Monday, 2009-05-18

[2009/05/18 00:04:19] @ Log started by gepetto
[2009/05/18 00:04:19] @ Quit: maxagaz_: "Leaving"
[2009/05/18 00:21:29] @ PaulWay joined channel #puppet
[2009/05/18 00:22:53] <PaulWay> Hi all!
[2009/05/18 00:23:43] <PaulWay> Is it possible for a class on a node to generate a config file on a (specified) other node?
[2009/05/18 00:24:13] <PaulWay> Or is it possible for a specific node to have a class that generates a particular file for each node with another (given) class?
[2009/05/18 00:24:32] <lak> PaulWay: using storeconfigs you can essentially do that, yes
[2009/05/18 00:25:05] <PaulWay> What I'm trying to do is to generate a Bacula job file for each host that I want to back up, but the job file has to be generated on the Bacula server, not the node to back up.
[2009/05/18 00:25:14] <PaulWay> lak: righto, will read up on storeconfigs.
[2009/05/18 00:26:01] <PaulWay> wiki UsingStoredConfiguration document, yeah?
[2009/05/18 00:26:04] @ Quit: d3vilb0x:
[2009/05/18 00:30:08] @ Quit: mmcgrath: Remote closed the connection
[2009/05/18 00:30:11] @ mmcgrath joined channel #puppet
[2009/05/18 00:30:28] @ Quit: shake-n-bake:
[2009/05/18 00:30:50] @ tuf joined channel #puppet
[2009/05/18 00:32:32] <tuf> greets.. conf file question.. my puppetd cant seem to find the puppetmaster hostname I set up in /etc/sysconfig/puppet on centos. Is that location something custom for the centos binary perhaps? I dont see it mentioned anywhere else.
[2009/05/18 00:34:03] @ etw_ joined channel #puppet
[2009/05/18 00:34:44] <tuf> like where does the gem version look for that file by default
[2009/05/18 00:34:52] <tuf> it only creates an empty /etc/puppet dir
[2009/05/18 00:35:47] <etw_> i want to make sure that a puppet report yaml has a certain log entry if i run it with "puppet once"; is this possible?
[2009/05/18 00:36:09] @ mfoster left channel #puppet ()
[2009/05/18 00:37:17] <PaulWay> tuf: I'm using the RHEL 4 RPMs, but I don't use /etc/sysconfig/puppet at all.
[2009/05/18 00:37:48] <tuf> PaulWay: im trying to figure out if /etc/sysconfig/puppet comes into play if you install puppet via gem vs rpm
[2009/05/18 00:37:59] <PaulWay> Ah, I see.
[2009/05/18 00:38:02] <PaulWay> Hmmmm.
[2009/05/18 00:38:13] <Djelibeybi> tuf: /etc/sysconfig/puppet only comes into play if you use the /etc/init.d/puppet scripts
[2009/05/18 00:38:32] <tuf> ah interesting
[2009/05/18 00:38:33] <ohadlevy> tuf: specify it in puppet.conf
[2009/05/18 00:38:34] <Djelibeybi> tuf: If you run puppetd manually, you have to provide the --server parameter manually as well.
[2009/05/18 00:38:49] <tuf> thats making more sense
[2009/05/18 00:39:17] <PaulWay> Odd - I have the server name set up in /etc/puppet/puppetd.conf and that makes it work from the command line as well as init.d
[2009/05/18 00:39:25] <tuf> ohadlevy: not sure how to do that..
[2009/05/18 00:39:31] <Djelibeybi> PaulWay: yes, that would.
[2009/05/18 00:39:32] <PaulWay> I check the /etc/puppet directory out from a client repository.
[2009/05/18 00:39:32] <tuf> PaulWay: yeah I tried that, no dice
[2009/05/18 00:39:38] <tuf> let me go try again
[2009/05/18 00:39:56] <tuf> PaulWay: got a url? maybe ill try that...I expect my configs are weird
[2009/05/18 00:40:01] <PaulWay> tuf: make sure you set the puppetmasterd.certname and puppetd.server
[2009/05/18 00:40:04] <Djelibeybi> PaulWay: /etc/sysconfig/puppet is called by /etc/init.d/puppet to determine command-line parameters for startup, essentially
[2009/05/18 00:40:19] <PaulWay> tuf: sorry, internal subversion repository only.
[2009/05/18 00:40:25] <tuf> ah np
[2009/05/18 00:40:35] <ohadlevy> tuf - under the puppetd section have a server = yourserver
[2009/05/18 00:40:45] <tuf> ah ok
[2009/05/18 00:40:51] <tuf> I dont have a puppetd section
[2009/05/18 00:41:21] <PaulWay> Djelibeybi: yeah, I see that, but OTOH puppetd uses the values in puppet.conf anyway...
[2009/05/18 00:41:32] <PaulWay> tuf: there's your problem right there... :-)
[2009/05/18 00:41:47] <tuf> d0h
[2009/05/18 00:42:12] <Djelibeybi> PaulWay: indeed. I actually use both -- /etc/sysconfig/puppet is set during kickstart to find the puppetmaster. Then /etc/puppet/puppet.conf is updated by puppet itself.
[2009/05/18 00:42:55] <Djelibeybi> You can actually do pre-req building that way, by bouncing from one puppetmaster to another (though I don't actually do this in real life)
[2009/05/18 00:44:25] <tuf> Djelibeybi: thats how I do it too, but installing puppet via gems is acting differently
[2009/05/18 00:44:49] <Djelibeybi> tuf: Ah. I only use the RPMs.
[2009/05/18 00:45:29] <tuf> Djelibeybi: yeah im running a newer version of ruby vs whats available for centos 5.3 via yum
[2009/05/18 00:46:10] <tuf> so thats why I went with gems this time around
[2009/05/18 00:46:26] @ Deesl joined channel #puppet
[2009/05/18 00:48:47] @ Quit: mikey_p:
[2009/05/18 00:56:51] @ Quit: etw_: "Lost terminal"
[2009/05/18 01:09:10] <tuf> ok so
[2009/05/18 01:09:35] <tuf> ive got PUPPET_SERVER=admin6... under the [puppetd] section of /etc/puppet/puppet.conf
[2009/05/18 01:09:50] <tuf> but the puppetd client still isnt picking it up
[2009/05/18 01:10:02] <tuf> w/o specifying config along with it
[2009/05/18 01:10:20] <ohadlevy> server=
[2009/05/18 01:10:31] @ Quit: garin: "Tiarra 0.1+svn-31673M: SIGTERM received; exit"
[2009/05/18 01:11:11] <tuf> where is puppet_server coming from?
[2009/05/18 01:11:19] <ohadlevy> tuf:donno
[2009/05/18 01:11:19] <tuf> I got it out of the sysconfig/puppet file
[2009/05/18 01:11:30] <ohadlevy> tuf: you are not using rh packaging right... so...
[2009/05/18 01:11:40] <tuf> k
[2009/05/18 01:12:04] <tuf> that did it
[2009/05/18 01:12:09] <tuf> sumofab#*(h
[2009/05/18 01:12:37] @ garin joined channel #puppet
[2009/05/18 01:13:15] <tuf> ohadlevy: thx, that sheds some light for sure
[2009/05/18 01:13:29] <tuf> my problems are centered around custom rhel rpm stuffs
[2009/05/18 01:21:22] <tuf> in the rpms /etc/init.d/puppet
[2009/05/18 01:21:23] <tuf> [ -f /etc/sysconfig/puppet ] && . /etc/sysconfig/puppet
[2009/05/18 01:22:02] <Djelibeybi> tuf: yes, I mentioned that before. :)
[2009/05/18 01:22:19] <tuf> yep..just flashing it up here
[2009/05/18 01:22:55] <tuf> doesnt happen to be a vanilla rc file around or distributed with puppet, is there?
[2009/05/18 01:29:24] <PaulWay> Hmmm - so storeconfig is really putting the backing store for Puppet into a database, right?
[2009/05/18 01:29:51] <PaulWay> So a separate application would then use that database to compile other stuff e.g. Bacula config.
[2009/05/18 01:30:35] <Djelibeybi> PaulWay: storeconfig puts compiled catalogs into the database. The text-based manifests are still authorative, though
[2009/05/18 01:30:47] <PaulWay> Yeah...
[2009/05/18 01:30:48] <PaulWay> Hmmm.
[2009/05/18 01:30:57] <Djelibeybi> PaulWay: however, you're right that a seperate application can then read the stored configs to build external resources
[2009/05/18 01:31:05] <Djelibeybi> Is how I understand it.
[2009/05/18 01:31:13] <Djelibeybi> jamesturnbull explained it to me a week or so ago
[2009/05/18 01:31:15] <PaulWay> So this is not really generating that in puppet, is it...
[2009/05/18 01:31:21] <Djelibeybi> Nope
[2009/05/18 01:31:39] <PaulWay> (where 'that' means 'a bunch of configuration on one host which knows about the other hosts in Puppet')
[2009/05/18 01:31:46] <PaulWay> Hmmmm.
[2009/05/18 01:31:57] <ohadlevy> PaulWay: you can trigger a change from host on another host configuration using store config
[2009/05/18 01:32:29] <PaulWay> Can you explain a bit further, ohadlevy?
[2009/05/18 01:32:43] <ohadlevy> lets say you have a monitoring host / backup host
[2009/05/18 01:32:56] <PaulWay> I do.
[2009/05/18 01:33:05] <ohadlevy> every time you add a new node, you want that backup/monitor host to know about those hosts and do somethiing
[2009/05/18 01:33:12] <PaulWay> Yep.
[2009/05/18 01:33:20] <ohadlevy> so you can do that with store configs
[2009/05/18 01:33:47] @ Quit: lak:
[2009/05/18 01:33:49] <PaulWay> By the monitor reading the database?
[2009/05/18 01:34:05] <ohadlevy> you define in the client manifest an export
[2009/05/18 01:34:12] <ohadlevy> e.g. saying I'm a backup cliecnt
[2009/05/18 01:34:27] <PaulWay> Yep.
[2009/05/18 01:34:33] <ohadlevy> and then in the backup host manifest, you collect the information about all backup clients
[2009/05/18 01:34:55] <PaulWay> Yep - but I'm not sure how.
[2009/05/18 01:35:15] <ohadlevy> let me find it in the wiki...
[2009/05/18 01:35:25] <PaulWay> And I'm not sure what you mean by 'export' in the client manifest.
[2009/05/18 01:35:43] <Djelibeybi> ohadlevy: http://reductivelabs.com/trac/puppet/wiki/LanguageTutorial#exported-resources
[2009/05/18 01:35:58] <PaulWay> Ta.
[2009/05/18 01:36:00] <Djelibeybi> Sorry, PaulWay: http://reductivelabs.com/trac/puppet/wiki/ExportedResources
[2009/05/18 01:36:07] <Djelibeybi> I was just reading up myself. :)
[2009/05/18 01:36:32] <PaulWay> Yes, just found that link.
[2009/05/18 01:37:31] <PaulWay> Ahhhh, I think I get it.
[2009/05/18 01:37:58] <PaulWay> So the backup client exports something that says "back me up!" (as well as the necessary config to support the server backing it up)
[2009/05/18 01:38:08] <ohadlevy> yep
[2009/05/18 01:38:18] <PaulWay> And the backup server 'collects' those exports and compiles its config from there (presumably using a template).
[2009/05/18 01:38:22] <ohadlevy> and then you can do some Execs or termplating
[2009/05/18 01:39:44] <PaulWay> Right, I think I understand it now.
[2009/05/18 01:39:45] <PaulWay> Thanks!
[2009/05/18 01:40:16] @ Quit: Deesl: Success
[2009/05/18 01:49:48] @ Quit: kolla: Remote closed the connection
[2009/05/18 01:50:09] @ Quit: fujin:
[2009/05/18 01:52:01] @ fujin joined channel #puppet
[2009/05/18 01:55:53] @ Quit: fbe: Read error: 110 (Connection timed out)
[2009/05/18 02:02:22] <PaulWay> Of course, the obvious stuff is the Nagios monitoring but that means I have to give up the old way of doing it (my own config files)
[2009/05/18 02:02:32] <PaulWay> I understand the old way, though it's cumbersome.
[2009/05/18 02:02:34] @ Quit: ohadlevy: Remote closed the connection
[2009/05/18 02:02:50] <PaulWay> And I'll still have to maintain non-Puppet config for the switches, routers, Windows boxes, etc.
[2009/05/18 02:10:09] @ nakano is now known as nakano_
[2009/05/18 02:11:44] @ Quit: hessml\|away: "Leaving..."
[2009/05/18 02:14:41] @ madrescher1 joined channel #puppet
[2009/05/18 02:15:01] @ hexasoft left channel #puppet ()
[2009/05/18 02:15:30] @ Quit: madrescher: Read error: 110 (Connection timed out)
[2009/05/18 02:18:16] @ hessml_ joined channel #puppet
[2009/05/18 02:24:30] @ Quit: f3ew: Remote closed the connection
[2009/05/18 02:27:28] @ f3ew joined channel #puppet
[2009/05/18 02:32:52] @ Quit: hessml_: "Leaving..."
[2009/05/18 02:41:45] @ johan-s joined channel #puppet
[2009/05/18 02:42:48] @ pleemans joined channel #puppet
[2009/05/18 02:42:58] @ Quit: pleemans: Read error: 104 (Connection reset by peer)
[2009/05/18 02:58:24] @ Quit: fujin:
[2009/05/18 02:59:14] <jamesturnbull> PaulWay: see the -dev list for an initial cut of Windows support for Puppet
[2009/05/18 02:59:43] @ MarlondB joined channel #puppet
[2009/05/18 03:00:46] @ Quit: andrewcshafer:
[2009/05/18 03:01:07] @ fujin joined channel #puppet
[2009/05/18 03:01:50] @ mellen joined channel #puppet
[2009/05/18 03:04:19] @ rcsheets joined channel #puppet
[2009/05/18 03:04:37] <PaulWay> jamesturnbull: it's somewhat academic as we don't allow Windows hosts in the gateway as a rule... :-)
[2009/05/18 03:04:46] @ pleemans joined channel #puppet
[2009/05/18 03:06:50] <jamesturnbull> PaulWay: well thought you might be interested since you mentioned Windows hosts :)
[2009/05/18 03:08:23] @ Quit: zoeloelip: "leaving"
[2009/05/18 03:08:36] @ zoeloelip joined channel #puppet
[2009/05/18 03:08:56] @ zoeloelip left channel #puppet ()
[2009/05/18 03:09:37] <PaulWay> jamesturnbull: thanks for that anyway :-).
[2009/05/18 03:10:22] @ Quit: ghenry: Read error: 110 (Connection timed out)
[2009/05/18 03:11:16] @ johan-s left channel #puppet ()
[2009/05/18 03:11:39] @ PsychoSid joined channel #puppet
[2009/05/18 03:12:09] @ aymerick joined channel #puppet
[2009/05/18 03:12:38] <rcsheets> is it normal to use puppet to manage the configuration of the server running puppetmaster?
[2009/05/18 03:12:49] @ Quit: markl_: Read error: 101 (Network is unreachable)
[2009/05/18 03:13:53] <jamesturnbull> rcsheets: a lot of people do
[2009/05/18 03:14:32] <rcsheets> ok, so long as it isn't known to be problematic or anything :)
[2009/05/18 03:14:49] <jamesturnbull> rcsheets: no issues
[2009/05/18 03:15:04] <rcsheets> great. thanks
[2009/05/18 03:16:59] <rcsheets> clearly i'm just getting started. is it normal to get a series of warnings from /usr/lib/ruby/1.8/xmlsimple.rb ?
[2009/05/18 03:17:24] <rcsheets> i'm seeing quite a few "already initialized constant" warnings
[2009/05/18 03:22:32] @ HarryCalahan joined channel #puppet
[2009/05/18 03:23:48] @ PaulWay left channel #puppet ()
[2009/05/18 03:26:57] <jamesturnbull> rcsheets: hmmm not generally
[2009/05/18 03:27:11] <jamesturnbull> rcsheets: can you pastie the errors?
[2009/05/18 03:27:20] <rcsheets> yeah one sec
[2009/05/18 03:28:03] <rcsheets> fwiw this is on ubuntu intrepid after just having run "aptitude install puppet"
[2009/05/18 03:28:25] <HarryCalahan> rcsheets: thats a pretty old version of puppet then
[2009/05/18 03:28:39] <rcsheets> 0.24.4
[2009/05/18 03:28:44] @ mfournier joined channel #puppet
[2009/05/18 03:28:57] <pastie> jamesturnbull: http://pastie.org/481301 by rcsheets.
[2009/05/18 03:29:42] @ francois joined channel #puppet
[2009/05/18 03:31:17] <jamesturnbull> rcsheets: that's not a Puppet issue
[2009/05/18 03:31:30] <jamesturnbull> rcsheets: I suspect that's Ruby/Ruby library related
[2009/05/18 03:31:35] <rcsheets> ok
[2009/05/18 03:33:43] @ KX joined channel #puppet
[2009/05/18 03:33:47] <jamesturnbull> rcsheets: https://bugs.launchpad.net/ubuntu/+source/puppet/+bug/296605
[2009/05/18 03:34:17] @ KX left channel #puppet ("Leaving")
[2009/05/18 03:34:21] <jamesturnbull> rcsheets: and http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=491730
[2009/05/18 03:36:33] <rcsheets> i see, i see
[2009/05/18 03:37:07] @ chip__ joined channel #puppet
[2009/05/18 03:37:23] @ KX joined channel #puppet
[2009/05/18 03:37:49] @ janmejay joined channel #puppet
[2009/05/18 03:37:57] <janmejay> exit
[2009/05/18 03:38:06] @ janmejay left channel #puppet ("Killed buffer")
[2009/05/18 03:39:00] @ KX left channel #puppet ("Leaving")
[2009/05/18 03:43:16] @ Quit: fujin:
[2009/05/18 03:43:24] @ fujin joined channel #puppet
[2009/05/18 03:45:51] @ Quit: atlan_: Read error: 113 (No route to host)
[2009/05/18 03:47:41] @ Quit: f3ew: Read error: 104 (Connection reset by peer)
[2009/05/18 03:48:14] @ f3ew joined channel #puppet
[2009/05/18 03:52:54] <rcsheets> jamesturnbull: I've read the bugs, but I'm not certain if they should stop me from using puppet as-is. am I right in thinking this is just cosmetic?
[2009/05/18 03:53:05] @ fujin is now known as bawt
[2009/05/18 03:57:08] @ bawt is now known as fujin
[2009/05/18 03:59:31] @ mattock joined channel #puppet
[2009/05/18 04:02:31] @ ghenry joined channel #puppet
[2009/05/18 04:07:59] <jamesturnbull> rcsheets: yep
[2009/05/18 04:08:05] <jamesturnbull> rcsheets: should cause no issues with Puppet
[2009/05/18 04:08:33] @ Quit: raphink: Remote closed the connection
[2009/05/18 04:09:20] @ Innocenti joined channel #puppet
[2009/05/18 04:09:53] @ raphink joined channel #puppet
[2009/05/18 04:15:43] @ comprehensive joined channel #puppet
[2009/05/18 04:16:55] @ kolla joined channel #puppet
[2009/05/18 04:19:21] @ nakano_ is now known as nakano
[2009/05/18 04:19:22] @ verwilst joined channel #puppet
[2009/05/18 04:24:17] <rcsheets> thanks very much jamesturnbull
[2009/05/18 04:24:19] <jamesturnbull> gepetto: seen nasrat
[2009/05/18 04:24:19] <gepetto> jamesturnbull: nasrat was last seen 10 hours, 57 minutes and 17 seconds ago, quitting IRC ()
[2009/05/18 04:24:44] <jamesturnbull> rcsheets: nw
[2009/05/18 04:28:53] @ monzie joined channel #puppet
[2009/05/18 04:38:41] <rcsheets> i'm now confused by a different issue though
[2009/05/18 04:38:57] <rcsheets> http://pastie.org/481338
[2009/05/18 04:46:26] @ MarlondB_ joined channel #puppet
[2009/05/18 04:47:48] <phantez> gepetto: seen lak
[2009/05/18 04:47:48] <gepetto> phantez: lak was last seen 3 hours and 14 minutes ago, quitting IRC ()
[2009/05/18 04:48:50] <macbar> anyone got some insight on how would be the best way to export a nagios_hostgroup resource ?
[2009/05/18 04:49:09] <macbar> as this is a resource that is typically exported by more than one node, how should one do this ?
[2009/05/18 04:49:13] <rcsheets> i'll have to come back to this after some sleep. ttyl.
[2009/05/18 04:49:27] <macbar> Can you realize virtual exported resources ?
[2009/05/18 04:49:42] <phantez> I am writing a patch to install multiple package at the same time and I have some issue to generate the correct events and to have a correct error handling, does anyone know about Property and Event ?
[2009/05/18 04:50:04] <jamesturnbull> rcsheets: set pluginsync=false
[2009/05/18 04:52:00] <jamesturnbull> macbar: have you read wiki:ExportedResources ?
[2009/05/18 04:52:01] <gepetto> jamesturnbull: macbar: wiki:ExportedResources is http://reductivelabs.com/trac/puppet/wiki/ExportedResources
[2009/05/18 04:52:21] <jamesturnbull> phantez: can you pastie for your code or not that far?
[2009/05/18 04:53:00] <macbar> jamesturnbull: yep
[2009/05/18 04:53:22] <jamesturnbull> phantez: the last time I thought about that I got stuck trying to puzzle out how to get the providers to behave themselves
[2009/05/18 04:54:18] <jamesturnbull> macbar: you can collect and export virtual resources
[2009/05/18 04:54:27] <jamesturnbull> macbar: though only in 0.24.8 onwards
[2009/05/18 04:55:01] <macbar> jamesturnbull: but the ExportedResources page only talks about "unique" (as in unique per puppetmaster realm), not about resources that are shared by multiple nodes
[2009/05/18 04:55:05] <phantez> jamesturnbull: http://pastie.org/481347
[2009/05/18 04:55:12] <macbar> jamesturnbull: how was it used before 0.24.8 then ?
[2009/05/18 04:55:22] <phantez> jamesturnbull: it's working but no error handling
[2009/05/18 04:55:42] <phantez> jamesturnbull: and almost no event
[2009/05/18 04:55:44] <macbar> the very nagios_hostgroup resource, for instance
[2009/05/18 04:56:38] <jamesturnbull> macbar: you've lost me a little - you've read "Exported Resources with Nagios"?
[2009/05/18 04:56:57] <macbar> jamesturnbull: I did, but that page only gives nagios_host and nagios_service examples
[2009/05/18 04:57:18] <jamesturnbull> macbar: same concept exactly
[2009/05/18 04:57:36] <macbar> jamesturnbull: but semantically, there's a big difference, no ?
[2009/05/18 04:57:49] <macbar> jamesturnbull: I mean, I can export a nagios_host resource once per node
[2009/05/18 04:58:33] <macbar> jamesturnbull: but what about nagios_hostgroup resources? I can only export it once per hostgroup, nevermind the fact that I want the same recipe for all the nodes in the hostgroup
[2009/05/18 04:58:34] @ martha joined channel #puppet
[2009/05/18 04:58:47] @ Quit: f3ew: Read error: 104 (Connection reset by peer)
[2009/05/18 04:59:46] <jamesturnbull> macbar: okay - let me find an example - I know someone has done this ... ten ticks whilst I lsearch my links
[2009/05/18 04:59:56] <macbar> jamesturnbull: thanks
[2009/05/18 05:00:34] @ Quit: MarlondB: Read error: 113 (No route to host)
[2009/05/18 05:09:04] @ friendly12345 joined channel #puppet
[2009/05/18 05:12:34] <jamesturnbull> macbar: unfortunately the only one I can find is - https://labs.riseup.net/code/repositories/show/module-nagios
[2009/05/18 05:12:40] <jamesturnbull> macbar: I am sure I had a better example
[2009/05/18 05:14:26] @ Quit: comprehensive: "CHOCOA"
[2009/05/18 05:16:12] @ sid77 joined channel #puppet
[2009/05/18 05:17:36] <macbar> jamesturnbull: thanks, I will look and see how they fix this
[2009/05/18 05:18:23] * jamesturnbull hates TRac which has carked it
[2009/05/18 05:19:04] <macbar> jamesturnbull: that's the module I started off with :/
[2009/05/18 05:22:00] <macbar> Of course, I could just export the nagios_servicegroup and nagios_hostgroup on the nagios server node, but that's just stupid
[2009/05/18 05:24:16] <phantez> jamesturnbull: any idea ?
[2009/05/18 05:24:21] <jamesturnbull> macbar: sorry - just trying to fix trac
[2009/05/18 05:24:24] <jamesturnbull> phantez: ^^^^
[2009/05/18 05:24:39] <phantez> jamesturnbull: that's ok ;-) good luck
[2009/05/18 05:24:59] <macbar> jamesturnbull: I'll do some more thinking, maybe I'll find another solution ;-)
[2009/05/18 05:25:11] <macbar> jamesturnbull: in the meantime, do you have a link for exporting virtual resources ?
[2009/05/18 05:25:47] @ zeroXten joined channel #puppet
[2009/05/18 05:26:06] @ f3ew joined channel #puppet
[2009/05/18 05:28:50] <jamesturnbull> macbar: what are you exactly trying to do?
[2009/05/18 05:29:42] <jamesturnbull> phantez: so it's working?
[2009/05/18 05:31:17] <jamesturnbull> phantez: can I ask a question about the implementation
[2009/05/18 05:31:18] <phantez> jamesturnbull: yes I can install multiple package in a single call to the package manager
[2009/05/18 05:31:19] <jamesturnbull> ?
[2009/05/18 05:31:21] <phantez> yes
[2009/05/18 05:31:26] <phantez> =)
[2009/05/18 05:31:28] <jamesturnbull> phantez: so why the combine param?
[2009/05/18 05:31:56] <jamesturnbull> and does it only override if the package resource contains an array?
[2009/05/18 05:32:17] <phantez> the param so that it could be enable/disable
[2009/05/18 05:32:27] <phantez> at the top level Package or individually
[2009/05/18 05:32:43] <phantez> and what do you mean by an array ?
[2009/05/18 05:33:42] <phantez> [:present,:latest,:installed].include?(resource[:ensure]) ?
[2009/05/18 05:33:51] <phantez> is your though that link to this line
[2009/05/18 05:33:54] <phantez> ?
[2009/05/18 05:34:26] <jamesturnbull> you create a package resource like package { "vim": ensure => installed, combine => true } and combine does nothing right?
[2009/05/18 05:34:28] @ MattyM joined channel #puppet
[2009/05/18 05:34:43] <phantez> right
[2009/05/18 05:34:52] <phantez> hum
[2009/05/18 05:35:06] <phantez> it try to combine with any other package that have been declared in all the manifests
[2009/05/18 05:35:10] <phantez> in the catalog exactly
[2009/05/18 05:35:24] <jamesturnbull> hmmmm
[2009/05/18 05:35:49] <macbar> jamesturnbull: actually, it comes down to multiple exports of one and the same resource with having just one collect of it
[2009/05/18 05:36:43] <macbar> jamesturnbull: defining a nagios_hostgroup on several nodes and having a nagios server collect every host_group defined only once
[2009/05/18 05:36:45] <phantez> jamesturnbull: go to eat =)
[2009/05/18 05:37:02] <macbar> jamesturnbull: I'd like to find out if upgrading to 0.24.8 would help me any further :)
[2009/05/18 05:37:20] <jamesturnbull> so it takes all package resource applied in the catalogue and tries to combine them into one call? I get a funny feeling about that but I can't work out why it's rning alarm bells - it's a slow evening
[2009/05/18 05:38:35] @ Quit: MarlondB_:
[2009/05/18 05:39:34] <jamesturnbull> macbar: hmmmI am not sure that's going to work
[2009/05/18 05:39:48] <jamesturnbull> macbar: I've certainly never tried ti - though I've now worked out what youy want to do :)
[2009/05/18 05:40:04] <jamesturnbull> macbar: try it?
[2009/05/18 05:45:35] @ MarlondB joined channel #puppet
[2009/05/18 05:45:46] <macbar> jamesturnbull: I'm managing more than a hundred mission critical servers in puppet, I'd like to see how exporting virtual resources work in puppet 0.24.8, before I upgrade my whole platform :-D
[2009/05/18 05:46:22] <jamesturnbull> macbar: so you'd create @nagios_hostgroup { "blah": } and then Nagios_hostgroup <\| title == blah \|> to realise on the required hosts
[2009/05/18 05:47:20] <jamesturnbull> macbar: from there you should be able to @@Nagios_hostgroup <<\| \|>> and export the resources
[2009/05/18 05:47:32] <macbar> jamesturnbull: aha, hmm
[2009/05/18 05:47:42] <jamesturnbull> macbar: the logic makes sense to me :P
[2009/05/18 05:47:42] <macbar> jamesturnbull: I'll see if I can make a test setup then :-)
[2009/05/18 05:48:15] <jamesturnbull> macbar: but I am fairly sure you might want to try it with 0.24.8
[2009/05/18 05:49:47] <macbar> is the 0.24.7 client compatible with a 0.24.8 server ?
[2009/05/18 05:56:31] @ Deesl joined channel #puppet
[2009/05/18 05:59:05] <jamesturnbull> macbar: should be
[2009/05/18 05:59:23] <jamesturnbull> macbar: but some things - like exported/virtual resource can be sensitive to that sort of thing
[2009/05/18 06:04:00] <macbar> Ok, I'll keep an eye on those
[2009/05/18 06:05:23] @ mikepea joined channel #puppet
[2009/05/18 06:06:14] @ nakano is now known as nakano_
[2009/05/18 06:06:21] @ nakano_ is now known as nakano
[2009/05/18 06:07:47] <HarryCalahan> c!
[2009/05/18 06:08:39] @ ethan_rowe joined channel #puppet
[2009/05/18 06:10:00] @ gaveen joined channel #puppet
[2009/05/18 06:13:35] <Djelibeybi> jamesturnbull: I still don't understand exported resources. I may have to get you to explain them to me slowly at some point. :)
[2009/05/18 06:14:04] <jamesturnbull> Djelibeybi: thankfully I don't drink anymore so I might be able to
[2009/05/18 06:14:22] <Djelibeybi> jamesturnbull: though, by the end of it, I suspect you may be tempted. :p
[2009/05/18 06:14:45] <Djelibeybi> jamesturnbull: I don't think we have a use-case for it right now, but it would be good to know in future. Hence the complete lack of urgency
[2009/05/18 06:16:15] @ nakano is now known as nakano_
[2009/05/18 06:16:15] @ Quit: CoolCold: Remote closed the connection
[2009/05/18 06:16:18] @ CoolCold joined channel #puppet
[2009/05/18 06:20:01] <maxagaz> hi
[2009/05/18 06:21:07] <maxagaz> once i have changed a config file of puppet, what to so that it's taken into account immediately ?
[2009/05/18 06:21:52] <Djelibeybi> maxagaz: should be automatic. The Puppet Master and client both re-read the config file for changes
[2009/05/18 06:22:20] <maxagaz> Djelibeybi, when does it read it ?
[2009/05/18 06:27:10] <jamesturnbull> maxagaz: well before it does a run
[2009/05/18 06:27:19] <Djelibeybi> maxagaz: mine even re-reads it if it changes during a run.
[2009/05/18 06:27:34] <Djelibeybi> I have augeas types that change puppet.conf on the fly.
[2009/05/18 06:30:56] @ Quit: HarryCalahan: Read error: 113 (No route to host)
[2009/05/18 06:31:35] @ Quit: garin: Read error: 60 (Operation timed out)
[2009/05/18 06:51:47] @ draytm01 joined channel #puppet
[2009/05/18 06:51:50] <draytm01> hi there
[2009/05/18 06:54:04] <phantez> jamesturnbull: do you have an idea about how I can have error handling and event for this patch ?
[2009/05/18 06:55:56] <jamesturnbull> phantez: well wrap a begin/rescue around the yum command
[2009/05/18 06:58:04] <jamesturnbull> phantez: actually why the output = ?
[2009/05/18 06:58:12] <jamesturnbull> phantez: why not just yum blah blah install
[2009/05/18 06:58:58] <phantez> yep but I need to test each packet individually if it has been correctly installed
[2009/05/18 07:00:31] <jamesturnbull> phantez: ah I see
[2009/05/18 07:00:57] @ Quit: monzie:
[2009/05/18 07:02:06] <phantez> and I need to have the Event created with the correct output
[2009/05/18 07:02:14] <phantez> which is done when it compares the properties
[2009/05/18 07:02:26] <phantez> and I haven't done this yet as I am not using properties
[2009/05/18 07:08:19] <jamesturnbull> phantez: not sure having combinable works in transaction works - it there something another than packages we'd do this for? (not saying there sin't - just a thought)
[2009/05/18 07:10:34] @ d3vilb0x joined channel #puppet
[2009/05/18 07:12:28] @ monzie joined channel #puppet
[2009/05/18 07:15:22] <phantez> jamesturnbull: I did not catch what you mean, the combineable? test if it is combineable otherwise it use the classical way
[2009/05/18 07:15:52] <jamesturnbull> phantez: no no - you've got the lgoci in transaction.rb
[2009/05/18 07:16:10] <jamesturnbull> phantez: logic
[2009/05/18 07:16:22] <jamesturnbull> phantez: is packages the only use case?
[2009/05/18 07:16:51] <phantez> now yes, but maybe an other type would like to support combineable
[2009/05/18 07:17:24] <phantez> I based my code on what lak said
[2009/05/18 07:18:07] <phantez> http://groups.google.com/group/puppet-dev/browse_thread/thread/584c9db44f5e2253/b45288589deea4c9
[2009/05/18 07:19:25] <jamesturnbull> well isn't he helpful
[2009/05/18 07:20:29] <phantez> yes it is, but I don't really know how integrate well with Event and Errors
[2009/05/18 07:21:59] <jamesturnbull> not sure about Events
[2009/05/18 07:24:25] <phantez> the code is kinda complex ^^
[2009/05/18 07:25:28] <jamesturnbull> phantez: yeah
[2009/05/18 07:29:07] @ Quit: rcsheets:
[2009/05/18 07:32:20] @ francois left channel #puppet ()
[2009/05/18 07:37:55] @ mvn071 joined channel #puppet
[2009/05/18 07:40:57] @ Quit: drmikecrowe: Read error: 110 (Connection timed out)
[2009/05/18 07:41:01] @ briandquinn joined channel #puppet
[2009/05/18 07:41:51] <jamesturnbull> phantez: send your code to the list for comment - thjat's the best way to get the most expsoure
[2009/05/18 07:47:04] @ Quit: d3vilb0x:
[2009/05/18 07:54:34] @ Quit: yure: Remote closed the connection
[2009/05/18 08:01:19] <phantez> jamesturnbull: I think it is my best option, but I am trying to improve the error handling a little and I will post it tonight
[2009/05/18 08:01:56] <phantez> btw, I posted the internal architecture schema I did on the puppet internal architecture wiki page
[2009/05/18 08:04:19] <fluxdude> when I am inheriting to a node and there is a variable based decision that is used in one of the parent node's classes, setting the variable has no effect to change the outcome in the child node.
[2009/05/18 08:04:53] <jamesturnbull> phantez: yeah I saw that - can't work out how RST does images right - I'll fix it when we go to dokuwiki
[2009/05/18 08:04:55] <fluxdude> the only workaround I have used to date is to not inherit and include everything underneath the variable or to use a different inheritance path, but this is messy and leads to lots of duplication everywhere
[2009/05/18 08:05:20] <phantez> jamesturnbull: when will be the dokuwiki ready ?
[2009/05/18 08:05:35] <fluxdude> would it be possible to fix this to somehow allow evaluation of classes till the last minute so that child nodes can override the variable and then get a customized configuration?
[2009/05/18 08:05:37] <jamesturnbull> phantez: hopefully RSN
[2009/05/18 08:05:55] <fluxdude> I guess this is a design decision, I just don't want to raise a ticket to have luke reject it flat out again...
[2009/05/18 08:06:13] <fluxdude> or is there another workaround that I haven't mentioned/tried yet?
[2009/05/18 08:06:25] <jamesturnbull> fluxdude: have you seen - wiki:CommonMisconceptions
[2009/05/18 08:06:29] <gepetto> jamesturnbull: fluxdude: wiki:CommonMisconceptions is http://reductivelabs.com/trac/puppet/wiki/CommonMisconceptions
[2009/05/18 08:07:38] <jamesturnbull> fluxdude: and someone had a nifty workaround - let me find it
[2009/05/18 08:08:03] <fluxdude> ah, thanks, so I include rather than inherit classes?
[2009/05/18 08:08:10] <fluxdude> yes that should fix it nicely.
[2009/05/18 08:08:21] <fluxdude> didn't know you could include nodes....
[2009/05/18 08:08:38] <fluxdude> oh wait, you inherits classes
[2009/05/18 08:08:54] <fluxdude> so build base_class not base_nodes.... ok will have to rewrite and try that...
[2009/05/18 08:10:33] <realist> jamesturnbull: I can't stop thinking that SNMP MIBs would be a good fit for Facter facts.
[2009/05/18 08:11:01] <jamesturnbull> fluxdude: ah I see - ignore other fix - someone already stuck it in the that page
[2009/05/18 08:11:10] <jamesturnbull> realist: yeah
[2009/05/18 08:11:23] <jamesturnbull> realist: will work a lot betetr in 1.6/2.0 when we namespace things
[2009/05/18 08:11:44] <jamesturnbull> realist: but feel free to email the -dev list and nasrat to add it to his brainspace
[2009/05/18 08:12:55] <realist> It would add more requirements on the network though, in terms of firewall rules and SNMP "security"
[2009/05/18 08:18:30] @ Quit: monzie:
[2009/05/18 08:22:40] <gepetto> ::trac:: Dmg Packages edited by jamtur01 @ http://reductivelabs.com/trac/puppet/wiki/DmgPackages (by james@lovedthanlost.net)
[2009/05/18 08:26:42] @ m1n3s6 joined channel #puppet
[2009/05/18 08:32:01] <gepetto> ::trac:: Package Management WithDMG edited by jamtur01 @ http://reductivelabs.com/trac/puppet/wiki/PackageManagementWithDMG (by james@lovedthanlost.net)
[2009/05/18 08:32:01] <gepetto> ::trac:: Package Management WithDMG edited by jamtur01 @ http://reductivelabs.com/trac/puppet/wiki/PackageManagementWithDMG (by james@lovedthanlost.net)
[2009/05/18 08:34:49] @ kambiz_away is now known as kambiz
[2009/05/18 08:34:51] @ Quit: friendly12345: "Leaving."
[2009/05/18 08:36:49] <m1n3s6> can i have exec subscribed to a package ? lets say if package is upgraded or downgraded then only exec will run
[2009/05/18 08:37:22] <Volcane> anything can subscribe to anything
[2009/05/18 08:46:47] @ Bass10 joined channel #puppet
[2009/05/18 08:48:37] <gepetto> ::trac:: Puppet AIX edited by jamtur01 @ http://reductivelabs.com/trac/puppet/wiki/Puppet%20AIX (by james@lovedthanlost.net)
[2009/05/18 08:55:05] <gepetto> ::trac:: Recipes/Network Interface Templates edited by jamtur01 @ http://reductivelabs.com/trac/puppet/wiki/Recipes/NetworkInterfaceTemplates (by james@lovedthanlost.net)
[2009/05/18 08:55:05] <gepetto> ::trac:: Recipes/Network Interface Templates edited by jamtur01 @ http://reductivelabs.com/trac/puppet/wiki/Recipes/NetworkInterfaceTemplates (by james@lovedthanlost.net)
[2009/05/18 08:56:17] @ HarryCalahan joined channel #puppet
[2009/05/18 08:57:06] @ nakano_ is now known as nakano
[2009/05/18 09:00:50] @ drmikecrowe joined channel #puppet
[2009/05/18 09:01:38] @ kngus joined channel #puppet
[2009/05/18 09:01:41] @ kngus left channel #puppet ("Leaving.")
[2009/05/18 09:02:18] @ joe-mac joined channel #puppet
[2009/05/18 09:03:35] @ erm_ joined channel #puppet
[2009/05/18 09:04:35] @ nakano is now known as nakano_
[2009/05/18 09:04:37] <flashn> weird, have they changed the style references for alignment i.e?
[2009/05/18 09:04:53] <flashn> gid => 0644
[2009/05/18 09:05:01] @ d3vilb0x joined channel #puppet
[2009/05/18 09:05:10] <flashn> id => 0644
[2009/05/18 09:05:11] <flashn> etc
[2009/05/18 09:06:03] @ martha left channel #puppet ()
[2009/05/18 09:06:10] <gepetto> ::trac:: Puppet Solaris edited by jamtur01 @ http://reductivelabs.com/trac/puppet/wiki/PuppetSolaris (by james@lovedthanlost.net)
[2009/05/18 09:07:01] @ alhoang_ joined channel #puppet
[2009/05/18 09:07:58] <jamesturnbull> realist: http://reductivelabs.com/trac/puppet/wiki/PuppetTrapping
[2009/05/18 09:08:10] <jamesturnbull> realist: can you log a facter ticket for the SNMP stuff?
[2009/05/18 09:08:26] <jamesturnbull> realist: and if you fancy the idea in the wiki page - log a ticket for it on Puppet?
[2009/05/18 09:08:39] <realist> jamesturnbull: I'll take a look
[2009/05/18 09:08:54] <jamesturnbull> realist: actually ignore the last - I'll do it
[2009/05/18 09:09:43] @ Quit: Djelibeybi: "Leaving"
[2009/05/18 09:16:29] <gepetto> ::trac:: Puppet Recipe Manager edited by jamtur01 @ http://reductivelabs.com/trac/puppet/wiki/PuppetRecipeManager (by james@lovedthanlost.net)
[2009/05/18 09:16:29] <gepetto> ::trac:: Puppet Recipe Manager edited by jamtur01 @ http://reductivelabs.com/trac/puppet/wiki/PuppetRecipeManager (by james@lovedthanlost.net)
[2009/05/18 09:22:43] <gepetto> ::trac:: Writing Tests edited by jamtur01 @ http://reductivelabs.com/trac/puppet/wiki/WritingTests (by james@lovedthanlost.net)
[2009/05/18 09:27:55] @ lak joined channel #puppet
[2009/05/18 09:29:31] <gepetto> feed trac had 4 updates, showing the latest 3
[2009/05/18 09:29:31] <gepetto> ::trac:: Puppet Version Control edited by jamtur01 @ http://reductivelabs.com/trac/puppet/wiki/Puppet%20Version%20Control (by james@lovedthanlost.net)
[2009/05/18 09:29:31] <gepetto> ::trac:: Puppet Version Control edited by jamtur01 @ http://reductivelabs.com/trac/puppet/wiki/Puppet%20Version%20Control (by james@lovedthanlost.net)
[2009/05/18 09:29:31] <gepetto> ::trac:: Whos Using Puppet edited by jamtur01 @ http://reductivelabs.com/trac/puppet/wiki/WhosUsingPuppet (by james@lovedthanlost.net)
[2009/05/18 09:32:01] <gepetto> ::trac:: Stable Platforms edited by jamtur01 @ http://reductivelabs.com/trac/puppet/wiki/StablePlatforms (by james@lovedthanlost.net)
[2009/05/18 09:32:07] @ Quit: kolla: Remote closed the connection
[2009/05/18 09:35:25] <gepetto> ::trac:: Puppet Syntax Errors edited by jamtur01 @ http://reductivelabs.com/trac/puppet/wiki/Puppet%20Syntax%20Errors (by james@lovedthanlost.net)
[2009/05/18 09:35:25] <gepetto> ::trac:: Puppet Syntax Errors edited by jamtur01 @ http://reductivelabs.com/trac/puppet/wiki/Puppet%20Syntax%20Errors (by james@lovedthanlost.net)
[2009/05/18 09:40:15] @ pvenkata joined channel #puppet
[2009/05/18 09:40:42] @ flakrat joined channel #puppet
[2009/05/18 09:40:47] @ Quit: pvenkata: Client Quit
[2009/05/18 09:41:15] @ Quit: axisys: Read error: 110 (Connection timed out)
[2009/05/18 09:42:02] <gepetto> ::trac:: TOC edited by jamtur01 @ http://reductivelabs.com/trac/puppet/wiki/TOC (by james@lovedthanlost.net)
[2009/05/18 09:42:02] <gepetto> ::trac:: Documentation Start edited by jamtur01 @ http://reductivelabs.com/trac/puppet/wiki/DocumentationStart (by james@lovedthanlost.net)
[2009/05/18 09:42:03] @ rgsteele\|\|work joined channel #puppet
[2009/05/18 09:42:21] @ teyo joined channel #puppet
[2009/05/18 09:42:46] <joe-mac> jeez jamesturnbull you went on a rampage
[2009/05/18 09:46:35] @ mccune joined channel #puppet
[2009/05/18 09:51:28] @ pheezy joined channel #puppet
[2009/05/18 09:53:20] @ shake-n-bake joined channel #puppet
[2009/05/18 09:54:52] @ hexasoft joined channel #puppet
[2009/05/18 09:55:02] <hexasoft> hello
[2009/05/18 09:55:29] @ cwebber joined channel #puppet
[2009/05/18 09:55:37] <hexasoft> grmbl... 6667 filtered
[2009/05/18 09:55:57] <hexasoft> I have a question about self signed certs and linux/aix
[2009/05/18 09:56:32] <hexasoft> when connecting to the server with openssl from linux, I just get a warning about the fact that it is self signed.
[2009/05/18 09:56:54] <hexasoft> so it works fine. on aix the same message lead to an error.
[2009/05/18 09:57:18] <hexasoft> someone still get this problem?
[2009/05/18 09:58:13] <joe-mac> that's interesting... unfortunately i onl;y get to play with commodity hardware :-(
[2009/05/18 10:01:45] @ hexasoft1 joined channel #puppet
[2009/05/18 10:02:04] @ Quit: hexasoft: "http://www.mibbit.com ajax IRC Client"
[2009/05/18 10:02:10] @ hexasoft1 is now known as hexasoft
[2009/05/18 10:02:31] <hexasoft> port 8001, not filtered :)
[2009/05/18 10:03:15] @ axisys joined channel #puppet
[2009/05/18 10:03:19] @ markl_ joined channel #puppet
[2009/05/18 10:06:04] <hexasoft> so, nobody get troubles with self signed certs on non-linux clients?
[2009/05/18 10:06:19] @ Quit: duritong: Remote closed the connection
[2009/05/18 10:06:37] @ duritong joined channel #puppet
[2009/05/18 10:06:38] * rgsteele\|\|work luckily doesn't have to deal with non-linux clients
[2009/05/18 10:07:04] <sz> hexasoft: self signed certs work ok for me on solaris
[2009/05/18 10:07:09] <sz> haven't tried our aix boxes yet
[2009/05/18 10:07:17] <hexasoft> I'm not dealing with, but I'm dealing with puppet and I push non-linux people to use it :)
[2009/05/18 10:07:17] * sz wishes he didn't have to deal with anything but linux
[2009/05/18 10:07:32] @ Quit: duritong: Client Quit
[2009/05/18 10:07:46] @ Quit: shake-n-bake:
[2009/05/18 10:07:49] <hexasoft> sz: ok.
[2009/05/18 10:08:15] <hexasoft> I think I will replace the puppet master cert by a real certificate
[2009/05/18 10:08:23] <lak> hexasoft: what's complaining about the self-signed cert? you should never get that with any part of puppet
[2009/05/18 10:08:41] <lak> since puppet picks its own list of CAs, and it always includes its own ca in that list, of course
[2009/05/18 10:08:46] <hexasoft> lak: I check the error message
[2009/05/18 10:08:50] @ duritong joined channel #puppet
[2009/05/18 10:08:55] @ mfoster1 joined channel #puppet
[2009/05/18 10:09:33] <realist> Silly question, but your AIX host's time is synchronised?
[2009/05/18 10:09:51] <hexasoft> yep
[2009/05/18 10:09:57] <hexasoft> first thing we checked :)
[2009/05/18 10:17:06] <hexasoft> http://www.pastie.org/481560
[2009/05/18 10:17:12] <hexasoft> the puppetd error message
[2009/05/18 10:17:35] <hexasoft> and the detailled messages using openssl to connect from a linux and aix node to the same server
[2009/05/18 10:17:41] @ Quit: madrescher1: Read error: 104 (Connection reset by peer)
[2009/05/18 10:21:06] @ ke4qqq left channel #puppet ()
[2009/05/18 10:24:23] @ Quit: mattock: "Leaving."
[2009/05/18 10:25:46] <lak> hexasoft: ah, yeah, if you're going to use the openssl command, you need to specify the path to the CA cert file
[2009/05/18 10:26:19] <lak> hexasoft: there's an openssl verify command in the faq
[2009/05/18 10:26:41] <hexasoft> my pb is the error message from the puppetd.
[2009/05/18 10:27:18] <hexasoft> the same puppetd client gives this error on aix and not on linux
[2009/05/18 10:28:57] <joe-mac> ping mfoster1
[2009/05/18 10:29:32] <mfoster1> hi joe-mac
[2009/05/18 10:30:00] <joe-mac> hey man, are you the same mfoster1 who posted this: http://blog.bitpusher.com/
[2009/05/18 10:30:10] <mfoster1> yes
[2009/05/18 10:30:52] <joe-mac> i noticed one of your colleagues, mhalligan, right on the same day posted about partman-auto-raid in lts, his preseed actually fails to patrse in the same palce that my current one does and i've been wrestling with this on and off for months. are you familiar with this? any way we could diff our preseeds?
[2009/05/18 10:31:12] @ shake-n-bake joined channel #puppet
[2009/05/18 10:32:11] <joe-mac> i think he may have pasted that one that wasn't the onet hat worked or something
[2009/05/18 10:33:49] <mfoster1> I haven't worked with his preseed setup yet, so check with him if you want to compare notes
[2009/05/18 10:34:15] <joe-mac> can i just email him directly, username at your company?
[2009/05/18 10:34:30] <mfoster1> mhalligan@bitpusher.com
[2009/05/18 10:34:35] <joe-mac> sweet, thanks a lot!
[2009/05/18 10:34:52] <mfoster1> good luck those preseeds are finnicky
[2009/05/18 10:35:52] <joe-mac> i know man, coming from an RH background it's driving me batty...
[2009/05/18 10:37:01] @ madrescher joined channel #puppet
[2009/05/18 10:40:59] @ lutter joined channel #puppet
[2009/05/18 10:49:32] @ Quit: pleemans: Read error: 60 (Operation timed out)
[2009/05/18 10:58:39] @ Quit: teyo:
[2009/05/18 10:59:04] @ andrewcshafer joined channel #puppet
[2009/05/18 11:03:35] @ Quit: madduck: hubbard.freenode.net irc.freenode.net
[2009/05/18 11:03:35] @ Quit: barn: hubbard.freenode.net irc.freenode.net
[2009/05/18 11:03:36] @ Quit: erm_: hubbard.freenode.net irc.freenode.net
[2009/05/18 11:03:36] @ Quit: zeroXten: hubbard.freenode.net irc.freenode.net
[2009/05/18 11:03:37] @ Quit: mmcgrath: hubbard.freenode.net irc.freenode.net
[2009/05/18 11:03:37] @ Quit: mecca_: hubbard.freenode.net irc.freenode.net
[2009/05/18 11:03:38] @ Quit: sts: hubbard.freenode.net irc.freenode.net
[2009/05/18 11:03:38] @ Quit: n0ts_: hubbard.freenode.net irc.freenode.net
[2009/05/18 11:03:38] @ Quit: macbar: hubbard.freenode.net irc.freenode.net
[2009/05/18 11:03:39] @ Quit: astinus: hubbard.freenode.net irc.freenode.net
[2009/05/18 11:04:10] @ adoom422 left channel #puppet ()
[2009/05/18 11:04:21] @ erm_ joined channel #puppet
[2009/05/18 11:04:21] @ zeroXten joined channel #puppet
[2009/05/18 11:04:21] @ mmcgrath joined channel #puppet
[2009/05/18 11:04:22] @ mecca_ joined channel #puppet
[2009/05/18 11:04:22] @ madduck joined channel #puppet
[2009/05/18 11:04:22] @ sts joined channel #puppet
[2009/05/18 11:04:22] @ n0ts_ joined channel #puppet
[2009/05/18 11:04:22] @ barn joined channel #puppet
[2009/05/18 11:04:22] @ astinus joined channel #puppet
[2009/05/18 11:04:22] @ macbar joined channel #puppet
[2009/05/18 11:05:05] @ jmarki joined channel #puppet
[2009/05/18 11:05:44] @ Quit: Omahn: Remote closed the connection
[2009/05/18 11:05:52] @ Omahn joined channel #puppet
[2009/05/18 11:06:29] @ teyo joined channel #puppet
[2009/05/18 11:08:55] @ Quit: Innocenti: Remote closed the connection
[2009/05/18 11:09:11] @ Innocenti joined channel #puppet
[2009/05/18 11:09:16] @ andrewcshafer_ joined channel #puppet
[2009/05/18 11:11:12] @ Quit: HarryCalahan: "."
[2009/05/18 11:13:24] @ Quit: PsychoSid: "Leaving."
[2009/05/18 11:13:29] @ Quit: mvn071: "Leaving"
[2009/05/18 11:14:11] @ alfism joined channel #puppet
[2009/05/18 11:17:05] @ Quit: blahdeblah: Remote closed the connection
[2009/05/18 11:17:39] @ blahdeblah joined channel #puppet
[2009/05/18 11:22:51] @ Quit: andrewcshafer: Read error: 110 (Connection timed out)
[2009/05/18 11:26:08] @ glaw joined channel #puppet
[2009/05/18 11:27:07] @ kambiz is now known as kambiz_away
[2009/05/18 11:27:28] @ kambiz_away is now known as kambiz
[2009/05/18 11:27:33] @ coofaman1 joined channel #puppet
[2009/05/18 11:27:59] <coofaman1> anyone have an understanding of how to get a file from the filebucket? I read the doc but just dont get it.
[2009/05/18 11:28:20] @ Quit: edwardam: Remote closed the connection
[2009/05/18 11:29:00] @ Quit: MarlondB:
[2009/05/18 11:30:33] <joe-mac> coofaman1: i just doa recursive grep on files named title or whatever it is in the filebucket, then cat the corresponding contents file
[2009/05/18 11:30:41] <joe-mac> idk if there is some kind of 'right' way to do it though
[2009/05/18 11:31:43] <coofaman1> hmm, I have contents, but not folders named after files
[2009/05/18 11:32:00] <coofaman1> the bucket is a hierarchy of 01234... etc
[2009/05/18 11:32:38] <coofaman1> ahh, md5sums
[2009/05/18 11:34:12] @ glaw_ joined channel #puppet
[2009/05/18 11:34:31] <joe-mac> coofaman1: "paths" is the same of the file
[2009/05/18 11:34:44] <coofaman1> joe-mac: my directory names are md5sums, so your technique worked but with the md5 instead of a file name
[2009/05/18 11:34:47] <coofaman1> thanks
[2009/05/18 11:34:51] @ Quit: verwilst: Read error: 113 (No route to host)
[2009/05/18 11:34:57] <joe-mac> yea there ya, you can split on every digit of the md5 to get the path
[2009/05/18 11:37:34] @ r3d14l1 joined channel #puppet
[2009/05/18 11:43:13] @ Quit: glaw_: ""Remember, information is not knowledge, knowledge is not wisdom, wisdom is not truth, truth is not beauty, beauty is not lov
[2009/05/18 11:44:05] @ Quit: peoplemerge: "BitchX-1.1-final -- just do it."
[2009/05/18 11:45:24] @ edwardam joined channel #puppet
[2009/05/18 11:47:33] @ Quit: glaw: Remote closed the connection
[2009/05/18 11:49:47] @ Quit: hexasoft: "Leaving."
[2009/05/18 11:51:34] @ Quit: mccune: Remote closed the connection
[2009/05/18 11:54:23] @ Quit: teyo:
[2009/05/18 11:54:48] @ coofaman1 left channel #puppet ()
[2009/05/18 11:58:55] @ hessml\|away joined channel #puppet
[2009/05/18 12:01:32] @ Quit: Innocenti: Client Quit
[2009/05/18 12:01:48] @ DasFx joined channel #puppet
[2009/05/18 12:02:00] @ Quit: DasFx: Client Quit
[2009/05/18 12:02:12] @ DasFx joined channel #puppet
[2009/05/18 12:04:30] @ reyjrar joined channel #puppet
[2009/05/18 12:08:28] @ pleemans joined channel #puppet
[2009/05/18 12:11:27] @ Quit: lak: Read error: 110 (Connection timed out)
[2009/05/18 12:15:24] @ Quit: Deesl:
[2009/05/18 12:15:28] @ Quit: reyjrar: Remote closed the connection
[2009/05/18 12:16:45] @ Quit: alfism: "Connection reset by beer"
[2009/05/18 12:20:47] @ Quit: cwebber:
[2009/05/18 12:22:48] @ lak joined channel #puppet
[2009/05/18 12:22:51] <ibt> jrojas: you with camptocamp?
[2009/05/18 12:22:57] @ teyo joined channel #puppet
[2009/05/18 12:24:00] @ r3d14l1 left channel #puppet ()
[2009/05/18 12:25:40] @ kolla joined channel #puppet
[2009/05/18 12:26:42] @ claymation joined channel #puppet
[2009/05/18 12:29:37] @ Quit: alhoang_:
[2009/05/18 12:35:09] @ Quit: teyo:
[2009/05/18 12:38:57] @ markl__ joined channel #puppet
[2009/05/18 12:38:57] @ Quit: markl__: Client Quit
[2009/05/18 12:47:39] @ Quit: lak:
[2009/05/18 12:55:21] @ teyo joined channel #puppet
[2009/05/18 12:55:41] @ Quit: m1n3s6: "Leaving"
[2009/05/18 12:56:11] @ Quit: mikepea: Read error: 110 (Connection timed out)
[2009/05/18 12:56:26] @ verwilst joined channel #puppet
[2009/05/18 12:57:04] @ cwebber joined channel #puppet
[2009/05/18 12:58:44] @ Quit: axisys: Read error: 104 (Connection reset by peer)
[2009/05/18 12:59:30] @ madrescher1 joined channel #puppet
[2009/05/18 13:00:05] @ lak joined channel #puppet
[2009/05/18 13:01:09] @ Quit: madrescher: Read error: 113 (No route to host)
[2009/05/18 13:03:30] @ Quit: happymcplaksin: Remote closed the connection
[2009/05/18 13:05:19] @ Quit: MattyM: "ta ta"
[2009/05/18 13:11:11] @ happymcplaksin joined channel #puppet
[2009/05/18 13:13:31] @ happymcplaksin left channel #puppet ("ERC Version 5.3 (IRC client for Emacs)")
[2009/05/18 13:13:46] @ alfism joined channel #puppet
[2009/05/18 13:16:27] @ happymcplaksin joined channel #puppet
[2009/05/18 13:18:59] @ Quit: mfoster1: Read error: 110 (Connection timed out)
[2009/05/18 13:19:45] @ Quit: zeroXten: Remote closed the connection
[2009/05/18 13:20:38] @ Quit: briandquinn:
[2009/05/18 13:21:27] @ mikepea joined channel #puppet
[2009/05/18 13:22:45] @ Innocenti joined channel #puppet
[2009/05/18 13:24:09] @ axisys joined channel #puppet
[2009/05/18 13:30:39] @ dtdionne joined channel #puppet
[2009/05/18 13:31:00] <dtdionne> greetings...does anyone know if there's a host template tool of any kind for puppet?
[2009/05/18 13:31:04] @ Quit: lak:
[2009/05/18 13:31:43] <dtdionne> we have a host that's configured exactly how we want and we'd like to quickly make a comprehensive template of it
[2009/05/18 13:31:57] @ Quit: teyo:
[2009/05/18 13:32:00] <joe-mac> dtdionne: could you expound on what type of template you mean?
[2009/05/18 13:32:06] <joe-mac> the word template is a little ambiguous
[2009/05/18 13:33:00] <dtdionne> yeah, we have built a linux host exactly how it needs to be and we were hoping to find a script of some sort that we could run against it to make a comprehensive puppet manifest
[2009/05/18 13:33:11] <joe-mac> OH
[2009/05/18 13:33:14] <joe-mac> yea ralsh can do that
[2009/05/18 13:33:28] <joe-mac> sort of, not total and 100% cmoplete, but pretty close
[2009/05/18 13:33:35] <dtdionne> http://linux.die.net/man/8/ralsh
[2009/05/18 13:33:37] <dtdionne> ?
[2009/05/18 13:33:46] <joe-mac> yep that's the one
[2009/05/18 13:34:09] <dtdionne> right on...are there any other tools that your aware of that do the same?
[2009/05/18 13:34:33] <joe-mac> no, i'm geussing that people here and there have scripted ralsh to deliver as full a template as it can deliver though
[2009/05/18 13:35:02] <dtdionne> excellent, it looks exactly like what we need
[2009/05/18 13:35:24] <dtdionne> thanks joe-mac
[2009/05/18 13:35:26] <joe-mac> np
[2009/05/18 13:35:30] @ Quit: mikepea:
[2009/05/18 13:35:36] @ Quit: dtdionne: Client Quit
[2009/05/18 13:36:45] @ hessml\|away is now known as hessml\|away\|away
[2009/05/18 13:42:54] @ justindossey joined channel #puppet
[2009/05/18 13:47:22] @ Quit: f3ew: Read error: 104 (Connection reset by peer)
[2009/05/18 13:48:18] @ mvn071 joined channel #puppet
[2009/05/18 13:48:32] @ teyo joined channel #puppet
[2009/05/18 13:49:39] @ mfoster joined channel #puppet
[2009/05/18 13:49:43] @ plathrop-away is now known as plathrop
[2009/05/18 13:50:03] @ lak joined channel #puppet
[2009/05/18 13:53:19] @ Quit: jmarki: Read error: 110 (Connection timed out)
[2009/05/18 13:54:04] @ jmarki joined channel #puppet
[2009/05/18 13:56:43] @ maxagaz_ joined channel #puppet
[2009/05/18 13:57:02] @ Deesl joined channel #puppet
[2009/05/18 13:57:15] @ Quit: jmarki: Remote closed the connection
[2009/05/18 13:58:25] <maxagaz_> is it possible with puppetdoc to get a tree structure of my hosts and the modules and classes they used ?
[2009/05/18 13:58:56] @ grey- joined channel #puppet
[2009/05/18 14:04:20] <Volcane> nope
[2009/05/18 14:05:49] @ f3ew joined channel #puppet
[2009/05/18 14:09:55] @ Quit: sigmonsays: Remote closed the connection
[2009/05/18 14:12:55] @ Quit: pleemans: Read error: 113 (No route to host)
[2009/05/18 14:22:21] @ Quit: maxagaz_: Client Quit
[2009/05/18 14:25:22] @ WALoeIII joined channel #puppet
[2009/05/18 14:27:23] @ lludwig joined channel #puppet
[2009/05/18 14:28:28] @ Quit: alfism:
[2009/05/18 14:30:32] @ alfism joined channel #puppet
[2009/05/18 14:33:34] @ MattyM joined channel #puppet
[2009/05/18 14:34:02] @ Quit: madrescher1: Read error: 110 (Connection timed out)
[2009/05/18 14:36:31] @ pleemans joined channel #puppet
[2009/05/18 14:37:14] @ bjaspan joined channel #puppet
[2009/05/18 14:37:16] @ Quit: alfism:
[2009/05/18 14:38:05] @ madrescher joined channel #puppet
[2009/05/18 14:38:30] @ briandquinn joined channel #puppet
[2009/05/18 14:38:31] @ alfism joined channel #puppet
[2009/05/18 14:39:02] <bjaspan> I'm assigning classes to nodes with an external classifier. I want some way to execute a script when all of the classes are done. One option would be to make one class depend on all the other classes assigned by my classifier, but I do not think I can do "require => $clases_from_classifer" because there is no way to output an array as a pameter from the classifier. Any other suggestions?
[2009/05/18 14:39:14] @ Quit: lludwig:
[2009/05/18 14:39:31] <Volcane> no simple way without going overboard on require/before to do that
[2009/05/18 14:40:14] <bjaspan> I was hoping puppetd had a post-execute command (specified via puppet.conf or something). No such luck, eh?
[2009/05/18 14:40:27] <Volcane> nope, very often requested feature though
[2009/05/18 14:40:49] <bjaspan> 'k. thanks!
[2009/05/18 14:41:52] <bjaspan> Seems like it would be less effort for me to patch puppet to add the feature than to make it work some other way...
[2009/05/18 14:42:28] <Volcane> its apparently quite hard to do it right :)
[2009/05/18 14:42:44] <bjaspan> I guess that would explain why it isn't done yet.
[2009/05/18 14:43:01] <Volcane> many have suggested a pre/post hook that are essentially just noop class that you can do before/require on, but seems hard
[2009/05/18 14:43:05] <bjaspan> Puppetd logs "Finished catalog run" when it is done. Seems like it could just execute the command then. No?
[2009/05/18 14:43:27] <Volcane> that would be a monumental hack and very unpuppetlike
[2009/05/18 14:43:30] <Volcane> what are you trying to achieve?
[2009/05/18 14:43:49] <bjaspan> I want a server to tell someone else when it is done being configured by puppet.
[2009/05/18 14:44:29] <Volcane> also hackish but it wouldnt be hard to write a report handler on the master that responds
[2009/05/18 14:45:02] <Volcane> if you run your clients with reports enabled etc
[2009/05/18 14:45:11] <Volcane> they send a report to the master where some code handles the report
[2009/05/18 14:46:18] @ Quit: pheezy: Remote closed the connection
[2009/05/18 14:47:42] <bjaspan> All I really need is the list of classes assigned by the classifier, as an array.
[2009/05/18 14:48:29] <Volcane> each machine gets /var/lib/puppet/classes.txt
[2009/05/18 14:48:49] <Volcane> anyway, no theres no non hacky way to do this atm
[2009/05/18 14:51:56] @ pheezy joined channel #puppet
[2009/05/18 15:01:17] @ Deesl_ joined channel #puppet
[2009/05/18 15:02:19] @ rellis__ joined channel #puppet
[2009/05/18 15:03:39] @ kngus joined channel #puppet
[2009/05/18 15:03:47] @ kngus left channel #puppet ("Leaving.")
[2009/05/18 15:04:41] @ Quit: f3ew: Read error: 104 (Connection reset by peer)
[2009/05/18 15:05:06] @ Quit: Deesl: Read error: 60 (Operation timed out)
[2009/05/18 15:05:06] @ Quit: gaveen: Connection timed out
[2009/05/18 15:05:11] @ gaveen_ joined channel #puppet
[2009/05/18 15:05:14] @ f3ew joined channel #puppet
[2009/05/18 15:12:11] @ neh_ is now known as neh
[2009/05/18 15:14:08] @ Quit: Bass10: Connection timed out
[2009/05/18 15:14:55] @ Quit: artista_frustrad: Connection timed out
[2009/05/18 15:15:41] @ artista_frustrad joined channel #puppet
[2009/05/18 15:19:49] @ Quit: drmikecrowe: " Want to be different? Try HydraIRC -> http://www.hydrairc.com <-"
[2009/05/18 15:24:05] @ Quit: aymerick: "kit mais sage"
[2009/05/18 15:25:31] @ Quit: gaveen_: Connection timed out
[2009/05/18 15:25:45] @ kngus joined channel #puppet
[2009/05/18 15:25:53] @ kngus left channel #puppet ("Leaving.")
[2009/05/18 15:28:57] @ gaveen_ joined channel #puppet
[2009/05/18 15:30:58] @ bjaspan_ joined channel #puppet
[2009/05/18 15:33:43] @ nasrat joined channel #puppet
[2009/05/18 15:34:41] <riddley> puppetd --test && qpage you "Puppet is done. Have a lovely Lovely." ??
[2009/05/18 15:37:00] <nasrat> lak: are we scheduled a dev call anytime soon?
[2009/05/18 15:37:14] <lak> we are not but should be
[2009/05/18 15:40:21] @ Quit: happymcplaksin: Remote closed the connection
[2009/05/18 15:41:16] @ happymcplaksin joined channel #puppet
[2009/05/18 15:41:38] @ Quit: happymcplaksin: Remote closed the connection
[2009/05/18 15:41:48] <nasrat> lak: yeah it's been a while and with 0.25 nearly out and 1.5.5 facter we probably need to figure out the next steps
[2009/05/18 15:42:04] <lak> yeah
[2009/05/18 15:42:06] <lak> next week?
[2009/05/18 15:42:14] @ happymcplaksin joined channel #puppet
[2009/05/18 15:43:10] @ Quit: f3ew: Connection reset by peer
[2009/05/18 15:43:11] @ happymcplaksin left channel #puppet ("ERC Version 5.3 (IRC client for Emacs)")
[2009/05/18 15:44:41] <nasrat> it'll be evening my time so yeah why don't you mail out and we can figure a day
[2009/05/18 15:44:46] <nico> lak: can you tell me if my problem is #1095 ? I have a nginx serving on port 8140 from puppetmaster working on ports 18140-3. It takes nodes config from a mysql server from external_nodes. It leaves close_wait connections on the mysql server
[2009/05/18 15:44:47] <gepetto> nico: lak: #1095 is http://projects.reductivelabs.com/issues/show/1095 "Puppet - Bug #1095: Puppetmaster leaving half-open connections - ReductiveLabs.com"
[2009/05/18 15:44:48] @ lludwig joined channel #puppet
[2009/05/18 15:44:49] <lak> will do
[2009/05/18 15:45:26] <nico> netstat says mysql server is bound to puppetmaster port 8140, managed by ngin
[2009/05/18 15:45:28] <nico> +x
[2009/05/18 15:46:00] <lak> (on the phone...)
[2009/05/18 15:46:19] @ Quit: lludwig: Client Quit
[2009/05/18 15:46:45] <nasrat> nico: what version of puppet?
[2009/05/18 15:47:35] @ Quit: bjaspan: Read error: 110 (Connection timed out)
[2009/05/18 15:48:46] <nico> nasrat: 0.24.5
[2009/05/18 15:49:11] <nico> going to update to 0.24.8 through apt pinning
[2009/05/18 15:49:14] <nasrat> nico: sounds likely same issue that was fixed in 0.24.8
[2009/05/18 15:49:24] <nico> testing
[2009/05/18 15:49:33] <nasrat> cool
[2009/05/18 15:49:41] <nico> I'll tell you if it fixes in 5 minutes :)
[2009/05/18 15:50:23] <nico> updated, testing
[2009/05/18 15:54:02] <nico> nasrat: fixed
[2009/05/18 15:54:10] <nasrat> cool
[2009/05/18 15:56:52] @ Quit: pheezy: Remote closed the connection
[2009/05/18 16:00:39] @ Quit: fujin:
[2009/05/18 16:01:18] @ Quit: teyo:
[2009/05/18 16:03:02] @ Quit: Demosthenes: "leaving"
[2009/05/18 16:03:39] @ Demosthenes joined channel #puppet
[2009/05/18 16:04:24] @ Quit: mvn071: Remote closed the connection
[2009/05/18 16:06:21] @ Quit: MattyM: "ta ta"
[2009/05/18 16:06:47] @ Quit: verwilst: "Ex-Chat"
[2009/05/18 16:08:57] @ MrHeavy joined channel #puppet
[2009/05/18 16:10:01] @ f3ew joined channel #puppet
[2009/05/18 16:11:55] @ pheezy joined channel #puppet
[2009/05/18 16:13:53] @ Quit: madrescher: "Leaving."
[2009/05/18 16:16:57] @ Bass10 joined channel #puppet
[2009/05/18 16:17:49] @ Quit: briandquinn:
[2009/05/18 16:23:55] @ plathrop is now known as plathrop-away
[2009/05/18 16:24:04] @ plathrop-away is now known as plathrop
[2009/05/18 16:26:23] @ Quit: Deesl_: Client Quit
[2009/05/18 16:27:49] @ claymation_ joined channel #puppet
[2009/05/18 16:27:49] @ Quit: claymation: Read error: 104 (Connection reset by peer)
[2009/05/18 16:27:52] @ Quit: claymation_: Remote closed the connection
[2009/05/18 16:28:14] @ claymation joined channel #puppet
[2009/05/18 16:29:37] @ Quit: d3vilb0x:
[2009/05/18 16:37:23] @ Quit: pleemans: Read error: 60 (Operation timed out)
[2009/05/18 16:40:38] @ toorPwnR joined channel #puppet
[2009/05/18 16:43:59] @ teyo joined channel #puppet
[2009/05/18 16:49:24] @ Quit: blahdeblah: "Leaving."
[2009/05/18 16:49:30] @ Quit: mfournier: Read error: 113 (No route to host)
[2009/05/18 16:57:02] @ Quit: rgsteele\|\|work: Remote closed the connection
[2009/05/18 17:00:20] @ Quit: bjaspan_:
[2009/05/18 17:06:06] @ Quit: teyo:
[2009/05/18 17:07:11] @ kambiz is now known as kambiz_away
[2009/05/18 17:18:41] @ teyo joined channel #puppet
[2009/05/18 17:24:21] @ bjaspan joined channel #puppet
[2009/05/18 17:33:58] <joe-mac> what the hell is 'interning empty string'
[2009/05/18 17:37:32] @ d3vilb0x joined channel #puppet
[2009/05/18 17:38:28] @ Quit: TREllis: Read error: 113 (No route to host)
[2009/05/18 17:41:28] <joe-mac> nm figured it out
[2009/05/18 17:45:56] @ WALoeIII_ joined channel #puppet
[2009/05/18 17:46:59] <jamesturnbull> joe-mac: just preparing for our wiki cut-over
[2009/05/18 17:47:14] <joe-mac> nice
[2009/05/18 17:48:53] @ Quit: pietro: "leaving"
[2009/05/18 17:49:01] @ pietro joined channel #puppet
[2009/05/18 17:49:29] @ Quit: bjaspan:
[2009/05/18 17:49:36] <jamesturnbull> maxagaz: but it is possible to output graphs - see wiki:http://reductivelabs.com/trac/puppet/wiki/ConfigurationReference and the graph options
[2009/05/18 17:50:27] @ bjaspan joined channel #puppet
[2009/05/18 17:51:51] <nasrat> evening jamesturnbull
[2009/05/18 17:53:19] <jamesturnbull> bjaspan: I'd use a report handler and perhaps gather up the classes.txt files with an exported resource - but Volcane is correct it's not an out of the box method. Another approach would be the puppetlast tool in the ext directory or a nagios check (see check_puppet also in that directory) that might be other ways of triggering things
[2009/05/18 17:54:30] <jamesturnbull> nasrat: morning
[2009/05/18 17:54:39] <nasrat> :)
[2009/05/18 17:54:42] <jamesturnbull> nasrat: just catching on overnight chatter
[2009/05/18 17:55:13] @ mfoster left channel #puppet ()
[2009/05/18 17:55:52] <jamesturnbull> nasrat: you okay with 1.5.5rc2 going out?
[2009/05/18 17:55:59] <nasrat> yup
[2009/05/18 17:59:08] <jamesturnbull> nasrat: cool - sohuld be out shortly
[2009/05/18 18:01:17] <jamesturnbull> lak: +1 dev call
[2009/05/18 18:01:43] <nasrat> jamesturnbull: ok I'll try do some last round testing
[2009/05/18 18:02:46] @ Quit: Bass10: "Leaving"
[2009/05/18 18:03:23] @ Quit: WALoeIII: No route to host
[2009/05/18 18:03:36] @ Quit: axisys: "leaving"
[2009/05/18 18:03:47] <jamesturnbull> lak: +++++++many on factsync going away
[2009/05/18 18:05:17] <jamesturnbull> lak: and actually how about we deprecate pluginsync too?
[2009/05/18 18:05:26] <lak> and replace it with...?
[2009/05/18 18:05:43] <jamesturnbull> lak: I meant the old non-pluginsinmodules method
[2009/05/18 18:05:55] <jamesturnbull> or is that all gone anyways?
[2009/05/18 18:06:14] <lak> well, if you have a path on your plugin mount it's there
[2009/05/18 18:06:21] <jamesturnbull> I need to rewrite all that doco anyway - it's gotten very tangled
[2009/05/18 18:07:54] <jamesturnbull> lak: if you put your types/providers in libdir dir and set pluginsync and pluginsource and have a plugins mount yu mean?
[2009/05/18 18:08:21] <lak> yeah
[2009/05/18 18:10:31] <jamesturnbull> lak: do we want tht to go away? it makes things more complex I guess to have two methods but up to you
[2009/05/18 18:10:48] <jamesturnbull> lak: pluginsinmodule have worked since 0.24.0 after all
[2009/05/18 18:11:17] <lak> you mean just restrict the plugins mount so it's an exception if it has a path?
[2009/05/18 18:13:04] <jamesturnbull> essentially
[2009/05/18 18:13:23] <jamesturnbull> this feels like a deja vu conversation
[2009/05/18 18:13:51] <jamesturnbull> so maybe you we already discussed this at some point
[2009/05/18 18:14:20] <lak> i have no idea
[2009/05/18 18:14:22] <lak> brain no werk
[2009/05/18 18:15:28] @ Quit: teyo:
[2009/05/18 18:17:59] @ Djelibeybi joined channel #puppet
[2009/05/18 18:20:29] @ Quit: WALoeIII_:
[2009/05/18 18:21:51] @ lutter1 joined channel #puppet
[2009/05/18 18:21:52] @ WALoeIII joined channel #puppet
[2009/05/18 18:22:02] @ Quit: erm_: "leaving"
[2009/05/18 18:22:03] <jamesturnbull> lak: I should read the -dev list
[2009/05/18 18:22:08] <lak> why?
[2009/05/18 18:22:13] <jamesturnbull> lak: it seems you and Nigel alreayd made that call
[2009/05/18 18:22:22] <jamesturnbull> lak: to some extent
[2009/05/18 18:22:32] <lak> for plugins
[2009/05/18 18:22:36] <lak> ?
[2009/05/18 18:22:38] <jamesturnbull> lak: if we're going to move plugins to lib
[2009/05/18 18:22:43] <lak> ah, that
[2009/05/18 18:22:44] <jamesturnbull> we may as well can the old method
[2009/05/18 18:23:49] <jamesturnbull> must automate that gpg signature stuff for validating packages too
[2009/05/18 18:24:02] <jamesturnbull> will add it to the Rakefile at some point
[2009/05/18 18:24:42] <lak> yeah
[2009/05/18 18:25:40] @ Quit: schwagal1: Read error: 54 (Connection reset by peer)
[2009/05/18 18:26:08] <jamesturnbull> did we also decide whetehrv to include tests in the source tarball?
[2009/05/18 18:26:20] @ schwagala joined channel #puppet
[2009/05/18 18:29:13] <lak> you said we shouldn't, i said sure
[2009/05/18 18:29:31] <jamesturnbull> ok
[2009/05/18 18:29:36] @ Quit: gaveen_: Remote closed the connection
[2009/05/18 18:29:41] <jamesturnbull> my logic seems solid
[2009/05/18 18:29:45] * jamesturnbull looks worried
[2009/05/18 18:29:59] <jamesturnbull> nasrat: lak rc2 away!
[2009/05/18 18:30:06] @ claymation left channel #puppet ()
[2009/05/18 18:30:17] <lak> me? i thought you were going to do it
[2009/05/18 18:30:59] @ Quit: pheezy: Remote closed the connection
[2009/05/18 18:31:27] <jamesturnbull> lak: no it's done
[2009/05/18 18:31:31] <lak> ah whew
[2009/05/18 18:31:36] * lak goes off for a quick whiskey
[2009/05/18 18:31:38] @ Quit: lak:
[2009/05/18 18:32:00] <jamesturnbull> now the release management system isn't byzantine... oh damn he's gone for my quip
[2009/05/18 18:34:31] @ Quit: lutter: Read error: 113 (No route to host)
[2009/05/18 18:40:24] @ Quit: bjaspan: Read error: 110 (Connection timed out)
[2009/05/18 18:40:59] <nasrat> jamesturnbull: cool
[2009/05/18 18:41:02] <jrojas> hmm, refactoring the plugin system again?
[2009/05/18 18:41:45] @ Quit: nasrat:
[2009/05/18 18:42:30] <jamesturnbull> jrojas: nope - simplying it
[2009/05/18 18:42:38] <jamesturnbull> simplifying even
[2009/05/18 18:43:27] <jamesturnbull> jrojas: currently both th plguins mount and the pluginsmodules methods work
[2009/05/18 18:43:33] <jamesturnbull> jrojas: I'd like to choose one or the other
[2009/05/18 18:44:05] <jamesturnbull> jrojas: and mow factsync can be removed which will greatly simplify configuration by remving some confusing options
[2009/05/18 18:55:17] @ Quit: f3ew: Read error: 104 (Connection reset by peer)
[2009/05/18 18:58:43] @ PaulWay joined channel #puppet
[2009/05/18 19:03:30] @ blahdeblah joined channel #puppet
[2009/05/18 19:08:59] <PaulWay> What's the state of the 'nagios_*' objects currently?
[2009/05/18 19:09:19] <PaulWay> I'm using 0.24 and I'd heard a while back that they were no longer supported or being deprecated or something.
[2009/05/18 19:13:45] @ comprehensive joined channel #puppet
[2009/05/18 19:14:51] <jamesturnbull> PaulWay: don't know where you got that idea
[2009/05/18 19:15:12] <jamesturnbull> PaulWay: not being deprecated or anything
[2009/05/18 19:15:52] @ axisys joined channel #puppet
[2009/05/18 19:16:12] @ mfoster joined channel #puppet
[2009/05/18 19:18:28] @ Quit: mfoster: Client Quit
[2009/05/18 19:18:38] @ mfoster joined channel #puppet
[2009/05/18 19:21:43] <jrojas> jamesturnbull: interesting, the difference between the two would be plugins go in /var/lib/puppet/lib? for one, and modules/plugins/files/ for the other?
[2009/05/18 19:26:13] <jamesturnbull> jrojas: yes broadly
[2009/05/18 19:31:57] @ mikepea joined channel #puppet
[2009/05/18 19:36:27] @ Quit: mikepea: Client Quit
[2009/05/18 19:36:29] <cwebber> ok the language tutorial doesnt cover this... if i want to be able to do defined type test_type($a, $b, $c, $d) but only want to be required to pass $a and $b how do I set the default values of $c and $d
[2009/05/18 19:36:49] @ Quit: Innocenti: Connection timed out
[2009/05/18 19:43:20] <toorPwnR> exit
[2009/05/18 19:43:22] <toorPwnR> ad
[2009/05/18 19:43:25] <toorPwnR> dl
[2009/05/18 19:43:47] <toorPwnR> l
[2009/05/18 19:43:48] <toorPwnR> dsf
[2009/05/18 19:43:57] @ Quit: toorPwnR: "ChatZilla 0.9.84 [Firefox 3.0.10/2009042316]"
[2009/05/18 19:47:14] <dixond> hi all - what is the practical limit for pupet clients with the standard OOTB puppetmaster setup?
[2009/05/18 19:52:33] @ bjaspan joined channel #puppet
[2009/05/18 19:52:48] <plathrop> dixond: It's not as easy of a question as you might think, but I maxedout at around 38
[2009/05/18 19:54:37] <dixond> plathrop: hrm, I've got 29 that I've just turned on. the reason I ask is that some of them don't seem to get any 'actions' from the master, even thought they are all just set up with the same 'default' node...
[2009/05/18 19:54:50] <dixond> is there some sort of auto-magical delay parameter that I don't know about?
[2009/05/18 19:57:04] <dixond> how often do they 'phone home' ?
[2009/05/18 19:58:17] <plathrop> dixond: there are a bunch of parameters that control that. do puppetd --genconfig \| less and take a look
[2009/05/18 19:58:25] <plathrop> dixond: it also depends on how complex your manifests are
[2009/05/18 19:58:32] <plathrop> I know people who maxed out at 20 clients
[2009/05/18 20:00:59] <dixond> ok thanks - manifests are pretty simple currently; I'm still really in proof-of-concept :)
[2009/05/18 20:05:44] <dixond> does the puppet client daemon reread its config file automatically, or must the service be restarted?
[2009/05/18 20:05:55] @ Quit: bjaspan:
[2009/05/18 20:06:40] <plathrop> dixond: in most cases it re-reads
[2009/05/18 20:10:03] @ Quit: hessml\|away\|away: "Leaving..."
[2009/05/18 20:10:04] <dixond> I've got a really wierd error that has turned up for a couple of my client nodes; they've only just been installed and I signed the cert with puppetca --sign etc, but then a little later in the logs I get this:
[2009/05/18 20:10:09] <dixond> puppetmasterd[32503]: Certificate request does not match existing certificate; run 'puppetca --clean db02.dev.internal'
[2009/05/18 20:10:24] <dixond> and then after the clean and re-sign it looks OK?
[2009/05/18 20:10:49] <comprehensive> should be so
[2009/05/18 20:15:14] @ bjaspan joined channel #puppet
[2009/05/18 20:17:17] @ Quit: cwebber:
[2009/05/18 20:19:33] @ Quit: rellis_: Remote closed the connection
[2009/05/18 20:20:08] @ Quit: alfism: "Connection reset by beer"
[2009/05/18 20:21:07] @ plathrop is now known as plathrop-away
[2009/05/18 20:29:15] @ Quit: mecca_: Read error: 110 (Connection timed out)
[2009/05/18 20:32:17] <PaulWay> jamesturnbull: OK, cool.
[2009/05/18 20:32:28] <PaulWay> sorry, was in meeting.
[2009/05/18 21:02:48] @ garin joined channel #puppet
[2009/05/18 21:06:48] <dixond> I have some puppet clients that seem to start the puppet daemon fine, but they don't actually do anthying - they get their cert from the puppet master, but they never appear to have checked in for a catalog run.
[2009/05/18 21:07:03] <dixond> when I manually run /usr/sbin/puppetd --debug --test --verbose everything works fine...
[2009/05/18 21:07:24] @ f3ew joined channel #puppet
[2009/05/18 21:11:19] <Djelibeybi> dixond: have you recently updated Facter?
[2009/05/18 21:11:27] <Djelibeybi> dixond: perhaps via RPM using Puppet itself?
[2009/05/18 21:11:55] <dixond> Djelibeybi: no, only just installed puppet+facter on the hosts with standard yum install
[2009/05/18 21:12:17] <Djelibeybi> dixond: hmm, ok. I saw that behviour when I upgraded Facter without restarting Puppet.
[2009/05/18 21:12:43] <Djelibeybi> dixond: what kind of hosts? Are they perhaps Xen DomU guests?
[2009/05/18 21:13:47] <dixond> Djelibeybi: I do have some of those, but in this case they are regular bare metal installs of RHEL 4 i386
[2009/05/18 21:18:44] @ teyo joined channel #puppet
[2009/05/18 21:19:15] <Djelibeybi> dixond: which version of Facter?
[2009/05/18 21:19:38] <dixond> Djelibeybi: latest stable... hangon
[2009/05/18 21:19:54] <dixond> facter-1.5.4-1
[2009/05/18 21:21:54] @ nspyr joined channel #puppet
[2009/05/18 21:21:56] <dixond> ok, so I just hosed my whole installation with puppetca --clean --all, which apparently roots the puppetmaster certs as well as the client certs.
[2009/05/18 21:21:59] <dixond> great.
[2009/05/18 21:22:22] <dixond> this is really not filling me with joy. restart of client after altering puppet.conf causes the client cert to go invalid - WTF?
[2009/05/18 21:22:55] <dixond> No I can't start the puppetmaster:
[2009/05/18 21:22:57] <dixond> Starting puppetmaster: Certificate does not match private key. Try 'puppetca --clean is.dev.internal' on the server.
[2009/05/18 21:23:17] * dixond batters head against desk.
[2009/05/18 21:24:39] <PaulWay> That sounds a bit bizarre...
[2009/05/18 21:26:01] @ nspyr left channel #puppet ()
[2009/05/18 21:27:47] <dixond> PaulWay: yes.
[2009/05/18 21:28:13] <dixond> so how do I regenerate the certs for the puppetmaster?
[2009/05/18 21:28:49] <Djelibeybi> dixond: simplest way is probably to remove/reinstall the puppet-server RPM
[2009/05/18 21:28:50] <PaulWay> Not sure.
[2009/05/18 21:29:05] <PaulWay> They'll be in /var/lib/puppet/certs from memory.
[2009/05/18 21:29:07] <Djelibeybi> I suspect there is a more specific way, but I don't know what it is. Sorry. :(
[2009/05/18 21:29:35] <PaulWay> No, in /var/lib/puppet/ssl
[2009/05/18 21:32:52] @ Quit: artista_frustrad: Remote closed the connection
[2009/05/18 21:41:35] @ alfism joined channel #puppet
[2009/05/18 21:44:37] @ jkary joined channel #puppet
[2009/05/18 21:46:31] @ jkary left channel #puppet ()
[2009/05/18 21:47:45] @ Quit: edwardam: Remote closed the connection
[2009/05/18 21:49:28] @ lak joined channel #puppet
[2009/05/18 21:51:09] <dixond> no, remove/reinstall of puppet-server has not worked. It seems puppetca --clean --all as screwed it.
[2009/05/18 21:52:06] <dixond> find /etc/puppet/ssl/\|grep pem\|xargs rm
[2009/05/18 21:52:09] <dixond> now it starts again
[2009/05/18 22:00:47] @ artista_frustrad joined channel #puppet
[2009/05/18 22:03:39] @ M- joined channel #puppet
[2009/05/18 22:03:50] @ Quit: comprehensive: Read error: 113 (No route to host)
[2009/05/18 22:04:24] @ Quit: ethan_rowe: "Lack of interest wins out."
[2009/05/18 22:05:11] @ Quit: andrewcshafer_: Read error: 113 (No route to host)
[2009/05/18 22:07:26] @ joe-mac1 joined channel #puppet
[2009/05/18 22:07:38] @ Quit: WALoeIII: Read error: 113 (No route to host)
[2009/05/18 22:08:31] @ cwebber joined channel #puppet
[2009/05/18 22:10:22] <dixond> What. A. Friggen. Hassle. My faith in the total crapfest of pki is once again renewed.
[2009/05/18 22:13:25] @ Quit: cwebber: Client Quit
[2009/05/18 22:14:15] <joe-mac1> got something better?
[2009/05/18 22:19:08] <dixond> joe-mac1: my problem is not with pki per se, only with implementations, and yes, it could be better. For example:
[2009/05/18 22:20:06] <dixond> puppetca --clean --all totally trashed the puppetmaster certs, so I have had to remove all cert-ish stuf from /etc/puppet/ssl and start again, but now half the clients are choking on their own certs and dieing instead of requesting a new signing.
[2009/05/18 22:20:30] <dixond> eg:puppetd[31946]: (/File[/var/puppet/lib]) Failed to generate additional resources during transaction: Certificates were not trusted: block type is not 01
[2009/05/18 22:20:50] <joe-mac1> yea, that;'s cause they don't trust the puppet master certs... it would be a security flaw if they did
[2009/05/18 22:21:07] <joe-mac1> you could then just insert a rogue puppet master in your network and take over
[2009/05/18 22:21:12] <joe-mac1> and serve out nothing but pwnage!
[2009/05/18 22:21:12] <joe-mac1> pwnsauce
[2009/05/18 22:21:41] <dixond> joe-mac1: exactly, but the only reason I'm in this situation is because the clients were crapping out on their cert when restarted anyway. the whole thing has been an unpredictable nightmare from beginning to end.
[2009/05/18 22:22:08] <joe-mac1> well that sucks, are you sure someone isn't f'ing with your puppet setup?
[2009/05/18 22:22:10] <joe-mac1> sounds suspicious to me
[2009/05/18 22:22:10] <dixond> joe-mac1: so now I need to do exactly what I was installing puppet to try and avoid, which is to manually touch every server and screw about with a service's configuration.
[2009/05/18 22:22:51] <dixond> joe-mac1: 100% certain, it was only just added. client starts, gets cert signed, updated puppet.conf, then on restart the cert is screwed and needs to be removed and resigned.
[2009/05/18 22:22:55] <joe-mac1> if you use pki for ssh i highly recommend writing a little wrapper with ruby's ssh bindings that will execute a given command across all your nodes, or a group of nodes. you could use capistrano, or write yourself a small util or function to do it
[2009/05/18 22:23:22] <joe-mac1> that's weird, never seen anything like that. have you asked one of the more senior guys in here what they think of that?
[2009/05/18 22:23:23] <Djelibeybi> dixond: check your time sync across the servers. If its too far out of sync, the certs will be invalid
[2009/05/18 22:23:24] <dixond> joe-mac1: I was going to use puppet to install func (which does that) but of course the chicken has yet to lay the egg.
[2009/05/18 22:23:36] <dixond> Djelibeybi: ntp herp.
[2009/05/18 22:23:42] <dixond> s/herp/here/
[2009/05/18 22:23:56] <Djelibeybi> dixond: just a thought.
[2009/05/18 22:23:56] <joe-mac1> you don't want the herp, avoid that at all cost lol
[2009/05/18 22:24:03] * dixond is very discouraged
[2009/05/18 22:24:08] <joe-mac1> that's rough man..
[2009/05/18 22:24:22] @ andrewcshafer joined channel #puppet
[2009/05/18 22:24:33] <joe-mac1> hey, if at first... you should run this by some more knowledgeable folks sometime during NA/UK daylight
[2009/05/18 22:24:53] <joe-mac1> i;ve never heard of that, like auto cert corrupt
[2009/05/18 22:24:55] <joe-mac1> what version are you on?
[2009/05/18 22:25:25] <dixond> 0.24.8
[2009/05/18 22:26:44] @ WALoeIII joined channel #puppet
[2009/05/18 22:26:48] <dixond> it's all right, I'll keep slogging away at it.
[2009/05/18 22:32:44] @ choffee_ joined channel #puppet
[2009/05/18 22:33:30] @ axisys left channel #puppet ()
[2009/05/18 22:35:05] @ Quit: joe-mac1: "Leaving."
[2009/05/18 22:40:08] @ Quit: andrewcshafer: Read error: 60 (Operation timed out)
[2009/05/18 22:41:42] <dixond> !#%$#$%#$% figured it out.
[2009/05/18 22:42:36] <dixond> the puppet RPM changes where the default places for eg, ssldir are. so if the service starts with that RPM-supplied file, then it gets replaced with a 'standard' one that leaves those values as default, everything goes pear-shaped.
[2009/05/18 22:42:49] <dixond> gah.
[2009/05/18 22:43:12] @ andrewcshafer joined channel #puppet
[2009/05/18 22:45:02] <dixond> now I have to clean up the mess on 29 hosts. :(
[2009/05/18 22:45:11] <dixond> ah well. least it can be fixed hopefully for good now.
[2009/05/18 22:45:44] @ Quit: lak:
[2009/05/18 22:47:25] @ Quit: choffee: Read error: 110 (Connection timed out)
[2009/05/18 22:48:19] @ atlan_ joined channel #puppet
[2009/05/18 22:53:48] @ pheezy joined channel #puppet
[2009/05/18 22:57:52] @ andrewcshafer_ joined channel #puppet
[2009/05/18 22:58:20] @ Quit: andrewcshafer: Read error: 60 (Operation timed out)
[2009/05/18 23:03:31] @ Quit: bjaspan:
[2009/05/18 23:04:02] @ Quit: chip__: Read error: 110 (Connection timed out)
[2009/05/18 23:05:45] @ Quit: M-: "This computer has gone to sleep"
[2009/05/18 23:31:10] @ Quit: grey-: Remote closed the connection
[2009/05/18 23:34:46] @ Quit: pheezy: Read error: 60 (Operation timed out)
[2009/05/18 23:40:50] <jamesturnbull> dixond: so you sorted your issue out?
[2009/05/18 23:41:15] <jamesturnbull> dixond: it is a bug with a distro package or puppet or something else? does it require a ticket/fix?
[2009/05/18 23:43:06] <dixond> jamesturnbull: it's a mix. The puppet RPMs recommended for redhat (from EPEL) deviate from the standard puppet paths. So if you have a mix of clients running puppet, starting the RH ones with the standard config and then getting them to update themselves to a truly 'standard' puppet path config (eg, defaults) breaks the client cert. Much ugliness ensues :)
[2009/05/18 23:45:17] <jamesturnbull> dixond: ah not something we can fix upstream then but i'd suggest hassling the EPEL guys - that sort of thing is annoying
[2009/05/18 23:45:26] <dixond> jamesturnbull: also, puppetca --clean --all removes the puppetmaster cert and all clients then break and it's messy to clean up the broken certs on every client.
[2009/05/18 23:46:28] <jamesturnbull> dixond: I think that's the intended behaviour :) this is 0.24.8 right?
[2009/05/18 23:47:01] <jamesturnbull> dixond: hmm though the master cert - is it supposed to do that also.... will have to check that
[2009/05/18 23:47:20] <jamesturnbull> dixond: but --clean --all will remove ALL client certs
[2009/05/18 23:49:37] <dixond> jamesturnbull: yes, the client cert part I expected, but the master was a surprise - the puppetmaster process wouldn't restart at all until I removed all .pem files left in /etc/puppet/ssl for that host.
[2009/05/18 23:50:27] <dixond> jamesturnbull: the output after the --clean --all was: Starting puppetmaster: Certificate does not match private key. Try 'puppetca --clean is.dev.internal' on the server
[2009/05/18 23:53:42] <jamesturnbull> dixond: okay I think that's fixed in 0.25.0 - it should not remove the master's certificate there
[2009/05/18 23:54:00] <jamesturnbull> dixond: all the binaries were refactored then
[2009/05/18 23:54:33] <dixond> jamesturnbull: ok. is 0.25 far off being gold?
[2009/05/18 23:55:01] <jamesturnbull> dixond: maybe two weeks I hope for either beta2 or rc1 depending on continued testing
[2009/05/18 23:55:25] <jamesturnbull> dixond: then we'll see form there how testing pans out
[2009/05/18 23:55:46] @ elijahwright joined channel #puppet
[2009/05/18 23:55:57] @ M- joined channel #puppet
[2009/05/18 23:57:14] <jamesturnbull> dixond: it's a huge set of changes internally to Puppet so we have to careful to test

Generated by irclog2html.py 2.6 by Marius Gedminas - find it at mg.pov.lt!