Re: Merge Opportunities Report - 2020-10-19

[Rafael David Tinoco]

But IMHO we should have them in a separate category down below in the 
mail.
That way we'd be aware, but in 99% I'd expect that a week after the 
auto-sync starts again those will be gone.


Yes. I prefer to have those in a separate list as well (if possible).

Thanks!-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

2020-09-15 (Tuesday): Wednesday triage

[Rafael David Tinoco]

Alright, this is my last wednesday triage for now (at least for the
next 6 months or so). Sergio is kindly replacing me in the wednesday
bug triage. Here it goes:

$ ustriage --fullurls 2020-09-15
Ubuntu Server Bug List
Team 'ubuntu-server' currently subscribed to 427 bugs
---
Bugs last updated on 2020-09-15 (Tuesday)
Date range identified as: "Wednesday triage"
Found 19 bugs

https://pad.lv/1895647 - (New)[containerd] -
containerd-shim deadlocks, then crashes

=> I asked for a reproducer and moved to invalid
=> Bug is likely valid, but the strace output might not help much
=> Having a reproducer is the best here (reporter said he can
reproduce it at will)

---
Bugs tagged 'server-next' and not touched in 60 days
Found 0 bugs

---
Bugs in backlog and not touched in 180 days
Found 1 bugs
https://pad.lv/1689833 - (Triaged)[openvpn]- OpenVPN
server does not start properly on boot

=> @racb, last comment mentions you added a card to issues like this one
=> it turns out that ifupdown might need a trigger for openvpn to bind
correct IPs
=> is this something you had time to dig into and lost track ?
=> just ignore this if it is something we should still have in our
queue, thanks!

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Bugs last updated on 2020-09-08 (Tuesday) - Wednesday Triage

[Rafael David Tinoco]

Ubuntu Server Bug List
Team 'ubuntu-server' currently subscribed to 423 bugs
---
Bugs last updated on 2020-09-08 (Tuesday)
Date range identified as: "Wednesday triage"
Found 20 bugs

https://pad.lv/1890491 - (In Progress)[pacemaker]  - A
pacemaker node fails monitor (probe) and stop /start operations on a
resource because it returns rc=189
=> niedbalski almost finished SRU, will get back to me when he is done
(for review)

https://pad.lv/1894879 - (New)[haproxy]- frequent
crashes when using do-resolve()
=> did a SRU code review and +1'ed the patches suggested
=> asked feedback about production tests mentioned
=> we should sponsor this SRU as soon as feedback is given

https://pad.lv/1894899 - (New)[samba]  - smbd with
obey pam restrictions enabled unmounts my interactive users' ecryptfs
home directory
=> tried to understand what could be happening here (session being closed)
=> asked for more information regarding PAM config files
=> flagged as incomplete and asked to be put as new again

---
Bugs tagged 'server-next' and not touched in 60 days
Found 0 bugs

---
Bugs in backlog and not touched in 180 days
Found 0 bugs

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Re: Bug triage report for 2020-09-08 (Tuesday triage)

[Rafael David Tinoco]

> The reporter is correct in that this comes up every now and then.
> GlusterFS is very popular with samba clustering (CTDB) setups. Would
> it be worth it to add a delta with debian and create a new binary
> package for just the glusterfs vfs module and place that in universe?
>

I like the idea @ahasenack, if you have bandwidth for that... or at
least to keep this in the backlog...

In my previous discourse doc:

https://discourse.ubuntu.com/t/ctdb-create-a-3-node-nfs-ha-backed-by-a-clustered-filesystem/11608

I even talked about CTDB + NFS HA and quoted GlusterFS as an example:

"""
SUMMARY

2 x clustered filesystem servers (could be GlusterFS servers)
3 x nodes as clients to this Clustered Filesystem
The 3 NFS nodes will act as clients to Clustered FS
The 3 NFS nodes will act as servers for NFS service
The NFS service will be High Available among all 3 nodes
NFS clients can DNS load balance among the 3 x NFS servers
If 1 NFS server goes down, the other NFS server will act on its behalf
All NFS servers will serve the SAME FILESYSTEM
CTDB lock file MUST reside in a clustered filesystem directory
"""

Just checked and we're synced with Debian in 8.1-1 for GlusterFS.

I'm +1 as I have always liked GlusterFS =).

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Bug triage report for 2020-09-01 (Wednesday Triage)

[Rafael David Tinoco]

Team 'ubuntu-server' currently subscribed to 417 bugs
Bugs last updated on 2020-09-01 (Tuesday)
Date range identified as: "Wednesday triage"
Found 15 bugs

https://pad.lv/1887943 - *(Triaged)   [memcached]  - [SRU] TLS
is not enabled for memcached>=1.5.13
> @bryce helped end user to merge feature in Debian (salsa)
> @bryce seems to be helping end user to do the SRU (@groovy has feature
merged already)

https://pad.lv/1893274 - (New)[python-certbot] - Certbot
will stop working for 23,847 users with upcoming Let's Encrypt
deprecation
> looks like @racb and @ebportnoy have this, but it's not flagged as triaged
> @racb confirmed affected versions in his last comment, I have flagged it
as "triaged"

https://pad.lv/1893716 - (New)[openssh]- scripts
in /etc/update-motd.d/ run even on login via non-interactive scp and
sftp sessions
> end user use case makes sense but this is likely a wishlist
> informed about priority being wishlist and assigned proper packages

https://pad.lv/1893728 - (New)[krb5]   - Ubuntu
CVE Tracker krb5 1.17-6ubuntu4 CVE-2018-20217 false positive
> spoke to #security team about this one, subscribed them
> @mdeslaur said he updated tracker to show that focal and groovy aren't
affected

https://pad.lv/1893739 - (New)[mysql-8.0]  - package
mysql-server-8.0 8.0.21-0ubuntu0.20.04.4 failed to install/upgrade
> mysql instance could not be stopped case. incomplete.

https://pad.lv/1893753 - (New)[nginx]  -
libnginx-mod-http-lua 0.10.11 not compatible with NGINX 1.18/1.17
> libnginx-mod-http-lua (nginx debian/modules) needs to be updated to 1.17
in order to work with current nginx version (Focal & Groovy)
> I flag this as server-next and it could require a FFe (also flagged
triage discuss)
> This will also require a SRU to Focal and that might be an exception as
it requires a full module update

https://pad.lv/1893834 - (New)[ocfs2-tools]-
autopkgtest fails in groovy
> assigned to myself as it is an autopkgtest issue with ocfs2-tools

---
Bugs tagged 'server-next' and not touched in 60 days
Found 0 bugs

---
Bugs in backlog and not touched in 180 days
Found 0 bugs
-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Wednesday Triage Report - 2020-08-25

[Rafael David Tinoco]

Pretty calm triage but that was likely because I did it late and some of the
bugs were already tackled by others, so.. thank you.

Ubuntu Server Bug List
Team 'ubuntu-server' currently subscribed to 416 bugs
---
'*': ubuntu-server is directly subscribed
'+': last bug activity is ours
Bugs last updated on 2020-08-25 (Tuesday)
Date range identified as: "Wednesday triage"
Found 19 bugs

https://pad.lv/1892145 - *(Incomplete)[samba]- smbclient cannot connect
anonymously in Kerberos context (freeipa)

=> user provided a core dump for smbclient when using kerberos
=> marked bug fix released bionic and confirmed focal
=> queued

https://pad.lv/1892813 - (New)[samba]- package samba-common-bin
2:4.11.6+dfsg-0ubuntu1.4 failed to install/upgrade: installed samba-common-bin
package post-installation script subprocess returned error exit status 127

=> asked if user took needed actions warned by deb installer
=> incomplete

---
Bugs tagged 'server-next' and not touched in 60 days
Found 0 bugs

---
Bugs in backlog and not touched in 180 days
Found 0 bugs

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Re: Triage report (2020-08-20 + PTO backlog)

[Rafael David Tinoco]

> # 2020-08-03 (Monday triage)
> 
> Mostly Fix Released bugs, or otherwise under control.
> 
> Interesting one:
> 
> LP: #1888000 - +(New)   [open-iscsi] - Bionic/Xenial minimal
> cloud image: failed to apply load kernel module
> 
> Duplicate of LP: #1833586, where it was decided not to SRU open-iscsi to
> Bionic and Xenial to fix the issue. Should we revisit the decision?

FYIO

Steve posted:

"""
While I do believe the change is PROBABLY safe, I don't think it's
particularly justifiable as an SRU. Degraded mode is ugly but aside from
masking other bugs, doesn't make a difference at runtime.
"""

at LP: #1833586. This makes me believe that this would only be accepted
if we block future SRUs to include this fix. I have just merged a new
open-iscsi (Debian and Ubuntu) containing:

commit 2a24c96
Author: Rafael David Tinoco 
Date:   Thu Aug 13 01:45:33 2020

* debian/open-iscsi.kmod drop: (LP: #1833586)
  no static module list is needed if we let iscsid load modules itself.

which also seems to be the issue for LP: #1884321, complaining about
grepping a modules-load.d in-existent file (depending from which version
you're coming from).

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Bug Triage 2020-08-18 (Wednesday Triage)

[Rafael David Tinoco]

Many bugs triaged - or at least popped up - this time because of Eoan EOL.
Bellow you will find the ones I did a change to.

Ubuntu Server Bug List
Team 'ubuntu-server' currently subscribed to 422 bugs
---
'*': ubuntu-server is directly subscribed
'+': last bug activity is ours
Bugs last updated on 2020-08-18 (Tuesday)
Date range identified as: "Wednesday triage"
Found 53 bugs

LP: #1890491 - (In Progress)[pacemaker]- A pacemaker node fails monitor
(probe) and stop /start operations on a resource because it returns rc=189
=> niedbalski from seg is taking care of this one (bionic related)

LP: #1890790 - (New)[squid3]- Build Failure with --enable-ssl-crtd flag
=> unsupported linking to openssl
=> build error after CVEs
=> if was an easy #ifndef issue, I helped
=> Invalid

LP: #1891958 - (New)[nmap]- package nmap-common 7.80+dfsg1-2build1
failed to install/upgrade: trying to overwrite
'/usr/share/nmap/nmap-mac-prefixes', which is also in package nmap 7.80-2
=> upgrading package that does not exist in our repo
=> file conflict

---
Bugs tagged 'server-next' and not touched in 60 days
Found 1 bugs
LP: #1590799 - (Confirmed)[nfs-utils]- nfs-kernel-server does not start
because of dependency failure
=> old case of mine, marked as server-next
=> tested bionic and groovy
=> explained that other users are likely not facing the original issue
=> updated bug description
=> fix released

---
Bugs in backlog and not touched in 180 days
Found 0 bugs

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Bug Triage - 2020-08-11 (Wednesday Triage)

[Rafael David Tinoco]

Ubuntu Server Bug List
Team 'ubuntu-server' currently subscribed to 419 bugs
---
Bugs last updated on 2020-08-11 (Tuesday)
Date range identified as: "Wednesday triage"
Found 28 bugs

https://pad.lv/1890892 - *(Incomplete)[openssh]- WSL
openssh-server incorrect permissions .ssh

=> WSL issue with ~/.ssh permissions.  Nothing here.

https://pad.lv/1890472 - (Confirmed)  [mysql-8.0]  - package
mysql-server-8.0 8.0.21-0ubuntu0.20.04.4 failed to install/upgrade

=> another "could not shutdown instance" in a clean installation
(several restarts attempted)

https://pad.lv/1890391 - (New)[amavisd-new]- package
amavisd-new 1:2.10.1-2ubuntu1 failed to install/upgrade

=> incomplete and opened against Trusty (EOSS)

https://pad.lv/1890611 - (New)[mysql-8.0]  -
mysql-server does not take into account configured ssl parameters

=> I was able to configure SSL perfectly
=> Showed how to configure SSL for both server and client
=> Showed also how to create certificates and where to place them
=> Incomplete sayings its likely a configuration issue

https://pad.lv/1891137 - (New)[mysql-8.0]  - package
mysql-server 8.0.21-0ubuntu0.20.04.4 failed to install/upgrade

=> timeout on shutdown issue for mysql-server

---
Bugs tagged 'server-next' and not touched in 60 days
Found 0 bugs

---
Bugs in backlog and not touched in 180 days
Found 1 bugs
https://pad.lv/1859100 - (In Progress)[mysql-8.0]  -
mysql-server FTBFS (focal) because of build tests

=> Old bug of mine, Fix Released.

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Re: Merge Opportunities Report - 2020-08-10

[Rafael David Tinoco]

> low   haproxy   2.2.2-1   2.0.17-1  

I have a card for this one ... and it should have a higher priority, at
least this specific merge, as @ahasenack has reminded us 2.2 is LTS.

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Bug Triage - 2020-08-{07,08,09} (Monday Triage)

[Rafael David Tinoco]

Quite interesting list of bugs today. Lot's of cases being worked by at
least one of us.. half of the issues were either QEMU or Libvirt.

I have CC'ed some of you that I mentioned here because of some reason.

=
Ubuntu Server Bug List
=

Bugs last updated between 2020-08-07 (Friday) and 2020-08-09 (Sunday)
Date range identified as: "Monday triage"
Found 32 bugs

QEMU/LIBVIRT:
=

LP: #1890858 - (New)[libvirt]- AppArmor profile causes QEMU/KVM - Not
Connected

=> subscribed @paelzer
=> looks like apparmor is denying virt-manager connections (bind denial)
=> have not tried to reproduce (let me know if need some offload)

LP: #1887929 - (New)[libvirt]- [20.10 FEAT] Provide persistent vfio-ccw
device assignments - libvirt part

=> @paelzer is already on it

OTHER:
=

LP: #1890790 - (Confirmed)[squid3]- Build Failure with --enable-ssl-crtd
flag
=> request to support a package recompilation -> Invalid

LP: #1874150 - (Confirmed)[mysql-5.7]- package mariadb-server-10.1 (not
installed) failed to install/upgrade

=> another mysql -> mariadb change "upgrade" issue
=> trying to overwrite '/usr/bin/myisam_ftdump'
=> @rbasak spoke about this very recently IIRC (is this a duplicate ?)
=> subscribed @rbasak as well (for a double check only)

LP: #1890881 - (New)[qemu]- qemu-user-static 1:5.0-5ubuntu4 in groovy
does not start armhf container

=> Subscribed @paelzer to it.. might require a bisection
=> Related bugs: LP: #1887606 and LP: #1886811
=> Marked as server-next since qemu-user armhf might be affected

LP: #1890892 - (New)[openssh]- WSL openssh-server incorrect permissions .ssh

=> Incomplete, asked more information…
=> Subscribed Patrick Wu as this is WSL related
=> @haydenb was working simultaneously on it and provided good feedback

LP: #1883614 - (New)[sssd]- sssd  got killed due to segfault in ubuntu 16.04

=> checked crash file from end user, it seemed corrupted
=> explained how to obtain core dumps (without crash)
=> explained how to install debugging symbols and run valgrind
=> will possibly come back to other triagers (or to myself in wednesday)

LP: #1872118 - (New)[bind9-libs]- DHCP Cluster crashes after a few hours

=> @niedbalski is on it, pls make sure to forward your patch to upstream
Jorge
=> looks like 20.10 and 20.04 are affected.
=> https://gitlab.isc.org/isc-projects/dhcp/-/issues/121 (asked if dhcp
was abandoned in ubuntu)
=> launchpad has, indeed, too many opened bugs (some of them very old)
=> we should put this in our backlog: to cleanup isc-dhcp bugs

---
Bugs tagged 'server-next' and not touched in 60 days
Found 0 bugs

---
Bugs in backlog and not touched in 180 days
Found 1 bugs

LP: #1859880 - (New)[blinker]- FTBFS building
without python2

=> moved status to fix released (old bug from @bryce regarding focal
migrations)



-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Re: Bug Triage - 2020-08-04 (Wednesday Triage)

[Rafael David Tinoco]

> https://pad.lv/1890314 - (New)[haproxy]- RFE HAProxy
> 2.2 for groovy
> 
> => user asking for haproxy 2.2.x from experimental
> => flagged as wishlist and triage discuss

I created a card and will handle this this month.

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Bug Triage - 2020-08-04 (Wednesday Triage)

[Rafael David Tinoco]

Ubuntu Server Bug List
Please be patient, this can take a few minutes...
Team 'ubuntu-server' currently subscribed to 411 bugs
---
'*': ubuntu-server is directly subscribed
'+': last bug activity is ours
Bugs last updated on 2020-08-04 (Tuesday)
Date range identified as: "Wednesday triage"
Found 29 bugs

https://pad.lv/1854362 - *+(Confirmed)[ceph-iscsi] - [MIR]
ceph-iscsi, tcmu, python-configshell-fb, python-rtslib-fb, urwid,
targetcli-fb
also:  - *+(In Progress)  [python-configshell-fb] -
[MIR] ceph-iscsi, tcmu, python-configshell-fb, python-rtslib-fb, urwid,
targetcli-fb
also:  - *+(In Progress)  [python-rtslib-fb] - [MIR]
ceph-iscsi, tcmu, python-configshell-fb, python-rtslib-fb, urwid,
targetcli-fb
also:  - *+(In Progress)  [targetcli-fb]   - [MIR]
ceph-iscsi, tcmu, python-configshell-fb, python-rtslib-fb, urwid,
targetcli-fb
also:  - *+(In Progress)  [tcmu]   - [MIR]
ceph-iscsi, tcmu, python-configshell-fb, python-rtslib-fb, urwid,
targetcli-fb
also:  - *+(In Progress)  [urwid]  - [MIR]
ceph-iscsi, tcmu, python-configshell-fb, python-rtslib-fb, urwid,
targetcli-fb

=> I have pushed a seed change for targetcli-fb (finally)
=> For now, ceph-iscsi still needs security review
=> targetcli-fb will land in [main] to manage LIO targets in 20.10
=> We plan to demote tgt from 21.04 (and still need to document LIO in
guide)

https://pad.lv/1890164 - (Confirmed)  [mysql-8.0]  - package
mysql-server-8.0 8.0.21-0ubuntu0.20.04.3 …

=> socket is likely in FIN_WAIT state and service can't start

https://pad.lv/1890230 - (New)[ipxe]   - arm64 ipxe
package isn't an arm64 built

=> it looks like ipxe can't be treated as "Architecture: All" any longer
=> debian/control will have to have src/bin-arm64-efi
=> and some decisions based in $(dpkg-architecture -qDEB_HOST_ARCH)==arm64
=> spoke to @paelzer about this, asked use case for reporter

https://pad.lv/1890265 - (New)[squid3] - BUG:
Version 3.5.27-1ubuntu1.7 breaks config using icap

=> was going after the code changes and @ahasenack pointed me debian bug
=> linked debian bug and explained current status

https://pad.lv/1890276 - (New)[openbsd-inetd]  - inetd does
not answer broadcast requests

=> actually, rpcbind changes "broke" the rpc-rstatd broadcast feature
=> now I'm wondering if UDP broadcast RPC programs are working after bionic
=> assigned to myself to investigate later


https://pad.lv/1890314 - (New)[haproxy]- RFE HAProxy
2.2 for groovy

=> user asking for haproxy 2.2.x from experimental
=> flagged as wishlist and triage discuss

---
Bugs tagged 'server-next' and not touched in 60 days
Found 0 bugs

---
Bugs in backlog and not touched in 180 days
Found 0 bugs

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Triage report (2020-07-28 - Wednesday Triage)

[Rafael David Tinoco]

For this week. Only bugs worth mentioning…

Ubuntu Server Bug List
Team 'ubuntu-server' currently subscribed to 407 bugs
---
Bugs last updated on 2020-07-28 (Tuesday)
Date range identified as: "Wednesday triage"
Found 17 bugs

https://pad.lv/1889196 - (New)[sssd]   - infinite loop on 
start if misconfigured
=> sssd issue in focal (sync, groovy is a sync either)
=> asked reporter also to fill a bug in debian

https://pad.lv/1659719 - (New)[openssh]- ssh can't call a 
binary from a snap without the full path
=> its new to ssh because it was re-opened by vorlon
=> there is still on-going issue, but root cause is “pam.d vs systemd” for PATH 
env
=> related to PATH env variable ordering
=> mwh already opened a bug in debian and provided a fix to pam pkg
=> I assume there is nothing to be done here

---
Bugs tagged 'server-next' and not touched in 60 days
Found 0 bugs

---
Bugs in backlog and not touched in 180 days
Found 0 bugs



-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Triage report (2020-07-21 - Wednesday Triage)

[Rafael David Tinoco]

Sorry for being late on this. Busy 2 weeks. Here it goes:

Ubuntu Server Bug List
Please be patient, this can take a few minutes...
Team 'ubuntu-server' currently subscribed to 406 bugs
---
Bugs last updated on 2020-07-21 (Tuesday)
Date range identified as: "Wednesday triage"
Found 12 bugs

https://pad.lv/1805256 - +(In Progress)   [qemu]   - qemu-img hangs on 
rcu_call_ready_event logic in Aarch64 when converting images
=> This is the arm64 primitives race bug for qemu
=> bug has been fixed in Focal, Eoan and Bionic
=> There was a regression in Bionic that we have rolled back
=> I'm uploading the new fix now, after proper revision and tests

https://pad.lv/1600164 - (Confirmed)  [mysql-5.7]  - Mysql server take 
10 minutes to stop without message after time drift
=> Old bug already fixes released for mysql-server in Ubuntu

https://pad.lv/1887586 - *(Triaged)   [lm-sensors] - pwmconfig generate 
wrong config when multiple fans are on same pwm
=> feedback worked, end user opened an upstream bug

https://pad.lv/1887826 - (Incomplete) [php7.4] - CURLFile POST 
missing Content-Length header
=> Did 2/3 of the SRU template, missing regression potential after comment with 
reproducer
=> @bryce has this assigned to him

https://pad.lv/1886811 - (New)[qemu]   - systemd complains 
Failed to enqueue loopback interface start request: Operation not supported
=> Christian had already fixed this in last qemu merge

https://pad.lv/1888345 - (New)[sysstat]- Incorrect values 
on iostat command when using JSON output
=> bitsize, ubuntu-server, low-priority


---
Bugs tagged 'server-next' and not touched in 60 days
Found 0 bugs

---
Bugs in backlog and not touched in 180 days
Found 1 bugs
https://pad.lv/1855943 - (In Progress)[net-snmp]   - net-snmp merge for 
focal (v5.8)
=> This was already Fix released by me (focal merge)
=> changed status to reflect that



-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Bug Triage Wednesday (2020-07-15)

[Rafael David Tinoco]

Ubuntu Server Bug List
Please be patient, this can take a few minutes...
Team 'ubuntu-server' currently subscribed to 404 bugs
---
'*': ubuntu-server is directly subscribed
'+': last bug activity is ours
Bugs last updated on 2020-07-14 (Tuesday)
Date range identified as: "Wednesday triage"
Found 16 bugs

https://pad.lv/1886704 - (New)[qemu]   - qemu fails to init 
vhost_user if > 8 memory regions
-> subscribed ubuntu-server and myself
-> being discussed among ddstreet and paelzer
-> was discussed among @paride and myself during triage

https://pad.lv/1887490 - (New)[qemu]   - Add/Backport 
EPYC-v3 and EPYC-Rome CPU model
-> subscribed ubuntu-virt, cpu models were included in 5.0.0-rc1
-> both commits do make sense for Focal (CPU enablement with security features)
-> will wait for @paelzer so he can decide

https://pad.lv/1887511 - (New)[mysql-8.0]  - package 
mysql-server-8.0 8.0.20-0ubuntu0.20.04.1 failed to install/upgrade:...
-> incomplete, mysqlx.sock could not be created
-> asked reproducer (if existent)

https://pad.lv/1887513 - (New)[mysql-8.0]  - package 
mysql-server-8.0 (not installed) failed to install/upgrade: installed 
mysql-server-8.0 package post-installation script subprocess returned error 
exit status 2
-> incomplete, lots of purges in dpkg history
-> mysql-server-8.0 was not yet configured
-> asked reproducer (if existent)

https://pad.lv/1887586 - (New)[lm-sensors] - pwmconfig generate 
wrong config when multiple fans are on same pwm
-> triaged, asked to be reported upstream

---
Bugs tagged 'server-next' and not touched in 60 days
Found 0 bugs

---
Bugs in backlog and not touched in 180 days
Found 1 bugs
https://pad.lv/1852445 - (Triaged)[nut]-  Request package 
upgrade for nut (network ups tools) in bionic
-> paride put this back to triage so it could be fix released for focal w/ 
newer version.
-> bug status was never auto changed so I changed status to Fix Released

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Triage report - Monday Triage

[Rafael David Tinoco]

Ubuntu Server Bug List
Team 'ubuntu-server' currently subscribed to 412 bugs
---
Bugs last updated between 2020-06-26 (Friday) and 2020-06-28 (Sunday) inclusive
Date range identified as: "Monday triage"
Found 26 bugs


https://pad.lv/1885417 - (New)[rdma-core]  - rxe_cfg is missing
> manpages.ubuntu.com copied pages from eoan
> perhaps man pages are not being deleted from one release to another
> source package did not include that page any longer (rdma-core)
> added to server-triage discuss
> moved to ubuntu documentation project

https://pad.lv/1885419 - (New)[qemu]   - QEMU
crash using virtio-scsi with iothread
> this was a critical bug and as soon as I got into it I started
> working. tested eoan to see if the issue happened in bionic only
> because of the previous aarch64 SRU. bisected the 6 patch SRU changes
> and saw that the *real* fix did not cause the issue. Issue was a
> side effect of moving an assertion out of a condition in AIO code.
> This is tricky because it could be caused by the existent bionic
> qemu code AND any attempt of fix would require a big round of
> tests, now including iothreads.
> asked @paelzer to revert the SRU and he, thankfully, together
> with @racb, did a very fast SRU reverting the change, after had
> already asking AA to phase the change.

---
Bugs tagged 'server-next' and not touched in 60 days
Found 0 bugs

---
Bugs in backlog and not touched in 180 days
Found 0 bugs

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Triage Report - 2020-06-23 (Tuesday) - "Wednesday triage"

[Rafael David Tinoco]

All bugs were previously taken care of. There were 3 bugs and, from
those, just 1 needed a comment saying it was likely a local
configuration issue.


Ubuntu Server Bug List
Please be patient, this can take a few minutes...
Team 'ubuntu-server' currently subscribed to 412 bugs
---
Bugs last updated on 2020-06-23 (Tuesday)
Date range identified as: "Wednesday triage"
Found 15 bugs

---
Bugs tagged 'server-next' and not touched in 60 days
Found 0 bugs

---
Bugs in backlog and not touched in 180 days
Found 0 bugs

-rafaeldtinoco

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Triage report - Wednesday 2019-06-17

[Rafael David Tinoco]

Bugs last updated on 2020-06-16 (Tuesday)
Date range identified as: "Wednesday triage"
Found 13 bugs

https://pad.lv/1881880 - *+(Incomplete) [monitoring-plugins] - latest
update 2.2-3ubuntu3 caused check_ntp_time to fail

> end user thought this was a regression from my previous update to 
> monitoring-plugins
> cpaelzer pointed me out this bug, checking possibilities, it is not possible
> it's a new bug for bionic and "incomplete"

https://pad.lv/1872541 - * (Incomplete) [mysql-8.0] - MySQL client
fails to connect, seems to force SSL

> replied to user giving example on openssl.cnf file (enabling @SECLEVEL=1, etc)

https://pad.lv/1882279 - * (New) [php7.4] - PHP built from source
performs much better than the Ubuntu packaged version

> quick perf report analysis on performance issue brought by end user, 
> mentioning todo's

---
Bugs tagged 'server-next' and not touched in 60 days
Found 0 bugs

---
Bugs in backlog and not touched in 180 days
Found 0 bugs

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Re: Monday Triage (2020-06-15) - Did by accident @paride, sorry

[Rafael David Tinoco]

On Mon, Jun 15, 2020 at 2:11 PM Bryce Harrington
 wrote:
>
> On Mon, Jun 15, 2020 at 04:07:34AM -0300, Rafael David Tinoco wrote:
> > https://pad.lv/1883090 -  (Confirmed) [apache2]- package
> > apache2 2.4.41-4ubuntu3 failed to install/upgrade: el subproceso
> > instalado paquete apache2 script post-installation devolvió el código
> > de salida de error 1
> >
> > > similar upgrade issues have been seen with apache2 and its mods
> > > asked @bryce if he hadn't worked on this (iirc) recently
> > > it seems that deferred pkg configuration (after deps) does not work
>
> That one was with mod-php during a system upgrade when mod-php was
> already installed, this one is mod-fcgid during initial apache
> installation when mod-fcgid is not yet installed.
>
> I tried to reproduce the bug in lxc but the installation worked ok for
> me.  Were you able to reproduce it?

Nope, I haven't tried it. Just remembered you worked in something
similar. If it is not the same, then let's just keep it under our
queue then. Perhaps we can address those upgrade issues during next
merge, altogether...

sounds good ?

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Re: Monday Triage (2020-06-15) - Did by accident @paride, sorry

[Rafael David Tinoco]

> >
> > https://pad.lv/1785383 - (Triaged)[dnsmasq]- missing
> > EDNS0 record confuses systemd-resolved
> > also:  - (New)[systemd]- missing
> > EDNS0 record confuses systemd-resolved
> >
> > > @ddstreet seems to have caught this to himself, cc'ing him
>
> yes, this is an unfortunate loong running bug that is due to a
> patch to systemd that we carry, that isn't upstream.  It will require
> me (or someone) being able to go to a Starbucks to test with their
> wifi, so I (or someone) can create a proper patch to workaround their
> broken wifi captive portal, that we can then get merged upstream and
> drop the problematic patch we carry.  That's been made difficult by
> COVID-19, of course, but I do still want to try to get to this
> sometime this summer.

Oh, a bug that has Starbucks as a requirement! Finally! It is also in
our queue and tagged as server-next (higher priority).

Thanks for the reply!

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Monday Triage (2020-06-15) - Did by accident @paride, sorry

[Rafael David Tinoco]

Bugs last updated between 2020-06-12 (Friday) and 2020-06-14 (Sunday) inclusive
Date range identified as: "Monday triage"
Found 20 bugs

https://pad.lv/1817955 -  (Confirmed) [krb5]   - Getting
new DN is out of the realm subtree error on adding principal

> subscribed ebarretto (author of the security fix that caused the regression)
> subscribed ubuntu-server
> triaged for trusty, fix released for groovy

https://pad.lv/1882527 -  (Confirmed) [mysql-8.0]  - mysql
timeoutsec results in killing mysql process

> triaged for all supported releases
> tagged as server-next and high prio for groovy
> it shall be an easy fix/sru: disable TimeoutSec from systemd service unit 
> (upstreamed already)

https://pad.lv/1882791 -  (Confirmed) [mysql-8.0]  - package
mysql-server-8.0 8.0.20-0ubuntu0.20.04.1 failed to install/upgrade:
installed mysql-server-8.0 package post-installation script subprocess
returned error exit status 1

> incomplete (upgrade)
> could not stop previous instance issue (very frequent)

https://pad.lv/1883090 -  (Confirmed) [apache2]- package
apache2 2.4.41-4ubuntu3 failed to install/upgrade: el subproceso
instalado paquete apache2 script post-installation devolvió el código
de salida de error 1

> similar upgrade issues have been seen with apache2 and its mods
> asked @bryce if he hadn't worked on this (iirc) recently
> it seems that deferred pkg configuration (after deps) does not work

https://pad.lv/1883307 -  (New)   [mysql-8.0]  - package
mysql-server-8.0 (not installed) failed to install/upgrade: el
subproceso nuevo paquete mysql-server-8.0 script pre-installation
devolvió el código de salida de error 1

> incomplete, weird error about /etc/mysql/FROZEN
> asked more information

https://pad.lv/1883320 -  (New)   [sosreport]  - [kvm]
change check_enabled to /dev/kvm

> sosreport and @slashd is on it, nothing on our side

https://pad.lv/1883398 -  (New)   [qemu]   - USB
serial device passtrough causes qemu to segfault and kill the VM

> asked for detailed reproducer or core file
> subscribed ubuntu-virt and @cpaelzer
> stated as incomplete until then

https://pad.lv/1883413 -  (New)   [bind9]  - bind9
/var/cache/bind rights not set properly

> not a bug, end user wanted to document his finding more than anything
> flagged as opinion and subscribed ubuntu-server

---
Bugs tagged 'server-next' and not touched in 60 days
Found 2 bugs

https://pad.lv/1785383 - (Triaged)[dnsmasq]- missing
EDNS0 record confuses systemd-resolved
also:  - (New)[systemd]- missing
EDNS0 record confuses systemd-resolved

> @ddstreet seems to have caught this to himself, cc'ing him

---
Bugs in backlog and not touched in 180 days
Found 0 bugs

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Triage report (2020-06-10) - Late, was on PTO

[Rafael David Tinoco]

Bugs last updated on 2020-06-10 (Wednesday)
Date range identified as: "Thursday triage"
Found 13 bugs

https://pad.lv/1839767 - *+(Won't Fix)[clamav]- apparmor DENIED
freshclam and clamd access to openssl.cnf

> Conversation between the SRU team (@rbasak) and @sergiodj (needs 
> clarification)

https://pad.lv/1868154 - +(New)[realmd]- [MIR] realmd

> server team subscribed by @ahasenack
> security team to review
> @ddstreet on it (MIR team)

https://pad.lv/1874953 - *+(Confirmed)[smartmontools]- dpkg: conffile
difference visualizer subprocess returned error exit status 127

> @paride seems to be handling this
> @paride opened a bug to less in Debian

https://pad.lv/1576588 - *(Expired)[openvpn]- google-authenticator
with openvpn fails on 16.04

> 2 other users said they can reproduce the issue
> marked fix released after xenial
> re-marked incomplete (xenial) and asked for config file

https://pad.lv/1868159 - (In Progress)[adcli]- [MIR] adcli

> related to realmd MIR
> security team has already reviewed this one
> @ddstreet on it (MIR team)

https://pad.lv/1881196 - *(Triaged)[postfix]- postfix tls
deploy-server-cert fails with can't shift that many

> @kanashiro seems to own this, was waiting on upstream
> I think there is a change to be SRUed from upstream now

---
Bugs tagged 'server-next' and not touched in 60 days
Found 0 bugs

---
Bugs in backlog and not touched in 180 days
Found 0 bugs

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Triage report (2020-06-03) - Late, was on PTO

[Rafael David Tinoco]

Bugs last updated on 2020-06-03 (Wednesday)
Date range identified as: "Thursday triage"
Found 3 bugs

https://pad.lv/1680224 - *+(Confirmed)[autofs] - auto.smb fails on
Windows administrative shares

> I'm working on this and will push new changes.

https://pad.lv/1870491 - (Expired)[nginx] - package nginx-common
1.17.9-0ubuntu3 failed to install/upgrade: end of file on stdin at
conffile prompt

> Expired

https://pad.lv/1881093 - (Fix Released)[spice] - merge 0.14.3 for groovy

> Fix Released

---
Bugs tagged 'server-next' and not touched in 60 days
Found 0 bugs

---
Bugs in backlog and not touched in 180 days
Found 1 bugs
https://pad.lv/1773529 - (Triaged)[exim4] - [SRU] Missing DKIM fixes
in Xenial (Exim 4.86)

> Closed as invalid because the reporter wanted a big set of patches to be
> backported to exim "just because". Explained SRU guidelines.

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Wednesday Triage

[Rafael David Tinoco]

Most of the bugs have already been touched by others, specially because
we had joint sessions about triaging this week, and, because of that, I
had only 2 bugs worth working on and mentioning:

Ubuntu Server Bug List
Please be patient, this can take a few minutes...
Team 'ubuntu-server' currently subscribed to 402 bugs
---
'*': ubuntu-server is directly subscribed
'+': last bug activity is ours
Bugs last updated on 2020-05-27 (Wednesday)
Date range identified as: "Thursday triage"
Found 39 bugs

https://pad.lv/1880774 - (New)   [chrony] - chronyd not
synching time anymore since last update
 - marked as incomplete (missing information)
 
https://pad.lv/1880825 - (New)   [qemu]   - Create guest
failed on xen-hypervisor on Ubuntu 20.04
 - marked as incomplete (likely configuration issue with
device_model_override)
 
---
Bugs tagged 'server-next' and not touched in 60 days
Found 0 bugs

---
Bugs in backlog and not touched in 180 days
Found 0 bugs

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Wednesday Triage

[Rafael David Tinoco]

Bugs last updated on 2020-05-19 (Tuesday)
Date range identified as: "Wednesday triage"
Found 22 bugs

I have done this triage with @sergiodj in the "triage process
normalizing" effort. It had no new bugs AND, since I did my monday
triage yesterday, most of the bugs we went through were the bugs I
worked yesterday (good to I could use those as examples on what I did to
@sergiodj).

---
Bugs tagged 'server-next' and not touched in 60 days
Found 1 bugs
https://pad.lv/1868127 - (New) [openvpn] OpenVPN will not reload due to
misconfigured .service file

> gave to @sergiodj as an example on directing "some" bugs to someone
based on your previous knowledge about the work this one person does.
(@kanashiro for this example).

---
Bugs in backlog and not touched in 180 days
Found 0 bugs

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Monday Triage (done on Tuesday)

[Rafael David Tinoco]

Bugs last updated between 2020-05-15 (Friday) and 2020-05-17 (Sunday)
inclusive.

Date range identified as: "Monday triage".

 Bugs worth mentioning:

[Bug 1879106] Re: Sync ocfs2-tools 1.8.6-3 (main) from Debian unstable
(main)
> this is on me, assigned to myself
> triaged

[Bug 1878972] Re: Package installation fails if TMPDIR is automounted
directory
> this seems to be a dpkg issue, assigned dpkg
> it seems that dpkg can't deal with TMPDIR being auto mounted
> triaged

[Bug 1878945] Re: crash slapd after update
> asked if user has /var/backups/*slapd*
> slap database shouldn't be wiped in upgrades
> triaged for now

[Bug 1877504] Re: new version of libmysqlclient21
8.0.20-0ubuntu0.20.04.1 causes mythtv-set, mythbackend and mythfrontend
to segfault on exit.
> it seems there is an upstream bug
> pointed out the issue based on gdb analysis
> asked if user will open upstream bug or we should
> confirmed

[Bug 1764044] Re: ssh-add asks about passphrases for keys already
unlocked in the keychain
> could not reproduce, followed manual page
> asked for more information
> incomplete



-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

open-iscsi new merge and licensing: OpenSSL + SHA3-256 , SHA256 , SHA1

[Rafael David Tinoco]

Hello list,

I have been working in merging open-iscsi package:

https://salsa.debian.org/rafaeldtinoco-guest/open-iscsi/-/commits/experimental

with open-iscsi project upstream:

https://github.com/open-iscsi/open-iscsi/

and also cleaning up the open-iscsi package a bit (thus will have to
give special attention to hooks and debian-installer to check if there
are no regressions).

But this is no the important part, apart from the FYIO so far, the
important part is that Debian maintainer, when running lintian, has
found the OpenSSL being linked to GPL code:

https://github.com/open-iscsi/open-iscsi/issues/208

Turns out upstream developers are using OpenSSL for the new CHAP
authentication mechanisms. There is no support for gnu-tls nor libnss so
far.

With all that said, I would like to know IF adding the OpenSSL
disclaimer + GPL w/ OpenSSL disclaimer in the upstream license would be
"good enough" for Ubuntu to allow the features, like stated here:

https://github.com/open-iscsi/open-iscsi/issues/208#issuecomment-628076437

"""
Hi @rickysarraf -- I disagree that this dependency was created with
recent changes -- open-iscsi depended on openssl before that, if I
understand correctly. The change you reference just required a newer
version of SSL. @cleech , please correct me if I'm wrong.

I know virtually nothing about this code, since Chris made these
changes. After looking at this reference I found, I believe adding a
disclaimer to our license might be a good enough work around. I also
have no objections to changing to a different encryption package, though
openssl does seem to be the best.

I'm personally not worried about this. I think people have better things
to do than to rip off open-iscsi/openssl code. But I'm also not a lawyer.
"""

and defended here:

https://github.com/open-iscsi/open-iscsi/issues/208#issuecomment-628775520

"""
I know Fedora has taken the position that OpenSSL is a system library as
defined by the GPL, which is probably why I didn't run into issues with
license check tools when I added the OpenSSL code.

I'd consider a patch to disable OpenSSL use, but our build isn't in the
best shape for those types of options right now. I'd be happier to add
an OpenSSL exemption if there was a standard form that would keep other
distros happy.
"""

INDEPENDENTLY of this discussion, I have already prepared a patch
removing the openssl need and restoring MD5 only behavior, but keeping
the new authentication logic, here:

https://github.com/rafaeldtinoco/open-iscsi/commit/cc231b68e3d1356fd60d512661d32172d1e42f19

It is very likely that I'll have to use this for Debian package, but I
was wondering if we should consider restoring OpenSSL linking and
features for Ubuntu.

I'm really not a licensing person, so for me this is a ok-ok situation,
no matter the decision. Could someone help me taking that decision ?

Thanks for reading so far.

Best,

-rafaeldtinoco



-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Triage report for Wednesday (done today)

[Rafael David Tinoco]

Nothing outstanding, just documenting the ones I interacted here.

--

Team 'ubuntu-server' currently subscribed to 405 bugs
No date set, auto-search yesterday/weekend for the most common triage.
---
'*': ubuntu-server is directly subscribed
'+': last bug activity is ours
Bugs last updated on 2020-05-12 (Tuesday)
Date range identified as: "Wednesday triage"
Found 22 bugs

https://pad.lv/1876230 - (In Progress)[liburcu]- liburcu:
Enable MEMBARRIER_CMD_PRIVATE_EXPEDITED to address performance problems
with MEMBARRIER_CMD_SHARED

> helped sil2100 in accepting the SRU

https://pad.lv/1876537 - (Invalid)[dovecot]- dovecot
eating mail indexes /var/dovecot-index/user

> provided comment to end-user regarding upstream similar issues
> unfortunately without a reproducer it will be hard to check why cache
is corrupted

https://pad.lv/1878134 - (New)[qemu-kvm]   - Assertion
failures in ati_reg_read_offs/ati_reg_write_offs

> fuzz test result probably meant to upstream qemu project -> moved it

https://pad.lv/907816  - (Confirmed)  [apache2]-
libapache2-mod-php5 forgets timezone definition after some time

> moved case back to invalid and instructed other user

---
Bugs tagged 'server-next' and not touched in 60 days
Found 0 bugs

---
Bugs in backlog and not touched in 180 days
Found 3 bugs
https://pad.lv/1745664 - (Confirmed)  [nis]-
[regression] systemd-logind crashed with SIGABRT in __libc_connect()

> possible duplicate: LP: #1774417
> possible fix from upstream
> bionic sru (most likely)
> already in queue

https://pad.lv/1846283 - (Confirmed)  [linux]  - Strongswan
Charon-systemd fails on ixbge fault with hardware offload

> server part of the bug (strongswan) is invalid
> @paelzer asked for feedback on kernel commit
> removed ubuntu-server from subscription

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Wednesday Bug Triage - 2020-04-29

[Rafael David Tinoco]

Bugs last updated on 2020-04-28 (Tuesday)
Date range identified as: "Wednesday triage"
Found 26 bugs

https://pad.lv/1874953 - *+(Triaged)[smartmontools]- package
smartmontools 7.1-1build1 failed to install/upgrade: conffile difference
visualizer subprocess returned error exit status 127

> dpkg pager issue I had marked from monday triage

https://pad.lv/1663985 - (New)[libmemcached]- Broken build with GCC 7

> no information which source was trying to be compiled
> upstream project targeted more likely (launchpad.net/libmemcached)
> incomplete

https://pad.lv/1869074 - (Confirmed)[open-vm-tools]- Please add appinfo
plugin

> subscribed @paelzer directly (and ubuntu-virt)
> triaged

https://pad.lv/1872476 - *(New)[samba]- Shared files are shown as folders

> @ahasenack has given instructions for end user (smbclient version)
> he also identified a fix in fedora
> bug has been assigned to sergio

https://pad.lv/1872993 - (Confirmed)[mysql-5.7]- Security
vulnerabilities of version 5.7.29

> @ebarreto from ubuntu-security team is on it

https://pad.lv/1874831 - *(Triaged)[nginx]- libnginx-mod-nchan
distributes old/incompatible module

> @teward is on it.

https://pad.lv/1875299 - (New)[apache2]- Apache's mod_remoteip: IP
address spoofing via X-Forwarded-For when mod_rewrite rule is triggered

> @seth-arnold already aware (public security category)

https://pad.lv/1875517 - (Confirmed)[monitoring-plugins] - check_http
inefficient and sometimes times out

> nagios plugins patches pointed out as fix (2 patches)
> potential SRU for focal/eoan/bionic
> marked server-next for next groovy's merge

https://pad.lv/1875596 - (New)[python-django]- Django
Timefield(default=) gives unhelpful diagnostics

> end user support attempt complaining about backtrace

https://pad.lv/1875697 - (New)[openldap]- drop fix-ldap-distribution.patch?

> potential SRU for focal (fix released right after focal)
> server-next to include it on the next merge
> block-proposed-focal to possibly include it next SRU

https://pad.lv/1875708 - (New)[libvirt]- Truncated messages during shutdown

> subscribed ubuntu-virt
> triagged

---
Bugs tagged 'server-next' and not touched in 60 days
Found 1 bugs
https://pad.lv/1864961 - (Confirmed)[php-imagick]- tests ignore RC and
hav 15 fails left

> nothing to done

---
Bugs in backlog and not touched in 180 days
Found 2 bugs
https://pad.lv/1393403 - (New)[dovecot]- dovecot unable to create files
in /var/mail

> still waiting on debian bug
> marked as server-next for the next merge to check this out

https://pad.lv/1850648 - (Triaged)[samba]- ubuntu debs missing
ctdb_mutex_ceph_rados_helper

> wishlist for ubuntu (samba) project
> should be checked during next merge

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Monday Bug Triage - 2020-04-24 (Friday) and 2020-04-26 (Sunday)

[Rafael David Tinoco]

Bugs last updated between 2020-04-24 (Friday) and 2020-04-26 (Sunday)
inclusive
Date range identified as: "Monday triage"

SEVERAL bugs opened because of 20.04 release. A bunch of those were
opened by apport because of installation issues.

The ones I had triaged were:

Focal deploy creates a 'node1' node
https://bugs.launchpad.net/charm-hacluster/+bug/1874719
> charm had to be changed, nothing to do.
> invalid for pacemaker

freeradius fails to install in focal
https://bugs.launchpad.net/ubuntu/+source/freeradius/+bug/1874565
> couldn't reproduce the issue
> end user likely missed freeradius-config pkg installation
> invalid

package apache2 2.4.41-4ubuntu3 failed to install/upgrade: installed
apache2 package post-installation script subprocess returned error exit
status 1
https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1874730
> apache2 phppgadmin module upgrade
> apache2 can't find module
> cc'ed bryce here because of similar previous bugs
> triaged

libnginx-mod-nchan distributes old/incompatible module
https://bugs.launchpad.net/ubuntu/+source/nginx/+bug/1874831
> opened bug upstream (debian) asking for nchan upgrade
> if debian/module upgraded, likely need to be SRUed to focal
> triaged

Getting old buffer + header + correct response
https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1874932
> complex reverse proxy setup unexplained in details
> asked for a reproducer and more information
> asked if more recent versions than xenial also cause this
> incomplete

package smartmontools 7.1-1build1 failed to install/upgrade: conffile
difference visualizer subprocess returned error exit status 127
https://bugs.launchpad.net/ubuntu/+source/dpkg/+bug/1874953
https://bugs.launchpad.net/ubuntu/+source/smartmontools/+bug/1875010
> subscribed dpkg package as affected
> when using 'D' option trying to see delta among config files -> pager
error
> triaged, marked 2nd one as duplicate

KVM internal error. Suberror: 1 -- emulation failure
https://bugs.launchpad.net/ubuntu/+source/qemu/+bug/1875012
> subscribed ubuntu-virt team (@cpaelzer and others, including me)
> cpalzer will likely work on this, marked as triaged

bridge stops working on focal update
https://bugs.launchpad.net/ubuntu/+source/bridge-utils/+bug/1875036
> explained what happened (bridge-utils uninstalled)
> pointed to netplan.io documentation
> pointed to ubuntu user mailing list for support
> invalid

regression: splitting panes does not cause a resize in backgrounded tmux
https://bugs.launchpad.net/ubuntu/+source/tmux/+bug/1875109
> triaged
> pointed to lucaskanashiro as a good simple example to coach sergiodj
if needed


---
Bugs tagged 'server-next' and not touched in 60 days
Found 0 bugs

---
Bugs in backlog and not touched in 180 days
Found 0 bugs

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Triage and Migration report - Wednesday

[Rafael David Tinoco]

Ubuntu Server Bug List
Team 'ubuntu-server' currently subscribed to 386 bugs
---
Bugs last updated on 2020-04-21 (Tuesday)
Date range identified as: "Wednesday triage"
Found 21 bugs

...

https://pad.lv/1868882 - *(Triaged) [ipmctl] - [SRU] Put ipmctl into
Bionic (and
update necessary deps)

-> closed as an opinion (nothing to be done here now)
-> opened a card to merge ipctl and ndctl to latest in 20.10
-> told Jeff I would include him in the merge bugs

https://pad.lv/1872021 - (New) [ipmitool] - commissioning fails due to hung
tasks setting up ipmitool

-> maas issue was already solved by @ltrager
-> systemd hang issue had a kernel stack trace
-> analised the stack trace and made a comment
-> moved bug to ubuntu linux kernel and fixed affects
-> removed ubuntu-server subscription

---
Bugs tagged 'server-next' and not touched in 60 days
Found 0 bugs

---
Bugs in backlog and not touched in 180 days
Found 0 bugs

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Triage report for 2020-04-14 (Wednesday Triage)

[Rafael David Tinoco]

Bugs last updated on 2020-04-14 (Tuesday)
Date range identified as: "Wednesday triage"
Found 17 bugs

All initial bugs were being taken care.

The "new" ones worth to mention:

LP: #1872546 - (New)[freeipmi] - ipmi-oem dell
reset-power-consumption-data , timezones, and reporting peak amp times
in the future

> marked as incomplete and said R640 is not listed as working for
ipmi-pem dell
> asked end user to check latest ubuntu version, and upstream one, and
report bug upstream if affected

---

Bugs tagged 'server-next' and not touched in 60 days
Found 1 bugs

LP: #1827253 - (Triaged)[rsyslog]- [apparmor] missing 'mr' on binary for
usage on containers

> asked end user about current status. @paelzer already fixed this in focal
> SRU failed for bionic/disco/eoan
> SRU would not be accepted (due to size) -> would block future ones
> Asked about current status (if we should SRU bionic) or just let this hang

---
Bugs in backlog and not touched in 180 days
Found 1 bugs

LP: #1680224 - (Triaged)[autofs] - auto.smb fails on
Windows administrative shares
> Preparing SRUs and merge (focal) with work andreas had done, will ask
him to test and review.

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Triage report for 2020-04-07 (Wednesday triage)

[Rafael David Tinoco]

Done it this morning:

Many bugs touched by previous triage and HA stabilization.
QEMU/libvirt bugs already addressed by Christian.
Remaining bugs:

https://pad.lv/1871307 - (New) [net-snmp] - Focal Fossa : snmpd log alerts
continuously if ipv6 is disabled
-> upstream fix was identified and I did a quick merge request based on it

https://pad.lv/1871353 - (New) [heartbeat] - after split brain detection
heartbeart service stops unexpectedly
-> scheduled in ubuntu-server-ha queue (HA work)

https://pad.lv/1871465 - (New) [openssh] - ssh_config(5) contains outdated
information
-> scheduled in ubuntu-server queue with low priority

---
Bugs tagged 'server-next' and not touched in 60 days
Found 0 bugs

---
Bugs in backlog and not touched in 180 days
Found 1 bugs
https://pad.lv/1847610 - (New) [dlm] - dlm autopkgtest fails on i386
-> its already in ubuntu-server-ha queue (HA work) -> no upstream response
-> will eventually work on it when fixing HA packages


-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Triage report for Wednesday, April 2nd, 2020

[Rafael David Tinoco]

LP: #1828988 - (New)[rabbitmq-server] - rabbitmq server fails to start after
cluster reboot
=> bug is related to the charm and not to rabbitmq server, already being taken
care.

LP: #1869866 - (New)[libpam-mount] - pam_mount cifs mount pmvarrun error
=> asked more information, told how to reproduce without pam-mount.

LP: #1869957 - (New)[php7.3] - package php7.3-common 7.3.11-0ubuntu0.19.10.3
failed to install/upgrade
=> apache2 corrupted file maybe ? asked to update and reinstall package after
cleaning cache.

LP: #1870360 - (New)[simplestreams] - sstream-mirror max options doesn't work
with filtering for versions
=> sstream-mirror max option broken in bionic -> triaged.

---
Bugs tagged 'server-next' and not touched in 60 days
Found 0 bugs

---
Bugs in backlog and not touched in 180 days
Found 1 bugs

LP: #1638210 - (Confirmed)[libstatgrab] - saidar segmentation fault
=> marked as incomplete since there was no response to andreas request (on a
dump) and we still need one to do anything further. public bug says the issue,
pointed by reporter hasn't be resolved so there is nothing to SRU without a
dump.


-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Triage/Migrations report for 2020-03-24 (Tuesday triage)

[Rafael David Tinoco]

Bugs last updated on 2020-03-24 (Tuesday) 
Date range identified as: "Wednesday triage" 
Found 22 bugs 

https://pad.lv/1868351 - (Triaged) - [genshi] - Sync genshi 0.7.3-1 (main) from 
Debian unstable (main)

-> triaged by paride already
-> was recently sync'ed, minor delta
-> paride set as wishlist -> +1

https://pad.lv/1868703 - *(New) - [sssd] - Backport ad_use_ldaps because of 
ADV190023

-> triaged by andreas already
-> server-next -> +1
-> needed patch is already pointed out

https://pad.lv/1868720 - (New) - [libseccomp] - backport time64 syscalls 
whitelist

-> triaged by me
-> makes sense to SRU bionic and eoan
-> found upstream related patch mentioned by reporter.
-> server-next

https://pad.lv/1868882 - (New) - [ipmctl] - [SRU] Put ipmctl into Bionic (and 
update necessary deps)

-> triaged
-> wishlist
-> backport request from Focal to Bionic and Eoan (ipmctl "new" package)
-> tested building Focal version in Bionic, works, asked a few questions 
-> assigned myself to the bug (as I did ndctl MIR work)

-rafaeldtinoco


openpgp-digital-signature.asc
Description: PGP signature
-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Re: Merge Opportunities Report - 2020-03-09

[Rafael David Tinoco]

On Mon, Mar 9, 2020 at 9:06 AM Bryce Harrington
 wrote:
>
> New Version in Debian Unstable
> --
> high  clamav0.102.2+dfsg-2
> 0.102.2+dfsg-1ubuntu1
> high  keepalived1:2.0.19-2.1  1:2.0.19-2
> high  nut   2.7.4-12  
> 2.7.4-11ubuntu4
> high  sosreport 3.9-2 3.9-1ubuntu1
> low   exim4 4.93-12   
> 4.93-11ubuntu1
> low   fetchmail 6.4.2-2   
> 6.4.1-1ubuntu1
> low   ipmctl02.00.00.3722+ds-1
> 02.00.00.3709+ds-1
> low   kronosnet 1.15-1
> 1.14-1ubuntu2

https://bugs.launchpad.net/ubuntu/+source/kronosnet/+bug/1866385

> low   libdbi-drivers0.9.0-9   
> 0.9.0-8ubuntu1
> low   nss   2:3.50-1  
> 2:3.49.1-1ubuntu1
> low   openldap  2.4.49+dfsg-2 
> 2.4.49+dfsg-1ubuntu1
> low   python-seamicroclient 0.4.0+2016.05.20.git.40ee44c664-3 
> 0.4.0+2016.05.20.git.40ee44c664-2ubuntu1
> low   resource-agents   1:4.5.0-1 
> 1:4.4.0-3ubuntu1

https://bugs.launchpad.net/ubuntu/+source/resource-agents/+bug/1866383

> low   runc  1.0.0~rc10+dfsg1-1
> 1.0.0~rc10-0ubuntu1
> low   ssh-import-id 5.10-1
> 5.10-0ubuntu1
> low   sssd  2.2.3-2   
> 2.2.3-1.1ubuntu1
> low   strongswan5.8.2-2   
> 5.8.2-1ubuntu2
> low   unbound   1.9.6-2   
> 1.9.4-2ubuntu1
> low   vlan  2.0.5 2.0.4ubuntu1
>
>
> New Version in Experimental
> --
> high  tmux  3.1~rc1-1 3.0a-2
> low   dpdk  19.11-3   19.11-2ubuntu2
> low   haproxy   2.1.3-2   2.0.13-1ubuntu2
> low   http-parser   2.9.3-1   2.9.2-2
> low   libvirt   6.0.0-1   6.0.0-0ubuntu4

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Re: Random tools I've found interesting

[Rafael David Tinoco]

> On Fri, Mar 6, 2020 at 12:47 PM Ryan Harper  wrote:
> > # /home/rharper/.ssh/config.defaults
> > Host *.lxd
> > User ubuntu
> > IdentityFile /home/rharper/.ssh/id_rsa
> > StrictHostKeyChecking no
> > UserKnownHostsFile /dev/null
> > ProxyCommand nc $(lxc list -c s4 $(basename %h .lxd) | awk '/RUNNING/ 
> > {print $4}') %p
>
> I'm sad because DNS resolution used to work out of the box for *.lxd
> domains in the past. It was easy to configure "Hey, for this domain
> lxd, use that nameserver". I haven't been able to configure this
> anymore in recent ubuntu releases. The best I got was a dns loop and
> 100% cpu usage.

I loved using the proxy command for it. I've been putting lxd network
into kvm network and using the NSS libvirt plugins to solve lxc names:

rafaeldtinoco@workstation:~$ virsh net-dumpxml default

  default
  c6d5e95a-6c5a-4e17-9ae3-38f43c386c0d
  

  

  
  
  
  

  

  


rafaeldtinoco@workstation:~$ cat /etc/nsswitch.conf | grep hosts
hosts:  files libvirt_guest libvirt dns

rafaeldtinoco@workstation:~$ lxc profile show default | grep -B2 brdefault
name: eth0
nictype: bridged
parent: brdefault

So nss would solve all libvirt virtual machine names first, then
hostnames got by the dhcp leases from virtual machines AND lxd
containers and then all th rest. But I guess I can use .lxd and .kvm
(virsh list --all) and it will be better.

For the LXD profiles, I have a few depending on different needs:

https://github.com/rafaeldtinoco/provision/tree/master/lxd/profiles

$ lxc launch ubuntu-daily:focal apache2fix
$ lxc launch -p debian-default images: debian
$ lxc launch -p cluster ubuntu-daily:focal pacemakerdev

and all my networks are libvirt networks so I can have LXD and KVM
guests in the same bridges, like when using the cluster yaml profile
definition:

devices:
eth0:
name: eth0
nictype: bridged
parent: brdefault
type: nic
iscsi01:
name: iscsi01
nictype: bridged
parent: iscsi01
type: nic
iscsi02:
name: iscsi02
nictype: bridged
parent: iscsi02
type: nic
...

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Re: MIR or not to MIR (TCM or "LIO") tools

[Rafael David Tinoco]

> Also security needs to process all the extra packages in just three days -
> unlikely right?

Could it be MIR'ed as an exception after freeze ?

Not trying to force, genuine doubt.

> 
> IMHO while I agree It would be nice for 20.04 but if it is not doable in
> time due to all these constraints it is ok as well to "just" target 20.10
> with it.

For HA it would be important to have LIO, instead of TGT, in 20.04
because of SCSI 3 PERSISTENT RESERVATION support and the long term
support we have for LTS.

Some cluster environments, specially virtual ones not having many
fencing agents, for example, have to rely in SCSI fencing, that requires
SCSI 3 PR5 reservations, unsupported by TGT and watchdog devices to
guarantee node consistency.

> Please be on the same page with @Josh Powers  on
> this as this will be quite an intense ride to be squeezed into 20.04.

IIRC he said "as long as jamespage in on the same page", so I guess that
I'll leave it to you both to decide. Let me know if I can help with it
somehow, please.

> 
> P.S. FYI another reason in the past was maas but they are in a snap now and
> use their "own" tgt, so no dependency to consider anymore.
> P.P.S. have you asked (TBH I'd not know where) if some of our primary
> charms might depend on tgt?

Nice, I have thought about it but was uncertain why it wasn't important
to MAAS currently.

Thanks a lot for your input!

- rafaeldtinoco

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Re: Merge Opportunities Report - 2020-02-24

[Rafael David Tinoco]

On 24/02/2020 10:06, Bryce Harrington wrote:
> New Version in Debian Unstable
> --
> high  apache2   2.4.41-4  
> 2.4.41-1ubuntu1 
> high  bind9 1:9.11.16+dfsg-1  
> 1:9.11.14+dfsg-3ubuntu1 
> high  clamav0.102.2+dfsg-2
> 0.102.2+dfsg-1ubuntu1   
> high  nut   2.7.4-12  
> 2.7.4-11ubuntu4 
> high  pacemaker 2.0.3-3   
> 2.0.1-5ubuntu5

https://code.launchpad.net/~rafaeldtinoco/ubuntu/+source/pacemaker/+git/pacemaker/+merge/379595

> high  sosreport 3.9-2 
> 3.9-1ubuntu1
> high  squid 4.10-1
> 4.9-2ubuntu4
> low   corosync  3.0.3-2   
> 3.0.2-1ubuntu2  
> low   exim4 4.93-11   
> 4.93-9ubuntu1 

https://code.launchpad.net/~rafaeldtinoco/ubuntu/+source/corosync/+git/corosync/+merge/379581

and I have also "sbd" to be reviewed:

https://code.launchpad.net/~rafaeldtinoco/ubuntu/+source/sbd/+git/sbd/+merge/379606

> low   fetchmail 6.4.2-2   
> 6.4.1-1ubuntu1  
> low   libdbi-drivers0.9.0-8   
> 0.9.0-6ubuntu3  
> low   nss   2:3.50-1  
> 2:3.49.1-1ubuntu1   
> low   php-defaults  7369ubuntu2   
> 
> low   python-seamicroclient 0.4.0+2016.05.20.git.40ee44c664-3 
> 0.4.0+2016.05.20.git.40ee44c664-2ubuntu1
> low   rdma-core 28.0-1
> 27.0-2ubuntu3   
> low   ruby-defaults 1:2.5.7.1 
> 1:2.5.2ubuntu1  
> low   runc  1.0.0~rc10+dfsg1-1
> 1.0.0~rc10-0ubuntu1 
> low   sssd  2.2.3-1.1 
> 2.2.2-1ubuntu1  
> low   strongswan5.8.2-2   
> 5.8.2-1ubuntu1  
> low   unbound   1.9.6-2   
> 1.9.4-2ubuntu1  
> low   vlan  2.0.5 
> 2.0.4ubuntu1
> 
> 
> New Version in Experimental
> --
> high  tmux  3.1~rc1-1 3.0a-2  
>  
> low   dpdk  19.11-3   19.11-2ubuntu2  
>  
> low   haproxy   2.1.3-2   2.0.13-1ubuntu2 
>  
> low   http-parser   2.9.3-1   2.9.2-2 
>  
> low   libvirt   6.0.0-1   6.0.0-0ubuntu3  
>  
> 
> 
> New Upstream not in Debian
> --
> high  logwatch  7.5.2/logwatch-7.5.2  7.5.2-1ubuntu1  
>  
> (Low priority upstream releases skipped)
> 
> high == Packages seeded for Ubuntu-Server
> low == Non-seeded packages Server team is subscribed to
> 


-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Re: Merge Opportunities Report - 2020-02-17

[Rafael David Tinoco]

FYI

checking package booth
checking package cluster-glue
checking package corosync
corosync (debian: 3.0.3-2, ubuntu: 3.0.2-1ubuntu2) needs merge
checking package corosync-qdevice
checking package crmsh
checking package csync2
checking package dlm
checking package drbd-doc
checking package drbd-utils
checking package fence-agents
checking package gfs2-utils
checking package heartbeat
checking package keepalived
checking package kronosnet
checking package libqb
checking package multipath-tools
checking package ocfs2-tools
checking package open-iscsi
checking package pacemaker
pacemaker (debian: 2.0.3-3, ubuntu: 2.0.1-5ubuntu5) needs merge
checking package pcs
checking package python-rtslib-fb
checking package resource-agents
checking package sbd
sbd (debian: 1.4.1-3, ubuntu: 1.4.0-18-g5e3283c-1ubuntu1) needs merge
checking package targetcli-fb
checking package tcmu
checking package tgt

I'll try to catch up with those 3 before freeze.

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

MIR or not to MIR (TCM or "LIO") tools

[Rafael David Tinoco]

Hello all,

I have always used TGT project, despite its bad performance, as iSCSI
target in Linux, offering iSCSI luns for HA clusters. It was known to me
that TGT was *not* the best iSCSI target supported in Linux, being LIO
the chosen project for that (now called TCM:
https://www.kernel.org/doc/Documentation/target/tcmu-design.txt).

In a recent need, I needed SCSI 3 reservations in those SCSI volumes, to
test and enable fence_scsi agent, and was getting unclear errors when
trying to reserve the LUNs.

The following commands - that would register a reservation key, reserve
a lun, release the reservation and unregister the key - don't work when
using TGT iSCSI luns with open-scsi and iscsid tool/service.

$ sg_persist -r /dev/sda
$ sg_persist --out --register --param-sark=123abc /dev/sda
$ sg_persist --out --reserve --param-rk=123abc --prout-type=5 /dev/sda

prout-type = 5 -> executes SCSI PERSISTENT RESERVE OUT (5Fh) command
  with the PREEMPT AND ABORT (05h) service

   (https://bugs.launchpad.net/ubuntu/+source/tgt/+bug/1863688)

$ sg_persist --out --release --param-rk=123abc --prout-type=5 /dev/sda
$ sg_persist --out --register --param-rk=123abc /dev/sda

With that, its impossible to fence iSCSI luns using corosync/pacemaker
clusters.

TCM (or LIO) project fully supports fencing and several other iSCSI
features. It also supports userland backends that can extend backing
devices so it supports: qcow2, ceph, etc...

Despite being HA only or not, this use case is actually being used in
this email to show the need to have a tool that configures kernel TCM
(or LIO) capability as a supported tool (at least IMO).

I have found a recent previous MIR attempt of 1/3 of what is needed:

https://bugs.launchpad.net/ubuntu/+source/python-rtslib-fb/+bug/1854362

But, afaict, we would need MIRs for:

- python3-configshell-fb
- python3-rtslib-fb
- targetcli-fb

To have the "targetcli" tool in [main]. Upstream projects are hosted
together with open-iscsi repository, suggesting that they are actively
maintained and in good shape.

Has this ever been discussed ? It looks to me something we could/should
have in 20.04. Thoughts ?

Thanks!

Rafael

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Re: Triage and Migration report - Wed Feb 12, 2020

[Rafael David Tinoco]

Okay,

Do we have a map on components being kept for i386 and their
dependencies? I ask you this because of the following situation: I
could mark the pacemaker/all/i386 as a badtest. It would solve the
migration problem BUT then, when investigating, I see that:

pacemaker-resource-agents package (present in amd64 and i386 repos) depends on:

(c)rafaeldtinoco@clusterx32:~$ apt-cache policy resource-agents
resource-agents:amd64:
  Installed: (none)
  Candidate: 1:4.4.0-1ubuntu1
  Version table:
 1:4.4.0-1ubuntu1 500
500 http://br.archive.ubuntu.com/ubuntu focal/main amd64 Packages

which is currently unavailable for i386. My doubt is: should we ask
"resource-agents" to be included back in i386 then ? OR should we try
to get rid of pacemaker in i386 ? I'm not entirely sure why it is
being kept while resource-agents was removed... that is why I ask.

Even having the big list of things we want to keep for i386
environments, there are dependencies kept (or not) by a decision. Is
this placed somewhere ? Or we should concentrate all of those in you ?

The original rdepends for resource-agents is:

rafaeldtinoco@workstation:~$ apt-cache rdepends resource-agents
resource-agents
Reverse Depends:
  resource-agents-dbgsym
  pacemaker-resource-agents
  ceph-resource-agents
  resource-agents-paf
  heartbeat
  ceph-resource-agents

Should we open a bug and point you to for each of "these cases" where
we can't know if we should go ahead in removal or go backwards in
dependencies ?

Thanks Steve!

On Thu, Feb 13, 2020 at 10:17 AM Rafael David Tinoco
 wrote:
>
> > > Yep, pacemaker has some issues for i386 as well. Migration is blocked
> > > because of that. I also assumed we didn't have to do anything here.
> >
> > The existing test failures for packages in the release pocket have all been
> > hinted away so that they don't impact velocity, but it's the responsibility
> > of uploaders to address the failing autopkgtests as part of the new upload,
> > whether that's analyzing the failures and recommending to the release team
> > that the failures be permanently ignored, or fix the tests for
> > cross-testing.
>
> Definitely! We do that, and it's a "general" rule among us to check migrations
> every morning, as an example of what you said. My thought was that we had
> something else on-going for the i386-only autopkgtests. If not, I'll just go
> ahead and hint it for i386 based on latest failures.
>
> Thank you!

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Re: Triage and Migration report - Wed Feb 12, 2020

[Rafael David Tinoco]

> > Yep, pacemaker has some issues for i386 as well. Migration is blocked
> > because of that. I also assumed we didn't have to do anything here.
>
> The existing test failures for packages in the release pocket have all been
> hinted away so that they don't impact velocity, but it's the responsibility
> of uploaders to address the failing autopkgtests as part of the new upload,
> whether that's analyzing the failures and recommending to the release team
> that the failures be permanently ignored, or fix the tests for
> cross-testing.

Definitely! We do that, and it's a "general" rule among us to check migrations
every morning, as an example of what you said. My thought was that we had
something else on-going for the i386-only autopkgtests. If not, I'll just go
ahead and hint it for i386 based on latest failures.

Thank you!

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Re: Triage and Migration report - Wed Feb 12, 2020

[Rafael David Tinoco]

> kronosnet
>   - Failure on i386
>   - Appears due to unmet dependencies for gcc:i386 and make:i386

Yep, pacemaker has some issues for i386 as well. Migration is blocked
because of that. I also assumed we didn't have to do anything here.

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Re: Server 20.04 verses 16.04: python-gnuplot

[Rafael David Tinoco]

>
> I have been unable to get it working on a new 20.04 installation.
> If I attempt to install "python-gnuplot" I get:
>
> > Package python-gnuplot is not available, but is referred to by another
> package.
> > This may mean that the package is missing, has been obsoleted, or
> > is only available from another source
> > However, the following packages replace it:
> >  python3-gnuplot
> >
> > E: Package 'python-gnuplot' has no installation candidate
>

Using 20.04 (still in development) might get you in trouble like this =).
Looking at the header of intel_pstate_tracer.py you will see that it
requires python2:

"""
Prerequisites:
Python version 2.7.x
gnuplot 5.0 or higher
gnuplot-py 1.8
"""

So you either "port" this script to use with python3 (might be easy as it
looks simple and very monolithic) OR, for now, your devel machine should
stay as an Ubuntu Eoan, that still contains python2.

Note: you can always use LXD and have a container - with Ubuntu Eoan - with
all needed tools - just like I did to check all this - instead of
installing X libraries (for gnuplot) in your machine
directly.

$ lxc launch ubuntu:eoan gnuplotcontainer

That easy =o). Check:

https://github.com/rafaeldtinoco/provision

specially:

https://github.com/rafaeldtinoco/provision/blob/master/lxd/profiles/default.yaml

You can use that yaml file after configuring LXD:

$ lxc profile edit default < default.yaml

and then

$ lxc launch ubuntu:eoan gnuplotcontainer

and your container will be provisioned using cloud-init just like you
described in the yaml file. Very simple! Your kernel source directory can
be also shared among the containers (just like that yaml file shows also).

If I try to install "python3-gnuplot", it wants to convert
> my server installation into a full blown desktop. I do not
> want that. Even if I do allow it (i.e. I did already, by mistake),
> the script still doesn't work:
>

You can try not installing recommends (which is the default option for apt):

$ sudo apt-get install --no-install-recommends gnuplot OR

$ sudo apt-get install --no-install-recommends python3-gnuplot

Makes a big difference and might be enough for your case. Package
python-gnuplot doesn't exist any longer because python2 is being removed
from 20.04.

I hope all this helps you!

Cheers o/

-rafaeldtinoco
-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Re: Tuesday triage (2020-01-14)

[Rafael David Tinoco]

On Tue, Jan 14, 2020 at 3:59 PM Rafael David Tinoco
 wrote:
>
> > = Migration =
> > Working with Tinoco reviewing pcs, pyagentx and net-snmp. Only thing
> > remaining now to let net-snmp migrate is to rebuild the revdeps. I
> > will tackle haproxy next, which is stuck in the queue because it's an
> > FTBFS (see #1858485)
>
> Using temporarily the following PPA for that:
>
> https://launchpad.net/~rafaeldtinoco/+archive/ubuntu/libsnmp35builds/+packages
>
> I got 2 build issues:
>
> - google-cloud-print-connector
> - wmnd

Uploaded:

389-ds-base_1.4.2.4-1build1_source.changes
asterisk_16.2.1~dfsg-2build3_source.changes
cacti-spine_1.2.6-1build1_source.changes
cluster-glue_1.0.12-14build1_source.changes
corosync_3.0.2-1ubuntu2_source.changes
cyrus-imapd_3.0.12-2ubuntu3_source.changes
dnsdist_1.4.0-1build1_source.changes
frr_7.2-1build1_source.changes
fwbuilder_5.3.7-3build2_source.changes
hplip_3.19.12+dfsg0-2build1_source.changes
ifstat_1.1-8.1build2_source.changes
kamailio_5.3.2-1build1_source.changes
keepalived_2.0.19-1build1_source.changes
lldpd_1.0.4-1build2_source.changes
openhpi_3.8.0-2build3_source.changes
openipmi_2.0.27-0ubuntu2_source.changes
openvas-libraries_9.0.3-1build2_source.changes
pdns-recursor_4.2.1-1build1_source.changes
php7.3_7.3.11-0ubuntu2_source.changes
prometheus-snmp-exporter_0.16.1+ds-1build1_source.changes
s390-tools_2.11.0-0ubuntu2_source.changes
sane-backends_1.0.27-3.2ubuntu4_source.changes

Opened bug for google-cloud-print-connector:

https://bugs.launchpad.net/ubuntu/+source/google-cloud-print-connector/+bug/1859685

Still need to tackle wmnd issue.

Uploads generated an issue with s390x build of frr package:

https://launchpadlibrarian.net/460626567/buildlog_ubuntu-focal-s390x.frr_7.2-1build1_BUILDING.txt.gz

As well.

Note: this is all blocking net-snmp migration (and all other dependencies).

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Re: Tuesday triage (2020-01-14)

[Rafael David Tinoco]

> = Migration =
> Working with Tinoco reviewing pcs, pyagentx and net-snmp. Only thing
> remaining now to let net-snmp migrate is to rebuild the revdeps. I
> will tackle haproxy next, which is stuck in the queue because it's an
> FTBFS (see #1858485)

Using temporarily the following PPA for that:

https://launchpad.net/~rafaeldtinoco/+archive/ubuntu/libsnmp35builds/+packages

I got 2 build issues:

- google-cloud-print-connector
- wmnd

Working on those before uploading them all.

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Triage report for 2019-12-23

[Rafael David Tinoco]

28 bugs but most of them were tag updates or bugs expiring.

Ones worth to mention:

https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1849560
- subscribed ubuntu-server
- tagged as server-next
- importance: wishlist
- note: openssh /etc/* files could be moved (FHS accordance)
* this would could be discussed *

https://bugs.launchpad.net/ubuntu/+source/mysql-5.7/+bug/1856597
- subscribed ubuntu-server
- importance: low
- note: mysql upgrade couldn't bind 3306 (time_wait ?)
possibly improve upgrade logic

https://bugs.launchpad.net/ubuntu/+source/samba/+bug/1856771
- status: incomplete
- note: samba failed to start after upgrade, can't see cause

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Re: Merge Opportunities Report - 2019-12-16

[Rafael David Tinoco]

On 16/12/2019 16:01, Bryce Harrington wrote:
> New Version in Debian Unstable
> --
> high  nut   2.7.4-11 2.7.4-9ubuntu1   
>   
> high  samba 2:4.11.3+dfsg-1  
> 2:4.11.1+dfsg-3ubuntu1 
> high  vlan  2.0.52.0.4ubuntu1 
>   
> low   corosync  3.0.3-1  3.0.2-1ubuntu1   
>  
On it.
>  
> low   ebtables  2.0.11-1 
> 2.0.10.4+snapshot20181205-1ubuntu1 
> low   exim4 4.93-3   
> 4.93~RC2-1ubuntu1  
> low   ipxe  1.0.0+git-20190125.36a4c85-2 
> 1.0.0+git-20190109.133f4c4-0ubuntu2
> low   irqbalance1.6.0-3  1.6.0-1ubuntu1   
>   
> low   libvirt   5.6.0-3  5.4.0-0ubuntu5   
>   
> low   net-snmp  5.8+dfsg-2   
> 5.7.3+dfsg-5ubuntu6
I'm on it. It will unblock pcs migration (hopefully =).
> 
> low   nss   2:3.47.1-1   2:3.47-1ubuntu2  
>   
> low   php7.37.3.12-1 7.3.11-0ubuntu1  
>   
> low   qemu  1:4.2-1  
> 1:4.0+dfsg-0ubuntu10   
> low   resource-agents   1:4.4.0-21:4.4.0-1ubuntu1 
>   
> low   runc  1.0.0~rc9+dfsg1-1
> 1.0.0~rc8+git20190923.3e425f80-0ubuntu1
> low   spice-protocol0.14.0-1 0.14.0-0ubuntu1  
>   
> low   thin-provisioning-tools   0.8.5-2  0.7.6-2.1ubuntu1 
>   
>
>
> New Version in Experimental
> --
> low   dpdk  19.11-1   18.11.5-1   
>
> low   haproxy   2.1.1-1   2.0.11-1ubuntu1 
>
> low   ipmctl02.00.00.3673+ds-1
> 02.00.00.3474+really01.00.00.3481-1
> low   ruby-defaults 1:2.5.7~0 1:2.5.2 
>
>
>
> New Upstream not in Debian
> --
> high  logwatch  7.5.2/logwatch-7.5.2  7.5.0-2ubuntu1  
>  
> high  multipath-tools   0.8.2 0.7.9-3ubuntu6  
On it.
>  
> high  openipmi  2.0.272.0.27-0ubuntu1 
>  
> high  pacemaker 2.0.2 2.0.1-5ubuntu1  
>  
> (Low priority upstream releases skipped)
On it.
> high == Packages seeded for Ubuntu-Server
> low == Non-seeded packages Server team is subscribed to
>

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Re: Triage report for 2019-12-04 (Wednesday triage)

[Rafael David Tinoco]

>>> == Proposed Migration ==
>>>
>>> walinuxagent
>>>   - blocked by LP: #1851064 (block-proposed SRU), as mentioned by paride
>>>   - this tag was added recently (11-27) but not spotting rationale?
>>>
>>> mod-wsgi
>>>   - Retriggered build with glibc/2.30
>>>
>>> byobu
>>>   - Build failed for amd64 because upstream renamed README to README.md
>>> in this release, but debian/docs still specifies "README"
>>>   -> I have a fix but can't push branch to git.launchpad.net for some
>>> reason: "fatal: remote error: Path translation timed out."
>> That git push problem is a known issue when you push a repo that is
>> based on an existing one.
>> Unfortunately that is a common case with git-ubuntu, I had the same last 
>> week.
>> A temporary workaround seem to be repacking refs often on the server side.
>> I know that cjwatson and wgrant are on this already, so I added them
>> to CC, to share updates (if available).
> Yes, Josh helped point me to #launchpad-ops, where wgrant helped get
> things sorted out with the byobu branch straight away.  Sounds like a
> couple potential solutions are under consideration, and in the meantime
> working around it is possible by request on #launchpad-ops.
>
> Bryce

For same issue:

https://code.launchpad.net/~rafaeldtinoco/+git/net-snmp/+merge/376741

basically I did a full clone by hand - instead of relying on internal to
launchpad refs cloning - so the review could be made in a merge request.
I'll ask tomorrow for pkg net-snmp to be cloned to my git, but, for now,
a review might be made I suppose.

Thanks for documenting this here Bryce!
-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Re: Merge Opportunities Report - 2019-12-09

[Rafael David Tinoco]

On 09/12/2019 10:07, Bryce Harrington wrote:
> New Version in Debian Unstable
> --
> high clamav 0.102.1+dfsg-1 0.101.4+dfsg-1ubuntu1 high nut 2.7.4-10
> 2.7.4-9ubuntu1 high vlan 2.0.5 2.0.4ubuntu1 low autofs 5.1.6-1
> 5.1.5-1ubuntu1 low ebtables 2.0.10.4+snapshot20181205-3
> 2.0.10.4+snapshot20181205-1ubuntu1 low exim4 4.93~RC7-1
> 4.93~RC2-1ubuntu1 low freeipmi 1.6.4-3 1.6.3-1.1ubuntu2 low ipxe
> 1.0.0+git-20190125.36a4c85-1 1.0.0+git-20190109.133f4c4-0ubuntu2 low
> libvirt 5.6.0-3 5.4.0-0ubuntu5 low lxc 1:3.1.0+really3.0.4-2
> 3.0.4-0ubuntu2 low net-snmp 5.8+dfsg-2 5.7.3+dfsg-5ubuntu6 low nss
> 2:3.47.1-1 2:3.47-1ubuntu2 low php7.3 7.3.12-1 7.3.11-0ubuntu1 low
> qemu 1:4.1-3 1:4.0+dfsg-0ubuntu10 low resource-agents 1:4.4.0-2
> 1:4.4.0-1ubuntu1 

This one is on my plate as well. I have to remove net-tools dependency
from it so priority for this merge is high.

> low runc 1.0.0~rc9+dfsg1-1 1.0.0~rc8+git20190923.3e425f80-0ubuntu1
> low spice-protocol 0.14.0-1 0.14.0-0ubuntu1 low xen
> 4.11.1+92-g6c33308a8d-2 4.9.2-0ubuntu2
>
> New Version in Experimental
> --
> low dpdk 19.11-1 18.11.5-1 low freeradius 3.0.20+dfsg-2 3.0.20+dfsg-1
> low haproxy 2.1.0-2 2.0.10-1ubuntu1 low ipmctl 02.00.00.3658+ds-1
> 02.00.00.3474+really01.00.00.3481-1
> low ruby-defaults 1:2.5.7~0 1:2.5.2
>
> New Upstream not in Debian
> --
> high logwatch 7.5.2/logwatch-7.5.2 7.5.0-2ubuntu1 high multipath-tools
> 0.8.2 0.7.9-3ubuntu6

I got this. I have to address some issues from s390x pointed out by
Christian to me today (through LP).


> high openipmi 2.0.27 2.0.27-0ubuntu1 


> high pacemaker 2.0.2 2.0.1-5ubuntu1 (Low priority upstream releases
> skipped)

Debian HA maintainers are working on it, corosync 3.0.3 was just
released and it was just accepted into unstable:

corosync (3.0.3-1) unstable; urgency=medium
.
* [d103a33] New upstream release (3.0.3)
* [e6f6831] Refresh our patches
* [f1e85a3] Enable nozzle support
* [19d3dd3] Package the votequorum simulator in corosync-vqsim
* [8ae3235] Update Standards-Version to 4.4.1 (no changes required)
* [bfd9560] Advertise Rules-Requires-Root: no

I'll probably merge those 2 together when HA team finishes upstream syncs.


> high == Packages seeded for Ubuntu-Server
> low == Non-seeded packages Server team is subscribed to
>

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Re: Merge Opportunities Report - Nov 11, 2019

[Rafael David Tinoco]

From this list I got (for now):

pacemaker
corosync
crmsh
dbconfig-common
multipath-tools

With proper cards in the merges board.

o/

On 04/11/2019 17:24, Bryce Harrington wrote:

New Version in Debian Unstable
--
high  nut   2.7.4-10 2.7.4-9ubuntu1
high  pacemaker 2.0.1-5  2.0.1-4ubuntu2
high  pollinate 4.33-3   4.33-2ubuntu1
high  samba 2:4.11.1+dfsg-2  
2:4.10.7+dfsg-0ubuntu3
high  smartmontools 7.0-27.0-0ubuntu1
high  vlan  2.0.52.0.4ubuntu1
low   autofs5.1.5-2  5.1.5-1ubuntu1
low   corosync  3.0.2-1  3.0.1-2ubuntu1
low   crmsh 4.1.0-3  4.1.0-2ubuntu2
low   dbconfig-common   2.0.13   2.0.11ubuntu2
low   dovecot   1:2.3.7.2-1  1:2.3.4.1-5ubuntu3
low   ebtables  2.0.10.4+snapshot20181205-3  
2.0.10.4+snapshot20181205-1ubuntu1
low   etckeeper 1.18.10-1.1  1.18.10-1ubuntu3
low   exim4 4.93~RC1-2   4.92.1-1ubuntu4
low   fetchmail 6.4.1-1  6.4.0~rc4-1ubuntu1
low   freeipmi  1.6.4-3  1.6.3-1.1ubuntu2
low   ipxe  1.0.0+git-20190125.36a4c85-1 
1.0.0+git-20190109.133f4c4-0ubuntu2
low   ldb   2:2.0.7-32:1.5.5-0ubuntu3
low   ldns  1.7.0-4  1.7.0-3ubuntu8
low   libpam-radius-auth1.4.0-2  1.3.17-0ubuntu5
low   libseccomp2.4.1-2  
2.4.1-0ubuntu0.19.10.3
low   libvirt   5.6.0-2  5.4.0-0ubuntu5
low   lm-sensors1:3.6.0-11:3.5.0-3ubuntu1
low   lxc   1:3.1.0+really3.0.4-23.0.4-0ubuntu1
low   memcached 1.5.19-2 1.5.10-0ubuntu4
low   nagios-nrpe   3.2.1-3  3.2.1-1ubuntu1
low   net-snmp  5.8+dfsg-2   5.7.3+dfsg-5ubuntu6
low   nss   2:3.47-1 2:3.45-1ubuntu2
low   pmdk  1.7-11.6.1-1ubuntu1
low   rabbitmq-server   3.7.18-1 3.7.8-4ubuntu2
low   resource-agents   1:4.4.0-11:4.2.0-1ubuntu2
low   rrdtool   1.7.2-3  1.7.2-1ubuntu2
low   ruby2.5   2.5.7-1  2.5.5-4ubuntu2
low   runc  1.0.0~rc9+dfsg1-1
1.0.0~rc8+git20190923.3e425f80-0ubuntu1
low   socat 1.7.3.3-21.7.3.2-2ubuntu3
low   spice 0.14.2-4 0.14.2-0ubuntu2
low   spice-protocol0.14.0-1 0.14.0-0ubuntu1
low   sssd  2.2.2-1  2.2.0-4ubuntu1
low   strongswan5.8.1-1  5.7.2-1ubuntu3
low   tevent0.10.1-3 0.9.39-0ubuntu2
low   xen   4.11.1+92-g6c33308a8d-2  4.9.2-0ubuntu2
low   yui3  3.5.1-1.13.5.1-1ubuntu3


New Version in Experimental
--
high  tmux  3.0~rc5-2 2.9a-3build2


New Upstream not in Debian
--
high  logwatch  7.5.2/logwatch-7.5.2  7.5.0-2ubuntu1
high  multipath-tools   0.8.2 0.7.9-3ubuntu6
high  openipmi  2.0.272.0.25-2.1ubuntu1
(Low priority upstream releases skipped)

high == Packages seeded for Ubuntu-Server
low == Non-seeded packages Server team is subscribed to




--
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Re: Macs Disconnect from SMB Shares After Automatic Security Updates

[Rafael David Tinoco]

On 31/10/2019 09:18, Louis Waweru wrote:

Hello,

I believe I have a problem related to updating servers that has crippled
Samba for Mac clients.

I have some Ubuntu Servers running Samba with Winbind. Everything is fine,
but Macs will randomly disconnect overnight, or at some irregular interval.

On the servers, Samba logs this as two events:

1: ../source3/smbd/service.c:1050(close_cnum)
2: closed connection to service data

By matching timestamps on the Macs I can see they log the drops as:

kcm DEPRECATED USE in libdispatch client: Setting timer interval to 0
requests a 1ns timer, did you mean FOREVER (a one-shot timer)?; set a
breakpoint on _dispatch_bug_deprecated to debug

By analyzing timestamps I have determined that this is the only event
logged on the Mac clients' side. Here is an example client that has a shell
script writing to a text file on a share every ten seconds:

https://i.stack.imgur.com/fHeCH.png

You can see the connection was alive at 08:59:46 in the text file on the
left, and in /var/log/system.log there's only a single relevant message.

I asked on the Samba list serve about it and have been told the Macs are
simply closing the connections.


Wireshark analysis shows some additional information:

https://i.imgur.com/UMTiShi.png

Errors from above (Line 4):

- STATUS_NETWORK_SESSION_EXPIRED
- SATATUS_INVALID_PARAMETER
- STATUS_NETWORK_NAME_DELETED

Here is the final SMB2 message (second from bottom): Negotiate Protocol
Response:

https://i.stack.imgur.com/AxLBI.png

As if to confound, there's an NT Status: STATUS_SUCCESS messages in there
(see annotation).

Here is what Microsoft says

about
the error:

If the Status field in the SMB2 header is STATUS_NETWORK_SESSION_EXPIRED,
the client MUST attempt to reauthenticate the session that is identified by
the SessionId in the SMB2 header, as specified in section 3.2.4.2.3. If the
reauthentication attempt succeeds, the client MUST retry the request that
failed with STATUS_NETWORK_SESSION_EXPIRED. *If the reauthentication
attempt fails, the client MUST fail the operation and terminate the session*,
as specified in section 3.2.4.23.


Please see more here:
https://apple.stackexchange.com/q/373563/6209

Do you think this is a bug on Ubuntu?


what ubuntu version are you using ?



There are a number of servers with identical setups, but the ones that have
gotten recent updates within the past 30 days or so exhibit this behavior
with Mac clients. The ones waiting to be restarted do not.


can you compare samba version (or even all pkgs version differences) 
between a working and a non-working one ?


If you can "prove" that the upgrade to a package - samba in this case - 
caused a change in behavior that was NOT described in the package bug 
from the SRU (stable release update) that caused the upgrade, then I'd 
say it looks like a bug and you can open a bug for the package:


https://launchpad.net/ubuntu/+source/samba/ -> report a bug

And, in this same page, you can find the latest version from -updates 
repository and check, by opening the arrow, what was the change made to 
that particular version.


You can also try downgrading the samba, that was upgraded, to the 
previous version and make sure that this, per se, mitigates the issue.



--
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Triage/Migration report of the day

[Rafael David Tinoco]

Bugs last updated between 2019-09-27 (Friday) and 2019-09-29 (Sunday)
inclusive
Date range identified as: "Monday triage"
Found 21 bugs

LP: #1781526 - +(Won't Fix) [qemu] - Ubuntu18.04 - qemu patch to align
memory to allow 2MB THP

- Already taken care by Christian (Fix Released and Won't Fix, per IBM
request)

LP: #1840956 - +(Won't Fix) [qemu] - qemu-user-static fails to install
in WSL
- Disco was verified by Christian (its Fix Committed right now)
- Xenial is reported to be affected by me -> Work to do: subscribed
ubuntu-server

LP: #1841936 - *+(Fix Committed) [haproxy] - Rebuild haproxy with
openssl 1.1.1 will change features (bionic)

- Christian added security team for advice and review, waiting on them.

LP: #1844834 - *+(Confirmed) [open-vm-tools] - open-vm-tools 11.0.0 released

- This is a new merge to be done in 20.04.
- Subscribed ubuntu-server team, already tagged server-next.

LP: #1845506 - +(Triaged) [libvirt] - Libvirt snapshot doesn't update
apparmor profile

- Triaged by Christian, he will work on this.
- Subscribed ubuntu-server

LP: #1845661 - +(Triaged) [mysql-8.0] - mysql-router binary ships
unnecessary shared objects in /usr/lib/mysql-router

- Lacks description but since Lars is assigned and Robie subscribed I
did not change it.
- I believe this is ubuntu-server, but will be done by Lars, subscribed
either way.

LP: #1580385 - (In Progress) [nmap] - /usr/bin/nmap:11: hascaptures:…

- Subscribed ubuntu-server.
- vtapia from seg is actively working in this bug. (customer issue 
perhaps)

LP: #1788098 - *(Invalid) [qemu] - Avoid migration issues with aligned
2MB THB

- Added Disco as Fix Released (based on Frank's last comment)
- Moved on, there is another QEMU related bug Christian already took 
care.

LP: #1815101 - (Triaged) [heartbeat]- [master] Restarting
systemd-networkd breaks keepalived, heartbeat, corosync, pacemaker
(interface aliases are restarted)

- I'm currently working in this case, so ignored for triage.

LP: #1826158 - (Incomplete) [probert] - Failed to install guestOS
ubuntu-19.04-live-server-amd64.iso(GA) in ESXi with new installer
subiquity 19.04.5 when create VM with NVME disk

- Yuhua from Vmware answered saying that any subiquity bigger than the
one present in ubuntu-19.04-beta-live-server-amd64.iso(beta) is buggy.
- Subscribed ubuntu-server, moved tag to triaged and priority to
medium. I suspect this one should be taken care by the subiquity team,
unsure if something else is needed from myself here.

LP: #1833618 - (New) [sg3-utils] - failing to deploy Ubuntu Disco

- Working on this today, subscribed myself, ubuntu-server.
- Flagged this as high priority for both: sg3-utils and curtin.
- Will start working on this right after Monday triage.

LP: #1836500 - (Expired) [open-vm-tools] - Starting vm hangs after
upgrading open-vm-tools from 2:10.3.5-7~ubuntu0.18.04.1

- Christian, Bryce and Andreas provided feedback about this issue to 
user.
- VMware also did provide feedback (mentioning their internal ticket,
opened by open-vm-tools maintainer, requested by Christian).
- VMware said this was likely related to:
https://askubuntu.com/questions/1149957/unable-to-login-to-account-in-ubuntu-18-04-vmware-workstation-15-after-update
- I let this case to continue expired, as case is complete about
workaround/mitigation/what to do next/possible root causes.

LP: #1845321 - (New) [qemu] - cinder-daemons autopkgtest must override
driver to use pymysql

- autopkgtest blocking qemu migration (cinder & sqlalchemy vs mysqldb
issue)
- Corey has provided a fix on top of the -proposed version
- Christian provided a MYSQL8 ALTER syntax patch to Eoan package.
- Corey has worked in Disco fix as well.
- QEMU added just because of migration blocking.
- Subscribed ubuntu-server, ubuntu-virt, moved on.

LP: #1845337 - (Confirmed) [qemu] - Disco autopkgtest @ armhf fails
root-unittests -> test-execute -> exec-dynamicuser-statedir.service

- Christian masked armhf related test (systemd) due to changes in armhf
lxd environment (allowing nesting). That change made armhf autopkgtest
to start failing.
- His MR needs review and merge (britney/hingts-ubuntu-disco).
- Subscribed ubuntu-server.

LP: #1845562 - (Incomplete) [libvirt] - libvirt error Invalid value
'+cpu' for 'cgroup.subtree_control'

- Asked user about the workaround (removing rtkit) and what were his
use cases for cgroupsv2 + realtime processes.
- Case remained incomplete, subscribed ubuntu-server.

LP: #1845652 - (New) [rsync] - rsync sends everything, not just changes

- Pointed to a stackexchange thread and flagged case as incomplete.

LP: #1845765 - (New) [asterisk] - asterisk-modules package built without
amr_codec.so

- User 

Re: Triage/Migration report of the day

[Rafael David Tinoco]

On 27/09/2019 08:31, Dan Streetman wrote:
> On Fri, Sep 27, 2019 at 1:58 AM Christian Ehrhardt
>  wrote:
>> Triage
>> - 16 bugs to triage, interesting ones:
>>  - Mostly activity from us => no-action items
>>  - 1841936 is interesting as a planned no-change-rebuild against
>> openssl1.1.1 not only
>> picked up the expected TLSv1.3 but also increased DH key sizes.
>>  - No new bugs added to our work queues (all that need action are
>> already on our queues)
>>
>> Proposed migration
>> - libvirt test is still broken by new systemd 243
>>=> https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1844879
> hasn't systemd been reverted back to 242 in Eoan?
Dan,

It has:

 rafaeldtinoco, 243 had too many regressions, so please plan
with 242 being in eoan
 rafaeldtinoco, i'm preparing one more upload if it gets FFe,
if you seek FFe for your changes then they can go in together

FYI,

I'm also working in the systemd-networkd SRU (for keepalived, etc). That
is what rbalint refers to about "go together".

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam

Re: Is there an official statement about the Ubuntu package version identifier

[Rafael David Tinoco]

Hello Leroy

On 06/06/2019 16:03, Leroy Tennison wrote:
> The reason I ask is I have a commercial vulnerability scanner reporting
> as "fail" a test (for example, CVE-2016-5387)of our
> systems where https://people.canonical.com/~ubuntu-security/cve/ states
> that a fix has been released and our current version appears to be later
> than that release.  I need to dispute that finding for compliance
> reasons but would like an official statement to show to the vendor
> concerning how Ubuntu handles these things.  I suspect the vendor is
> only checking the upstream major and minor version number rather than
> actually testing and thus concluding a "fail" erroneously.

2 good resources about versioning can be found here:

Debian versioning:

https://www.debian.org/doc/debian-policy/ch-controlfields.html#version

A blog entry from Robie basak, explaining Ubuntu versioning in details:

http://www.justgohome.co.uk/blog/2015/01/ubuntu-package-versions.html

A good way of making sure a version is greater than other is to execute:

dpkg --compare-versions 1ubuntu1.0-1 gt 1ubuntu1.0~1 && echo greater
than || echo less than

and check.

-- 
ubuntu-server mailing list
ubuntu-server@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
More info: https://wiki.ubuntu.com/ServerTeam