1117152000 M * Bertl well, that's the problem with non native speakers ;) 1117152034 M * ml yep, with /me as well ... 1117152039 M * Bertl will change it to something more 'shocking' .. thought EXPERIMENTAL would be enough ... 1117152073 M * Bertl but obviously folks keep disabling it anyway ;) 1117152074 M * daniel_hozac EXPERIMENTAL has lost its meaning ;) 1117152119 J * mountie ~mountie@CPEdeaddeaddead-CM000a739acaa4.cpe.net.cable.rogers.com 1117152128 M * Bertl terr: I'm too tired for tonight ... please do as I asked you, and post the stuff to the ML ... will look at it tomorrow ... 1117152134 M * ml How about "enable new NGNET API ... which will break your installations with util-vserver older than " 1117152164 J * rs ~rs@imhotep.rhapsodyk.net 1117152169 M * Bertl hah, you like such things? well, I don't ... and for several reasons 1117152195 M * Bertl - a) nobody can guarantee that version xyz in the future _will_ actually support it 1117152215 M * Bertl - b) that will only result in folks asking where to download version xyz 1117152238 M * daniel_hozac and the NGNET API is still separate, isn't it? 1117152241 M * Bertl - c) it doesn't enable the the new NGNET API, which isn't there yet ;) 1117152281 M * Bertl daniel_hozac: yep, it is ... 1117152287 M * daniel_hozac i have to agree with ml though, the help text is fairly ambiguous 1117152298 M * ml Ad c) why is it "config VSERVER_NGNET" then? :-) 1117152316 M * daniel_hozac preparing for the future ;) 1117152319 M * terr Bertl: OK, I'll investigate the pastebin.com procedure, for next time. 1117152329 M * Bertl should I call it VSERVER_NO_LEGACY_NETWORKING ? 1117152350 M * daniel_hozac isn't that setting redundant though? 1117152354 M * Bertl terr: ML will do fine ... 1117152361 M * daniel_hozac since there's already VSERVER_LEGACYNET 1117152383 M * ml Well I don't really care how the CONFIG_thing is called. But you should explain what is "legacy". 1117152388 M * Bertl daniel_hozac: you will not be able to configure VSERVER_LEGACYNET 1117152397 M * daniel_hozac oh. 1117152419 M * Bertl it's a simple but efficient way to negate an option 1117152426 M * ml Becaue marking "legacy" something that is needed for the newest shiniest util-vserver is ... err confusing. 1117152450 M * daniel_hozac that's been the case for basically all 2.6 releases though. 1117152452 M * Bertl the newest shiniest util-vserver is quite old and outdated ;) 1117152481 M * ml Honestly, that's not the end-user problem ;-) 1117152493 M * Bertl but I see the issue there .. and I'll rephrase the option 1117152543 M * ml BTW I use the util-vserver CVS checkout from savannah. Is that outdated? 1117152552 M * ml Where to get a better version? 1117152558 M * Bertl good question ;) 1117152577 M * Bertl anyway, off to bed now ... more tomorrow ... 1117152585 N * Bertl Bertl_zZ 1117152601 M * ml Good night :-) 1117153457 J * ciphernaut ~a@61.88.18.130 1117153529 J * dvhart_ ~dvhart@pool-71-111-115-8.ptldor.dsl-w.verizon.net 1117153533 Q * yarihm Quit: Leaving 1117153848 P * terr 1117155649 J * eXplasm2 explasm@p549FF39F.dip.t-dialin.net 1117156087 Q * eXplasm Ping timeout: 480 seconds 1117158420 J * Hollow ~Hollow@home.xnull.de 1117161787 Q * rs Quit: rs 1117169270 Q * DaPhreak Quit: leaving 1117169327 J * DaPhreak ~phreak@lms.rz.uni-greifswald.de 1117169515 J * DaPhreak_ ~phreak@lms.rz.uni-greifswald.de 1117169551 Q * DaPhreak_ Quit: 1117169635 Q * DaPhreak Quit: leaving 1117169670 J * DaPhreak ~phreak@lms.rz.uni-greifswald.de 1117177060 J * virtuoso_ ~s0t0na@80.253.205.251 1117177071 Q * virtuoso Read error: Connection reset by peer 1117177624 Q * virtuoso_ Read error: Connection reset by peer 1117177633 J * virtuoso ~s0t0na@80.253.205.251 1117178420 Q * SNy Ping timeout: 480 seconds 1117178519 Q * cereal Ping timeout: 480 seconds 1117178584 J * cereal ~cereal@217.20.124.153 1117178608 J * SNy ~mfr@bmx-chemnitz.de 1117179138 N * Bertl_zZ Bertl 1117179149 M * Bertl morning folks! 1117179558 N * Doener_zZz Doener 1117179570 M * Doener morning 1117179610 M * Bertl hmm, pre-dentist? 1117179637 M * Doener past-dentist ;) 1117179655 M * Bertl and, feeling acceptable? 1117179671 M * Doener not feeling anything in my mouth... 1117179696 M * Hollow morning Bertl, Doener 1117179704 M * Bertl hey Hollow! 1117179714 M * Doener hi Hollow 1117179717 M * Bertl Doener: so a good morning to you then .. for now ;) 1117179725 M * Doener heh ;) 1117179738 M * Hollow i just added vnet-0.03 to portage 1117179747 M * Bertl which one? 1117179757 M * Hollow http://vserver.13thfloor.at/Experimental/NGNET/vnet-0.03.tar.bz2 1117179782 M * Bertl ah, good, Doener I updated the syscall interface for that 1117179798 M * Bertl otherwise it's the version you adapted 1117179800 M * Hollow yup, and i saw you can remove interfaces now... 1117179863 M * Bertl hmm, that's new? ;) 1117179907 M * Hollow i didn't know ;) 1117180089 M * Bertl bool "Disable Legacy Networking Kernel API" 1117180097 M * Bertl This disables the legacy networking API which is required 1117180097 M * Bertl by the chbind tool. Do not disable it unless you exactly 1117180097 M * Bertl know what you are doing. 1117180109 M * Bertl does this sound scary enough? 1117180152 M * Doener yup 1117180198 M * Hollow what's the non-legacy app for chbind? 1117180209 M * Doener vnet ;) 1117180217 M * Hollow ok :P 1117180230 M * Bertl vnet will be the non legacy API but probably without chbind 1117181671 J * prae ~prae@ezoffice.mandriva.com 1117181680 M * Bertl morning prae! 1117181689 M * prae Hi Bertl 1117181721 M * prae DaPhreak: compile is ok and system seems to be stable 1117181770 M * prae DaPhreak: I haven't seen any errors yesterday 1117181829 M * DaPhreak great :) 1117181846 M * DaPhreak i think Hollow does some more testing ;) (hopefully) 1117181863 M * DaPhreak i'm gonna test it myself at home in the afternoon 1117181893 M * Bertl vs2.0-rc2 + ? 1117181928 M * prae If I don't see any freeze, I test your patch into three production servers 1117181937 M * prae Bertl: vs + grsec 1117181950 M * Bertl what about BME? 1117181961 M * prae BME ? 1117181964 M * prae what's this ? 1117181975 M * Bertl ro --bind mounts 1117181988 M * prae aahh ok 1117181990 M * DaPhreak yeah bertl ;) 1117181993 M * DaPhreak it's included :D 1117182000 M * Bertl thought so ... 1117182004 M * prae hmmm :) 1117182044 M * DaPhreak $ quilt series -v 1117182044 M * DaPhreak + patches/linux-2.6.11-2.6.11.10.patch 1117182044 M * DaPhreak + patches/patch-2.6.11.10-vs2.0-rc2.patch 1117182044 M * DaPhreak + patches/delta-bme-feat01.patch 1117182044 M * DaPhreak = patches/grsecurity-2.1.5-200505121617.patch 1117182067 M * prae :) 1117182072 M * prae quilt ? 1117182090 M * Bertl a patch stacker ... 1117182092 M * DaPhreak yeah patchmanagment .. (Hollow has to be blamed ;P) 1117182104 M * DaPhreak s/managment/management/ 1117182121 Q * cryo Ping timeout: 480 seconds 1117182348 M * prae hmmm... 1117182354 M * prae it's convivial, quilt ? 1117182459 M * Hollow quilt is great :) 1117182462 M * prae hmmm, yes, seems to be great :) 1117182948 J * rs ~rs@imhotep.rhapsodyk.net 1117183161 Q * rs Quit: 1117183672 Q * alexx Quit: Bye 1117185154 J * rs ~rs@staff.lycos.fr 1117185244 M * FaUl moin 1117185282 M * Bertl morning FaUl! 1117185892 M * FaUl Bertl: ok, when do you expect to have time for looking into that v6-kernel-code. i personally would look into that iptables source - i feel much comfortable in the userland :-) 1117185986 M * Bertl hmm, okay, you know the iptables patches? 1117186025 M * FaUl not yet, but i'll try to read them 1117186044 M * Bertl basically we need a similar VNET tagging and such for ipv6 1117186557 M * FaUl DaCa: forget this, my cat :-) 1117186595 M * FaUl Bertl: well, the code does'nt look so difficult though 1117186611 M * Bertl yeah, it just needs to be done ;) 1117187657 M * FaUl hmm, is this iptables-vnet-matching support required? 1117187675 M * Bertl yup, otherwise you won't receive anything 1117187681 M * FaUl hmm 1117187904 J * cryo ~say@212.86.243.154 1117187916 M * Bertl morning say! 1117188231 M * FaUl Bertl: hmm, looks realy quite simple 1117188231 Q * hvd Read error: Connection reset by peer 1117188261 M * FaUl seems that i nearly can do copy&paste most of the time :-) 1117188841 M * FaUl ok, ill try to patch ip6tables this evening 1117188856 M * Bertl great! will look into the kernel code then ... 1117189704 J * witchdoc ~witchdoc@d463c3f1.datahighways.de 1117189709 M * witchdoc hi all 1117189772 M * witchdoc i am reading the archive of the mailinglist and now i am confused about the util-vserver 1117189774 M * Bertl hey witchdoc! 1117189802 M * witchdoc hi bertl :-) 1117189832 M * witchdoc is the "new" home of the util-vserver http://utilvserver.openfoundry.org/ ? 1117189845 M * Bertl no 1117189870 M * witchdoc or is that an debian fork? it confused me a little 1117189901 M * Bertl no, it's a boiling pot for experimental stuff 1117189947 M * witchdoc for the experimental tree? 1117189961 M * witchdoc aka alpha+util-vserver ? 1117190057 M * id witchdoc, i guess experimental alpha-util-vserver .... imho the std alpha-util-vserver is located on savannah.org 1117190061 M * id Hi Bertl 1117190067 M * id hello #vserver 1117190134 M * Bertl hey id! 1117190323 M * witchdoc hmm. the vserver-files are placed here and there :-( and i find the feature to "force" vserver things useful. 1117190350 M * witchdoc but thats okay, bookmarks are my friend there 1117190809 Q * cryo Ping timeout: 480 seconds 1117191452 M * witchdoc thanks id for explaining. i read the complete thread now and understand. 1117191499 M * id witchdoc, you are welcome 1117191674 J * cryo ~say@212.86.243.154 1117192186 Q * cryo Ping timeout: 480 seconds 1117192271 J * cryo ~say@212.86.243.154 1117194147 N * id id_lunch 1117194431 M * Vudumen hi allz 1117194436 M * Vudumen Bertl: are you there? 1117194573 M * Bertl nope! ;) 1117194609 M * Vudumen :) 1117194666 M * Vudumen well on this weekend i'd like to run a memtest on the machine i tol you about and then it's available for you if you want to use it 1117194691 M * Bertl great! 1117194805 M * Bertl Vudumen: how long do you plan to provide that machine? 1117194826 M * Vudumen well we've got this from sun to sell them i think it's for 3 months at least 1117194845 M * Bertl excellent, how much memory/disk space does it have? 1117194867 M * Vudumen but to be honest. itcould be 3 months, but it's possible that sometimes we have to change the machine 1117194875 M * Vudumen but for the same hardware with moving disks 1117194920 M * Vudumen it's possible that when we will have eletricity in the final rack we change the machine to v40z bec. v40zs will never be sold i think :) 1117194934 M * Bertl heh ;) 1117194973 M * Vudumen currently i can give you this only :( but it's posbbile that me and a colleague sometime will go to you (if you live in austria :) to drink a beer with you :) 1117194995 M * Bertl yeah, where are you folks? 1117195006 M * Vudumen in hungary :) 1117195021 M * Bertl well, that's not too far ... 1117195034 M * Vudumen well i saw that some export_symbols are missing in ngnet. that's because ipt_VNET cannot be used as a module. am i right? 1117195069 M * Bertl hmm, actually I didn't try yet, but I'll clean that up soon, because I'm adding the ipv6 stuff anyway 1117195105 M * Vudumen fine :) now i try with compiling these modules into the kernel 1117195133 M * Vudumen and no i go to smoke a cigarette until the kernel compiles (my test station is a 2.4 celeron :P) 1117195707 M * Bertl okay, off now ... back later 1117195713 N * Bertl Bertl_oO 1117196424 Q * lilo Ping timeout: 480 seconds 1117196632 J * lilo ~lilo@lilo.usercloak.oftc.net 1117196800 J * O ~rap@62.84.75.162 1117196872 P * O 1117197209 J * monrad ~monrad@213083190130.sonofon.dk 1117197693 J * fishing fishing@70.97.52.231 1117197727 M * Vudumen which capatibilities do i need in the VPS (Vserver) to be able to set up network interfaces with ifconfig? 1117197742 P * fishing 1117197856 J * knoppix_ ~knoppix@dsl-082-082-080-248.arcor-ip.net 1117198030 M * daniel_hozac Vudumen: you shouldn't need any capability if you're using NGNET, AFAIK. 1117198105 M * Vudumen well with ngnet i cannot assign any addresses 1117198115 M * Vudumen and i cannot bring up the interface with ifconfig en0 up 1117198118 M * Vudumen or the same for lo 1117201650 M * Vudumen how the hell i can give NET_ADMIN cap to the vserver? /etc/vservers/*/bcapabilities doesn't work :/ 1117202632 Q * rs Quit: rs 1117203564 J * meebey_ meebey@booster.qnetp.net 1117203701 M * TheSeer daniel_hozac: did you get my "comaplins" yesterday? 1117203705 M * TheSeer complains even 1117204077 Q * meebey Quit: moved to different IRC host 1117204100 N * meebey_ meebey 1117204271 Q * albeiro Ping timeout: 480 seconds 1117204629 M * eyck how dare you, complaining.. pfeh 1117204731 M * daniel_hozac TheSeer: i just saw you say it didn't work :) 1117204741 M * TheSeer it's cycle-booting 1117204773 M * TheSeer e.g. you see the first few lines of a typical linus boot 1117204778 M * TheSeer like maybe half the screen 1117204787 M * TheSeer then it's blank again and the system hard-boots 1117204796 M * daniel_hozac hmm. 1117204808 M * daniel_hozac does 2.6.11-1.27_FC3 work? 1117204835 M * TheSeer dunno ;> 1117204859 M * TheSeer my smp2.6.11.5-vs1.9.5 works ;> 1117204868 M * TheSeer so i stuck with it for now 1117208010 J * ntrs ~ntrs@Dardeene-68.188.50.87.charter-stl.com 1117208017 Q * ntrs Quit: 1117208649 J * rs ~rs@mon75-8-82-230-181-39.fbx.proxad.net 1117209493 J * Doener` ~doener@p548772ED.dip.t-dialin.net 1117209854 J * ntrs ruzin@Dardeene-68.188.50.87.charter-stl.com 1117209859 Q * ntrs Quit: 1117209928 Q * Doener Ping timeout: 480 seconds 1117209985 Q * tchan Quit: leaving 1117210021 J * albeiro albeiro@albeiro.usercloak.oftc.net 1117210481 Q * rs Ping timeout: 480 seconds 1117210598 J * tchan ~tchan@c-24-13-81-164.hsd1.il.comcast.net 1117211583 J * rs ~rs@mon75-8-82-230-181-39.fbx.proxad.net 1117212139 Q * rs Ping timeout: 480 seconds 1117217099 Q * _sebd Ping timeout: 480 seconds 1117218852 J * ruut ~ruut@p549C95EC.dip0.t-ipconnect.de 1117218943 M * ruut Hi! I want to set up an nfs server inside a vserver - before I start: anything special I have to take care of? 1117220399 Q * prae Quit: Client exiting 1117221571 Q * knoppix_ Quit: Verlassend 1117221830 J * serving ~serving@217.164.248.254 1117221847 M * serving hi all 1117221898 M * serving I don't seem to shutdown a vserver . its stops at Stopping saslauthd: and stays there. 1117221912 M * serving reboot commands hangs as well 1117221921 M * serving how can I force shut a vserver ? 1117221962 M * serving :) 1117222149 M * Doener` try to enter the vserver and check what is hanging 1117222254 M * serving I did. there are few processes running that I didnt start ;) 1117222393 M * serving like 3673 ? D 0:00 CROND 1117222517 M * serving load average: 155.53, 151.68, 140.39 1117222523 M * serving and mounting 1117222972 M * Doener` try: vkill --xid -s 15 -- 0 1117222983 M * Doener` and then: vkill --xid -s 9 -- 0 1117222985 Q * matti Remote host closed the connection 1117223016 M * Doener` if that doesn't work, check your host's logs if there are any problems causing the processes to stay in uniterruptible sleep 1117223072 J * matti matti@212.244.232.46 1117223252 M * DaPhreak hmm .. and also the spamming on the vserver ml starts ;-( 1117223286 M * serving where do I get the ? 1117223369 M * daniel_hozac you should be able to use the vserver name there. 1117225499 M * serving my vkill cant locate the vserver 1117225521 M * serving isnt there a better way to kill vservers ? :( 1117225606 M * FaUl re 1117225633 M * serving . 1117225814 M * serving guys: I need to force shutdown a vserver somehow. 1117225852 M * serving pretty soon the server load will become so high and I will lose ssh connection to it :( 1117225890 M * serving load average: 191.22, 190.49, 186.50 and mounting 1117225907 M * Doener` serving: no, you won't loose your connection ;) 1117225939 Q * dvhart_ Ping timeout: 480 seconds 1117225948 M * Doener` the load average is generated by processes in uninterruptible sleep, which means zero cpu usage... 1117226029 M * serving Doener`: the connection already is very slow . It takes about a minute to type a command 1117226041 M * Doener` hm, that's strange then... 1117226057 M * Doener` you should also get the xid from vserver-stat 1117226063 M * Doener` btw, which kernel/tools? 1117226090 M * serving a very old kernnle and tools. from about 18 months :( 1117226129 M * Doener` hm, no idea how vkill worked back then, but the -- 0 thing probably won't work with it... 1117226155 M * serving 2.4.23-vs1.22 1117226163 M * Doener` whoa! 1117226185 M * Doener` only trustworthy guests i assume? 1117226199 M * Doener` vserver exec pkill -9 . 1117226208 M * Doener` that may also work... 1117226439 M * serving that did it. load is going down now. thanx Doener` :) 1117226450 M * Doener` you're welcome 1117226512 M * serving the vserver name still shows in the vserver-stats 1117226605 M * Doener` maybe some processes survived... 1117226731 M * serving yes. many 1117226930 Q * monrad Quit: Leaving 1117226946 M * FaUl serving: what about switching to 2.4.30-vs1.2.10? 1117226977 J * monrad ~monrad@213083190130.sonofon.dk 1117227077 M * serving 2000 miles away from server :D 1117227164 M * FaUl no kvm-over-ethernet? 1117227532 M * serving Doener`: can I just remove the ctx file ? 1117227545 M * Doener` hu? 1117227597 M * serving from /var/run/vsrvers/vs.ctx 1117227642 M * Doener` probably... if the vserver is stopped... 1117227659 M * serving it still shows in vserver-stats 1117227686 M * serving and there few process showing if I enter it 1117227689 M * Doener` are the processes that weren't killed in uninteruptible sleep? 1117227710 M * Doener` 21:33:13 serving like 3673 ? D 0:00 CROND 1117227714 M * Doener` like that one... 1117227750 M * serving those are gone 1117227769 M * Doener` well, then try again to kill the rest 1117227770 M * serving I have a few 5253 ? D 0:00 /usr/sbin/postdrop -r 1117227784 M * Doener` well, that one is in uninteruptible sleep... 1117227802 M * Doener` (state D = uninteruptible sleep) 1117227804 M * serving and 1 syslondg process left only 1117227822 A * Doener` hates typing uninteruptible... 1117227830 M * serving :D 1117227869 M * Doener` could you upload the output of "vserver exec ps aux" somewher? 1117227875 M * Doener` s/wher/where/ 1117227948 M * serving i did chcontext --ctx 49152 kill 6881 1117227949 M * serving New security context is 49152 1117227949 M * serving kill 6881: No such process 1117227961 M * serving on one of teh D processes 1117228194 M * Doener` well, xid 49152 vs. 49155 1117228232 M * serving 2 vservsr that i killed 1117228270 M * Doener` both got processes in unin^w "u" sleep? 1117228311 M * Doener` hm, but 6881 definitely is in 49155... 1117228355 M * Doener` so "chcontext --ctx 49155 kill -9 6881" would be right... but i doubt that it would have any effect... 1117228365 M * Doener` did you check your host's logs? 1117228421 M * Doener` FaUl: nice sig (mail to ml) ;) 1117228423 M * serving yes. 6881 gives no error now. 1117228438 M * Doener` but it's still there, right? 1117228444 M * serving yes 1117228456 M * FaUl Doener`: thx :) 1117228463 M * serving what hosts logs should I examin and for what ? 1117228486 M * Doener` syslog, kern.log, messages... i'd go for disk errors... 1117228527 M * serving i c 1117228538 M * FaUl ;extensions/libipt_vnet.c:118: error: initializer element is not computable at load time 1117228541 M * FaUl extensions/libipt_vnet.c:118: error: (near initialization for `vnet.revision') 1117228543 M * FaUl hmpf 1117228585 M * serving there is a definite succeful hack on the vservers. a connection some IRC netword was established 1117228637 M * serving and those CROND and /usr/sbin/sshd processs were started by a script or something 1117228667 M * Doener` hm, then you're lucky if they didn't break out of the vservers filesystem 1117228813 M * serving which I am sure they didnt yet 1117228975 M * Doener` i'm off to bed now... too tired... good night/day/luck/whatever_you_need everyone! 1117228985 N * Doener` Doener_zZz 1117229046 J * dvhart_ ~dvhart@bi01p1.co.us.ibm.com 1117229068 M * FaUl Doener_zZz: thx 1117230576 Q * dvhart_ Ping timeout: 480 seconds 1117231143 M * FaUl *sproing* 1117231776 Q * monrad jupiter.oftc.net unununium.oftc.net 1117231776 Q * ruut jupiter.oftc.net unununium.oftc.net 1117231776 Q * Doener_zZz jupiter.oftc.net unununium.oftc.net 1117231776 Q * witchdoc jupiter.oftc.net unununium.oftc.net 1117231776 Q * ciphernaut jupiter.oftc.net unununium.oftc.net 1117231776 Q * eyck jupiter.oftc.net unununium.oftc.net 1117231776 Q * flock jupiter.oftc.net unununium.oftc.net 1117231776 Q * TheSeer jupiter.oftc.net unununium.oftc.net 1117231776 Q * Zoiah jupiter.oftc.net unununium.oftc.net 1117231776 Q * SiD3WiNDR jupiter.oftc.net unununium.oftc.net 1117231776 Q * sladen jupiter.oftc.net unununium.oftc.net 1117231776 Q * Snow-Man jupiter.oftc.net unununium.oftc.net 1117231776 Q * Bertl_oO jupiter.oftc.net unununium.oftc.net 1117231776 Q * Beirdo jupiter.oftc.net unununium.oftc.net 1117231776 Q * Beave jupiter.oftc.net unununium.oftc.net 1117231843 J * witchdoc_ ~witchdoc@d463c3f1.datahighways.de 1117231843 J * monrad ~monrad@213083190130.sonofon.dk 1117231843 J * ruut ~ruut@p549C95EC.dip0.t-ipconnect.de 1117231843 J * Doener_zZz ~doener@p548772ED.dip.t-dialin.net 1117231843 J * eyck eyck@81.219.64.71 1117231843 J * flock ~restless@l192-117-111-12.broadband.actcom.net.il 1117231843 J * TheSeer ~theseer@212.12.45.62 1117231843 J * Zoiah Zoiah@matryoshka.zoiah.net 1117231843 J * Beirdo ~gjhurlbu@beirdo.usercloak.oftc.net 1117231843 J * SiD3WiNDR luser@bastard-operator.from-hell.be 1117231843 J * sladen paul@starsky.19inch.net 1117231843 J * Bertl_oO ~herbert@janus.mc.tuwien.ac.at 1117231843 J * Beave ~beave@vistech.org 1117231843 J * Snow-Man ~sfrost@snowman.net 1117231843 T * xenon.oftc.net http://linux-vserver.org/ | latest stable 1.2.10, devel 1.9.5, 2.0-rc2, ng9.5 -- He who asks a question is a fool for a minute; he who doesn't ask is a fool for a lifetime -- share the gained knowledge on the wiki, and we'll forget about the minute ;) 1117232381 M * FaUl ok, anyone here? 1117232387 M * FaUl Bertl_oO: ping? 1117232399 M * FaUl Bertl_oO: ok, the iptables-port should be done 1117232419 M * daniel_hozac iptables-port? 1117232466 M * FaUl daniel_hozac: vnet-support into ip6tables 1117232472 M * daniel_hozac ah. 1117232480 M * FaUl now there is only the kernel thing, thats bertls ;0 1117232673 M * FaUl daniel_hozac: are you familar with this ngnet-iptables-stuff? 1117232683 M * daniel_hozac not at all. 1117232704 M * FaUl ok, so i've to wait for bertl 1117234887 N * Bertl_oO Bertl 1117234902 M * Bertl FaUl: tada! 1117234907 M * Bertl evening folks! 1117234931 M * Vudumen hi allz :) 1117234941 M * Bertl hey Vudumen! how are you? 1117234969 M * Vudumen Bertl: a bit tired. i've installed a new small (very small) server room. the switches some servers some etc. 1117234990 J * rs ~rs@82.229.176.40 1117234995 M * Bertl evening rs! 1117235009 M * rs hey bertl! 1117235012 M * rs how are you ? 1117235027 M * Bertl fine, thanks! talk in vienna was great fun! 1117235050 M * Vudumen Bertl: a quwstion. i've made ngnet iptables modules working with compiling it into the kernel. it's fine. i created the required vnet interfaces and the iptables rules. i see with iptables -t vnet -nxvL that there are some packets but i cannot see anything from inside the Vserver :( 1117235055 M * rs nice! audience was good ? 1117235076 M * Bertl rs: excellent audience ... 1117235076 M * Vudumen an interesting thing: when i tried broadcast pinging from inside the Vserver it got many answers. for normal pings i got none 1117235128 M * Bertl Vudumen: did you setup static arp 1117235129 M * Vudumen Bertl: did you talk about Vserver or some completely other thing? :) 1117235143 M * Vudumen Bertl: well, i didn't read that i should 1117235165 M * rs did some ideas popped up in your mind about the multi-theading bug ? :) 1117235192 M * Vudumen Bertl: completely other thing: ftp://download.gpslan.com/gps/gps5-eswc/movies/fix.tv_Gigi%20DAgostino_GPS5%20remix.mpg check this movie :) it was our lan party on the last weekend :) 1117235336 M * Bertl Vudumen: vserver .. general overview ... 1117235373 M * Bertl rs: well, we basically know _what_ causes it ... 1117235408 M * Bertl rs: the bad thing is we have no test case yet ... 1117235479 M * rs yeah sure, but we have a clue 1117235495 M * rs We could try to stop a vserver with a stress tested mysql server for instance 1117235526 M * rs maybe it's something relative to NFS too, like syncronization side effect 1117235548 M * rs I'll try to reproduce it 1117235570 M * Bertl rs: no, I guess it is simply the fact that a multi threaded app might not get killed on the session (thread group) leader 1117235596 M * Bertl but I didn't get to code a multithreaded app where the threads are waiting on something ... 1117235632 M * Bertl the 'kill works' but vkill fails was a good hint, btw! 1117235749 M * Bertl Vudumen: there is no arp handling yet ... 1117235761 M * Bertl so you have to setup the arp by hand (static) 1117235811 M * Vudumen Bertl: so on the host side i should do an arp -s ? 1117235867 M * Bertl no you have to setup the arp inside the vserver 1117235887 M * Vudumen ahh i see 1117235902 M * Vudumen for the whole subnet? 1117236056 M * Bertl well, for the ips you use ... 1117236108 M * Vudumen hmm, is it possible to use proxy_arp for this? :) 1117236558 M * Vudumen Bertl: is it normal that in the vserver the localhost doesn't reply to pings? :) 1117236604 M * Bertl did you add an lo device? 1117236612 M * Bertl did you configure it? 1117236621 M * Vudumen yes. and i assigned 127.0.0.1/8 to it 1117236640 M * Bertl and ping doesn't work? 1117236651 M * Vudumen it doesn't :( 1117236665 M * Bertl okay, give me a sec, I have to compile/test it anyway ... 1117236679 M * Vudumen Bertl: if it's easier i can give you root login to this machine 1117236683 M * Bertl linux-2.6.11.10-vs2.0-rc2-ng9.5 yup? 1117236693 M * Vudumen currently it does only run vserver :) 1117236701 M * Vudumen yes 1117236707 Q * monrad Ping timeout: 480 seconds 1117236715 M * Bertl nah, not necessary atm, it's easier for me to check it here ... 1117236728 M * Vudumen ok :) 1117237138 A * DaPhreak kills CONFIG_MODULE_FORCE_ONLOAD 1117237158 J * Johnsie ~john@acs-24-154-32-12.zoominternet.net 1117237189 Q * Johnsie Quit: 1117237198 M * Bertl s/ONLOAD/UNLOAD/? 1117237228 M * DaPhreak yeah :) 1117237247 M * DaPhreak got a nice ooops on rmmod'ing ip_conntrack ;) 1117237260 M * DaPhreak kill the whole host ;( 1117237265 M * Bertl hmm, could you upload it somewhere? 1117237291 M * DaPhreak second 1117237683 M * Bertl Vudumen: checking my scripts ... I see that we gave NET_RAW, NET_ADMIN and NET_BROADCAST to the vserver 1117237704 M * Vudumen Bertl: trying. a minute. 1117237743 M * Vudumen i have NET_ADMIN and NET_RAW. Nowi give it bcast too 1117237783 M * Vudumen i cannot ping localhost :( 1117237838 M * Bertl yeah, well, didn't say that this is the solution .. was just an observation ... 1117237877 M * Vudumen ok :) i just told you to know that it's really not the solution :))) (we are debugging or you'll slap me if i'm the stupid :) 1117237949 M * Bertl #!/bin/bash 1117237950 M * Bertl while [ "$1" != "--" ]; do shift; done 1117237950 M * Bertl exec "$@" 1117237965 M * Bertl (that's what I'll gonna use as chbind replacement) 1117238282 M * Bertl okay, we also used 0.30.196 and obviously had the legacy networking interface enabled ... 1117238300 M * Bertl (but I'm now checking/adapting for 0.30.207 and chbindfake)