Thursday, 2010-03-04

[2010/03/04 00:00:03] @ Log started by gepetto
[2010/03/04 00:00:03] <axisys> i am in pre 0.25 stage in my mind.. hehe
[2010/03/04 00:00:23] <axisys> asenchi: oh ok.. was it missing on prev versions ?
[2010/03/04 00:00:30] <asenchi> yeah, there have been a lot of changes
[2010/03/04 00:00:33] <asenchi> yep
[2010/03/04 00:00:40] <axisys> sorry it has been a while since i played with puppet.. need to get back to it
[2010/03/04 00:01:11] <asenchi> think of 0.25 as a major point release, quite a bit has changed (even if it's a minor point increase)
[2010/03/04 00:01:40] <axisys> asenchi: thanks for the suggestions ..
[2010/03/04 00:01:47] <asenchi> np
[2010/03/04 00:02:20] @ DanF joined channel #puppet
[2010/03/04 00:03:59] <axisys> however .. right now i still like to get this manifest called..
[2010/03/04 00:04:21] <axisys> i need to make some changes before i can safely switch to nodes.pp
[2010/03/04 00:04:44] <asenchi> well if you just need one class called, run: puppet /path/to/file.pp
[2010/03/04 00:04:49] <axisys> i have 300 servers in /etc/puppet/SITES/*/hosts
[2010/03/04 00:05:00] <axisys> asenchi: on all 300 servers ?
[2010/03/04 00:05:08] <asenchi> but you are going to have a lot of clean up that would be better spent fixing the entire thing
[2010/03/04 00:05:21] <axisys> asenchi: yep
[2010/03/04 00:05:33] <asenchi> the only other solution, finding what's changed in your outdated classifier. might as well spend that time just fixing the entire environment
[2010/03/04 00:05:49] <axisys> i still think the external script should work.. unless puppet does not know how to read yaml any mode
[2010/03/04 00:05:53] <axisys> more*
[2010/03/04 00:06:02] <asenchi> it knows how to read yaml
[2010/03/04 00:06:13] @ plathrop-away is now known as plathrop
[2010/03/04 00:08:33] @ Quit: gilos: Read error: Operation timed out
[2010/03/04 00:10:00] @ gilos joined channel #puppet
[2010/03/04 00:10:15] <axisys> i simplified it for testing and still no go .. here is the simplified classifier
[2010/03/04 00:10:18] <axisys> http://pastie.org/853035
[2010/03/04 00:10:54] @ bug joined channel #puppet
[2010/03/04 00:10:55] <ohadlevy> asenchi: there are many reasons to use classifier, many of them are not related to puppet itself :)
[2010/03/04 00:12:41] <asenchi> ohadlevy: perhaps
[2010/03/04 00:13:12] <ohadlevy> asenchi: external nodes is very powerful
[2010/03/04 00:14:07] <axisys> dont understand why puppet client totally ignoring the classifier http://pastie.org/853038
[2010/03/04 00:14:20] @ PaulWay[w] joined channel #puppet
[2010/03/04 00:14:34] <axisys> ohadlevy: hey man .. can you suggest where to look for this ?
[2010/03/04 00:15:26] <axisys> i had been using same classifier to terminate users .. today added a new module and just realizing that puppet is calling either terminate or securid::server
[2010/03/04 00:15:28] <ohadlevy> axisys: external nodes didnt change between 0.24 and 0.25
[2010/03/04 00:15:51] <ohadlevy> axisys, anything on the master ?
[2010/03/04 00:15:55] <axisys> puppet is not calling ..
[2010/03/04 00:17:02] <axisys> ohadlevy: well i just added modules/securid and now - securid::server is added .. nothing else .. besides upgrading to 0.25.1 and phusion manager still the same
[2010/03/04 00:18:35] <axisys> ohadlevy: this is the last thing i did
[2010/03/04 00:18:40] <axisys> ohadlevy: http://groups.google.com/group/puppet-users/browse_thread/thread/418459405d96222f/d44cc70bb6b2166c?hl=en&lnk=gst&q=Http+error+with+puppet+0.25.1+and+passenger#d44cc70bb6b2166c
[2010/03/04 00:19:05] <axisys> i had to update the config.ru to match the 0.25.1
[2010/03/04 00:19:06] <ohadlevy> i dont think its passenger related
[2010/03/04 00:19:09] <axisys> thats all
[2010/03/04 00:19:13] <ohadlevy> check your master logs
[2010/03/04 00:19:15] <axisys> ohadlevy: i dont think either
[2010/03/04 00:19:21] <ohadlevy> and make sure that your external nodes return the correct values
[2010/03/04 00:19:39] <ohadlevy> additionally you can check for the local applied classes on your client at ~puppet/state/classes.txt
[2010/03/04 00:21:06] <axisys> ohadlevy: how do I check the return node on this external classifier ? http://pastie.org/853035
[2010/03/04 00:21:23] <ohadlevy> execute it manually
[2010/03/04 00:22:31] <axisys> http://pastie.org/853045
[2010/03/04 00:22:45] <axisys> that is ~puppet/state/classes.txt
[2010/03/04 00:23:31] @ quannum joined channel #puppet
[2010/03/04 00:23:42] <axisys> http://pastie.org/853046 <-- external script
[2010/03/04 00:24:19] <axisys> http://pastie.org/853046
[2010/03/04 00:24:20] <ohadlevy> why do you run it with bash?
[2010/03/04 00:24:29] <ohadlevy> does it also work if you just execute it?
[2010/03/04 00:24:35] <axisys> ohadlevy: ^ w/o bash
[2010/03/04 00:28:04] @ OpenMedia left channel #puppet ()
[2010/03/04 00:30:36] @ Quit: sebas891: Quit: Leaving.
[2010/03/04 00:35:20] @ Quit: Djelibeybi: Quit: Leaving
[2010/03/04 00:36:53] <axisys> i know external classifier is being called ..
[2010/03/04 00:36:58] <axisys> i have this /bin/date > /tmp/nodelog.txt
[2010/03/04 00:37:27] <axisys> at the beginnign of the classifier and it is keep getting created .. i removed it few times already
[2010/03/04 00:45:17] <axisys> even though I called the class w/ tags still it does not find it
[2010/03/04 00:45:20] <axisys> http://pastie.org/853061
[2010/03/04 00:47:43] @ Quit: rcrowley: Quit: rcrowley
[2010/03/04 00:47:48] @ Quit: jaredrhine: Quit: Leaving.
[2010/03/04 00:53:26] @ Quit: swygue: Quit: Ex-Chat
[2010/03/04 00:56:40] @ Quit: quannum: Ping timeout: 252 seconds
[2010/03/04 00:56:50] @ Djelibeybi joined channel #puppet
[2010/03/04 01:02:28] @ nexx joined channel #puppet
[2010/03/04 01:02:56] @ jaredrhine joined channel #puppet
[2010/03/04 01:09:20] @ fruitcake joined channel #puppet
[2010/03/04 01:09:23] @ sijis is now known as sijis_afk
[2010/03/04 01:20:14] @ ShiNboi joined channel #puppet
[2010/03/04 01:20:34] @ tjoe joined channel #puppet
[2010/03/04 01:20:40] @ Quit: davewongillies: Quit: Eaten by a grue
[2010/03/04 01:20:46] @ PaulWay[w] left channel #puppet ("I must go, there are too many tangrams on this channel.")
[2010/03/04 01:28:19] @ Quit: \ask: Remote host closed the connection
[2010/03/04 01:28:43] @ \ask joined channel #puppet
[2010/03/04 01:29:07] @ Quit: Disconnect: Excess Flood
[2010/03/04 01:29:14] @ Disconnect joined channel #puppet
[2010/03/04 01:31:00] @ Quit: tjoe: Quit: leaving
[2010/03/04 01:31:32] @ Quit: Djelibeybi: Quit: Leaving
[2010/03/04 01:31:34] @ Quit: bobbyz: Quit: Leaving
[2010/03/04 01:35:03] @ Quit: Bass10: Ping timeout: 246 seconds
[2010/03/04 01:42:58] @ Quit: alfism: Quit: http://opensolaris.com/
[2010/03/04 01:44:13] @ Quit: stevenjenkins: Ping timeout: 276 seconds
[2010/03/04 01:50:08] @ M- joined channel #puppet
[2010/03/04 01:57:09] @ Quit: ShiNboi: Ping timeout: 245 seconds
[2010/03/04 01:57:48] @ stevenjenkins joined channel #puppet
[2010/03/04 02:01:26] @ vermeer__ joined channel #puppet
[2010/03/04 02:12:32] @ artista_frustrad joined channel #puppet
[2010/03/04 02:16:44] @ Quit: artista_frustrad: Ping timeout: 245 seconds
[2010/03/04 02:16:47] @ Quit: \ask: Remote host closed the connection
[2010/03/04 02:19:44] @ bhuga joined channel #puppet
[2010/03/04 02:20:51] <tessier__> man...puppetmaster is still killing my machine. Why does it take such a crazy amount of cpu time?
[2010/03/04 02:21:05] <tessier__> 420M of RAM too but that's half what it used to use before I upgraded to 0.25.4
[2010/03/04 02:21:24] <tessier__> Maybe I need to configure my clients to run less often or something.
[2010/03/04 02:21:50] <tessier__> You would think it could handle 30 clients running however often the default puppetd checks in.
[2010/03/04 02:23:20] <bhuga> does anyone know if there's a workaround for installing two packages of the same name with different providers, e.g. mysql-the-gem and mysql-the-apt-package? there are some old threads on the mailing list but they don't have solutions
[2010/03/04 02:24:50] <plathrop> tessier__: are you using Webrick?
[2010/03/04 02:25:03] <plathrop> bhuga: not that I know of.
[2010/03/04 02:25:10] <tessier__> plathrop: Yes
[2010/03/04 02:26:02] <plathrop> tessier__: That's the problem. Webrick doesn't scale much more than 30 clients.
[2010/03/04 02:26:42] <tessier__> plathrop: I've heard that but that doesn't make much sense to me.
[2010/03/04 02:27:01] <tessier__> How can 30 clients, checking in every 60 minutes, with splay so they don't all check in at once, be a problem?
[2010/03/04 02:27:45] <plathrop> tessier__: I don't know. I don't know enough about Webrick, but I assure you some very smart people believe it is a limitation of Webrick, not puppet itself.
[2010/03/04 02:28:01] <plathrop> tessier__: I managed to get to nearly 70 nodes with Webrick myself, but then I hit a wall HARD
[2010/03/04 02:28:21] <plathrop> So now I happily use apache+passenger and have... 700 ish?
[2010/03/04 02:29:12] <tessier__> I guess I'll have to figure out how to do that.
[2010/03/04 02:29:59] <tessier__> plathrop: Is webrick also known to hit the disk a lot?
[2010/03/04 02:30:53] <a55> Hello.* \!
[2010/03/04 02:31:17] <a55> i`m manage rpms by "yum --enablerepo=ryyy.repo install bacula-client" how i can done it with yumrepo ? i mean include enabling repo in "package{}" definition ?
[2010/03/04 02:31:46] <plathrop> tessier__: I'm not sure about disks specifically
[2010/03/04 02:36:17] @ Quit: alban2: Ping timeout: 265 seconds
[2010/03/04 02:37:29] <tessier__> Every night around this time something slams my disks and I'm not sure what. But I always see puppetmaster sucking up tons of cpu.
[2010/03/04 02:58:05] @ mellen joined channel #puppet
[2010/03/04 02:58:31] @ slevin joined channel #puppet
[2010/03/04 02:59:24] @ Quit: M-: Quit: Leaving
[2010/03/04 03:02:00] @ TREllis joined channel #puppet
[2010/03/04 03:04:41] @ zipkid joined channel #puppet
[2010/03/04 03:05:08] @ plathrop is now known as plathrop-away
[2010/03/04 03:05:27] @ Ramonster joined channel #puppet
[2010/03/04 03:08:04] @ Quit: Spads: Ping timeout: 276 seconds
[2010/03/04 03:10:59] @ ShiNboi joined channel #puppet
[2010/03/04 03:14:07] @ Robbie_ joined channel #puppet
[2010/03/04 03:16:36] @ shug joined channel #puppet
[2010/03/04 03:27:13] @ TREllis_ joined channel #puppet
[2010/03/04 03:28:49] @ Quit: vermeer__: Ping timeout: 245 seconds
[2010/03/04 03:28:52] @ Quit: TREllis: Ping timeout: 265 seconds
[2010/03/04 03:39:30] @ pacalm joined channel #puppet
[2010/03/04 03:43:01] @ Quit: omry\|work: Ping timeout: 264 seconds
[2010/03/04 03:44:28] @ gebi joined channel #puppet
[2010/03/04 03:54:29] @ tore joined channel #puppet
[2010/03/04 03:58:33] @ m1nish joined channel #puppet
[2010/03/04 04:02:21] @ Welsh_Dwarf joined channel #puppet
[2010/03/04 04:04:17] @ danielbln joined channel #puppet
[2010/03/04 04:04:55] @ ckauhaus joined channel #puppet
[2010/03/04 04:06:46] @ vermeer__ joined channel #puppet
[2010/03/04 04:15:27] @ tim\|macbook joined channel #puppet
[2010/03/04 04:23:17] @ MattyM joined channel #puppet
[2010/03/04 04:31:20] @ alban2 joined channel #puppet
[2010/03/04 04:37:51] @ Quit: giskard: Remote host closed the connection
[2010/03/04 04:39:49] @ giskard joined channel #puppet
[2010/03/04 04:41:57] @ Quit: giskard: Remote host closed the connection
[2010/03/04 04:44:43] @ allsystemsarego joined channel #puppet
[2010/03/04 04:48:49] <jra__> I get a bunch of 500 Internal server errors if I run puppet (not puppetd) with puppet /etc/puppet/manifests/site.pp on all the file resources
[2010/03/04 04:49:05] <jra__> is there a way to access the file resources with a standalone puppet run?
[2010/03/04 04:49:05] @ bhuga left channel #puppet ()
[2010/03/04 04:51:27] @ verwilst joined channel #puppet
[2010/03/04 04:55:22] @ Quit: TREllis_: Quit: leaving
[2010/03/04 04:57:39] @ Quit: ckauhaus: Quit: Leaving.
[2010/03/04 05:04:36] @ mvn071 joined channel #puppet
[2010/03/04 05:14:54] @ Quit: Ramonster: Remote host closed the connection
[2010/03/04 05:15:48] @ spawnyd joined channel #puppet
[2010/03/04 05:16:48] @ giskard joined channel #puppet
[2010/03/04 05:18:14] @ Ramonster joined channel #puppet
[2010/03/04 05:18:55] @ Quit: nareshov: Remote host closed the connection
[2010/03/04 05:23:09] <JD_> why is Cope never around when you want him?
[2010/03/04 05:23:17] @ Quit: vermeer__: Read error: Operation timed out
[2010/03/04 05:23:45] @ vermeer__ joined channel #puppet
[2010/03/04 05:25:04] @ PsychoSid joined channel #puppet
[2010/03/04 05:29:49] @ Quit: biertie: Ping timeout: 264 seconds
[2010/03/04 05:30:08] @ omry\|work joined channel #puppet
[2010/03/04 05:34:47] @ Quit: f3ew: Ping timeout: 246 seconds
[2010/03/04 05:35:42] @ Quit: tore: Ping timeout: 252 seconds
[2010/03/04 05:38:36] @ f3ew joined channel #puppet
[2010/03/04 05:39:10] @ GioGio joined channel #puppet
[2010/03/04 05:39:26] <GioGio> hi everyone
[2010/03/04 05:41:01] <GioGio> i'm looking for using augeas on my puppet modules. i have found the documentation on the website but it doesn't work. what i need is just to change a value on the ssh_config file to yes. can you help me or do you have some exemple who work ? ;) thanks
[2010/03/04 05:42:44] <matti> Augeas does look like an overkill ...
[2010/03/04 05:42:52] <GioGio> http://pastie.org/853273
[2010/03/04 05:42:54] @ Mick27 joined channel #puppet
[2010/03/04 05:43:06] <GioGio> the test i'm trying to do
[2010/03/04 05:44:16] <tim\|macbook> GioGio: what doesn't it do?
[2010/03/04 05:44:57] <GioGio> tim\|macbook: it doesn't change my value to yes
[2010/03/04 05:45:19] <tim\|macbook> if you run the same command in augtool, does it work?
[2010/03/04 05:46:09] <GioGio> i'll try
[2010/03/04 05:47:17] <GioGio> it seems that i can't launch augtool :/ i have install ruby-augeas, is there other packages needed to work ?
[2010/03/04 05:48:13] <matti> GioGio: Do you have Augeas as well?
[2010/03/04 05:48:14] <hggh> GioGio: why do you use Augeas - you should use templating. augeas cause many problem
[2010/03/04 05:49:23] <GioGio> if i want to change some value to yes or no on a file ? how can i do that with a template ? it seems more easy to do it with augeas no ?
[2010/03/04 05:49:47] <hggh> GioGio: you should push the hole file from puppet
[2010/03/04 05:51:05] <hggh> GioGio: http://pastebin.ca/1822448
[2010/03/04 05:52:49] <GioGio> hggh: ok so you declare some variables on your class and they are included on the template
[2010/03/04 05:53:24] <hggh> GioGio: yes. and if hosts/${fqdn} exists it will be merged
[2010/03/04 05:53:52] <hggh> GioGio: like some hosts of my has got an selection Match User foo this is only included at hosts/${fqdn}
[2010/03/04 05:55:25] <GioGio> ok, i'll try to implement this :) thanks
[2010/03/04 05:59:20] @ Quit: PsychoSid: Quit: Leaving.
[2010/03/04 06:00:42] @ artista_frustrad joined channel #puppet
[2010/03/04 06:04:17] <tim\|macbook> hggh: augeas works fine for us
[2010/03/04 06:05:30] <GioGio> tim\|macbook: i'll try to test augeas too ;) but it seems that i need some packages :)
[2010/03/04 06:08:54] @ PsychoSid joined channel #puppet
[2010/03/04 06:18:29] @ TREllis joined channel #puppet
[2010/03/04 06:20:03] @ Quit: buffalo: Read error: Connection timed out
[2010/03/04 06:20:40] @ buffalo joined channel #puppet
[2010/03/04 06:22:51] @ Spads joined channel #puppet
[2010/03/04 06:32:00] @ jab_doa joined channel #puppet
[2010/03/04 06:35:51] @ khadrin joined channel #puppet
[2010/03/04 06:36:04] @ Quit: buffalo: Ping timeout: 276 seconds
[2010/03/04 06:39:01] @ fluxdude joined channel #puppet
[2010/03/04 06:46:46] @ Quit: siert: Ping timeout: 258 seconds
[2010/03/04 06:47:01] @ siert joined channel #puppet
[2010/03/04 06:48:41] @ oasys joined channel #puppet
[2010/03/04 06:48:52] @ buffalo joined channel #puppet
[2010/03/04 06:52:54] @ Quit: oasys: Client Quit
[2010/03/04 06:59:39] @ Quit: buffalo: Ping timeout: 245 seconds
[2010/03/04 07:07:05] @ qwebirc8789 joined channel #puppet
[2010/03/04 07:07:11] @ Quit: qwebirc8789: Client Quit
[2010/03/04 07:10:30] @ ahasenack joined channel #puppet
[2010/03/04 07:11:45] @ buffalo joined channel #puppet
[2010/03/04 07:27:11] <a55> so there is no such thing as bacula module/reciepe ?
[2010/03/04 07:27:21] @ artista-frustrad joined channel #puppet
[2010/03/04 07:28:43] @ Quit: buffalo: Ping timeout: 276 seconds
[2010/03/04 07:33:04] @ bkohler joined channel #puppet
[2010/03/04 07:38:03] @ Quit: lanky: Quit: leaving
[2010/03/04 07:47:15] <inveratulo> is overriding values only possible when used in conjunction with inheritance, and no includes?
[2010/03/04 07:52:15] @ lilmatt joined channel #puppet
[2010/03/04 08:03:59] @ Quit: inveratulo: Ping timeout: 265 seconds
[2010/03/04 08:05:11] @ henk joined channel #puppet
[2010/03/04 08:05:13] <henk> hi
[2010/03/04 08:05:22] <robinbowes> So, fun with cron...
[2010/03/04 08:06:00] <robinbowes> I want to specify a cron line of:
[2010/03/04 08:06:08] <robinbowes> 0 * * * * /path/to/some/script
[2010/03/04 08:06:42] <henk> puppet complains: Could not find class tftpd at /etc/puppet/manifests/site.pp:355 on node ... this command: "/etc/puppet/modules$ grep -ri tftpd . \| grep class" gives me this: './tftp/manifests/init.pp:class tftpd {' which should be just fine, right? any idea what the problem might be?
[2010/03/04 08:06:58] <robinbowes> YOu can't read ;)
[2010/03/04 08:07:06] <robinbowes> tftp != tftpd
[2010/03/04 08:07:46] <henk> robinbowes: i know. but it's only the directory that's called 'tftp'. in that module is a 'class tftpd' as the grep revealed...
[2010/03/04 08:07:48] <Brown\|afk> 'morning everyone
[2010/03/04 08:07:59] @ Brown\|afk is now known as Brownoxford
[2010/03/04 08:07:59] <robinbowes> Yes, and that won't work
[2010/03/04 08:08:09] <robinbowes> As you've discovered
[2010/03/04 08:08:32] <robinbowes> directory name must be same as class name
[2010/03/04 08:08:51] <robinbowes> Anyway, back to corn...
[2010/03/04 08:08:54] <robinbowes> *cron
[2010/03/04 08:09:14] <robinbowes> I originally had minute => 0, hour => 4
[2010/03/04 08:09:25] <robinbowes> I changed the script and want to run it every hour
[2010/03/04 08:09:29] <Brownoxford> Can anyone tell me how puppet handles package install/uninstall on rpm systems (redhat, centos, fedora)? Specifically, if I specify that a package on which other packages depend (rpm-wise) be removed, will the other packages also be removed, or will puppet do a forced remove of only the package I specify?
[2010/03/04 08:09:58] <robinbowes> It will fail
[2010/03/04 08:10:23] <robinbowes> (I think)
[2010/03/04 08:10:36] <Brownoxford> robinbowes: hmm. I'll have to test. That would be my preference
[2010/03/04 08:10:39] @ inveratulo joined channel #puppet
[2010/03/04 08:10:44] <robinbowes> Yes, test it
[2010/03/04 08:10:51] <robinbowes> I'm pretty sure it will fail
[2010/03/04 08:11:08] <henk> robinbowes: hm, i could've sworn i had similar constructs working already... but it seems you are right, thanks :)
[2010/03/04 08:13:36] <henk> but i can put a class 'tftpd-hpa' in the tftp-module and depend on it in the tftp-class?
[2010/03/04 08:13:55] <henk> or does this class tftpd-hpa be a subclass of the tftp class to work?
[2010/03/04 08:18:52] @ Pirate_Hunter joined channel #puppet
[2010/03/04 08:19:35] <robinbowes> henk: the key thing is that for "include" to work, the directory must have the same name as the class
[2010/03/04 08:21:09] <robinbowes> So, if you have a module "tftpd", you would create modules/tftpd/manifests/init.pp containing "class tftpd { ... }"
[2010/03/04 08:21:59] <robinbowes> You can then add other classes to that file which will be included when you "include tftpd"
[2010/03/04 08:22:31] <henk> robinbowes: in that init.pp i have a class called 'tftp' (module is called tftp) and another class 'tftpd-hpa'. can't i include that file-local class?
[2010/03/04 08:23:06] <henk> robinbowes: uhm, afaik they won't... just adding them to the _file_ does not automatically include them. adding them to the _class_ should include them imho.
[2010/03/04 08:23:59] <robinbowes> Sorry - I got confused with defines
[2010/03/04 08:24:08] <robinbowes> Am working on defines at the moment!
[2010/03/04 08:25:05] @ Quit: TREllis: Quit: brb
[2010/03/04 08:32:18] <henk> :)
[2010/03/04 08:32:46] @ Quit: m1nish: Ping timeout: 264 seconds
[2010/03/04 08:32:50] @ Bass10 joined channel #puppet
[2010/03/04 08:35:11] @ fzzzt joined channel #puppet
[2010/03/04 08:37:04] <fzzzt> Anyone here dealt with auditd and Puppet?
[2010/03/04 08:37:11] <fzzzt> on RHEL5
[2010/03/04 08:37:18] @ Lab42 joined channel #puppet
[2010/03/04 08:37:19] <fzzzt> I need to somehow modify it so it stops freaking out.
[2010/03/04 08:38:39] @ rmiller4pi81 joined channel #puppet
[2010/03/04 08:39:13] @ biertie joined channel #puppet
[2010/03/04 08:39:39] @ Quit: rmiller4pi8: Ping timeout: 245 seconds
[2010/03/04 08:46:27] @ unxfrek joined channel #puppet
[2010/03/04 08:48:42] <tmz> fzzzt: What's happening with auditd and puppet? I've got my home puppetmaster on CentOS 5 with auditd, selinux enforcing, and puppet-0.25.4 and haven't noticed any trouble.
[2010/03/04 08:57:07] @ lanky joined channel #puppet
[2010/03/04 09:01:58] @ Quit: afletcher_: Quit: afletcher_
[2010/03/04 09:02:41] @ fluxdude2 joined channel #puppet
[2010/03/04 09:03:09] @ Quit: ShiNboi: Ping timeout: 240 seconds
[2010/03/04 09:03:52] @ Quit: shug: Quit: This computer has gone to sleep
[2010/03/04 09:05:24] @ Quit: fluxdude: Ping timeout: 252 seconds
[2010/03/04 09:07:43] <fzzzt> tmz: Looks like I have some non-default audit.rules (though I didn't add them), one for the open syscall
[2010/03/04 09:07:48] @ malraid joined channel #puppet
[2010/03/04 09:09:17] @ Quit: jbooth_: Quit: leaving
[2010/03/04 09:09:19] @ rmiller4pi8 joined channel #puppet
[2010/03/04 09:12:18] @ Quit: rmiller4pi81: Ping timeout: 248 seconds
[2010/03/04 09:13:31] @ rcrowley joined channel #puppet
[2010/03/04 09:14:37] @ LukeL_ joined channel #puppet
[2010/03/04 09:19:08] @ cwebber_ joined channel #puppet
[2010/03/04 09:22:09] @ Quit: cwebber: Ping timeout: 245 seconds
[2010/03/04 09:22:31] @ jmccune joined channel #puppet
[2010/03/04 09:23:24] @ Quit: cwebber_: Ping timeout: 245 seconds
[2010/03/04 09:23:34] @ PsychoSid1 joined channel #puppet
[2010/03/04 09:26:15] @ Quit: PsychoSid: Ping timeout: 256 seconds
[2010/03/04 09:26:26] @ Quit: LukeL_: Quit: Bye!
[2010/03/04 09:27:02] <ashp> Oh hmm, how weird.
[2010/03/04 09:27:20] <ashp> My puppetmaster regularly fails with too many open files, so I finally got to lsof it
[2010/03/04 09:27:23] <ashp> and it's 90%:
[2010/03/04 09:27:23] <ashp> puppetmas 21302 puppet 998u sock 0,5 196401043 can't identify protocol
[2010/03/04 09:27:38] <ashp> I wonder why it's opening like 900 sockets
[2010/03/04 09:27:56] @ fluxdude3 joined channel #puppet
[2010/03/04 09:29:05] @ pheezy joined channel #puppet
[2010/03/04 09:30:03] <Volcane> mysql connections?
[2010/03/04 09:30:05] <joe-mac1> using stored configs?
[2010/03/04 09:30:50] @ Quit: fluxdude2: Ping timeout: 258 seconds
[2010/03/04 09:31:23] <ohadlevy> dont have the native mysql gem compiled?
[2010/03/04 09:31:48] @ rgsteele joined channel #puppet
[2010/03/04 09:32:24] <ashp> yeah, it's stored configs
[2010/03/04 09:32:33] <ashp> ah so it's likely to be tons of mysql connections? I couldn't figure out what they were
[2010/03/04 09:32:48] <ashp> I probably don't have the native mysql gem, I had issues with that before, let me check
[2010/03/04 09:32:53] <ashp> * LOCAL GEMS *
[2010/03/04 09:32:53] <fzzzt> netstat doesn't show that?
[2010/03/04 09:32:55] <ashp> mysql (2.7)
[2010/03/04 09:33:19] <ashp> fzzzt: netstat has a total of 443 lines and there's like 900 puppetmasterd sockets so they don't even come close to matching :/
[2010/03/04 09:33:32] <ashp> i gotta poke around with lsof flags, see if i can get more :)
[2010/03/04 09:35:02] @ Quit: Welsh_Dwarf: Remote host closed the connection
[2010/03/04 09:36:42] <fzzzt> huh
[2010/03/04 09:36:50] <fzzzt> i would think something like netstat -a --proto=unix would show them
[2010/03/04 09:37:04] <fzzzt> oh, if they were socket files
[2010/03/04 09:37:06] <SyTonnerre> netstat: unknown option -- -
[2010/03/04 09:37:07] @ afletcher joined channel #puppet
[2010/03/04 09:37:19] <SyTonnerre> Do you mean -f unix ?
[2010/03/04 09:37:30] <fzzzt> depends on your os i guess
[2010/03/04 09:37:32] <joe-mac1> netstat has wildly different options across platforms...
[2010/03/04 09:41:49] <Volcane> netstat -a usually shows them
[2010/03/04 09:41:58] @ plathrop-away is now known as plathrop
[2010/03/04 09:42:24] <plathrop> Mornin'
[2010/03/04 09:43:19] @ TREllis joined channel #puppet
[2010/03/04 09:43:25] @ Spruit_elf joined channel #puppet
[2010/03/04 09:44:20] @ rmiller4pi81 joined channel #puppet
[2010/03/04 09:44:28] @ bobbyz joined channel #puppet
[2010/03/04 09:45:57] <Spruit_elf> is there a way to get from a puppet yaml catalog to puppet config?
[2010/03/04 09:46:46] <joe-mac1> like from yaml to .pp files?
[2010/03/04 09:47:12] @ qwebirc95147 joined channel #puppet
[2010/03/04 09:47:13] @ Quit: rmiller4pi8: Ping timeout: 264 seconds
[2010/03/04 09:47:24] <qwebirc95147> @k
[2010/03/04 09:47:45] <Spruit_elf> @joe-mac1 yes
[2010/03/04 09:48:18] <Spruit_elf> with only access to 1 node
[2010/03/04 09:48:24] <Volcane> Spruit_elf: there isnt something built already - and while it would be mostly possible you'd loose a lot of structure in the process
[2010/03/04 09:48:44] <joe-mac1> yea, especially the whitespace
[2010/03/04 09:49:00] <joe-mac1> style ftw
[2010/03/04 09:49:07] <joe-mac1> Volcane: you are anti-whitespace aren't you?
[2010/03/04 09:49:07] <Spruit_elf> o noes not the whitespace ... ;)
[2010/03/04 09:49:09] <Volcane> joe-mac1: classes and relationships with classes, all inheritance on class level all gone
[2010/03/04 09:49:38] <Volcane> joe-mac1: cos thats all not applicable to the compiled catalog
[2010/03/04 09:50:01] <joe-mac1> didn't know that, only looked at the yaml once or twice
[2010/03/04 09:50:13] @ skiold joined channel #puppet
[2010/03/04 09:50:28] * Volcane can output pretty much complete resources but not classes
[2010/03/04 09:50:32] <fzzzt> yaml is one of the best acronyms for speaking
[2010/03/04 09:50:41] <Volcane> you also dont tend to get any useful info about defines
[2010/03/04 09:51:11] <Spruit_elf> i see
[2010/03/04 09:51:23] <ashp> well, with --proto=unix i still only see 310 so I'm hundreds short. Grr.
[2010/03/04 09:51:47] <Spruit_elf> though some relations are still present, especialy nested classes i suspect
[2010/03/04 09:51:58] <Spruit_elf> (looking at yaml right now)
[2010/03/04 09:52:53] <Volcane> Spruit_elf: i have something that can take the yaml and print out resource/class/tag lists
[2010/03/04 09:53:15] <Spruit_elf> in pp format?
[2010/03/04 09:53:16] <Volcane> Spruit_elf: look on www.devco.net
[2010/03/04 09:53:19] <Volcane> nope
[2010/03/04 09:54:01] <ashp> oh well, i restarted puppetmaster for now, until the next failure :/
[2010/03/04 09:54:02] <Spruit_elf> ah i see
[2010/03/04 09:54:09] <Spruit_elf> ow well that will do as well
[2010/03/04 09:54:22] <ashp> i tried to strace it too hoping for more visibility into what the hell it's doing but.. no luck
[2010/03/04 09:54:40] <Spruit_elf> Volcane: tnx for making that
[2010/03/04 09:56:35] @ notbrien joined channel #puppet
[2010/03/04 09:56:55] <Spruit_elf> Volcane: changed the sha-bang line to "#!/usr/bin/env ruby" though (non standard ruby path :-( )
[2010/03/04 09:57:21] <axisys> my puppet clients failing to see the class list in my classifier .. posted it in puppet-users group
[2010/03/04 09:57:24] <axisys> http://groups.google.com/group/puppet-users/browse_thread/thread/cf0ecaea0627b821/e7b76f904088d4c2?lnk=gst&q=external+classifier+not+calling+class#e7b76f904088d4c2
[2010/03/04 09:57:30] <axisys> can anyone help me with this?
[2010/03/04 09:58:24] @ Quit: choc: Ping timeout: 276 seconds
[2010/03/04 10:01:33] @ choc joined channel #puppet
[2010/03/04 10:01:54] @ Quit: raz: Ping timeout: 248 seconds
[2010/03/04 10:02:37] @ raz joined channel #puppet
[2010/03/04 10:02:38] @ Quit: raz: Changing host
[2010/03/04 10:02:38] @ raz joined channel #puppet
[2010/03/04 10:02:43] @ Quit: rmiller4pi81: Quit: Leaving.
[2010/03/04 10:03:59] @ swygue joined channel #puppet
[2010/03/04 10:05:22] @ sijis_afk is now known as sijis
[2010/03/04 10:06:50] @ shenson joined channel #puppet
[2010/03/04 10:08:02] <fzzzt> I wish there was a way to capture stderr from execs
[2010/03/04 10:08:22] <fzzzt> in reports
[2010/03/04 10:08:36] <fzzzt> oh hey there is
[2010/03/04 10:10:56] <joe-mac1> stderr goes in thel ogs for execs doesn't it?
[2010/03/04 10:13:19] @ cwebber joined channel #puppet
[2010/03/04 10:17:54] @ Quit: kambiz: Quit: Coyote finally caught me
[2010/03/04 10:18:23] @ Quit: gebi: Ping timeout: 256 seconds
[2010/03/04 10:19:40] @ kambiz joined channel #puppet
[2010/03/04 10:20:49] @ ShiNboi joined channel #puppet
[2010/03/04 10:23:08] <fzzzt> nope
[2010/03/04 10:23:16] <fzzzt> doesn't seem to
[2010/03/04 10:23:46] @ uphillian joined channel #puppet
[2010/03/04 10:25:07] @ rmiller4pi8 joined channel #puppet
[2010/03/04 10:28:37] @ Quit: TREllis: Quit: brb
[2010/03/04 10:30:03] @ Quit: Phibs: Quit: leaving
[2010/03/04 10:30:05] <ashp> I don't think my issue of too many open files is database issues
[2010/03/04 10:30:16] <ashp> because I have those in lsof displaying fine:
[2010/03/04 10:30:17] <ashp> puppetmas 24602 puppet 37u IPv4 198185937 TCP puppet:52202->db.law.harvard.edu:mysql (ESTABLISHED)
[2010/03/04 10:30:18] @ Phibs joined channel #puppet
[2010/03/04 10:30:27] <ashp> it's just openinga bunch of sock's that I can't find in /proc/ or anywhere :/
[2010/03/04 10:30:31] @ Quit: Phibs: Client Quit
[2010/03/04 10:30:45] @ Phibs joined channel #puppet
[2010/03/04 10:32:41] @ kaptk2 joined channel #puppet
[2010/03/04 10:34:13] @ Quit: rmiller4pi8: Quit: Leaving.
[2010/03/04 10:34:45] <fzzzt> do you have a dryerd running that could be eating up socks
[2010/03/04 10:35:06] <Phibs> mmmm socks
[2010/03/04 10:35:09] <Phibs> I prefer black ones
[2010/03/04 10:35:10] @ labrown joined channel #puppet
[2010/03/04 10:35:15] <jb> i bet you do.
[2010/03/04 10:35:19] <fzzzt> once you go black ...
[2010/03/04 10:38:37] @ andrewh joined channel #puppet
[2010/03/04 10:39:27] @ Quit: qwebirc95147: Quit: Page closed
[2010/03/04 10:40:01] @ rmiller4pi8 joined channel #puppet
[2010/03/04 10:41:27] @ Quit: mdp_: Ping timeout: 265 seconds
[2010/03/04 10:41:35] <plathrop> fzzzt: I get stderr from my execs in my logs. "logoutput" is the parameter.
[2010/03/04 10:45:09] <fzzzt> yeah i found it, ty :)
[2010/03/04 10:46:12] <Brownoxford> Assuming one takes regular offsite backups of the SVN repository holding puppet configs, is there any reason why that SVN repository should not be located on the puppet master server?
[2010/03/04 10:46:40] <fzzzt> if it's just for puppet, i don't see one
[2010/03/04 10:46:49] <fzzzt> perhaps I/O performance
[2010/03/04 10:47:41] <plathrop> Brownoxford: Not IMHO. Except I'm opinionated and think svn sucks :-P
[2010/03/04 10:47:53] <fzzzt> What do you prefer?
[2010/03/04 10:48:31] <aliver> I'm trying to figure out how I can differentiate puppet directives based on the linux distro it's on. What should I google if I want to make an 'exec' type only run if /etc/redhat-release is there ?
[2010/03/04 10:48:44] <ashp> I tried to use git for puppet but it confused me, I really need to spend more time on it.
[2010/03/04 10:48:56] <fzzzt> you could do if ($operatingsystem == 'redhat')
[2010/03/04 10:48:57] <ashp> aliver: Check in facter -p first and look on, uh, lsb?
[2010/03/04 10:49:16] <fzzzt> I don't grok distributed rcs yet...
[2010/03/04 10:49:21] <ashp> lsbdistdescription => Red Hat Enterprise Linux Server release 5.4 (Tikanga)
[2010/03/04 10:49:27] <ashp> lsbdistid => RedHatEnterpriseServer
[2010/03/04 10:49:37] <ashp> You can also check lsbdistrelease => 5.4
[2010/03/04 10:50:11] <fzzzt> huh, i always used operatingsystem and operatingsystemrelease
[2010/03/04 10:50:30] <jb> yeah i use operatingsystem
[2010/03/04 10:50:36] @ Quit: pugnacity: Read error: Connection reset by peer
[2010/03/04 10:51:17] @ pugnacity joined channel #puppet
[2010/03/04 10:52:22] @ Quit: alban2: Quit: Leaving.
[2010/03/04 10:52:38] <Brownoxford> plathrop: Are you a git then? ;)
[2010/03/04 10:55:49] @ Quit: biertie: Ping timeout: 260 seconds
[2010/03/04 10:56:08] <chrisg> GITS
[2010/03/04 10:56:27] <aliver> cool. I'll try those things.
[2010/03/04 10:59:34] @ TREllis joined channel #puppet
[2010/03/04 10:59:45] <aliver> Strange. Even though my site.pp file has "import classes/*.pp" it never seems to read anything but the first one.
[2010/03/04 10:59:52] <aliver> Anyone run into this?
[2010/03/04 11:02:41] <Volcane> people mostly use modules now, no import required
[2010/03/04 11:02:43] @ Quit: Robbie_: Remote host closed the connection
[2010/03/04 11:03:28] <aliver> Volcane, well, I guess I need to learn what a module is, then.
[2010/03/04 11:03:37] <masterzen> aliver: you need to actually include the classes to use them, if that's your question.
[2010/03/04 11:03:38] <pheezy> Anyone have any tips on deploying multiple puppet masters for different environments and geographical locations?
[2010/03/04 11:03:44] <Volcane> wiki:ModuleOrganisation
[2010/03/04 11:03:45] <gepetto> Volcane: wiki: wiki:ModuleOrganisation is http://reductivelabs.com/trac/puppet/wiki/ModuleOrganisation
[2010/03/04 11:03:52] <aliver> thanks!
[2010/03/04 11:03:57] <Brownoxford> Volcane: Is it not necessary to import modules then?
[2010/03/04 11:04:01] <Volcane> nope
[2010/03/04 11:04:39] <Brownoxford> But nodes still need to "include" them, right?
[2010/03/04 11:04:49] <Volcane> yes, include as always
[2010/03/04 11:04:57] <Brownoxford> cool
[2010/03/04 11:05:30] @ bodepd joined channel #puppet
[2010/03/04 11:05:36] <Brownoxford> Just implemented the full on sudo recipe on my test servers... can't believe I've been doing this stuff manually all these years... :)
[2010/03/04 11:10:36] @ \ask joined channel #puppet
[2010/03/04 11:13:09] @ alfism joined channel #puppet
[2010/03/04 11:15:41] @ Quit: \ask: Remote host closed the connection
[2010/03/04 11:17:14] @ Quit: PsychoSid1: Quit: Leaving.
[2010/03/04 11:17:49] @ Quit: verwilst: Quit: Ex-Chat
[2010/03/04 11:19:02] <ashp> bodepd: I replied to that ticket, the mini-reply is "7 apache processes, 850~ lsof matches for 9 pids when I grep on apache, nothing changed but rhel 5.4 updates and i think it ties in to the time we deployed 25.4
[2010/03/04 11:19:58] <bodepd> ashp: thanks
[2010/03/04 11:20:16] @ mdp_ joined channel #puppet
[2010/03/04 11:26:13] @ Quit: Ramonster: Quit: Get MacIrssi - http://www.sysctl.co.uk/projects/macirssi/
[2010/03/04 11:26:49] <aliver> I want to use the "case' statement to choose some types only if a box has an $ipaddress that starts with 10.5. Can I do that with a regex or something?
[2010/03/04 11:27:08] <aliver> ie.... "/10.5.*/":
[2010/03/04 11:27:29] <neek> case supports regex's as of .24.6 iirc reading that docu yesterday
[2010/03/04 11:27:36] @ qwebirc78999 joined channel #puppet
[2010/03/04 11:27:40] * neek is waiting for firebloat to recover
[2010/03/04 11:27:49] <joe-mac1> wtf is firebloat
[2010/03/04 11:30:00] <qwebirc78999> could some one please point me to documentation how facter & puppet interact? When I run `facter fqdn` on a node, it returns correct information, but the reported fqdn on the puppetmaster for that node is incorrect
[2010/03/04 11:30:05] <kjetilho> neek: no, regex was introduced in 0.25.1 or perhaps .2
[2010/03/04 11:32:28] <neek> joe-mac1: firefox after it decides to turn to slush.
[2010/03/04 11:32:48] <aliver> Damn. My puppet is too old to use regex :-(
[2010/03/04 11:33:32] <neek> yep, you were right, .25
[2010/03/04 11:33:32] <neek> http://reductivelabs.com/trac/puppet/wiki/LanguageTutorial#case-statement
[2010/03/04 11:33:49] <neek> good thing I don't need the regex right now. :)
[2010/03/04 11:36:50] @ Quit: tim\|macbook: Quit: tim\|macbook
[2010/03/04 11:37:52] @ Quit: bodepd: Quit: bodepd
[2010/03/04 11:38:34] @ qwebirc21223 joined channel #puppet
[2010/03/04 11:39:02] @ qwebirc21223 left channel #puppet ()
[2010/03/04 11:39:27] @ Quit: pacalm: Quit: pacalm
[2010/03/04 11:39:45] @ jasonb365 joined channel #puppet
[2010/03/04 11:42:54] @ Quit: themroc: Read error: Connection reset by peer
[2010/03/04 11:45:09] <jbooth> Sometimes the more ruby I learn, the cooler a language it becomes.
[2010/03/04 11:45:50] @ Quit: danielbln: Quit: Leaving.
[2010/03/04 11:46:57] <neek> anyone have any details on "generate" ? I need (want..) to set a variable based on the output of an exec (or similar) and that seems to be the 'right' way do it. but docu is slim that I can find, and I'm not even sure if it's supported in .24.8...
[2010/03/04 11:47:14] <Volcane> neek: generate runs on the master
[2010/03/04 11:47:26] <neek> oh
[2010/03/04 11:47:29] <neek> foul
[2010/03/04 11:47:41] <Volcane> "setting variables" is a compile time operation
[2010/03/04 11:47:57] <neek> which takes me back to $variable = exec {}, which of course doesnt work.
[2010/03/04 11:48:11] <masterzen> neek: use custom facts
[2010/03/04 11:48:25] <neek> masterzen: at which point you've lost me. :)
[2010/03/04 11:48:28] <masterzen> if you need to "import" some state from the client
[2010/03/04 11:48:57] <masterzen> neek: custom facts are facter plugins that ends up (like any facter values) as variables in your manifest.
[2010/03/04 11:49:13] <masterzen> neek: it's one of the possibility if you want to get some "values" from a node.
[2010/03/04 11:49:42] <masterzen> neek: now if you need just to run a script on the master to query a database or something, generate can do it fine.
[2010/03/04 11:50:57] <ohadlevy> joemac: big bucks ? :)
[2010/03/04 11:51:23] <joe-mac1> hehe
[2010/03/04 11:51:30] @ Quit: bkohler: Ping timeout: 252 seconds
[2010/03/04 11:51:35] <neek> I'll have to look at facts later. first glance indicates it'll be way too much of a time sink to figure out today.
[2010/03/04 11:52:05] <joe-mac1> ohadlevy: i was interested in something you said but didn't really want to get too much cross-talk in that subject- you don't liek to encode some metadata in the hsotname?
[2010/03/04 11:52:11] * neek returns to ignoring the continuing "mount" errors caused by issues/2731
[2010/03/04 11:54:42] @ Quit: qwebirc78999: Quit: Page closed
[2010/03/04 11:55:51] @ \ask joined channel #puppet
[2010/03/04 11:57:26] @ bodepd joined channel #puppet
[2010/03/04 11:59:06] @ Quit: slevin: Quit: slevin
[2010/03/04 12:03:09] @ Quit: Mick27: Quit: This computer has gone to sleep
[2010/03/04 12:03:34] <jasonb365> Hello, I am trying to setup puppet environments. My environment is called staging. I will have 3 more later just trying to get one of them working. I am running Ubuntu hardy 8.0.4 with puppet version 0.24.4. I have read the documentation but it doesn't seem to be working with different environment names. I am probably doing something dumb just can't seem to figure it out.
[2010/03/04 12:03:36] @ Quit: fluxdude3: Ping timeout: 252 seconds
[2010/03/04 12:04:01] <plathrop> neek: custom facts are actually relatively easy. The hardest part is figuring out how to put them in the right place so that puppet magically distributes them and they work.
[2010/03/04 12:06:41] @ bkohler joined channel #puppet
[2010/03/04 12:07:09] @ dotNox joined channel #puppet
[2010/03/04 12:07:17] @ tim\|macbook joined channel #puppet
[2010/03/04 12:09:02] <axisys> i still help with my classifier.. i have not received any reply from the email on puppet-user group yet..
[2010/03/04 12:10:00] <jasonb365> on my app staging server I am getting this error.
[2010/03/04 12:10:10] @ Quit: jaredrhine: Ping timeout: 276 seconds
[2010/03/04 12:10:49] <axisys> this looks soo simple http://pastie.org/853778
[2010/03/04 12:11:01] <axisys> not sure why it is not working
[2010/03/04 12:11:36] <axisys> is the syntax changes for 0.25.1 external classifier
[2010/03/04 12:11:46] <axisys> my client is 0.24.7 and server is 0.25.1
[2010/03/04 12:11:56] @ francois1 joined channel #puppet
[2010/03/04 12:12:04] @ francois1 left channel #puppet ()
[2010/03/04 12:12:23] <jasonb365> I am getting the error Invalid environment staging (ArgumentError)
[2010/03/04 12:12:34] <jasonb365> but it is listed in the puppet.conf on the puppetmaster
[2010/03/04 12:13:05] @ murkk joined channel #puppet
[2010/03/04 12:14:30] @ Quit: skiold: Quit: skiold
[2010/03/04 12:15:02] @ Quit: alfism: Quit: http://opensolaris.com/
[2010/03/04 12:15:14] @ pugnacity1 joined channel #puppet
[2010/03/04 12:15:27] @ Quit: pugnacity: Read error: Connection reset by peer
[2010/03/04 12:16:55] @ eshamow joined channel #puppet
[2010/03/04 12:16:56] @ Quit: \ask: Remote host closed the connection
[2010/03/04 12:16:56] <plathrop> axisys: I'd love to help, but I have gone over it twice and don't see why it would fail.
[2010/03/04 12:17:08] <plathrop> axisys: not ignoring you, just have nothing useful to add :-(
[2010/03/04 12:18:53] <axisys> plathrop: i am wondering if there is a way to debug as to why it is failing for me.. why my client is not even trying to talk to the classes listed in my classifier
[2010/03/04 12:19:39] @ Quit: bodepd: Quit: bodepd
[2010/03/04 12:19:49] @ Quit: pugnacity1: Ping timeout: 260 seconds
[2010/03/04 12:20:15] <plathrop> axisys: let me check something.
[2010/03/04 12:20:17] @ pugnacity joined channel #puppet
[2010/03/04 12:21:03] <axisys> plathrop: sure
[2010/03/04 12:21:30] <axisys> plathrop: my client never bothered to call the classes ..
[2010/03/04 12:21:31] <axisys> http://pastie.org/853778
[2010/03/04 12:22:46] <plathrop> axisys: so, in my experience the yaml is very sensitive to formatting, including whitespace. Let me pastie you an example output from my working-in-production external node util.
[2010/03/04 12:22:51] <plathrop> pastie: link me!
[2010/03/04 12:23:22] <axisys> plathrop: ok..
[2010/03/04 12:23:26] <pastie> http://pastie.org/853806 by plathrop.
[2010/03/04 12:23:44] <axisys> i tried with --tags terminate and still wont call it http://pastie.org/853807
[2010/03/04 12:23:54] <plathrop> axisys: you'll notice the indentation is different in my output
[2010/03/04 12:24:05] <plathrop> try making your indentation match mine
[2010/03/04 12:24:35] <axisys> plathrop: ok
[2010/03/04 12:26:39] @ Quit: murkk: Remote host closed the connection
[2010/03/04 12:26:55] @ murkk joined channel #puppet
[2010/03/04 12:29:27] @ Quit: tim\|macbook: Ping timeout: 252 seconds
[2010/03/04 12:29:36] <axisys> i used exactly like yours now ..
[2010/03/04 12:29:41] <axisys> still no go
[2010/03/04 12:30:45] @ bodepd joined channel #puppet
[2010/03/04 12:31:20] <axisys> what I dont understand is that it was working before until i upgraded it to 0.25.1
[2010/03/04 12:31:33] <plathrop> axisys: try adding that environment line
[2010/03/04 12:31:59] <axisys> plathrop: do I have to add that environemtn anywhere else ?
[2010/03/04 12:32:13] <plathrop> axisys: just in the YAML
[2010/03/04 12:32:22] <plathrop> use 'production'
[2010/03/04 12:33:47] <dotNox> hello. is there any way to make puppet strictly follow the order of class includes for node ? As I see puppet runs it randomly
[2010/03/04 12:34:49] <plathrop> dotNox: Yes and no. There is no way to make puppet order based on file line order. However, there are metaparameters 'require' and 'before' which are used to define ordering of resources.
[2010/03/04 12:35:06] <plathrop> You have to be explicit about your dependencies.
[2010/03/04 12:35:08] <axisys> plathrop: did not help ..
[2010/03/04 12:35:16] <plathrop> axisys: I'm sorry, I'm stumped
[2010/03/04 12:35:43] <axisys> plathrop: would be nice if there is some kind of trace feature to see what puppet is doing
[2010/03/04 12:36:05] <plathrop> you mean more than --debug --trace?
[2010/03/04 12:36:45] @ Quit: giskard: Remote host closed the connection
[2010/03/04 12:37:22] <axisys> plathrop: there is a --trace option? i dont see it in puppetd --help
[2010/03/04 12:37:51] <plathrop> axisys: yes, there is a --trace and I hate to say it but --help is mostly useless. --genconfig \| less is more useful
[2010/03/04 12:38:21] <plathrop> axisys: anyway, it isn't puppetd you are interested here. Puppet is just applying the catalog handed over by the master.
[2010/03/04 12:38:30] @ Quit: Spruit_elf: Quit: Spruit_elf
[2010/03/04 12:38:30] <plathrop> axisys: you want to see what puppetmasterd is doing
[2010/03/04 12:38:59] <axisys> plathrop: ok may be i should run that in high level of debig
[2010/03/04 12:39:01] <axisys> debug
[2010/03/04 12:41:26] <axisys> plathrop: i am running it through apache2+phusion .. how do I increase the debug?
[2010/03/04 12:41:45] <plathrop> phusion == passenger?
[2010/03/04 12:42:01] <axisys> plathrop: i mean passenger .. yes
[2010/03/04 12:42:08] @ jaredrhine joined channel #puppet
[2010/03/04 12:42:19] <plathrop> yo jaredrhine how's it going?
[2010/03/04 12:42:24] <plathrop> axisys: lemme look
[2010/03/04 12:43:21] <plathrop> axisys: in your config.ru set the ARGV variable
[2010/03/04 12:43:27] <plathrop> #ARGV << "--debug"
[2010/03/04 12:43:36] <plathrop> only, without the comment
[2010/03/04 12:44:31] <axisys> plathrop: in here /usr/lib/ruby/gems/1.8/gems/passenger-2.2.2/test/stub/rack/config.ru ?
[2010/03/04 12:45:13] <axisys> plathrop: or here /usr/share/puppet/rack/puppetmasterd/config.ru ?
[2010/03/04 12:45:21] <plathrop> axisys: um, I doubt it. On my debian system it's in /etc/puppet/rack/config.ru
[2010/03/04 12:45:29] <plathrop> the second one looks more likely
[2010/03/04 12:45:44] <plathrop> but you'd be the authority on your config files :-)
[2010/03/04 12:46:08] <axisys> plathrop: ok uncommented
[2010/03/04 12:46:16] @ Quit: jaredrhine: Ping timeout: 240 seconds
[2010/03/04 12:46:29] <axisys> should i need to restart apache?
[2010/03/04 12:46:47] <axisys> and where would the logfile go?
[2010/03/04 12:46:47] <plathrop> axisys: yes
[2010/03/04 12:47:08] <plathrop> axisys: again, I don't know your system. Wherever your puppetmaster logs usually go.
[2010/03/04 12:47:19] <axisys> plathrop: same place? ok
[2010/03/04 12:48:45] <plathrop> axisys: be prepared for hella output if you have a busy puppetmaster
[2010/03/04 12:49:26] <axisys> plathrop: i am getting these errors now
[2010/03/04 12:49:27] <axisys> err: Could not call puppetmaster.getconfig: #<RuntimeError: HTTP-Error: 500 Internal Server Error>
[2010/03/04 12:49:30] <axisys> err: Could not retrieve catalog: HTTP-Error: 500 Internal Server Error
[2010/03/04 12:49:33] <axisys> on the client
[2010/03/04 12:50:22] <plathrop> what's your puppetmaster log saying?
[2010/03/04 12:50:37] @ Quit: aliver: Remote host closed the connection
[2010/03/04 12:51:02] @ aliver joined channel #puppet
[2010/03/04 12:51:04] <axisys> plathrop: excerpt from puppetmaster log
[2010/03/04 12:51:06] <axisys> http://pastie.org/853867
[2010/03/04 12:51:58] <axisys> plathrop: my apache2 runs as www-data .. I am guessing I need to change the owner ship of /var/log/puppet dir to that ?
[2010/03/04 12:52:44] <plathrop> axisys: that's what I'd do.
[2010/03/04 12:55:43] <axisys> plathrop: i am still getting the permission denied
[2010/03/04 12:55:44] <axisys> Mar 4 12:55:18 sys-ubuntu puppetmasterd[23502]: (/File[/var/log/puppet/masterhttp.log]/ensure) change from absent to file failed: Could not set file on ensure: Permission denied - /var/log/puppet/masterhttp.log
[2010/03/04 12:56:20] <axisys> (root)@sys-ubuntu:~# ls -ld /var/log/puppet/
[2010/03/04 12:56:20] <axisys> drwxr-x--- 2 www-data www-data 4096 2010-02-28 06:40 /var/log/puppet/
[2010/03/04 12:56:28] <axisys> (root)@sys-ubuntu:~# ls -ld /var/log/puppet/masterhttp.log
[2010/03/04 12:56:30] <axisys> -rw-rw---- 1 www-data www-data 374 2010-02-28 06:40 /var/log/puppet/masterhttp.log
[2010/03/04 12:56:36] <plathrop> drwxr-x--- 2 puppet puppet 4.0K 2010-02-28 06:25 puppet
[2010/03/04 12:56:39] <plathrop> try that
[2010/03/04 12:56:44] <hacim> ok, debian backport of latest puppet has been approved finally
[2010/03/04 12:56:46] <plathrop> that's /var/log/puppet
[2010/03/04 12:57:36] @ Quit: cwebber: Quit: cwebber
[2010/03/04 12:57:38] <axisys> (root)@sys-ubuntu:/var/log# ls -ld puppet/
[2010/03/04 12:57:38] <axisys> drwxr-x--- 2 puppet puppet 4096 2010-02-28 06:40 puppet/
[2010/03/04 12:57:46] <axisys> did that
[2010/03/04 12:57:55] <plathrop> and the files in it too?
[2010/03/04 12:58:09] <axisys> plathrop: no so -R ?
[2010/03/04 12:59:13] <plathrop> http://pastie.org/853879
[2010/03/04 12:59:34] <axisys> plathrop: http://pastie.org/853880
[2010/03/04 13:00:21] <plathrop> looks close enough to me, errors still happening?
[2010/03/04 13:00:46] @ alfism joined channel #puppet
[2010/03/04 13:01:49] <axisys> plathrop: :-) .. yes.. i chmod 777 /var/log/puppet/masterhttp.log, just to indulge me, and still same issue..
[2010/03/04 13:02:05] <plathrop> I'm at a loss. Sounds like endemic issues.
[2010/03/04 13:02:17] @ cwebber joined channel #puppet
[2010/03/04 13:02:24] <axisys> plathrop: lol
[2010/03/04 13:02:46] <plathrop> I mean, it has to be broken at a pretty fundamental level to get permission denied on a 777
[2010/03/04 13:02:50] <axisys> hmm.. without this classifier to do this simplest thing .. my puppet is useless now
[2010/03/04 13:03:40] @ \ask joined channel #puppet
[2010/03/04 13:04:35] <axisys> plathrop: i dont think that permission is a requirement for puppet to work.. plus i dont think it is saying i cannot write.. issue with ruby may be.. again that is just a log.. i am 99% sure that should not stop puppet from work
[2010/03/04 13:05:39] <plathrop> I really have no idea how to proceed, man
[2010/03/04 13:07:32] <axisys> plathrop: thanks for your help
[2010/03/04 13:09:13] <Volcane> no funky selinux or anything?
[2010/03/04 13:14:10] @ Quit: \ask: Remote host closed the connection
[2010/03/04 13:17:45] @ Quit: vermeer__: Read error: No route to host
[2010/03/04 13:18:13] @ jaredrhine joined channel #puppet
[2010/03/04 13:22:00] @ Quit: bkohler: Ping timeout: 265 seconds
[2010/03/04 13:29:02] @ giskard joined channel #puppet
[2010/03/04 13:29:14] @ Quit: unxfrek: Quit: Leaving
[2010/03/04 13:30:24] @ sbrock joined channel #puppet
[2010/03/04 13:34:10] @ Quit: MattyM: Quit: ta ta
[2010/03/04 13:34:31] @ bkohler joined channel #puppet
[2010/03/04 13:35:49] <axisys> Volcane: ubuntu
[2010/03/04 13:36:05] <axisys> (i was out of focus.. sorry)
[2010/03/04 13:37:39] <Volcane> is that code for retarded and doesnt have selinux? :P
[2010/03/04 13:39:08] <Volcane> shrug must be one of the upper directories or something that doesnt have right permissions, or something is set immutable or one of those extended attributes like via ACLs
[2010/03/04 13:40:04] @ \ask joined channel #puppet
[2010/03/04 13:40:22] <axisys> Volcane: that still does not explain why puppet not able to pick up the classes from a classifier .. or does it?
[2010/03/04 13:40:37] * Volcane 's looking at the permission error, didnt see the whole discussion
[2010/03/04 13:40:55] <axisys> Volcane: gotcha..
[2010/03/04 13:41:36] <axisys> Volcane: my goal is get puppet client to pick up the classes from this simple classifier .. http://pastie.org/853778
[2010/03/04 13:43:16] <Volcane> and /var/opt/csw/puppet/state/classes.txt has nothing in it?
[2010/03/04 13:43:19] @ Quit: cwebber: Quit: cwebber
[2010/03/04 13:43:40] <axisys> (root)@jp-script:~# cat /var/opt/csw/puppet/state/classes.txt
[2010/03/04 13:43:40] <axisys> terminate
[2010/03/04 13:43:40] <axisys> terminate
[2010/03/04 13:43:50] <Volcane> so it picked up your class
[2010/03/04 13:43:51] <axisys> two of the same
[2010/03/04 13:44:31] <axisys> Volcane: ok .. i was hoping puppetd --no-daemonize -d -v -t would show it
[2010/03/04 13:45:04] <Volcane> add in your class: notify{"Terminating!": }
[2010/03/04 13:45:26] @ cwebber joined channel #puppet
[2010/03/04 13:45:58] <gepetto> ::trac:: Puppet Templating edited @ http://reductivelabs.com/trac/puppet/wiki/PuppetTemplating?version=21
[2010/03/04 13:46:28] <axisys> Volcane: like this http://pastie.org/853958 ?
[2010/03/04 13:47:57] <axisys> http://pastie.org/853958 ever since I added the ARGV << '-- debug' in config.ru i started seeing some getconfig errors
[2010/03/04 13:48:14] <agaffney> is it possible to use Package to do a yum groupinstall?
[2010/03/04 13:48:31] <Volcane> agaffney: no
[2010/03/04 13:48:32] <agaffney> will 'package { "@GNOME Desktop whatever": }' work?
[2010/03/04 13:48:35] <agaffney> meh
[2010/03/04 13:49:09] <Volcane> axisys: thats something else then the class seems fine
[2010/03/04 13:49:21] <agaffney> I guess it's: exec { 'yum groupinstall "@GNOME Desktop whatever"': unless => 'rpm -ql gdm' }
[2010/03/04 13:49:52] <Volcane> axisys: why all the fiddling with the define though: user{["foo", "bar"]: ensure => absent} seems so much simpler
[2010/03/04 13:50:42] <axisys> Volcane: that class gets generated dynamically from a list .. my admins just drop users in the list
[2010/03/04 13:50:53] @ Quit: matti: Ping timeout: 256 seconds
[2010/03/04 13:51:09] @ Quit: ShiNboi: Ping timeout: 240 seconds
[2010/03/04 13:51:14] <axisys> Volcane: so sometimes we get 50 users .. not that often.. but we do
[2010/03/04 13:51:51] <Volcane> yeah, so all you need to do is build the array, not seeing the use of the define there - anyway, thats not a problem i just wondered
[2010/03/04 13:52:09] @ matti joined channel #puppet
[2010/03/04 13:52:10] @ Quit: matti: Changing host
[2010/03/04 13:52:10] @ matti joined channel #puppet
[2010/03/04 13:52:39] @ Quit: TREllis: Quit: leaving
[2010/03/04 13:53:00] <axisys> Volcane: ok duly noted .. will make changes.. i had been away for a long time.. need to get back to it ..
[2010/03/04 13:54:00] @ monachus joined channel #puppet
[2010/03/04 13:54:55] <Volcane> axisys: look at the localconfig.yaml file that the debug output mentions, you should be able to kind of read it, see if it has your deluser stuff in it
[2010/03/04 13:57:48] @ biertie joined channel #puppet
[2010/03/04 13:58:37] <axisys> Volcane: type: Terminate::Deluser
[2010/03/04 13:58:41] @ Quit: jaredrhine: Read error: No route to host
[2010/03/04 13:58:46] <axisys> file: /etc/puppet/manifests/classes/terminate.pp
[2010/03/04 13:59:02] <axisys> Volcane: let me pastebin it
[2010/03/04 13:59:46] @ gebi joined channel #puppet
[2010/03/04 14:00:23] <axisys> Volcane: http://pastie.org/854000
[2010/03/04 14:01:14] <axisys> i added a user from deluser list, the ran the puppet and the user is still there.. proves the terminate class did not get called
[2010/03/04 14:01:18] <axisys> http://pastie.org/853958
[2010/03/04 14:02:14] @ jaredrhine joined channel #puppet
[2010/03/04 14:02:19] <axisys> i am guessing this is the problem
[2010/03/04 14:02:20] <axisys> err: Could not call puppetmaster.getconfig: #<RuntimeError: HTTP-Error: 500 Internal Server Error>
[2010/03/04 14:02:36] <axisys> googling .. so far no solution that works for me
[2010/03/04 14:02:50] <axisys> err: Could not retrieve catalog: HTTP-Error: 500 Internal Server Error (the second line)
[2010/03/04 14:02:52] <Volcane> your master is broken, it wont work and do it till you fix that
[2010/03/04 14:03:28] <axisys> Volcane: yes.. but i am sure how to find out what is causing it
[2010/03/04 14:03:58] <Volcane> you said it worked till you added a specific option?
[2010/03/04 14:06:16] <axisys> Volcane: actually i did not see that error message until i uncommented the following line in config.ru
[2010/03/04 14:06:28] <axisys> # ARGV << "--debug"
[2010/03/04 14:06:46] @ Quit: kolla: Read error: Operation timed out
[2010/03/04 14:08:10] <axisys> i guess that is not the problem.. w/o it i still get the same errors
[2010/03/04 14:08:40] @ Quit: Lab42: Ping timeout: 252 seconds
[2010/03/04 14:09:37] <axisys> Mar 4 14:08:15 sys-ubuntu puppetmasterd[27909]: (/File[/var/log/puppet/masterhttp.log]) Could not stat; permission denied is feeling up
[2010/03/04 14:10:04] @ kolla joined channel #puppet
[2010/03/04 14:10:06] <Volcane> show a ls -l on /var /var/log and /var/log/puppet
[2010/03/04 14:10:12] <Volcane> erm, make that ls -ld
[2010/03/04 14:10:31] <jbooth> Selinux?
[2010/03/04 14:10:36] @ Quit: eric0: Ping timeout: 245 seconds
[2010/03/04 14:10:39] <axisys> jbooth: ubuntu
[2010/03/04 14:10:47] <Volcane> jbooth: i asked, his answer was 'ubuntu' doesnt sound like he actually want help to me.
[2010/03/04 14:11:01] <Volcane> jbooth: since clearly its a yes/no question.
[2010/03/04 14:11:12] <axisys> not selinus
[2010/03/04 14:11:14] <jbooth> axisys: No, are you running selinux on that machine?
[2010/03/04 14:11:15] <axisys> selinux
[2010/03/04 14:11:24] <axisys> no selinux .. sorry
[2010/03/04 14:11:36] <jbooth> axisys: this is not a what-distribution question.
[2010/03/04 14:11:57] <axisys> jbooth: i realized after answering stupidly
[2010/03/04 14:12:26] <jbooth> axisys: okay. I realize it isn't on by default on ubuntu, but that doesn't mean it isn't there :-)
[2010/03/04 14:13:17] <jbooth> Check Volcane's ls -ld, plus check mount and make sure var is mounted rw.
[2010/03/04 14:13:24] @ Quit: gebi: Ping timeout: 252 seconds
[2010/03/04 14:13:40] <jbooth> (or that /var is mounted at all, if it is a separate parition)
[2010/03/04 14:14:08] @ Quit: bkohler: Remote host closed the connection
[2010/03/04 14:15:06] <axisys> Volcane: http://pastie.org/854041
[2010/03/04 14:15:09] @ eidolon joined channel #puppet
[2010/03/04 14:16:03] <Volcane> and you've recently updated to a puppetmaster in passenger?
[2010/03/04 14:16:07] <Volcane> and it worked before then?
[2010/03/04 14:16:09] <axisys> Volcane: http://pastie.org/854041
[2010/03/04 14:16:27] <axisys> Volcane: recently updated puppetd
[2010/03/04 14:16:46] <axisys> Volcane: then i had to update config.ru
[2010/03/04 14:16:48] <Volcane> show from your ps the puppetmasterd processes
[2010/03/04 14:17:21] <axisys> nobody 7415 1 94 14:17 ? 00:00:01 puppetmasterd
[2010/03/04 14:17:27] <Volcane> spot the obvious problem
[2010/03/04 14:17:44] <plathrop> lol
[2010/03/04 14:17:47] <axisys> nobody needs to be owner of /var/log/puppet dir ?
[2010/03/04 14:18:28] <Volcane> when you move from a webrick/mongrel puppetmaster to passenger the user it runs as usually changes
[2010/03/04 14:18:55] <Volcane> could probably change it in the rack file or something shrug but thats your problem
[2010/03/04 14:19:04] <axisys> i moved a while ago.. not sure why recent update of puppet broke it
[2010/03/04 14:19:14] <axisys> Volcane: oh ok
[2010/03/04 14:19:56] <Volcane> process cant write to file, it means process user cant write to it, find out file ownerships - all the way to the file - then find out the process owner
[2010/03/04 14:20:03] <Volcane> thats debugging permission denied 101
[2010/03/04 14:20:10] <Volcane> it gets more complex with file ACLs and Selinux
[2010/03/04 14:20:15] <Volcane> but thats usually all u need
[2010/03/04 14:20:36] <eidolon> meh.
[2010/03/04 14:20:45] <axisys> i will find that config.ru .. i think it has this wrong owner
[2010/03/04 14:20:54] <eidolon> Mar 4 13:56:52 ltl-dev-bo-db01 puppetd[13259]: Denying unauthenticated client lwmoccam01.REDACTED.com(10.20.2.25) access to puppetrunner.run
[2010/03/04 14:21:07] <eidolon> i just ran ntpdate on both hosts (puppetmaster and client) just to make sure it wasn't a clock problem
[2010/03/04 14:22:44] <eidolon> from various posts, i'm getting this might be a certificate problem.
[2010/03/04 14:22:48] <eidolon> but i have no clue how to debug it.
[2010/03/04 14:23:30] <axisys> what change can I make so the user stays as puppet ..
[2010/03/04 14:23:32] <axisys> http://pastie.org/854064
[2010/03/04 14:23:46] <axisys> here is the new config.ru and old config.ru ^
[2010/03/04 14:29:46] @ tonyskapunk joined channel #puppet
[2010/03/04 14:30:59] <axisys> chown -R nobody to required two dirs and now it sees classes.. thank you very much Volcane
[2010/03/04 14:33:23] @ Quit: Spads: Ping timeout: 256 seconds
[2010/03/04 14:35:18] @ Stuttergart joined channel #puppet
[2010/03/04 14:35:28] <Stuttergart> Hello, all.
[2010/03/04 14:35:53] <Stuttergart> New to Puppet and have a question about the DSL
[2010/03/04 14:36:43] <Stuttergart> If I have class 'test', 'test::install', and 'test::run'
[2010/03/04 14:36:54] <Stuttergart> and I would like the following behavior
[2010/03/04 14:37:10] <Stuttergart> include test and test::install and test::run are included and run
[2010/03/04 14:37:47] <Stuttergart> or include test::run and ::run understands that class test:: and test::install must be run first
[2010/03/04 14:37:52] <Stuttergart> how would I implement that?
[2010/03/04 14:38:31] <Stuttergart> require/subscribe seems to be more for Files etc
[2010/03/04 14:40:31] @ Stuttergart is now known as Stuttergart_
[2010/03/04 14:41:42] @ Stuttergart_ is now known as Stuttergart
[2010/03/04 14:42:02] <Stuttergart> Hello, all.
[2010/03/04 14:42:10] <Stuttergart> New to Puppet and have a question about the DSL
[2010/03/04 14:42:11] @ Quit: sbrock: Read error: Connection reset by peer
[2010/03/04 14:42:19] <Stuttergart> If I have class 'test', 'test::install', and 'test::run'
[2010/03/04 14:42:25] <Stuttergart> and I would like the following behavior
[2010/03/04 14:42:32] <Stuttergart> include test and test::install and test::run are included and run
[2010/03/04 14:42:41] <Stuttergart> or include test::run and ::run understands that class test:: and test::install must be run first
[2010/03/04 14:42:47] <Stuttergart> how would I implement that?
[2010/03/04 14:42:54] <Stuttergart> require/subscribe seems to be more for Files etc
[2010/03/04 14:44:30] @ TREllis joined channel #puppet
[2010/03/04 14:46:41] @ Quit: fxpester: Read error: Connection reset by peer
[2010/03/04 14:46:51] @ fxpester joined channel #puppet
[2010/03/04 14:51:30] <fzzzt> Hm. "Could not retrieve catalog from remote server: Error 400 on SERVER: Could not find class subversion::client in namespaces subversion::server". I have subversion::server include subversion::client, they're both in modules/subversion/{server\|client}.pp, shouldn't that work?
[2010/03/04 14:55:30] <Volcane> axisys: kewl :)
[2010/03/04 14:56:18] <joe-mac1> you still need init.pp for import right?
[2010/03/04 14:57:43] <fzzzt> i have init.pp with a subversion class, but don't import.. i thought it was automatic for module::class sort of things
[2010/03/04 14:58:22] <joe-mac1> it could be
[2010/03/04 14:58:30] @ Quit: Demosthenes: Ping timeout: 252 seconds
[2010/03/04 15:06:09] @ sunny joined channel #puppet
[2010/03/04 15:07:40] @ Djelibeybi joined channel #puppet
[2010/03/04 15:17:07] @ vermeer__ joined channel #puppet
[2010/03/04 15:21:44] <tim\|imac> I love the ability to specify which class you want to apply during a puppetd run.
[2010/03/04 15:22:31] <Volcane> tim\|imac: pity they have to be included to be specified on the cli like that :(
[2010/03/04 15:22:59] <tim\|imac> Volcane: I always develop on a test VM, so I don't mind that much
[2010/03/04 15:23:13] @ Quit: gilos: Ping timeout: 264 seconds
[2010/03/04 15:23:18] @ Demosthenes joined channel #puppet
[2010/03/04 15:25:48] @ Spads joined channel #puppet
[2010/03/04 15:29:46] @ lak joined channel #puppet
[2010/03/04 15:35:28] @ Quit: nexx: Quit: quit
[2010/03/04 15:36:06] @ Quit: manlymatt83: Quit: User disconnected
[2010/03/04 15:38:05] @ Quit: lak: Ping timeout: 258 seconds
[2010/03/04 15:39:13] <jbooth> Stuttergart: require is for any relationship. Just require the classes.
[2010/03/04 15:40:44] <Stuttergart> jbooth: What would be the syntax for something like that?
[2010/03/04 15:41:06] <Stuttergart> let me put some stuff on pastebin
[2010/03/04 15:41:07] <joe-mac1> same as everything else, require => Class["classname"],
[2010/03/04 15:41:07] <Stuttergart> just a sec
[2010/03/04 15:41:15] <Stuttergart> oh
[2010/03/04 15:41:19] <joe-mac1> though, i usually find requiring a class throws me in dependency cycles
[2010/03/04 15:41:25] <Stuttergart> but doesn't required have to be wrapped in some kind of resource?
[2010/03/04 15:41:30] <jbooth> Stealing Volcane's excellent work: http://www.devco.net/archives/2009/09/28/simple_puppet_module_structure.php
[2010/03/04 15:41:36] <joe-mac1> that's a resource parameter though, there is also a require keyword that is the same as include but sets order
[2010/03/04 15:41:55] <jbooth> (means I don't have to type it)
[2010/03/04 15:42:00] <joe-mac1> yea so take a look at the 'require' keyword, introduced in late .24 series i think
[2010/03/04 15:42:35] <Stuttergart> ah, I was working from Volcane actually
[2010/03/04 15:43:01] <Stuttergart> so...
[2010/03/04 15:43:22] @ alban2 joined channel #puppet
[2010/03/04 15:43:32] <Stuttergart> shoot
[2010/03/04 15:43:35] <Stuttergart> hold on
[2010/03/04 15:43:36] <Stuttergart> pastebin
[2010/03/04 15:43:38] <jbooth> I don't see why you want include test::run to do the whole thing, that should be an error that tells whoever did it to include test not the ("private") sub classes.
[2010/03/04 15:45:43] <Stuttergart> http://pastebin.org/101334
[2010/03/04 15:46:21] <Stuttergart> I'm shooting for a way to let someone include the base module and have the run state default to install+config+run
[2010/03/04 15:46:50] <Stuttergart> or to do include ::config and get install+config but NOT run
[2010/03/04 15:47:07] <Stuttergart> because there are certain instances where I'd like something installed but not running
[2010/03/04 15:47:33] <Stuttergart> I'm seeing people do this kind of thing with subclasses and virtual resources and realize() too
[2010/03/04 15:48:10] <fzzzt> ugh
[2010/03/04 15:48:14] <fzzzt> can't figure this out
[2010/03/04 15:48:37] <Stuttergart> http://pastebin.org/101339
[2010/03/04 15:48:44] <Stuttergart> I had a typo before
[2010/03/04 15:49:25] <jbooth> classes are not types and thus can't have a require
[2010/03/04 15:49:39] <jbooth> You'd have to require for each type within the class the other one.
[2010/03/04 15:49:54] <jbooth> I'm not sure even that would work though because I don't think require will do auto-includes.
[2010/03/04 15:50:21] <jbooth> That said, I don't see why foo::run can't include foo::config, and why foo::config can't include foo::install. Just make sure you have the requires setup right so the execute in the right order.
[2010/03/04 15:50:30] <joe-mac1> that's not completely true
[2010/03/04 15:50:43] <joe-mac1> as i've said there is a require keyword, that is the same as include but sets order
[2010/03/04 15:51:25] <jbooth> Volcane's example just adds a fourth step and happened to call it the bare "foo" rather than "foo::postrun" or whatever.
[2010/03/04 15:53:14] <Stuttergart> let me step back for just a sec
[2010/03/04 15:53:38] <Stuttergart> perhaps what I'm trying to accomplish, twiddling of run state, is a good idea
[2010/03/04 15:53:46] <Stuttergart> but I'm not doing it in "The Puppet Way"
[2010/03/04 15:53:58] <Stuttergart> ?
[2010/03/04 15:54:09] <Stuttergart> This was just the way that occurred to me
[2010/03/04 15:54:18] <Stuttergart> base class being the root of the module
[2010/03/04 15:54:26] <Stuttergart> and subclasses representing run state
[2010/03/04 15:54:36] @ Quit: spawnyd: Ping timeout: 276 seconds
[2010/03/04 15:55:43] <jbooth> What's your use case of an installed and configured but not running service?
[2010/03/04 15:56:58] <jbooth> Beyond that you can still do it. Pull the text out of class ntp {} and stick it in ntp::run (minus include ntp::run). There's now no difference between include (old-)ntp and include ntp::run.
[2010/03/04 16:10:51] <siert> On Centos5/EPEL i'm missing puppetca?
[2010/03/04 16:13:01] <Volcane> jbooth: puppet is a fine usecase of that - cos it sux so much as a daemon
[2010/03/04 16:13:06] <Volcane> jbooth: install it, configure it, cron it
[2010/03/04 16:15:09] <jamesturnbull> siert: what package did you install?
[2010/03/04 16:15:48] <jamesturnbull> siert: puppet or puppet-server?
[2010/03/04 16:15:51] @ Quit: allsystemsarego: Quit: Leaving
[2010/03/04 16:16:32] @ Quit: pugnacity: Read error: Connection reset by peer
[2010/03/04 16:16:39] <siert> jamesturnbull: my problem; tried to run puppetca on a !puppetserver; thanx anyway
[2010/03/04 16:16:42] @ pugnacity joined channel #puppet
[2010/03/04 16:16:54] <Brownoxford> siert: puppetca comes in the puppet package (not in the puppet-server) package.
[2010/03/04 16:20:11] @ fluxdude3 joined channel #puppet
[2010/03/04 16:20:29] <siert> hm
[2010/03/04 16:20:30] <siert> [root@nagios ~]# rpm -ql puppet\|grep puppetca
[2010/03/04 16:20:30] <siert> [root@nagios ~]#
[2010/03/04 16:20:44] <siert> and on the server
[2010/03/04 16:20:44] <siert> [root@puppetmaster puppet]# rpm -ql puppet-server\|grep sbin/puppetca
[2010/03/04 16:20:45] <siert> /usr/sbin/puppetca
[2010/03/04 16:21:10] <siert> here it comes in the puppet-server package instead of the puppet package
[2010/03/04 16:21:13] <Volcane> what version?
[2010/03/04 16:21:23] <siert> puppet-0.24.8-4.el5
[2010/03/04 16:21:32] <siert> puppet-server-0.24.8-4.el5
[2010/03/04 16:21:33] <Volcane> think it got moved
[2010/03/04 16:22:06] <siert> think I got to get the right documentation first to setup a proof-of-concept; i'm using Centos5/epel
[2010/03/04 16:22:21] <Volcane> puppet 0.24.5 has it in puppet-server
[2010/03/04 16:23:19] <joe-mac1> 25.4 you mean
[2010/03/04 16:23:26] <joe-mac1> ?
[2010/03/04 16:23:39] <Volcane> yeah finger trouble
[2010/03/04 16:23:50] <siert> 0.24.x is legacy isn't it?
[2010/03/04 16:24:11] <Stuttergart> Volcane: yes, puppetmaster etc is a good example
[2010/03/04 16:24:35] <Stuttergart> Volcane: Do you have advice on the best way to twiddle the run state from Puppet?
[2010/03/04 16:24:48] <Volcane> Stuttergart: no its a mess - rc scripts suck
[2010/03/04 16:24:51] <Stuttergart> Some method other than using subclasses?
[2010/03/04 16:25:13] <Volcane> Stuttergart: i can set it to disabled, but u cant keep the daemon-as-started-by-the-rc-script stopped without killing the running daemon etc
[2010/03/04 16:25:26] <Stuttergart> I have a URL for someone who is accomplishing via realize()
[2010/03/04 16:25:41] <Volcane> Stuttergart: i just use the service type to set enabled to false
[2010/03/04 16:30:09] <jbooth> Volcane: Why would you even write puppet::run then? :-P
[2010/03/04 16:30:38] <Volcane> i dont, i jsut have puppet::client::service or something like that
[2010/03/04 16:30:59] @ quannum joined channel #puppet
[2010/03/04 16:31:18] <Volcane> puppet::run and puppet::stop suggests two states for the same thing and you're probably doing it wrong
[2010/03/04 16:31:44] <Volcane> well i guess for ppl who dont really make their classes configurable thats an acceptable thing but my classes are configurable
[2010/03/04 16:32:04] <Volcane> any service and any package has configurable state/ensure/versions etc outside of manifest
[2010/03/04 16:32:21] <joe-mac1> how do you manage that?
[2010/03/04 16:32:26] <Volcane> extlookup
[2010/03/04 16:32:31] <joe-mac1> o, ok
[2010/03/04 16:33:15] <Brownoxford> siert: when you install puppet use "yum --enablerepo=epel-testing install puppet" (or puppet-server)
[2010/03/04 16:33:29] <Brownoxford> That will get you v0.25-4
[2010/03/04 16:35:08] <jbooth> Someone was talking about a nasty bug yesterday in the epel-testing version, just a warning.
[2010/03/04 16:35:12] <elasticdog> I'm trying a switch to Ruby Enterprise Edition, and I'm getting the classic undefined method `closed?' error...any ideas?
[2010/03/04 16:35:19] <Djelibeybi> Brownoxford: 0.25.4 is now in EPEL main.
[2010/03/04 16:36:09] @ Quit: dotNox: Ping timeout: 240 seconds
[2010/03/04 16:36:13] <Brownoxford> Djelibeybi: Good to know. I installed on 3/2 and it was still in epel-testing at that time
[2010/03/04 16:36:20] <jamesturnbull> jbooth: do you know if its logged downstream?
[2010/03/04 16:36:27] <elasticdog> does anyone run Ruby EE with puppet?
[2010/03/04 16:36:35] <jamesturnbull> elasticdog: maybe masterzen?
[2010/03/04 16:36:38] <jbooth> jamesturnbull: no clue. I just saw it scroll by yesterday.
[2010/03/04 16:36:47] <jamesturnbull> elasticdog: I know he tried JRuby at least
[2010/03/04 16:36:55] <jbooth> jamesturnbull: it sounded like likely a distro-packaging-specific problem
[2010/03/04 16:37:03] <jamesturnbull> jbooth: hmm okay will search logs - remember who it was?
[2010/03/04 16:37:14] @ pipegeek joined channel #puppet
[2010/03/04 16:37:16] <elasticdog> jamesturnbull: everything works fine with regular ruby, but I figured since I'm using Phusion, might as well give EE a shot
[2010/03/04 16:37:18] <pipegeek> Hi, folks
[2010/03/04 16:37:23] <ashp> That RSA article on slashdot breaks my mind.
[2010/03/04 16:37:31] <ashp> While guessing the 1,000-plus digits of binary code in a private key would take unfathomable hours, the researchers say that by varying electric current to a secured computer using an inexpensive purpose-built device they were able to stress out the computer and figure out the 1,024-bit private key in about 100 hours – all without leaving a trace.
[2010/03/04 16:37:42] <huggie> 1
[2010/03/04 16:37:49] <huggie> Oops.
[2010/03/04 16:37:52] <fsweetser> those kinds of side channel attacks are actually nothing new
[2010/03/04 16:37:57] <pipegeek> So, the "owner" parameter of the file type is being ... a little too helpful. I want it to set the owner of a certain directory to a uid that doesn't exist, and it's refusing to. Is there a way around this?
[2010/03/04 16:37:59] <fsweetser> they are pretty slick, though =)
[2010/03/04 16:38:06] <ashp> I know but.. varying the current, that's crazy
[2010/03/04 16:38:15] <jmccune> My favorite attack involved measurring cache misses in the CPU. =)
[2010/03/04 16:38:29] <jamesturnbull> jmccune: yeah I know that one
[2010/03/04 16:38:30] @ dotNox joined channel #puppet
[2010/03/04 16:38:31] @ eric0 joined channel #puppet
[2010/03/04 16:38:50] <jamesturnbull> pipegeek: can I ask why?
[2010/03/04 16:39:42] <joe-mac1> i find break ins and cons to be a lot more interesting
[2010/03/04 16:39:48] <joe-mac1> afa computer security goes
[2010/03/04 16:39:48] @ plathrop is now known as plathrop-away
[2010/03/04 16:40:11] <jamesturnbull> joe-mac1: that's about 50-60 of my job
[2010/03/04 16:40:14] <jamesturnbull> joe-mac1: % even
[2010/03/04 16:40:27] <jamesturnbull> joe-mac1: efraud, phishing, generic infras security is the rest
[2010/03/04 16:40:28] <joe-mac1> so you ARE an international jewel thief?
[2010/03/04 16:40:33] <jmccune> jamesturnbull: You make it home OK, or still in SF?
[2010/03/04 16:40:40] <jamesturnbull> joe-mac1: well I play one in the movies
[2010/03/04 16:40:47] <jamesturnbull> jmccune: in SFO until tomorrow night
[2010/03/04 16:41:01] <jamesturnbull> jmccune: then home again, home again, at least until next week :)
[2010/03/04 16:41:03] <pipegeek> jamesturnbull: soytenly. The uid in question is being used as the nfs anonymous uid.
[2010/03/04 16:41:12] <jmccune> jamesturnbull: Cool. Hope you're travels are smooth
[2010/03/04 16:41:14] <jamesturnbull> pipegeek: and it's never going to exist?
[2010/03/04 16:41:20] <pipegeek> jamesturnbull: that's correct.
[2010/03/04 16:41:38] <joe-mac1> jamesturnbull: so, you are into pen testiong or what?
[2010/03/04 16:41:45] <pipegeek> I mean... I suppose there's no reason not to add it
[2010/03/04 16:41:49] <siert> Brownoxford: thx
[2010/03/04 16:41:54] <pipegeek> but it's not a real user, and nothing will ever run as it
[2010/03/04 16:41:58] <joe-mac1> i thought you were general infrastructure ops, not specifically security
[2010/03/04 16:42:03] <jamesturnbull> jmccune: thanks - I mean i am flying in the US so what could go wrong? :)
[2010/03/04 16:42:09] <jamesturnbull> joe-mac1: I run a CERT
[2010/03/04 16:42:40] @ lak joined channel #puppet
[2010/03/04 16:42:47] <pipegeek> jamesturnbull: I mean, I appreciate that puppet is trying to ensure that we do the right thing here, but I'd love the ability to overrule it
[2010/03/04 16:42:49] <joe-mac1> really?
[2010/03/04 16:43:41] @ unxfrek joined channel #puppet
[2010/03/04 16:44:15] <jamesturnbull> pipegeek: its always been my understanding that changing ownership requires the uid exist? or am I wrong... hmmm
[2010/03/04 16:44:18] <jamesturnbull> joe-mac1: really
[2010/03/04 16:44:25] <pipegeek> nope
[2010/03/04 16:44:28] <pipegeek> at least, not outside puppet
[2010/03/04 16:44:44] <jamesturnbull> pipegeek: then you're doing somthing Unix doesn't like not puppet
[2010/03/04 16:44:51] <pipegeek> no
[2010/03/04 16:44:53] <jamesturnbull> pipegeek: so Puppet is sensibly not letting you do it?
[2010/03/04 16:44:56] <pipegeek> I'm doing something unix is fine with
[2010/03/04 16:45:00] <pipegeek> and puppet is stopping me
[2010/03/04 16:45:05] @ Quit: eric0: Quit: leaving
[2010/03/04 16:45:27] @ eric0 joined channel #puppet
[2010/03/04 16:46:58] <jamesturnbull> pipegeek: hmm yes according to POSIX you are right ... what's the error being generated? let me work out where it's coming from
[2010/03/04 16:47:07] <pipegeek> thanks, jamesturnbull
[2010/03/04 16:47:08] <pipegeek> hold on
[2010/03/04 16:47:18] @ fzzzt left channel #puppet ()
[2010/03/04 16:47:25] <pipegeek> Failed to retrieve current state of resource: Could not find user 65534
[2010/03/04 16:47:46] <pipegeek> lemme go grepping through /usr/lib/ruby/site_ruby/1.8/puppet
[2010/03/04 16:47:59] <elasticdog> looks like running puppetd kills puppetmasterd when using Ruby EE...ohhh, well
[2010/03/04 16:48:11] <pipegeek> type/file/owner.rb
[2010/03/04 16:50:02] <pipegeek> heh. I guess I could monkeypatch validuser?
[2010/03/04 16:50:09] <pipegeek> easier just to create the user
[2010/03/04 16:50:16] <jamesturnbull> pipegeek: yeah
[2010/03/04 16:50:26] <pipegeek> but it'd be nice if a future version made that check optional
[2010/03/04 16:51:18] <jamesturnbull> pipegeek: sure - please log a feature request
[2010/03/04 16:51:20] @ Quit: rellis: Remote host closed the connection
[2010/03/04 16:51:22] <pipegeek> okie dokie
[2010/03/04 16:52:03] <jamesturnbull> joe-mac1: I run CERT - cybercrime, efraud, investigations, surveillance, incidement and threat management, pen testing, vuln management, etc - for a Bank
[2010/03/04 16:52:28] <joe-mac1> o i c
[2010/03/04 16:52:30] <Volcane> i blame jamesturnbull when my cuntish bank block my credit card every month
[2010/03/04 16:52:43] <jamesturnbull> Volcane: yes I specifically told them to do that
[2010/03/04 16:52:49] <Djelibeybi> joe-mac1: he also has a cape and mask. :p
[2010/03/04 16:52:56] <jamesturnbull> Djelibeybi: and often no pants
[2010/03/04 16:53:07] @ Quit: quannum:
[2010/03/04 16:53:19] <Volcane> jamesturnbull: you'd think they'd spot that i buy something from american and germany 1st of every month, sigh
[2010/03/04 16:53:21] <Djelibeybi> jamesturnbull: quite so
[2010/03/04 16:53:53] <jamesturnbull> Volcane: dependso n how shit their fraud detection systems is ... sounds shit to me
[2010/03/04 16:54:11] <Volcane> its citywank
[2010/03/04 16:54:24] @ quannum joined channel #puppet
[2010/03/04 16:54:26] <Volcane> completely useless
[2010/03/04 16:54:31] <joe-mac1> lmao
[2010/03/04 16:54:59] <jamesturnbull> ah
[2010/03/04 16:55:04] <jamesturnbull> you should have said
[2010/03/04 16:55:11] <jamesturnbull> find arse, both hands, road map
[2010/03/04 16:55:12] <joe-mac1> "transfer me to james"
[2010/03/04 16:55:21] <Volcane> heh
[2010/03/04 16:55:51] <Djelibeybi> jamesturnbull: not quite the Falcon, is it?
[2010/03/04 16:56:29] <jamesturnbull> Djelibeybi: neither is the Falcon :)
[2010/03/04 16:56:53] <jbooth> jamesturnbull: I really don't, sorry. :-(
[2010/03/04 16:57:02] <Djelibeybi> jamesturnbull: well, I know this vendor that has an Adaptive Risk Manager... ;-)
[2010/03/04 16:57:32] * Volcane 's been teaching his uni grad java coder the joys of ruby
[2010/03/04 16:57:39] <tessier> if $hostname != "officefw" && $hostname != "spamblock3"
[2010/03/04 16:57:43] <tessier> is that legal in puppet?
[2010/03/04 16:57:56] <tessier> maybe I need and instead of &&
[2010/03/04 16:59:35] <jamesturnbull> jbooth: no matter I'll find it - thanks
[2010/03/04 17:00:05] <jamesturnbull> tessier: wiki:LanguageTutorial
[2010/03/04 17:00:06] <gepetto> jamesturnbull: tessier: wiki:LanguageTutorial is http://reductivelabs.com/trac/puppet/wiki/LanguageTutorial
[2010/03/04 17:00:13] <tessier> Thanks
[2010/03/04 17:00:47] <JD_> Volcane: they're not a proper java developer
[2010/03/04 17:00:48] @ tjoe joined channel #puppet
[2010/03/04 17:00:54] <JD_> Volcane: uni java != java
[2010/03/04 17:01:17] * Volcane knows
[2010/03/04 17:01:35] <JD_> puppetmasterd[29176]: Denying access: Forbidden request: seoss.catnip.org.uk(81.187.182.237) access to /certificate_revocation_list/ca [find] at line 0
[2010/03/04 17:01:48] <JD_> anyone know what config I have wrong for that?
[2010/03/04 17:02:00] <JD_> I'm running nginx and mongrel
[2010/03/04 17:02:10] @ Quit: biertie: Ping timeout: 264 seconds
[2010/03/04 17:02:27] <jamesturnbull> JD_: version?
[2010/03/04 17:02:35] <JD_> 0.25.1
[2010/03/04 17:02:54] <jamesturnbull> JD_: auth.conf
[2010/03/04 17:03:33] @ Quit: rgsteele: Remote host closed the connection
[2010/03/04 17:03:37] <JD_> http://pastie.org/854626
[2010/03/04 17:05:39] @ Quit: uphillian: Quit: Leaving.
[2010/03/04 17:07:54] @ Quit: lak: Quit: lak
[2010/03/04 17:09:58] @ Brownoxford is now known as Brown\|afk
[2010/03/04 17:10:05] @ biertie joined channel #puppet
[2010/03/04 17:10:14] @ Quit: Djelibeybi: Quit: Leaving
[2010/03/04 17:10:36] @ Djelibeybi joined channel #puppet
[2010/03/04 17:11:16] @ Quit: afletcher: Quit: afletcher
[2010/03/04 17:13:46] <JD_> also, anyone have any idea about "puppetmasterd[29130]: PGError: server closed the connection unexpectedly#012#011This probably means the server terminated abnormally#012#011before or while processing the request.#012: SELECT * FROM "hosts" WHERE ("hosts"."name" = E'seoss.catnip.org.uk') LIMIT 1"
[2010/03/04 17:13:47] <gepetto> JD_: also: #012 is http://projects.reductivelabs.com/issues/show/012 "Puppet - Feature #12: Support processes in addition to services - ReductiveLabs.com"
[2010/03/04 17:14:01] <JD_> gepetto: you're not very bright are you
[2010/03/04 17:14:24] @ Quit: Stuttergart: Quit: Leaving
[2010/03/04 17:15:26] @ Quit: tjoe: Quit: leaving
[2010/03/04 17:16:22] @ joe-mac1 left channel #puppet ()
[2010/03/04 17:17:20] @ Quit: swygue: Quit: Ex-Chat
[2010/03/04 17:17:33] @ Quit: shenson: Quit: /me taps out
[2010/03/04 17:21:24] <jamesturnbull> JD_: that sounds like - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=568379
[2010/03/04 17:21:32] @ Quit: eidolon: Quit: Leaving.
[2010/03/04 17:21:48] <jamesturnbull> JD_: I don't believe that has been logged upstream though - hacim might know though
[2010/03/04 17:22:32] <jmccune> jmccune: #2244
[2010/03/04 17:22:33] <gepetto> jmccune: #2244 is http://projects.reductivelabs.com/issues/show/2244 "Puppet - Bug #2244: pluginsync fails when no source is available - ReductiveLabs.com"
[2010/03/04 17:23:30] <axisys> anyone here can help me with passenger? i am trying to find out where does passenger tells puppetmasterd to run as `nobody'
[2010/03/04 17:23:43] <axisys> s/teels/tell/
[2010/03/04 17:23:45] <Volcane> did u read the reply to your email on the list?
[2010/03/04 17:23:51] <axisys> s/tells/tell/
[2010/03/04 17:24:09] <\|Mike\|> axisys: distro/os?
[2010/03/04 17:25:39] <axisys> Volcane: his answer did not work for me.. my config.ru is root:root
[2010/03/04 17:25:53] <axisys> \|Mike\|: ubuntu
[2010/03/04 17:25:55] <Volcane> did u try setting it to puppet?
[2010/03/04 17:26:05] <eric0> what does apache run as? if its already dropped privs when it spawns passenger i'm not sure it'll be allowed to setuid again.
[2010/03/04 17:26:08] <axisys> Volcane: no
[2010/03/04 17:26:19] <axisys> eric0: www-data
[2010/03/04 17:26:42] <Volcane> axisys: so you dont know if it worked?
[2010/03/04 17:27:27] <axisys> Volcane: config.ru is owned by root.. but we found out puppetmasterd is running as nobody
[2010/03/04 17:28:03] <Volcane> axisys: so you dont know if it worked?
[2010/03/04 17:28:04] @ Quit: ricky: Quit: Rebooting
[2010/03/04 17:28:34] <JD_> jamesturnbull: I'm pretty sure it's an activerecord/postgresql driver issue
[2010/03/04 17:28:35] <jmccune> Can directories in the modulepath not contain -'s ?
[2010/03/04 17:30:28] <jmccune> Yep... Looks like it. If I have /var/lib/puppet/ntst-puppet/modules, it can't find "dispatch" but if I symlink /var/lib/puppet/modules to the same directory and then remove the "ntst-puppet" part, autoloading works fine...
[2010/03/04 17:30:32] <axisys> Volcane: you are absolutely right.. i did not know that it worked.. so followed his steps and now puppetmasterd is running as puppet
[2010/03/04 17:30:35] <axisys> Volcane: http://pastie.org/854667
[2010/03/04 17:32:48] <Volcane> :)
[2010/03/04 17:33:37] @ _elmata_ joined channel #puppet
[2010/03/04 17:33:55] @ OpenMedia joined channel #puppet
[2010/03/04 17:34:33] <axisys> Volcane: moved all the privs /etc/puppet /var/lib/puppet /var/log/puppet back to user/group puppet and all back to before and working! thanks
[2010/03/04 17:35:31] @ ricky joined channel #puppet
[2010/03/04 17:36:04] <axisys> Volcane: now I need to look into how to improve the terminate class with list of users in Array format
[2010/03/04 17:36:06] <quannum> hey guys, is this Apache2 on Debian recipe [http://reductivelabs.com/trac/puppet/wiki/Recipes/DebianApache2Recipe] still valid, or is there a more recent one somewhere else? I'm getting what appears to be scoping issues with the Exec() call when notify is triggered in the site definition.
[2010/03/04 17:36:14] @ Quit: RageLink: Ping timeout: 265 seconds
[2010/03/04 17:37:36] @ Quit: labrown: Quit: Leaving
[2010/03/04 17:38:02] <pheezy> Is the formatting supposed to be all broken on the wiki? It's like the stylesheet is missing.
[2010/03/04 17:38:55] <JD_> also, does anyone have suitable runs to make puppet realise the difference between an manually run puppet and a puppet started by an init.d?
[2010/03/04 17:39:25] <Volcane> JD_: i guess you can set a fact in the init script?
[2010/03/04 17:40:21] <Volcane> in theory just setting FACTER_foo=bar in /etc/sysconfig/puppet will do it
[2010/03/04 17:40:28] <Volcane> on redhat anyway
[2010/03/04 17:41:05] <JD_> Volcane: hmmm
[2010/03/04 17:43:05] <JD_> Volcane: I just realised that's not really going to do the right thing
[2010/03/04 17:43:25] <JD_> ideally I want the manual puppet to stop the service if it's running
[2010/03/04 17:43:41] <Volcane> ah, no thats a different story :)
[2010/03/04 17:43:44] <JD_> yeah
[2010/03/04 17:43:53] <JD_> currently it keeps thinking the service is running
[2010/03/04 17:43:59] <JD_> so keeps trying to stop it
[2010/03/04 17:44:06] <Volcane> nods, its pants - thats also why i run fron cron
[2010/03/04 17:44:25] <JD_> yeah, I'm running from cron
[2010/03/04 17:44:27] <Volcane> but thats a rc script issue, it should only kill the daemon that matches the pid it started
[2010/03/04 17:44:40] <Volcane> and if you;re running some other puppetd it should leave it alone
[2010/03/04 17:45:14] <JD_> Volcane: the problem is that the manual puppet run sees a process called puppetd (itself) thinks that's the service, and tries to stop the service
[2010/03/04 17:45:17] <JD_> every time it is run
[2010/03/04 17:47:50] <Volcane> JD_: well on redhat i set it that it has a status option on the script and that doesnt help either
[2010/03/04 17:48:04] <Volcane> JD_: which you'd think wouold work but no luck
[2010/03/04 17:48:55] <pheezy> Anyone can help me with this? I'm trying to write some puppet to boostrap a new puppet master: http://pastie.org/854694
[2010/03/04 17:49:14] @ gebi joined channel #puppet
[2010/03/04 17:53:48] <pheezy> hmm ok i forgot a colon after $services :X
[2010/03/04 17:56:39] @ Quit: Demosthenes: Ping timeout: 240 seconds
[2010/03/04 17:58:57] @ Demosthenes joined channel #puppet
[2010/03/04 17:59:13] @ Quit: jmccune: Remote host closed the connection
[2010/03/04 18:00:44] @ Quit: unxfrek: Quit: Leaving
[2010/03/04 18:00:49] @ Quit: malraid: Quit: malraid
[2010/03/04 18:03:10] @ Quit: giskard: Remote host closed the connection
[2010/03/04 18:05:51] @ fredden joined channel #puppet
[2010/03/04 18:05:59] <fredden> hello all
[2010/03/04 18:06:20] <fredden> I've some nodes which aren't updating. I've found this in the logs: Could not run Puppet::Network::Client::Master: Too many open files - /var/puppet/state/puppetdlock
[2010/03/04 18:06:37] <fredden> but a manual run is fine
[2010/03/04 18:07:36] @ gaveen joined channel #puppet
[2010/03/04 18:10:38] <\ask> hmn - one (and just one) of my puppet clients gives me this error: "(/File[/var/lib/puppet/lib]) Failed to retrieve current state of resource: Could not retrieve information from source(s) puppet://puppet.la.sol/plugins "
[2010/03/04 18:10:43] <\ask> (it's a new client)
[2010/03/04 18:10:58] <\ask> any ideas? I tried purging everything but the ssl keys from /var/lib/puppet
[2010/03/04 18:11:04] <\ask> (0.24.8)
[2010/03/04 18:12:15] @ Quit: mvn071: Quit: Leaving
[2010/03/04 18:12:22] <\|Mike\|> it has nothing to do with your ssl certs imho.
[2010/03/04 18:13:45] @ buffalo joined channel #puppet
[2010/03/04 18:15:18] @ Quit: vermeer__: Ping timeout: 265 seconds
[2010/03/04 18:15:58] @ Quit: jasonb365: Ping timeout: 264 seconds
[2010/03/04 18:18:04] @ Quit: pheezy: Remote host closed the connection
[2010/03/04 18:18:06] @ Quit: biertie: Remote host closed the connection
[2010/03/04 18:20:13] @ PhabX joined channel #puppet
[2010/03/04 18:20:59] @ Quit: notbrien: Quit: notbrien
[2010/03/04 18:21:34] <fredden> anyone seen the "Too many open files" problem, or have any hints?
[2010/03/04 18:21:42] <khadrin> what is the right way to do this: http://pastie.org/854751
[2010/03/04 18:21:55] @ Quit: andrewh: Remote host closed the connection
[2010/03/04 18:22:14] <\|Mike\|> fredden: lsof ?
[2010/03/04 18:22:34] <\|shad0w\|> likely ulimit issues with the user the prog is running under
[2010/03/04 18:22:45] <\|Mike\|> \|shad0w\|: exactly
[2010/03/04 18:23:00] <fredden> thanks \|Mike\| and \|shad0w\|. will check both of these
[2010/03/04 18:23:25] <\ask> \|Mike\|: yeah, I didn't think it was the SSL certificates either (since it seems to otherwise talk to the puppetmaster fine). But that doesn't help me figure out what it is that's wrong. :-)
[2010/03/04 18:23:46] @ Quit: quannum: Ping timeout: 248 seconds
[2010/03/04 18:24:16] <\|Mike\|> \ask: i'm not familair with plugins, i can't help you with this issue.
[2010/03/04 18:24:38] @ biertie joined channel #puppet
[2010/03/04 18:27:08] <fredden> \|shad0w\|, puppet runs as root. \|Mike\|, lsof shows /lots/ of TCP connections to the puppetmaster
[2010/03/04 18:27:25] <\|Mike\|> fredden: are you using ruby from backports by accident?
[2010/03/04 18:28:08] <fredden> hmm... don't think so. will check now
[2010/03/04 18:28:16] <fredden> yes, this is a debian box btw
[2010/03/04 18:28:39] <\|shad0w\|> fredden, what are the contents of /proc/sys/fs/file-max
[2010/03/04 18:28:54] <\|Mike\|> fredden: gosh, as i could smell it :P
[2010/03/04 18:29:08] <fredden> ruby is 4.2: current stable for lenny
[2010/03/04 18:29:32] <fredden> (I'm not a debian fan, but it's what I have to work with at the moment.)
[2010/03/04 18:30:01] <\|Mike\|> there might be a bug report filed about above bug fredden
[2010/03/04 18:30:08] <\|Mike\|> fredden: you use mysql to store configs right?
[2010/03/04 18:30:31] <fredden> \|Mike\|, sysctl reports: fs.file-max = 205520
[2010/03/04 18:31:13] <fredden> am not sure; puppetmaster uses flat files, and the puppet clients just have a server line in their config
[2010/03/04 18:31:19] @ Quit: buffalo: Read error: Connection timed out
[2010/03/04 18:31:28] <\|Mike\|> hmz.
[2010/03/04 18:32:00] @ Quit: kaptk2: Quit: Leaving.
[2010/03/04 18:32:03] * fredden nods
[2010/03/04 18:32:15] <khadrin> im i way off base to map "class" to "machine role" in my mental model?
[2010/03/04 18:32:26] <khadrin> am, heh
[2010/03/04 18:32:41] @ Quit: TREllis: Quit: leaving
[2010/03/04 18:32:54] @ swygue joined channel #puppet
[2010/03/04 18:33:11] <fredden> khadrin, that's how I think of it
[2010/03/04 18:33:25] <fredden> each box can have many roles
[2010/03/04 18:33:41] <\|Mike\|> modules you mean ? ;)
[2010/03/04 18:33:50] <khadrin> but then wouldn't my paste (http://pastie.org/854751) seem perfectly natural?
[2010/03/04 18:34:09] <khadrin> thats why i think my model might be off
[2010/03/04 18:34:48] <khadrin> in other words two dif roles that both happen to need a subversion client installed
[2010/03/04 18:35:21] <khadrin> virtual resources is one solution, but not sure it is the right one
[2010/03/04 18:35:40] <fredden> khadrin, I have a "base" class/module/role which all boxen have. things like svn, htop, strace, screen all live in base
[2010/03/04 18:37:43] <khadrin> fredden, interesting. subversion might reasonably be something that everything will need
[2010/03/04 18:37:51] @ Quit: bobbyz: Read error: Operation timed out
[2010/03/04 18:37:54] @ Quit: alfism: Quit: alfism
[2010/03/04 18:38:20] <khadrin> im sure there is something that like two boxen would need _and_ that i would happen to want both of on one box though
[2010/03/04 18:38:29] @ kolla_ joined channel #puppet
[2010/03/04 18:38:54] <khadrin> make a couple of different services that both need apache2
[2010/03/04 18:39:06] <khadrin> but dont think i would want all boxen to have apache2 installed
[2010/03/04 18:39:26] <fredden> then have an apache2 class and have those services inherit from it
[2010/03/04 18:39:28] <fredden> works here
[2010/03/04 18:40:15] <fredden> we have a "web" class, which is never included; and "web-live" and "web-dev" classes which inherit from "web". Some boxen have both, others have only one
[2010/03/04 18:41:44] <khadrin> thanks for the suggestion, thinking about it
[2010/03/04 18:42:23] <fredden> just have to remember not to include "web", but inherit
[2010/03/04 18:44:15] <khadrin> but you could include "web-live" and "web-dev" on one node?
[2010/03/04 18:44:37] <fredden> yep
[2010/03/04 18:45:24] <fredden> I think it works because the package{apache} stuff lives in the "web" namespace, whereas in your paste there are duplicate package{svn} entries in different namespaces
[2010/03/04 18:45:56] <fredden> but that's just my guess, am happy to be corrected / learn the real ways
[2010/03/04 18:46:36] <fredden> \|Mike\|, looks like there are 620 TCP connections to the puppetmaster in CLOSE_WAIT state
[2010/03/04 18:46:44] <fredden> could that be related?
[2010/03/04 18:48:10] <khadrin> fredden, gotta run, thanks for the ideas
[2010/03/04 18:48:18] <fredden> np khadrin
[2010/03/04 18:48:22] <fredden> good luck :)
[2010/03/04 18:48:37] @ Quit: khadrin: Quit: Ex-Chat
[2010/03/04 18:49:30] @ Quit: gebi: Ping timeout: 252 seconds
[2010/03/04 18:53:22] @ Quit: tonyskapunk: Quit: Leaving
[2010/03/04 18:57:53] @ Quit: ahasenack: Quit: Leaving
[2010/03/04 18:58:54] <tessier> How do most people deploy puppet as part of their kickstart? I have puppetd run on first reboot but unfortunately the hostname is not set at that time so it submits a key with name localhost.localdomain to the puppetmaster.
[2010/03/04 18:59:52] <Volcane> why dont you set a hostname in your kickstart?
[2010/03/04 19:00:02] <tessier> How would the hostname know what to set it to?
[2010/03/04 19:00:05] <tessier> er..kickstart
[2010/03/04 19:00:30] <Volcane> whatever generates your kickstart tells it, and usually if that doesnt know if uses the ptr
[2010/03/04 19:01:06] <tessier> Nothing generates the kickstart. We have one kickstart that we use to install everything. It DHCP's the IP address so PTR won't work.
[2010/03/04 19:01:30] <tessier> I could assign it a static IP before doing the kickstart but then I have to edit the kickstart file to use the right IP every time.
[2010/03/04 19:01:43] <kjetilho> I prefer to use static DHCP
[2010/03/04 19:01:55] <Volcane> then i guess u just have to arrange your first puppet run after you've done the basic setup of your server
[2010/03/04 19:02:05] <kjetilho> doesn't work so well if you've got lots and lots of subnets though
[2010/03/04 19:02:07] <Volcane> its like, install a harddrive, then copy files on it
[2010/03/04 19:02:07] <tessier> Volcane: Yeah, that's what I was thinking too.
[2010/03/04 19:02:13] <Volcane> configure your server, then run puppet
[2010/03/04 19:02:30] <tessier> That leaves open the possibility of forgetting to run puppet but it may be the best I can do.
[2010/03/04 19:02:51] <Volcane> i think your fault is installing machines without hostnames set
[2010/03/04 19:04:19] <tessier> kjetilho: To do static dhcp you have to tell the dhcp server the mac address right?
[2010/03/04 19:04:36] <kjetilho> yes
[2010/03/04 19:05:03] @ Quit: PhabX: Quit: leaving
[2010/03/04 19:05:18] <kjetilho> these days it's usually beepable on the carton
[2010/03/04 19:05:58] @ Quit: jab_doa: Quit: Verlassend
[2010/03/04 19:06:22] <tessier> For better or worse, our virtual machines come without a carton.
[2010/03/04 19:06:53] <Volcane> how do you set its hostname usually?
[2010/03/04 19:07:24] <kjetilho> virtual hosts is even easier :)
[2010/03/04 19:13:41] @ sijis is now known as sijis_afk
[2010/03/04 19:14:15] @ Quit: rcrowley: Quit: rcrowley
[2010/03/04 19:15:21] @ Quit: _elmata_: Ping timeout: 252 seconds
[2010/03/04 19:16:28] @ _elmata_ joined channel #puppet
[2010/03/04 19:18:36] @ alfism joined channel #puppet
[2010/03/04 19:21:57] @ Quit: fluxdude3: Ping timeout: 252 seconds
[2010/03/04 19:30:33] @ mpdehaan joined channel #puppet
[2010/03/04 19:31:13] @ plathrop-away is now known as plathrop
[2010/03/04 19:31:24] @ Quit: mpdehaan: Client Quit
[2010/03/04 19:31:55] @ Quit: darkseed: Read error: Operation timed out
[2010/03/04 19:35:54] @ darkseed joined channel #puppet
[2010/03/04 19:39:53] @ jasonb365 joined channel #puppet
[2010/03/04 19:41:30] @ Quit: nigelk: Quit: nigelk
[2010/03/04 19:41:47] @ Quit: jasonb365: Client Quit
[2010/03/04 19:43:49] @ binarydigit joined channel #puppet
[2010/03/04 19:44:33] <binarydigit> is it just me or is the site being cranky?
[2010/03/04 19:44:46] <fredden> which site?
[2010/03/04 19:44:54] <binarydigit> http://puppet.reductivelabs.com
[2010/03/04 19:45:25] <binarydigit> documentation link seems to not be loading or just taking a really long time
[2010/03/04 19:46:09] <fredden> does seem a little sluggish here actually
[2010/03/04 19:50:43] @ Quit: darkseed: Ping timeout: 256 seconds
[2010/03/04 19:50:59] @ darkseed joined channel #puppet
[2010/03/04 19:52:04] @ cabernet joined channel #puppet
[2010/03/04 19:52:43] <cabernet> Hi folks, is there a difference between specifying 'name' and 'path' in a file resource?
[2010/03/04 19:52:59] @ cabernet is now known as Brownoxford
[2010/03/04 19:53:15] @ Quit: cwebber: Quit: cwebber
[2010/03/04 19:54:39] @ Quit: jaredrhine: Ping timeout: 245 seconds
[2010/03/04 19:55:29] @ sebas891 joined channel #puppet
[2010/03/04 20:05:05] <fredden> Brownoxford, yes. one is "name" and the other "path".
[2010/03/04 20:05:12] <Brownoxford> hah.
[2010/03/04 20:05:13] <Brownoxford> okay
[2010/03/04 20:05:18] <fredden> AFAIK if path is unset, it'll use name
[2010/03/04 20:05:23] <fredden> but I don't know the details
[2010/03/04 20:06:01] <fredden> All my puppet clients are on the same os, so we exclusively use "name"
[2010/03/04 20:06:23] <Brownoxford> hmm. apparently 'path' is the namevar for the file resource type... I don't even see 'name' listed in the resource docs.
[2010/03/04 20:06:25] <fredden> but there's a good use-case for using path in the docs
[2010/03/04 20:07:16] @ mpdehaan joined channel #puppet
[2010/03/04 20:07:17] <fredden> ah, I thought name was the /etc/make.conf part here: file { "/etc/make.conf": ensure => present}
[2010/03/04 20:07:30] @ afletcher_ joined channel #puppet
[2010/03/04 20:07:47] <Brownoxford> hmm. I believe that's the 'title', which is assigned to the namevar for whatever resource you are defining
[2010/03/04 20:08:01] <fredden> ah, then you're way ahead of me Brownoxford
[2010/03/04 20:08:14] <Brownoxford> heh. I only know enough to be dangerous at this point :)
[2010/03/04 20:08:25] <fredden> :)
[2010/03/04 20:08:47] <fredden> file { "/": ensure => absent, }
[2010/03/04 20:08:57] <Brownoxford> !
[2010/03/04 20:14:20] @ Quit: mpdehaan: Quit: mpdehaan
[2010/03/04 20:14:25] <whack> you probably need recurse and force and backup => false
[2010/03/04 20:14:29] <whack> shifty eyes
[2010/03/04 20:14:39] <Brownoxford> hang on, lemme test
[2010/03/04 20:14:43] <Brownoxford> :P
[2010/03/04 20:16:09] <fredden> aha, looks like named has half as many open connections to the puppetmaster as puppetd...
[2010/03/04 20:17:09] @ Quit: artista_frustrad: Ping timeout: 245 seconds
[2010/03/04 20:17:10] <fredden> no idea why named should have /any/ connections open...
[2010/03/04 20:17:59] @ Quit: artista-frustrad: Ping timeout: 245 seconds
[2010/03/04 20:20:05] <Brownoxford> Is there a command to have a puppet client immediately pick up changes on the master?
[2010/03/04 20:24:12] <Brownoxford> (besides restarting the daemon)
[2010/03/04 20:26:19] <Djelibeybi> Brownoxford: look into puppetrun. It's a way of triggering a client run from the master.
[2010/03/04 20:26:35] @ ericlee joined channel #puppet
[2010/03/04 20:29:21] @ Quit: IronChef: Ping timeout: 245 seconds
[2010/03/04 20:36:52] @ Quit: kubicek: Quit: kubicek
[2010/03/04 20:38:18] <fredden> Brownoxford, I use "puppetd --test"
[2010/03/04 20:44:09] <binarydigit> it's pretty odd the puppet rpm thats bundled with EPEL doesn't have a requirement for ruby-rdoc package
[2010/03/04 20:48:11] @ buffalo joined channel #puppet
[2010/03/04 20:51:55] @ Quit: \ask: Remote host closed the connection
[2010/03/04 20:53:15] @ Quit: msf: Ping timeout: 252 seconds
[2010/03/04 20:56:02] @ tjoe joined channel #puppet
[2010/03/04 21:01:19] @ jaredrhine joined channel #puppet
[2010/03/04 21:02:08] @ Quit: rmiller4pi8: Ping timeout: 265 seconds
[2010/03/04 21:05:26] @ HouseAway is now known as DrHouseMD
[2010/03/04 21:09:34] @ joe-mac joined channel #puppet
[2010/03/04 21:11:46] @ alexine_dsouza joined channel #puppet
[2010/03/04 21:16:33] @ Quit: Djelibeybi: Quit: Leaving
[2010/03/04 21:17:39] <Brownoxford> anyone have advice for configuring password aging on CentOS?
[2010/03/04 21:17:59] <Brownoxford> I'm thinking exec/unless, but not sure how to configure the unless part
[2010/03/04 21:18:54] @ bodepd left channel #puppet ()
[2010/03/04 21:24:23] <fredden> could anyone help me with some strace output interpretation?
[2010/03/04 21:24:55] @ Quit: gaveen: Quit: Leaving
[2010/03/04 21:25:09] <fredden> stracing a puppetd which has around 1020 CLOSE_WAIT connections to the puppetmaster, shows streams of these:
[2010/03/04 21:25:12] <fredden> select(4, [3], [], [], {0, 12000}) = ? ERESTARTNOHAND (To be restarted)
[2010/03/04 21:25:19] @ msf joined channel #puppet
[2010/03/04 21:25:35] <fredden> lsof says FD3 is a "pipe" but I'm not sure where to look next
[2010/03/04 21:25:39] <fredden> a pipe where?
[2010/03/04 21:30:58] @ Quit: dirkD: Ping timeout: 264 seconds
[2010/03/04 21:34:09] @ pugnacity1 joined channel #puppet
[2010/03/04 21:34:10] @ Quit: pugnacity: Read error: Connection reset by peer
[2010/03/04 21:39:12] @ rcrowley joined channel #puppet
[2010/03/04 21:40:01] @ Quit: swygue: Quit: Ex-Chat
[2010/03/04 21:48:40] @ OpenMedia left channel #puppet ()
[2010/03/04 21:57:21] @ Quit: alfism: Quit: http://opensolaris.com/
[2010/03/04 21:59:36] @ Djelibeybi joined channel #puppet
[2010/03/04 22:18:24] @ Quit: eshamow: Quit: eshamow
[2010/03/04 22:20:04] @ Quit: _elmata_: Ping timeout: 245 seconds
[2010/03/04 22:20:45] @ khadrin joined channel #puppet
[2010/03/04 22:22:02] <khadrin> is there a way to concatenate two arrays into a new var? something like: $foo = ["one", "two"] + ["three"]
[2010/03/04 22:23:31] <Djelibeybi> khadrin: +>
[2010/03/04 22:23:52] <Djelibeybi> $foo = ['one', 'two'] +> 'three';
[2010/03/04 22:24:17] <khadrin> yea? sweet will try that
[2010/03/04 22:24:39] <khadrin> had convinced myself that only worked with sub scopes
[2010/03/04 22:27:14] <khadrin> Djelibeybi, does that syntax only work in puppet > 0.24.8 ?
[2010/03/04 22:27:58] <Djelibeybi> khadrin: no idea. Never actually used it in real life. :)
[2010/03/04 22:30:13] @ Quit: Brownoxford: Quit: Brownoxford
[2010/03/04 22:33:11] @ _elmata_ joined channel #puppet
[2010/03/04 22:34:00] <khadrin> hmm seems like split isnt available either
[2010/03/04 22:36:55] <khadrin> hmm so split was added in 0.25
[2010/03/04 22:37:38] @ _elmata_ is now known as RageLink
[2010/03/04 22:39:09] @ Quit: rcrowley: Quit: rcrowley
[2010/03/04 22:40:22] <khadrin> Djelibeybi, http://pastebin.com/76kXiw2P
[2010/03/04 22:40:44] <khadrin> doesn't seem to work like that, at least in 0.24.8
[2010/03/04 22:41:39] <Djelibeybi> khadrin: there is a way, I'm just not finding it right now.
[2010/03/04 22:41:49] <khadrin> i have used it elsewere though, such as $foo = ["one", "two"]; class { $foo +> ["three"] }
[2010/03/04 22:42:30] <Djelibeybi> khadrin: try += instead of +>
[2010/03/04 22:45:20] <khadrin> http://pastebin.com/kLRY7BTH
[2010/03/04 22:46:03] <khadrin> sorta makes sense. += looks like a special append to self operator
[2010/03/04 22:47:33] <khadrin> anyway, figure i have a couple work-arounds
[2010/03/04 22:47:41] <khadrin> either make a new scope and use +=
[2010/03/04 22:48:08] <khadrin> or grab split() from 0.25 and concat strings then split
[2010/03/04 22:48:20] <khadrin> thanks for the help!
[2010/03/04 22:50:39] <Djelibeybi> khadrin: no worries
[2010/03/04 22:51:54] @ Quit: khadrin: Quit: Leaving
[2010/03/04 22:52:03] @ Quit: Disconnect: Ping timeout: 256 seconds
[2010/03/04 22:52:54] @ Disconnect joined channel #puppet
[2010/03/04 22:54:20] @ \ask joined channel #puppet
[2010/03/04 23:00:03] @ RageLink left channel #puppet ("Leaving")
[2010/03/04 23:09:55] @ Quit: \ask: Remote host closed the connection
[2010/03/04 23:12:20] @ sijis_afk is now known as sijis
[2010/03/04 23:25:16] @ Quit: fredden: Quit: Leaving
[2010/03/04 23:32:44] @ Quit: strattog: Read error: Operation timed out
[2010/03/04 23:33:11] @ strattog joined channel #puppet
[2010/03/04 23:36:04] @ pheezy joined channel #puppet
[2010/03/04 23:36:10] @ lak joined channel #puppet
[2010/03/04 23:40:04] @ rmiller4pi8 joined channel #puppet
[2010/03/04 23:44:59] @ plathrop is now known as plathrop-away

Generated by irclog2html.py 2.6 by Marius Gedminas - find it at mg.pov.lt!