Tagged with linux

deluge-web behind an nginx reverse proxy

My nginx configuration to reverse proxy deluge-web needed a few subtle tweaks before it worked correctly, see below.

~/.config/deluge/web.conf

{
  "file": 1,  
  "format": 1
}{
  "port": 8112, 
  "https": false, 
  "base": "/", 
  ... 
}

/etc/nginx/sites-enabled/deluge.conf

...
  location /deluge/ {
    allow                         127.0.0.1;
    allow                         192.168.1.0/24;
    deny                          all;
    proxy_pass                    http://127.0.0.1:8112/;
    proxy_redirect                off;
    proxy_set_header              Host            $host;
    proxy_set_header              X-Real-IP       $remote_addr;
    proxy_set_header              X-Forwarded-For $proxy_add_x_forwarded_for;
    proxy_set_header              X-Deluge-Base   "/deluge/";
    proxy_pass_header             Set-Cookie;
    proxy_pass_header             P3P;
  }
...

The trailing slashes are very important for location, proxy_pass and X-Deluge-Base. Also notice that I left base in ~/.config/deluge/web.conf blank.

With this configuration you will be able to access the Deluge web interface via http://www.example.com/deluge (no trailing slash required). Keep in mind that it will also be accessible directly on port 8112, because you can't make it listen on locahost only yet. Unless you patch it in yourself. So don't forget to add a firewall rule.

Sources

Tagged , ,

Rhythmbox: file dialog window stays empty

Remove ~/.gconf/apps/rhythmbox.

Tagged

Python's `pip` behind a proxy

pip is proxy aware, sort of: https://github.com/pypa/pip/issues/1104. It can install packages from behind a proxy, but it cannot search!

To use pip from behind a proxy, you can set the environment variable ${http_proxy} and ${https_proxy}, or use the --proxy address:port switch after the install option.

Tagged ,

PHP-FPM ignores `upload_tmp_dir` setting

Running Apache 2.4 and PHP-FPM 5.4.16, I noticed that the option upload_tmp_dir was ignored when executing PHP code. phpinfo() shows the correct setting, but for instance sys_get_temp_dir() falls back to the OS' environment setting for the temporary directories as if it weren't set.

To fix this, I had to append a few more lines of config to my PHP-FPM's pool's configuration:

php_admin_value[open_basedir] = /tmp/php-fpm 
php_admin_value[upload_tmp_dir] = /tmp/php-fpm 
env[TMP] = /tmp/php-fpm 
env[TMPDIR] = /tmp/php-fpm 
env[TEMP] = /tmp/php-fpm

Sources

Tagged , ,

Installation and configuration of Red Hat Satellite 6: tips, workarounds, fixes and links

This post is a work in progress. I will keep track of the issues that I ran into while installing and configuring Red Hat Satellite 6 on Enterprise Linux 7.

Satellite as single instance

Are you running Satellite as a single instance to do "everything"? Then enable its DHCP, DNS and TFTP capsules (smart proxies)!

Repo issue on content host

In case of repo issues on a content host, run yum clean all and yum update first, before debugging further.

New content view created

When you create a Content View, be patient and let your repositories sync first.

Red Hat Common repository

Remember to add the Red Hat Common repository to the Content View of your VMs.

Satellite 6.0 specific

Satellite + VMware + "Unlimited Guest Subscription"

How to register RHEV / VMWare guest systems to Red Hat Satellite v6 to use 'Red Hat Unlimited Guest Subscription' subscriptions? by Mario Gamboa

Missing repos on client

Created a Content View but the client isn't showing all the repositories that you added? On the client:

  1. list all available subscriptions and look for the missing one: subscription-manager list --available --all
  2. add the missing subscription using its Pool ID: subscription-manager attach --pool=1234567890
  3. verify the subscription has been added: subscription-manager list --available --consumed
  4. see issue #2

If the repositories for your Content View aren't added/enabled automatically with subscription-manager register --org="Your_Organization" --activationkey="Your_Activation_Key" and subscription-manager attach --auto, in the Satellite 6 web interface go to Content → Activation Keys. Select your activation key and list the subscriptions. Make sure the subscriptions for your non-Red Hat repositories are added to the activation key.

RHEL 5 machines installed with Satellite 6 can't "consume" custom repositories

yum fails with [Errno -3] Error performing checksum: this is caused by the SHA-256 checksums used by Pulp for the repository. yum shipped with RHEL 5 doesn't support SHA256 yet. You can get SHA256 support by installing python-hashlib. Unfortunately, this package is not included in the Kickstart repository so you can't simply include it in the @packages list of your Kickstart file.

  1. Disable all your custom repositories
  2. Enable the Red Hat repositories
  3. Install python-hashlib
  4. Enable the custom repositories again
<%
  rhel_compatible = @host.operatingsystem.family == 'Redhat' && @host.operatingsystem.name != 'Fedora'
  os_major = @host.operatingsystem.major.to_i
  section_end = (rhel_compatible && os_major <= 5) ? '' : '%end'
%>

# Workaround for RHEL5 yum's SHA-256 incompatibility
# see https://bugzilla.redhat.com/show_bug.cgi?id=1009578 and
# https://bugzilla.redhat.com/show_bug.cgi?id=1127402
echo "Workaround for SHA256 incompatibility in RHEL5 yum"
subscription-manager repos --disable="*Default_Organization_*"
subscription-manager repos --enable="rhel-<%= @host.operatingsystem.major %>-*"
yum -y install python-hashlib
subscription-manager repos --enable="*Default_Organization_*"

Trying to publish new version of a Content View results in error Duplicate resource: Default_Organization-Example

This is a known bug and is supposed to be solved in Satellite 6.1, the fix won't be backported to 6.0. To fix the issue in Satellite 6.0, follow the steps from Mike McCune's post.

Failed to generate PXELinux template: private methodtemplate' called for nil:NilClass` when trying to cancel a build

This cryptic error is caused by a missing PXE template.

  1. In the Satellite 6 web interface go to Administer → Locations → Your Location → Templates and make sure that every template starting with "PXE" is added to your Location.
  2. Repeat the steps of #1 for Administer → Organization → Your Organization → Templates
  3. According to Foreman bug report #2215 "PXE Localboot Default" is enough, but it didn't fix my issue. When I enabled debugging in Foreman, I came by the query SELECT "config_templates".* FROM "config_templates" WHERE "config_templates"."id" IN (49, 46, 44, 14, 15, 1, 39, 47, 45, 41, 40, 35, 33, 34, 28, 36, 30, 37, 48) AND "config_templates"."name" = 'PXELinux default local boot' ORDER BY config_templates.name LIMIT 1. So the missing template that caused days of headache was actually called PXELinux default local boot

Can't start the celerybeat service

systemctl start pulp_celerybeat leads to:

celery: ERROR: Pidfile (celerybeat.pid) already exists.
celery: Seems we're already running? (pid: 1476)
celery: celery beat v3.1.11 (Cipater) is starting.
systemd: pulp_celerybeat.service: main process exited, code=exited, status=73/n/a
systemd: Unit pulp_celerybeat.service entered failed state.

.

The pid file is stored in /var/lib/pulp/celery/celerybeat.pid. Remove it and run systemctl start pulp_celerybeat.

Can't create a new host because the PTR record already exists

  1. Find the offending record in /var/named/dynamic/db.100.168.192.in-addr.arpa and
  2. delete the PTR record with nsupdate:

    echo "server 127.0.0.1 update delete 100.100.168.192.in-addr.arpa PTR host.example.com send " | nsupdate -k /etc/rndc.key

Can't execute any of the rpm subcommands with pulp-admin

Install the missing packages packages: yum install pulp-admin-client pulp-rpm-admin-extensions.noarch pulp-rpm-handlers.noarch as described in How to deploy and use pulp-admin.

Warning: The pulp-admin command can easily corrupt your database or put the pulp or katello databases out of sync. The use of pulp-admin outside the scope and direction of Red Hat Global Support Services is unsupported.

Remove all tasks in error state with foreman-rake console

ForemanTasks::Task.where(:result => :error).destroy_all. Change :result => :error to :state => :pending to remove pending tasks. See Red Hat KB solution #1381053.

Trying to change a host's Content View via https://satellite.example.com/hosts/hostname.example.com/edit fails with the message Katello::Resources::Candlepin::Consumer: 410 Gone {"displayMessage":"Unit xxx has been deleted","requestUuid":"yyy","deletedId":"xxx"} (GET /candlepin/consumers/xxx)

Remove the host from the Foreman Postgres database:

  1. su - postgres
  2. psql foreman
  3. foreman=# select id, name from katello_systems where name = 'host.example.com', note down the ID of the host
  4. foreman=# delete from katello_system_activation_keys where system_id = 123, 123 is the ID we got in the previous query
  5. foreman=# delete from katello_system_errata where system_id = 123;
  6. foreman=# delete from katello_systems where name = 'host.example.com'

Now you can update the Content View of the host.

Similar as above: to remove all hosts that use a Content View that's causing 410: Gone errors

  1. su - postgres
  2. psql foreman
  3. foreman=# select id, name from katello_content_views where name like '%content view%';, note down the ID of the host
  4. foreman=# delete from katello_system_activation_keys where (system_id) in (select id from katello_systems where content_view_id = 123);, 123 is the ID we got in the previous query
  5. foreman=# delete from katello_system_errata where (system_id) in (select id from katello_systems where content_view_id = 123);
  6. foreman=# delete from katello_system_repositories where (system_id) in (select id from katello_systems where content_view_id = 123);
  7. foreman=# delete from katello_systems where content_view = 123;

Search queries for Content Hosts view

content_view:"Your content view name" AND (environment:"your environment")

Satellite clients can't install packages because the URL in /etc/yum.repos.d/*.repo is incorrect

(Re-)run subscription-manager config --rhsm.baseurl=https://satellite.example.com/pulp/repos to correct the URL.

Tagged , , , , , , ,

Fixed NIC names (eth\*) on RHEL and CentOS

Tristan Terpelle Summary: How to go back to the classic naming of eth devices on EL7

EL7 uses systemd magic to give network devices consistent and predictable names based on firmware, topology, and location information. But what if you just want the NICs in your VMware virtual machine to be named eth0, eth1, ... based on their MAC address?

In bug 1046302 it says to use a different naming scheme than "eth". The CentOS 7 FAQ (and articles by Red Hat as well) tell you to use the boot options net.ifnames=0 biosdevname=0 to get the old naming scheme back.

When I did this, udev was unable to rename my devices to what I wanted, because the target name already existed, as mentioned in the bug report:

Jun 24 10:26:52 example systemd-udevd[388]: error changing net interface name eth0 to eth1: File exists

The fix was simple: use the new system together with udev rules.

  1. add net.ifnames=1 biosdevname=1 to GRUB_CMDLINE_LINUX in /etc/default/grub
  2. rebuild the GRUB configuration with grub2-mkconfig -o /boot/grub2/grub.cfg
  3. create /etc/udev/rules.d/70-persistent-net.rules and add some lines like
SUBSYSTEM=="net", ACTION=="add", DRIVERS=="?*", ATTR{address}=="00:11:22:33:44:55", ATTR{type}=="1", KERNEL=="eth*", NAME="eth0"
SUBSYSTEM=="net", ACTION=="add", DRIVERS=="?*", ATTR{address}=="22:33:44:55:66:77", ATTR{type}=="1", KERNEL=="eth*", NAME="eth1"
  1. reboot

In your boot logs you will see:

...
Jun 24 11:40:57 example systemd-udevd[271]: renamed network interface eth0 to ens256
...
Jun 24 11:40:59 example systemd-udevd[580]: renamed network interface ens256 to eth1

This has only been tested with VMware virtual machines, I don't know (yet) how it works on bare metal machines.

Tagged , , , , , , ,

EmulationStation: "Error initializing SDL!" on Raspberry Pi 2

I installed Arch Linux ARM on my rPi2, overwriting Raspbian. AUR has all the packages I need to build a game station myself. I built EmulationStation (git) with makepkg, but it wouldn't start:

[tristan@rpi2 ~]$ emulationstation 
lvl0:   Error initializing SDL!
        No available video device
lvl0:   Renderer failed to initialize!
lvl0:   Window failed to initialize!

Erwan35 found out the solution is to recompile SDL2 with OpenGL ES and Raspberry Pi 2 support. The [PKGBUILD](https://aur.archlinux.org/packages/sd/sdl2-opengles/PKGBUILD) for SDL2 with OpenGL ES support doesn't explicitly set the --host flag, and then the Raspberry Pi 2 is not detected properly.

Wrong ./configure output:

...
checking build system type... armv7l-unknown-linux-gnueabihf
checking host system type... armv7l-unknown-linux-gnueabihf
...

Make sure you run ./configure for SDL2 with the following options (update the PKGBUILD accordingly):

/configure --prefix=/usr \
    --enable-sdl-dlopen \
    --disable-arts --disable-esd --disable-nas \
    --enable-alsa \
    --disable-pulseaudio \
    --disable-video-wayland \
    --without-x --disable-video-x11 --disable-x11-shared \
    --disable-video-x11-xcursor --disable-video-x11-xinerama \
    --disable-video-x11-xinput --disable-video-x11-xrandr \
    --disable-video-x11-scrnsaver --disable-video-x11-xshape \
    --disable-video-x11-vm --disable-video-opengl \
    --disable-video-directfb --disable-rpath \
    --enable-video-opengles --host=arm-raspberry-linux-gnueabihf

Correct ./configure output:

...
checking build system type... armv7l-unknown-linux-gnueabihf
checking host system type... arm-raspberry-linux-gnueabihf
...

Install the newly built SDL2 and EmulationStation will launch fine:

[tristan@rpi2 sdl2-opengles]$ emulationstation
lvl0:   es_systems.cfg file does not exist!
lvl0:   Example config written!  Go read it at "/home/tristan/.emulationstation/es_systems.cfg"!
Tagged , ,