[Bug 1204795] [NEW] socat applies settings to wrong fd when accepting connection
Public bug reported:
After accept socket options are applied to the listening socket again,
but not to the accepted connection's socket. This can be seen when e.g.
requesting TCP-keepalives to be sent:
When connecting with socat to a non-keepalive listener everything works as
expected:
socat TCP4:[IP]:1234,keepalive=1,keepidle=1,keepintvl=1,keepcnt=3 -
setsockopt(3, SOL_TCP, TCP_KEEPIDLE, [1], 4) = 0
setsockopt(3, SOL_TCP, TCP_KEEPINTVL, [1], 4) = 0
setsockopt(3, SOL_TCP, TCP_KEEPCNT, [3], 4) = 0
setsockopt(3, SOL_SOCKET, SO_KEEPALIVE, [1], 4) = 0
and keepalives are sent each second.
When using a keepalive-listener and non-keepalive sender, no keepalives are
sent. With
socat
TCP4-LISTEN:1234,reuseaddr=1,keepalive=1,keepidle=1,keepintvl=1,keepcnt=3
-
following trace can be captured:
setsockopt(3, SOL_SOCKET, SO_REUSEADDR, [1], 4) = 0 sets keep alive
on listening socket
setsockopt(3, SOL_TCP, TCP_KEEPIDLE, [1], 4) = 0
setsockopt(3, SOL_TCP, TCP_KEEPINTVL, [1], 4) = 0
setsockopt(3, SOL_TCP, TCP_KEEPCNT, [3], 4) = 0
fcntl64(3, F_SETFD, FD_CLOEXEC) = 0
bind(3, {sa_family=AF_INET, sin_port=htons(1234),
sin_addr=inet_addr("0.0.0.0")}, 16) = 0
listen(3, 5)= 0
accept(3, {sa_family=AF_INET, sin_port=htons(57251),
sin_addr=inet_addr("[IP]")}, [16]) = 5
setsockopt(3, SOL_SOCKET, SO_KEEPALIVE, [1], 4) = 0
so the keep-alive is set again on the server socket before bind and
after accept, but not on the accepted socket (5). I haven't checked the
kernel specs if keepalive should be inherited with accept, but at least
it seems, that this is not the case.
The bug has little to no security implications unless security-relevant
options in socat are applied that way to new sockets. On our systems,
that bug lead only to a memory starvation DOS on two small virtual
machines that could not cope with the high number of socat processes due
to abandoned TCP-connections when statefull firewalls in between were
frequently restarted.
The following !UNTESTED! patch to the socat trunk should fix it.
--- xio-listen.c 2013-03-22 06:43:41.0 +
+++ xio-listen.c2013-07-19 08:34:09.644931068 +
@@ -277,8 +277,8 @@
sockaddr_info((struct sockaddr *)pa, pas,
infobuff, sizeof(infobuff)));
- applyopts(xfd->fd, opts, PH_FD);
- applyopts(xfd->fd, opts, PH_CONNECTED);
+ applyopts(ps, opts, PH_FD);
+ applyopts(ps, opts, PH_CONNECTED);
if (dofork) {
pid_t pid; /* mostly int; only used with fork */
Maintainer has confirmed the bug in trunk and plans to release a patch also.
Affected version:
1.7.1.3-1.2 multipurpose relay for bidirectional data transfer
** Affects: socat (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to socat in Ubuntu.
https://bugs.launchpad.net/bugs/1204795
Title:
socat applies settings to wrong fd when accepting connection
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/socat/+bug/1204795/+subscriptions
--
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1204662] Re: Language pack installation should be optional in ubuntu templates
** Summary changed: - Language pack installation should be optional in ubuntu-cloud template + Language pack installation should be optional in ubuntu templates -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to lxc in Ubuntu. https://bugs.launchpad.net/bugs/1204662 Title: Language pack installation should be optional in ubuntu templates To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/1204662/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 908901] Re: awstats confused by 408 entries in apache log files
Problem present in 7.0~dfsg-5 (Ubuntu 12.04.2 LTS). NB: 408 lines appears (notably) if the client has made a connection to the web server and not sent any request. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to awstats in Ubuntu. https://bugs.launchpad.net/bugs/908901 Title: awstats confused by 408 entries in apache log files To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/awstats/+bug/908901/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1203976] Re: DNS wildcards fail to resolve with DNSsec enabled
** Information type changed from Public to Public Security -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to bind9 in Ubuntu. https://bugs.launchpad.net/bugs/1203976 Title: DNS wildcards fail to resolve with DNSsec enabled To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/bind9/+bug/1203976/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
Re: [Bug 1172467] Re: Dnsmasq caches negative results if it starts before the network is up
On 24/07/13 20:33, Thomas Hood wrote: > Hi Simon, > > I think we've established that the submitter is having a problem with > dnsmasq server, not with NetworkManager-controlled dnsmasq. So it would > be interesting to know if clear-on-reload fixes the submitter's problem. > (He already said that no-negcache fixes it.) > > That clear-on-reload is ignored in the D-Bus case sounds like a distinct > issue. > Agreed, I'll fix that now. > What about Stéphane's suggestion that dnsmasq treats failure to find a > name in /etc/hosts as a NXDOMAIN? > No name in /etc/hosts and no upstream servers -> NXDOMAIN reply, but no state changes: the same query repeated after installing an upstream server would result in a query to the upstream server. Simon. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to dnsmasq in Ubuntu. https://bugs.launchpad.net/bugs/1172467 Title: Dnsmasq caches negative results if it starts before the network is up To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/dnsmasq/+bug/1172467/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1157626] Re: Unable to use "virsh migrate" on two hosts after moving to raring
My system works after editing /etc/libvirt/qemu.conf and set this: user = "libvirt-qemu" group = "kvm" -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to qemu in Ubuntu. https://bugs.launchpad.net/bugs/1157626 Title: Unable to use "virsh migrate" on two hosts after moving to raring To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1157626/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1202653] Re: apache2 2.4.4-6ubuntu4 failed to upgrade: Cannot load /usr/lib/apache2/modules/libphp5.so into server: undefined symbol: unixd_config
Calculating upgrade... Done The following NEW packages will be installed: libdvbpsi8 linux-headers-3.10.0-5 linux-headers-3.10.0-5-generic linux-image-3.10.0-5-generic linux-image-extra-3.10.0-5-generic The following packages have been kept back: vlc-nox The following packages will be upgraded: account-plugin-aim account-plugin-jabber account-plugin-salut account-plugin-yahoo apache2-mpm-prefork apache2-utils app-install-data apparmor apparmor-easyprof apparmor-easyprof-ubuntu check cups cups-bsd cups-client cups-common cups-daemon cups-ppdc cups-server-common dconf-cli dconf-editor dconf-gsettings-backend dconf-service dconf-tools dh-apparmor empathy empathy-common espeak espeak-data friends friends-dispatcher friends-facebook friends-twitter geoclue-ubuntu-geoip gir1.2-dee-1.0 gir1.2-gnomedesktop-3.0 gir1.2-gudev-1.0 gir1.2-packagekitglib-1.0 gnome-desktop3-data gnome-terminal gnome-terminal-data graphviz grub-common grub-pc grub-pc-bin grub2-common guile-2.0-libs gvfs gvfs-backends gvfs-bin gvfs-common gvfs-daemons gvfs-fuse gvfs-libs gwhere hud icedtea-6-jre-cacao icedtea-6-jre-jamvm indicator-sound isc-dhcp-client isc-dhcp-common isc-dhcp-server language-pack-gnome-sa language-pack-gnome-sa-base language-pack-sa language-pack-sa-base libapache2-mod-php5 libapparmor-perl libapparmor1 libcdt4 libcgraph5 libcups2 libcupscgi1 libcupsimage2 libcupsmime1 libcupsppdc1 libdconf-dbus-1-0 libdconf1 libdee-1.0-4 libespeak1 libgeoip1 libgmime-2.6-0 libgnome-desktop-3-7 libgnome-desktop-3-dev libgraph4 libgsl0ldbl libgudev-1.0-0 libgupnp-igd-1.0-4 libgvc5 libgvpr1 libhud-client2 libindicator3-7 libindicator7 liblightdm-gobject-1-0 libpackagekit-glib2-14 libpam-systemd libpathplan4 libsasl2-2 libsasl2-modules libsystemd-daemon0 libsystemd-journal0 libsystemd-login0 libtimezonemap1 libudev1 libvlc5 libvlccore5 lightdm linux-generic linux-generic-pae linux-headers-generic linux-headers-generic-pae linux-image-generic linux-image-generic-pae linux-libc-dev mcp-account-manager-uoa nautilus-sendto-empathy openjdk-6-jre openjdk-6-jre-headless openjdk-6-jre-lib overlay-scrollbar overlay-scrollbar-gtk2 overlay-scrollbar-gtk3 packagekit packagekit-backend-aptcc packagekit-tools php5 php5-cli php5-common php5-curl php5-intl php5-ldap php5-mysql postgresql postgresql-client-common postgresql-common python-dnspython python-packagekit python-paramiko python-sip python-webob simple-scan software-center systemd-services transmission-common transmission-gtk udev udisks unity-lens-friends upstart vlc-data 149 upgraded, 5 newly installed, 0 to remove and 1 not upgraded. 7 not fully installed or removed. Need to get 6,106 kB/144 MB of archives. After this operation, 201 MB of additional disk space will be used. Do you want to continue [Y/n]? y Get:1 http://archive.ubuntu.com/ubuntu/ saucy/universe php5-intl i386 5.5.1+dfsg-1ubuntu1 [133 kB] Get:2 http://archive.ubuntu.com/ubuntu/ saucy/main php5-mysql i386 5.5.1+dfsg-1ubuntu1 [78.5 kB] Get:3 http://archive.ubuntu.com/ubuntu/ saucy/main php5-ldap i386 5.5.1+dfsg-1ubuntu1 [21.5 kB] Get:4 http://archive.ubuntu.com/ubuntu/ saucy/main libapache2-mod-php5 i386 5.5.1+dfsg-1ubuntu1 [2,821 kB] Get:5 http://archive.ubuntu.com/ubuntu/ saucy/main php5-cli i386 5.5.1+dfsg-1ubuntu1 [2,810 kB] Get:6 http://archive.ubuntu.com/ubuntu/ saucy/main php5-curl i386 5.5.1+dfsg-1ubuntu1 [32.7 kB] Get:7 http://archive.ubuntu.com/ubuntu/ saucy/main php5-common i386 5.5.1+dfsg-1ubuntu1 [208 kB] Get:8 http://archive.ubuntu.com/ubuntu/ saucy/main php5 all 5.5.1+dfsg-1ubuntu1 [1,252 B] Fetched 6,106 kB in 3min 31s (28.9 kB/s) Extracting templates from packages: 100% Preconfiguring packages ... (Reading database ... 610569 files and directories currently installed.) Preparing to replace php5-intl 5.5.0+dfsg-15ubuntu1 (using .../php5-intl_5.5.1+dfsg-1ubuntu1_i386.deb) ... Unpacking replacement php5-intl ... Preparing to replace php5-mysql 5.5.0+dfsg-15ubuntu1 (using .../php5-mysql_5.5.1+dfsg-1ubuntu1_i386.deb) ... Unpacking replacement php5-mysql ... Preparing to replace php5-ldap 5.5.0+dfsg-15ubuntu1 (using .../php5-ldap_5.5.1+dfsg-1ubuntu1_i386.deb) ... Unpacking replacement php5-ldap ... Setting up apache2 (2.4.4-6ubuntu5) ... apache2: Syntax error on line 140 of /etc/apache2/apache2.conf: Syntax error on line 1 of /etc/apache2/mods-enabled/php5.load: Cannot load /usr/lib/apache2/modules/libphp5.so into server: /usr/lib/apache2/modules/libphp5.so: undefined symbol: unixd_config * Restarting web server apache2 [fail] invoke-rc.d: initscript apache2, action "restart" failed. dpkg: error processing apache2 (--configure): subprocess installed post-installation script returned error exit status 1 No apport report written because MaxReports is reached already Errors were encountered while pr
[Bug 1202653] Re: apache2 2.4.4-6ubuntu4 failed to upgrade: Cannot load /usr/lib/apache2/modules/libphp5.so into server: undefined symbol: unixd_config
146 upgraded, 5 newly installed, 0 to remove and 1 not upgraded. 7 not fully installed or removed. Need to get 2,906 kB/144 MB of archives. After this operation, 201 MB of additional disk space will be used. Do you want to continue [Y/n]? y Get:1 http://archive.ubuntu.com/ubuntu/ saucy/main libapache2-mod-php5 i386 5.5.1+dfsg-1ubuntu1 [2,821 kB] Get:2 http://archive.ubuntu.com/ubuntu/ saucy/main apache2-mpm-prefork i386 2.4.4-6ubuntu5 [1,438 B] Get:3 http://archive.ubuntu.com/ubuntu/ saucy/main apache2-utils i386 2.4.4-6ubuntu5 [83.2 kB] Fetched 2,906 kB in 55s (52.3 kB/s) Extracting templates from packages: 100% Preconfiguring packages ... Setting up apache2 (2.4.4-6ubuntu5) ... apache2: Syntax error on line 140 of /etc/apache2/apache2.conf: Syntax error on line 1 of /etc/apache2/mods-enabled/php5.load: Cannot load /usr/lib/apache2/modules/libphp5.so into server: /usr/lib/apache2/modules/libphp5.so: undefined symbol: unixd_config * Restarting web server apache2 [fail] invoke-rc.d: initscript apache2, action "restart" failed. dpkg: error processing apache2 (--configure): subprocess installed post-installation script returned error exit status 1 No apport report written because MaxReports is reached already Errors were encountered while processing: apache2 E: Sub-process /usr/bin/dpkg returned an error code (1) root@j0053-hp-probook-4420s:/home/j0053# -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/1202653 Title: apache2 2.4.4-6ubuntu4 failed to upgrade: Cannot load /usr/lib/apache2/modules/libphp5.so into server: undefined symbol: unixd_config To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1202653/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1204902] [NEW] Please add symlink access to a guest's root filesystem
Public bug reported:
Currently I can go to:
/proc/$(lxc-info -p -n $name|awk '{print $2}')/root
But this is a bit ugly. Please add a symlink by default, so that I can
do this by just going to something like /var/lib/lxc/$name/root.
** Affects: lxc (Ubuntu)
Importance: Wishlist
Status: New
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to lxc in Ubuntu.
https://bugs.launchpad.net/bugs/1204902
Title:
Please add symlink access to a guest's root filesystem
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/1204902/+subscriptions
--
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1204903] [NEW] lxc-info's output should be more easily machine-readable
Public bug reported:
See bug 1204902. There, I'm having to do: lxc-info -p -n $name|awk
'{print $2}'. This is awkward. It would be better to have an option to
print the field value only, so we don't have to rely on the format of
the command output.
** Affects: lxc (Ubuntu)
Importance: Wishlist
Status: New
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to lxc in Ubuntu.
https://bugs.launchpad.net/bugs/1204903
Title:
lxc-info's output should be more easily machine-readable
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/1204903/+subscriptions
--
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1204923] [NEW] vmbuilder failed with Unable to find expected entry 'universe/binary-amd64/Packages' in Release file
Public bug reported: Got this error while creating VM in my ubuntu 12.04 LTS server edition. I followed the blog to create VM: http://www.havetheknowhow.com/Configure-the-server/Configure-KVM.html Weird thing is this is not consistent. First few times, i got this error. Then i changed some command arguments like adding mirror. Then i am able to create two Virtual Machines. Now again i am getting this error again and again. The following is my VM command code: vmbuilder kvm ubuntu \ --dest=/home/htkh/VirtualMachines \ --iso=/root/kvmfiles/ubuntu-12.04.2-server-amd64.iso \ --overwrite \ --mem=4096 \ --cpus=1 \ --rootsize=102400 \ --optsize=8192 \ --swapsize=1024 \ --ip=192.168.1.66 \ --mask=255.255.255.0 \ --bcast=192.168.1.255 \ --gw=192.168.1.1 \ --addpkg=openssh-server \ --addpkg=vim \ --addpkg=cron \ --addpkg=acpid \ --arch=amd64 \ --suite=precise \ --flavour=virtual \ --components=main,universe,restricted \ --hostname=pbt \ --user=ubuntu \ --pass=ubuntu \ --libvirt=qemu:///system \ --mirror=http://archive.ubuntu.com/ubuntu \ --bridge=br0 ; root@ubuntu:~/kvmfiles# ./kvmbuilder.sh 2013-07-25 19:03:54,748 INFO: Calling hook: preflight_check 2013-07-25 19:03:54,750 INFO: Calling hook: set_defaults 2013-07-25 19:03:54,750 INFO: Calling hook: bootstrap 2013-07-25 19:04:15,275 INFO: Calling hook: configure_os 2013-07-25 19:05:15,360 INFO: W: Failed to fetch http://archive.ubuntu.com/ubuntu/dists/precise/Release Unable to find expected entry 'universe/binary-amd64/Packages' in Release file (Wrong sources.list entry or malformed file) 2013-07-25 19:05:15,360 INFO: 2013-07-25 19:05:15,360 INFO: E: Some index files failed to download. They have been ignored, or old ones used instead. 2013-07-25 19:05:15,361 INFO: Cleaning up 2013-07-25 19:05:15,376 ERROR : Process (['chroot', '/tmp/tmp6Vpik4', 'apt-get', 'update']) returned 100. stdout: Ign http://security.ubuntu.com precise-security InRelease Get:1 http://security.ubuntu.com precise-security Release.gpg [198 B] Ign http://archive.ubuntu.com precise InRelease Ign http://archive.ubuntu.com precise-updates InRelease Get:2 http://security.ubuntu.com precise-security Release [49.6 kB] Hit http://archive.ubuntu.com precise Release.gpg Get:3 http://archive.ubuntu.com precise-updates Release.gpg [198 B] Hit http://archive.ubuntu.com precise Release Get:4 http://security.ubuntu.com precise-security/main amd64 Packages [296 kB] Get:5 http://archive.ubuntu.com precise-updates Release [49.6 kB] Hit http://archive.ubuntu.com precise/main amd64 Packages Get:6 http://archive.ubuntu.com precise-updates/main amd64 Packages [650 kB] Get:7 http://security.ubuntu.com precise-security/universe amd64 Packages [79.8 kB] Get:8 http://security.ubuntu.com precise-security/restricted amd64 Packages [4627 B] Get:9 http://security.ubuntu.com precise-security/main i386 Packages [311 kB] Get:10 http://security.ubuntu.com precise-security/universe i386 Packages [82.5 kB] Get:11 http://archive.ubuntu.com precise-updates/universe amd64 Packages [209 kB] Get:12 http://security.ubuntu.com precise-security/restricted i386 Packages [4620 B] Get:13 http://security.ubuntu.com precise-security/main TranslationIndex [74 B] Get:14 http://security.ubuntu.com precise-security/restricted TranslationIndex [72 B] Get:15 http://security.ubuntu.com precise-security/universe TranslationIndex [73 B] Get:16 http://security.ubuntu.com precise-security/main Translation-en [144 kB] Get:17 http://security.ubuntu.com precise-security/restricted Translation-en [1253 B] Get:18 http://security.ubuntu.com precise-security/universe Translation-en [50.8 kB] Get:19 http://archive.ubuntu.com precise-updates/restricted amd64 Packages [10.1 kB] Get:20 http://archive.ubuntu.com precise-updates/main i386 Packages [671 kB] Get:21 http://archive.ubuntu.com precise-updates/universe i386 Packages [213 kB] Get:22 http://archive.ubuntu.com precise-updates/restricted i386 Packages [10.0 kB] Get:23 http://archive.ubuntu.com precise-updates/main TranslationIndex [3564 B] Get:24 http://archive.ubuntu.com precise-updates/restricted TranslationIndex [2461 B] Get:25 http://archive.ubuntu.com precise-updates/universe TranslationIndex [2850 B] Get:26 http://archive.ubuntu.com precise-updates/main Translation-en [299 kB] Get:27 http://archive.ubuntu.com precise-updates/restricted Translation-en [2432 B] Get:28 http://archive.ubuntu.com precise-updates/universe Translation-en [123 kB] Fetched 3270 kB in 60s (54.5 kB/s) , stderr: W: Failed to fetch http://archive.ubuntu.com/ubuntu/dists/precise/Release Unable to find expected entry 'universe/binary-amd64/Packages' in Release file (Wrong sources.list entry or malformed file) E: Some index files failed to download. They have been i
[Bug 1203828] Re: mysql 5.5.32, 5.1.70 security update tracking bug
This bug was fixed in the package mysql-5.5 - 5.5.32-0ubuntu0.13.04.1 --- mysql-5.5 (5.5.32-0ubuntu0.13.04.1) raring-security; urgency=low * SECURITY UPDATE: Update to 5.5.32 to fix security issues (LP: #1203828) - http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html - CVE-2013-1861 - CVE-2013-3783 - CVE-2013-3793 - CVE-2013-3802 - CVE-2013-3804 - CVE-2013-3809 - CVE-2013-3812 * SECURITY UPDATE: insecure creation of debian.cnf file - debian/mysql-server-5.5.postinst: set umask to 066 before creating debian.cnf. - CVE-2013-2162 * Adjust Apparmor profile to allow reading PID file. (LP: #1185573) * Fix FTBFS from test suite failure - debian/patches/72_fix_rpl_deadlock_innodb_test.patch: ignore warning from rpl.rpl_deadlock_innodb test in mysql-test/include/mtr_warnings.sql. -- Marc DeslauriersTue, 23 Jul 2013 16:40:38 -0400 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to mysql-dfsg-5.1 in Ubuntu. https://bugs.launchpad.net/bugs/1203828 Title: mysql 5.5.32, 5.1.70 security update tracking bug To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mysql-5.5/+bug/1203828/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1203828] Re: mysql 5.5.32, 5.1.70 security update tracking bug
This bug was fixed in the package mysql-5.5 - 5.5.32-0ubuntu0.12.04.1 --- mysql-5.5 (5.5.32-0ubuntu0.12.04.1) precise-security; urgency=low * SECURITY UPDATE: Update to 5.5.32 to fix security issues (LP: #1203828) - http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html - CVE-2013-1861 - CVE-2013-3783 - CVE-2013-3793 - CVE-2013-3802 - CVE-2013-3804 - CVE-2013-3809 - CVE-2013-3812 * SECURITY UPDATE: insecure creation of debian.cnf file - debian/mysql-server-5.5.postinst: set umask to 066 before creating debian.cnf. - CVE-2013-2162 * Adjust Apparmor profile to allow reading PID file. (LP: #1185573) * Fix FTBFS from test suite failure - debian/patches/72_fix_rpl_deadlock_innodb_test.patch: ignore warning from rpl.rpl_deadlock_innodb test in mysql-test/include/mtr_warnings.sql. -- Marc DeslauriersTue, 23 Jul 2013 20:22:01 -0400 ** Changed in: mysql-5.5 (Ubuntu Quantal) Status: Confirmed => Fix Released -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to mysql-dfsg-5.1 in Ubuntu. https://bugs.launchpad.net/bugs/1203828 Title: mysql 5.5.32, 5.1.70 security update tracking bug To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mysql-5.5/+bug/1203828/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1203828] Re: mysql 5.5.32, 5.1.70 security update tracking bug
This bug was fixed in the package mysql-5.5 - 5.5.32-0ubuntu0.12.10.1 --- mysql-5.5 (5.5.32-0ubuntu0.12.10.1) quantal-security; urgency=low * SECURITY UPDATE: Update to 5.5.32 to fix security issues (LP: #1203828) - http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html - CVE-2013-1861 - CVE-2013-3783 - CVE-2013-3793 - CVE-2013-3802 - CVE-2013-3804 - CVE-2013-3809 - CVE-2013-3812 * SECURITY UPDATE: insecure creation of debian.cnf file - debian/mysql-server-5.5.postinst: set umask to 066 before creating debian.cnf. - CVE-2013-2162 * Adjust Apparmor profile to allow reading PID file. (LP: #1185573) * Fix FTBFS from test suite failure - debian/patches/72_fix_rpl_deadlock_innodb_test.patch: ignore warning from rpl.rpl_deadlock_innodb test in mysql-test/include/mtr_warnings.sql. -- Marc DeslauriersTue, 23 Jul 2013 19:08:38 -0400 ** Changed in: mysql-5.5 (Ubuntu Raring) Status: Confirmed => Fix Released -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to mysql-dfsg-5.1 in Ubuntu. https://bugs.launchpad.net/bugs/1203828 Title: mysql 5.5.32, 5.1.70 security update tracking bug To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mysql-5.5/+bug/1203828/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1203828] Re: mysql 5.5.32, 5.1.70 security update tracking bug
This bug was fixed in the package mysql-dfsg-5.1 - 5.1.70-0ubuntu0.10.04.1 --- mysql-dfsg-5.1 (5.1.70-0ubuntu0.10.04.1) lucid-security; urgency=low * SECURITY UPDATE: Update to 5.1.70 to fix security issues (LP: #1203828) - http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html - CVE-2013-1861 - CVE-2013-3802 - CVE-2013-3804 * SECURITY UPDATE: insecure creation of debian.cnf file - debian/mysql-server-5.1.postinst: set umask to 066 before creating debian.cnf. - CVE-2013-2162 -- Marc DeslauriersMon, 22 Jul 2013 15:07:29 -0400 ** Changed in: mysql-dfsg-5.1 (Ubuntu Lucid) Status: Confirmed => Fix Released ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2013-1861 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2013-2162 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2013-3802 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2013-3804 ** Changed in: mysql-5.5 (Ubuntu Precise) Status: Confirmed => Fix Released ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2013-3783 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2013-3793 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2013-3809 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2013-3812 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to mysql-dfsg-5.1 in Ubuntu. https://bugs.launchpad.net/bugs/1203828 Title: mysql 5.5.32, 5.1.70 security update tracking bug To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mysql-5.5/+bug/1203828/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
Re: [Bug 1204903] [NEW] lxc-info's output should be more easily machine-readable
status: triaged ** Changed in: lxc (Ubuntu) Status: New => Triaged -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to lxc in Ubuntu. https://bugs.launchpad.net/bugs/1204903 Title: lxc-info's output should be more easily machine-readable To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/1204903/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1203828] Re: mysql 5.5.32, 5.1.70 security update tracking bug
** Branch linked: lp:ubuntu/lucid-security/mysql-dfsg-5.1 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to mysql-dfsg-5.1 in Ubuntu. https://bugs.launchpad.net/bugs/1203828 Title: mysql 5.5.32, 5.1.70 security update tracking bug To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mysql-5.5/+bug/1203828/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
Re: [Bug 1204902] [NEW] Please add symlink access to a guest's root filesystem
I'm marking this confirmed to acknowledge thinking about it, but not triaged as I'm not yet sure we want to do it (a bit of an abuse :) Ideally we'd instead use mounts propagation for this, but that is prohibited by restrictions on pivot_root. Adding this symlink shouldn't be unsafe since the kernel uses ptrace rights to figure out if you can follow it. Maybe it's not so bad... status: confirmed ** Changed in: lxc (Ubuntu) Status: New => Confirmed -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to lxc in Ubuntu. https://bugs.launchpad.net/bugs/1204902 Title: Please add symlink access to a guest's root filesystem To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/1204902/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1203828] Re: mysql 5.5.32, 5.1.70 security update tracking bug
** Branch linked: lp:ubuntu/saucy-proposed/mysql-5.5 ** Branch linked: lp:ubuntu/precise-security/mysql-5.5 ** Branch linked: lp:ubuntu/quantal-security/mysql-5.5 ** Branch linked: lp:ubuntu/raring-security/mysql-5.5 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to mysql-dfsg-5.1 in Ubuntu. https://bugs.launchpad.net/bugs/1203828 Title: mysql 5.5.32, 5.1.70 security update tracking bug To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mysql-5.5/+bug/1203828/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1200516] Re: Please merge net-snmp 5.7.2~dfsg-4 (main) from Debian unstable (main)
This bug was fixed in the package net-snmp - 5.7.2~dfsg-8ubuntu1
---
net-snmp (5.7.2~dfsg-8ubuntu1) saucy; urgency=low
* Merge from Debian unstable (LP: #1200516). Remaining changes:
+ Add apport hook (LP: #533603):
- debian/source.apport: apport hook
- debian/control: Build-depends on dh-apport.
- debian/rules:
+ Add --with apport.
+ override_dh_apport to install hook on snmpd package only.
* Call dh_installinit correctly to avoid installing links in rc[06].d
net-snmp (5.7.2~dfsg-8) unstable; urgency=low
* add libsnmp-perl.preinst to deal with empty directory by libsnmp15
package removal (Closes: #709761)
* {snmp,snmpd}.postinst: deal with "copyright file missing after upgrade
(policy 12.5)" (Closes: #709087)
net-snmp (5.7.2~dfsg-7) unstable; urgency=low
* debian/control
- libsnmp-base: update to more policy polite (Breaks/Replaces: libsnmp15
(<<5.7.2~dfsg-5)), thanks to James McCoy
* debian/snmp.preinst
- fix incomplete script.
net-snmp (5.7.2~dfsg-6) unstable; urgency=low
* debian/rules
- Fix Hurd build issue, thanks Pino Toscano for
the patch (Closes: #708951)
* debian/snmpd.init
- patch from Ubuntu, LSBified
* debian/snmp.pre{inst,rm}
- patch from Ubuntu, Kill any/all processes owned by snmp user before
install/uninstall.
* debian/control
- add "Conflicts: libsnmp15" to libsnmp-base since moving net-snmp-config
in previous version cause trouble (Closes: #708983)
net-snmp (5.7.2~dfsg-5) unstable; urgency=low
* debian/control
- fix typo and improve description, thanks to Martin Eberhard Schauer
for the patch (Closes: #708519)
- libsnmp-base: add "Conflicts: libsnmp30 (<< 5.7.2~dfsg-5)" since
net-snmp-config file moves from libsnmp30 to libsnmp-base
(Closes: #708298)
- update descriptions
* debian/{libsnmp-base,libsnmp30}.install: update
-- Yolanda RoblaFri, 12 Jul 2013 09:47:12
+0200
** Changed in: net-snmp (Ubuntu)
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to net-snmp in Ubuntu.
https://bugs.launchpad.net/bugs/1200516
Title:
Please merge net-snmp 5.7.2~dfsg-4 (main) from Debian unstable (main)
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/net-snmp/+bug/1200516/+subscriptions
--
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1204530] Re: yppasswd results in a segmentation fault when run on clients or server
I have the same problem. Fresh install of Ubuntu 13.04 64bit. NIS is installed, ypcat passwd returns proper passwd file. I can log in as nis users, and all files and permissions are fine. yppasswd results in Segmentation fault (core dumped) after entering new password as stated above. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nis in Ubuntu. https://bugs.launchpad.net/bugs/1204530 Title: yppasswd results in a segmentation fault when run on clients or server To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/nis/+bug/1204530/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1204530] Re: yppasswd results in a segmentation fault when run on clients or server
Status changed to 'Confirmed' because the bug affects multiple users. ** Changed in: nis (Ubuntu) Status: New => Confirmed -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nis in Ubuntu. https://bugs.launchpad.net/bugs/1204530 Title: yppasswd results in a segmentation fault when run on clients or server To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/nis/+bug/1204530/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1205041] [NEW] package openssh-server 1:5.9p1-5ubuntu1.1 failed to install/upgrade: ErrorMessage: subprocess installed post-installation script returned error exit status 255
Public bug reported: I was updating from 10.04. The only change I did to openssh-server configuration file was the port. ProblemType: Package DistroRelease: Ubuntu 12.04 Package: openssh-server 1:5.9p1-5ubuntu1.1 ProcVersionSignature: Ubuntu 3.0.0-26.43-server 3.0.43 Uname: Linux 3.0.0-26-server x86_64 NonfreeKernelModules: fglrx ApportVersion: 2.0.1-0ubuntu17.3 Architecture: amd64 Date: Thu Jul 25 14:57:34 2013 ErrorMessage: ErrorMessage: subprocess installed post-installation script returned error exit status 255 InstallationMedia: Ubuntu-Server 11.10 "Oneiric Ocelot" - Release amd64 (20111011) MarkForUpload: True SourcePackage: openssh Title: package openssh-server 1:5.9p1-5ubuntu1.1 failed to install/upgrade: ErrorMessage: subprocess installed post-installation script returned error exit status 255 UpgradeStatus: Upgraded to precise on 2013-07-25 (0 days ago) ** Affects: openssh (Ubuntu) Importance: Undecided Status: New ** Tags: amd64 apport-package precise -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/1205041 Title: package openssh-server 1:5.9p1-5ubuntu1.1 failed to install/upgrade: ErrorMessage: subprocess installed post-installation script returned error exit status 255 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1205041/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1202758] Re: hostname not resolvable on azure
** Branch linked: lp:cloud-init -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to cloud-init in Ubuntu. https://bugs.launchpad.net/bugs/1202758 Title: hostname not resolvable on azure To manage notifications about this bug go to: https://bugs.launchpad.net/cloud-init/+bug/1202758/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1202758] Re: hostname not resolvable on azure
fixed in revno 847. ** Changed in: cloud-init Status: New => Fix Committed ** Changed in: cloud-init Importance: Undecided => Medium ** Changed in: cloud-init Assignee: (unassigned) => Scott Moser (smoser) ** Changed in: cloud-init (Ubuntu) Assignee: (unassigned) => Scott Moser (smoser) -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to cloud-init in Ubuntu. https://bugs.launchpad.net/bugs/1202758 Title: hostname not resolvable on azure To manage notifications about this bug go to: https://bugs.launchpad.net/cloud-init/+bug/1202758/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Blueprint servercloud-s-openstack-charms-ha-v2] HA Openstack Charms V2
Blueprint changed by Andres Rodriguez: Work items changed: Work items for ubuntu-13.07: Investigation zeromq support in havana: TODO [gandelman-a] Check on status of heartbeating in AMQP for RabbitMQ HA: TODO [andreserl] Investigate upgrade path for Corosync 2.0 based clusters: DONE Work items for ubuntu-13.08: [stewart] Charm Percona (Galera / xtrabackup): TODO [andreserl] Update cluster stack in saucy for Pacemaker + Corosync 2.0: INPROGRESS [andreserl] MIR for libstatgrab: DONE [andreserl] MIR for libqb: DONE - [andreserl] MIR for crmsh: TODO - [andreserl] package dlm: TODO + [andreserl] MIR for crmsh: DONE + [andreserl] package dlm: INPROGRESS [andreserl] MIR for dlm: TODO - [andreserl] update gfs2-utils: INPROGRESS + [andreserl] drop ocfs2-tools-pacemaker and ocfs2-tools-cman: DONE + [andreserl] update gfs2-utils: DONE [andreserl] Update all package to not depend on any redhat-cluster related packages: TODO + [andreserl] Drop RHCS: TODO [andreserl] Remove redhat-cluster: TODO [andreserl] Investigate upgrade paths from Corosync 1.x to Corosync 2.0: DONE [andreserl] Investigate alternative clustering solutions to pacemaker/corosync/CMAN: DONE Work items for ubuntu-13.10: Update charms/create new charm for MariaDB: TODO Update OpenStack charms for ZeroMQ: BLOCKED [gandelman-a] Update OpenStack charms for Active/Active RMQ: BLOCKED [james-page] Update Quantum charms for improved HA: TODO [andreserl] Update OpenStack charms for more indepth HAProxy checks: TODO [andreserl] Review cluster stack for inclusion in the Cloud Archive for Havana: TODO [andreserl] Add support to hacluster charm to support Corosync 2.0 options: TODO -- HA Openstack Charms V2 https://blueprints.launchpad.net/ubuntu/+spec/servercloud-s-openstack-charms-ha-v2 -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Blueprint servercloud-s-openstack-charms-ha-v2] HA Openstack Charms V2
Blueprint changed by Andres Rodriguez: Work items changed: Work items for ubuntu-13.07: Investigation zeromq support in havana: TODO [gandelman-a] Check on status of heartbeating in AMQP for RabbitMQ HA: TODO [andreserl] Investigate upgrade path for Corosync 2.0 based clusters: DONE Work items for ubuntu-13.08: [stewart] Charm Percona (Galera / xtrabackup): TODO [andreserl] Update cluster stack in saucy for Pacemaker + Corosync 2.0: INPROGRESS [andreserl] MIR for libstatgrab: DONE [andreserl] MIR for libqb: DONE [andreserl] MIR for crmsh: DONE + [andreserl] drop ocfs2-tools-pacemaker and ocfs2-tools-cman: DONE + [andreserl] update gfs2-utils: DONE [andreserl] package dlm: INPROGRESS [andreserl] MIR for dlm: TODO - [andreserl] drop ocfs2-tools-pacemaker and ocfs2-tools-cman: DONE - [andreserl] update gfs2-utils: DONE [andreserl] Update all package to not depend on any redhat-cluster related packages: TODO [andreserl] Drop RHCS: TODO [andreserl] Remove redhat-cluster: TODO [andreserl] Investigate upgrade paths from Corosync 1.x to Corosync 2.0: DONE [andreserl] Investigate alternative clustering solutions to pacemaker/corosync/CMAN: DONE Work items for ubuntu-13.10: Update charms/create new charm for MariaDB: TODO Update OpenStack charms for ZeroMQ: BLOCKED [gandelman-a] Update OpenStack charms for Active/Active RMQ: BLOCKED [james-page] Update Quantum charms for improved HA: TODO [andreserl] Update OpenStack charms for more indepth HAProxy checks: TODO [andreserl] Review cluster stack for inclusion in the Cloud Archive for Havana: TODO [andreserl] Add support to hacluster charm to support Corosync 2.0 options: TODO -- HA Openstack Charms V2 https://blueprints.launchpad.net/ubuntu/+spec/servercloud-s-openstack-charms-ha-v2 -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Blueprint servercloud-s-openstack-charms-ha-v2] HA Openstack Charms V2
Blueprint changed by Andres Rodriguez: Work items changed: Work items for ubuntu-13.07: Investigation zeromq support in havana: TODO [gandelman-a] Check on status of heartbeating in AMQP for RabbitMQ HA: TODO [andreserl] Investigate upgrade path for Corosync 2.0 based clusters: DONE Work items for ubuntu-13.08: [stewart] Charm Percona (Galera / xtrabackup): TODO [andreserl] Update cluster stack in saucy for Pacemaker + Corosync 2.0: INPROGRESS [andreserl] MIR for libstatgrab: DONE [andreserl] MIR for libqb: DONE [andreserl] MIR for crmsh: DONE [andreserl] drop ocfs2-tools-pacemaker and ocfs2-tools-cman: DONE [andreserl] update gfs2-utils: DONE [andreserl] package dlm: INPROGRESS [andreserl] MIR for dlm: TODO [andreserl] Update all package to not depend on any redhat-cluster related packages: TODO - [andreserl] Drop RHCS: TODO [andreserl] Remove redhat-cluster: TODO [andreserl] Investigate upgrade paths from Corosync 1.x to Corosync 2.0: DONE [andreserl] Investigate alternative clustering solutions to pacemaker/corosync/CMAN: DONE Work items for ubuntu-13.10: Update charms/create new charm for MariaDB: TODO Update OpenStack charms for ZeroMQ: BLOCKED [gandelman-a] Update OpenStack charms for Active/Active RMQ: BLOCKED [james-page] Update Quantum charms for improved HA: TODO [andreserl] Update OpenStack charms for more indepth HAProxy checks: TODO [andreserl] Review cluster stack for inclusion in the Cloud Archive for Havana: TODO [andreserl] Add support to hacluster charm to support Corosync 2.0 options: TODO -- HA Openstack Charms V2 https://blueprints.launchpad.net/ubuntu/+spec/servercloud-s-openstack-charms-ha-v2 -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1205086] [NEW] lxc-net dnsmasq --strict-order breaks dns for lxc non-recursive nameserver
Public bug reported: In my setup I have a non-recursive name server that gets pushed as part of a vpn setup. This name server only resolves addresses that are part of the vpn. It gets pushed to the top of the resolv.conf file by /etc/openvpn/update-resolv-conf. Since the dnsmasq instance set up by lxc-net is started with --strict- order, containers fail to resolve addresses completely, since they hit the first name server and it does not resolve any addresses outside of the vpn. Removing the --strict-order option in /etc/init/lxc-net.conf and restarting makes name resolution in the containers work. ** Affects: lxc (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to lxc in Ubuntu. https://bugs.launchpad.net/bugs/1205086 Title: lxc-net dnsmasq --strict-order breaks dns for lxc non-recursive nameserver To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/1205086/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1205086] Re: lxc-net dnsmasq --strict-order breaks dns for lxc non-recursive nameserver
The vpn server is running a dnsmasq instance with the following settings: """ addn-hosts=/etc/hosts.openvpn-server addn-hosts=/etc/hosts.openvpn-clients no-hosts dns-forward-max=0 no-resolv """ In the vpn server configs, it is pushing it's own IP as a dns server: """ push "dhcp-option DNS 10.88.0.1" push "dhcp-option DOMAIN vpn.ubuntone.info" """ On the client configs, it's using the stock update-resolv-conf openvpn scripts to update resolvconf: """ up /etc/openvpn/update-resolv-conf down /etc/openvpn/update-resolv-conf """ The end result is that the vpn client resolv.conf contains the following: """ $ cat /etc/resolv.conf nameserver 10.88.0.1 nameserver 127.0.1.1 search vpn.ubuntone.info """ Since the lxc dnsmasq doesn't specify what to use as resolver, and it has --strict-order, it ends up querying 10.88.0.1 first and since that name server is setup with no-resolv, then it gets refused and does not move on to the next one (127.0.1.1). -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to lxc in Ubuntu. https://bugs.launchpad.net/bugs/1205086 Title: lxc-net dnsmasq --strict-order breaks dns for lxc non-recursive nameserver To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/1205086/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1202758] Re: hostname not resolvable on azure
** Branch linked: lp:ubuntu/cloud-init -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to cloud-init in Ubuntu. https://bugs.launchpad.net/bugs/1202758 Title: hostname not resolvable on azure To manage notifications about this bug go to: https://bugs.launchpad.net/cloud-init/+bug/1202758/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1201969] Re: cloud-init parses Azure setting "DisableSshPassword" incorrectly
** Branch linked: lp:ubuntu/cloud-init -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to cloud-init in Ubuntu. https://bugs.launchpad.net/bugs/1201969 Title: cloud-init parses Azure setting "DisableSshPassword" incorrectly To manage notifications about this bug go to: https://bugs.launchpad.net/cloud-init/+bug/1201969/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1204190] Re: azure: use non-static instance-id
** Branch linked: lp:ubuntu/cloud-init -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to cloud-init in Ubuntu. https://bugs.launchpad.net/bugs/1204190 Title: azure: use non-static instance-id To manage notifications about this bug go to: https://bugs.launchpad.net/cloud-init/+bug/1204190/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1190431] Re: config-drive datasource does not provide availability_zone
** Branch linked: lp:ubuntu/cloud-init -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to cloud-init in Ubuntu. https://bugs.launchpad.net/bugs/1190431 Title: config-drive datasource does not provide availability_zone To manage notifications about this bug go to: https://bugs.launchpad.net/cloud-init/+bug/1190431/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1201029] Re: Please merge backuppc 3.2.1-5.1 (main) from Debian unstable (main)
** Changed in: backuppc (Ubuntu) Assignee: Jackson Doak (noskcaj) => (unassigned) -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to backuppc in Ubuntu. https://bugs.launchpad.net/bugs/1201029 Title: Please merge backuppc 3.2.1-5.1 (main) from Debian unstable (main) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/backuppc/+bug/1201029/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
