Ticket #530 (closed maintenance: fixed)

Opened 4 years ago

Last modified 4 years ago

New Barracuda BOA-2.0.8 Edition available

Reported by: chris Owned by: chris
Priority: major Milestone: Maintenance
Component: Live server Keywords:
Cc: ed, jim Estimated Number of Hours: 0.75
Add Hours to Ticket: 0 Billable?: yes
Total Hours: 1.1

Description

If I had known this was about to come out I would have waited before doing the BOA-2.0.7 upgrade last night on ticket:529

There is new BOA-2.0.8 Edition of Barracuda and Octopus available.

Please review the changelog and upgrade as soon as possible to receive all security updates and new features.

Changelog: http://bit.ly/newboa

Is mostly to fix a problem for people using Percona, https://drupal.org/node/1962690 and as we are using MariaDB this isn't an issue for us.

Other updates in this version:

  • Allow to use [a-z0-9] subdomains and not only [www] for IDN domain names.
  • Change the interval between platforms builds from 5 to 3 seconds.
  • Forced 1s Speed Booster TTL for vhosts behind local proxy is deprecated.
  • Move old firewall logs to backups to avoid crazy load after upgrade.
  • Nginx: Better exceptions handling in the Abuse Guard for js/shs modules.
  • PHP: CLI is at 5.3 since BOA-2.0.4, so symlink old 5.2 binary path to 5.3
  • Update _LENNY_TO_SQUEEZE major upgrade procedure.
  • Update contrib with login_security-7.x-1.2
  • Use static downloads for all distros in stable edition.

I'll do this update tonight unless there are any objections, hopefully it should be quite quick.

Change History

comment:1 Changed 4 years ago by chris

  • Add Hours to Ticket changed from 0.0 to 0.25
  • Total Hours changed from 0.0 to 0.25

comment:2 Changed 4 years ago by chris

The upgrade process and list of previous BOA upgrades are documented on the wiki wiki:PuffinServer#UpgradingBOA

comment:4 in reply to: ↑ 3 Changed 4 years ago by chris

  • Add Hours to Ticket changed from 0.0 to 0.5
  • Total Hours changed from 0.25 to 0.75

Replying to chris:

The upgrade to BOA-2.0.7 on ticket:529 had the side effect of breaking these Munin graphs:

This was solved last time by adding the following location sections to /var/aegir/config/server_master/nginx.conf in the nginx default server section, see ticket:466#comment:70:

#######################################################
###  nginx default server
#######################################################

server {
  limit_conn   gulag 32; # like mod_evasive - this allows max 32 simultaneous connections from one IP address
  listen       *:80;
  server_name  _;
  location / {
     root   /var/www/nginx-default;
     index  index.html index.htm;
  }
## chris
  location /nginx_status {
    stub_status on;
    access_log   off;
    allow 127.0.0.1;
    allow 81.95.52.103;
    deny all;
  }
  location ~ ^/(status|ping)$ {
    fastcgi_pass 127.0.0.1:9090;
    fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
    fastcgi_intercept_errors on;
    include fastcgi_params;
    access_log off;
    allow 127.0.0.1;
    deny all;
  }
}

To get the above two working the following lines need uncommenting in /opt/local/etc/php53-fpm.conf, this was last done on ticket:466#comment:67:

pm.status_path = /status
ping.path = /ping

It took a while to dig up the answers to these, I have now documented them on wiki:PuffinServer#UpgradingBOA so they can be done quickly in the future.

comment:5 Changed 4 years ago by chris

  • Add Hours to Ticket changed from 0.0 to 0.35
  • Total Hours changed from 0.75 to 1.1

There are no other active people logged into the site so I'm doing the BOA upgrade now:

wget -q -U iCab http://files.aegir.cc/BOA.sh.txt
bash BOA.sh.txt

BOA Meta Installer setup completed
Please check INSTALL.txt and UPGRADE.txt at http://bit.ly/boa-docs for how-to
Bye

 barracuda up-stable
 
Barracuda [Mon Apr  8 21:46:13 BST 2013] ==> BOA Skynet welcomes you aboard!
 
Barracuda [Mon Apr  8 21:46:17 BST 2013] ==> INFO: UPGRADE
Barracuda [Mon Apr  8 21:46:17 BST 2013] ==> INFO: Reading your /root/.barracuda.cnf config file
Barracuda [Mon Apr  8 21:46:18 BST 2013] ==> NOTE! Please review all config options displayed below
Barracuda [Mon Apr  8 21:46:18 BST 2013] ==> NOTE! It will *override* all settings in the Barracuda script
 
###
### Configuration created on 121215-1545
### with Barracuda version BOA-2.0.4
###
### NOTE: the group of settings displayed bellow will *not* be overriden
### on upgrade by the Barracuda script nor by this configuration file.
### They can be defined only on initial Barracuda install.
###
_HTTP_WILDCARD=YES
_MY_OWNIP="81.95.52.103"
#_MY_OWNIP=""
_MY_HOSTN="puffin.webarch.net"
#_MY_HOSTN=""
_MY_FRONT="master.puffin.webarch.net"
_THIS_DB_HOST=localhost
#_THIS_DB_HOST=FQDN
_SMTP_RELAY_TEST=YES
_SMTP_RELAY_HOST=""
_LOCAL_NETWORK_IP=""
_LOCAL_NETWORK_HN=""
###
### NOTE: the group of settings displayed bellow
### will *override* all listed settings in the Barracuda script,
### both on initial install and upgrade.
###
_MY_EMAIL="chris@webarchitects.co.uk"
_XTRAS_LIST="PDS CSF CHV"
_AUTOPILOT=YES
_DEBUG_MODE=NO
_DB_SERVER=MariaDB
_SSH_PORT=22
_LOCAL_DEBIAN_MIRROR="ftp.debian.org"
_LOCAL_UBUNTU_MIRROR="archive.ubuntu.com"
_FORCE_GIT_MIRROR=""
_DNS_SETUP_TEST=YES
_NGINX_EXTRA_CONF=""
_NGINX_WORKERS=AUTO
_PHP_FPM_WORKERS=AUTO
_BUILD_FROM_SRC=NO
_PHP_MODERN_ONLY=YES
_PHP_FPM_VERSION=5.3
_PHP_CLI_VERSION=5.3
_LOAD_LIMIT_ONE=1444
_LOAD_LIMIT_TWO=888
_CUSTOM_CONFIG_CSF=NO
_CUSTOM_CONFIG_SQL=NO
_CUSTOM_CONFIG_REDIS=NO
_CUSTOM_CONFIG_PHP_5_2=NO
_CUSTOM_CONFIG_PHP_5_3=NO
_SPEED_VALID_MAX=3600
_NGINX_DOS_LIMIT=300
_SYSTEM_UPGRADE_ONLY=NO
_USE_MEMCACHED=NO
_NEWRELIC_KEY=
_USE_STOCK=NO
###
### Configuration created on 121215-1545
### with Barracuda version BOA-2.0.4
###
### JK reinstall PHP
_EXTRA_PACKAGES=
_PHP_EXTRA_CONF=""
_STRONG_PASSWORDS=NO
_DB_BINARY_LOG=NO
_DB_ENGINE=InnoDB
_NGINX_LDAP=NO
_PHP_GEOS=NO
_PHP_MONGODB=NO
 
Barracuda [Mon Apr  8 21:46:20 BST 2013] ==> INFO: Testing GitHub, Drupal and Gitorious servers availability, please wait...
Barracuda [Mon Apr  8 21:46:21 BST 2013] ==> INFO: GitHub mirror repository will be used for this install
Barracuda [Mon Apr  8 21:46:21 BST 2013] ==> INFO: Downloading little helpers, please wait...
Barracuda [Mon Apr  8 21:46:23 BST 2013] ==> INFO: Checking BARRACUDA version...
Barracuda [Mon Apr  8 21:46:23 BST 2013] ==> INFO: Version test result: OK
Barracuda [Mon Apr  8 21:46:23 BST 2013] ==> INFO: Checking your Debian or Ubuntu version...
 
Barracuda [Mon Apr  8 21:46:25 BST 2013] ==> Aegir with Nginx on Debian/squeeze - Skynet Agent v.BOA-2.0.8
 
 
Barracuda [Mon Apr  8 21:46:30 BST 2013] ==> UPGRADE START -> checkpoint: 

  * Your e-mail address appears to be chris@webarchitects.co.uk - is that correct?
  * Your server hostname is puffin.webarch.net.
  * Your Aegir control panel is/will be available at https://master.puffin.webarch.net.

 
Barracuda [Mon Apr  8 21:46:30 BST 2013] ==> INFO: Cleaning up temp files in /var/opt/
Barracuda [Mon Apr  8 21:46:32 BST 2013] ==> INFO: Updating apt sources
Barracuda [Mon Apr  8 21:46:34 BST 2013] ==> INFO: We will use Debian mirror ftp.debian.org
Barracuda [Mon Apr  8 21:46:38 BST 2013] ==> INFO: Running aptitude update, please wait...
Barracuda [Mon Apr  8 21:46:46 BST 2013] ==> INFO: Upgrading required libraries and tools
Barracuda [Mon Apr  8 21:46:46 BST 2013] ==> NOTE! This step may take a few minutes, please wait...
Barracuda [Mon Apr  8 21:47:19 BST 2013] ==> INFO: Testing Nginx version...
Barracuda [Mon Apr  8 21:47:21 BST 2013] ==> INFO: Installed Nginx version nginx/1.3.15, no upgrade required
Barracuda [Mon Apr  8 21:47:23 BST 2013] ==> INFO: Running aptitude full-upgrade again, please wait...
Barracuda [Mon Apr  8 21:48:10 BST 2013] ==> INFO: Testing Nginx version...
Barracuda [Mon Apr  8 21:48:12 BST 2013] ==> INFO: Installed Nginx version nginx/1.3.15, no upgrade required
Barracuda [Mon Apr  8 21:48:14 BST 2013] ==> INFO: Checking SMTP connections, please wait...
Barracuda [Mon Apr  8 21:48:16 BST 2013] ==> INFO: Upgrading a few more tools, please wait...
Barracuda [Mon Apr  8 21:48:20 BST 2013] ==> INFO: Checking if PHP upgrade is available
Barracuda [Mon Apr  8 21:48:22 BST 2013] ==> INFO: Installed PHP version 5.3.23-1~dotdeb.0, no upgrade required
Barracuda [Mon Apr  8 21:48:27 BST 2013] ==> INFO: Installed Redis version 2.6.12, no upgrade/rebuild required
Barracuda [Mon Apr  8 21:48:29 BST 2013] ==> INFO: OS and services upgrade completed
 
Barracuda [Mon Apr  8 21:48:32 BST 2013] ==> INFO: Restarting MariaDB server, please wait...
Barracuda [Mon Apr  8 21:48:52 BST 2013] ==> INFO: Upgrading MariaDB tables if necessary, please wait a minute...
Barracuda [Mon Apr  8 21:49:55 BST 2013] ==> INFO: Running Aegir Master Instance upgrade
Barracuda [Mon Apr  8 21:49:58 BST 2013] ==> INFO: Testing previous install...
Barracuda [Mon Apr  8 21:49:58 BST 2013] ==> INFO: Test OK, we can proceed with Hostmaster upgrade
Barracuda [Mon Apr  8 21:49:58 BST 2013] ==> INFO: Moving old directories
Barracuda [Mon Apr  8 21:49:58 BST 2013] ==> INFO: Downloading drush, please wait...
Barracuda [Mon Apr  8 21:50:00 BST 2013] ==> INFO: Drush seems to be functioning properly
Barracuda [Mon Apr  8 21:50:00 BST 2013] ==> INFO: Installing provision backend in /var/aegir/.drush
Barracuda [Mon Apr  8 21:50:01 BST 2013] ==> INFO: Downloading Drush and Provision extensions, please wait...
Barracuda [Mon Apr  8 21:50:01 BST 2013] ==> INFO: Running hostmaster-migrate, please wait...
Barracuda [Mon Apr  8 21:51:32 BST 2013] ==> INFO: Running hosting-dispatch (1/3), please wait...
Barracuda [Mon Apr  8 21:51:39 BST 2013] ==> INFO: Running hosting-dispatch (2/3), please wait...
Barracuda [Mon Apr  8 21:51:46 BST 2013] ==> INFO: Running hosting-dispatch (3/3), please wait...
Barracuda [Mon Apr  8 21:51:47 BST 2013] ==> INFO: Generating random password for Redis server
Barracuda [Mon Apr  8 21:52:29 BST 2013] ==> INFO: Aegir Master Instance upgrade completed
Barracuda [Mon Apr  8 21:52:30 BST 2013] ==> INFO: Installing extra Drush versions
Barracuda [Mon Apr  8 21:52:32 BST 2013] ==> INFO: Drush 4 installation complete
Barracuda [Mon Apr  8 21:52:34 BST 2013] ==> INFO: Drush 5 installation complete
Barracuda [Mon Apr  8 21:52:36 BST 2013] ==> INFO: Drush 6 installation complete
Barracuda [Mon Apr  8 21:52:42 BST 2013] ==> INFO: Restarting Redis and PHP-FPM, reloading Nginx
 
Barracuda [Mon Apr  8 21:52:53 BST 2013] ==> INFO: New random password for MariaDB generated and stored in /root/.my.pass.txt
Barracuda [Mon Apr  8 21:52:56 BST 2013] ==> INFO: New entry added to /var/log/barracuda_log.txt
 
Barracuda [Mon Apr  8 21:52:58 BST 2013] ==> CARD: Now charging your credit card for this automated upgrade service...
Barracuda [Mon Apr  8 21:53:04 BST 2013] ==> JOKE: Just kidding! Enjoy your Aegir Hosting System :)
 
Barracuda [Mon Apr  8 21:53:08 BST 2013] ==> Final post-upgrade cleaning, please wait a moment...
Barracuda [Mon Apr  8 21:53:20 BST 2013] ==> BYE!

BARRACUDA upgrade completed
Bye

octopus up-stable all

load is 50 while maxload is 1888
Octopus upgrade for User /data/disk/tn
waiting 10 sec
 
Octopus [Mon Apr  8 21:53:59 BST 2013] ==> BOA Skynet welcomes you aboard!
 
Octopus [Mon Apr  8 21:54:02 BST 2013] ==> INFO: Reading your /root/.tn.octopus.cnf config file
Octopus [Mon Apr  8 21:54:03 BST 2013] ==> NOTE! Please review all config options displayed below
 
###
### Configuration created on 121215-1617 with
### Octopus version BOA-2.0.4
###
### NOTE: the group of settings displayed bellow
### will *override* all listed settings in the Octopus script.
###
_USER="tn"
_MY_EMAIL="chris@webarchitects.co.uk"
_PLATFORMS_LIST="D7P D8E"
_ALLOW_UNSUPPORTED=NO
_AUTOPILOT=NO
_HM_ONLY=NO
_O_CONTRIB_UP=YES
_DEBUG_MODE=NO
_MY_OWNIP=
_FORCE_GIT_MIRROR=""
_THIS_DB_HOST=localhost
_DNS_SETUP_TEST=NO
_HOT_SAUCE=NO
_USE_CURRENT=YES
_REMOTE_CACHE_IP=127.0.0.1
_LOCAL_NETWORK_IP=
_PHP_FPM_VERSION=5.3
_PHP_CLI_VERSION=5.3
_USE_STOCK=NO
###
### NOTE: the group of settings displayed bellow will be *overriden*
### by config files stored in the /data/disk/tn/log/ directory,
### but only on upgrade.
###
_DOMAIN="tn.puffin.webarch.net"
_CLIENT_EMAIL="chris@webarchitects.co.uk"
_CLIENT_OPTION="SSD"
_CLIENT_SUBSCR="Y"
_CLIENT_CORES="8"
###
### Configuration created on 121215-1617 with
### Octopus version BOA-2.0.4
###
_STRONG_PASSWORDS=NO
 
Do you want to proceed with the upgrade? [Y/n] y
Octopus [Mon Apr  8 21:54:27 BST 2013] ==> INFO: Testing GitHub, Drupal and Gitorious servers availability, please wait...
Octopus [Mon Apr  8 21:54:29 BST 2013] ==> INFO: GitHub mirror repository will be used for this install
Octopus [Mon Apr  8 21:54:29 BST 2013] ==> UPGRADE in progress...
 
Octopus [Mon Apr  8 21:54:29 BST 2013] ==> START -> checkpoint: 

  * Your Aegir control panel for this instance is available at https://tn.puffin.webarch.net
  * Your Aegir system user for this instance is tn
  * This Octopus will use PHP-CLI 5.3 for all sites
  * This Octopus will use PHP-FPM 5.3 both for D6 and D7 sites
  * This Octopus includes platforms: D7P D8E / Unsupported: NO
  * This Octopus options are listed as SSD / Y / 8 C

 
Do you want to proceed? [Y/n] y
Octopus [Mon Apr  8 21:54:45 BST 2013] ==> 8s before we will continue...
Octopus [Mon Apr  8 21:55:05 BST 2013] ==> INIT A: Aegir automated install script part A
Octopus [Mon Apr  8 21:55:05 BST 2013] ==> INFO A: Checking OCTOPUS version, please wait...
Octopus [Mon Apr  8 21:55:05 BST 2013] ==> INFO: Version test result: OK
Octopus [Mon Apr  8 21:55:05 BST 2013] ==> UPGRADE A: UPGRADE
Octopus [Mon Apr  8 21:55:07 BST 2013] ==> UPGRADE A: Shared platforms code v.002 (hot new) will be created
Octopus [Mon Apr  8 21:55:07 BST 2013] ==> UPGRADE A: Creating directories with correct permissions, please wait...
Octopus [Mon Apr  8 21:55:12 BST 2013] ==> UPGRADE A: Running hosting-dispatch (1/3), please wait...
Octopus [Mon Apr  8 21:55:18 BST 2013] ==> UPGRADE A: Running hosting-dispatch (2/3), please wait...
Octopus [Mon Apr  8 21:55:24 BST 2013] ==> UPGRADE A: Running hosting-dispatch (3/3), please wait...
 
Do you want to upgrade this Aegir Satellite Instance? [Y/n] y
Octopus [Mon Apr  8 21:55:39 BST 2013] ==> UPGRADE A: Switching user and running AegirSetupB, please wait...
Octopus [Mon Apr  8 21:55:42 BST 2013] ==> INIT B: Aegir automated install script part B
Octopus [Mon Apr  8 21:55:42 BST 2013] ==> UPGRADE B: Creating directories with correct permissions
Octopus [Mon Apr  8 21:55:44 BST 2013] ==> UPGRADE B: Running standard installer
Octopus [Mon Apr  8 21:55:46 BST 2013] ==> UPGRADE B: Downloading drush, please wait...
Octopus [Mon Apr  8 21:55:48 BST 2013] ==> UPGRADE B: Drush seems to be functioning properly
Octopus [Mon Apr  8 21:55:48 BST 2013] ==> UPGRADE B: Installing provision backend in /data/disk/tn/.drush
Octopus [Mon Apr  8 21:55:49 BST 2013] ==> UPGRADE B: Downloading Drush and Provision extensions, please wait...
Octopus [Mon Apr  8 21:55:52 BST 2013] ==> UPGRADE B: Testing previous install...
Octopus [Mon Apr  8 21:55:52 BST 2013] ==> UPGRADE B: Hostmaster STATUS: upgrade start
Octopus [Mon Apr  8 21:55:54 BST 2013] ==> UPGRADE B: Running hostmaster-migrate, please wait...
Octopus [Mon Apr  8 21:57:23 BST 2013] ==> UPGRADE B: Hostmaster STATUS: upgrade completed
Octopus [Mon Apr  8 21:57:23 BST 2013] ==> UPGRADE B: Simple check if Aegir upgrade is successful
Octopus [Mon Apr  8 21:57:25 BST 2013] ==> UPGRADE B: Aegir upgrade test result: OK
Octopus [Mon Apr  8 21:57:25 BST 2013] ==> UPGRADE B: Enhancing Aegir UI, please wait...
Octopus [Mon Apr  8 21:58:08 BST 2013] ==> UPGRADE A: Aegir Satellite Instance upgrade completed
 
Do you want to install some latest, ready to use platforms? [Y/n] n
Octopus [Mon Apr  8 21:58:48 BST 2013] ==> UPGRADE A: No new platforms added this time
Octopus [Mon Apr  8 21:58:50 BST 2013] ==> UPGRADE A: Cleaning up various dot files, please wait...
/opt/tmp/nginx-for-drupal/aegir/scripts/AegirSetupA.sh.txt: line 1168: cd: /data/all/002: No such file or directory
touch: cannot touch `/data/all/002/dot-files-ctrl-BOA-2.0.8': No such file or directory
ln: creating symbolic link `/home/tn.ftp/platforms/002/keys': No such file or directory
touch: cannot touch `/data/all/002/javascript_aggregator.out.txt': No such file or directory
Octopus [Mon Apr  8 21:58:56 BST 2013] ==> UPGRADE A: Preparing setupmail.txt
Octopus [Mon Apr  8 21:58:58 BST 2013] ==> UPGRADE A: New entry added to /data/disk/tn/log/octopus_log.txt
Octopus [Mon Apr  8 21:58:58 BST 2013] ==> UPGRADE A: Final cleaning, please wait a moment...
Octopus [Mon Apr  8 21:59:01 BST 2013] ==> UPGRADE A: Starting the cron now
Octopus [Mon Apr  8 21:59:01 BST 2013] ==> UPGRADE A: All done!
Octopus [Mon Apr  8 21:59:01 BST 2013] ==> BYE!
waiting 3 sec
Done for /data/disk/tn



OCTOPUS upgrade completed
Bye

Then the fixed for Munin and the 502 errors were applied as documented at wiki:PuffinServer#UpgradingBOA

comment:6 Changed 4 years ago by chris

  • Status changed from new to closed
  • Resolution set to fixed

This upgrade is complete, closing this ticket.

comment:7 Changed 4 years ago by chris

BTW there were 132 502 errors served during the upgrade.

comment:8 Changed 4 years ago by chris

  • Milestone set to Maintenance
Note: See TracTickets for help on using tickets.