[Bug 1561975] Re: default configuration warnings - minor
Hit this too in Xenial. However, the error "smtputf8_enable is true, but EAI support is not compiled in" is not really minor. Postfix 3.0 introduced this as one of the important new features, which the Xenial package (right now) doesn't provide. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to postfix in Ubuntu. https://bugs.launchpad.net/bugs/1561975 Title: default configuration warnings - minor To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/postfix/+bug/1561975/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 322518] Re: No obvious way to prevent ntpdate to be run when interface are brought up
> Workaround: Uninstall package ntpdate. That also uninstalls the "ubuntu-minimal" package, which is yet another bug (at least up until 14.04). I also think ntpdate shouldn't be started at all on ifup. openntpd and (I think) ntpd as well allow for large time adjustments on the first query (-s switch in openntpd), so ntpdate is just not needed. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to ntp in Ubuntu. https://bugs.launchpad.net/bugs/322518 Title: No obvious way to prevent ntpdate to be run when interface are brought up To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ntp/+bug/322518/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 626728] Re: typing error in default-ssl
Apologies, wrong bug (please delete/ignore my posts here) -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/626728 Title: typing error in default-ssl To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/626728/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 626728] Re: typing error in default-ssl
This bug still exists today (2.4.18) -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/626728 Title: typing error in default-ssl To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/626728/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1552949] Re: the "http2" parameter requires ngx_http_v2_module
I've currently been testing Debian 8 Jessie, with the debian backport of Nginx 1.9.10, with great success on HTTP/2. The good thing is that HTTP/2 support is not entirely new, being the HTTP/2 itself is based on SPDY, Nginx were able to use the existing SPDY implementation for HTTP/2 support, so although HTTP/2 has only been out since Sept 15, it is based on a module released in Feb 2014. As far as I know, SPDY has been enabled since Ubuntu 15.04. If HTTP/2 is continuing to be disabled, does there need to be a note in relation to there being no support for SPDY or HTTP/2 moving forward? Users who upgrade from an older release would be advised by Nginx to swap "spdy" with "http2", but that obviously won't work if the module is disabled, where previously SPDY was enabled in the package. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu. https://bugs.launchpad.net/bugs/1552949 Title: the "http2" parameter requires ngx_http_v2_module To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/nginx/+bug/1552949/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1539513] Re: networkmanager segfaults with 3.2.21-1ubuntu1
Happened to me today (2016-01-29) after updates, reverting to the packages listed by minimalprocedure works also for me. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to libnl3 in Ubuntu. https://bugs.launchpad.net/bugs/1539513 Title: networkmanager segfaults with 3.2.21-1ubuntu1 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libnl3/+bug/1539513/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1539513] Re: networkmanager segfaults with 3.2.21-1ubuntu1
I downloaded the 3 packages on another machine, transferred by usb-stick and installed with sudo dpkg -i *.deb -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to libnl3 in Ubuntu. https://bugs.launchpad.net/bugs/1539513 Title: networkmanager segfaults with 3.2.21-1ubuntu1 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libnl3/+bug/1539513/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 54180] Re: [rfe] sshd ought to support 'none' cipher
Hello Folks, I hate to beat an already "terribly beaten horse" but I'd like to say that I would like the null cipher option to be available. The reason being is that working for a WAN optimization company, the need to "see" the unencrypted traffic is paramount in order to reduce SSH's network footprint. In terms of security, most WAN optimization vendors do provide a "secured transport" (IPSEC or SSL-based tunnels) across the WAN to prevent passwords and app-data from being snooped. Trust me, I do understand the desire to prevent SSH users from shooting themselves and their company's in the foot, however, having a null cipher option does have value - in the WAN opt case, its a business /network-cost-savings value. Alex -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/54180 Title: [rfe] sshd ought to support 'none' cipher To manage notifications about this bug go to: https://bugs.launchpad.net/debian-installer/+bug/54180/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1375821] Re: ifupdown doesn't bring loopback to state up
Feel free to retweet this https://twitter.com/An0Theral/status/675127147082686464 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to mailman in Ubuntu. https://bugs.launchpad.net/bugs/1375821 Title: ifupdown doesn't bring loopback to state up To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ifupdown/+bug/1375821/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1503034] Re: Autofs 5.1.1-1ubuntu2 crashes with segfault on startup
Just upgraded to Wily here as well and I'm running into the failing autofs too. Moving from ldap client to sssd is more dramatic than desired here - how soon will the 1ubuntu3 be available in the Ubuntu Wily repos? As of the time of this post, only 5.1.1-1ubuntu2 is showing in the Wily repo. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to autofs in Ubuntu. https://bugs.launchpad.net/bugs/1503034 Title: Autofs 5.1.1-1ubuntu2 crashes with segfault on startup To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/autofs/+bug/1503034/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1512344] Re: [Master Bug] Package nginx-* failed to install/upgrade: subprocess installed post-installation script returned error exit status 1 (due to "Address in Use" issue)
** Changed in: nginx (Ubuntu) Status: Invalid => Confirmed -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu. https://bugs.launchpad.net/bugs/1512344 Title: [Master Bug] Package nginx-* failed to install/upgrade: subprocess installed post-installation script returned error exit status 1 (due to "Address in Use" issue) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/nginx/+bug/1512344/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1512321] [NEW] package nginx-core 1.6.2-5ubuntu3.1 failed to install/upgrade: подпроцесс установлен сценарий post-installation возвратил код ошибки 1
Public bug reported: sudo apt-get install nginx Чтение списков пакетов… Готово Построение дерева зависимостей Чтение информации о состоянии… Готово Будут установлены следующие дополнительные пакеты: nginx-common nginx-core Предлагаемые пакеты: fcgiwrap nginx-doc НОВЫЕ пакеты, которые будут установлены: nginx nginx-common nginx-core обновлено 0, установлено 3 новых пакетов, для удаления отмечено 0 пакетов, и 0 пакетов не обновлено. Необходимо скачать 418 kБ архивов. После данной операции, объём занятого дискового пространства возрастёт на 1 363 kB. Хотите продолжить? [Д/н] y Получено:1 http://ru.archive.ubuntu.com/ubuntu/ vivid-updates/main nginx-common all 1.6.2-5ubuntu3.1 [20,5 kB] Получено:2 http://ru.archive.ubuntu.com/ubuntu/ vivid-updates/main nginx-core i386 1.6.2-5ubuntu3.1 [394 kB] Получено:3 http://ru.archive.ubuntu.com/ubuntu/ vivid-updates/main nginx all 1.6.2-5ubuntu3.1 [3 550 B] Получено 418 kБ за 2с (183 kБ/c) Выбор ранее не выбранного пакета nginx-common. (Чтение базы данных … на данный момент установлено 163000 файлов и каталогов.) Подготовка к распаковке …/nginx-common_1.6.2-5ubuntu3.1_all.deb … Распаковывается nginx-common (1.6.2-5ubuntu3.1) … Выбор ранее не выбранного пакета nginx-core. Подготовка к распаковке …/nginx-core_1.6.2-5ubuntu3.1_i386.deb … Распаковывается nginx-core (1.6.2-5ubuntu3.1) … Выбор ранее не выбранного пакета nginx. Подготовка к распаковке …/nginx_1.6.2-5ubuntu3.1_all.deb … Распаковывается nginx (1.6.2-5ubuntu3.1) … Обрабатываются триггеры для man-db (2.7.0.2-5) … Обрабатываются триггеры для ufw (0.34~rc-0ubuntu5) … Обрабатываются триггеры для systemd (219-7ubuntu6) … Обрабатываются триггеры для ureadahead (0.100.0-19) … Настраивается пакет nginx-common (1.6.2-5ubuntu3.1) … Обрабатываются триггеры для ufw (0.34~rc-0ubuntu5) … Настраивается пакет nginx-core (1.6.2-5ubuntu3.1) … Job for nginx.service failed. See "systemctl status nginx.service" and "journalctl -xe" for details. invoke-rc.d: initscript nginx, action "start" failed. dpkg: ошибка при обработке пакета nginx-core (--configure): подпроцесс установлен сценарий post-installation возвратил код ошибки 1 dpkg: зависимости пакетов не позволяют настроить пакет nginx: nginx зависит от nginx-core (>= 1.6.2-5ubuntu3.1) | nginx-full (>= 1.6.2-5ubuntu3.1) | nginx-light (>= 1.6.2-5ubuntu3.1) | nginx-extras (>= 1.6.2-5ubuntu3.1), однако: Пакет nginx-core пока не настроен. Пакет nginx-full не установлен. Пакет nginx-light не установлен. Пакет nginx-extras не установлен. nginx зависит от nginx-core (<< 1.6.2-5ubuntu3.1.1~) | nginx-full (<< 1.6.2-5ubuntu3.1.1~) | nginx-light (<< 1.6.2-5ubuntu3.1.1~) | nginx-extras (<< 1.6.2-5ubuntu3.1.1~), однако: Пакет nginx-core пока не настроен. Пакет nginx-full не установлен. Пакет nginx-light не установлен. Пакет nginx-extras не установлен. dpkg: ошибка при обработке пакета nginx (--configure): проблемы завОтчёты apport не записаны, так как сообщение об ошибке указывает на повторную ошибку от предыдущего отказа. исимостей — оставляем не настроенным Обрабатываются триггеры для systemd (219-7ubuntu6) … Обрабатываются триггеры для ureadahead (0.100.0-19) … При обработке следующих пакетов произошли ошибки: nginx-core nginx E: Sub-process /usr/bin/dpkg returned an error code (1) ProblemType: Package DistroRelease: Ubuntu 15.04 Package: nginx-core 1.6.2-5ubuntu3.1 ProcVersionSignature: Ubuntu 3.19.0-31.36-generic 3.19.8-ckt7 Uname: Linux 3.19.0-31-generic i686 NonfreeKernelModules: nvidia ApportVersion: 2.17.2-0ubuntu1.7 Architecture: i386 Date: Mon Nov 2 14:21:03 2015 ErrorMessage: подпроцесс установлен сценарий post-installation возвратил код ошибки 1 RelatedPackageVersions: dpkg 1.17.25ubuntu1 apt 1.0.9.7ubuntu4.2 SourcePackage: nginx Title: package nginx-core 1.6.2-5ubuntu3.1 failed to install/upgrade: подпроцесс установлен сценарий post-installation возвратил код ошибки 1 UpgradeStatus: No upgrade log present (probably fresh install) ** Affects: nginx (Ubuntu) Importance: Undecided Status: New ** Tags: apport-package i386 vivid -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu. https://bugs.launchpad.net/bugs/1512321 Title: package nginx-core 1.6.2-5ubuntu3.1 failed to install/upgrade: подпроцесс установлен сценарий post-installation возвратил код ошибки 1 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/nginx/+bug/1512321/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1510885] [NEW] package mysql-server-5.6 5.6.25-3+deb.sury.org~trusty+1 failed to install/upgrade: trying to overwrite '/usr/share/man/man1/innochecksum.1.gz', which is also in package mysql-serve
Public bug reported: Report an error appeared in English, and I do not understand the problem ProblemType: Package DistroRelease: Ubuntu 14.04 Package: mysql-server-5.6 5.6.25-3+deb.sury.org~trusty+1 ProcVersionSignature: Ubuntu 3.13.0-66.108-generic 3.13.11-ckt27 Uname: Linux 3.13.0-66-generic i686 ApportVersion: 2.14.1-0ubuntu3.18 Architecture: i386 Date: Wed Oct 28 13:00:45 2015 DuplicateSignature: package:mysql-server-5.6:5.6.25-3+deb.sury.org~trusty+1:trying to overwrite '/usr/share/man/man1/innochecksum.1.gz', which is also in package mysql-server-core-5.6 5.6.25-3+deb.sury.org~trusty+1 ErrorMessage: trying to overwrite '/usr/share/man/man1/innochecksum.1.gz', which is also in package mysql-server-core-5.6 5.6.25-3+deb.sury.org~trusty+1 Logs.var.log.daemon.log: Logs.var.log.mysql.error.log: MySQLConf.etc.mysql.conf.d..keepme: MySQLConf.etc.mysql.conf.d.mysql.cnf: [mysql] MySQLConf.etc.mysql.conf.d.mysqld.safe.syslog.cnf: [mysqld_safe] syslog MySQLConf.etc.mysql.conf.d.mysqldump.cnf: [mysqldump] quick quote-names max_allowed_packet = 16M MySQLConf.etc.mysql.mysql.conf.d.mysqld.safe.syslog.cnf: [mysqld_safe] syslog MySQLVarLibDirListing: ['ib_logfile0', 'test', 'phpmyadmin', 'ibdata1', 'debian-5.6.flag', 'mysql', 'auto.cnf', 'debian-5.5.flag', 'performance_schema', 'mysql_upgrade_info', 'ib_logfile1'] ProcCmdline: BOOT_IMAGE=/boot/vmlinuz-3.13.0-66-generic root=UUID=05ae2bba-e1f1-44da-a1a6-14f8801e9458 ro quiet splash vt.handoff=7 RelatedPackageVersions: dpkg 1.17.5ubuntu5.4 apt 1.0.1ubuntu2.10 SourcePackage: mysql-5.6 Title: package mysql-server-5.6 5.6.25-3+deb.sury.org~trusty+1 failed to install/upgrade: trying to overwrite '/usr/share/man/man1/innochecksum.1.gz', which is also in package mysql-server-core-5.6 5.6.25-3+deb.sury.org~trusty+1 UpgradeStatus: No upgrade log present (probably fresh install) ** Affects: mysql-5.6 (Ubuntu) Importance: Undecided Status: New ** Tags: apport-package i386 need-duplicate-check package-conflict third-party-packages trusty -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to mysql-5.6 in Ubuntu. https://bugs.launchpad.net/bugs/1510885 Title: package mysql-server-5.6 5.6.25-3+deb.sury.org~trusty+1 failed to install/upgrade: trying to overwrite '/usr/share/man/man1/innochecksum.1.gz', which is also in package mysql-server-core-5.6 5.6.25-3+deb.sury.org~trusty+1 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mysql-5.6/+bug/1510885/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1504781] Re: lxc-test-ubuntu hangs forever in trusty-proposed with Linux 3.13.0-66: AppArmor denies /dev/ptmx mounting
Is there a fix for Ubuntu 12.04 LTS ? -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to lxc in Ubuntu. https://bugs.launchpad.net/bugs/1504781 Title: lxc-test-ubuntu hangs forever in trusty-proposed with Linux 3.13.0-66: AppArmor denies /dev/ptmx mounting To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1504781/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1400517] Re: Please update Tomcat7 in trusty-security to >= 7.0.55 to enable easier server info hiding
** Changed in: tomcat7 (Ubuntu) Assignee: (unassigned) => Alex Kiss (sysrex) -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to tomcat7 in Ubuntu. https://bugs.launchpad.net/bugs/1400517 Title: Please update Tomcat7 in trusty-security to >= 7.0.55 to enable easier server info hiding To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/tomcat7/+bug/1400517/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1502645] [NEW] package python-ldb 1:1.1.17-1 failed to install/upgrade: пакет python-ldb не готов к настройке настройка невозможна (текущее состояние: «half-installed»)
Public bug reported: Не знаю ,возможно медленный интернет . ProblemType: Package DistroRelease: Ubuntu 14.10 Package: python-ldb 1:1.1.17-1 ProcVersionSignature: Ubuntu 3.16.0-44.59-generic 3.16.7-ckt14 Uname: Linux 3.16.0-44-generic i686 ApportVersion: 2.14.7-0ubuntu8.5 AptOrdering: aircrack-ng: Install ieee-data: Install python-ldb: Configure aircrack-ng: Configure ieee-data: Configure Architecture: i386 Date: Sun Oct 4 16:28:01 2015 DpkgHistoryLog: Start-Date: 2015-10-04 16:27:48 Commandline: apt-get install aircrack-ng Install: aircrack-ng:i386 (1.2-0~beta3-1), ieee-data:i386 (20140613.1, automatic) ErrorMessage: пакет python-ldb не готов к настройке настройка невозможна (текущее состояние: «half-installed») InstallationDate: Installed on 2015-08-23 (41 days ago) InstallationMedia: Zorin 9 trusty - Release i386 (20140712) SourcePackage: ldb Title: package python-ldb 1:1.1.17-1 failed to install/upgrade: пакет python-ldb не готов к настройке настройка невозможна (текущее состояние: «half-installed») UpgradeStatus: Upgraded to utopic on 2015-08-28 (36 days ago) ** Affects: ldb (Ubuntu) Importance: Undecided Status: New ** Tags: apport-package i386 utopic -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to ldb in Ubuntu. https://bugs.launchpad.net/bugs/1502645 Title: package python-ldb 1:1.1.17-1 failed to install/upgrade: пакет python- ldb не готов к настройке настройка невозможна (текущее состояние: «half-installed») To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ldb/+bug/1502645/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1375821] Re: ifupdown doesn't bring loopback to state up
Please port this fix to trusty -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to mailman in Ubuntu. https://bugs.launchpad.net/bugs/1375821 Title: ifupdown doesn't bring loopback to state up To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ifupdown/+bug/1375821/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1432644] Re: VM permanently tries to read /dev/shm/lttng-ust-wait-5
@jdstrand I'm running the latest ceph-docker/daemon image with the ceph package version 0.94.2-1trusty and see the same issue: libust[5136/5462]: Error: Error opening shm /lttng-ust-wait-5-0 (in get_wait_shm() at lttng-ust-comm.c:886) libust[5136/5461]: Error: Error opening shm /lttng-ust-wait-5 (in get_wait_shm() at lttng-ust-comm.c:886) Is it possible to somehow get the fix that was made in 0.93-0ubuntu6 over here as well? Thanks -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to ceph in Ubuntu. https://bugs.launchpad.net/bugs/1432644 Title: VM permanently tries to read /dev/shm/lttng-ust-wait-5 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ceph/+bug/1432644/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1455097] Re: pm-suspend.log and pm-powersave.log not updated since upgrade to vivid
On the other side I removed pm-utils from the system and there are a couple of remaining scripts in /etc/pm/sleep.d that are worth mentioning: * 10_grub-common * 10_unattended-upgrades-hibernate Thus, those packages are also affected by this bug I guess. ** Also affects: unattended-upgrades (Ubuntu) Importance: Undecided Status: New ** Also affects: grub2 (Ubuntu) Importance: Undecided Status: New ** Summary changed: - pm-suspend.log and pm-powersave.log not updated since upgrade to vivid + pm-suspend no longer run since upgrade to vivid -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to pm-utils in Ubuntu. https://bugs.launchpad.net/bugs/1455097 Title: pm-suspend no longer run since upgrade to vivid To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/grub2/+bug/1455097/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1455097] Re: pm-suspend.log and pm-powersave.log not updated since upgrade to vivid
I moved my script to systemd, adapted it following Martin's instructions in comment #5 and it just works as expected. Thanks a lot :) -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to pm-utils in Ubuntu. https://bugs.launchpad.net/bugs/1455097 Title: pm-suspend no longer run since upgrade to vivid To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/grub2/+bug/1455097/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1470997] [NEW] dhclient tries to send request over non-existent interface, floods syslog
Public bug reported: From time to time I'm using a Bluetooth network device (my cellphone). In Linux it shows as bnep0. However when disconnected, this device disappears from ifconfig -a output. Still dclient floods syslog with the following: Jul 2 22:09:59 void dhclient: DHCPDISCOVER on bnep0 to 255.255.255.255 port 67 interval 8 (xid=0x2c92a43c) Jul 2 22:09:59 void dhclient: send_packet: No such device or address Jul 2 22:09:59 void dhclient: dhclient.c:2094: Failed to send 300 byte long packet over bnep0 interface. That continues even after networking is disabled altogether. Also, every 15 seconds the following is logged: Jul 2 22:29:03 void dhclient: PRC: Renewing lease on wlan0. Jul 2 22:29:03 void dhclient: XMT: Renew on wlan0, interval 10180ms. Jul 2 22:29:03 void dhclient: RCV: Reply message on wlan0 from fe80::5a23:8cff:fea3:1ec5. Jul 2 22:29:03 void NetworkManager[948]: info (wlan0): DHCPv6 state changed renew6 - renew6 Jul 2 22:29:03 void NetworkManager[948]: info valid_lft 60 Jul 2 22:29:03 void NetworkManager[948]: info preferred_lft 30 Jul 2 22:29:03 void NetworkManager[948]: info address 2001:14ba:21f8:c00:e8b:fdff:fea1:4a1e Jul 2 22:29:03 void NetworkManager[948]: info nameserver '2001:14b8:1000::1' Jul 2 22:29:03 void NetworkManager[948]: info nameserver '2001:14b8:1000::2' Jul 2 22:29:03 void NetworkManager[948]: info domain search 'bb.dnainternet.fi.' Jul 2 22:29:03 void dbus[1025]: [system] Activating via systemd: service name='org.freedesktop.nm_dispatcher' unit='dbus-org.freedesktop.nm-dispatcher.service' Jul 2 22:29:03 void systemd[1]: Starting Network Manager Script Dispatcher Service... Jul 2 22:29:03 void dbus[1025]: [system] Successfully activated service 'org.freedesktop.nm_dispatcher' Jul 2 22:29:03 void systemd[1]: Started Network Manager Script Dispatcher Service. Given that bnep0 interface does not exist, the problem most likely is not in the dhclient itself, but something else that configures it to use non-existent interface. System information: # lsb_release -rd Description:Ubuntu 15.04 Release:15.04 # uname -a Linux void 3.19.0-21-generic #21-Ubuntu SMP Sun Jun 14 18:31:11 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux # cat /etc/network/interfaces # interfaces(5) file used by ifup(8) and ifdown(8) auto lo iface lo inet loopback source interfaces.d/* # ls /etc/network/interfaces.d virbr0 # cat /etc/network/interfaces.d/virbr0 auto br0 iface br0 inet static address 10.21.32.1 network 10.21.32.0 netmask 255.255.255.0 broadcast 10.21.32.255 #gateway 10.21.32.1 bridge_ports dummy0 ##bridge_fd 9 ##bridge_hello 2 ##bridge_maxage 12 bridge_max_wait 0 bridge_stp off # apt-cache policy isc-dhcp-client isc-dhcp-client: Installed: 4.3.1-5ubuntu2.2 Candidate: 4.3.1-5ubuntu2.2 ** Affects: dhcp3 (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to dhcp3 in Ubuntu. https://bugs.launchpad.net/bugs/1470997 Title: dhclient tries to send request over non-existent interface, floods syslog To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/dhcp3/+bug/1470997/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1460337] Re: tempest_lib.auth not compatible with original tempest.auth
if tempest.con exist at etc director or TEMPEST_CONFIG and TEMPEST_CONFIG_DIR point to existing tempest.con then the client manager will be created. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to python-tempest-lib in Ubuntu. https://bugs.launchpad.net/bugs/1460337 Title: tempest_lib.auth not compatible with original tempest.auth To manage notifications about this bug go to: https://bugs.launchpad.net/tempest/+bug/1460337/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1460337] Re: tempest_lib.auth not compatible with original tempest.auth
tempest-lib version is 0.5.0 ** Also affects: python-tempest-lib (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to python-tempest-lib in Ubuntu. https://bugs.launchpad.net/bugs/1460337 Title: tempest_lib.auth not compatible with original tempest.auth To manage notifications about this bug go to: https://bugs.launchpad.net/tempest/+bug/1460337/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1455097] [NEW] pm-suspend.log and pm-powersave.log not updated since upgrade to vivid
Public bug reported: I added a new script in /etc/pm/sleep.d/ that worked fine before the upgrade to vivid. I was wondering why it doesn't work and I find out that /var/log/pm-suspend.log is empty, and pm-powersave.log too (last logs from pm-suspend were on Apr 28, when I upgraded from utopic to vivid. The laptop suspends and wakes fine, it just seems that no pm scripts are run after suspend/powersave. ProblemType: Bug DistroRelease: Ubuntu 15.04 Package: pm-utils 1.4.1-15 ProcVersionSignature: Ubuntu 3.19.0-16.16-generic 3.19.3 Uname: Linux 3.19.0-16-generic x86_64 ApportVersion: 2.17.2-0ubuntu1 Architecture: amd64 CurrentDesktop: Unity Date: Thu May 14 15:36:26 2015 DistributionChannelDescriptor: # This is a distribution channel descriptor # For more information see http://wiki.ubuntu.com/DistributionChannelDescriptor canonical-oem-somerville-precise-amd64-20120703-2 EcryptfsInUse: Yes InstallationDate: Installed on 2013-03-12 (792 days ago) InstallationMedia: Ubuntu 12.04 Precise - Build amd64 LIVE Binary 20120703-15:08 PackageArchitecture: all SourcePackage: pm-utils UpgradeStatus: No upgrade log present (probably fresh install) ** Affects: pm-utils (Ubuntu) Importance: Undecided Status: New ** Tags: amd64 apport-bug vivid -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to pm-utils in Ubuntu. https://bugs.launchpad.net/bugs/1455097 Title: pm-suspend.log and pm-powersave.log not updated since upgrade to vivid To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/pm-utils/+bug/1455097/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1448329] [NEW] package clamav-daemon 0.98.6+dfsg-1ubuntu2 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1
Public bug reported: Setting up clamav-daemon (0.98.6+dfsg-1ubuntu2) ... /var/lib/dpkg/info/clamav-daemon.postinst: line 626: $DEBCONFILE: ambiguous redirect dpkg: error processing package clamav-daemon (--configure): subprocess installed post-installation script returned error exit status 1 Errors were encountered while processing: clamav-daemon E: Sub-process /usr/bin/dpkg returned an error code (1) ProblemType: Package DistroRelease: Ubuntu 15.04 Package: clamav-daemon 0.98.6+dfsg-1ubuntu2 ProcVersionSignature: Ubuntu 3.16.0-23.31-generic 3.16.4 Uname: Linux 3.16.0-23-generic x86_64 ApportVersion: 2.17.2-0ubuntu1 AptOrdering: clamav-daemon: Configure NULL: ConfigurePending Architecture: amd64 Date: Fri Apr 24 23:36:28 2015 DpkgTerminalLog: Setting up clamav-daemon (0.98.6+dfsg-1ubuntu2) ... /var/lib/dpkg/info/clamav-daemon.postinst: line 626: $DEBCONFILE: ambiguous redirect dpkg: error processing package clamav-daemon (--configure): subprocess installed post-installation script returned error exit status 1 DuplicateSignature: package:clamav-daemon:0.98.6+dfsg-1ubuntu2:subprocess installed post-installation script returned error exit status 1 ErrorMessage: subprocess installed post-installation script returned error exit status 1 InstallationDate: Installed on 2015-04-24 (0 days ago) InstallationMedia: Ubuntu-Server 14.10 Utopic Unicorn - Release amd64 (20141022.2) ProcCmdline: BOOT_IMAGE=/vmlinuz-3.16.0-23-generic.efi.signed root=/dev/mapper/hostname--vg-root ro RelatedPackageVersions: dpkg 1.17.25ubuntu1 apt 1.0.9.7ubuntu4 SourcePackage: clamav Title: package clamav-daemon 0.98.6+dfsg-1ubuntu2 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1 UpgradeStatus: Upgraded to vivid on 2015-04-24 (0 days ago) ** Affects: clamav (Ubuntu) Importance: Undecided Status: New ** Tags: amd64 apport-package need-duplicate-check third-party-packages vivid -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to clamav in Ubuntu. https://bugs.launchpad.net/bugs/1448329 Title: package clamav-daemon 0.98.6+dfsg-1ubuntu2 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/clamav/+bug/1448329/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1445919] [NEW] session garbage collector does not read conf.d
Public bug reported:
The cron job in `/etc/cron.d/php5` is executing the command line php and
calls `ini_get_all(session)` then reads the value of
`session.gc_maxlifetime`.
However, that does not capture any options set in
`/etc/php5/apache2/conf.d` which is read by the apache2 mod-php5, nor
any of the SAPIs' conf.d dirs in `/etc/php5/*/conf.d`.
So the script does not see what the actual production PHP sees ...
The actual problem is that all sane admins do not modify
`/etc/php5/apache2/php.ini` directly but instead add an .ini file in the
`conf.d` directory with our customized settings for them to persist
across upgrades, otherwise it's a hassle everytime there is a PHP
upgrade. That was the whole point of the `conf.d` directory ...
The `/etc/cron.d/php5` script should also load the .ini files in
`conf.d` dir. That's where I set my `session.gc_maxlifetime`, which is
now ignored and my sessions are killed early ...
The simplest fix is to prepend
`PHP_INI_SCAN_DIR=/etc/php5/${conf_dir}/conf.d` to the php command:
`PHP_INI_SCAN_DIR=/etc/php5/${conf_dir}/conf.d php5 -c
/etc/php5/${conf_dir}/php.ini -d ...`
** Affects: php5 (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to php5 in Ubuntu.
https://bugs.launchpad.net/bugs/1445919
Title:
session garbage collector does not read conf.d
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/php5/+bug/1445919/+subscriptions
--
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1442872] [NEW] I have been using smbclient to allow access to my NAS. This has worked well in 14.04. But around Jan 2015 it has stopped working. I get extremely slow access to Windows netowrk and
Public bug reported: I have been using smbclient to allow access to my NAS. This has worked well in 14.04. But around Jan 2015 it has stopped working. I get extremely slow access to Windows network and then repeated request for password and no access. I know the passwords etc. are correct. But appears now that smbclient has stopped working. I am not a Linux expert, but I have successfully used smbclient more or less since 9.04, so I do believe it is a bug. Possibly linked, an update around the same time broke my HP wireless printer driver and I was forced to update that. perhaps related? I am on fully update 14.04 LTS ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: smbclient 2:4.1.6+dfsg-1ubuntu2.14.04.7 ProcVersionSignature: Ubuntu 3.13.0-49.81-generic 3.13.11-ckt17 Uname: Linux 3.13.0-49-generic x86_64 ApportVersion: 2.14.1-0ubuntu3.8 Architecture: amd64 CurrentDesktop: Unity Date: Sat Apr 11 10:18:03 2015 InstallationDate: Installed on 2014-08-25 (228 days ago) InstallationMedia: Ubuntu 14.04 LTS Trusty Tahr - Release amd64 (20140417) ProcEnviron: LANGUAGE=en_GB:en PATH=(custom, no user) XDG_RUNTIME_DIR=set LANG=en_GB.UTF-8 SHELL=/bin/bash RelatedPackageVersions: nautilus 1:3.10.1-0ubuntu9.7 gvfs 1.20.1-1ubuntu1 SambaClientRegression: Yes SourcePackage: samba UpgradeStatus: No upgrade log present (probably fresh install) ** Affects: samba (Ubuntu) Importance: Undecided Status: New ** Tags: amd64 apport-bug trusty -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in Ubuntu. https://bugs.launchpad.net/bugs/1442872 Title: I have been using smbclient to allow access to my NAS. This has worked well in 14.04. But around Jan 2015 it has stopped working. I get extremely slow access to Windows netowrk and then repeated request for password and no access. I know the passwords etc. are correct. But appears now that smbclient has stopped working. I am not a Linux expert, but I have succesfully used smbclient more or less since 9.04, so I do believe it is a bug. IPossibly linked, an updaye around the same time broke my HP wireless printer driver and i was forced to update that. perhaps related? To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/samba/+bug/1442872/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1375821] Re: ifupdown doesn't bring loopback to state up
This bug also prevents the mounting of NFS shares on boot, because rpcbind is unable to start without the lo interface. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to mailman in Ubuntu. https://bugs.launchpad.net/bugs/1375821 Title: ifupdown doesn't bring loopback to state up To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ifupdown/+bug/1375821/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1438730] [NEW] libvirt-lxc container start failed in 15.04 (Message did not receive a reply (timeout by message bus))
Public bug reported: libvirt-lxc can't start container in Ubuntu 15.04: $ virsh start tmp112 error: Failed to start domain tmp112 error: internal error: guest failed to start: Message did not receive a reply (timeout by message bus) Error details in libvirt log file: 2015-03-31 14:10:21.173+: 90821: info : virDBusCall:1544 : DBUS_METHOD_CALL: 'org.freedesktop.machine1.Manager.CreateMachineWithNetwork' on '/org/freedesktop/machine1' at 'org.freedesktop.machine1' 2015-03-31 14:10:21.281+: 90821: info : virDBusCall:1554 : DBUS_METHOD_ERROR: 'org.freedesktop.machine1.Manager.CreateMachineWithNetwork' on '/org/freedesktop/machine1' at 'org.freedesktop.machine1' error org.freedesktop.DBus.Error.NoReply: Message did not receive a reply (timeout by message bus) 2015-03-31 14:10:21.281+: 90821: error : virSystemdCreateMachine:296 : Message did not receive a reply (timeout by message bus) Message did not receive a reply (timeout by message bus) Error details in journalctl: Mar 31 14:10:21 build systemd-machined[90822]: Assertion 'pid 1' failed at ../src/machine/machined-dbus.c:814, function manager_start_scope(). Aborting. ||/ Name Version ArchitectureDescription +++-=-===-===- ii libvirt-bin 1.2.12-0ubuntu8 amd64 programs for the libvirt library ii systemd 219-5ubuntu1 amd64 system and service manager ** Affects: libvirt (Ubuntu) Importance: Undecided Status: Confirmed -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to libvirt in Ubuntu. https://bugs.launchpad.net/bugs/1438730 Title: libvirt-lxc container start failed in 15.04 (Message did not receive a reply (timeout by message bus)) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1438730/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1438124] [NEW] [Backport 1408529] nova boot vm with '--nic net-id=xxxx, v4-fixed-ip=xxx' failed
Public bug reported: now nova boot vm with '--nic net-id=, v4-fixed-ip=xxx' will failed, the error in nova-compute log is bellow: File /opt/stack/nova/nova/network/neutronv2/__init__.py, line 84 , in wrapper ret = obj(*args, **kwargs) File /usr/local/lib/python2.7/dist-packages/neutronclient/v2_0/cl ient.py, line 1266, in serialize self.get_attr_metadata()).serialize(data, self.content_type()) File /usr/local/lib/python2.7/dist-packages/neutronclient/common/ serializer.py, line 390, in serialize return self._get_serialize_handler(content_type).serialize(data) File /usr/local/lib/python2.7/dist-packages/neutronclient/common/ serializer.py, line 54, in serialize return self.dispatch(data, action=action) File /usr/local/lib/python2.7/dist-packages/neutronclient/common/ serializer.py, line 44, in dispatch return action_method(*args, **kwargs) File /usr/local/lib/python2.7/dist-packages/neutronclient/common/ serializer.py, line 66, in default return jsonutils.dumps(data, default=sanitizer) File /usr/local/lib/python2.7/dist-packages/neutronclient/opensta ck/common/jsonutils.py, line 168, in dumps return json.dumps(value, default=default, **kwargs) File /usr/lib/python2.7/json/__init__.py, line 250, in dumps sort_keys=sort_keys, **kw).encode(obj) File /usr/lib/python2.7/json/encoder.py, line 207, in encode chunks = self.iterencode(o, _one_shot=True) File /usr/lib/python2.7/json/encoder.py, line 270, in iterencode return _iterencode(o, 0) File /usr/local/lib/python2.7/dist-packages/neutronclient/common/ serializer.py, line 65, in sanitizer return six.text_type(obj, 'utf8') TypeError: coercing to Unicode: need string or buffer, IPAddress fou nd ** Affects: mos Importance: Low Assignee: Alex Ermolov (aermolov) Status: In Progress ** Tags: customer-found python-neutronclient ** Also affects: python-neutronclient Importance: Undecided Status: New ** Changed in: python-neutronclient Assignee: (unassigned) = Alex Ermolov (aermolov) ** Changed in: mos Assignee: (unassigned) = Alex Ermolov (aermolov) ** Changed in: python-neutronclient Status: New = In Progress ** Changed in: mos Status: New = In Progress ** No longer affects: python-neutronclient ** Also affects: python-neutronclient (Ubuntu) Importance: Undecided Status: New ** No longer affects: python-neutronclient (Ubuntu) -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to python-neutronclient in Ubuntu. https://bugs.launchpad.net/bugs/1438124 Title: [Backport 1408529] nova boot vm with '--nic net-id=, v4-fixed- ip=xxx' failed To manage notifications about this bug go to: https://bugs.launchpad.net/mos/+bug/1438124/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1366997] Re: Duplicate entry error for primary key following cluster size change
** Changed in: codership-mysql/5.6 Status: Confirmed = Fix Released -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/1366997 Title: Duplicate entry error for primary key following cluster size change To manage notifications about this bug go to: https://bugs.launchpad.net/codership-mysql/+bug/1366997/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1366174] Re: apache2 SEGV with multiple SSL sites
Thanks for everyone's work on this - much appreciated. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/1366174 Title: apache2 SEGV with multiple SSL sites To manage notifications about this bug go to: https://bugs.launchpad.net/apache2/+bug/1366174/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1366174] Re: apache2 SEGV with multiple SSL sites
http://people.canonical.com/~ubuntu-archive/pending-sru.html indicates there is allegedly a regression in svn. Last build is here: https://jenkins.qa.ubuntu.com/job/trusty-adt- subversion/lastBuild/ARCH=amd64,label=adt/ and indeed the build log shows a failure here: https://jenkins.qa.ubuntu.com/job/trusty-adt- subversion/lastBuild/ARCH=amd64,label=adt/artifact/results/log cjwatson suggested on #ubuntu-devel: This might just mean that the fix for https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1393832 needs to be cherry-picked as well, but I'm not sure. Perhaps rbasak can investigate. I tried replicating this with adt locally, but can't get it to fail the test either before OR after the change. I'd suggest that the test suite running would have failed both before and after this change. If this is indeed https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1393832 it will need someone to propose an SRU for it. My feeling is however that it is unrelated to this change. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/1366174 Title: apache2 SEGV with multiple SSL sites To manage notifications about this bug go to: https://bugs.launchpad.net/apache2/+bug/1366174/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1366174] Re: apache2 SEGV with multiple SSL sites
Thanks. Verified that this works with the original test cases, and marked verification-done. ** Tags removed: verification-needed ** Tags added: verification-done -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/1366174 Title: apache2 SEGV with multiple SSL sites To manage notifications about this bug go to: https://bugs.launchpad.net/apache2/+bug/1366174/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1366174] Re: apache2 SEGV with multiple SSL sites
Thanks Robie. If it helps, we have been running this patch on many tens of machines of machines since early Nov 2014 (so approximately 4 months) without any ill effects, with and without SSL (though we don't use stapling). -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/1366174 Title: apache2 SEGV with multiple SSL sites To manage notifications about this bug go to: https://bugs.launchpad.net/apache2/+bug/1366174/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1366174] Re: apache2 SEGV with multiple SSL sites
Any update on this one? -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/1366174 Title: apache2 SEGV with multiple SSL sites To manage notifications about this bug go to: https://bugs.launchpad.net/apache2/+bug/1366174/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1366174] Re: apache2 SEGV with multiple SSL sites
Robie: can I ping you once more re the backport to trusty? -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/1366174 Title: apache2 SEGV with multiple SSL sites To manage notifications about this bug go to: https://bugs.launchpad.net/apache2/+bug/1366174/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1366174] Re: apache2 SEGV with multiple SSL sites
Robie: I've verified that the Vivid version works fine. Can I ping you re getting the SRU done for Trusty? -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/1366174 Title: apache2 SEGV with multiple SSL sites To manage notifications about this bug go to: https://bugs.launchpad.net/apache2/+bug/1366174/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1400775] Re: CVE-2014-8106 insufficient blit region check
Made this public as the links to which it refers are public. ** Information type changed from Private Security to Public Security -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to qemu in Ubuntu. https://bugs.launchpad.net/bugs/1400775 Title: CVE-2014-8106 insufficient blit region check To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/qemu/+bug/1400775/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1366174] Re: apache2 SEGV with multiple SSL sites
Robie: this is me poking you after a couple of weeks, as requested. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/1366174 Title: apache2 SEGV with multiple SSL sites To manage notifications about this bug go to: https://bugs.launchpad.net/apache2/+bug/1366174/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1366174] Re: apache2 SEGV with multiple SSL sites
Robie: no apology needed, and yes I would be happy to check Vivid. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/1366174 Title: apache2 SEGV with multiple SSL sites To manage notifications about this bug go to: https://bugs.launchpad.net/apache2/+bug/1366174/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1390870] [NEW] automount segfaults when auto.master dir points to a file
Public bug reported: Given an auto.master file with the following line: # cat /etc/auto.master +dir:/etc/auto.master.d and /etc/auto.master.d is a file: # stat /etc/auto.master.d File: ‘/etc/auto.master.d’ Size: 0 Blocks: 0 IO Block: 4096 regular empty file Device: fc00h/64512dInode: 6817460 Links: 1 Access: (0644/-rw-r--r--) Uid: (0/root) Gid: (0/root) Access: 2014-11-07 23:54:42.640848261 +1100 Modify: 2014-11-07 23:54:42.640848261 +1100 Change: 2014-11-07 23:54:42.640848261 +1100 Birth: - the autofs service fails to start due to multiple segfaults: # service autofs start tail -F /var/log/syslog autofs start/running, process 4157 Nov 9 20:56:11 europa kernel: [ 641.836878] show_signal_msg: 1 callbacks suppressed Nov 9 20:56:11 europa kernel: [ 641.836885] automount[4157]: segfault at 0 ip 7f7c3bbc8920 sp 7fff9f158768 error 4 in libc-2.19.so[7f7c3bb0b000+1bb000] Nov 9 20:56:11 europa kernel: [ 641.839921] init: autofs main process (4157) killed by SEGV signal Nov 9 20:56:11 europa kernel: [ 641.839943] init: autofs main process ended, respawning Nov 9 20:56:11 europa kernel: [ 641.916675] automount[4166]: segfault at 0 ip 7fad88d51920 sp 7fff7bbecc28 error 4 in libc-2.19.so[7fad88c94000+1bb000] Nov 9 20:56:11 europa kernel: [ 641.918773] init: autofs main process (4166) killed by SEGV signal Nov 9 20:56:11 europa kernel: [ 641.918788] init: autofs main process ended, respawning Nov 9 20:56:11 europa kernel: [ 641.968632] automount[4175]: segfault at 0 ip 7f0ee3fca920 sp 7fff02ab3308 error 4 in libc-2.19.so[7f0ee3f0d000+1bb000] Nov 9 20:56:11 europa kernel: [ 641.970738] init: autofs main process (4175) killed by SEGV signal Nov 9 20:56:11 europa kernel: [ 641.970753] init: autofs main process ended, respawning Nov 9 20:56:11 europa kernel: [ 642.040704] automount[4184]: segfault at 0 ip 7fc953493920 sp 7fffec2dc0e8 error 4 in libc-2.19.so[7fc9533d6000+1bb000] Nov 9 20:56:11 europa kernel: [ 642.043116] init: autofs main process (4184) killed by SEGV signal Nov 9 20:56:11 europa kernel: [ 642.043133] init: autofs main process ended, respawning Nov 9 20:56:11 europa kernel: [ 642.104755] automount[4193]: segfault at 0 ip 7f968326d920 sp 7fff44edcc18 error 4 in libc-2.19.so[7f96831b+1bb000] Nov 9 20:56:11 europa kernel: [ 642.107902] init: autofs main process (4193) killed by SEGV signal Nov 9 20:56:11 europa kernel: [ 642.107919] init: autofs main process ended, respawning Nov 9 20:56:12 europa kernel: [ 642.176779] automount[4202]: segfault at 0 ip 7f03aebb1920 sp 7fffe76345c8 error 4 in libc-2.19.so[7f03aeaf4000+1bb000] Nov 9 20:56:12 europa kernel: [ 642.179081] init: autofs main process (4202) killed by SEGV signal Nov 9 20:56:12 europa kernel: [ 642.179099] init: autofs main process ended, respawning Nov 9 20:56:12 europa kernel: [ 642.236726] automount[4211]: segfault at 0 ip 7f9f446c4920 sp 7fff260533d8 error 4 in libc-2.19.so[7f9f44607000+1bb000] Nov 9 20:56:12 europa kernel: [ 642.238905] init: autofs main process (4211) killed by SEGV signal Nov 9 20:56:12 europa kernel: [ 642.238922] init: autofs main process ended, respawning Nov 9 20:56:12 europa kernel: [ 642.308743] automount[4220]: segfault at 0 ip 7f9929fb7920 sp 7fffba052698 error 4 in libc-2.19.so[7f9929efa000+1bb000] Nov 9 20:56:12 europa kernel: [ 642.311101] init: autofs main process (4220) killed by SEGV signal Nov 9 20:56:12 europa kernel: [ 642.39] init: autofs main process ended, respawning Nov 9 20:56:12 europa kernel: [ 642.372656] automount[4229]: segfault at 0 ip 7f1342759920 sp 7fff68610ff8 error 4 in libc-2.19.so[7f134269c000+1bb000] Nov 9 20:56:12 europa kernel: [ 642.374811] init: autofs main process (4229) killed by SEGV signal Nov 9 20:56:12 europa kernel: [ 642.374826] init: autofs main process ended, respawning Nov 9 20:56:12 europa kernel: [ 642.424646] automount[4238]: segfault at 0 ip 7fa402eb2920 sp 7fffb89266e8 error 4 in libc-2.19.so[7fa402df5000+1bb000] Nov 9 20:56:12 europa kernel: [ 642.426643] init: autofs main process (4238) killed by SEGV signal Nov 9 20:56:12 europa kernel: [ 642.426658] init: autofs main process ended, respawning Nov 9 20:56:12 europa kernel: [ 642.495381] init: autofs main process (4247) killed by SEGV signal Nov 9 20:56:12 europa kernel: [ 642.495397] init: autofs respawning too fast, stopped While I'm sure that autofs should fail under these circumstances (I certainly don't know how I managed to make auto.master.d a file), I'm not sure that segfaults should occur. # apt-cache policy autofs autofs: Installed: 5.0.7-3ubuntu3.1 Candidate: 5.0.7-3ubuntu3.1 Version table: *** 5.0.7-3ubuntu3.1 0 500 http://mirror.as24220.net/pub/ubuntu-archive/ trusty-updates/main amd64 Packages 100 /var/lib/dpkg/status
[Bug 1366174] Re: apache2 SEGV with multiple SSL sites
I have added [Impact] and [Regression potential] sections. Do the SRU requirements mean we need a patch for U too? I'm not sure what current development release means right now given that U is out. I believe the upstream 2.4.10 patch should apply straight to U. It's upstream, so V will presumably get whatever upstream has. I'll ask for someone to nominate this but I think you may need to take it from here, Robie. ** Description changed: Apache2 crashes with multiple SSL sites. + + [Impact] + + Apache may SEGV on initialisation (and thus refuse to start) when using + multiple SSL sites in a moderately complex configuration. Though the + crash is caused by OCSP stapling code, it is not necessary for OCSP to + be enabled to cause the problem. As the problem is caused by a memory + address changing between reads of the config file, in theory any + configuration with one SSL site could refuse to run, though in practice + a degree of complexity appears to be necessary to cause sufficient + memory allocation to trigger the crash. + + The bug is thus serious as any SSL apache configuration may not load. + + [Testcase] + + See comment #1 + + [Regression Potential] + + The most likely regression potential is a failure of OCSP to work + properly. OCSP is relatively new and little used code, and hence is less + well tested than other areas. Though the work was done upstream and has + been approved by OCSP-familiar apache authors, it is possible a change + to the OCSP code will cause some OCSP functionality defect. However, the + comparative lack of use of OCSP (compared to SSL) means the impact of + any such failure should be limited. + + + Detailed description follows: When starting apache2 with multiple SSL sites I get a SEGV like this: (gdb) bt #0 0x705faaf3 in ?? () from /usr/lib/apache2/modules/mod_ssl.so #1 0x729647a6 in int_free_ex_data (class_index=optimized out, obj=0x55af7460, ad=0x55af7488) at ex_data.c:522 #2 0x72a05061 in x509_cb (operation=operation@entry=3, pval=pval@entry=0x7fffc218, it=it@entry=0x72cc0780 X509_it, - exarg=exarg@entry=0x0) at x_x509.c:113 + exarg=exarg@entry=0x0) at x_x509.c:113 #3 0x72a08fea in asn1_item_combine_free (pval=pval@entry=0x7fffc218, it=it@entry=0x72cc0780 X509_it, combine=combine@entry=0) - at tasn_fre.c:173 + at tasn_fre.c:173 #4 0x72a091c5 in ASN1_item_free (val=val@entry=0x55af7460, it=it@entry=0x72cc0780 X509_it) at tasn_fre.c:71 #5 0x72a0514c in X509_free (a=a@entry=0x55af7460) at x_x509.c:141 #6 0x705ee0b8 in ssl_pphrase_Handle (s=s@entry=0x77fc1de0, p=p@entry=0x77fbf028) at ssl_engine_pphrase.c:275 #7 0x705e3658 in ssl_init_Module (p=0x77ff0028, plog=optimized out, ptemp=0x77fbf028, base_server=0x77fc1de0) - at ssl_engine_init.c:194 + at ssl_engine_init.c:194 #8 0x555aa2a9 in ap_run_post_config (pconf=0x77ff0028, plog=0x77fbd028, ptemp=0x77fbf028, s=0x77fc1de0) at config.c:103 #9 0x5558ae07 in main (argc=6, argv=0x7fffe5a8) at main.c:765 This is 100% repeatable. This looks very like: - https://bugzilla.redhat.com/show_bug.cgi?id=1074406 + https://bugzilla.redhat.com/show_bug.cgi?id=1074406 save that I am not using Auth at all. However, ssl itself requires the socache logic, so perhaps it has the same root cause. Disabling a couple of SSL sites normally resolves the problem. What I expected to happen: apache2 to start without SEGV What actually happened: apache2 did not start due to SEGV root@nimtest:/root# lsb_release -rd Description: Ubuntu 14.04.1 LTS Release: 14.04 root@nimtest:/root# apt-cache policy apache2-bin apache2-bin: - Installed: 2.4.7-1ubuntu4.1 - Candidate: 2.4.7-1ubuntu4.1 - Version table: - *** 2.4.7-1ubuntu4.1 0 - 500 http://gb.archive.ubuntu.com/ubuntu/ trusty-updates/main amd64 Packages - 500 http://security.ubuntu.com/ubuntu/ trusty-security/main amd64 Packages - 100 /var/lib/dpkg/status - 2.4.7-1ubuntu4 0 - 500 http://gb.archive.ubuntu.com/ubuntu/ trusty/main amd64 Packages + Installed: 2.4.7-1ubuntu4.1 + Candidate: 2.4.7-1ubuntu4.1 + Version table: + *** 2.4.7-1ubuntu4.1 0 + 500 http://gb.archive.ubuntu.com/ubuntu/ trusty-updates/main amd64 Packages + 500 http://security.ubuntu.com/ubuntu/ trusty-security/main amd64 Packages + 100 /var/lib/dpkg/status + 2.4.7-1ubuntu4 0 + 500 http://gb.archive.ubuntu.com/ubuntu/ trusty/main amd64 Packages root@nimtest:/root# dpkg --list | egrep '\b(apache2|libssl|openssl)' ii apache2 2.4.7-1ubuntu4.1 amd64Apache HTTP Server ii apache2-bin 2.4.7-1ubuntu4.1 amd64Apache HTTP Server (binary files and
[Bug 1366174] Re: apache2 SEGV with multiple SSL sites
I have attached a backport to 2.4.7 to this comment. This is a backport of the backport to 2.4.x in upstream svn. More details in the commit message. This is a straight patch to the source (produced from git) rather than a proper packaged up patch, if you see what I mean. I've put this up on github too for ease of review: https://github.com/abligh/apache2-2.4.7-ubuntu-trusty/commit/6e24e496c7aee8aa1ff13a41dae71c91fe8c0bbe ** Patch added: LP#1366174: Backport PR54357 to 2.4.7 - Crash during restart or at startup in mod_ssl, in certinfo_free() function registered by ssl_stapling_ex_init() https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1366174/+attachment/4254782/+files/0001-LP-1366174-Backport-PR54357-to-2.4.7-Crash-during-re.patch -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/1366174 Title: apache2 SEGV with multiple SSL sites To manage notifications about this bug go to: https://bugs.launchpad.net/apache2/+bug/1366174/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1366174] Re: apache2 SEGV with multiple SSL sites
This has now been merged into 2.4. See https://issues.apache.org/bugzilla/show_bug.cgi?id=54357 Any chance this can now be backported to Trusty? The impact is pretty severe. ** Bug watch added: Apache Software Foundation Bugzilla #54357 http://issues.apache.org/bugzilla/show_bug.cgi?id=54357 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/1366174 Title: apache2 SEGV with multiple SSL sites To manage notifications about this bug go to: https://bugs.launchpad.net/apache2/+bug/1366174/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1366174] Re: apache2 SEGV with multiple SSL sites
The fix for this is now committed in trunk. A 2.4 backport is available. See: https://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/STATUS?r1=1631030r2=1631029 Patch (per the above) at: https://people.apache.org/~kbrand/mod_ssl-2.4.x-PR54357.diff -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/1366174 Title: apache2 SEGV with multiple SSL sites To manage notifications about this bug go to: https://bugs.launchpad.net/apache2/+bug/1366174/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1333388] Re: mod_ident no longer included in apache
Yes, we did talk on IRC :-) As far as I can tell, utopic 2.4.10-1ubuntu1 does not build modident (still). I suspect what might have been fixed in the debian bug my report got merged into (https://bugs.debian.org/cgi- bin/bugreport.cgi?bug=711925) is the constant removal of any module called modident wherever you load it from. However, this doesn't address the problem that modident is missing in the first place. ** Bug watch added: Debian Bug tracker #711925 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=711925 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/188 Title: mod_ident no longer included in apache To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/188/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1333388] Re: mod_ident no longer included in apache
Yep, though I think that was what https://bugs.debian.org/cgi- bin/bugreport.cgi?bug=752922 asked for. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/188 Title: mod_ident no longer included in apache To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/188/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1366174] Re: apache2 SEGV with multiple SSL sites
Robie: removing the reference to certinfo_free where X509_get_ex_new_index is called within ssl_stapling_ex_init works around the 2.4.10 bug at the expense of a memory leak. I haven't (yet) verified this entirely fixes 2.4.7 though I suspect it will. I'll test that in a bit. Obviously this solution is pretty foul, but is probably better than the current situation. A better solution from upstream would be welcomed. The underlying issue is that not all SSL resources are being correctly individually freed, and for various reasons the cleanup function can't be used to clean them all up. If I've understood this bug right, any apache config that uses SSL is vulnerable to a crash on startup; it just needs to be reasonably complex (sufficiently complex to cause dlopen() to choose a different memory address to load the SSL module). -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/1366174 Title: apache2 SEGV with multiple SSL sites To manage notifications about this bug go to: https://bugs.launchpad.net/apache2/+bug/1366174/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1366174] Re: apache2 SEGV with multiple SSL sites
I can confirm that the above workaround fixes 2.4.7, both my testcase and our real world version. I attach a patch. This is probably 'better than nothing'. ** Patch added: Patch to avoid calling certinfo_free (ugly workaround) https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1366174/+attachment/4199615/+files/apache2-dont-use-certinfo-free.patch -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/1366174 Title: apache2 SEGV with multiple SSL sites To manage notifications about this bug go to: https://bugs.launchpad.net/apache2/+bug/1366174/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1366174] Re: apache2 SEGV with multiple SSL sites
Robie: that attitude is quite understandable. I'm willing to do some work bisecting it, but I fear the root problem is going to be that addressed this commit: http://svn.apache.org/viewvc?view=revisionrevision=1573360 The ssl_pphrase_Handle routine is misleadingly named, and in fact is pretty much the core SSL initialisation routine for all the sites. What appears to be going wrong is one of the addresses for the callback going awry. The above commit rewrites this completely (which is an intrusive change) - the author's opinion of the previous code is evident from the commit message. As you can see, upstream's proposed fix was 'upgrade'. I don't think this will qualify as a 'minimal patch'. As far as I can tell from playing so far, the root problem seems to be connected to .so file loading. modphp + moddbd postgresql tickles it, but I suspect other combinations will as well. If it's going to be difficult to fix this against 2.4.7, would getting 2.4.10 (the Utopic version) into trusty-backports be permissible? That way at least I'd get security updates. I can confirm this builds out of the box with no issues. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/1366174 Title: apache2 SEGV with multiple SSL sites To manage notifications about this bug go to: https://bugs.launchpad.net/apache2/+bug/1366174/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1366174] Re: apache2 SEGV with multiple SSL sites
Turns out 2.4.10 also has the bug after all (it's just more difficult to trigger). I think I have found the root cause. I've put details upstream. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/1366174 Title: apache2 SEGV with multiple SSL sites To manage notifications about this bug go to: https://bugs.launchpad.net/apache2/+bug/1366174/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1366174] Re: apache2 SEGV with multiple SSL sites
I think I've got about the minimal case for replication. Attached is a tiny perl script which generates a number of SSL sites of the form: VirtualHost 127.0.0.1:$port ServerName 127.0.0.1:$port SSLEngine on SSLCertificateFile/etc/ssl/certs/ssl-cert-snakeoil.pem SSLCertificateKeyFile /etc/ssl/private/ssl-cert-snakeoil.key DBDriver pgsql /VirtualHost When the numebr of sites exceeds 61 (on my machine), I get an illegal instruction error. The DBDriver pgsql itself is important, but I don't think this is a DBD problem. About anything that loads a module causes a problem. ** Attachment added: Perl file to make configuration to replicate the problem https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1366174/+attachment/4197022/+files/makeconf.pl -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/1366174 Title: apache2 SEGV with multiple SSL sites To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1366174/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1366174] Re: apache2 SEGV with multiple SSL sites
Actually DBDriver pgsql causes the issue, but not DBDriver mysql, and it can be outside the virtual host block. So I think this might be a pgsql driver issue. Reported upstream at: https://issues.apache.org/bugzilla/show_bug.cgi?id=56919 ** Bug watch added: Apache Software Foundation Bugzilla #56919 http://issues.apache.org/bugzilla/show_bug.cgi?id=56919 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/1366174 Title: apache2 SEGV with multiple SSL sites To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1366174/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1366174] Re: apache2 SEGV with multiple SSL sites
The number of sites required appears to vary. Also it appears to be necessary to have mod php5 enabled. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/1366174 Title: apache2 SEGV with multiple SSL sites To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1366174/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1366174] [NEW] apache2 SEGV with multiple SSL sites
Public bug reported: Apache2 crashes with multiple SSL sites. When starting apache2 with multiple SSL sites I get a SEGV like this: (gdb) bt #0 0x705faaf3 in ?? () from /usr/lib/apache2/modules/mod_ssl.so #1 0x729647a6 in int_free_ex_data (class_index=optimized out, obj=0x55af7460, ad=0x55af7488) at ex_data.c:522 #2 0x72a05061 in x509_cb (operation=operation@entry=3, pval=pval@entry=0x7fffc218, it=it@entry=0x72cc0780 X509_it, exarg=exarg@entry=0x0) at x_x509.c:113 #3 0x72a08fea in asn1_item_combine_free (pval=pval@entry=0x7fffc218, it=it@entry=0x72cc0780 X509_it, combine=combine@entry=0) at tasn_fre.c:173 #4 0x72a091c5 in ASN1_item_free (val=val@entry=0x55af7460, it=it@entry=0x72cc0780 X509_it) at tasn_fre.c:71 #5 0x72a0514c in X509_free (a=a@entry=0x55af7460) at x_x509.c:141 #6 0x705ee0b8 in ssl_pphrase_Handle (s=s@entry=0x77fc1de0, p=p@entry=0x77fbf028) at ssl_engine_pphrase.c:275 #7 0x705e3658 in ssl_init_Module (p=0x77ff0028, plog=optimized out, ptemp=0x77fbf028, base_server=0x77fc1de0) at ssl_engine_init.c:194 #8 0x555aa2a9 in ap_run_post_config (pconf=0x77ff0028, plog=0x77fbd028, ptemp=0x77fbf028, s=0x77fc1de0) at config.c:103 #9 0x5558ae07 in main (argc=6, argv=0x7fffe5a8) at main.c:765 This is 100% repeatable. This looks very like: https://bugzilla.redhat.com/show_bug.cgi?id=1074406 save that I am not using Auth at all. However, ssl itself requires the socache logic, so perhaps it has the same root cause. Disabling a couple of SSL sites normally resolves the problem. What I expected to happen: apache2 to start without SEGV What actually happened: apache2 did not start due to SEGV root@nimtest:/root# lsb_release -rd Description:Ubuntu 14.04.1 LTS Release:14.04 root@nimtest:/root# apt-cache policy apache2-bin apache2-bin: Installed: 2.4.7-1ubuntu4.1 Candidate: 2.4.7-1ubuntu4.1 Version table: *** 2.4.7-1ubuntu4.1 0 500 http://gb.archive.ubuntu.com/ubuntu/ trusty-updates/main amd64 Packages 500 http://security.ubuntu.com/ubuntu/ trusty-security/main amd64 Packages 100 /var/lib/dpkg/status 2.4.7-1ubuntu4 0 500 http://gb.archive.ubuntu.com/ubuntu/ trusty/main amd64 Packages root@nimtest:/root# dpkg --list | egrep '\b(apache2|libssl|openssl)' ii apache2 2.4.7-1ubuntu4.1 amd64Apache HTTP Server ii apache2-bin 2.4.7-1ubuntu4.1 amd64Apache HTTP Server (binary files and modules) ii apache2-data 2.4.7-1ubuntu4.1 all Apache HTTP Server (common files) ii apache2-dbg 2.4.7-1ubuntu4.1 amd64Apache debugging symbols ii apache2-utils2.4.7-1ubuntu4.1 amd64Apache HTTP Server (utility programs for web servers) ii libgnutls-openssl27:amd642.12.23-12ubuntu2.1 amd64GNU TLS library - OpenSSL wrapper ii libssl1.0.0:amd641.0.1f-1ubuntu2.5 amd64Secure Sockets Layer toolkit - shared libraries ii libssl1.0.0-dbg:amd641.0.1f-1ubuntu2.5 amd64Secure Sockets Layer toolkit - debug information ii openssl 1.0.1f-1ubuntu2.5 amd64Secure Sockets Layer toolkit - cryptographic utility ii python-openssl 0.13-2ubuntu6 amd64Python 2 wrapper around the OpenSSL library Modules in use: root@nimtest:/root# ls -1 /etc/apache2/mods-enabled/ access_compat.load alias.conf alias.load auth_basic.load authn_core.load authn_file.load authz_core.load authz_groupfile.load authz_host.load authz_user.load autoindex.conf autoindex.load cgi.load dbd.load deflate.conf deflate.load dir.conf dir.load env.load filter.load headers.load ident2.load lbmethod_byrequests.load mime.conf mime.load mpm_prefork.conf mpm_prefork.load negotiation.conf negotiation.load php5.conf php5.load proxy.conf proxy.load proxy_balancer.conf proxy_balancer.load proxy_http.load reqtimeout.conf reqtimeout.load rewrite.load setenvif.conf setenvif.load slotmem_shm.load socache_shmcb.load ssl.conf ssl.load status.conf status.load substitute.load websocket.load websocket_draft76.load Here's a startup log plus 'bt full' root@nimtest:/root# APACHE_LOCK_DIR=/var/lock/apache2 APACHE_RUN_USER=www-data gdb --args /usr/sbin/apache2 -k start -X -e Debug GNU gdb (Ubuntu 7.7-0ubuntu3.1) 7.7 Copyright (C) 2014 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later http://gnu.org/licenses/gpl.html This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by
[Bug 1358242] [NEW] libxen-4.4 has no corresponding debug package
Public bug reported: libxen-4.4 has no corresponding debug package with debugging symbols in. ** Affects: xen (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to xen in Ubuntu. https://bugs.launchpad.net/bugs/1358242 Title: libxen-4.4 has no corresponding debug package To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xen/+bug/1358242/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1333388] Re: mod_ident no longer included in apache
This gets worse. You can't even use your own mod_ident, because whenever apache2 is upgraded, it runs this: OBSOLETE_CONFFILES=... /etc/apache2/mods-available/ident.load ... ... if [ -n $2 ] || obsolete_conffile_exists ; then prepare_rm_conffile prepare_mv_conffile fi which goes and removes its .load file. What is the justification for mandatory removal of functional configuration files shipped with the upstream package, just because someone decided they shouldn't be used by default? It's almost as if someone has made it deliberately near impossible to use these modules. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/188 Title: mod_ident no longer included in apache To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/188/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1291321] Re: migration fails between 12.04 Precise and 14.04 Trusty
This is pretty annoying. In a situation where you have many customer VMs running on 12.04, and want to migrate them to a host running 14.04 (so you can do a rolling OS upgrade), I'm afraid shut down all your customer VMs and restart isn't really an option for obvious reasons. Equally, installing two versions of qemu, or custom versions of qemu is not really an option. In my situation I'm not using virsh / libvirt, so adding '-machine pc-1.0 -global cirrus-vga.vgamem_mb=10' or similar would be a reasonable fix; when the VM is eventually rebooted, I can reboot without that, and the hardware will appear to be upgraded (not great, but ok). However, this doesn't work as (as far as I can tell) there is no way to get past: 'Length mismatch: :00:03.0/virtio-net-pci.rom: 1 in != 2' through command-line skulduggery. What it seems to me one should do is define a pc-1.0-precise machine type (which is obviously not going to be used by anyone using raring etc.), and use this solely for incoming migrations. I'd produce the patch myself save I've not yet discovered where the relevant tweak for changing virtio-net-pci.rom size is. If I find it (I've contributed to qemu before) would you take this as an SRU? -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to qemu in Ubuntu. https://bugs.launchpad.net/bugs/1291321 Title: migration fails between 12.04 Precise and 14.04 Trusty To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1291321/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1291321] Re: migration fails between 12.04 Precise and 14.04 Trusty
Looks like there is a patch here: http://pkgs.fedoraproject.org/cgit/qemu.git/tree/0001-Fix-migration-from-qemu-kvm.patch?h=f20 but it's either take it (and break inbound migrates from quantal etc.) or don't (and break inbound migrates from precise). Another possibility (unhelpful for libvirt possibly), would simply be a second binary for this purpose. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to qemu in Ubuntu. https://bugs.launchpad.net/bugs/1291321 Title: migration fails between 12.04 Precise and 14.04 Trusty To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1291321/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1337262] [NEW] kmod should permit use of compressed modules
Public bug reported: kmod should permit use of compressed modules. This enables images that boot from RAM to be much smaller. In essence this requires only changing a build option. Uncompressed modules are still supported. A patch is here: https://github.com/abligh/kmod/commit/31795c8078ba9ccb6f064d11d0c9e640f8e0fab1 ** Affects: kmod (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/1337262 Title: kmod should permit use of compressed modules To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/kmod/+bug/1337262/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1337262] Re: kmod should permit use of compressed modules
gah this got filed under apache2 even though I said affects kmod. - apologies all ** Package changed: apache2 (Ubuntu) = kmod (Ubuntu) -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/1337262 Title: kmod should permit use of compressed modules To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/kmod/+bug/1337262/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1333388] Re: mod_ident no longer included in apache
Reported to Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=752922 ** Bug watch added: Debian Bug tracker #752922 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=752922 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/188 Title: mod_ident no longer included in apache To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/188/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1333388] Re: mod_ident no longer included in apache
Arguably the real fix to this is to configure apache with --reallyall (compile everything), then perhaps put the more esoteric modules in a secondary package (libapache2-mod-extra or something). -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/188 Title: mod_ident no longer included in apache To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/188/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1333388] [NEW] mod_ident no longer included in apache
Public bug reported: Precise included mod_ident in apache2.2. Trusty does not include mod_ident in apache2.4. There appears to be no other package containing mod_ident.so. Therefore an upgrade between Precise (LTS) and Trusty (LTS) will unfixably break anything using mod_ident. This affects me sufficiently that I will happily build and contribute a mod_ident package for apache 2.4 (assuming I can pull it out the source), but I am reliably informed fixing this merely requires adding '--enable-ident' to debian/rules (not yet verified). This would seem the obvious fix. ** Affects: apache2 (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/188 Title: mod_ident no longer included in apache To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/188/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1333388] Re: mod_ident no longer included in apache
The attached patch appear to result in it building, and being able to be inserted as a module. root@trustytest:/home/ubuntu/apache2/apache2-2.4.7# for i in ../*.deb ; do echo $i ; dpkg -c $i | fgrep ident ; done ../apache2_2.4.7-1ubuntu4_amd64.deb -rw-r--r-- root/root62 2014-06-23 20:00 ./etc/apache2/mods-available/ident.load ../apache2.2-bin_2.4.7-1ubuntu4_amd64.deb ../apache2-bin_2.4.7-1ubuntu4_amd64.deb -rw-r--r-- root/root 10248 2014-06-23 20:04 ./usr/lib/apache2/modules/mod_ident.so ../apache2-data_2.4.7-1ubuntu4_all.deb ../apache2-dbg_2.4.7-1ubuntu4_amd64.deb -rw-r--r-- root/root 28316 2014-06-23 20:04 ./usr/lib/debug/usr/lib/apache2/modules/mod_ident.so ../apache2-dev_2.4.7-1ubuntu4_amd64.deb ../apache2-doc_2.4.7-1ubuntu4_all.deb -rw-r--r-- root/root 10502 2014-06-23 20:03 ./usr/share/doc/apache2-doc/manual/ja/mod/mod_ident.html -rw-r--r-- root/root 9993 2014-06-23 20:03 ./usr/share/doc/apache2-doc/manual/fr/mod/mod_ident.html -rw-r--r-- root/root 9550 2014-06-23 20:03 ./usr/share/doc/apache2-doc/manual/en/mod/mod_ident.html -rw-r--r-- root/root 9068 2014-06-23 20:03 ./usr/share/doc/apache2-doc/manual/ko/mod/mod_ident.html lrwxrwxrwx root/root 0 2014-06-23 20:04 ./usr/share/doc/apache2-doc/manual/zh-cn/mod/mod_ident.html - ../../en/mod/mod_ident.html lrwxrwxrwx root/root 0 2014-06-23 20:04 ./usr/share/doc/apache2-doc/manual/da/mod/mod_ident.html - ../../en/mod/mod_ident.html lrwxrwxrwx root/root 0 2014-06-23 20:04 ./usr/share/doc/apache2-doc/manual/de/mod/mod_ident.html - ../../en/mod/mod_ident.html lrwxrwxrwx root/root 0 2014-06-23 20:04 ./usr/share/doc/apache2-doc/manual/pt-br/mod/mod_ident.html - ../../en/mod/mod_ident.html lrwxrwxrwx root/root 0 2014-06-23 20:04 ./usr/share/doc/apache2-doc/manual/tr/mod/mod_ident.html - ../../en/mod/mod_ident.html lrwxrwxrwx root/root 0 2014-06-23 20:04 ./usr/share/doc/apache2-doc/manual/es/mod/mod_ident.html - ../../en/mod/mod_ident.html ../apache2-mpm-event_2.4.7-1ubuntu4_amd64.deb ../apache2-mpm-itk_2.4.7-1ubuntu4_amd64.deb ../apache2-mpm-prefork_2.4.7-1ubuntu4_amd64.deb ../apache2-mpm-worker_2.4.7-1ubuntu4_amd64.deb ../apache2-suexec_2.4.7-1ubuntu4_amd64.deb ../apache2-suexec-custom_2.4.7-1ubuntu4_amd64.deb ../apache2-suexec-pristine_2.4.7-1ubuntu4_amd64.deb ../apache2-utils_2.4.7-1ubuntu4_amd64.deb ../libapache2-mod-macro_2.4.7-1ubuntu4_amd64.deb ../libapache2-mod-proxy-html_2.4.7-1ubuntu4_amd64.deb root@trustytest:/home/ubuntu/apache2/apache2-2.4.7# a2enmod ident Enabling module ident. To activate the new configuration, you need to run: service apache2 restart root@trustytest:/home/ubuntu/apache2/apache2-2.4.7# service apache2 restart * Restarting web server apache2 AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using 127.0.1.1. Set the 'ServerName' directive globally to suppress this message ** Patch added: Patch to add mod_ident https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/188/+attachment/4137677/+files/0001-LP-188-add-mod_ident.patch -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/188 Title: mod_ident no longer included in apache To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/188/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1333388] Re: mod_ident no longer included in apache
If you prefer this as a separate module, this would appear to compile and load as a module: https://github.com/abligh/libapache-mod-ident Direction on which you would prefer would be useful and I will get testing. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/188 Title: mod_ident no longer included in apache To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/188/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1275656] Re: open-vm-dkms 2011.12.20-562307-0ubuntu1: open-vm-tools kernel module failed to build
That's a shame, but thanks for the info. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to open-vm-tools in Ubuntu. https://bugs.launchpad.net/bugs/1275656 Title: open-vm-dkms 2011.12.20-562307-0ubuntu1: open-vm-tools kernel module failed to build To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/cunit/+bug/1275656/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1275656] Re: open-vm-dkms 2011.12.20-562307-0ubuntu1: open-vm-tools kernel module failed to build
Hi, I tried to test this and couldn't get it to work, though I may have done something stupid. I run precise, and upgraded to the lts-trusty kernel. I then removed open-vm-tools ( friends), and inserted the custom built precise package. That all worked fine, but I still can't mount vmhgfs as I did before I did the kernel upgrade in the first place (more precisely, my /etc/fstab line worked, whereas now the system still hangs on boot until I press 'S' at the console). I note the above says The modules which fail to build have been merged upstream, ***with the exception of the host-guest file system (hgfs) module which has been replaced with an hgfs FUSE helper***. These modules are available in v3.9 of the kernel and later (Saucy and later) (my emphasis). That rather implies that the FUSE helper is now included within the package(s). If so, how do I use it as the previous syntax does not appear to work. If not, how does one get the FUSE helper? Alex amb@nimrod-ubuntu:~$ fgrep vmhgfs /etc/fstab .host:/amb-nimrod /home/amb/nimrod vmhgfs none 0 0 amb@nimrod-ubuntu:~$ sudo mount -t vmhgfs .host:/amb-nimrod /home/amb/nimrod Error: cannot mount filesystem: No such device amb@nimrod-ubuntu:~$ uname -a Linux nimrod-ubuntu 3.13.0-29-generic #53~precise1-Ubuntu SMP Wed Jun 4 22:06:25 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux amb@nimrod-ubuntu:~$ dpkg --list | egrep '(open-vm|linux-image|linux-headers)' ii linux-headers-3.13.0-29 3.13.0-29.53~precise1 Header files related to Linux kernel version 3.13.0 ii linux-headers-3.13.0-29-generic 3.13.0-29.53~precise1 Linux kernel headers for version 3.13.0 on 64 bit x86 SMP ii linux-headers-3.2.0-64 3.2.0-64.97 Header files related to Linux kernel version 3.2.0 ii linux-headers-3.2.0-64-generic 3.2.0-64.97 Linux kernel headers for version 3.2.0 on 64 bit x86 SMP ii linux-headers-3.8.0-35 3.8.0-35.52~precise1 Header files related to Linux kernel version 3.8.0 ii linux-headers-3.8.0-35-generic 3.8.0-35.52~precise1 Linux kernel headers for version 3.8.0 on 64 bit x86 SMP ii linux-headers-generic 3.2.0.64.76 Generic Linux kernel headers ii linux-headers-generic-lts-trusty3.13.0.29.25 Generic Linux kernel headers ii linux-image-3.13.0-29-generic 3.13.0-29.53~precise1 Linux kernel image for version 3.13.0 on 64 bit x86 SMP ii linux-image-3.2.0-48-generic3.2.0-48.74 Linux kernel image for version 3.2.0 on 64 bit x86 SMP ii linux-image-3.2.0-57-generic3.2.0-57.87 Linux kernel image for version 3.2.0 on 64 bit x86 SMP ii linux-image-3.2.0-58-generic3.2.0-58.88 Linux kernel image for version 3.2.0 on 64 bit x86 SMP ii linux-image-3.2.0-64-generic3.2.0-64.97 Linux kernel image for version 3.2.0 on 64 bit x86 SMP ii linux-image-3.8.0-35-generic3.8.0-35.52~precise1 Linux kernel image for version 3.8.0 on 64 bit x86 SMP ii linux-image-generic 3.2.0.64.76 Generic Linux kernel image ii linux-image-generic-lts-trusty 3.13.0.29.25 Generic Linux kernel image ii open-vm-tools-lts-trusty 2:9.4.0-1280544-5ubuntu6~precise1Open VMware Tools for virtual machines hosted on VMware (CLI) ii open-vm-tools-lts-trusty-dbg 2:9.4.0-1280544-5ubuntu6~precise1Open VMware Tools for virtual machines hosted on VMware (debug) ii open-vm-tools-lts-trusty-desktop 2:9.4.0-1280544-5ubuntu6~precise1Open VMware Tools for virtual machines hosted on VMware (GUI) -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to open-vm-tools in Ubuntu. https://bugs.launchpad.net/bugs/1275656 Title: open-vm-dkms 2011.12.20-562307-0ubuntu1: open-vm-tools kernel module failed to build To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/cunit/+bug/1275656/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1275656] Re: open-vm-dkms 2011.12.20-562307-0ubuntu1: open-vm-tools kernel module failed to build
Further playing about suggests I need (somehow) vmware-hgfsclient, but the package seems devoid of any documentation or manual pages. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to open-vm-tools in Ubuntu. https://bugs.launchpad.net/bugs/1275656 Title: open-vm-dkms 2011.12.20-562307-0ubuntu1: open-vm-tools kernel module failed to build To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/cunit/+bug/1275656/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1327072] [NEW] package openssh-server 1:6.6p1-2ubuntu2 failed to install/upgrade: ErrorMessage: subprocess installed post-installation script was killed by signal (Aborted), core dumped
Public bug reported: Practically no information: just decided to upgrade to 14.04 and it shows that openssh-server upgrade failed. OpenSSH_6.6.1p1 Ubuntu-2ubuntu2, OpenSSL 1.0.1f 6 Jan 2014 seems to be up and running though ProblemType: Package DistroRelease: Ubuntu 14.04 Package: openssh-server 1:6.6p1-2ubuntu2 ProcVersionSignature: Ubuntu 3.13.0-29.53-generic 3.13.11.2 Uname: Linux 3.13.0-29-generic x86_64 ApportVersion: 2.14.1-0ubuntu3.2 Architecture: amd64 Date: Fri Jun 6 09:32:25 2014 DuplicateSignature: package:openssh-server:1:6.6p1-2ubuntu2:ErrorMessage: subprocess installed post-installation script was killed by signal (Aborted), core dumped ErrorMessage: ErrorMessage: subprocess installed post-installation script was killed by signal (Aborted), core dumped InstallationDate: Installed on 2013-09-28 (250 days ago) InstallationMedia: Ubuntu-Server 13.04 Raring Ringtail - Release amd64 (20130423.1) SourcePackage: openssh Title: package openssh-server 1:6.6p1-2ubuntu2 failed to install/upgrade: ErrorMessage: subprocess installed post-installation script was killed by signal (Aborted), core dumped UpgradeStatus: Upgraded to trusty on 2014-06-06 (0 days ago) ** Affects: openssh (Ubuntu) Importance: Undecided Status: New ** Tags: amd64 apport-package need-duplicate-check trusty -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/1327072 Title: package openssh-server 1:6.6p1-2ubuntu2 failed to install/upgrade: ErrorMessage: subprocess installed post-installation script was killed by signal (Aborted), core dumped To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1327072/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1068756] Re: IPv6 Privacy Extensions enabled on Ubuntu Server by default
** Also affects: cloud-init (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to cloud-init in Ubuntu. https://bugs.launchpad.net/bugs/1068756 Title: IPv6 Privacy Extensions enabled on Ubuntu Server by default To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/cloud-init/+bug/1068756/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1068756] Re: IPv6 Privacy Extensions enabled on Ubuntu Server by default
Neil: the metadata is just one example (though that's not happening). The firewall rule thing applies irrespective of the metadata. The cloud environment created requires only /128 addresses it knows about to be accessible, and firewalls everything else out. Reasons for this include prevention of spoofing of IP addresses on outbound traffic. We want each UEC image to come up with the IPv6 address(es) we have assigned, and not a random one in the same /64. This is not an unreasonable requirement. We would use DHCPv6 for this if it weren't for the fact that DHCPv6 is broken in different ways and has little support. IPv6 *as designed* says RFC4941 SHOULD (RFC capitalisation) be turned off by default. So the argument that applications should be using it 'as designed' is bogus, as if it was deployed *as designed* (i.e. per the RFC) it would work. There would be no problem with (e.g.) Network Manager turning this on in a desktop environment. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to cloud-init in Ubuntu. https://bugs.launchpad.net/bugs/1068756 Title: IPv6 Privacy Extensions enabled on Ubuntu Server by default To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/cloud-init/+bug/1068756/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1068756] Re: IPv6 Privacy Extensions enabled on Ubuntu Server by default
This affects 14.04 too -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to cloud-init in Ubuntu. https://bugs.launchpad.net/bugs/1068756 Title: IPv6 Privacy Extensions enabled on Ubuntu Server by default To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/cloud-init/+bug/1068756/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1068756] Re: IPv6 Privacy Extensions enabled on Ubuntu Server by default
That doesn't work if (for instance) you have 2 machines on the same SDN virtual LAN, which is a /64, and you want to prevent source spoofing between them. For avoidance of doubt, we do use /64s. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to cloud-init in Ubuntu. https://bugs.launchpad.net/bugs/1068756 Title: IPv6 Privacy Extensions enabled on Ubuntu Server by default To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/cloud-init/+bug/1068756/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1325943] [NEW] open vm tools cannot be installed
Public bug reported: Installing open-vm-tools fails on the open-vm-dkms package. This is on Ubuntu 12.04.4 LTS running in VMWare player (Windows 8 host OS). On my first attempt, I wasn't sure if I had tried to install VMWare Tools previously, so I did a fresh Ubuntu install. This had no impact on the issue. ProblemType: Package DistroRelease: Ubuntu 12.04 Package: open-vm-dkms 2011.12.20-562307-0ubuntu1 ProcVersionSignature: Ubuntu 3.8.0-39.57~precise1-generic 3.8.13.20 Uname: Linux 3.8.0-39-generic x86_64 ApportVersion: 2.0.1-0ubuntu17.6 Architecture: amd64 DKMSKernelVersion: 3.8.0-39-generic Date: Tue Jun 3 13:22:26 2014 InstallationMedia: Ubuntu 12.04.3 LTS Precise Pangolin - Release amd64 (20130820.1) MarkForUpload: True PackageArchitecture: all PackageVersion: 2011.12.20-562307-0ubuntu1 SourcePackage: open-vm-tools Title: open-vm-dkms 2011.12.20-562307-0ubuntu1: open-vm-tools kernel module failed to build UpgradeStatus: No upgrade log present (probably fresh install) ** Affects: open-vm-tools (Ubuntu) Importance: Undecided Status: New ** Tags: amd64 apport-package need-duplicate-check precise -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to open-vm-tools in Ubuntu. https://bugs.launchpad.net/bugs/1325943 Title: open vm tools cannot be installed To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/open-vm-tools/+bug/1325943/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1313785] [NEW] Can't SSH with juju ssh command to EC2 instance.
Public bug reported: After updating juju to 1.19.1-trusty-amd64 version I can't ssh with juju command. Here are details: https://gist.github.com/allomov/11374976 I am working with aws btw (ec2 environment type). The error message is: ssh: Could not resolve hostname ip-172-31-21-242 .us-west-2.compute.internal: Name or service not known. Also I can SSH with standard SSH command: ssh -i ~/.juju/ssh/juju_id_rsa ubu...@ec2-54-186-183-60.us-west-2.compute.amazonaws.com It seems that `juju ssh` tries to us private DNS name. ** Affects: juju (Ubuntu) Importance: Undecided Status: New ** Tags: ssh -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to juju in Ubuntu. https://bugs.launchpad.net/bugs/1313785 Title: Can't SSH with juju ssh command to EC2 instance. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/juju/+bug/1313785/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1299186] Re: Creating a Samba Share is not possible because 'net usershare' returned error 255: net usershare add: cannot convert name Everyone to a SID. Access denied.
*** This bug is a duplicate of bug 1261873 *** https://bugs.launchpad.net/bugs/1261873 ** Also affects: samba Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in Ubuntu. https://bugs.launchpad.net/bugs/1299186 Title: Creating a Samba Share is not possible because 'net usershare' returned error 255: net usershare add: cannot convert name Everyone to a SID. Access denied. To manage notifications about this bug go to: https://bugs.launchpad.net/samba/+bug/1299186/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1296289] [NEW] smb.conf contains valid users = %S in [global]
Public bug reported: Seems that bug #131419 reappeared in 14.04 https://bugs.launchpad.net/ubuntu/+source/samba/+bug/131419 ** Affects: samba (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in Ubuntu. https://bugs.launchpad.net/bugs/1296289 Title: smb.conf contains valid users = %S in [global] To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/samba/+bug/1296289/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1289527] Re: qemu-aarch64-static: java dies with SIGILL
For SIGILL's it's useful to have the qemu log with -d unimp output. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to qemu in Ubuntu. https://bugs.launchpad.net/bugs/1289527 Title: qemu-aarch64-static: java dies with SIGILL To manage notifications about this bug go to: https://bugs.launchpad.net/qemu/+bug/1289527/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1274517] [NEW] Illegal Assignment Operator in Makefile.am
Public bug reported: LikewiseOpen (likewise-open-5.4.0.42111) seems to be containing an assignment operator that was coded incorrectly in lsass/server/store/dsapi/Makefile.am (line #14) : ADDITIONAL_LIBS _= $(NOINST_DEP_LIBS) During the build it would generate a Makefile with the following line : ADDITIONAL_LIBS _= $(NOINST_DEP_LIBS) Which in turn would break the build with error: Makefile:828: *** missing separator. Stop. Make 3.82 (or later) would complain about a line like this, but Make 3.81 (or earlier) would not. This could explain why the typo gone unnoticed for so long. ** Affects: likewise-open (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to likewise-open in Ubuntu. https://bugs.launchpad.net/bugs/1274517 Title: Illegal Assignment Operator in Makefile.am To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/likewise-open/+bug/1274517/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1083719] Re: open-vm-dkms 2011.12.20-562307-0ubuntu1: open-vm-tools kernel module failed to build [error: implicit declaration of function ‘d_alloc_root’]
Just as a note, the new kernels are not only needed on LTS for hardware enablement (and I'm guessing relatively few people need hardware enablement in a VMware guest), but also to run Docker, which I suspect affects more people (me included). -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to open-vm-tools in Ubuntu. https://bugs.launchpad.net/bugs/1083719 Title: open-vm-dkms 2011.12.20-562307-0ubuntu1: open-vm-tools kernel module failed to build [error: implicit declaration of function ‘d_alloc_root’] To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/open-vm-tools/+bug/1083719/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1026015] Re: wrong variable in /etc/default/openbsd-inetd - OPTION not OPTIONS
Just checked out that it's been fixed since quantal. Thus, i'm marking it fixed. ** Changed in: openbsd-inetd (Ubuntu) Status: Triaged = Fix Released -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openbsd-inetd in Ubuntu. https://bugs.launchpad.net/bugs/1026015 Title: wrong variable in /etc/default/openbsd-inetd - OPTION not OPTIONS To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openbsd-inetd/+bug/1026015/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1227210] [NEW] nagios-nrpe-server install ing more then need or documented
Public bug reported: lsb_release -rd Description: Ubuntu 12.04.2 LTS Release: 12.04 uname -a Linux SystemName 3.2.0-49-virtual #75-Ubuntu SMP Tue Jun 18 17:59:38 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux In AWS. Run the following: apt-get install nagios-nrpe-server The following extra packages will be installed: libperl5.14 libpq5 libradius1 libsensors4 libsnmp-base libsnmp15 libtalloc2 libtdb1 libwbclient0 nagios-plugins nagios-plugins-basic nagios-plugins-standard samba-common samba-common-bin smbclient snmp whois Suggested packages: lm-sensors snmp-mibs-downloader nagios3 postfix sendmail-bin exim4-daemon-heavy exim4-daemon-light cifs-utils The following NEW packages will be installed: libperl5.14 libpq5 libradius1 libsensors4 libsnmp-base libsnmp15 libtalloc2 libtdb1 libwbclient0 nagios-nrpe-server nagios-plugins nagios-plugins-basic nagios-plugins-standard samba-common samba-common-bin smbclient snmp whois This should not be happening! From: http://packages.ubuntu.com/precise/nagios-nrpe-server The only package it should install additionally are: adduser libc6 (= 2.4) libssl1.0.0 (= 1.0.0) libwrap0 (= 7.6-4~) lsb-base (= 3.0-3) nagios-plugins or nagios-plugins-basic ** Affects: nagios-nrpe (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nagios-nrpe in Ubuntu. https://bugs.launchpad.net/bugs/1227210 Title: nagios-nrpe-server install ing more then need or documented To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/nagios-nrpe/+bug/1227210/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 927651] Re: 'nagios-nrpe-plugin' unnecessarily recommends 'nagios3' package
Could be the same issue: https://bugs.launchpad.net/ubuntu/+source/nagios-nrpe/+bug/1227210 https://bugs.launchpad.net/ubuntu/+source/nagios-nrpe/+bug/927651 https://bugs.launchpad.net/ubuntu/+source/nagios-nrpe/+bug/1205065 https://bugs.launchpad.net/ubuntu/+source/nagios-nrpe/+bug/1072490 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nagios-nrpe in Ubuntu. https://bugs.launchpad.net/bugs/927651 Title: 'nagios-nrpe-plugin' unnecessarily recommends 'nagios3' package To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/nagios-nrpe/+bug/927651/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1227210] Re: nagios-nrpe-server install ing more then need or documented
Could be the same issue: https://bugs.launchpad.net/ubuntu/+source/nagios-nrpe/+bug/1227210 https://bugs.launchpad.net/ubuntu/+source/nagios-nrpe/+bug/927651 https://bugs.launchpad.net/ubuntu/+source/nagios-nrpe/+bug/1205065 https://bugs.launchpad.net/ubuntu/+source/nagios-nrpe/+bug/1072490 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nagios-nrpe in Ubuntu. https://bugs.launchpad.net/bugs/1227210 Title: nagios-nrpe-server install ing more then need or documented To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/nagios-nrpe/+bug/1227210/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1205065] Re: plugin installing more then need or documented
Could be the same issue: https://bugs.launchpad.net/ubuntu/+source/nagios-nrpe/+bug/1227210 https://bugs.launchpad.net/ubuntu/+source/nagios-nrpe/+bug/927651 https://bugs.launchpad.net/ubuntu/+source/nagios-nrpe/+bug/1205065 https://bugs.launchpad.net/ubuntu/+source/nagios-nrpe/+bug/1072490 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nagios-nrpe in Ubuntu. https://bugs.launchpad.net/bugs/1205065 Title: plugin installing more then need or documented To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/nagios-nrpe/+bug/1205065/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1072490] Re: nagios-nrpe-server recommends rather than suggests nagios3
Could be the same issue: https://bugs.launchpad.net/ubuntu/+source/nagios-nrpe/+bug/1227210 https://bugs.launchpad.net/ubuntu/+source/nagios-nrpe/+bug/927651 https://bugs.launchpad.net/ubuntu/+source/nagios-nrpe/+bug/1205065 https://bugs.launchpad.net/ubuntu/+source/nagios-nrpe/+bug/1072490 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nagios-nrpe in Ubuntu. https://bugs.launchpad.net/bugs/1072490 Title: nagios-nrpe-server recommends rather than suggests nagios3 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/nagios-nrpe/+bug/1072490/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1052815] Re: Perl warnings break plugins
how I fixed mine: sed -i -e 's/qw busy idle/(qw(busy idle))/' /usr/share/munin/plugins/apache_processes sed -i -e 's/qw(tty pty pts X other)/(qw(tty pty pts X other))/' /usr/share/munin/plugins/users -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to munin in Ubuntu. https://bugs.launchpad.net/bugs/1052815 Title: Perl warnings break plugins To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/munin/+bug/1052815/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
Re: [Bug 1192367] Re: No security release provided in Lucid for CVE-2013-3567
On Wed, 2013-06-19 at 11:55 +, Marc Deslauriers wrote: That file is the authoritative list of packages supported by the security team, and contains the list the packages we deemed able to support for 5 years instead of the base 3 years. Understood, and not unreasonable. However, I did not find this clear in the support announcements, or the documentation -- and I expect I am not alone in this expectation. Did I misunderstand the Supported property listed in dpkg and the Maintenance Period documentation from the wiki? What can I do to help clarify the documentation of this limited security support? Alternately, can you point me towards where this policy is already documented? As a follow-up question: in Precise, the server and desktop editions both receive support for 5 years. Does this mean that Precise will support all packages for 5 years, or is there a similarly limited set of packages for which support will be provided? The puppet version in Lucid is ancient, is no longer supported by upstream, and is substantially different from the puppet patches provided for later versions. Even if it was on the list, we wouldn't be able to update it since the recent security fixes have rewritten large parts of code. If migrating to a later LTS release isn't possible, I suggest perhaps using the upstream packages available from Puppet Labs. It's scheduled for next month, but that was based on the assumption that security patches were still being supplied for all of the installed software. It is notably complicated by the property that configuration files from Puppet 0.25 (from Lucid) and 2.7 (from Precise) are neither forward- nor backward- compatible, and thus requires coordinating the upgrade across the puppetmaster server as well as all client machines simultaneously. I'll also investigate if we can get the puppet version from Precise into lucid-backports. Perhaps useful to others, but we plan on simply upgrading to a later LTS, so not necessary for our site. - Alex -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to puppet in Ubuntu. https://bugs.launchpad.net/bugs/1192367 Title: No security release provided in Lucid for CVE-2013-3567 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/puppet/+bug/1192367/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
Re: [Bug 1192367] Re: No security release provided in Lucid for CVE-2013-3567
On Thu, 2013-06-20 at 18:13 +, Marc Deslauriers wrote: Yes, we realized that the exact list wasn't very exposed in locations where people would look. I've now added it to the Lucid release manifest wiki page, which is linked from the releases wiki page: https://wiki.ubuntu.com/LucidLynx/ReleaseManifest Given the below, it might be worth noting that that link only applies to Lucid server LTS; since, going forward for Precise and later, LTS means main for 5 years. While it's not the Unfortunately, the Supported property doesn't work well for releases that have different desktop and server support periods. We're working on a more complete database that will allow us to detail what packages are supported, and by who. Thankfully, more recent releases have a consistent support period. Right, which is why I asked the follow-up question. It's not worth belaboring the point overly if it's only relevant for Lucid. - Alex -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to puppet in Ubuntu. https://bugs.launchpad.net/bugs/1192367 Title: No security release provided in Lucid for CVE-2013-3567 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/puppet/+bug/1192367/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1192367] [NEW] No security release provided for CVE-2013-3567
Public bug reported: Lucid's version of puppet is listed as ignored (reached end-of-life) on the CVE tracking page for CVE-2013-3567 [1]. However, Ubuntu Lucid has not reached end-of-life for the server release -- indeed, `apt-cache show puppet` shows Supported: 5y. The Ubuntu wiki[2] states that Ubuntu Server LTS supports security updates and select bug fixes (5 years) -- This is defined as the union of the server-ship and supported- server seeds. Checking the seed file[3], I find that puppet is indeed listed in the server-ship seed. On IRC, I was pointed to ~ubuntu-security/ubuntu-cve-tracker/lucid- supported.txt as the master list of supported packages. How is this list generated, if not as documented under Ubuntu's support policies? I also note that the header line in that file is misleading or incorrect, and should probably read ...are unsupported starting May 9, 2013 if that is the intent. Regardless, either the Lucid release of puppet should gain a security release for CVE-2013-3567, or Ubuntu should update their documentation in numerous places as to what packages are considered supported as part of Lucid server LTS. [1] http://people.canonical.com/~ubuntu-security/cve/2013/CVE-2013-3567.html [2] https://wiki.ubuntu.com/SeedManagement#Maintenance_Period [3] http://people.canonical.com/~ubuntu-archive/germinate-output/ubuntu.lucid/server-ship.seed [4] http://bazaar.launchpad.net/~ubuntu-security/ubuntu-cve-tracker/master/view/head:/lucid-supported.txt ** Affects: puppet (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to puppet in Ubuntu. https://bugs.launchpad.net/bugs/1192367 Title: No security release provided for CVE-2013-3567 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/puppet/+bug/1192367/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1192367] Re: No security release provided for CVE-2013-3567
** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2013-3567 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to puppet in Ubuntu. https://bugs.launchpad.net/bugs/1192367 Title: No security release provided for CVE-2013-3567 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/puppet/+bug/1192367/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 805206] Re: php 5.3.2 is affected by a bug in the DateTime object
This bug also affects us. but only on 10.04, not on a similar machine with 12.04. This is a very severe issue for us, as we are running a booking platform, and wrong time offsets cause erroneous bookings. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to php5 in Ubuntu. https://bugs.launchpad.net/bugs/805206 Title: php 5.3.2 is affected by a bug in the DateTime object To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/php5/+bug/805206/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1029430] Re: KVM guests networking issues with no virbr0 and with vhost_net kernel modules loaded
I had the same problem, i do the update the kernel to 3.2.0-38-generic and now this working again Ubuntu 12.04 LTS 64Bits Feb 28 08:23:16 os0 dnsmasq-dhcp[2092]: DHCPREQUEST(br100) 172.16.88.229 fa:16:3e:44:90:46 Feb 28 08:23:16 os0 dnsmasq-dhcp[2092]: DHCPACK(br100) 172.16.88.229 fa:16:3e:44:90:46 0021 nova-api=2012.2.1+stable-20121212-a99a802e-0ubuntu1.1~cloud0 nova-cert=2012.2.1+stable-20121212-a99a802e-0ubuntu1.1~cloud0 nova-common=2012.2.1+stable-20121212-a99a802e-0ubuntu1.1~cloud0 nova-compute=2012.2.1+stable-20121212-a99a802e-0ubuntu1.1~cloud0 nova-compute-kvm=2012.2.1+stable-20121212-a99a802e-0ubuntu1.1~cloud0 nova-consoleauth=2012.2.1+stable-20121212-a99a802e-0ubuntu1.1~cloud0 nova-network=2012.2.1+stable-20121212-a99a802e-0ubuntu1.1~cloud0 nova-novncproxy=2012.2.1+stable-20121212-a99a802e-0ubuntu1.1~cloud0 nova-scheduler=2012.2.1+stable-20121212-a99a802e-0ubuntu1.1~cloud0 python-nova=2012.2.1+stable-20121212-a99a802e-0ubuntu1.1~cloud0 python-novaclient=1:2.9.0-0ubuntu1~cloud0 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nova in Ubuntu. https://bugs.launchpad.net/bugs/1029430 Title: KVM guests networking issues with no virbr0 and with vhost_net kernel modules loaded To manage notifications about this bug go to: https://bugs.launchpad.net/cloud-archive/+bug/1029430/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 879710] Re: ubuntu-vm-builder crashes when trying to umount tmp directory.
I just wanted to bump this issue because we're now experiencing it in an automated deployment system, and it's been open almost a year and half with no resolution. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to vm-builder in Ubuntu. https://bugs.launchpad.net/bugs/879710 Title: ubuntu-vm-builder crashes when trying to umount tmp directory. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/vm-builder/+bug/879710/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1086775] Re: Maintainer scripts mishandle /var/cache/bind permissions
** Description changed: Affects: 1:9.7.0.dfsg.P1-1ubuntu0.8, 1:9.8.1.dfsg.P1-4ubuntu0.4, 1:9.8.4 .dfsg-1ubuntu1. bind9.postinst only sets permissions on /var/cache/bind on a fresh install. When the bind9 package is removed but not purged, /var/cache/bind is removed, but /etc/bind is left alone (as expected). When the bind9 package is reinstalled from this state, the postinst fails to correct the default 755 permissions on /var/cache/bind. This is particularly a problem for users upgrading from Lucid, since this - situation causes 100% CPU usage due to bug 695264. + situation causes 100% CPU usage due to bug 1038199. Steps to reproduce: 1. Start with a Lucid system 2. apt-get install bind9 3. apt-get remove bind9 4. apt-get install bind9 Note broken permissions in /var/cache/bind. This isn't directly reproducible in Raring because files are now left behind in /var/cache/bind causing /var/cache/bind to not be removed when the package is removed (is this a separate bug?) However, if from Lucid you then do: 5. do-release-upgrade Then the problem propagates to Raring, and you'll see bug 1038199 (100% CPU usage). Workaround: # chown root.bind /var/cache/bind # chmod 775 /var/cache/bind # service bind9 restart Logs from the upgraded machine (see 'working directory not writeable' and 'permission denied') 05-Dec-2012 12:23:35.719 found 2 CPUs, using 2 worker threads 05-Dec-2012 12:23:35.720 using up to 4096 sockets 05-Dec-2012 12:23:35.726 loading configuration from '/etc/bind/named.conf' 05-Dec-2012 12:23:35.727 reading built-in trusted keys from file '/etc/bind/bind.keys' 05-Dec-2012 12:23:35.727 using default UDP/IPv4 port range: [1024, 65535] 05-Dec-2012 12:23:35.728 using default UDP/IPv6 port range: [1024, 65535] 05-Dec-2012 12:23:35.729 listening on IPv6 interfaces, port 53 05-Dec-2012 12:23:35.731 listening on IPv4 interface lo, 127.0.0.1#53 05-Dec-2012 12:23:35.732 listening on IPv4 interface eth0, 10.40.0.5#53 05-Dec-2012 12:23:35.734 listening on IPv4 interface eth1, 10.157.128.1#53 05-Dec-2012 12:23:35.735 listening on IPv4 interface eth1, 10.161.208.1#53 05-Dec-2012 12:23:35.736 listening on IPv4 interface eth0.60, 10.157.16.12#53 05-Dec-2012 12:23:35.738 generating session key for dynamic DNS 05-Dec-2012 12:23:35.738 sizing zone task pool based on 7 zones 05-Dec-2012 12:23:35.744 using built-in root key for view _default 05-Dec-2012 12:23:35.744 set up managed keys zone for view _default, file 'managed-keys.bind' 05-Dec-2012 12:23:35.744 Warning: 'empty-zones-enable/disable-empty-zone' not set: disabling RFC 1918 empty zones 05-Dec-2012 12:23:35.744 automatic empty zone: 254.169.IN-ADDR.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 2.0.192.IN-ADDR.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 100.51.198.IN-ADDR.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 113.0.203.IN-ADDR.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 255.255.255.255.IN-ADDR.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: D.F.IP6.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 8.E.F.IP6.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 9.E.F.IP6.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: A.E.F.IP6.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: B.E.F.IP6.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 8.B.D.0.1.0.0.2.IP6.ARPA 05-Dec-2012 12:23:35.749 command channel listening on 127.0.0.1#953 05-Dec-2012 12:23:35.749 command channel listening on ::1#953 05-Dec-2012 12:23:35.749 the working directory is not writable 05-Dec-2012 12:23:35.749 ignoring config file logging statement due to -g option 05-Dec-2012 12:23:35.750 zone 0.in-addr.arpa/IN: loaded serial 1 05-Dec-2012 12:23:35.750 zone 157.10.in-addr.arpa/IN: loaded serial 1 05-Dec-2012 12:23:35.751 zone 127.in-addr.arpa/IN: loaded serial 1 05-Dec-2012 12:23:35.752 zone 255.in-addr.arpa/IN: loaded serial 1 05-Dec-2012 12:23:35.753 zone extility.install/IN: loaded serial 1300877104 05-Dec-2012 12:23:35.754 zone localhost/IN: loaded serial 2 05-Dec-2012 12:23:35.754 managed-keys-zone ./IN: loading from master file managed-keys.bind failed: file not found 05-Dec-2012 12:23:35.754 managed-keys.bind.jnl: create: permission denied 05-Dec-2012 12:23:35.754 managed-keys-zone ./IN: sync_keyzone:dns_journal_open - unexpected error -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to bind9 in Ubuntu. https://bugs.launchpad.net/bugs/1086775 Title: Maintainer scripts mishandle /var/cache/bind permissions To manage notifications about this bug go to:
[Bug 1038199] Re: Bind9 9.8.1 high CPU utilization when managed-keys-directory option is omitted from config
Note that upgrades from Lucid to Precise can trigger this bug as the directory permissions may preclude writing to /var/cache/bind - see bug 1086775 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to bind9 in Ubuntu. https://bugs.launchpad.net/bugs/1038199 Title: Bind9 9.8.1 high CPU utilization when managed-keys-directory option is omitted from config To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/bind9/+bug/1038199/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1086775] [NEW] bind9 uses high CPU after lucid-precise upgrade
Public bug reported: Summary: bind9 uses very high CPU after an upgrade from Lucid to Precise. I have traced this to a directory permissions problem as /var/cache/bind is not writeable by the bind group after an upgrade, but is writeable after a clean install. Ubuntu release: root@dev1-kvm-cluster:~# lsb_release -rd Description:Ubuntu 12.04.1 LTS Release:12.04 Package version: root@dev1-kvm-cluster:~# apt-cache policy bind9 bind9: Installed: 1:9.8.1.dfsg.P1-4ubuntu0.4 Candidate: 1:9.8.1.dfsg.P1-4ubuntu0.4 Version table: *** 1:9.8.1.dfsg.P1-4ubuntu0.4 0 500 http://gb.archive.ubuntu.com/ubuntu/ precise-updates/main amd64 Packages 500 http://security.ubuntu.com/ubuntu/ precise-security/main amd64 Packages 100 /var/lib/dpkg/status 1:9.8.1.dfsg.P1-4 0 500 http://gb.archive.ubuntu.com/ubuntu/ precise/main amd64 Packages Expected behaviour: Upgrading Lucid-Precise when bind9 is installed does not use 100% CPU Observed behaviour: Upgrading Lucid-Precise when bind9 is installed does not use 100% CPU Root cause: On an upgraded machine: root@dev1-kvm-cluster:~# ls -la /var/cache/bind total 8 drwxr-xr-x 2 root bind 4096 Jun 5 2012 . drwxr-xr-x 14 root root 4096 Dec 5 10:18 .. On a clean install of Precise: amb@adamant:~$ ls -la /var/cache/bind total 16 drwxrwxr-x 2 root bind 4096 Dec 4 21:00 . drwxr-xr-x 8 root root 4096 Dec 3 20:54 .. -rw-r--r-- 1 bind bind 698 Dec 4 21:00 managed-keys.bind -rw-r--r-- 1 bind bind 512 Dec 4 21:00 managed-keys.bind.jnl Workaround: # chmod 775 /var/cache/bind # service bind9 restart Logs from the upgraded machine (see 'working directory not writeable' and 'permission denied') 05-Dec-2012 12:23:35.719 found 2 CPUs, using 2 worker threads 05-Dec-2012 12:23:35.720 using up to 4096 sockets 05-Dec-2012 12:23:35.726 loading configuration from '/etc/bind/named.conf' 05-Dec-2012 12:23:35.727 reading built-in trusted keys from file '/etc/bind/bind.keys' 05-Dec-2012 12:23:35.727 using default UDP/IPv4 port range: [1024, 65535] 05-Dec-2012 12:23:35.728 using default UDP/IPv6 port range: [1024, 65535] 05-Dec-2012 12:23:35.729 listening on IPv6 interfaces, port 53 05-Dec-2012 12:23:35.731 listening on IPv4 interface lo, 127.0.0.1#53 05-Dec-2012 12:23:35.732 listening on IPv4 interface eth0, 10.40.0.5#53 05-Dec-2012 12:23:35.734 listening on IPv4 interface eth1, 10.157.128.1#53 05-Dec-2012 12:23:35.735 listening on IPv4 interface eth1, 10.161.208.1#53 05-Dec-2012 12:23:35.736 listening on IPv4 interface eth0.60, 10.157.16.12#53 05-Dec-2012 12:23:35.738 generating session key for dynamic DNS 05-Dec-2012 12:23:35.738 sizing zone task pool based on 7 zones 05-Dec-2012 12:23:35.744 using built-in root key for view _default 05-Dec-2012 12:23:35.744 set up managed keys zone for view _default, file 'managed-keys.bind' 05-Dec-2012 12:23:35.744 Warning: 'empty-zones-enable/disable-empty-zone' not set: disabling RFC 1918 empty zones 05-Dec-2012 12:23:35.744 automatic empty zone: 254.169.IN-ADDR.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 2.0.192.IN-ADDR.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 100.51.198.IN-ADDR.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 113.0.203.IN-ADDR.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 255.255.255.255.IN-ADDR.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: D.F.IP6.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 8.E.F.IP6.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 9.E.F.IP6.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: A.E.F.IP6.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: B.E.F.IP6.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 8.B.D.0.1.0.0.2.IP6.ARPA 05-Dec-2012 12:23:35.749 command channel listening on 127.0.0.1#953 05-Dec-2012 12:23:35.749 command channel listening on ::1#953 05-Dec-2012 12:23:35.749 the working directory is not writable 05-Dec-2012 12:23:35.749 ignoring config file logging statement due to -g option 05-Dec-2012 12:23:35.750 zone 0.in-addr.arpa/IN: loaded serial 1 05-Dec-2012 12:23:35.750 zone 157.10.in-addr.arpa/IN: loaded serial 1 05-Dec-2012 12:23:35.751 zone 127.in-addr.arpa/IN: loaded serial 1 05-Dec-2012 12:23:35.752 zone 255.in-addr.arpa/IN: loaded serial 1 05-Dec-2012 12:23:35.753 zone extility.install/IN: loaded serial 1300877104 05-Dec-2012 12:23:35.754 zone localhost/IN: loaded serial 2 05-Dec-2012 12:23:35.754 managed-keys-zone ./IN: loading from master file managed-keys.bind failed: file not found 05-Dec-2012 12:23:35.754 managed-keys.bind.jnl: create: permission denied 05-Dec-2012 12:23:35.754 managed-keys-zone ./IN: sync_keyzone:dns_journal_open - unexpected error ** Affects: bind9 (Ubuntu) Importance: Undecided Status: New -- You
[Bug 1086775] Re: bind9 uses high CPU after lucid-precise upgrade
** Description changed: Summary: bind9 uses very high CPU after an upgrade from Lucid to Precise. I have traced this to a directory permissions problem as /var/cache/bind is not writeable by the bind group after an upgrade, but is writeable after a clean install. Ubuntu release: root@dev1-kvm-cluster:~# lsb_release -rd Description: Ubuntu 12.04.1 LTS Release: 12.04 Package version: root@dev1-kvm-cluster:~# apt-cache policy bind9 bind9: - Installed: 1:9.8.1.dfsg.P1-4ubuntu0.4 - Candidate: 1:9.8.1.dfsg.P1-4ubuntu0.4 - Version table: - *** 1:9.8.1.dfsg.P1-4ubuntu0.4 0 - 500 http://gb.archive.ubuntu.com/ubuntu/ precise-updates/main amd64 Packages - 500 http://security.ubuntu.com/ubuntu/ precise-security/main amd64 Packages - 100 /var/lib/dpkg/status - 1:9.8.1.dfsg.P1-4 0 - 500 http://gb.archive.ubuntu.com/ubuntu/ precise/main amd64 Packages + Installed: 1:9.8.1.dfsg.P1-4ubuntu0.4 + Candidate: 1:9.8.1.dfsg.P1-4ubuntu0.4 + Version table: + *** 1:9.8.1.dfsg.P1-4ubuntu0.4 0 + 500 http://gb.archive.ubuntu.com/ubuntu/ precise-updates/main amd64 Packages + 500 http://security.ubuntu.com/ubuntu/ precise-security/main amd64 Packages + 100 /var/lib/dpkg/status + 1:9.8.1.dfsg.P1-4 0 + 500 http://gb.archive.ubuntu.com/ubuntu/ precise/main amd64 Packages Expected behaviour: Upgrading Lucid-Precise when bind9 is installed does not use 100% CPU Observed behaviour: Upgrading Lucid-Precise when bind9 is installed - does not use 100% CPU + uses 100% CPU Root cause: On an upgraded machine: root@dev1-kvm-cluster:~# ls -la /var/cache/bind total 8 drwxr-xr-x 2 root bind 4096 Jun 5 2012 . drwxr-xr-x 14 root root 4096 Dec 5 10:18 .. On a clean install of Precise: amb@adamant:~$ ls -la /var/cache/bind total 16 drwxrwxr-x 2 root bind 4096 Dec 4 21:00 . drwxr-xr-x 8 root root 4096 Dec 3 20:54 .. -rw-r--r-- 1 bind bind 698 Dec 4 21:00 managed-keys.bind -rw-r--r-- 1 bind bind 512 Dec 4 21:00 managed-keys.bind.jnl Workaround: # chmod 775 /var/cache/bind # service bind9 restart Logs from the upgraded machine (see 'working directory not writeable' and 'permission denied') 05-Dec-2012 12:23:35.719 found 2 CPUs, using 2 worker threads 05-Dec-2012 12:23:35.720 using up to 4096 sockets 05-Dec-2012 12:23:35.726 loading configuration from '/etc/bind/named.conf' 05-Dec-2012 12:23:35.727 reading built-in trusted keys from file '/etc/bind/bind.keys' 05-Dec-2012 12:23:35.727 using default UDP/IPv4 port range: [1024, 65535] 05-Dec-2012 12:23:35.728 using default UDP/IPv6 port range: [1024, 65535] 05-Dec-2012 12:23:35.729 listening on IPv6 interfaces, port 53 05-Dec-2012 12:23:35.731 listening on IPv4 interface lo, 127.0.0.1#53 05-Dec-2012 12:23:35.732 listening on IPv4 interface eth0, 10.40.0.5#53 05-Dec-2012 12:23:35.734 listening on IPv4 interface eth1, 10.157.128.1#53 05-Dec-2012 12:23:35.735 listening on IPv4 interface eth1, 10.161.208.1#53 05-Dec-2012 12:23:35.736 listening on IPv4 interface eth0.60, 10.157.16.12#53 05-Dec-2012 12:23:35.738 generating session key for dynamic DNS 05-Dec-2012 12:23:35.738 sizing zone task pool based on 7 zones 05-Dec-2012 12:23:35.744 using built-in root key for view _default 05-Dec-2012 12:23:35.744 set up managed keys zone for view _default, file 'managed-keys.bind' 05-Dec-2012 12:23:35.744 Warning: 'empty-zones-enable/disable-empty-zone' not set: disabling RFC 1918 empty zones 05-Dec-2012 12:23:35.744 automatic empty zone: 254.169.IN-ADDR.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 2.0.192.IN-ADDR.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 100.51.198.IN-ADDR.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 113.0.203.IN-ADDR.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 255.255.255.255.IN-ADDR.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: D.F.IP6.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 8.E.F.IP6.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 9.E.F.IP6.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: A.E.F.IP6.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: B.E.F.IP6.ARPA 05-Dec-2012 12:23:35.744 automatic empty zone: 8.B.D.0.1.0.0.2.IP6.ARPA 05-Dec-2012 12:23:35.749 command channel listening on 127.0.0.1#953 05-Dec-2012 12:23:35.749 command channel listening on ::1#953 05-Dec-2012 12:23:35.749 the working directory is not writable 05-Dec-2012 12:23:35.749 ignoring config file logging statement due to -g option 05-Dec-2012 12:23:35.750 zone 0.in-addr.arpa/IN: loaded serial 1 05-Dec-2012 12:23:35.750 zone 157.10.in-addr.arpa/IN: loaded
