<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
Le 12/02/2013 09:43, Le Haies Cyrille a écrit :
<blockquote
cite="mid:29C8D3D8A0B2E2429F63416026DAF95BED30CBE7@daru1"
type="cite">
<meta http-equiv="Content-Type" content="text/html;
charset=ISO-8859-1">
<meta name="Generator" content="Microsoft Word 14 (filtered
medium)">
<!--
[if !mso]><style>v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]-->
<style><!--
/* Font Definitions */
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Tahoma;
panose-1:2 11 6 4 3 5 4 4 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0cm;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri","sans-serif";
color:black;
mso-fareast-language:EN-US;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal;
font-family:"Calibri","sans-serif";
color:windowtext;}
p.sig, li.sig, div.sig
{mso-style-name:sig;
mso-margin-top-alt:auto;
margin-right:0cm;
mso-margin-bottom-alt:auto;
margin-left:0cm;
font-size:12.0pt;
font-family:"Arial","sans-serif";
color:black;}
p.sigsmall, li.sigsmall, div.sigsmall
{mso-style-name:sigsmall;
mso-margin-top-alt:auto;
margin-right:0cm;
mso-margin-bottom-alt:auto;
margin-left:0cm;
font-size:10.0pt;
font-family:"Arial","sans-serif";
color:black;}
span.sig1
{mso-style-name:sig1;
font-family:"Arial","sans-serif";}
span.sigsmall1
{mso-style-name:sigsmall1;
font-family:"Arial","sans-serif";}
span.EmailStyle22
{mso-style-type:personal-reply;
font-family:"Calibri","sans-serif";
color:#1F497D;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:612.0pt 792.0pt;
margin:70.85pt 70.85pt 70.85pt 70.85pt;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1027" />
</xml><![endif][if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
<div class="WordSection1">
<p class="MsoNormal"><span style="color:#1F497D">Tanks for your
help,<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D">I modified my
directives to override this « bug »<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D">Cyrille<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D"><o:p> </o:p></span></p>
<div>
<div style="border:none;border-top:solid #B5C4DF
1.0pt;padding:3.0pt 0cm 0cm 0cm">
<p class="MsoNormal"><b><span
style="font-size:10.0pt;font-family:"Tahoma","sans-serif";color:windowtext;mso-fareast-language:FR">De :</span></b><span
style="font-size:10.0pt;font-family:"Tahoma","sans-serif";color:windowtext;mso-fareast-language:FR">
Matthieu CERDA [<a class="moz-txt-link-freetext" href="mailto:matthieu.cerda@normation.com">mailto:matthieu.cerda@normation.com</a>] <br>
<b>Envoyé :</b> lundi 11 février 2013 18:34<br>
<b>À :</b> Le Haies Cyrille<br>
<b>Cc :</b> <a class="moz-txt-link-abbreviated" href="mailto:rudder-users@lists.rudder-project.org">rudder-users@lists.rudder-project.org</a><br>
<b>Objet :</b> Re: [rudder-users] permlist in readfile
to max limit 4000<o:p></o:p></span></p>
</div>
</div>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Le 11/02/2013 17:59, Le Haies Cyrille a
écrit : <o:p></o:p></p>
<p class="MsoNormal">Hello,<o:p></o:p></p>
<p class="MsoNormal">In my log i have this message :<o:p></o:p></p>
<p class="MsoNormal">Truncating long file
/var/rudder/cfengine-community/inputs/filesPermissions/permlist
in readfile to max limit 4000<o:p></o:p></p>
<p class="MsoNormal">!! Duplicate selection of value for
variable "execRun" in scope g<o:p></o:p></p>
<p class="MsoNormal">!! Rule from
/var/rudder/cfengine-community/inputs/common/1.0/site.cf
at/before line 58<o:p></o:p></p>
<p class="MsoNormal">Truncating long file
/var/rudder/cfengine-community/inputs/filesPermissions/permlist
in readfile to max limit 4000<o:p></o:p></p>
<p class="MsoNormal">Truncating long file
/var/rudder/cfengine-community/inputs/filesPermissions/permlist
in readfile to max limit 4000<o:p></o:p></p>
<p class="MsoNormal">Truncating long file
/var/rudder/cfengine-community/inputs/filesPermissions/permlist
in readfile to max limit 4000<o:p></o:p></p>
<p class="MsoNormal">!! Duplicate selection of value for
variable "execRun" in scope g<o:p></o:p></p>
<p class="MsoNormal">!! Rule from
/var/rudder/cfengine-community/inputs/common/1.0/site.cf
at/before line 58<o:p></o:p></p>
<p class="MsoNormal">Truncating long file
/var/rudder/cfengine-community/inputs/filesPermissions/permlist
in readfile to max limit 4000<o:p></o:p></p>
<p class="MsoNormal">Truncating long file
/var/rudder/cfengine-community/inputs/filesPermissions/permlist
in readfile to max limit 4000<o:p></o:p></p>
<p class="MsoNormal">!! Duplicate selection of value for
variable "execRun" in scope g<o:p></o:p></p>
<p class="MsoNormal">!! Rule from
/var/rudder/cfengine-community/inputs/common/1.0/site.cf
at/before line 58<o:p></o:p></p>
<p class="MsoNormal">Truncating long file
/var/rudder/cfengine-community/inputs/filesPermissions/permlist
in readfile to max limit 4000<o:p></o:p></p>
<p class="MsoNormal">Truncating long file
/var/rudder/cfengine-community/inputs/filesPermissions/permlist
in readfile to max limit 4000<o:p></o:p></p>
<p class="MsoNormal">!! Duplicate selection of value for
variable "execRun" in scope g<o:p></o:p></p>
<p class="MsoNormal">!! Rule from
/var/rudder/cfengine-community/inputs/common/1.0/site.cf
at/before line 58<o:p></o:p></p>
<p class="MsoNormal">Truncating long file
/var/rudder/cfengine-community/inputs/filesPermissions/permlist
in readfile to max limit 4000<o:p></o:p></p>
<p class="MsoNormal">Truncating long file
/var/rudder/cfengine-community/inputs/filesPermissions/permlist
in readfile to max limit 4000<o:p></o:p></p>
<p class="MsoNormal">Truncating long file
/var/rudder/cfengine-community/inputs/filesPermissions/permlist
in readfile to max limit 4000<o:p></o:p></p>
<p class="MsoNormal">!! Duplicate selection of value for
variable "execRun" in scope g<o:p></o:p></p>
<p class="MsoNormal">Fatal cfengine error: Too many errors<o:p></o:p></p>
<p class="MsoNormal"> <o:p></o:p></p>
<p class="MsoNormal">Why ???<o:p></o:p></p>
<p class="MsoNormal">Too many variable ?<o:p></o:p></p>
<p class="MsoNormal"> <o:p></o:p></p>
<p class="MsoNormal">My permlist file :<o:p></o:p></p>
<p class="MsoNormal"> <o:p></o:p></p>
<p class="MsoNormal">b9872eff-e4f8-44cc-a91b-f6f9918fad7a@@6dc24839-163a-41dd-a821-8922dffb528e@@120:/$(generic_variable_definition.env)_$(generic_variable_definition.projet)/data/sites.d:$(generic_variable_definition.expuser)_$(generic_variable_definition.projet):$(generic_variable_definition.expuser)_$(generic_variable_definition.projet):660:true:true:true:false<o:p></o:p></p>
<p class="MsoNormal">b9872eff-e4f8-44cc-a91b-f6f9918fad7a@@6dc24839-163a-41dd-a821-8922dffb528e@@120:/$(generic_variable_definition.env)_$(generic_variable_definition.projet)/soft/apache2:$(generic_variable_definition.expuser)_$(generic_variable_definition.projet):$(generic_variable_definition.expuser)_$(generic_variable_definition.projet):750:true:true:true:true<o:p></o:p></p>
<p class="MsoNormal">0044b0a8-a32a-4b30-be92-3d7e6c1b640e@@18fe8a74-f3d2-4898-86bf-b65d5bebe522@@66:/$(generic_variable_definition.env)_$(generic_variable_definition.projet)/soft/php:php-fpm:$(generic_variable_definition.expuser)_$(generic_variable_definition.projet):750:true:true:true:true<o:p></o:p></p>
<p class="MsoNormal">dabe309b-49aa-4360-93c4-aff9c414b21d@@f5cdc4aa-be71-4cd7-b944-34b576ad4647@@30:/$(generic_variable_definition.env)_$(generic_variable_definition.projet)/soft/libmemcached:$(generic_variable_definition.expuser)_$(generic_variable_definition.projet):$(generic_variable_definition.expuser)_$(generic_variable_definition.projet):750:true:true:true:true<o:p></o:p></p>
<p class="MsoNormal">b893538c-8886-45ed-ae83-6e21be7c5269@@c2b74cf7-6c05-48a4-907b-aeb4185b18db@@88:/$(generic_variable_definition.env)_$(generic_variable_definition.projet)/soft/mariadb:my_$(generic_variable_definition.projet):$(generic_variable_definition.expuser)_$(generic_variable_definition.projet):770:true:true:true:true<o:p></o:p></p>
<p class="MsoNormal">d9a88dbf-3bb3-43f1-a1cb-b4e954a9c843@@fbc02be5-b72f-4499-a351-c1b8ffe0b562@@34:/$(generic_variable_definition.env)_$(generic_variable_definition.projet)/soft/drush:$(generic_variable_definition.expuser)_$(generic_variable_definition.projet):$(generic_variable_definition.expuser)_$(generic_variable_definition.projet):750:true:true:true:true<o:p></o:p></p>
<p class="MsoNormal">8a89fe81-e343-44df-b747-fac306683cbd@@d8f72a76-1c2a-424f-8010-39001b4ee236@@55:/$(generic_variable_definition.env)_$(generic_variable_definition.projet)/soft/memcached:memcached:$(generic_variable_definition.expuser)_$(generic_variable_definition.projet):750:true:true:true:false<o:p></o:p></p>
<p class="MsoNormal">43d513fc-c528-4e08-91d4-9f9718d20482@@95a15d7b-c548-491c-9f60-37e693f463d2@@67:/$(generic_variable_definition.env)_$(generic_variable_definition.projet)/:$(generic_variable_definition.expuser)_$(generic_variable_definition.projet):$(generic_variable_definition.expuser)_$(generic_variable_definition.projet):755:true:true:true:false<o:p></o:p></p>
<p class="MsoNormal">43d513fc-c528-4e08-91d4-9f9718d20482@@95a15d7b-c548-491c-9f60-37e693f463d2@@67:/$(generic_variable_definition.env)_$(generic_variable_definition.projet)/soft:$(generic_variable_definition.expuser)_$(generic_variable_definition.projet):$(generic_variable_definition.expuser)_$(generic_variable_definition.projet):755:true:true:true:false<o:p></o:p></p>
<p class="MsoNormal">43d513fc-c528-4e08-91d4-9f9718d20482@@95a15d7b-c548-491c-9f60-37e693f463d2@@67:/$(generic_variable_definition.env)_$(generic_variable_definition.projet)/data:$(generic_variable_definition.expuser)_$(generic_variable_definition.projet):$(generic_variable_definition.expuser)_$(generic_variable_definition.projet):755:true:true:true:false<o:p></o:p></p>
<p class="MsoNormal"> <o:p></o:p></p>
<p class="MsoNormal"> <o:p></o:p></p>
<p class="MsoNormal">Can you help me ??<o:p></o:p></p>
<p class="MsoNormal" style="margin-bottom: 12pt;"><span
style="font-size: 12pt; font-family: "Times New
Roman","serif";"><br>
Well, it seems we were a bit too restrictive in the
filePermissions Technique while loading the permlist file,
we allowed only a 4000 bytes as seen in this snippet
(extracted from the Technique):<br>
<br>
"dim_array" int =>
readstringarrayidx("file","${sys.workdir}/inputs/filesPermissions/permlist","#[^\n]*",":",15,4000);<br>
<br>
We should certainly bump it to a more reasonable value, like
8192 or 16384.<br>
<br>
Would you please open a bug about this ? We're on it.</span></p>
</div>
</blockquote>
<br>
Hello again,<br>
<br>
The bug you reported is now corrected in the 2.3, 2.4 and 2.5
versions of Rudder, in the version 1.0 and 1.1 of the
filePermissions Technique (Actually, it means it is corrected
everywhere in the code repositories).<br>
<br>
A new bake of nighlies for the rudder-techniques package has been
launched to address this bug, which have been completed just now.<br>
<br>
You can get them now to correct this issue, using the following
URLs, depending on your operating system version:<br>
<ul>
<li>For Debian based OSes, use this one:
<a class="moz-txt-link-freetext" href="http://www.rudder-project.org/apt-nightly/pool/main/r/rudder-techniques/">http://www.rudder-project.org/apt-nightly/pool/main/r/rudder-techniques/</a></li>
<ul>
<li>The OS flavor compatible with one package is specified as a
codename in the package file name. You can find yours in
either /etc/apt/sources.list or using the "lsb_release -a"
command.</li>
</ul>
<li>For RPM based OSes, use this one:
<a class="moz-txt-link-freetext" href="http://www.rudder-project.org/rpm-nightly/">http://www.rudder-project.org/rpm-nightly/</a><OS
VERSION>/noarch/<br>
</li>
<ul>
<li>The OS flavor compatible with one package is specified by
the directory it is in: the names should be self explanatory
(RHEL_6 for example)</li>
</ul>
</ul>
<p><br>
The package you will want to update is rudder-techniques, just
download the appropriate version for your OS, and install it using
dpkg or rpm:<br>
</p>
<ul>
<li>dpkg -i <package>.deb for Debian/Ubuntu</li>
<li>rpm -Uhv <package>.rpm for RPM based OSes</li>
</ul>
<p>So. after the package has been installed, you will want to update
you technique tree, as only the system techniques are updated
automatically to prevent user editions from beeing overwritten.<br>
</p>
<p>The Technique you want to upgrade is filePermissions, in case you
want to completely replace your existing instances, just do this:<br>
</p>
<pre>cd /var/rudder/configuration-repository/techniques/techniques/fileConfiguration/fileSecurity/filesPermissions
rsync -av /opt/rudder/share/techniques/fileConfiguration/fileSecurity/filesPermissions/ ./
git add .
git commit -m "Manual update of the filePermissions Technique to correct a permlist file loading error"
</pre>
You then have to go in the Rudder web application and click "Reload"
in the "Administration -> Policy Server" part.<br>
<br>
And... Rudder will automatically regenerate the promises and this
bug should not bother you again !<br>
<br>
Please, tell us if you have any trouble while updating !<br>
<br>
Have a nice day,<br>
<br>
<div class="moz-signature">-- <br>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
<style type="text/css">
<!--
a.redlink:link { color: #962322; }
a.redlink:visited { color: #962322; }
.sig { font-family: sans-serif; font-size: small; }
.sigsmall { font-family: sans-serif; font-size: x-small; }
-->
</style>
<table border="0" cellpadding="0" cellspacing="2" width="380">
<tbody>
<tr>
<td colspan="2">
<hr></td>
</tr>
<tr>
<td colspan="2"><b><img alt=""
src="cid:part1.02020602.09020609@normation.com"
align="left" height="50" hspace="10" width="50">
<span class="sig">Matthieu CERDA</span></b><br>
<span class="sig"><i>Administrateur - Systèmes et Réseaux</i></span><br>
<span class="sig"><a class="redlink"
href="http://www.normation.com">Normation</a></span> </td>
</tr>
<tr>
<td colspan="2">
<hr></td>
</tr>
<tr>
<td colspan="2"><span class="sigsmall"><b>87 rue de Turbigo,
75003 Paris, France</b></span></td>
</tr>
<tr>
<td><span class="sigsmall">Telephone:</span></td>
<td><span class="sigsmall">+33 (0)1 84 16 06 01</span></td>
</tr>
<!--<tr>
<td><span class="sigsmall">Mobile:</span></td>
<td><span class="sigsmall">+33 (0)6 XX XX XX XX</span></td>
</tr>--> <tr>
<td colspan="2">
<hr></td>
</tr>
</tbody>
</table>
</div>
</body>
</html>