Package: fai-client
Version: 4.0.8
Severity: normal
Dear Maintainer,
in /usr/lib/fai/updatebase, the apt-options are defined on line 31:
export aptopt="-y -o Dpkg::Options::=--force-confnew"
Why aptopt is reset just before aptitude invocation? (line 38)
export aptopt=
In the following, aptitude awaits user decision, if any conflict is detected.
Thus as it is running non-interactively, the installation fails.
Are there any situations, were "--force-confnew" would be a problem? I dont
think so.
Here the explanation, how I stumbled over this issue:
I use FAI since quite some time to automatically setup and update hosts of my
university Linux network (all Debian wheezy).
It worked well until some days ago, when the installation of a new host
failed, throwing out ''GPG error: ... NO_PUBKEY ..." errors when initialising
the installation of the base system.
There seems to be a new security feature in apt-get management, which leads to
problems with the Debian repository gpg-keys (maybe a stricter security
policy).
Usually, the repository keys should be automatically received from the Debian
key server and stored in ``/etc/apt/trusted.gpg.d/`` when initiating the
installation of the base system.
Putting the keys in ``/etc/apt/trusted.gpg.d/`` into both nfsroot and fai-setup
folder-structure (/srv/fai/config/files/...) resolves the gpg-error*.
However, the installation still fails as the keys seem nevertheless to be
received from repository too (!?), leading to a conflict with the user-defined
keys.
Digging into code, I found the "aptopt" issue. After commenting out line 38
of updatebase in the version in the fai-setup folder-structure, the
installation was successfull.
* before, I only had /etc/apt/trusted.db and /etc/apt/trusted.gpg in nfsroot
and fai-setup folder-structure
-- System Information:
Debian Release: 7.1
APT prefers stable
APT policy: (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages fai-client depends on:
ii file 5.11-2
ii iproute 20120521-3+b3
ii libapt-pkg-perl 0.1.26+b1
ii perl 5.14.2-21
Versions of packages fai-client recommends:
ii debconf-utils 1.5.49
ii libgraph-perl 1:0.91-1
Versions of packages fai-client suggests:
pn logtail <none>
-- Configuration Files:
/etc/fai/fai.conf changed:
FAI_SERVER="phkup26" # For AMD64
ARCH=${ARCH:-$(dpkg --print-architecture)}
SUITE="wheezy"
LOGUSER=failog
LOGSERVER=phkup26
LOGPASSWD=failog
LOGREMOTEDIR=/var/log/fai
FAI_LOGPROTO=ssh
monserver=phkup26
FAI_CONFIGDIR=/srv/fai/config
FAI_CONFIG_SRC=nfs://phkup26.unibe.ch$FAI_CONFIGDIR
FAI=/var/lib/fai/config
-- no debconf information
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
