Created
February 5, 2018 20:07
-
-
Save kam1kaze/7b4954e26619b63324dad69e9dfabe31 to your computer and use it in GitHub Desktop.
chef_shell_firewall.log
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # chef-shell -z | |
| loading configuration: /etc/chef/client.rb | |
| Session type: client | |
| Loading....Using policy 'test' at revision '95108111a05c1247abfa80916650bf1b727528eb9cfb25ff54e6cdfd9000bf0b' | |
| [2018-02-05T19:57:44+00:00] INFO: Run List is [["recipe[firewall::default]"]] | |
| [2018-02-05T19:57:44+00:00] INFO: Run List expands to [firewall::[email protected] (897084d)] | |
| resolving cookbooks for run list: ["firewall::[email protected] (897084d)"] | |
| [2018-02-05T19:57:44+00:00] INFO: Loading cookbooks [[email protected], [email protected]] | |
| Synchronizing Cookbooks: | |
| . - firewall (2.6.3) | |
| - chef-sugar (4.0.0) | |
| [2018-02-05T19:57:44+00:00] WARN: chef-sugar::default no longer needs to be included in your runlist. Instead simply depend on the chef-sugar cookbook and the gem will be intalled and loaded automatically. | |
| done. | |
| This is the chef-shell. | |
| Chef Version: 12.21.31 | |
| https://www.chef.io/ | |
| https://docs.chef.io/ | |
| run `help' for help, `exit' or ^D to quit. | |
| Ohai2u shomeuser@somehost! | |
| chef (12.21.31)> run_chef | |
| [2018-02-05T19:57:49+00:00] INFO: Processing firewall[default] action install (firewall::default line 22) | |
| [2018-02-05T19:57:49+00:00] DEBUG: Providers for generic firewall resource enabled on node include: [Chef::Provider::FirewallFirewalld] | |
| [2018-02-05T19:57:49+00:00] DEBUG: Provider for action install on resource firewall[default] is Chef::Provider::FirewallFirewalld | |
| [2018-02-05T19:57:49+00:00] DEBUG: Resources for generic package resource enabled on node include: [Chef::Resource::YumPackage, Chef::Resource::Package] | |
| [2018-02-05T19:57:49+00:00] DEBUG: Resource for package is Chef::Resource::YumPackage | |
| [2018-02-05T19:57:49+00:00] INFO: Processing yum_package[firewalld] action install (/var/chef/cache/cookbooks/firewall/libraries/provider_firewall_firewalld.rb line 33) | |
| [2018-02-05T19:57:49+00:00] DEBUG: Providers for generic yum_package resource enabled on node include: [Chef::Provider::Package::Yum] | |
| [2018-02-05T19:57:49+00:00] DEBUG: Provider for action install on resource yum_package[firewalld] is Chef::Provider::Package::Yum | |
| ... | |
| [2018-02-05T19:57:58+00:00] DEBUG: yum_package[firewalld] checking yum info for firewalld | |
| [2018-02-05T19:57:58+00:00] DEBUG: Found Yum package: firewalld installed version: 0.4.4.4-6.el7 candidate version: 0.4.4.4-6.el7 | |
| [2018-02-05T19:57:58+00:00] DEBUG: yum_package[firewalld] firewalld 0.4.4.4-6.el7 already installed | |
| [2018-02-05T19:57:58+00:00] DEBUG: yum_package[firewalld] is already installed - nothing to do | |
| [2018-02-05T19:57:58+00:00] DEBUG: Resources for generic service resource enabled on node include: [Chef::Resource::Service] | |
| [2018-02-05T19:57:58+00:00] DEBUG: Resource for service is Chef::Resource::Service | |
| [2018-02-05T19:57:58+00:00] INFO: Processing service[firewalld] action enable (/var/chef/cache/cookbooks/firewall/libraries/provider_firewall_firewalld.rb line 161) | |
| [2018-02-05T19:57:58+00:00] DEBUG: Providers for generic service resource enabled on node include: [Chef::Provider::Service::Systemd, Chef::Provider::Service::Redhat, Chef::Provider::Service::Init] | |
| [2018-02-05T19:57:58+00:00] DEBUG: Provider for action enable on resource service[firewalld] is Chef::Provider::Service::Systemd | |
| enabled | |
| [2018-02-05T19:57:58+00:00] DEBUG: service[firewalld] already enabled - nothing to do | |
| [2018-02-05T19:57:58+00:00] INFO: Processing service[firewalld] action start (/var/chef/cache/cookbooks/firewall/libraries/provider_firewall_firewalld.rb line 161) | |
| [2018-02-05T19:57:58+00:00] DEBUG: Providers for generic service resource enabled on node include: [Chef::Provider::Service::Systemd, Chef::Provider::Service::Redhat, Chef::Provider::Service::Init] | |
| [2018-02-05T19:57:58+00:00] DEBUG: Provider for action start on resource service[firewalld] is Chef::Provider::Service::Systemd | |
| enabled | |
| [2018-02-05T19:57:58+00:00] DEBUG: service[firewalld] already running - nothing to do | |
| [2018-02-05T19:57:58+00:00] INFO: Processing yum_package[firewalld] action nothing (/var/chef/cache/cookbooks/firewall/libraries/provider_firewall_firewalld.rb line 33) | |
| [2018-02-05T19:57:58+00:00] DEBUG: Skipping yum_package[firewalld] due to action :nothing | |
| [2018-02-05T19:57:58+00:00] INFO: Processing service[firewalld] action nothing (/var/chef/cache/cookbooks/firewall/libraries/provider_firewall_firewalld.rb line 161) | |
| [2018-02-05T19:57:58+00:00] DEBUG: Skipping service[firewalld] due to action :nothing | |
| [2018-02-05T19:57:58+00:00] INFO: Processing firewall_rule[allow loopback] action create (firewall::default line 30) | |
| [2018-02-05T19:57:58+00:00] DEBUG: Skipping firewall_rule[allow loopback] due to only_if ruby block | |
| [2018-02-05T19:57:58+00:00] INFO: Processing firewall_rule[allow icmp] action create (firewall::default line 37) | |
| [2018-02-05T19:57:58+00:00] DEBUG: Skipping firewall_rule[allow icmp] due to only_if ruby block | |
| [2018-02-05T19:57:58+00:00] INFO: Processing firewall_rule[allow world to ssh] action create (firewall::default line 45) | |
| [2018-02-05T19:57:58+00:00] DEBUG: Skipping firewall_rule[allow world to ssh] due to only_if ruby block | |
| [2018-02-05T19:57:58+00:00] INFO: Processing firewall_rule[allow world to winrm] action create (firewall::default line 51) | |
| [2018-02-05T19:57:58+00:00] DEBUG: Skipping firewall_rule[allow world to winrm] due to only_if ruby block | |
| [2018-02-05T19:57:58+00:00] INFO: Processing firewall_rule[allow world to mosh] action create (firewall::default line 57) | |
| [2018-02-05T19:57:58+00:00] DEBUG: Skipping firewall_rule[allow world to mosh] due to only_if ruby block | |
| [2018-02-05T19:57:58+00:00] INFO: Processing firewall_rule[established] action create (firewall::default line 65) | |
| [2018-02-05T19:57:58+00:00] DEBUG: Providers for generic firewall_rule resource enabled on node include: [Chef::Provider::FirewallRuleGeneric] | |
| [2018-02-05T19:57:58+00:00] DEBUG: Provider for action create on resource firewall_rule[established] is Chef::Provider::FirewallRuleGeneric | |
| ================================================================================ | |
| Error executing action `create` on resource 'firewall_rule[established]' | |
| ================================================================================ | |
| NoMethodError | |
| ------------- | |
| undefined method `resource_collection' for nil:NilClass | |
| Cookbook Trace: | |
| --------------- | |
| /var/chef/cache/cookbooks/firewall/libraries/provider_firewall_rule.rb:27:in `action_create' | |
| Resource Declaration: | |
| --------------------- | |
| # In /var/chef/cache/cookbooks/firewall/recipes/default.rb | |
| 65: firewall_rule 'established' do | |
| 66: stateful [:related, :established] | |
| 67: protocol :none # explicitly don't specify protocol | |
| 68: command :allow | |
| 69: only_if { node['firewall']['allow_established'] && iptables_firewall } | |
| 70: end | |
| 71: | |
| 72: # ipv6 needs ICMP to reliably work, so ensure it's enabled if ipv6 | |
| 73: # allow established connections, ufw defaults to this but iptables does not | |
| 74: firewall_rule 'ipv6_icmp' do | |
| 75: protocol :'ipv6-icmp' | |
| 76: command :allow | |
| 77: only_if { node['firewall']['ipv6_enabled'] && node['firewall']['allow_established'] && iptables_firewall } | |
| 78: end | |
| Compiled Resource: | |
| ------------------ | |
| # Declared in /var/chef/cache/cookbooks/firewall/recipes/default.rb:65:in `from_file' | |
| firewall_rule("established") do | |
| action [:create] | |
| retries 0 | |
| retry_delay 2 | |
| default_guard_interpreter :default | |
| declared_type :firewall_rule | |
| cookbook_name "firewall" | |
| recipe_name "default" | |
| protocol :none | |
| command :allow | |
| stateful [:related, :established] | |
| firewall_name "default" | |
| description "established" | |
| only_if { #code block } | |
| end | |
| System Info: | |
| ------------ | |
| chef_version=12.21.31 | |
| platform=centos | |
| platform_version=7.4.1708 | |
| ruby=ruby 2.3.5p376 (2017-09-14 revision 59905) [x86_64-linux] | |
| program_name=/usr/bin/chef-shell | |
| executable=/opt/chef/bin/chef-shell | |
| [2018-02-05T19:57:58+00:00] INFO: Running queued delayed notifications before re-raising exception | |
| NoMethodError: firewall_rule[established] (firewall::default line 65) had an error: NoMethodError: undefined method `resource_collection' for nil:NilClass | |
| from /var/chef/cache/cookbooks/firewall/libraries/provider_firewall_rule.rb:27:in `action_create' | |
| from /opt/chef/embedded/lib/ruby/gems/2.3.0/gems/chef-12.21.31/lib/chef/provider.rb:145:in `run_action' | |
| from /opt/chef/embedded/lib/ruby/gems/2.3.0/gems/chef-12.21.31/lib/chef/resource.rb:622:in `run_action' | |
| from /opt/chef/embedded/lib/ruby/gems/2.3.0/gems/chef-12.21.31/lib/chef/runner.rb:69:in `run_action' | |
| from /opt/chef/embedded/lib/ruby/gems/2.3.0/gems/chef-12.21.31/lib/chef/runner.rb:97:in `block (2 levels) in converge' | |
| from /opt/chef/embedded/lib/ruby/gems/2.3.0/gems/chef-12.21.31/lib/chef/runner.rb:97:in `each' | |
| from /opt/chef/embedded/lib/ruby/gems/2.3.0/gems/chef-12.21.31/lib/chef/runner.rb:97:in `block in converge' | |
| from /opt/chef/embedded/lib/ruby/gems/2.3.0/gems/chef-12.21.31/lib/chef/resource_collection/resource_list.rb:94:in `block in execute_each_resource' | |
| from /opt/chef/embedded/lib/ruby/gems/2.3.0/gems/chef-12.21.31/lib/chef/resource_collection/stepable_iterator.rb:114:in `call_iterator_block' | |
| from /opt/chef/embedded/lib/ruby/gems/2.3.0/gems/chef-12.21.31/lib/chef/resource_collection/stepable_iterator.rb:85:in `step' | |
| from /opt/chef/embedded/lib/ruby/gems/2.3.0/gems/chef-12.21.31/lib/chef/resource_collection/stepable_iterator.rb:103:in `iterate' | |
| from /opt/chef/embedded/lib/ruby/gems/2.3.0/gems/chef-12.21.31/lib/chef/resource_collection/stepable_iterator.rb:55:in `each_with_index' | |
| from /opt/chef/embedded/lib/ruby/gems/2.3.0/gems/chef-12.21.31/lib/chef/resource_collection/resource_list.rb:92:in `execute_each_resource' | |
| from /opt/chef/embedded/lib/ruby/2.3.0/forwardable.rb:204:in `execute_each_resource' | |
| from /opt/chef/embedded/lib/ruby/gems/2.3.0/gems/chef-12.21.31/lib/chef/runner.rb:96:in `converge' | |
| from /opt/chef/embedded/lib/ruby/gems/2.3.0/gems/chef-12.21.31/lib/chef/shell/ext.rb:236:in `run_chef' | |
| from (irb):1 | |
| from /opt/chef/embedded/lib/ruby/gems/2.3.0/gems/chef-12.21.31/lib/chef/shell.rb:75:in `block in start' | |
| from /opt/chef/embedded/lib/ruby/gems/2.3.0/gems/chef-12.21.31/lib/chef/shell.rb:74:in `catch' | |
| from /opt/chef/embedded/lib/ruby/gems/2.3.0/gems/chef-12.21.31/lib/chef/shell.rb:74:in `start' | |
| from /opt/chef/embedded/lib/ruby/gems/2.3.0/gems/chef-12.21.31/bin/chef-shell:34:in `<top (required)>' | |
| from /usr/bin/chef-shell:57:in `load' | |
| from /usr/bin/chef-shell:57:in `<main>' | |
| chef (12.21.31)> |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment