XCP-ng

    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Groups
    1. Home
    2. apz
    3. Posts
    • Profile
    • Following 0
    • Followers 0
    • Topics 1
    • Posts 15
    • Best 2
    • Controversial 0
    • Groups 0

    Posts made by apz

    • RE: XCP-ng 8.3 public alpha 🚀

      Is this release technically the point where XCP-ng starts to veer off more from the XS source as to my understanding they're already keeping some parts out of public repos nowdays?

      It'd be interesting to see newer Xen for example in the future and the SMAPIv3!

      posted in News
      apz
      apz
    • RE: XCP-ng 8.2.1 (maintenance update) - final testing sprint

      @stormi The other (working) machine is indeed installed with test5.

      Should I care about the fact that the testing repo no longer exists, so the two first commands fail?

      posted in News
      apz
      apz
    • RE: XCP-ng 8.2.1 (maintenance update) - final testing sprint

      @stormi I diffed this host (originally installed as 8.2.0) and one I installed very recently (during 8.2.1 testing phase). Their differences are:

      137d136
      < igc-module-4.20.17-1.xcpng8.2.x86_64
      274a274
      > MegaCli-8.07.14-1.noarch
      394d393
      < r8125-module-9.003.05-1.xcpng8.2.x86_64
      

      The 8.2.1 installation appears to have network card modules in packages, the old installation has MegaCLI installed because of its RAID controller.

      xensource.log is attached, user.log didn't yield anything, neither did daemon.log

      As I was running this command again and again, it succeeded once. Out of curiosity, I tried running it again and again on my other hosts that had succeeded the last time. I could introduce a random failure on all of them, maybe 1 out of 20 or more rare.

      xensource.txt

      posted in News
      apz
      apz
    • RE: XCP-ng 8.2.1 (maintenance update) - final testing sprint

      @stormi I have not touched xapi.conf, iptables has one additional rule to default, which allows port 4949 in. It's copy-paste of other rules in /etc/sysconfig/iptables, save changed port.

      posted in News
      apz
      apz
    • RE: XCP-ng 8.2.1 (maintenance update) - final testing sprint

      @stormi

      # yum reinstall guest-templates-json guest-templates-json-data-linux guest-templates-json-data-other guest-templates-json-data-windows
      
      Loaded plugins: fastestmirror
      Loading mirror speeds from cached hostfile
      Excluding mirror: updates.xcp-ng.org
       * xcp-ng-base: mirrors.xcp-ng.org
      Excluding mirror: updates.xcp-ng.org
       * xcp-ng-updates: mirrors.xcp-ng.org
      Resolving Dependencies
      --> Running transaction check
      ---> Package guest-templates-json.noarch 0:1.9.6-1.1.xcpng8.2 will be reinstalled
      ---> Package guest-templates-json-data-linux.noarch 0:1.9.6-1.1.xcpng8.2 will be reinstalled
      ---> Package guest-templates-json-data-other.noarch 0:1.9.6-1.1.xcpng8.2 will be reinstalled
      ---> Package guest-templates-json-data-windows.noarch 0:1.9.6-1.1.xcpng8.2 will be reinstalled
      --> Finished Dependency Resolution
      
      Dependencies Resolved
      
      ==============================================================================================================================================================================================
       Package                                                      Arch                              Version                                       Repository                                 Size
      ==============================================================================================================================================================================================
      Reinstalling:
       guest-templates-json                                         noarch                            1.9.6-1.1.xcpng8.2                            xcp-ng-updates                             29 k
       guest-templates-json-data-linux                              noarch                            1.9.6-1.1.xcpng8.2                            xcp-ng-updates                             17 k
       guest-templates-json-data-other                              noarch                            1.9.6-1.1.xcpng8.2                            xcp-ng-updates                             12 k
       guest-templates-json-data-windows                            noarch                            1.9.6-1.1.xcpng8.2                            xcp-ng-updates                             14 k
      
      Transaction Summary
      ==============================================================================================================================================================================================
      Reinstall  4 Packages
      
      Total download size: 73 k
      Installed size: 61 k
      Is this ok [y/d/N]: y
      Downloading packages:
      (1/4): guest-templates-json-1.9.6-1.1.xcpng8.2.noarch.rpm                                                                                                              |  29 kB  00:00:00     
      (2/4): guest-templates-json-data-other-1.9.6-1.1.xcpng8.2.noarch.rpm                                                                                                   |  12 kB  00:00:00     
      (3/4): guest-templates-json-data-linux-1.9.6-1.1.xcpng8.2.noarch.rpm                                                                                                   |  17 kB  00:00:00     
      (4/4): guest-templates-json-data-windows-1.9.6-1.1.xcpng8.2.noarch.rpm                                                                                                 |  14 kB  00:00:00     
      ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
      Total                                                                                                                                                         110 kB/s |  73 kB  00:00:00     
      Running transaction check
      Running transaction test
      Transaction test succeeded
      Running transaction
        Installing : guest-templates-json-1.9.6-1.1.xcpng8.2.noarch                                                                                                                             1/4 
        Installing : guest-templates-json-data-other-1.9.6-1.1.xcpng8.2.noarch                                                                                                                  2/4 
        Installing : guest-templates-json-data-windows-1.9.6-1.1.xcpng8.2.noarch                                                                                                                3/4 
        Installing : guest-templates-json-data-linux-1.9.6-1.1.xcpng8.2.noarch                                                                                                                  4/4 
      Traceback (most recent call last):
        File "/bin/create-guest-templates", line 17, in <module>
          loader.insert_templates()
        File "/usr/lib/python2.7/site-packages/guesttemplates/loader.py", line 189, in insert_templates
          self._insert_template(i)
        File "/usr/lib/python2.7/site-packages/guesttemplates/loader.py", line 159, in _insert_template
          conn.request("PUT", "/import_metadata?" + params, tar)
        File "/usr/lib64/python2.7/httplib.py", line 1041, in request
          self._send_request(method, url, body, headers)
        File "/usr/lib64/python2.7/httplib.py", line 1075, in _send_request
          self.endheaders(body)
        File "/usr/lib64/python2.7/httplib.py", line 1037, in endheaders
          self._send_output(message_body)
        File "/usr/lib64/python2.7/httplib.py", line 885, in _send_output
          self.send(message_body)
        File "/usr/lib64/python2.7/httplib.py", line 857, in send
          self.sock.sendall(data)
        File "/usr/lib64/python2.7/socket.py", line 224, in meth
          return getattr(self._sock,name)(*args)
      socket.error: [Errno 32] Broken pipe
        Verifying  : guest-templates-json-data-other-1.9.6-1.1.xcpng8.2.noarch                                                                                                                  1/4 
        Verifying  : guest-templates-json-data-windows-1.9.6-1.1.xcpng8.2.noarch                                                                                                                2/4 
        Verifying  : guest-templates-json-data-linux-1.9.6-1.1.xcpng8.2.noarch                                                                                                                  3/4 
        Verifying  : guest-templates-json-1.9.6-1.1.xcpng8.2.noarch                                                                                                                             4/4 
      
      Installed:
        guest-templates-json.noarch 0:1.9.6-1.1.xcpng8.2                guest-templates-json-data-linux.noarch 0:1.9.6-1.1.xcpng8.2   guest-templates-json-data-other.noarch 0:1.9.6-1.1.xcpng8.2  
        guest-templates-json-data-windows.noarch 0:1.9.6-1.1.xcpng8.2  
      
      Complete!
      
      
      posted in News
      apz
      apz
    • RE: XCP-ng 8.2.1 (maintenance update) - final testing sprint

      @stormi This command did not produce any output, so I assume the packages are fine.

      posted in News
      apz
      apz
    • RE: XCP-ng 8.2.1 (maintenance update) - final testing sprint

      @stormi I ran it 5 times in a row. Always after base-windows-8.json.

      posted in News
      apz
      apz
    • RE: XCP-ng 8.2.1 (maintenance update) - final testing sprint

      @stormi Result:

      # /usr/bin/create-guest-templates-wrapper
      Load /usr/share/xapi/vm-templates/windows-server-2012-64bit.json
      Load /usr/share/xapi/vm-templates/sled-12-sp4-64bit.json
      Load /usr/share/xapi/vm-templates/rhel-8.json
      Load /usr/share/xapi/vm-templates/rhel-7.json
      Load /usr/share/xapi/vm-templates/oel-8.json
      Load /usr/share/xapi/vm-templates/sle-15-64bit.json
      Load /usr/share/xapi/vm-templates/debian-9.json
      Load /usr/share/xapi/vm-templates/windows-8-64bit.json
      Load /usr/share/xapi/vm-templates/sles-12-sp5-64bit.json
      Load /usr/share/xapi/vm-templates/base-sle-hvm.json
      Load /usr/share/xapi/vm-templates/windows-10-64bit.json
      Load /usr/share/xapi/vm-templates/oel-7.json
      Load /usr/share/xapi/vm-templates/coreos.json
      Load /usr/share/xapi/vm-templates/debian-11.json
      Load /usr/share/xapi/vm-templates/windows-server-2012-r2-64bit.json
      Load /usr/share/xapi/vm-templates/sles-12-sp3-64bit.json
      Load /usr/share/xapi/vm-templates/windows-server-2016-64bit.json
      Load /usr/share/xapi/vm-templates/gooroom-2.json
      Load /usr/share/xapi/vm-templates/debian-10.json
      Load /usr/share/xapi/vm-templates/windows-server-2022-64bit.json
      Load /usr/share/xapi/vm-templates/other-install-media.json
      Load /usr/share/xapi/vm-templates/base-sle-hvm-64bit.json
      Load /usr/share/xapi/vm-templates/base-kylin-7.json
      Load /usr/share/xapi/vm-templates/kylin-7.json
      Load /usr/share/xapi/vm-templates/debian-8.json
      Load /usr/share/xapi/vm-templates/sled-12-sp3-64bit.json
      Load /usr/share/xapi/vm-templates/windows-server-2019-64bit.json
      Load /usr/share/xapi/vm-templates/centos-7.json
      Load /usr/share/xapi/vm-templates/base-windows-uefi.json
      Load /usr/share/xapi/vm-templates/sles-12-sp4-64bit.json
      Load /usr/share/xapi/vm-templates/sl-7.json
      Load /usr/share/xapi/vm-templates/ubuntu-20.04.json
      Load /usr/share/xapi/vm-templates/windows-10-32bit.json
      Load /usr/share/xapi/vm-templates/ubuntu-16.04.json
      Load /usr/share/xapi/vm-templates/rocky-8.json
      Load /usr/share/xapi/vm-templates/windows-8-32bit.json
      Load /usr/share/xapi/vm-templates/base-hvmlinux.json
      Load /usr/share/xapi/vm-templates/almalinux-8.json
      Load /usr/share/xapi/vm-templates/base-el-7.json
      Load /usr/share/xapi/vm-templates/centos-8.json
      Load /usr/share/xapi/vm-templates/base-windows.json
      Load /usr/share/xapi/vm-templates/ubuntu-18.04.json
      Load /usr/share/xapi/vm-templates/base-windows-8.json
      Destroy 1c33af1c-e919-418c-ad45-85d7d6fb604a
      Insert 1c33af1c-e919-418c-ad45-85d7d6fb604a
      Traceback (most recent call last):
        File "/usr/bin/create-guest-templates", line 17, in <module>
          loader.insert_templates()
        File "/usr/lib/python2.7/site-packages/guesttemplates/loader.py", line 189, in insert_templates
          self._insert_template(i)
        File "/usr/lib/python2.7/site-packages/guesttemplates/loader.py", line 159, in _insert_template
          conn.request("PUT", "/import_metadata?" + params, tar)
        File "/usr/lib64/python2.7/httplib.py", line 1041, in request
          self._send_request(method, url, body, headers)
        File "/usr/lib64/python2.7/httplib.py", line 1075, in _send_request
          self.endheaders(body)
        File "/usr/lib64/python2.7/httplib.py", line 1037, in endheaders
          self._send_output(message_body)
        File "/usr/lib64/python2.7/httplib.py", line 885, in _send_output
          self.send(message_body)
        File "/usr/lib64/python2.7/httplib.py", line 857, in send
          self.sock.sendall(data)
        File "/usr/lib64/python2.7/socket.py", line 224, in meth
          return getattr(self._sock,name)(*args)
      socket.error: [Errno 32] Broken pipe
      
      
      posted in News
      apz
      apz
    • RE: XCP-ng 8.2.1 (maintenance update) - final testing sprint

      @stormi The affected host has only 2 templates, 2022 Windows and Suse 12.

      posted in News
      apz
      apz
    • RE: XCP-ng 8.2.1 (maintenance update) - final testing sprint

      I upgraded 3 of my homelab hosts, all were up-to-date 8.2's before this update. One of them blurted out this right at the end of the upgrade, but I did not observe any negative consequences yet.

        Cleanup    : wsproxy-1.12.0-2.xcpng8.2.x86_64                                                                                                                                       162/162 
      Traceback (most recent call last):
        File "/bin/create-guest-templates", line 17, in <module>
          loader.insert_templates()
        File "/usr/lib/python2.7/site-packages/guesttemplates/loader.py", line 189, in insert_templates
          self._insert_template(i)
        File "/usr/lib/python2.7/site-packages/guesttemplates/loader.py", line 159, in _insert_template
          conn.request("PUT", "/import_metadata?" + params, tar)
        File "/usr/lib64/python2.7/httplib.py", line 1041, in request
          self._send_request(method, url, body, headers)
        File "/usr/lib64/python2.7/httplib.py", line 1075, in _send_request
          self.endheaders(body)
        File "/usr/lib64/python2.7/httplib.py", line 1037, in endheaders
          self._send_output(message_body)
        File "/usr/lib64/python2.7/httplib.py", line 885, in _send_output
          self.send(message_body)
        File "/usr/lib64/python2.7/httplib.py", line 857, in send
          self.sock.sendall(data)
        File "/usr/lib64/python2.7/socket.py", line 224, in meth
          return getattr(self._sock,name)(*args)
      socket.error: [Errno 32] Broken pipe
      
      posted in News
      apz
      apz
    • RE: XCP-ng 8.2.1 (maintenance update) - ready for testing

      @stormi I installed a fresh host from 8.2.1 Test 5 full CD image in my homelab. This host has software RAID1 which was problematic with the last installer, now it went without issues.

      Now that I've installed a newer version than what's in the repos, will this work correctly in the future regarding to updates?

      posted in News
      apz
      apz
    • secureboot-certs install fails

      This is a fresh 8.2 system with the secure boot features added per XCP-ng documentation. The secureboot-certs install however fails:

      # secureboot-certs install
      
      No arguments provided to command install, default arguments will be used:
      - PK: default
      - KEK: default
      - db: default
      - dbx: latest
      
      Downloading https://www.microsoft.com/pkiops/certs/MicCorKEKCA2011_2011-06-24.crt...
      Downloading https://www.microsoft.com/pkiops/certs/MicCorUEFCA2011_2011-06-27.crt...
      Downloading https://www.microsoft.com/pkiops/certs/MicWinProPCA2011_2011-10-19.crt...
      Downloading https://uefi.org/sites/default/files/resources/dbxupdate_x64.bin...
      error: unable to retrieve certificate from URL: https://uefi.org/sites/default/files/resources/dbxupdate_x64.bin. Error message: <urlopen error [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:579)>.
      
      If the failure can't be fixed at the network configuration level, consider downloading the certificates manually and then loading one or more of them with secureboot-certs install <PK-filename>|default <KEK-filename>|default <db-filename>|default <dbx-filename>|latest. Check secureboot-certs install -h for usage details as well as a list of the download links used by secureboot-certs install.
      
      

      The system's clock is correct and the uefi.org certificate seems fine to me:

      * Server certificate:
      *       subject: CN=uefi.org
      *       start date: Oct 19 13:50:03 2021 GMT
      *       expire date: Jan 17 13:50:02 2022 GMT
      *       common name: uefi.org
      *       issuer: CN=R3,O=Let's Encrypt,C=US
      
      

      wget on the same system says the certificate is expired. A desktop's browser was fine with it and allowed me to download the file. Is there something I missed here? I did the same kind of installation couple of months back and had no issues with that.

      posted in Development
      apz
      apz
    • RE: Guest UEFI Secure Boot on XCP-ng

      @stormi said in Guest UEFI Secure Boot on XCP-ng:

      Feedback is welcome on the docs too: is it clear how to enable SB for VMs on XCP-ng?

      Some test feedback:

      Documentation was clear enough to get it right on the first try.

      Tested on a WS 2019 virtual that has the KB4535680 issue, after enabling SB the updates installed without problems and a test clone of the virtual is now running isolated for a longer period test.

      posted in Development
      apz
      apz
    • RE: Guest UEFI Secure Boot on XCP-ng

      @stormi Does this system change or break backups, either in XO or xe vm-export?

      posted in Development
      apz
      apz
    • RE: rngd high cpu usage

      This is just a shot in the dark, but have you by any chance replaced /dev/random with a device that's actually urandom? Because long ago I observed something similar happening afterwards.

      posted in Compute
      apz
      apz