1106870465 Q * we2by Remote host closed the connection 1106870630 M * Marlow there we go ... now the download link and the script is online ... 1106870710 J * we2by ~jinxi@145.116.6.75 1106870738 M * torsti76 hmm, nothing shows up in the log 1106870744 M * torsti76 i 1106870752 M * Marlow torsti76 : are you now sure :) 1106870760 M * torsti76 i'll try to use your script, bertl 1106870783 M * torsti76 marlow: sure about what? ;o) 1106870787 M * Bertl Marlow: thanks! 1106870822 M * chrish01 Bertl, i ln -s /etc/vservers/lri60/apps/vshelper/logfile to /var/log/vshelper.log ... no additional output on reboot 1106870846 Q * we2by Remote host closed the connection 1106870872 M * Marlow Bertl : we'll see if it helps ... 1106870900 J * we2by ~jinxi@145.116.6.75 1106871017 M * torsti76 and there we go: olymp util-vserver # cat /tmp/vshelper.log 1106871017 M * torsti76 /usr/lib/util-vserver/vshelper 49158 restart 1106871017 M * torsti76 /usr/lib/util-vserver/vshelper 49158 restart2 1106871036 M * torsti76 olymp util-vserver # /usr/lib/util-vserver/vshelper.orig 49158 restart 1106871036 M * torsti76 Fri Jan 28 01:09:24 CET 2005: vshelper 49158 restart 1106871036 M * torsti76 No responsible vserver found for xid '49158' (49158); aborting... 1106871062 M * torsti76 the xid shouldn't have changed meanwhile, right? 1106871096 M * Bertl well, you should not use dynamic ids. period. 1106871100 M * Bertl ;) 1106871143 M * torsti76 oh, so the configuration.html (i knew the file already ;o) is a bit misleading 1106871170 M * torsti76 how do i set a static one? 1106871188 M * Bertl choose some unique id for that one and echo it to * /etc/vservers/vserver-name/context 1106871199 M * Bertl (between 2-49151) 1106871500 M * torsti76 that didn't help - still complaints about missing responsibility... 1106871520 M * Bertl with the new id now? 1106871525 M * torsti76 yes 1106871541 M * Bertl what distro on the host? 1106871551 M * torsti76 gentoo everywhere 1106871591 M * Bertl usually the xid is store in /var/run/vservers* ... look for a file there ... 1106871622 M * Bertl there should also be files in /var/lib/run/vservers and /var/lib/run/vshelper 1106871629 M * torsti76 olymp vshelper # cat /var/run/vservers/zope3 1106871629 M * torsti76 2 1106871638 M * chrish01 Bertl, also ... when a vserver comes down, it still disables the interface it is tap'd to 1106871651 M * chrish01 so if eth0 -> en0 and i bring en0 down ... eth0 goes down in root context 1106871656 M * torsti76 that's what i wanted it to be 1106871686 M * torsti76 olymp vshelper # cat /var/run/vshelper/2 1106871686 M * torsti76 /etc/vservers/zope3 1106871686 M * torsti76 default 1106871762 M * torsti76 /var/run/vservers.rev is empty - is that of any meaning? 1106872017 M * torsti76 i guess i should continue tomorrow, or i'll fall off the chair ;o) 1106872094 M * Marlow i'll be heading of to bed now .. been a long day 1106872113 M * chrish01 night Marlow 1106872124 M * Bertl night Marlow! 1106872126 M * torsti76 g'night marlow 1106872133 Q * Marlow Quit: gone .... Zzzzzzzzzzzzzzzzzzzzzz 1106872139 M * Bertl torsti76: good night to you too! 1106872145 M * Bertl let's continue tomorrow ;) 1106872159 M * torsti76 definitely! ;o) 1106872173 M * torsti76 bye @all 1106872176 M * chrish01 cya 1106872209 M * torsti76 /leave *moan* 1106872230 M * torsti76 ups, it's been quite a while since i used irc for the last time ;o) 1106872236 P * torsti76 1106872351 M * Bertl chrish01: so you get a kernel message on startup that the script returns with a bad error code, right? 1106872357 M * chrish01 yea 1106872374 M * Bertl well, let's try to investigate why it does so ... 1106872394 M * chrish01 ok 1106872436 M * chrish01 im just now starting to build iptables for the vserver ... but that shouldnt have been an issue 1106872828 M * Bertl Doener: sorry ... 1106872882 M * Doener no problem 1106872900 M * Doener found something to do in the meantime 1106872911 M * Bertl excellent ... 1106872931 M * chrish01 Bertl, how do i temporarily lower the debug level on NGNET 1106872939 M * Bertl Doener: ntrs reported an issue with nr_running becoming less than zero 1106872946 M * Doener o.O 1106872967 M * Bertl well, it was my fault, a porting issue with latest kernel 1106872987 M * Doener ah ok 1106872992 M * Bertl http://vserver.13thfloor.at/Experimental/RC-1.9.4/delta-activate-fix01.diff 1106873019 M * Bertl a hunk was misplaced ... 1106873038 M * Bertl (and a new function required a change) 1106873078 M * Bertl but what made me wonder was, how the heck is it possible that vservers (in this case mysql or named) use sched_setscheduler? 1106873129 M * Bertl (I'm probably missing something obvious there, so I thought you might have a look at the kernel source) 1106873157 M * Bertl chrish01: hmm, is it high for you? 1106873174 M * chrish01 Bertl, nm ... i got it 1106873347 M * chrish01 im headed home ... work some more tomorrow 1106873389 M * Bertl okay, cya! 1106873406 M * chrish01 ty for all your help today 1106873431 Q * chrish01 Quit: cya! 1106873884 M * Doener Bertl: guess MySQL is stupid or something... 1106873885 M * Doener sched_setscheduler(22112, SCHED_OTHER, { 9 }) = -1 EINVAL (Invalid argumen 1106873885 M * Doener t) 1106873894 M * Doener just traced mysqld... 1106873923 M * Bertl yeah, but how does it actually reach the vx_activate_task() there? 1106873950 M * Bertl looks like some kind of potential security issue to me ... 1106874517 Q * sladen Remote host closed the connection 1106874533 J * sladen paul@starsky.19inch.net 1106874640 M * Doener Bertl: where's rc4? 1106874688 M * Doener or is that just your working version? 1106874756 M * Bertl oops, I knew I forgot something ... 1106874924 M * Bertl http://vserver.13thfloor.at/Experimental/RC-1.9.4/patch-2.6.11-rc2-vs1.9.4-rc4.diff 1106874942 M * Bertl (this includes the activate fix) 1106875340 M * Doener Bertl: maybe set_scheduler is just called with param->sched_priorioty = 0 in ntrs' case 1106875429 M * Bertl hmm .. good point ... 1106875433 M * Doener s/set_/sched_set/ 1106875684 A * Doener takes a look at the mysql source 1106876054 M * Doener maybe its using linuxthreads on ntrs' box... from glibc: 1106876059 M * Doener struct sched_param default_params; 1106876059 M * Doener default_params.sched_priority = 0; 1106876059 M * Doener __sched_setscheduler(THREAD_GETMEM(self, p_pid), 1106876059 M * Doener SCHED_OTHER, &default_params); 1106876087 M * Bertl ah, okay, so that is now instead of sys_nice() yes? 1106876162 M * Doener the nice stuff was 'real' mysql stuff, that one is just glibc code from the linuxthreads stuff... don't ask me why this is needed... 1106876246 Q * monrad Remote host closed the connection 1106876685 M * Doener hm, nptl code also has some setsched calls... well, i just guess that the call just had priority=0 1106876855 M * Bertl probably ... anyway it's fixed now so it should be fine ... 1106876863 M * Doener yup yup 1106876872 M * Bertl thanks for looking into it! 1106877013 M * Doener no problem :) 1106877924 M * ntrs Bertl, is my kernel config the problem or anything specific to our setup that caused the negative process number? 1106877966 M * Bertl no, I guess we resolved that completely ... 1106877988 M * Bertl the original issue was a badly ported patch (my fault) for 2.6.11-rc2 ... 1106878024 M * Bertl it has been fixed in 1.9.4-rc4 (or with the activate patch you applied) 1106878164 M * ntrs cool. 1106878216 M * ntrs By the way, it seems to me that the per-vserver loadavg gives much more precise and updated information 1106878279 M * ntrs Are you aware of that? any specific changes around that? 1106878281 M * Bertl compared to 1.9.3-rc2, yep very likely ... 1106878288 M * ntrs ok 1106878517 M * Bertl Doener: looks like enrico isn't sure if he should use .default or .defaults ... is this a known issue? 1106878552 M * Doener uhm, no... not to my knowledge... 1106878575 M * Bertl The following problem(s) were encountered while verifying vshelper 1106878584 M * Bertl .. bla bla ... 1106878590 M * Bertl * disable only this message by executing 1106878590 M * Bertl | touch "/etc/vservers/.defaults/apps/vshelper/warning-disabled" 1106878614 M * Bertl now looking at http://www-user.tu-chemnitz.de/~ensc/util-vserver/doc/conf/configuration.html or the configuration.xml 1106878626 M * Bertl # /etc/vservers/.default 1106878923 M * Doener guess that's just a type in line 8 of configuration.xml ... the other occurances in that file also say .defaults 1106878966 M * Bertl anyway I have issues with vshelper being too smart ... 1106878976 M * Bertl (or trying to be too smart ;) 1106879030 M * Doener heh 1106879061 M * Bertl it seems that I can get it to execute a script on vserver startup 1106879114 M * Bertl because it's failing with: 1106879115 M * Bertl ++ panic 'No responsible vserver found for xid '\''1000'\'' (1000); aborting...' 1106879288 M * Doener hm, the vserver state is updated after the vserver has started, so that's too late for our purposes 1106879441 M * Bertl yep, now I wonder how rs got this working in the first place ... 1106879623 M * Doener did he use the vshelper or just the post-start script? 1106879664 M * Bertl http://linux-vserver.org/NGNET-Testing-HOWTO 1106880538 M * Doener weird 1106882510 Q * Zoiah Ping timeout: 480 seconds 1106882775 M * Bertl wow, did knew the details of document-here for bash ... fascinating 1106883040 M * Doener hu? 1106883090 M * Doener s/did/didn't/ ? 1106883112 M * Bertl yep .. it's late/early ;) 1106883172 M * Bertl excellent, seems working now (after a small modification to vshelper ;) 1106883355 M * Bertl http://vserver.13thfloor.at/Experimental/NGNET/delta-vshelper-delegate.diff 1106883516 M * Bertl okay, I'll add the complete scripts and stuff to the howto tomorrow ... seems to work fine after some changes ... 1106883533 M * Bertl I'm off to bed now .. so have a good one everyone! 1106883537 M * Bertl night Doener! 1106883541 M * Doener night Bertl ! 1106883562 N * Bertl Bertl_zZ 1106885018 J * wishes ~wishes@203-118-140-5.pppoe.ihug.co.nz 1106885024 M * wishes heya, im back again 1106885025 N * wishes Undernet 1106885037 M * Undernet arg must unload that script or fix the config 1106885040 N * Undernet wishes 1106885066 A * wishes fixes config 1106885087 M * wishes okay, im getting this error ioctl(SIOCGIFNETMASK): Cannot assign requested address 1106885104 M * wishes its getting an ip fine but not seeming to alias it to the vserver somehow 1106885117 M * wishes ive googled and come up with one or two other people with similar problems but no actual fix 1106885191 M * wishes when i ssh to the ip the machine has been given it points me to the main machine the vserver is running on - do i need to add a router or something? 1106885601 J * monrad ~monrad@213083190130.sonofon.dk 1106886122 Q * lilo Read error: Connection reset by peer 1106886402 M * Doener wishes: are you using the v_sshd wrapper? 1106886942 M * wishes nope 1106886948 M * wishes wasnt aware i had too 1106886957 M * Doener you shouldn't use it! 1106886966 M * wishes oookay 1106886974 M * wishes how is that enabled anyway? 1106887006 M * Doener it's a common cause of errors like that... don't remember which one it was exactly so i ask whenever i think it may apply... 1106887027 M * Doener it's an initscript that gets installed with the tools 1106887049 M * Doener you'd have to modify your runlevels to use it, so i guess you're not affected by that 1106887079 M * Doener anyway, it's 6am over here and i should go to bed. 1106887083 M * Doener night! 1106887086 M * wishes hehe 1106887087 M * wishes nini 1106887091 N * Doener Doener_zZz 1106887120 M * wishes its not just ssh, its all network services 1106887127 M * wishes maybe i need nat or some other crapol 1106887128 M * wishes a 1106888624 J * lilo ~lilo@lilo.usercloak.oftc.net 1106890919 Q * berni jupiter.oftc.net plasma.oftc.net 1106890919 Q * aba jupiter.oftc.net plasma.oftc.net 1106891608 J * aba ~aba@2001:a60:f006::1 1106891681 J * berni ~berni@2001:1b18:202::2 1106892283 J * wishes_ ~wishes@203-118-142-215.pppoe.ihug.co.nz 1106892400 Q * wishes Ping timeout: 480 seconds 1106892880 M * wishes_ hey lilo, how did you ever come up with that nickname? 1106892883 N * wishes_ wishes 1106897658 J * ddk00999 ~abc@spoffs97-162.pacific.net.sg 1106902377 J * BWare ~bware@212.26.196.41 1106902415 J * prae ~prae@ezoffice.mandrakesoft.com 1106902472 M * ddk00999 hi ppl 1106902474 M * ddk00999 anyone here? 1106902704 M * BWare morning :) 1106902884 M * ddk00999 i need some help on administrating lvs 1106903209 Q * ddk00999 Quit: 1106904075 Q * flock Quit: Expert, n.: Someone who comes from out of town and shows slides. 1106905429 T * * http://linux-vserver.org/ | latest stable 1.2.10, devel 1.9.{3,4-rc3}, ng8.12 1106905429 T * Bertl - 1106905713 Q * hap Quit: [BX] Leggo my Eggo! 1106906318 J * torsti76 ~irc@gate.iwm-kmrc.de 1106906343 M * torsti76 hi @all! 1106907090 J * Val ~val@gj403.loria.fr 1106907092 M * Val Hi :) 1106907193 M * Val vs1.2.10(+q0.1.4.1)? kernel-patch-ctx for 2.4.27-8 debian sources will be soon released (see http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=292352), thanks Bertl :) 1106907274 M * mugwump Wicked ... now if they'd only just package the alpha utilities... 1106908109 M * torsti76 can someone try the following for me (with util-vserver 0.30.196): 1106908140 M * torsti76 vserver-info PXID 1106908169 M * torsti76 this comes back with exitcode 1 here and prevents vshelper from working 1106908690 M * daniel_hozac same here. 1106908808 J * Zoiah Zoiah@matryoshka.zoiah.net 1106908872 Q * monrad Quit: Leaving 1106909596 M * daniel_hozac from a quick peek at the code, it should fail though. PXID isn't implemented yet. 1106910249 N * Bertl_zZ Bertl 1106910263 M * Bertl morning folks! 1106910326 M * Bertl Val: you're welcome! 1106910349 M * Val Bertl : Hi :) 1106910352 M * Bertl wishes: what's the issue? 1106910442 M * Bertl torsti76: I did play with the vshelper yesterday, and indeed there are some strange effects ... investigating the reboot/restart case today .. 1106911972 M * we2by how do I set the ip for a vserver? 1106911981 M * we2by I am using the dev version, unstable 1106912017 M * Bertl you know the flower page? 1106912034 M * we2by nope 1106912047 M * Bertl http://linux-vserver.org/alpha+util-vserver 1106912058 M * Bertl (check the flower page there, you'll know then ;) 1106912109 M * Bertl relevant dir is: # /etc/vservers/vserver-name/interfaces 1106912202 M * torsti76 hi bertl 1106912228 M * torsti76 i found out that vserver-info PXID fails 1106912248 M * torsti76 and vshelper depends on that functionality 1106912257 J * _are_ ~are@gateway-dsl.lihas.de 1106912260 M * _are_ Hi 1106912292 Q * sannes Read error: Connection reset by peer 1106912366 M * Bertl hey torsti76, let's look into that ... 1106912371 M * Bertl _are_: morning! 1106912399 M * we2by Bertl, why can't I run route add default gw ip ? 1106912435 M * Bertl you can, but not inside the vserver (if that is your question) 1106912451 M * we2by ohh 1106912457 M * we2by Bertl, where then? 1106912462 M * torsti76 bertl, i'll try to modify the vshelper script 1106912472 M * Bertl we2by: on the host of course! 1106912497 M * Bertl torsti76: are you sure that this _is_ the reason for the failing script? 1106912530 M * torsti76 from all i tried it seems to be so 1106912551 M * we2by Bertl, /usr/local/etc/vservers/cpg/interfaces/0/ip ? 1106912568 M * torsti76 the thing is: there's no (official) way to get the name of a vserver from it's xid 1106912579 M * torsti76 and that's what needed for vserver restart 1106912612 M * torsti76 but it shouldn't be difficult to accomplish that directly in the script (quick and dirty ;o) 1106912627 M * torsti76 by reading the appropriate values from the state dir 1106912718 M * torsti76 i'll try and report back... 1106912948 M * Bertl torsti76: I guess you got that part wrong ... 1106912951 M * Bertl [root@(none) /]$ vserver-info 10 ID 1106912951 M * Bertl /etc/vservers/MMMM 1106912951 M * Bertl [root@(none) /]$ vserver-info 10 PXID 1106912951 M * Bertl [root@(none) /]$ echo $? 1106912951 M * Bertl 1 1106912984 M * _are_ Bertl: the broken network config yesterday was actually a broken cable. Good enough to state 'link' and not good enought to atcually transfer data. 1106912985 M * Bertl the ID is to identify the vserver (name) the PXID is the Parent XID (in case of hierarchical contexts) 1106913007 M * Bertl _are_: good to know ;) 1106913012 M * torsti76 olymp util-vserver # vserver-info 2 ID 1106913012 M * torsti76 olymp util-vserver # echo $? 1106913012 M * torsti76 1 1106913022 M * Bertl torsti76: is it running? 1106913034 M * Bertl (precisely that is the issue, IMHO) 1106913034 M * torsti76 olymp util-vserver # vserver-stat 1106913034 M * torsti76 CTX PROC VSZ RSS userTIME sysTIME UPTIME NAME 1106913034 M * torsti76 0 57 56.7M 4.9K 1m50s26 1m06s49 11h52m43 root server 1106913034 M * torsti76 2 1 3.9M 401 0m00s00 0m00s00 1h26m20 1106913054 M * Bertl ah, is it legacy? 1106913105 M * torsti76 it was created with vserver -m skeleton ... - version 0.30.196 1106913128 M * torsti76 only thing is, that i had to populate the vdir by hand 1106913165 M * torsti76 there's no .conf file or other old things... 1106913173 M * we2by how do I set the default route for my vserver? 1106913253 M * torsti76 maybe i should start from the beginning ;o) 1106913320 M * Bertl hmm, the skeleton method should 'populate' your config dir ... 1106913335 M * torsti76 yes, it did 1106913348 M * torsti76 i just added interfaces etc. 1106913352 M * Bertl we2by: if you want a different default route for your vserver (than the host has) you have to do some tricks with routing tables ... 1106913410 M * torsti76 i assume that vserver-stat would have to show "zope3" for NAME in CTX 2, right? 1106913440 J * mjung ~madbob@mpii00103.mpi-sb.mpg.de 1106913459 M * Bertl welcome mjung! 1106913462 M * mjung hi all. can you please give me a hint, how to run daemontools in a vserver. 1106913475 M * Bertl torsti76: yes it should ... 1106913559 M * torsti76 hmm, confusing - bertl, if you agree i'd upload a tar.bz2 of the config dir, so you can have a look... 1106913627 M * torsti76 the dir is /etc/vservers/zope3 - there's a file "name" inside, containing the line "zope3"... 1106913633 M * Bertl okay, .. make it so 1106913651 M * we2by Bertl, I ran vserver build -m skeleton 1106913665 M * we2by and I extracted a distro image to /vserver/debian 1106913674 M * we2by what is the next step to do? 1106913686 M * we2by maybe it is great idea to make notes 1106913742 M * torsti76 ouch 1106913810 M * torsti76 at least i found out, why /var/run/vservers.rev was empty yesterday ;o) 1106913849 M * torsti76 \/etc/vservers/zope3/run.rev wasn't a symlink 1106914008 M * Bertl we2by: well, without _other_ options like ip and such stuff, you will only be able to start a vserve without networking .-.. 1106914033 Q * we2by Remote host closed the connection 1106914143 M * torsti76 obviously, run.rev has something to do with vserver-info ... ID 1106914361 M * Bertl hmm .. yep 1106914463 M * torsti76 bertl: http://www.iwm-kmrc.de/zope3.tar.bz2 1106914818 J * dextah ~viktor@ti231120a080-2184.bb.online.no 1106915036 M * Bertl welcome dextah! 1106915165 J * sannes ~ace@home.skarby.no 1106915191 M * dextah Hello Bertl :) im trying to set VSERVERS_ROOT= option to /vserver in my /etc/vservers.conf. ive rebooted and everything.. but still it uses the default /vservers/ dir when i try to run a vserver :/ any idea on what i do to set it right? 1106915287 M * Bertl depending on the tool version (but better in general) you have to specify that at compile time 1106915417 M * dextah hmm ok :) 1106915423 M * sannes morning :) 1106915423 M * dextah must have missed it 1106915439 M * dextah thank you :) 1106915452 M * torsti76 bertl: any clues already? ;o) 1106915575 M * Bertl torsti76: looks good so far .. I'll test it in my setup ... 1106915588 M * torsti76 bertl: thanks! 1106915729 J * we2by ~jinxi@145.116.6.75 1106915907 M * torsti76 bertl: btw. - all this resides on an xfs filesystem, but that shouldn't matter as long as i don't want quotas inside vserver etc., right? 1106915954 J * Pazzo ~thomas@host130-250.pool8172.interbusiness.it 1106916142 M * torsti76 bertl: after deinstalling and reinstalling util-vserver i now have the name in vserver-stat - but nothing else changed 1106916710 J * axu_ ~BOX@62.116.66.2 1106916716 M * axu_ hi folks 1106916731 M * Pazzo hi axu_ 1106916740 M * axu_ hi pazzo :) got something 1106916786 M * axu_ http://www.revolto.at/bddebianvserver.txt :) 1106916810 M * axu_ made that right after you gave me the tips regarding debian install 1106916990 M * Bertl hey Pazzo, axu_! 1106917002 M * axu_ hi bertl :) 1106917401 M * Bertl torsti76: [root@(none) /]$ vserver-stat 1106917402 M * Bertl CTX PROC VSZ RSS userTIME sysTIME UPTIME NAME 1106917402 M * Bertl 0 11 1.9M 285 0m14s16 0m32s75 6m28s68 root server 1106917402 M * Bertl 2 5 7.8M 746 0m03s35 0m07s72 0m12s79 zope3 1106917412 M * Bertl [root@(none) /]$ vserver-info 2 ID 1106917412 M * Bertl /etc/vservers/zope3 1106917434 M * Bertl (after some bashing on the config and adding all your strange mount points ;) 1106917673 M * torsti76 ;o) 1106917683 M * torsti76 so, what did i do wrong? 1106917732 M * torsti76 for vserver-info 2 ID I get: 1106917735 M * torsti76 olymp src # vserver-info 2 ID 1106917735 M * torsti76 /var/run/vservers.rev/2 1106917798 M * Bertl well, the fault can not be in your config ... as it works here 1106917811 M * Bertl the only things I changed are: 1106917823 M * Bertl echo "plain" >/etc/vservers/zope3/apps/init/style 1106917823 M * Bertl echo 3 >/etc/vservers/zope3/run 1106917837 M * Bertl (because my guest isn't gentoo) 1106917856 M * torsti76 ok - what kernel version are you running? 1106917873 M * Bertl 2.6.11-rc2-vs1.9.4-rc4 1106917888 M * Pazzo re 1106917890 M * Pazzo Hi Bertl! 1106917894 T * Bertl http://linux-vserver.org/ | latest stable 1.2.10, devel 1.9.{3,4-rc4}, ng8.12 1106917937 M * Bertl torsti76: I'm no trying to use the reboot function (will take a little my network conenction is really bad) 1106917968 M * torsti76 bertl: ok - don't be hasty ;o) 1106917972 M * Pazzo axu_: great :o) you should put a link this script somewhere on the wiki 1106918139 M * Bertl ahem, looks like papering over debian deficiencies to me ... 1106918147 M * Bertl (no offence meant) 1106918161 M * Bertl cp $VPROCUNHIDE $UTIL_VSERVER 1106918163 M * Bertl $UTIL_VSERVER/vprocunhide 1106918177 M * Bertl that should be done on startup of the host?! 1106918192 M * Bertl # copy vshelper to sbin 1106918193 M * Bertl cp $VSHELPER $UTIL_VSERVER 1106918202 M * Bertl huh? moving around scripts? 1106918247 M * Bertl ::1 ip6-localhost ip6-loopback 1106918253 M * Bertl ipv6 inside a vserver? 1106918272 Q * TheSeer Quit: Client exiting 1106918284 M * sannes Bertl : Are namespaces expensive? Got an idea, was wondering if I could run it by you.. 1106918296 M * sannes (namespaces as in pivot_root) 1106918309 M * Bertl depends .. they create additional dentries of course ... 1106918374 M * sannes I was thinking it might be cool to use it instead of chroot on ssh users.. 1106918391 M * sannes because what I really want is users only be able to see their group home directories.. 1106918435 M * Bertl guess that would work fine, as nobody else will lookup the 'other's' dir 1106918437 M * sannes instead of "linking in" (bind mount/whatever) I could just make a namespace that hides the other directories in /home/grp*/ .. 1106918473 M * torsti76 bertl: with 2.6.x i had the ctx_foo oops problem as seen in Documentation/debug.txt ... 1106918489 M * sannes so I do the hiding explicitly, instead of the other way .. 1106918496 M * axu_ Bertl: hehe, its just what pazzo told me, and what i had to do while installing it :) 1106918504 M * sannes or I could try to educate the users about security.. hehe :> 1106918524 M * torsti76 strangely already upon login to the root server - and not always reproducable 1106918546 M * axu_ bertl: the ipv6 stuff is because i took a standard debian hosts file 1106918563 M * Pazzo axu_: bertl is right (sorry, I didn't read the whole script): ipv6 is useless there, and what about the "cp $VPROC..." and "cp $VS..." lines? dominance / seraph is mantaining a sarge-package with alpha-utils 1106918621 M * Pazzo they are well-done, you can read my discussion with dominance on http://irc.13thfloor.at/LOG/LOG_2005-01-10.txt (end) and http://irc.13thfloor.at/LOG/LOG_2005-01-11.txt (beginning) 1106918647 M * Pazzo no need to compile / copy something around 1106918662 M * axu_ Pazzo: ic, well i took the util-vserver tarball. i think its not good to put this skript into the wicki. it has no checks. and is dangerous i8f you dont change the variables 1106918735 M * Bertl torsti76: please try the 1.9.4-rc4 (just to make sure) 1106918830 M * torsti76 bertl: already at it, will take some minutes... 1106918963 M * Bertl just verified, the reboot from inside works fine too 1106919061 N * Pazzo PazZzzzooo 1106919061 Q * sannes Read error: Connection reset by peer 1106919070 M * PazZzzzooo (time to eat something :-) 1106919115 M * torsti76 bertl: okay, i'll try upgrading the kernel again... 1106919158 M * torsti76 if it still makes oops, i'll blame transtec for their weak servers ;o) 1106919173 M * Bertl no, let's check something first .. 1106919188 M * Bertl could you upload the .config you used for 2.6.x ? 1106919275 M * torsti76 bertl: i'll have to recreate it first - i threw all 2.6.x stuff away, since nothing i tried worked reliably... 1106919323 M * torsti76 (2.6.9-1.9.3, 2.6.10-1.9.3.17 and 2.6.10-1.9.4_rc4) 1106919361 M * torsti76 but i left out everything funny (preempt, regparm etc.) 1106919433 M * Bertl hmm, okay then don't bother uploading, just try with 1.9.4-rc4 1106919547 M * torsti76 bertl: http://www.iwm-kmrc.de/2005-01-20-olymp-linux-2.6.10-vs1.9.4_rc1.config - good boys keep backups ;o) 1106919631 M * torsti76 it has regparm in it, but i also tried without 1106919756 J * TheSeer ~theseer@border.office.salesemotion.net 1106919759 M * TheSeer re 1106919818 M * Bertl welcome TheSeer! 1106919859 N * Doener_zZz Doener 1106919859 M * Doener morning! 1106919879 J * Apollo ~Apollo@caracal.norcomcable.ca 1106920108 M * Bertl morning Doener ! 1106920114 M * Bertl Hello Apollo! 1106920129 M * Apollo morning Bertl 1106920740 M * Bertl torsti76: hmm, config looks fine ... 1106920777 M * torsti76 ok, i took it as a basis for 2.6.11rc2 now 1106920795 M * torsti76 but disabled the legacy api 1106920826 M * torsti76 i'll just rush to the server-lab and reboot... 1106920879 M * Bertl stop! you need the legacy stuff! 1106921361 J * jsambrook ~jsambrook@aelfric.plus.com 1106921375 M * Bertl welcome jsambrook! 1106921911 M * torsti76 bertl: i realized as it came up with 1106921914 M * torsti76 chbind: vc_set_ipv4root(): Function not implemented 1106921917 M * torsti76 ;o) 1106921939 M * torsti76 so, once again with legacy... 1106921945 M * Bertl yeah, obviously I was too slow (or you too fast ;) 1106921991 M * torsti76 good news is: the oops is gone! 1106922064 M * torsti76 again to the catacombs... 1106922773 M * torsti76 bertl: on behalf of the entire crew of the knowledge media research center in tuebingen i want to thank you for your help that finally solved the problem!!! 1106922780 M * torsti76 ;o) 1106922794 M * torsti76 it really WAS the "ancient" kernel version 1106922807 M * Bertl hmm, okay, so what kernel did you try 1.2.10, right? 1106922813 M * torsti76 yes 1106922839 M * Bertl that basically means that 1.2.10 + alpha-util-vserver + vshelper-reboot doesn't work (on new style vservers) right? 1106922869 M * torsti76 i assume so - and suggest to note that on the project homepage 1106922909 M * Bertl I'll verify that in a few minutes here, with your guest, and if so, I'll file a bug report to Enrico 1106922971 M * torsti76 thing is, that vserver-info doesn't work as expected, since the reverse entries in run.rev aren't resolved... 1106922985 M * torsti76 at least as i see it... 1106923042 M * Bertl anyway, so you can add your research center to the happy linux-vserver users now, right? ;) 1106923056 M * torsti76 i can and will! ;o) 1106923107 M * torsti76 and i circumvented bsd jails with that, which would have brought me out of the line of all "my" fine gentoo-servers 1106923148 M * torsti76 in return i'll note my/our experiences on the gentoo-vserver wiki next week 1106923165 M * torsti76 since this is hopelessly out of date 1106923169 M * Bertl excellent! 1106924252 Q * mbucc Ping timeout: 480 seconds 1106924508 Q * BWare Read error: Connection reset by peer 1106924734 P * mjung 1106925284 J * BWare ~bware@212.26.196.41 1106925330 M * torsti76 okay, time to have a weekend-break now... ;o) 1106925340 M * Bertl enjoy your weekend! 1106925343 M * torsti76 seeya - and thanks again, bertl! 1106925360 M * Bertl you're welcome! 1106925363 Q * torsti76 Quit: 1106925711 Q * berni Quit: reboot, brb 1106925783 M * axu_ bertl: wheres this happy linux-vserver users list ? :) 1106925826 M * Bertl http://linux-vserver.org/ 1106925827 M * Bertl http://linux-vserver.org/VServer+Users 1106925863 M * Bertl btw, there is a separate one for companies ... 1106925878 M * Bertl (doing vserver hosting that is) 1106925879 M * Bertl http://linux-vserver.org/VServer+Hosting 1106926044 J * sannes ~ace@home.skarby.no 1106926057 M * axu_ thanks 1106926081 M * Bertl np 1106926179 M * axu_ [the company i work for] we use vserver because our sysadmin forced us to. 1106926185 M * axu_ ;) 1106926201 M * Bertl evil sysadmin ;) 1106926208 M * axu_ thats me :) 1106926238 M * Bertl yeah, I knew ;) 1106926259 M * axu_ Bertl: hehe, have i really been that evil to you ;) 1106926272 M * axu_ i blame the suns ;) 1106926289 M * Bertl LOL 1106926295 M * axu_ btw. they are all shutdown now and will never get online again 1106926548 M * axu_ weekend im coming :) 1106926561 M * axu_ bye bertl, pazzo, doener, folks :) 1106926568 Q * axu_ Quit: Client exiting 1106926999 Q * Val Quit: Bye all, good WE :) 1106927499 P * Apollo 1106927772 J * berni ~berni@2001:1b18:202::2 1106927795 M * Bertl wb berni! 1106928237 M * Bertl okay, folks ... nap attack, back later ... 1106928248 N * Bertl Bertl_zZ 1106928251 Q * _are_ Quit: Disconnecting 1106929209 Q * BWare Ping timeout: 480 seconds 1106930395 Q * ntrs Ping timeout: 480 seconds 1106930555 J * ntrs ntrs@Dardeene-68.188.50.87.charter-stl.com 1106930691 Q * ntrs Read error: Connection reset by peer 1106933801 Q * virtuoso Remote host closed the connection 1106934122 J * virtuoso ~s0t0na@tranq.dorms.spbu.ru 1106935432 Q * sladen Ping timeout: 480 seconds 1106935531 J * sladen paul@starsky.19inch.net 1106935917 J * nish ~nish@220.224.33.85 1106935935 M * nish evening all :) 1106936083 J * Hollow ~bene@home.xnull.de 1106936173 Q * serving Ping timeout: 480 seconds 1106936178 P * Hollow 1106936660 Q * prae Quit: Client exiting 1106937488 Q * nish Ping timeout: 480 seconds 1106939349 Q * duckx Remote host closed the connection 1106939405 J * duckx ~Duck@dyn-83-157-187-223.ppp.tiscali.fr 1106939428 N * Bertl_zZ Bertl 1106939441 M * Bertl evening folks! 1106939598 N * PazZzzzooo Pazzo 1106939601 M * Pazzo hi bertl! 1106939663 M * Bertl morning Pazzo! 1106939700 M * Pazzo morning?? 1106939767 M * Bertl well, I did just wake up, and it seems you did just wake up, so ...? 1106939925 J * ntrs ~ntrs@Dardeene-68.188.50.87.charter-stl.com 1106939968 M * Bertl wb ntrs! 1106940049 M * Pazzo I changed my nick to welcome you with a good-looking one :-) I've always been here, but I was busy with a) hacking horde and b) booting and booting over and over again because of a stragne sata enhanced/combined mode thing. 1106940050 M * Pazzo and no way to access the bios to verify actual setting, the host is something like 1000km's away :-( 1106940128 M * Bertl well, good morning then! ;) 1106940133 M * Pazzo but hacking horde is cool - started today and posted my first bug report http://bugs.horde.org/ticket/?id=1269 *beingproudofmyself* ;-) 1106940289 M * Pazzo Bertl: but the best thing today: Manuel tried a few different kernels with many different lilo / fstab settings on this remote host and managed it to bring it always back up and running... 1106940310 M * Pazzo ...but one hour ago, before leaving the office, he typed halt... 1106940316 M * Pazzo ...on the wrong shell *gg* 1106940318 M * Bertl LOL 1106940407 M * Bertl yeah, had that not too long ago, when I typed shutdown -r now in the wrong window and my workstation rebooted on me ... 1106940978 M * Bertl okay, back later ... 1106940982 N * Bertl Bertl_oO 1106941797 J * prae ~prae@sherpadown.net 1106942138 Q * prae Quit: Pwet 1106942606 J * prae ~prae@sherpadown.net 1106942742 J * DuckMaster ~Duck@dyn-83-157-152-244.ppp.tiscali.fr 1106942887 J * chrish01 ~chrish01@69.90.131.25 1106942895 J * serving ~serving@213.186.174.194 1106943174 Q * duckx Ping timeout: 480 seconds 1106943325 J * Hollow ~bene@home.xnull.de 1106943327 Q * chrish01 Quit: Leaving 1106943539 J * click click@dsl-84-161.aal.tiscali.no 1106943548 P * Hollow 1106943930 Q * ntrs Quit: Leaving 1106944320 J * flock ~restless@l192-117-111-12.broadband.actcom.net.il 1106947729 Q * sannes Ping timeout: 480 seconds 1106947779 M * Snow-Man When you do 'vserver blah stop' what init level does it go to? 1106948391 J * chrish01 ~chrish01@69.90.131.25 1106948658 N * Bertl_oO Bertl 1106948679 M * Bertl evening folks! 1106948740 M * Bertl Snow-Man: depends on the tools and your config 1106948751 M * Bertl hi chrish01! 1106948839 M * chrish01 hi Bertl 1106948854 M * Bertl chrish01: I have a solution for your issues! 1106948860 M * chrish01 sweet! 1106948861 M * Bertl (the howto is wrong ;) 1106948865 M * chrish01 ah hehe 1106948873 M * Bertl let me know when you have time for it ... 1106948897 M * chrish01 right now good for you? 1106948914 M * Bertl sure, no problem! 1106948945 M * Bertl the first step is to modify the vshelper script ... 1106948949 M * chrish01 ok 1106948954 M * chrish01 let me get vmware up quick 1106948957 M * Bertl http://vserver.13thfloor.at/Experimental/NGNET/delta-vshelper-delegate.diff 1106948958 Q * prae Quit: Pwet 1106948972 M * Bertl it's a pretty simple patch, you can apply it by hand if necessary 1106948991 M * chrish01 ok 1106949054 M * chrish01 ok, im up and running :) 1106949084 J * ntrs ntrs@Dardeene-68.188.50.87.charter-stl.com 1106949121 M * Bertl okay either apply that patch to your vshelper or modify it by hand 1106949157 M * chrish01 k, you got a link to a patch? 1106949192 M * Bertl http://vserver.13thfloor.at/Experimental/NGNET/delta-vshelper-delegate.diff 1106949209 M * Bertl wb ntrs! everything fine? 1106949260 M * chrish01 Bertl, apply that to /sbin/vshelper? 1106949281 M * chrish01 nm ... just looked at hte patch :) 1106949285 M * Snow-Man Bertl: Debian install 1106949297 M * Bertl chrish01: yep, precisely, and to the copy in /usr/lib/util-vserver 1106949298 M * Snow-Man alpha utils 1106949306 M * Snow-Man I'm guessing it changing to runlevel 6 1106949319 M * Snow-Man Using sysv init 1106949320 M * Bertl the Flower-Page says: 1106949324 M * Bertl * /etc/vservers/vserver-name/apps/init 1106949329 M * Snow-Man 'default' 1106949335 M * ntrs Bertl, yes everything is ok. 1106949343 M * Bertl # runlevel # 1106949343 M * Bertl The start runlevel. 1106949351 M * Bertl # runlevel.start 1106949351 M * Bertl The start runlevel. 1106949355 M * Bertl # runlevel.stop 1106949355 M * Bertl The stop runlevel. 1106949362 M * Snow-Man Bertl: What's the default? :P 1106949368 M * Bertl ntrs: good to hear ... 1106949372 M * Snow-Man It just says 'default' in that file 1106949373 M * Bertl Snow-Man: I'd say 6 1106949556 M * chrish01 Bertl, upon startup ... i still get: vs_context_state(): (/sbin/vshelper startup 60 ) returned with 256 1106949695 M * Bertl yes, that's fine we have to change a few other things ... 1106949702 M * chrish01 k 1106949737 M * Bertl this patch gives you a hook where you can add delegates to the script 1106949765 M * chrish01 ah 1106949770 M * Bertl IIRC you are using xids below 100, right? 1106949781 M * chrish01 60 for the one context right now 1106949798 M * Bertl yeah, okay, that is fine ... 1106949815 M * Bertl I'm uploading a script in a few minutes which should work as such a delegate ... 1106949828 M * chrish01 awesome 1106949938 M * Bertl http://vserver.13thfloor.at/Experimental/NGNET/startup.sh 1106949978 M * Bertl you copy that to /etc/vservers/.defaults/apps/vshelper-delegate/startup 1106949985 M * Bertl (without the sh) 1106950115 M * Bertl now, on vserver startup this script will be called, you have to adjust the VIP= stuff if you need other IPs 1106950126 M * chrish01 gotcha 1106950136 M * Bertl basically it will use 192.168.0. 1106950153 M * chrish01 will this also work in /etc/vservers//apps/vshelper-delegate/startup? 1106950195 M * Bertl nope, because that is the actual issue, that the vshelper can not figure the vserver at this early stage 1106950204 M * chrish01 oh ic 1106950216 M * Bertl otherwise the method proposed in the howto would work too 1106950219 M * chrish01 what about a post startup script or something? 1106950312 M * Bertl I guess this will be solved sooner or later, when Enrico finds some time to update the tools (should be soon IMHO) 1106950321 M * chrish01 hmm ... my path is correct for hte startup file, but no output to /tmp/startup.log 1106950335 M * chrish01 no interfaces added to context either 1106950374 M * Bertl okay, did you patch both vshelper scripts? 1106950386 M * chrish01 yes 1106950397 M * chrish01 /sbin/vshelper and /usr/lib/util-vserver/vshelper 1106950408 M * Bertl okay, then let's add some debugging for that ... 1106950410 M * Bertl (sec) 1106950416 M * chrish01 np 1106950466 M * Bertl #!/bin/bash -x 1106950466 M * Bertl exec &>/tmp/vshelper.log 1106950466 M * Bertl . /sbin/vshelper 1106950477 M * Bertl put this into /sbin/vswrapper 1106950482 M * chrish01 ok 1106950500 M * Bertl make sure that this and the patched /sbin/vshelper are chmod +x 1106950511 M * Bertl then do echo "/sbin/vswrapper" >/proc/sys/kernel/vshelper 1106950519 M * chrish01 should /sbin/vswrapper be a new file? 1106950629 M * Bertl yep /sbin/vswrapper is the three lines above, starting with #!/bin/bash -x 1106950635 M * chrish01 k done 1106950797 M * chrish01 do i need to do anything else? or is wrapper called [ -x 1106950842 M * Bertl did you do the echo? 1106950856 M * Bertl echo "/sbin/vswrapper" >/proc/sys/kernel/vshelper 1106950874 M * chrish01 oh, i missed that :) 1106950886 M * Bertl after that stop/start your vserver, and look into /tmp/vshelper.log 1106950907 M * Bertl you should see some (probably non conclusive) lines ending with a few exec ... 1106950993 M * chrish01 grr ... it gives me error saying that /sbin/vswrapper isnt the same as util-vserver's vshelper 1106951017 J * micah ~micah@pool-70-20-39-218.man.east.verizon.net 1106951033 M * Bertl welcome micah! 1106951044 M * micah thanks Bertl! Good to see you :) 1106951045 M * Bertl chrish01: okay, that's fine ... sec 1106951075 M * Bertl touch /etc/vservers/.defaults/apps/vshelper/warning-disabled 1106951083 M * Bertl that should silence this ... 1106951093 M * Bertl micah: good to see you too ... 1106951099 M * chrish01 yea just did that :) 1106951154 M * micah I am trying to decide which kernel to use on this vserver machine, it doesn't look like the 2.6.9 1.9.3 patch doesn't apply to 2.6.10. 1106951177 M * Bertl nope, but the 1.9.4-rc4 patch does, even for 2.6.11-rc2 ;) 1106951184 M * micah I am concerned about using 2.6.9 because there supposedly a security problem in 2.6.9, right? 1106951202 M * Bertl http://vserver.13thfloor.at/Experimental/RC-1.9.4/ 1106951240 M * Bertl (which reminds me that I wanted to upload rc4 for 2.6.10 and 2.6.9 too) 1106951251 M * micah Bertl: i am also concerned about using cutting edge patches because this is supposedly a production server... i could use the stable 1.2 vserver patch, but I'd like to use the newer version if possible. 1106951316 M * micah maybe there is no solution :) 1106951341 M * Bertl ntrs is testing it (1.9.4-rc4) for hmm ... almost a day now, maybe you want to ask him? 1106951373 M * micah i am not sure what the security hole is in 2.6.9, it might not be applicable 1106951395 M * ntrs yes, I was just about to post here 1106951400 M * Bertl well, I have two patches lying around fixing the holes ;) 1106951428 M * ntrs 2.6.11-rc2 with 1.9.3-rc4 is up and running for a full day now on a fully loaded server with absolutely no problems 1106951446 M * ntrs actually, the server is much more responsive and the loadavg is way better than with the previous version 1106951461 M * ntrs I meant 1.9.4-rc4 1106951488 M * micah hmm 1106951491 M * ntrs This is in a production environment as well with about 35 vservers running 1106951521 M * ntrs the bottom line is, if your server crashes/oopses/panics with the vserver patch, it will probably do the same with mainline alone 1106951527 M * Bertl from the kernel patch point of few I can add: 1.9.4 fixes some issues we had with 1.9.3 (and the 2.6.11 kernel will fix most issues with the early 2.6.10 release) 1106951539 M * ntrs It's all about the hardware and how well it 1106951543 M * micah what is left before 1.9.4 is the next samhain? 1106951546 M * ntrs is supported by mainline 1106951563 M * chrish01 Bertl, i have vshelper logging to /var/log/vshelper.log. from its output it seems that our startup should be running 1106951577 M * Bertl micah: we are fixing tiny bugs and cleaning up code ... that's all to a 1.9.4 1106951595 M * chrish01 wait .... check +x 1106951601 M * micah Bertl: of course, 2.6.12 will fix bugs in 2.6.11, and 2.6.13 will fix bugs in... :) 1106951623 M * Bertl (probably 1.9.4-rc4 get's released tomorrow or the day after as 1.9.4) 1106951648 M * Bertl micah: sure, but in the 2.6.x game there are stable and less stable kernels ... 1106951663 M * chrish01 Bertl, ok we are good now :) 1106951672 M * Bertl chrish01: excellent! 1106951688 Q * dextah Ping timeout: 480 seconds 1106951689 M * micah Bertl: hmm that is true... but 2.6.11 is not out yet, so I can either wait for that or take the risk of a pre-11 release being less stable 1106951694 M * Bertl micah: 2.6.8 was stable, 2.6.9, 2.6.10 less stable ... it looks like 2.6.11 will become more stable 1106951716 M * Bertl (at least there are more fixes than features getting in right now) 1106951742 M * Bertl IMHO the best decision would be to wait for 2.6.11 + vs1.9.4 if you have that time 1106951743 M * ntrs micah, if you use some mainstream hardware you should not have a problem with any kernel. 1106951760 M * micah i feel comfortable with using 1.9.4-rc4 from what you guys are saying, but I am not sure about using 2.6.10-ac or 2.6.11-pre4 or something 1106951770 M * ntrs We have tried almost every possible kernel and they all worked just fine with or without the vserver patch 1106951781 M * micah Bertl: I agree 1106951791 M * Bertl micah: I can understand that, but actually it's 2.6.11-rc2 1106951830 M * ntrs of course, except in situations when there was some usability bug in vserver, which Bertl promptly fixes every single time :) 1106951834 M * Bertl (although according to Linus rc stands for 'ridiculous count') 1106951864 M * chrish01 Bertl, i cant ping eth0 from en0 though 1106951868 M * micah Bertl: hmm maybe I could use 2.6.11-rc2 with 1.9.4-rc4 and then update to 2.6.11 1.9.4 when they are "released" 1106951875 M * Bertl chrish01: that's fine ... 1106951903 M * Bertl micah: sure, not much will change I guess .. 1106951930 M * Bertl chrish01: can you configure the networking so that you could reach the _real_ host (outside the vm) 1106951938 M * chrish01 ah ok 1106951970 M * chrish01 do i need to set any routes? 1106951979 M * Bertl the separate servers (and the host is one of them, just a special one) do not know/see each other 1106951994 M * chrish01 ah ok great 1106952000 M * Bertl so yes, you do the normal config including the routing 1106952045 M * micah Bertl: do you find the -ac patches to be more stable than something like -rc2? 1106952119 M * chrish01 Bertl, when i try to ping my host (outside of vmware), i get "connect: Invalid argument" 1106952174 M * Bertl micah: Alan is doing a good job in collecting the patches, but I guess less people are testing that stuff right now .. so it's probably equal in stability 1106952180 M * chrish01 to clarify that ... from vserver:60 to real host ip outside of vmware 1106952207 M * Bertl chrish01: what kernel is that atm? 1106952228 M * chrish01 outside of vmware is 2.6.8-717.inotify.4-default 1106952249 M * Bertl inside vmware I meant ... 1106952261 M * chrish01 vserver is 2.6.11-rc2 with 1.9.4 and ngnet 8.12 1106952286 M * Bertl okay, could you show me the 'ip addr ls' and 'ip route ls' output please? 1106952296 M * Bertl (inside the vserver) 1106952306 M * chrish01 from context 0? 1106952333 M * micah chrish01: what is ngnet? 1106952349 M * chrish01 micah, some really cool shit :) 1106952394 M * chrish01 micah, http://linux-vserver.org/NGNET-Testing-HOWTO 1106952433 M * chrish01 192.168.0.0/24 dev eth0 proto kernel scope link src 192.168.0.29 1106952433 M * chrish01 default via 192.168.0.2 dev eth0 1106952507 M * Bertl okay, do ifconfig lo 127.0.0.1 1106952520 M * Bertl (to get your lo up and running ;) 1106952547 M * Bertl micah: ngnet is virtualized networking for linux-vserver 1106952564 M * chrish01 Bertl, already did 1106952577 M * chrish01 oh wait ... you mean outside context 60 :) 1106952590 M * chrish01 hmm it is already 1106952599 M * Bertl no I meant inside ... 1106952602 M * micah Bertl: ngnet is what solves the problem of not having a separate IP for each vserver? (which you can do, but is hard)? 1106952632 M * Bertl hmm, no, actually that is easier solved with SNAT (on the current setup) 1106952636 M * chrish01 Bertl, i cant get iproute2 installed until i get networking working :) 1106952642 M * chrish01 Bertl, nod 1106952657 M * micah chrish01: hmm that page shows a howto, but not much description 1106952679 M * micah Bertl: virtualized networking sounds cool, I am trying to understand what that means :) 1106952690 M * Bertl yes, and the howto is wrong too, but it gives a first impression how blleding edge that is .. 1106952696 M * chrish01 micah, segmentation of routing tables and devices per context 1106952746 M * Bertl chrish01: iproute2 is missing where? inside the vserver? 1106952754 M * micah wow 1106952778 M * Bertl micah: the basic idea is to completely isolate the contexts (network wise) 1106952805 M * Bertl so they use/share common structures and functionality, but do not see each other in any way ... 1106952815 M * chrish01 Bertl, yes ... debootstrap didnt install iproute2 by default 1106952873 M * Bertl micah: in addition to that, there is a vnet device, which replace lo/eth0 inside a context and 'sends' the packets to the real devices (after permission checks, if configured to do so) 1106952910 M * Bertl chrish01: ok, no problem, then let's see the output of ifconfig -a and route -n (but please upload it somewhere) 1106952927 M * Bertl (from inside the context, that is) 1106952974 Q * Pazzo Quit: Download Gaim: http://gaim.sourceforge.net/ 1106953023 M * chrish01 Bertl, http://pastebin.com/234705 1106953026 M * Bertl tx 1106953060 M * Bertl hmm, 197? 1106953074 M * Bertl shouldn't that be 60? 1106953083 M * chrish01 yea, i took care of that properly outside as well with iptables :) 1106953114 M * Bertl hmm .. sure you got the iptables right? 1106953125 M * Bertl let's see iptables -t vnet -L 1106953132 M * chrish01 iptables -t vnet -A PREROUTING -d 192.168.0.197 -j VNET --vnet 601 1106953137 M * chrish01 and OUTPUT -s ... too 1106953155 M * Bertl and the output of /proc/vnet please ... 1106953178 M * Bertl and what ip are you trying to ping from inside? 1106953214 M * chrish01 trying to ping 192.168.0.191 (vmware host machine) 1106953216 M * chrish01 http://pastebin.com/234707 1106953271 M * Bertl okay, but that actually looks good ... 1106953288 M * Bertl seems to me the ping did at least leave the host ... 1106953292 M * chrish01 yea ... im usually pretty good with the networking part =P 1106953299 M * Bertl TX packets:27 1106953316 M * Bertl let's try a ping 127.0.0.1 first (inside the vserver) 1106953330 M * chrish01 works fine 1106953333 Q * dsanta Quit: leaving 1106953349 M * chrish01 although not in the vserver:0 1106953355 M * Bertl ah, did you disable the networking for that vserver (from the util-vserver config side)? 1106953365 M * chrish01 no 1106953375 M * chrish01 =S not quite sure how to do that anyway 1106953389 M * Bertl okay, stop the vserver and disable any networking ... 1106953395 M * Bertl (IIRC, that is described in the howto, sec) 1106953434 M * Bertl nope is not ... well ... 1106953445 M * Bertl # /etc/vservers/vserver-name/interfaces/iface 1106953452 M * Bertl we want to cleanup that ... 1106953493 M * Bertl so basically just move it somewhere else and check that the vserver --debug lri60 start does not use chbind with any --ip option 1106953543 M * Bertl ah, and your vm-host also needs to bring up eth0 and lo (just to make sure) 1106953561 J * Borg_Number_One ~borg_@p5088775A.dip0.t-ipconnect.de 1106953570 M * Borg_Number_One Hi Sladen 1106953574 M * Bertl morning B#1 1106953575 M * Borg_Number_One Hi guys 1106953578 M * chrish01 i can get out to internet fine from vserver:0 1106953596 M * Bertl okay, excellent ... 1106953613 M * chrish01 Bertl, /etc/vservers/lri60/interfaces is empty btw 1106953627 M * Borg_Number_One Bertl, do you know "Wuiti" the SID-Composer? 1106953646 M * Bertl B#1: no, but I already answered that ;) 1106953685 M * Borg_Number_One ...where are Sladen and mjg59? 1106953696 M * Borg_Number_One I have BIOS-news for them 1106953706 M * Bertl they got assimilated ;) 1106953720 M * Borg_Number_One by another Borg? 1106953729 M * Bertl well, probably .... 1106953739 M * Borg_Number_One 7/9 1106953756 M * Bertl IIRC, she isn't in that business anymore ... 1106953803 M * Borg_Number_One ...a new vmware is out.... vmware 5 Release canditate with D3d-support. 1106953818 M * Bertl I'm using QEMU ... 1106953839 M * Borg_Number_One Now Linux/Winshit is able to use emulated/simulated/wrapped D3D-hardware directly. 1106953841 M * chrish01 yea, i just dloaeded that 1106953859 M * chrish01 in fact, i will restart vserver soon bertl with that :) 1106953880 M * Bertl cool, d3d support for linux-vserver ;) 1106953886 M * chrish01 Borg_Number_One, they also removed Debug symbols and shit 1106953902 M * Borg_Number_One ...VPC did not know this problems like: "How to emulate D3D/OGL?" VPC emulated a whole TRIO....VGA-card 1106953955 M * Borg_Number_One @chris01, I could successfully modify the VMware BIOS again...now I have German Menu-interface, more features in the emulated PhoenixBIOS, another BOOT-Logo etc.... 1106953995 M * chrish01 oh nice. im working on getting myself a free copy through a friend of a friend that works there 1106954046 M * Borg_Number_One I am thinking about to translate whole vmware to German... :) VMware.com already thinking about to let me work for them. :) 1106954073 M * chrish01 nice 1106954090 M * Bertl congrats! 1106954114 M * chrish01 alex gravely works there. he lived with a friend of mine (todd berman) for the last few months 1106954463 M * Bertl chrish01: okay, so the ping fails? 1106954473 M * Bertl (if so, could you strace it for me?) 1106954480 M * chrish01 yea. from context:0 i cant ping 127.0.0.1 even though it IS up 1106954505 M * Bertl hmm, your ip addr ls didn't show lo, btw 1106954506 M * chrish01 wait ... one sec 1106954526 M * chrish01 ok good there now too 1106954538 M * chrish01 trying to do too many things at once :) 1106954544 M * Bertl ;) 1106954670 M * chrish01 Bertl, ok, so if i bring up vserver:60 and enable lo in it ... lo in context:0 goes down 1106954681 M * Bertl really? 1106954685 M * chrish01 =S yea 1106954696 M * chrish01 well, its *up*, but doesnt talk 1106954710 M * Bertl fascinating ... 1106954729 M * Bertl okay, the failing ping from inside, could you do an strace for that? 1106954747 M * chrish01 how do i do an strace? 1106954770 M * Bertl strace -fF -o ping.trace ping ... 1106954821 M * chrish01 garrr... no strace in context 1106954858 J * jmp jmp@Montreal.safe.ca 1106954912 M * chrish01 what is strace part of? 1106954951 M * jmp lets say I have 2 sendmail running each one on differente vserver, both try to get 127.0.01, what are 1106954967 M * jmp suggestion to change sendmail.cf?? 1106954976 M * Bertl welcome jmp! 1106954979 M * jmp thanks 1106954998 M * micah bye all! 1106955001 M * micah talk to you later 1106955002 Q * micah Quit: leaving 1106955020 M * Bertl it's fine if they 'try' to get 127.0.0.1, as long as they don't insist on using 127.0.0.1 1106955052 M * jmp sendmail is using 127.0.0.1 for the "internal" mail exchange 1106955071 M * Bertl the vserver will 'remap' that to the first assigned ip 1106955082 M * jmp agree... 1106955086 M * jmp 2 sec 1106955269 M * jmp so the first assigned IP shouldn't be a public IP as I want to keep port 25 for another SMTP interface 1106955286 M * Bertl for example ... 1106955289 M * jmp something like 10.1.0.1 1106955305 M * Bertl but that might give you other issues ... 1106955328 M * Bertl IMHO the best solution is to use a private ip only and SNAT the public one 1106955381 M * jmp the public one need to be accessed from outside 1106955394 M * jmp (I want to set up a small SMTP firewall) 1106955441 M * chrish01 Bertl, http://people.mosaix.net/chris/private/ping.trace 1106955442 J * ntrs_ ntrs@Dardeene-68.188.50.87.charter-stl.com 1106955503 M * Bertl tx 1106955567 M * Bertl chrish01: grep Cap /proc/self/status inside your vserver? 1106955569 M * jmp what is the context for ping.trace? 1106955595 M * chrish01 jmp: 60 1106955619 M * chrish01 one sec Bertl, need to update vmware config quick for new release 1106955639 M * Bertl jmp: JFYI: it is with ngnet 8.12 1106955733 M * jmp (my mistake was understanding ping.trace was related to SNAT) 1106955883 Q * ntrs Ping timeout: 480 seconds 1106955894 M * chrish01 Bertl, CapInh: 00000000000000000 CapPrm: 0000000000d44c34ff CapEff: 00000000d44c34ff 1106955894 M * Bertl jmp: okay, did you already try to use for example 10.1.0.1 for vs1 and 10.1.0.2 for vs2 1106955926 M * Bertl and use -j SNAT --source-to for certain ports/configs 1106955937 M * jmp I need to sort out this, you know I try to check an RPM (I am preparaing) 1106955949 M * Bertl chrish01: okay, looks fine, what does your ping report? 1106955961 M * chrish01 nothing ... just 100% failed 1106955978 M * jmp which assign 127.0.0.2 to SMTP (to check ralying question), And I try to come up with 1106955979 M * chrish01 Bertl, ill tcpdump at host quick to see what i can find 1106955979 M * Bertl ah, okay, so the packets leave, and nothing comes back, right? 1106955983 M * chrish01 yes 1106956006 M * jmp a solution on vserver (as portable as posible), and using 127.0.0.0/8 was very conveniente 1106956008 M * Bertl jmp: the 127.x.x.x addresses are special, if possible avoid them 1106956035 M * Bertl (this will be different with ngnet btw ;) 1106956061 M * jmp do you know how fare (in time) ngent is from a fully private 'local loop' implementation?? 1106956265 M * chrish01 Bertl, if i bring down and back up the lo in context:0, both work fine (0 & 60) 1106956326 M * Bertl jmp: it is already working, but I would not suggest to use ngnet yet ... too experimental 1106956359 M * jmp bertl: right now I am 2.6.10 + 1.9.4 rc3.... 1106956367 M * jmp should it be working? 1106956425 M * Bertl ngnet is an extra patch ontop of that ... 1106956439 M * jmp Ach So! 1106956459 M * jmp what do you sugget me to take? 1106956468 M * Borg_Number_One I am back from Celebrity Deathmatch. :) 1106956491 M * chrish01 jmp, ngnet is not for the faint hearted. or servers that need to be stable anytime soon 1106956539 M * jmp for now, I am experimenting 1106956548 M * jmp so it is really the time 1106956549 M * chrish01 ngnet looks very promising 1106956566 M * chrish01 and Bertl could definately use the bug testing and such 1106956738 M * jmp thei afternoon tried 2.6.11 + diff-2.6.11-rc2-vs1.9.4-rc3-ng8.12.diff but got complain from 1106956738 M * Borg_Number_One is someone currently running vmware and want to test my modified BIOS? :) 1106956752 M * Borg_Number_One is someone currently running vmware v5 rc and want to test my modified BIOS? :) 1106956769 M * chrish01 i am, but i dont know how to read german ... yet =P 1106956771 M * jmp patch, did I missed something?? 1106956793 M * Bertl jmp: you have to use a kernel config very close the the available for now