is not that strong yet ;(
[2008/06/05 17:18:35] <DavidS> it 23:18 here, I'm off to bed!
[2008/06/05 17:18:42] <fujin> toodleooo david
[2008/06/05 17:18:48] @ Quit: shadoi: Read error: 104 (Connection reset by peer)
[2008/06/05 17:19:16] @ Quit: DavidS: "Leaving."
[2008/06/05 17:19:17] <muerr> One of these days I should check out iClassify.
[2008/06/05 17:19:32] <fujin> make it today
[2008/06/05 17:19:34] <fujin> change your life :>
[2008/06/05 17:19:37] @ shadoi joined channel #puppet
[2008/06/05 17:19:50] <muerr> Indeed.
[2008/06/05 17:21:26] <stick> so I don't understand what makes that type 'have' to have ensure => present, almost none of the native puppet types require it
[2008/06/05 17:23:03] <muerr> derp, this is legal syntax isn't it? require => Package["srvadmin-racser-devel", "fence"]
[2008/06/05 17:23:09] <holoway> jamesturnbull: are you doing OSCON in PDX?
[2008/06/05 17:23:18] <jamesturnbull> holoway: yep
[2008/06/05 17:23:31] <jamesturnbull> holoway: presenting on Puppet and cfg mgt
[2008/06/05 17:23:53] <fujin> muerr: negative
[2008/06/05 17:24:05] <fujin> [ Package["srvadmin-racser-devel"], Package["fence"] ]
[2008/06/05 17:24:08] <muerr> Ah okay.
[2008/06/05 17:24:17] <muerr> Thats what I thought, but hoped there was a shortcut
[2008/06/05 17:25:31] <fujin> cool idea though -
[2008/06/05 17:25:57] <holoway> jamesturnbull: awesome
[2008/06/05 17:26:24] <holoway> the more people talk about infrastructure automation, the better the world gets
[2008/06/05 17:26:49] <muerr> That'd be a neat conf to go to... plus PDX is my hometown :-)
[2008/06/05 17:26:59] <fujin> s/better.$/lazier we get/
[2008/06/05 17:27:06] @ jbrothers left channel #puppet ()
[2008/06/05 17:27:08] <fujin> ;x
[2008/06/05 17:27:20] <fujin> ohgod, need coffee
[2008/06/05 17:27:26] <muerr> laziness is a virtue of systemadmins.
[2008/06/05 17:27:41] <fujin> +1
[2008/06/05 17:28:20] @ Quit: f--z: Read error: 110 (Connection timed out)
[2008/06/05 17:37:48] <Volcane> PDX?
[2008/06/05 17:38:01] <fujin> PDX?
[2008/06/05 17:38:13] <Volcane> 22:26 <muerr> That'd be a neat conf to go to... plus PDX is my hometown :-)
[2008/06/05 17:38:27] <muerr> portland oregon
[2008/06/05 17:38:33] <Volcane> ah :)
[2008/06/05 17:38:36] <muerr> airport code is pdx
[2008/06/05 17:38:39] @ Quit: plathrop: Remote closed the connection
[2008/06/05 17:38:47] * Volcane is as always on the wrong side of the pond for these confs
[2008/06/05 17:38:55] <muerr> OSCON 2008 is happening July 21-25 in Portland, Oregon
[2008/06/05 17:38:57] <fujin> Try being in the wrong hemisphere :)
[2008/06/05 17:39:09] <Volcane> fujin: been there done that, moved :)
[2008/06/05 17:40:12] <Volcane> actually "moved" more like got stranded and had to stay. burst ear drums, couldnt fly for a year. so just stuck it out in england
[2008/06/05 17:40:45] <fujin> ;(
[2008/06/05 17:43:10] <fujin> I don't mind it here
[2008/06/05 17:43:15] <fujin> shame about the economy
[2008/06/05 17:43:27] <Volcane> where are you?
[2008/06/05 17:43:31] <muerr> anyone seen this: /usr/lib/site_ruby/1.8/puppet/util.rb:312: warning: fork terminates thread at /usr/lib/ruby/1.8/timeout.rb:41
[2008/06/05 17:43:46] @ plathrop joined channel #puppet
[2008/06/05 17:43:51] <Volcane> muerr: harmless warning
[2008/06/05 17:44:03] <Volcane> muerr: apparently fixed in a more reent ruby
[2008/06/05 17:44:22] <muerr> ahhhh okay.
[2008/06/05 17:44:33] <muerr> rhel 4 ruby == 1.8.1
[2008/06/05 17:44:41] * muerr watches holoway shudder.
[2008/06/05 17:44:51] <Volcane> ah :) i have the same prob on centos 5
[2008/06/05 17:45:41] <fujin> ughew
[2008/06/05 17:47:24] * Volcane 's really keen to come to at least one big conf next year
[2008/06/05 17:47:47] <muerr> we do several big confs per year, you should come to one.
[2008/06/05 17:47:51] <muerr> hehehe
[2008/06/05 17:47:57] <muerr> IT Security Training confs...
[2008/06/05 17:48:15] * Volcane was thinking LISA or some such
[2008/06/05 17:48:30] <Volcane> velocity seems kewl too
[2008/06/05 17:48:47] <Volcane> at least now i have a better passport for traveling, old south african password was a real liability
[2008/06/05 17:50:04] @ Quit: plathrop: Remote closed the connection
[2008/06/05 17:51:38] @ jfalgout joined channel #puppet
[2008/06/05 17:52:03] <holoway> Volcane: Velocity is shaping up to be really great if you're in to the ops automation world
[2008/06/05 17:52:51] <fujin> When I'm richer, I should come over;
[2008/06/05 17:53:02] * Volcane 's been senior sysad for large multinationals for like a decade and since then been helping startups automated their stuff, getting them to run witout needing sysadmins via automation
[2008/06/05 17:53:09] <Volcane> so yeah pretty much right up my alley
[2008/06/05 17:53:15] @ Quit: shake-n-bake:
[2008/06/05 17:53:53] <holoway> Jesse, Luke, Artur, Ezra, David Ulevitch talking about load balancing with BGP, all kinds of good stuff
[2008/06/05 17:53:54] <Volcane> got intro'd to puppet at a large paying puppet customer hmm, more than a year ago
[2008/06/05 17:54:50] <holoway> my talk starts when that BGP and OSPF load balancing talk ends, so I'm going to miss most of it, which sucks
[2008/06/05 17:54:51] <Volcane> sounds really good yeah. i am busy rolling out a dual DC setup for one client too
[2008/06/05 17:55:13] <holoway> well, if you fly out to SF for it, I will buy you the beer of your choice
[2008/06/05 17:55:19] <Volcane> with BGP and all that stuff, theres a really neat MAN network in london linking 16 DCs together
[2008/06/05 17:55:32] <holoway> :)
[2008/06/05 17:55:49] <Volcane> holoway: will make a plan next year
[2008/06/05 17:57:26] <Volcane> its actually not too pricey thanks to the pound exchange rate
[2008/06/05 17:57:40] * shadoi grumbles
[2008/06/05 17:58:23] <fujin> sup shadoi ?
[2008/06/05 17:58:28] <Volcane> defo make a plan for next year.
[2008/06/05 17:58:37] <shadoi> exchange rate is killing me.
[2008/06/05 17:59:24] <fujin> boo ;\
[2008/06/05 17:59:35] <Volcane> the euro's been gaining heavily against the pound, i have quite a few servers hosted in europe
[2008/06/05 17:59:39] <Volcane> each month they cost more
[2008/06/05 18:02:16] @ plathrop joined channel #puppet
[2008/06/05 18:03:07] <Volcane> layeredtech also just put their rates up by about 1/3 per machine
[2008/06/05 18:03:11] <Volcane> quite rediculous
[2008/06/05 18:03:36] * muerr departs.
[2008/06/05 18:03:37] @ muerr left channel #puppet ()
[2008/06/05 18:04:47] @ Quit: Maliuta: Read error: 110 (Connection timed out)
[2008/06/05 18:07:45] @ Quit: flakrat: "Leaving"
[2008/06/05 18:17:31] @ Quit: dysinger:
[2008/06/05 18:22:04] <nwp> is there a half-decent doc on the interface to providers anywhere?
[2008/06/05 18:24:23] <fujin> wiki:ProviderDevelopment ?
[2008/06/05 18:24:26] <gepetto> fujin: wiki: wiki:ProviderDevelopment is http://reductivelabs.com/trac/puppet/wiki/ProviderDevelopment
[2008/06/05 18:24:36] <nwp> thanks
[2008/06/05 18:25:04] <fujin> worth looking at wiki:CreatingCustomTypes and wiki:PracticalTypes too
[2008/06/05 18:25:08] <gepetto> fujin: wiki:CreatingCustomTypes is http://reductivelabs.com/trac/puppet/wiki/CreatingCustomTypes
[2008/06/05 18:25:12] <gepetto> fujin: wiki:PracticalTypes is http://reductivelabs.com/trac/puppet/wiki/PracticalTypes
[2008/06/05 18:25:44] <Volcane> has the interface to tehse things stabalised now? last time i worked on writing/debugging/extending a provider things were in flux a lot
[2008/06/05 18:26:19] @ dysinger joined channel #puppet
[2008/06/05 18:26:45] <fujin> always seems to work fine for me
[2008/06/05 18:27:28] <Volcane> when the interface type got a lot of work for redhat i remember there were quite a few itterations and refactoring while it was in flux, this was maybe 0.22 days
[2008/06/05 18:31:34] @ Quit: plathrop: "ERC Version 5.2 (IRC client for Emacs)"
[2008/06/05 18:35:22] @ Quit: Ol_:
[2008/06/05 18:43:02] <ashp> i'm glad i'm not the only person to try and use puppet to manage large directories
[2008/06/05 18:43:06] <ashp> then wonder why it's never finishing :d
[2008/06/05 18:44:36] <fujin> :}
[2008/06/05 18:44:44] <fujin> I tend to package up large directories
[2008/06/05 18:44:47] <fujin> serve em by http through Apt
[2008/06/05 18:55:22] <MrProper_> found an interesting memory leak
[2008/06/05 18:55:34] <MrProper_> well maybe its intended
[2008/06/05 18:56:18] <MrProper_> if you have a syntax error somewhere + stored configs memory consumtion on puppetmasterd seems to just keep increasing
[2008/06/05 19:01:22] @ Maliuta joined channel #puppet
[2008/06/05 19:05:33] <fujin> sweet.
[2008/06/05 19:09:00] @ Quit: shadoi: Read error: 110 (Connection timed out)
[2008/06/05 19:10:04] <fujin> I heart rspec
[2008/06/05 19:13:46] @ Quit: jvanzyl:
[2008/06/05 19:14:23] @ johnf joined channel #puppet
[2008/06/05 19:14:51] <fujin> I'm going to eat your brain and steal your knowledge
[2008/06/05 19:19:33] <waawaamilkvampyr> it's a bad fujin ~
[2008/06/05 19:19:34] <waawaamilkvampyr> !
[2008/06/05 19:19:42] * waawaamilkvampyr hides brains
[2008/06/05 19:21:14] <holoway> fujin: rspec is great
[2008/06/05 19:21:30] <holoway> once mocks and stubs click in your brain
[2008/06/05 19:21:38] <holoway> it's magic
[2008/06/05 19:26:46] <fujin> yeah, and even getting past that and understanding stuff like fixtures to test data
[2008/06/05 19:26:55] <fujin> which is what I'm whirrring about at the moment
[2008/06/05 19:27:59] <fujin> the peepcode rspec screencasts were a great buy :}
[2008/06/05 19:33:29] <fujin> faster than youuu plathrop
[2008/06/05 19:34:40] @ shake-n-bake joined channel #puppet
[2008/06/05 19:35:53] @ plathrop joined channel #puppet
[2008/06/05 19:42:32] @ jvanzyl joined channel #puppet
[2008/06/05 19:47:38] @ Quit: roald: Remote closed the connection
[2008/06/05 19:50:22] <fujin> ho-hum.
[2008/06/05 19:50:31] <fujin> plathrop: how good is your spec?
[2008/06/05 19:50:51] <fujin> I noticed that there aren't any 'fixture' style specs currently for puppet, wondering if that' sa design decision
[2008/06/05 19:51:01] <fujin> like I should be doing lower level behaviour testing instead of testing actual data
[2008/06/05 19:52:36] <plathrop> fujin: My spec?
[2008/06/05 19:52:43] <fujin> yeah, spec skills
[2008/06/05 19:52:57] <fujin> just wanted to bounce ideas off someone else playing with them
[2008/06/05 19:53:04] <plathrop> Still in development? Fire away.
[2008/06/05 19:53:27] <fujin> well, I'm writing tests (still, oh god) for the tagmail feature extension I added myself
[2008/06/05 19:53:39] <fujin> all code is workign great, and there are unit tests for the old stuff
[2008/06/05 19:54:12] <fujin> but anyway, he's used dummy files in the test unit stuff as data which should pass and fail validation, and I haven't seen anythign like that in the spec dir
[2008/06/05 19:54:22] <fujin> like fixtures, you know
[2008/06/05 19:54:39] <fujin> so i guess what i'm trying to ask is should I be testing the underlying behaviours (and not worrying about the data)
[2008/06/05 19:54:59] <fujin> or going the fixture route and actually writing passing/failing tests against supplied valid/invalid data
[2008/06/05 19:55:20] <plathrop> fujin: As far as I know, the former.
[2008/06/05 19:55:37] <fujin> I see
[2008/06/05 19:55:39] <fujin> kinda figured as much
[2008/06/05 19:55:56] <fujin> so far, I've got 20 PENDING: tests! haha
[2008/06/05 20:02:52] @ shadoi joined channel #puppet
[2008/06/05 20:04:00] <plathrop> fujin: That's a great start!
[2008/06/05 20:04:17] <fujin> haha
[2008/06/05 20:06:59] @ verwilst joined channel #puppet
[2008/06/05 20:15:07] <holoway> fujin: You've seen Rspec's Story's?
[2008/06/05 20:15:16] <holoway> for doing integration testing?
[2008/06/05 20:15:23] <fujin> Haven't seen that one.
[2008/06/05 20:15:27] <fujin> only rspec 1-3
[2008/06/05 20:15:34] <holoway> (or s/integration/application/g testing)
[2008/06/05 20:15:42] <fujin> hrmm
[2008/06/05 20:15:45] <fujin> may be worth purchasing that one
[2008/06/05 20:19:40] <heydrick> so I'm having SSL issues
[2008/06/05 20:19:54] <fujin> I trust you read the links in the topic?
[2008/06/05 20:19:59] <fujin> you=you've
[2008/06/05 20:20:04] <heydrick> is anyone implementing the chain of trust scheme a la http://reductivelabs.com/trac/puppet/wiki/PuppetScalability?
[2008/06/05 20:20:10] <fujin> oh
[2008/06/05 20:20:11] <heydrick> it's not that issue I don't think
[2008/06/05 20:20:12] <fujin> hardcore SSL issues
[2008/06/05 20:20:13] <fujin> :}
[2008/06/05 20:20:18] <fujin> I can't say I have, sorry :)
[2008/06/05 20:20:26] <heydrick> yeah, I want multiple puppet masters and clients to trust all of them
[2008/06/05 20:20:58] <fujin> I think the google guy, nigelk, does it
[2008/06/05 20:20:58] <heydrick> i can get it to work with openssl's s_client and s_server but not against real puppetmasterd
[2008/06/05 20:21:04] <fujin> not familiar with anyone else who has got it running
[2008/06/05 20:21:05] <heydrick> get tlsv1 alert unknown ca
[2008/06/05 20:21:12] <fujin> unknown CA?
[2008/06/05 20:21:38] @ fsweetser_ joined channel #puppet
[2008/06/05 20:22:09] <heydrick> yeah it's either the client unable to validate the server's cert or the server unable to validate the client cert
[2008/06/05 20:22:24] <heydrick> i think I may be running into a limitation of webrick
[2008/06/05 20:22:28] @ Quit: fsweetser: Read error: 104 (Connection reset by peer)
[2008/06/05 20:22:30] <heydrick> and would be better off using Apache and mongrel
[2008/06/05 20:22:53] <fujin> well if you're talking about scalability, mongrel + a balancer is generally the first step
[2008/06/05 20:22:54] @ keithlard joined channel #puppet
[2008/06/05 20:22:59] <fujin> how many nodes?
[2008/06/05 20:22:59] <heydrick> right