<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=us-ascii">
<style type="text/css" style="display:none;"> P {margin-top:0;margin-bottom:0;} </style>
</head>
<body dir="ltr">
<div style="font-family: Calibri, Arial, Helvetica, sans-serif; font-size: 12pt; color: rgb(0, 0, 0); background-color: rgb(255, 255, 255);">
Services.conf has this stanza.</div>
<div style="font-family: Calibri, Arial, Helvetica, sans-serif; font-size: 12pt; color: rgb(0, 0, 0); background-color: rgb(255, 255, 255);">
<br>
</div>
<div>
<div id="Signature">
<div style="font-family: Calibri, Arial, Helvetica, sans-serif; font-size: 12pt; color: rgb(0, 0, 0);">
apply Service "apt" {
<div> check_command = "apt"</div>
<div> vars.apt_upgrade = false<br>
</div>
<div> command_endpoint = host.vars.client_endpoint</div>
<div> assign where host.vars.do_apt</div>
<div>}</div>
<div><br>
</div>
<div>A typical barely sanitized entry in hosts.conf doing the apt check is:</div>
<div><br>
</div>
<div>object Host "xxxx.example.com" {</div>
<div> check_command = "hostalive"</div>
<div> address = "xxx.example.com"
<div> vars.client_endpoint = name</div>
<div> vars.do_apt = true</div>
<div> vars.syslog_ng_cnt = true;</div>
<div> vars.notification["mail"] = {</div>
<div> users = [ "jpenny" ]</div>
<div> } </div>
}</div>
<div><br>
</div>
<div>I have monitoring-plugins-basic installed, and check_apt is part of that</div>
<div>package.</div>
<div><br>
</div>
<div>So, I think that I am using the icinga2 checker. I am definitely not using nrpe,</div>
<div>it is not installed on any of the systems. There are no authorized_keys on</div>
<div>master, so I can't be suing ssh.</div>
<div><br>
</div>
<div>There is nothing remotely interesting in /var/log/icinga2/icinga2.log.</div>
<div><br>
</div>
<div>On host xxx, a failing system, grepping for xxx gives only two lines:</div>
<div><br>
</div>
<div>[2022-07-07 12:50:55 -0400] information/JsonRpcConnection: Received certificate request for CN 'xxx.example.com' signed by our CA.<br>
[2022-07-07 12:50:55 -0400] information/JsonRpcConnection: The certificate for CN 'xxx.example.com' is valid and uptodate. Skipping automated renewal.<br>
</div>
<div><br>
</div>
<div>I hope that this is enough information to reproduce the problem. </div>
<div><br>
</div>
<div>Also, I have grepped source for "apt-get false upgrade", but I don't find that string.</div>
<div><br>
</div>
<br>
</div>
</div>
</div>
<div id="appendonsend"></div>
<hr style="display:inline-block;width:98%" tabindex="-1">
<div id="divRplyFwdMsg" dir="ltr"><font face="Calibri, sans-serif" style="font-size:11pt" color="#000000"><b>From:</b> Sebastiaan Couwenberg <sebastic@xs4all.nl><br>
<b>Sent:</b> Thursday, July 7, 2022 3:19 PM<br>
<b>To:</b> Jim Penny <JimPenny@ykk.com>; 1014551@bugs.debian.org <1014551@bugs.debian.org><br>
<b>Subject:</b> Re: [Pkg-nagios-devel] Bug#1014551: icinga2: check_apt not working if both master and host are running 2.13.4-1</font>
<div> </div>
</div>
<div class="BodyFragment"><font size="2"><span style="font-size:11pt;">
<div class="PlainText">Control: tags -1 moreinfo<br>
<br>
On 7/7/22 20:37, Jim Penny wrote:<br>
> It works with master on 2.13.4-1 and hosts on 2.13.3-1+b2. If both are on<br>
> 2.13.4-1, icinga2-web reports "'/usr/bin/apt-get false upgrade' exited with non-zero status.".<br>
<br>
How do you execute check_apt on the hosts?<br>
<br>
Do you use the icinga2 checker feature to run check_apt on the hosts or <br>
check_by_ssh, NRPE, or something else?<br>
<br>
In case of icinga2 checker feature, what does <br>
/var/log/icinga2/icinga2.log contain?<br>
<br>
How can your issue be reproduced?<br>
<br>
Kind Regards,<br>
<br>
Bas<br>
<br>
-- <br>
GPG Key ID: 4096R/6750F10AE88D4AF1<br>
Fingerprint: 8182 DE41 7056 408D 6146 50D1 6750 F10A E88D 4AF1<br>
</div>
</span></font></div>
</body>
</html>