1164240076 M * Bertl okay, should at least allocate some rss
1164240098 M * Bertl what does /proc/virtual/<xid>/limits show for that guest?
1164240106 M * dreamind RSS:         821               0/    1869          20000/   20000            0
1164240133 M * dreamind top shows a rss of 600mb and above.
1164240149 M * dreamind but free shows only *way* less (inside the vserver, and I'm using virt_mem)
1164240204 M * Bertl okay, could you upload the entire /proc/virtual/<xid>/limits to paste.linux-vserver.org please?
1164240270 M * dreamind http://paste.linux-vserver.org/686
1164240291 M * derjohn Bertl, daniel_hozac : is the fix02 still the thing for me to test? Or did you meanwhile made newer plans ?
1164240321 Q * fluor Ping timeout: 480 seconds
1164240329 M * Bertl we changed plans slightly, it would be interesting to test a fix for the underlying issue
1164240343 M * daniel_hozac indeed.
1164240375 Q * DavidS Ping timeout: 480 seconds
1164240463 M * derjohn well, as usual the problem appeared on a production machine ;/
1164240496 M * derjohn I think about goin g back to stable as that machine does not use bind9 ...
1164240501 M * daniel_hozac delta-private-fix02 should resolve it.
1164240511 M * derjohn ah, thats a word.
1164240512 M * daniel_hozac and 2.0.2.2-rc7 should trigger it too ;)
1164240518 M * bon where does the default interfaces config reside?
1164240523 M * bon i can't seem to find it
1164240524 Q * Wonka Ping timeout: 480 seconds
1164240534 M * daniel_hozac bon: what? there's no such thing.
1164240541 M * derjohn I'll compile ...
1164240547 M * dreamind delta-private-fix02 fixed the kernel "bug" for me.
1164240569 M * dreamind but I'm still worried about that rss thingy :(
1164240614 M * Bertl dreamind: checking that too, are you positive that the perl script actually uses that much rss?
1164240638 M * dreamind Bertl: yes, ps shows it, and top also.
1164240654 M * dreamind Bertl: and free in the host system shows lower values
1164240670 M * dreamind but free in the "guest" doesn't change that much :(
1164240734 M * daniel_hozac Bertl: what's supposed to happen when you go over the rss limit? OOM?
1164240736 M * dreamind btw, one question, the /etc/vserver/vserver-name/context, the number in there, does it affect the order in which the vservers are started?
1164240747 M * daniel_hozac no, not at all.
1164240764 M * dreamind daniel_hozac: ok is there a way I can affect the ordering?
1164240765 M * daniel_hozac it's just the identifier, like uid for contexts (ergo the xid name ;))
1164240769 M * dreamind ok
1164240777 M * daniel_hozac if you guests depending on other guests, sure.
1164240780 M * daniel_hozac use apps/init/depends
1164240784 M * daniel_hozac as per the flower page. :)
1164240807 M * dreamind and in apps/init/depends i put the name the vserver depends on?
1164240817 M * dreamind or the xid?
1164240821 M * daniel_hozac name, of course.
1164240826 M * dreamind 'k
1164240855 M * dreamind one vserver per line, right?
1164240876 M * daniel_hozac yep.
1164240885 M * daniel_hozac just like it says.
1164240889 M * dreamind daniel_hozac: thx :)
1164240911 M * dreamind daniel_hozac: sorry, I'm kinda tired and somehow frustrated today...
1164240922 M * derjohn dreamind, TU-D ?
1164240947 M * dreamind derjohn: well, FH-D, but I was at the TU-D some semesters ago ;)
1164240973 M * derjohn dreamind, ah .... inf ?
1164240985 M * dreamind yep
1164241721 M * dreamind Bertl: hm, guess there is no solution for that rss problem right?
1164241789 M * Bertl we are investigating it, I cannot recreate it right now
1164241816 M * Bertl but I will try some things in the next hour
1164241828 M * dreamind ok :)
1164241842 M * dreamind its just because I think I'd better get some sleep right now ;)
1164241857 M * Bertl make that, we'll continue tomorrow then
1164241864 M * dreamind ok ;)
1164241869 M * dreamind thanks anyhow :)
1164241875 M * Bertl np
1164241877 M * dreamind nite
1164241882 Q * dreamind Quit: dreamind
1164242060 M * Bertl daniel_hozac: do you see any reason why we set the persistent state before the state_change()?
1164242139 M * daniel_hozac no, none that i can think of.
1164242145 M * daniel_hozac Hollow?
1164242206 M * daniel_hozac hmm, maybe we should set private after migrating ourselves?
1164242224 M * Bertl persistent, but yes
1164242237 M * daniel_hozac no, i meant private.
1164242258 M * daniel_hozac wouldn't context creation fail if it was in the flags right now?
1164242288 M * Bertl hmm, hmm, why does it work in a test setup then?
1164242374 M * Bertl probably because the falg is set afterwards
1164242405 M * Bertl not sure we want to special case that in the kernel though
1164242428 M * daniel_hozac well, doesn't really matter for util-vserver either as we set the flags later.
1164242566 M * daniel_hozac it just seems a bit strange to have the context creation fail because you specified a certain flag :)
1164242583 M * Bertl okay, will think about that :)
1164242586 M * daniel_hozac would it work to set all of the flags later?
1164242872 M * Bertl what I wonder (now that I look at the code) doesn't Hollow create and manipulate the contexts from outside?
1164242932 M * daniel_hozac yep.
1164242950 M * Bertl so how does he handle the 'auto migration' then?
1164242963 M * daniel_hozac i was thinking about that too.
1164242987 M * daniel_hozac separate process, script that runs the sequence, but not in a chain like util-vserver?
1164243003 M * Bertl I think what we actually want there is a flag/option to avoid the migration, no?
1164243038 M * daniel_hozac i think so too.
1164243110 Q * yarihm Quit: Leaving
1164243129 M * derjohn daniel_hozac, util-vserver 0.30.211-2 say: "Linux-Vserver capability not detected in kernel.". It should reas Linux-VServer (capital S)
1164243139 M * derjohn *read
1164243146 M * daniel_hozac derjohn: util-vserver doesn't say anything of the sort.
1164243152 M * daniel_hozac the Debian package does, however.
1164243153 M * derjohn daniel_hozac, oh
1164243155 M * daniel_hozac i noticed that too.
1164243156 M * derjohn heh
1164243168 M * daniel_hozac you had a bug filed for this already, no?
1164243177 M * derjohn yes ... micah: /etc/init.d/util-vserver"Linux-Vserver capability not detected in kernel.". It should read Linux-VServer (capital S).
1164243209 M * daniel_hozac the initscript needs some more love too.
1164243222 M * derjohn micah, I filed a bug about that and the text(s) changed in several debconf questions... but still no capital "S".
1164243226 M * daniel_hozac that check is broken too.
1164243247 M * derjohn initscript: ***Iloveyou**
1164243620 M * daniel_hozac derjohn: you wouldn't happen to know how i'd comment on an old bug in the Debian BTS?
1164243639 M * derjohn daniel_hozac, switching distribution ? :)
1164243672 M * daniel_hozac no, never! hehe, nah, i'd just like to clear up http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=385162
1164243682 M * derjohn daniel_hozac, to be honest: I dont know. I never did. 
1164243685 Q * bronson Ping timeout: 480 seconds
1164243732 J * Wonka produziert@chaos.in-kiel.de
1164243900 M * daniel_hozac i'll try sending it to 385162@bugs.debian.org then.
1164243925 M * derjohn #bugid@bugs.debian.org ... yes...
1164243951 M * derjohn that happens when you hit reply on a bug confirmation.
1164243964 M * bon what stage is iptables inside guests if i may ask? :)
1164243977 M * daniel_hozac depends on what you mean.
1164243996 M * daniel_hozac brcc is working on a relay agent.
1164244023 M * daniel_hozac but actually virtualized iptables is not something i personally expect any time soon.
1164244068 M * derjohn bon and would probably slow anyway.
1164244082 M * derjohn *be slow
1164244126 M * Bertl bon: brcc showed me (in private) a 'working' prototype an hour ago ...
1164244161 M * Bertl communication is strill in userspace, but the basics are there
1164244233 M * derjohn n8 folks, the kernel with patch fix02 is now compiling on amd64 (on a non production host). I'll think you'll get my results tomorrow morning.
1164244247 M * Bertl http://vserver.13thfloor.at/Experimental/delta-unhash-fix01.diff
1164244255 M * derjohn eh?
1164244265 M * Bertl derjohn: that's the one you probably should test, without the fix02 :)
1164244270 M * derjohn Bertl, you mean /me ?
1164244272 M * derjohn oh :)
1164244287 M * Bertl daniel_hozac: what do you think of that one?
1164244293 M * derjohn did you pre-test? or is it a virgin test ?
1164244303 M * Bertl it booted here :)
1164244326 M * derjohn Bertl, you had simply luck on your PPC ;)
1164244336 M * Bertl :)
1164244347 M * derjohn so the fix02 is needed for nothing ?
1164244350 M * derjohn (anymore=
1164244351 M * derjohn )
1164244358 M * Bertl no, the thing is more complicated
1164244373 M * Bertl we actually would be very interested in running a kernel with
1164244387 M * Bertl this new patch, but without the 'fix02'
1164244400 M * Bertl which would basically trigger the issue
1164244402 M * derjohn well .. i wanted to put the machin ein production somewhen ;)
1164244431 M * Bertl when we 'know' that despite the missing 'fix02' the kernel is fine
1164244449 M * Bertl then we 'add' the fix02 back, which fixes something different :)
1164244458 M * daniel_hozac Bertl: that looks nice.
1164244465 M * daniel_hozac quite a bit cleaner, IMHO.
1164244465 M * derjohn and both will lead to 2.1.1.2 ?
1164244470 M * Bertl yeah, got cleaned up nicely
1164244482 M * derjohn Bertl, do I need amd64 for test ?=
1164244488 M * Bertl nope
1164244499 M * derjohn oh , then i'll build a packerl
1164244504 M * Bertl lol
1164244602 M * derjohn Bertl, what devel should I run for prodcution? what is your current recommendation?
1164244628 M * Bertl devel or 'upcoming stable'?
1164244640 M * derjohn !experimental
1164244650 M * derjohn upcoming devel?
1164244660 M * daniel_hozac upcoming devel would be 2.3, right?
1164244661 M * Bertl okay, then I'd suggest to go with 2.2.0-pre something for production
1164244673 M * Bertl daniel_hozac: yep
1164244686 M * derjohn 2.2.0 pre with capa masking ?
1164244692 M * daniel_hozac yes, of course.
1164244707 M * derjohn "of course" .. haha ;)
1164244716 M * derjohn fine, that it went into stable
1164244724 M * derjohn or at least will
1164244747 M * daniel_hozac hopefully a lot of other things will too ;)
1164244780 M * daniel_hozac Bertl: do you think i should add the 2.2 and 2.3 patches to ftp.linux-vserver.org? or is it too early for that?
1164244820 M * Bertl I'm perfectly fine with 2.2.0-pre, folks are supposed to test that
1164244843 M * Bertl for 2.3.x, I'm not sure, probably too early, give it a few weeks
1164244882 Q * Piet Remote host closed the connection
1164244922 M * daniel_hozac should i add 2.2 to the wiki as well?
1164244928 M * Bertl yes, please
1164244938 M * daniel_hozac ok.
1164244959 J * Piet ~piet@tor.noreply.org
1164244986 M * daniel_hozac as "The latest prepatch version of the next stable Linux-VServer patch"?
1164244997 M * Bertl yes, precisely
1164245027 M * Bertl hmm, upcoming second Stable Linux-VServer Branch is probably better though 
1164245172 M * daniel_hozac humm, so ... of the upcoming second stable Linux-VServer patch? even i am starting to get confused now :)
1164245191 M * daniel_hozac but next is suboptimal as well.
1164245209 M * Bertl so make that
1164245225 M * Bertl upcoming Stable 2.2.x Linux-VServer Branch 
1164245248 M * Bertl it's quite similar as it was with the kernel
1164245265 M * Bertl 2.0/2.2/2.4 all stable :)
1164245277 M * daniel_hozac right.
1164245314 M * bon brcc: goodluck then, with the iptables :)
1164245391 M * Bertl guess there will be something to test tomorrow
1164245402 M * Bertl (he went to bed :)
1164245450 M * daniel_hozac do we really need to repeat the version number?
1164245463 M * daniel_hozac (i submitted the first version, btw)
1164245491 M * Bertl nah, of course not
1164245512 M * daniel_hozac so s/next/upcoming/?
1164245526 M * Bertl branch yes, release no :)
1164245565 M * Bertl I think the problem is that we need to restructure some things
1164245577 M * Bertl i.e. make it something like:
1164245590 M * Bertl stable: 2.0 branch .... 2.2 branch ....
1164245605 M * Bertl devel: 2.1 (for now) once 2.3 is out, 2.3 only
1164245629 M * daniel_hozac yeah, i'm more of a table guy myself.
1164245649 Q * fs Server closed connection
1164245738 M * Bertl 2.0 will start faiding out and will get into deep freeze like the 2.4 branches ...
1164245748 M * daniel_hozac like 1.2.
1164245754 M * Bertl btw, eyck_: ping?
1164245758 M * daniel_hozac hehe.
1164245873 M * Bertl eyck_: I thought you might be interested in taking over maintainership for the 1.2.x branch? if so, please contact me ...
1164246207 M * Bertl daniel_hozac: http://vserver.13thfloor.at/Experimental/delta-private-fix03.diff
1164246253 M * daniel_hozac don't we check for VXF_INFO_LOCK?
1164246275 M * Bertl not in my tree (which might not be in sync yet)
1164246289 M * Bertl s/yet//
1164246295 M * daniel_hozac ah.
1164246326 M * Bertl I probably removed it last time we spoke
1164246338 M * Bertl will see with the actual deltas ...
1164246348 J * fs fs@213.178.77.98
1164246354 M * Bertl wb fs!
1164246401 M * daniel_hozac but doesn't lock sort of make sense for the network contexts, at least?
1164246434 M * Bertl lock -> CAP_CONTEXT :)
1164246444 M * daniel_hozac but not for the network contexts.
1164246464 M * daniel_hozac like in the bind-this-dumbass-service-to-this-address case.
1164246464 M * Bertl I have a poste it with that here on my monitor ... to remind me
1164246495 M * Bertl doesn't matter, if you want it to be locked, remove the capability
1164246542 M * daniel_hozac doesn't matter because you can still run vc_net_*?
1164246557 M * derjohn daniel_hozac, if I use fstab.remote to mount smbfs with "uid=" option then it does UID<-->username mapping in the host context, right ? (which is uncomfortable ...)
1164246573 M * daniel_hozac yep.
1164246577 M * Bertl daniel_hozac: no, with the cap removed, you will not be able to call sys_vserver()
1164246585 M * daniel_hozac Bertl: right, but with the cap.
1164246596 M * daniel_hozac i'm talking about a simple chbind --ip 127.0.0.1 dumbass-service here.
1164246599 M * Bertl with the cap, you _are_ administrating the stuff
1164246612 M * Bertl just drop the cap after that
1164246626 M * Bertl (or before, with capreduce for example)
1164246635 M * Bertl (or was that reducecap?)
1164246644 M * daniel_hozac reducecap, i think.
1164246644 M * Bertl yep, reducecap
1164246688 M * Bertl okay, I guess we need a new flag for the 'do not migrate' case, but we'll wait for Hollow to comment on that
1164246703 M * Bertl (should be easy to add it no anyways ...)
1164246970 Q * mugwump Remote host closed the connection
1164246979 J * mugwump ~samv@watts.utsl.gen.nz
1164247391 Q * borgfish Ping timeout: 480 seconds
1164250613 J * ensc ~irc-ensc@p54B4DA41.dip.t-dialin.net
1164250934 Q * DreamerC_ Quit: leaving
1164250956 J * DreamerC ~dreamerc@59-115-48-107.dynamic.hinet.net
1164253801 J * justin_ ~justin@cpe-71-65-126-55.woh.res.rr.com
1164253979 Q * Aiken Quit: Leaving
1164254286 Q * justin_ Ping timeout: 480 seconds
1164254434 J * justin_ ~justin@cpe-71-65-126-55.woh.res.rr.com
1164254440 M * justin_ hello
1164254474 M * Bertl welcome justin_!
1164254487 M * justin_ so i have a debian host and was trying to use a debian guest on it today and it creates the vserver and says its running but when i try and ssh into the vserver it just gives me a shell on the host machine
1164254496 M * justin_ i think its a problem with ip routing
1164254499 M * justin_ any ideas?
1164254559 M * Bertl nah, it's just a misconception
1164254568 M * Bertl what actually happens is this:
1164254581 M * Bertl - the guest is limited to a subset of the host ips
1164254610 M * Bertl - the host has an sshd running which is bound to 0.0.0.0 (*)
1164254647 M * Bertl - the guest tried to bind an sshd (again to 0.0.0.0) which was remapped to the subset of the guest, but failed to bind, as the host sshd was already there
1164254662 M * Bertl - the ssh to the guest ip, ends up on the host
1164254678 M * Bertl the simple and straight forward solution>
1164254693 M * Bertl - limit the host's sshd to host specific ips
1164254704 M * Bertl - restart the sshd (or the entire guest)
1164254733 M * Bertl the sshd inside the guest will be limited to guest available IPs by default, so no need to change anything there
1164254750 Q * DreamerC Quit: leaving
1164254981 Q * justin_ Ping timeout: 480 seconds
1164255108 J * DreamerC ~dreamerc@59-115-48-107.dynamic.hinet.net
1164255343 J * Aiken ~james@tooax6-077.dialup.optusnet.com.au
1164255358 M * Bertl morning Aiken!
1164255576 M * anonc hi all. just trying to play with the gentoo baselayout-1.13.0_alpha5 (re http://planet.gentoo.org/developers/hollow/2006/11/03/baselayout_vserver_is_dead). Built util-vserver-svn via the vps overlay, kernel 2.6.18-vs2.1.1-gentoo-r1 amd64. Used the stage3 tarball from hollow's page and tried build vservers with gentoo and plain init styles. In both cases, 'vserver myguest start' results in 'No command given; use '--help' for more information. An err
1164255576 M * anonc there are no other messages, it is very likely that the init-script
1164255576 M * anonc () failed.'
1164255605 M * anonc anyone shed any light on the issue (and sorry about the 3-line message)
1164255616 M * Bertl what init style do you use? and what tools
1164255652 M * Bertl ah, plain, sorry missed that
1164255700 M * Bertl try with --debug added
1164255721 M * anonc tried with 'plain' and with 'gentoo'. util-vserver built from svn
1164255891 M * anonc mmm - looking at the output of --debug, the actual vserver launch line ends with '--' which seems pretty unlikely
1164255927 M * Bertl yep, maybe a misconfiguration somewhere?
1164255949 M * Bertl i.e. wrong path or wrong init?
1164256005 M * anonc init style is set to 'gentoo' - which has been added back to the util-vserver tools.
1164256220 Q * cohan Remote host closed the connection
1164256287 M * micah derjohn: i've updated the capitalization in the initscript in svn now
1164256288 Q * blizz Remote host closed the connection
1164256291 J * blizz ~blizz@evilhackerdu.de
1164256307 M * micah daniel_hozac: what is broken in the initscript check? I'd like to fix it
1164256356 M * Bertl okay, I'm off to bed now ... have a good one everyon! cya!
1164256361 M * anonc nite bertl!
1164256367 N * Bertl Bertl_zZ
1164256564 J * cohan ~cohan@koniczek.de
1164257687 Q * ensc Killed (NickServ (GHOST command used by ensc_))
1164257697 J * ensc ~irc-ensc@p54B4D95D.dip.t-dialin.net
1164258176 Q * Aiken Quit: Leaving
1164260398 J * hardwire ~hardwire@rdbck-3359.palmer.mtaonline.net
1164261899 J * justin_ ~justin@cpe-71-65-126-55.woh.res.rr.com
1164263851 Q * justin_ Ping timeout: 480 seconds
1164264131 J * Aiken ~james@tooax6-077.dialup.optusnet.com.au
1164265102 J * Aiken_ ~james@tooax6-077.dialup.optusnet.com.au
1164265103 Q * Aiken_ 
1164266370 J * doener_ ~doener@host.magicwars.de
1164266374 J * maharaja_ maharaja@is.the.one.who.rules.at
1164266374 J * Greek0_ ~greek0@85.255.145.201
1164266418 J * DavidS ~david@chello062178045213.16.11.tuwien.teleweb.at
1164266418 Q * maharaja Read error: Connection reset by peer
1164266446 Q * Greek0 Read error: Connection reset by peer
1164266477 Q * doener Ping timeout: 480 seconds
1164266772 J * meandtheshell ~markus@85-124-232-197.work.xdsl-line.inode.at
1164268061 J * dna_ ~naucki@100-193-dsl.kielnet.net
1164268118 Q * Aiken Quit: Leaving
1164268249 J * Aiken ~james@tooax6-077.dialup.optusnet.com.au
1164268463 Q * Johnnie Remote host closed the connection
1164268564 J * borgfish ~bla@141.12.9.118
1164269141 Q * dna_ Quit: Verlassend
1164269677 J * dreamind ~dreamind@C2107.campino.wh.tu-darmstadt.de
1164269710 M * dreamind morning :)
1164270006 M * maharaja_ :)
1164270009 N * maharaja_ maharaja
1164270022 M * maharaja brb
1164270045 Q * maharaja Quit: leaving
1164270121 J * maharaja maharaja@ip52.ipax.at
1164270575 J * justin_ ~justin@cpe-71-65-126-55.woh.res.rr.com
1164270640 J * Johnnie ~jdlewis@jdlewis.org
1164271056 Q * justin_ Ping timeout: 480 seconds
1164271134 Q * mugwump Ping timeout: 480 seconds
1164271333 J * mugwump ~samv@watts.utsl.gen.nz
1164271354 Q * dreamind Quit: dreamind
1164272940 J * cdrx ~legoater@82.227.199.249
1164273152 J * oo oo@ormset.no
1164273337 Q * Johnnie Remote host closed the connection
1164273557 J * Johnnie ~jdlewis@jdlewis.org
1164274236 M * sid3windr still no advances on network virtualization I guess?
1164275370 J * SoftIce ~newbie@vc-196-207-45-253.3g.vodacom.co.za
1164275381 M * SoftIce hi, why am I getting this error log every couple seconds/
1164275383 M * SoftIce Nov 23 10:39:13 web snmpd[1940]: No swap line in /proc/stat
1164275566 M * DavidS SoftIce: perhaps the snmpd expects another kernel version?
1164275580 M * DavidS I'm running 2.6 and have no "swap" line in /proc/stats
1164275613 M * SoftIce i'm also running 2.6
1164275620 M * SoftIce but are you trying to run snmp in the vserver?
1164275693 M * SoftIce I just dont understand why the proc interface has to allways change
1164275696 M * SoftIce goodness!
1164275881 M * DavidS no snmp here
1164276138 M * SoftIce i'm looking at top to see where it gets its info from
1164276395 M * SoftIce I know daniel_hozac knows how to fix this ;) *wink* *wink* ^_^
1164276754 M * SoftIce Nov 23 11:06:31 web snmpd[20030]: No page line in /proc/stat
1164276755 M * SoftIce Nov 23 11:06:31 web snmpd[20030]: No swap line in /proc/stat
1164276759 M * SoftIce man, this happens every second!
1164276821 M * SoftIce do I have to modify the source of snmpd and use top to see where its getting its info from?
1164276833 M * DavidS why top? 
1164276955 M * DavidS vmstat takes its infos from /proc/meminfo, stat and vmstat
1164276967 M * SoftIce well top reads the files in the proc filesystemm
1164277087 M * SoftIce I just dont want to go heading off in the wrong direction, when i'm over looking something
1164277121 J * lilalinux ~plasma@dslb-084-058-207-018.pools.arcor-ip.net
1164278378 M * matti ;))
1164278417 M * SoftIce *bangs head against the wall a couple times*
1164278505 M * SoftIce hmm, ok after a number of tests it works on other 2.6's, the same version of snmpd aswell as in a vserver
1164278508 M * SoftIce what can I be overlooking?
1164278521 N * Bertl_zZ Bertl
1164278525 M * Bertl morning folks!
1164278556 M * SoftIce HI!
1164278803 M * DavidS Bertl: no early bird, eh? ;)
1164278814 M * DavidS (but then, who wants worms? ;))
1164278827 M * Bertl SoftIce: regarding /proc changes .. probably because most stuff in proc (everything except the process entries) does not belong there :)
1164278865 M * Bertl DavidS: I'm up early today :)
1164278913 M * Bertl SoftIce: what are you trying with snmpd in a vserver
1164278960 M * SoftIce Bertl: earlier kernel versions have set in /proc/stat something like swap 12583 30261
1164279021 M * SoftIce either the rpm package of net-snmpd in fedora has not been updated too satisfy the new kernel change or i'm just doing something extremely wrong
1164279164 M * SoftIce don't you guys want to make a nice 'special snmpd package' and add it to the dhozac mirror? or is that just wishfull thinking? :)
1164279208 M * Bertl well, proc is in constant flux and a _bad_ source for automated system data .. it works well for the human administrator though
1164279280 M * SoftIce well, why is snmpd trying to snmpd trying to read swapspace anyway
1164279293 M * SoftIce it works, perfectly, I get my graphs but just a number of errors
1164279301 M * DavidS SoftIce: there is quite a host of sysinfo in snmpd's MIB
1164279307 M * DavidS s/host/lot/
1164279322 M * Bertl well, if, at all it should read the swap space from /proc/swap :)
1164279331 M * DavidS SoftIce: turn down debug logging ;)
1164279334 M * SoftIce heh! :)
1164279341 M * DavidS bye, food's callin'
1164279344 M * Bertl *swaps actually
1164279357 M * SoftIce DavidS: hmm, that is a good idea!
1164279358 M * SoftIce thanks guys ;)
1164279360 M * Bertl DavidS: enjoy your lunch!
1164279365 M * SoftIce what I can't see doesn't hurt right? :)
1164279402 M * DavidS Bertl: breakfast
1164279423 M * DavidS SoftIce: or use logcheck .. a great tool
1164279432 Q * DavidS Quit: Leaving.
1164279523 M * SoftIce i'm just going to turn off the -d switch
1164279558 M * SoftIce hmm, thats the wrong switch, thats data directory
1164279569 M * Bertl lol
1164279647 M * SoftIce *blushes*
1164280314 Q * nox Ping timeout: 480 seconds
1164280355 J * nox ~nox@static.88-198-17-175.clients.your-server.de
1164281410 J * dna_ ~naucki@41-240-dsl.kielnet.net
1164282076 Q * SoftIce 
1164282138 Q * lilalinux Remote host closed the connection
1164282181 J * lilalinux ~plasma@dslb-084-058-207-018.pools.arcor-ip.net
1164282236 J * DavidS ~david@vpn.uni-ak.ac.at
1164282773 M * Bertl wb DavidS!
1164283059 Q * Aiken Ping timeout: 480 seconds
1164284199 Q * Piet Quit: Piet
1164285372 M * m4z is anyone here using vserver with selinux?
1164285409 M * eyck_ Bertl: pong.
1164285421 M * Bertl m4z: probably :) but why?
1164285432 M * Bertl eyck_: hey ...
1164285450 M * m4z i'm wondering if it works without too much additional work
1164285478 M * m4z selinux for itself is enough of a bitch
1164285481 M * Bertl as usual, most 'security enhancements' are not really guest aware
1164285489 M * eyck_ Bertl: I'd be interested, but I know way too little about internals, could you point me to any easy reading material?
1164285506 M * Bertl m4z: so you have to be extra careful ...
1164285517 M * doener_ Bertl: hm, do you remember who was working on LV-enhanced selinux?
1164285535 M * bon morning :)
1164285539 M * Bertl doener_: nah, but you're right, some selinux maintainer? was
1164285542 J * Torsti76 ~irc@gate.iwm-kmrc.de
1164285563 N * doener_ doene
1164285564 N * doene doener
1164285568 M * m4z Bertl: is there any technical paper about how the processes are managed with vserver? is it in the "main" vserver-paper/
1164285607 M * Bertl that should give you an idea, if you have further questions, just ask here
1164285649 M * Bertl eyck_: well, there are a bunch of kernel docs .. let me see what I can suggest for reading ...
1164285662 M * m4z will do when i found the time to setup a new box
1164285675 M * daniel_hozac micah: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=398015
1164285756 M * Bertl eyck_: ah, that's a great resource: http://kernelnewbies.org/KernelHacking
1164285851 M * Bertl eyck_: especially rusty's locking guide and the kernel internals (2.4 in this case) are of interest
1164285861 M * eyck_ ok, thanks
1164285884 M * brcc good morning bertl!
1164285891 M * Bertl hey brcc!
1164285949 M * brcc I plan to finish everything to day and start using it on one of my servers
1164285951 M * daniel_hozac doener, Bertl: node IIRC.
1164285959 M * daniel_hozac (re: who was working on per-guest SELinux)
1164285966 M * brcc i am thinkking about using keys or something
1164285982 M * Bertl daniel_hozac: ah, tx
1164285982 M * brcc since php socket functions does not allow me to identify source ip
1164285998 M * brcc i miss C sockets at this time :)
1164285998 M * doener daniel_hozac: ah, right :)
1164286010 M * doener brcc: are you sure?
1164286021 M * brcc I've browsed manuals, google and found nothing
1164286027 M * Bertl brcc: just assume that the guest xid is sent over the channel
1164286035 M * daniel_hozac getpeername should exist...
1164286057 M * daniel_hozac http://php.net/manual/en/function.socket-getpeername.php ;)
1164286086 M * doener 2fast4me
1164286093 M * brcc daniel_hozac: thanks a  lot :)
1164286122 M * brcc bertl i will work with source IP at this time and make a functoin to work with XID so we can have both of them
1164286142 M * brcc at this time i got it working sending the source ip thourgh the tcp connectiong
1164286157 M * brcc daemon goes to /etc/vservers, find the owner of the ip
1164286172 M * Bertl send the xid instead, makes it simpler
1164286176 M * brcc then gets all ips thatbelong to this vservers . at this point we start playing with chains
1164286190 M * daniel_hozac indeed, xid to vserver mapping is very easy.
1164286207 M * brcc can i find the xid of a   guest from inside the guet ?
1164286210 M * Bertl brcc: and you can get the xid from proc easily
1164286211 M * brcc guest
1164286223 M * daniel_hozac but that's disablable with a flag, right?
1164286237 M * daniel_hozac but yeah, this is not the permanent interface, so i guess that doesn't matter.
1164286272 M * brcc is it enabled by default ?
1164286299 M * daniel_hozac the flag? no.
1164286310 M * daniel_hozac /proc/self/vinfo should be there.
1164286360 M * brcc great. now, having the xid, what is the easiest wya to find all ips that belong to this xid ?
1164286376 M * brcc with vserver_name i could  go directly to /etc/vservers/interfaces/
1164286461 M * daniel_hozac IIRC there's a vserver-info command to find out the vserver from the xid...
1164286517 M * daniel_hozac vserver-info <xid> ID
1164286592 M * brcc i dont have access to any host right now, does it output ips or just paths ?
1164286645 M * daniel_hozac the path to the configuration directory.
1164286665 M * brcc ok!
1164286729 M * brcc daniel , what do you think about this idea: to grant that only root will use it and that we are on the right vserver, when daemon receives a request it geenrates a checksum (the client do the same and writes it to a fifo (whichi is writable just by root)
1164286750 M * daniel_hozac seems like overkill...
1164286766 M * brcc so daemons receives arguments and xid. daemon then goes to /vservers/xid/somewhere (which is a fifo) and read it
1164286770 M * brcc only root would write it
1164286775 M * daniel_hozac for the version 1 interface, i'd just require that the request comes from a low port, as Bertl suggested.
1164286777 M * brcc so we are sure that root called it
1164286787 M * brcc Ahh.. good idea..
1164286842 M * brcc so the guest would need to start the connection form a port lower than 1024. does php sockeets functions knows which is the source port ? :)
1164286861 M * doener brcc: same function ;)
1164286862 M * daniel_hozac socket_bind should work fine.
1164286891 M * brcc hehe ok.. now i see port is there
1164286892 M * doener daniel_hozac: getpeername returns host and post 
1164286896 M * doener s/post/port/
1164286901 M * brcc with this info i will have everything working this night
1164286909 M * brcc and send you so you can try
1164286921 M * daniel_hozac ah, well, i meant on the client side. i misinterpreted the question, i think.
1164286961 M * doener guess so ;) the 'security' check must happen on the server side
1164286977 M * brcc as i understood socket_getpeername will give me sourceip and sourceport
1164286994 M * doener yep
1164287008 M * brcc ok..
1164287026 M * brcc I was also thinking on creating something to limit the number of rules/chains a guest can create. is that usefull ?
1164287097 M * daniel_hozac you could probably DoS it quite easily otherwise.
1164287129 M * Bertl yes, policy daemon should limit the #rules/chains 
1164287157 M * brcc ok
1164287165 M * brcc gotta work, i will be back tomorrow with all this ready
1164287169 M * brcc cya
1164287182 M * daniel_hozac cya!
1164287185 M * Bertl k, cya!
1164287608 J * _Hunger Hunger.hu@213.163.11.138
1164287935 Q * Hunger Ping timeout: 480 seconds
1164288136 J * Hunger Hunger.hu@Hunger.hu
1164288213 Q * _Hunger Ping timeout: 480 seconds
1164288243 M * ensc brcc: I did not read everything, but when using unix sockets you can get the IP of the calling process and map this to the xid
1164288296 M * ensc s!IP!PID!
1164288307 M * Bertl ah, good :)
1164288372 M * ensc http://enrico-scholz.de/fedora.us-build/html/ar01s02.html
1164289093 J * comfrey ~comfrey@84.76.89.171
1164289108 M * Bertl wb comfrey!
1164289898 J * dreamind ~dreamind@C2107.campino.wh.tu-darmstadt.de
1164289911 M * Bertl wb dreamind!
1164289916 M * dreamind Hi Bertl :)
1164289922 M * dreamind Bertl: any news about that rss problem?
1164289938 M * Bertl nope, didn't get around checking it further 
1164289945 M * dreamind :(
1164289953 M * Bertl but we can do that now :)
1164289956 M * dreamind anything I can do to test it?
1164289958 M * dreamind ok :D
1164290015 J * justin_ ~justin@cpe-71-65-126-55.woh.res.rr.com
1164290109 M * Bertl hey justin_!
1164290117 M * daniel_hozac i think i can reproduce it.
1164290120 M * daniel_hozac somewhat.
1164290126 M * daniel_hozac the process does eventually get killed.
1164290132 M * Bertl let's hear ...
1164290158 M * daniel_hozac but before it dies, top shows it with ~100 MiB RSS.
1164290185 M * Bertl hum, and how much real memory is available?
1164290201 M * dreamind well for me the process is shown with *more* than 600mb
1164290221 M * daniel_hozac free shows ~100 MiB available memory.
1164290246 M * daniel_hozac the RSS limit is set to 1024 pages.
1164290326 M * justin_ hi
1164290349 M * dreamind if I 'd set the rss limit (hard limit) to 10 pages, the vserver shouldn't even start, right?
1164290350 M * Bertl daniel_hozac: okay, IIRC we account everywhere the kernel does, right?
1164290358 M * justin_ ok got a question, i have a debian host machine with a debian guest right
1164290381 M * daniel_hozac yeah, anywhere mm->* is touched directly should be caught by my script.
1164290390 M * justin_ and when i set it up it says started and whatnot but when i try and ssh into it it just logs into the host os.... i think its a ip routing problem any ideas?
1164290392 M * Bertl dreamind: the problem is, the memory seems to be accounted differently for the process and vserver limits
1164290403 M * dreamind Bertl: ah ok
1164290412 M * Bertl justin_: I answered that in great detail yesterday
1164290431 M * Bertl justin_: seems your IRC client/connection broke down, let me get the logs
1164290435 M * justin_ im sorry, i got disconnected and am using bitchx client
1164290436 M * justin_ lol
1164290450 M * justin_ putty wont scroll up that high 
1164290453 M * justin_ do you have aim?
1164290480 M * justin_ cause when i do vserver vm02 enter it goes to the right vm
1164290506 M * Bertl http://irc.13thfloor.at/LOG/2006-11/LOG_2006-11-23.txt start at 1164254559
1164290532 M * daniel_hozac of course vserver vm02 enter works.
1164290575 M * justin_ ahh
1164290578 M * justin_ never thought of that
1164290591 M * justin_ so in my hosts sshd_config just set it to the hosts single ip
1164290620 M * daniel_hozac right.
1164290709 M * justin_ thanks guys!
1164290713 M * Bertl np
1164290714 M * justin_ it worked like a charm
1164290781 M * dreamind well I now tested a vserver with 10240 pages (40MiB) and my perl test allocated more than 700MiB RSS when I killed it.
1164290795 M * dreamind and the machine started to swap out other processes.
1164290835 M * daniel_hozac so somehow the paths where we check for pages aren't used?
1164290862 M * Bertl we must be missing some 'new' place ....
1164290879 M * Bertl dreamind: could you strace -fF the perl script please?
1164290888 M * Bertl dreamind: and upload to paste.linux-vserver.org
1164290929 J * cubic_ ~krbl@87-126-113-96.btc-net.bg
1164290936 M * Bertl welcome cubic_!
1164290940 M * dreamind Bertl: all it does is use brk();
1164291025 M * Bertl please upload a few lines
1164291050 M * dreamind http://paste.linux-vserver.org/688
1164291060 M * dreamind thats the complete strace untill i killed it
1164291093 M * Bertl okay, brk() does not get real memory, only virtual space
1164291103 M * doener hm, doesn't brk() just increase the data segment and produce mappings to the zero page?
1164291114 M * Bertl the question now is, where does the memory get 'real'
1164291145 M * doener Bertl: so your crystal ball returned from repair? ;)
1164291167 M * Bertl I answered that yesterday *G*
1164291260 M * Bertl hmm, add_mm_rss looks promising
1164291296 M * Bertl no, we already cover that
1164291350 M * dreamind btw, if its for any interest, its an amd64 machine running a 64bit system...
1164291363 M * Bertl hmm .. sure?
1164291379 M * dreamind yup.
1164291383 M * daniel_hozac that's pretty obvious from the strace.
1164291405 M * Bertl ah, yesm but why does the brk use 32bit addresses?
1164291428 M * Bertl nevermind ...
1164291432 J * thunder1 ~thu@tor-irc.dnsbl.oftc.net
1164291435 M * daniel_hozac seems to be 28 bit addresses :)
1164291442 M * Bertl welcome thunder1!
1164291463 M * dreamind Linux stream 2.6.18.3-vs2.1.1.1-master-ap-wdsl #1 Thu Nov 23 00:21:02 CET 2006 x86_64 GNU/Linux
1164291487 M * Bertl so it must be copy_one_pte then
1164291580 M * daniel_hozac hmm? the comment seems to indicate it's copying between tasks.
1164291652 M * daniel_hozac and even if that was it, shouldn't that get accounted?
1164291698 M * justin_ one other question
1164291741 M * justin_ debian doesnt store the passwords in the shadow file, soo im using openvcp and it generates a root password and sticks it in the shadow file... how can i make debian use the shadow file?
1164291750 M * justin_ isnt that something todo with shadow passwords ?
1164291768 M * daniel_hozac pwconv
1164291818 M * justin_ whats that do
1164291832 J * lilalinux_ ~plasma@h1-gw.of.net-lab.net
1164291836 Q * comfrey Ping timeout: 480 seconds
1164291899 M * Bertl dreamind: could you start the script, wait some time
1164291914 M * dreamind Bertl: nope, not on that production server.
1164291931 M * Bertl then send a STOP signal
1164291947 M * dreamind thats what I do, using strg+z
1164291981 M * dreamind now its stopped
1164292003 J * lilalinux__ ~plasma@dslb-084-059-014-119.pools.arcor-ip.net
1164292023 M * dreamind and test.pl uses 413MiB RSS
1164292031 M * dreamind and its still there.
1164292089 Q * justin_ Quit: [BX] "got bitchx?"
1164292096 M * Bertl okay, then please collect the following info:
1164292135 M * Bertl /proc/<pid>/status /proc/meminfo inside and outside the guest and /proc/virtual/<xid>/limits
1164292154 M * Bertl and please upload that to paste.linux-vserver.org
1164292260 M * daniel_hozac humm.
1164292282 M * daniel_hozac is vkill broken in 2.1.1?
1164292292 M * Bertl not that we know of :)
1164292293 Q * lilalinux Ping timeout: 480 seconds
1164292298 M * daniel_hozac or did i enable privacy perhaps...
1164292319 M * daniel_hozac ah, of course.
1164292333 M * dreamind Bertl: I have no file limits, only limit.
1164292341 M * dreamind http://paste.linux-vserver.org/689
1164292360 M * Bertl yeah, tx, I always get that one wrong :)
1164292369 M * dreamind :)
1164292434 M * daniel_hozac that's what i thought, everything gets attributed to anon.
1164292444 Q * lilalinux_ Ping timeout: 480 seconds
1164292445 M * daniel_hozac which makes sense.
1164292460 M * daniel_hozac (as it's not file backed)
1164292484 M * Bertl yes, which is perfectly fine
1164292501 M * Bertl but we actually want anon limits too 
1164292549 M * daniel_hozac right.
1164292563 M * daniel_hozac but is there any particular reason we have ANON in addition to RSS?
1164292656 M * Bertl well, its something different, no?
1164292663 M * daniel_hozac is it?
1164292670 M * Bertl I mean, file backed rss can be discarded
1164292680 M * Bertl (and it will be)
1164292698 M * daniel_hozac so ANON is what people actually want to limit?
1164292698 M * Bertl anon memory directly mapps to swap when swapping out
1164292710 M * Bertl yes, I think so :)
1164292736 M * Bertl but for the sake of user sanity (in regard to memory limits :)
1164292743 M * Bertl we should do the following:
1164292748 M * daniel_hozac seems to me like having them accounted/limited as one (RSS) would be easier.
1164292757 M * Bertl account anon+file as rss
1164292773 M * Bertl additionally show anon and file separately
1164292804 M * daniel_hozac right, sounds good to me
1164292870 M * Bertl we might also want a limit to anon memory too
1164292897 M * Bertl dreamind: would you be able to test such patches somewhere?
1164292940 M * daniel_hozac can we do that easily?
1164292941 M * dreamind Bertl: well I have no secondary machine running vserver.
1164292983 M * Bertl time to get one :) nah, just kidding ...
1164292988 M * TheSeer rpm-fake-resolver: vc_ctx_migrate(): No such process
1164292988 M * TheSeer rpm-fake.so: failed to initialize communication with resolver
1164292989 M * dreamind Bertl: but I could boot that server into a patched kernel today evening...
1164292992 M * TheSeer what is that trying to tell me? ;)
1164293009 M * dreamind Bertl: but it shouldn't oops ;)
1164293019 M * dreamind Bertl: even though it has a rescue system ;)
1164293024 M * Bertl dreamind: I'll try to write working code :)
1164293031 M * dreamind Bertl: :D
1164293044 M * daniel_hozac TheSeer: it depends, what were you trying to do?
1164293057 M * Bertl daniel_hozac: reg TheSeer, this seems to pop up more often lately
1164293076 M * daniel_hozac oh? i can't remember seeing it for a while.
1164293079 M * TheSeer daniel_hozac: build a new vserver?
1164293097 M * TheSeer vserver fcmsv5 build -m yum --hostname fcmsv5.freepoint.de --netdev eth0 --interface 217.114.79.105 --context 1105 -- -d fc6
1164293123 M * daniel_hozac TheSeer: kernel? config?
1164293127 M * Bertl TheSeer: could you upload 'vserver-info - SYSINFO' to paste.linux-vserver.org?
1164293172 M * TheSeer http://paste.linux-vserver.org/690
1164293212 M * daniel_hozac ah 2.2.0... i haven't yet had a chance to try it.
1164293224 M * daniel_hozac there is a pre3 available though ;)
1164293235 M * Bertl let me update the patches with the changes from yesterday
1164293272 M * TheSeer the funny thing is, i have already 5 running guests on that box 
1164293274 M * TheSeer no problems
1164293280 M * daniel_hozac RPM-based?
1164293285 M * TheSeer yep
1164293292 M * daniel_hozac did you build them on that kernel?
1164293307 M * TheSeer yes
1164293321 M * daniel_hozac so what's different between the commands you used?
1164293364 M * dreamind Bertl: just tell me when I shall bould a patched kernel, I but I can only test it after "workhours" in germany ;)
1164293378 M * dreamind I don't want that people recognize a rebooting mailserver :)
1164293458 M * Bertl np, will prepare something for this evening
1164293466 M * dreamind Bertl: ok :)
1164293740 M * TheSeer daniel_hozac: the name, hostname and ip-address?
1164293753 M * daniel_hozac not the xid?
1164293760 M * TheSeer oh, and that, yeah ;)
1164293782 M * TheSeer i grep'd the last vserver build command i used and modified the values
1164293832 M * TheSeer hmm.. now it works again...
1164293833 M * TheSeer wtf?
1164293971 M * daniel_hozac anything in dmesg?
1164294363 M * Torsti76 just for the record: zope3 seems to be incompatible with CAP_NET_RAW on newer vserver-versions - it hangs after several access attempts, while all other services are running smoothly (ssh, apache, ...)
1164294386 M * Torsti76 took me quite a while to figure that
1164294394 M * TheSeer daniel_hozac: i have a trillion "Machine check events logged
1164294394 M * TheSeer " lines
1164294420 M * Bertl Torsti76: hmm, why do you give CAP_NET_RAW?
1164294530 M * TheSeer how do i vserver build a 32bit guest on a x86_64 host?
1164294570 M * DavidS TheSeer: debootstrap takes a '--arch arch' parameter 
1164294600 M * TheSeer that'll be debian specific ;)
1164294633 M * DavidS the best answer i can give
1164294638 M * TheSeer ;)
1164294647 M * TheSeer i want an fc6 32 install ;)
1164294699 M * DavidS TheSeer: you can always get a 32bit .tar.gz from a "real" install
1164294725 M * Bertl just specify the ARCH, IIRC, that is enough
1164294795 Q * cdrx Quit: Leaving
1164294903 N * Hunger _Hunger
1164295010 Q * Carp|razepuhh Ping timeout: 480 seconds
1164295135 Q * michal` Ping timeout: 480 seconds
1164295288 J * justin_ ~justin@cpe-71-65-126-55.woh.res.rr.com
1164295317 M * justin_ ok so to make a debian image you can use debootstrap what can i use to make a fedora one and a centos image
1164295430 M * Bertl yum or rpm
1164295445 M * justin_ yun uses repo files right?
1164295456 M * Bertl probably apt-rpm too and rpmstrap maybe
1164295568 M * TheSeer yum uses repos, yes
1164295613 J * michal` ~michal@www.rsbac.org
1164295714 M * TheSeer Bertl: where do i specify the --arch?  as parameter for vserver build?
1164295727 M * TheSeer verver xxxx build --arch i386 ..... ?
1164295733 J * fluor ~fluor@84.77.170.108
1164295753 M * Bertl wb fluor!
1164295783 M * Bertl TheSeer: either as ARCH=i386 or after several --
1164295845 M * Bertl i.e. something like this:
1164295892 M * Bertl verver xxxx build -m debootstrap ... -- -d etch -- --arch i386
1164295926 Q * justin_ Ping timeout: 480 seconds
1164295953 M * Torsti76 bertl: just a misconfiguration ;o)
1164295964 M * Bertl Torsti76: okay, np :)
1164295982 M * TheSeer doesn't work with fc6
1164295994 M * Bertl TheSeer: hmm?
1164296073 J * Carpenter ~gt-blacks@p5086D424.dip.t-dialin.net
1164296126 M * daniel_hozac TheSeer: rm -f /etc/rpm/platform; setarch i386 vserver ... i think.
1164296130 M * TheSeer setarch i386 vserver xyz  build .....
1164296135 M * TheSeer yeah
1164296144 M * TheSeer just found that ;)
1164296350 M * Bertl welcome Carpenter!
1164296528 M * Bertl Hollow, derjohn: somehow I do not find anything in the new wiki ... could we please structure a few things there?
1164296563 M * Bertl for example, I'm currently looking for the 'Feature Matrix' and I simply can't find it ... again.
1164296604 M * Hollow http://linux-vserver.org/Installation_Considerations
1164296621 M * Bertl how would I happen to get there?
1164296632 M * Hollow there is a link in the downloads section
1164296658 M * Hollow and in the documentation page... i should remove the redirect probably
1164296659 M * Bertl also the DOcumentation section is just a link to the old page, right?
1164296676 M * Hollow if you go to documentation in wiki.* you will get the new page
1164296684 M * Hollow i'm going to remove the redirect
1164296692 M * Bertl okay, please do so
1164296702 M * Bertl IIRC, that should be done for some other pages too
1164296709 M * Bertl (which already have a new version)
1164296727 M * Hollow http://linux-vserver.org/List_of_pages_not_migrated_yet
1164296741 M * Hollow this should be up to date with the redirect map
1164296775 M * Bertl in what direction?
1164296836 M * Hollow the list should be equal to those redirected to oldwiki.*
1164296846 M * Bertl btw, any objections if I move the Feature Comparison to a separate page called Feature Matrix ?
1164296866 M * Bertl Hollow: yeah, what I meant was, does it update the redirect file too?
1164296877 M * Bertl i.e. can I edit that somehow and expect it to work?
1164296902 M * Hollow no.. you must edit the file on the server
1164296916 M * Bertl okay, so only in one direction, np
1164296964 M * Hollow the new doc page is in place now
1164296972 P * Torsti76 
1164297096 M * micah daniel_hozac: ah that, i was puzzled by Ola's response, it doesn't appear he has done anything to fix it although he added the patch tag
1164297098 M * Hollow Bertl: no objections btw.. move it to an extra page..
1164297114 M * Bertl okay, will do so and add 2.2 in this process
1164297151 M * Hollow Bertl: btw, did you read about the hard scheduler not being active on the ML?
1164297171 M * Bertl yes, it's on my todo list
1164297181 M * Hollow ok, i encountered that too lately
1164297181 M * Bertl (i.e. try to recreate that)
1164297188 M * Bertl ah, how so?
1164297191 M * Bertl details?
1164297237 M * Hollow if VXF_SCHED_PRIO was enabled everything seemed to work fine (same for sched_pause), but as soon as VXF_SCHED_HARD was enabled the guest had 100% cpu again
1164297269 M * Bertl and with PRIO?
1164297309 M * Hollow seemed to work, nice level increased
1164297318 M * Bertl but still 100% I hope?
1164297324 M * Hollow yeah
1164297368 M * Hollow on 2.2.0_pre1 ..
1164297515 M * Bertl btw, did you read the discussion about 'auto' migration yesterday?
1164297548 M * Hollow no, did look at it today.. will take a look
1164297578 M * Bertl the question is, would a flag to avoid the migration on context creation help you in any way?
1164297684 M * Hollow not really i guess
1164297708 M * Bertl care to elaborate why?
1164297760 M * Hollow because the setup happens from outside in vcd
1164297771 M * Hollow i.e. it migrates during setup
1164297790 M * Hollow though..
1164297792 M * Bertl that's why we wondered ...
1164297849 M * Hollow actually vshelper migrates.. vcd just calls vx_create, and the kernel calls vshelper which in turn does all the setup and migration + init startup
1164297875 M * Bertl yeah, but vc_create() will throw you into the context
1164297905 M * Hollow why would that matter?
1164297937 M * Hollow after vshelper (i.e. vx_create) returned, the process dies and evreything is fine
1164297946 M * Bertl well, I thought you might want to operate on the context from the thread creating the context
1164298012 M * Hollow well, it would probably save a fork()
1164298020 M * Hollow currently we fork()+vx_create()
1164298229 M * Bertl so it is not really required for you, but you would not object it, right?
1164298247 M * Hollow yep
1164298288 M * Bertl what about the wiki page ML (or some similar functionality)?
1164298335 M * Hollow well, there is only the watchlist feature but you have to add pages manually to that list, probably we have to do something on our own
1164298355 M * Hollow also the anti-spam configuration so far is semi-useful
1164298379 M * Bertl okay, a simple change, sending to a single mail address (which is actually an ML distribution point) should suffice
1164298417 M * Hollow will take a look at both (mail + spam) during the weekend ..
1164298501 Q * thunder1 Remote host closed the connection
1164298508 M * daniel_hozac Bertl: is 2.1.1.2 official?
1164298629 M * Bertl yep
1164298657 M * Bertl 2.2.0-pre4 and 2.0.2.2-rc8 coming up too
1164298683 M * Bertl you have a trigger on that dir, right?
1164298689 J * thunder1 ~thu@tor-irc.dnsbl.oftc.net
1164299325 Q * DavidS Ping timeout: 480 seconds
1164300036 A * dreamind is back again
1164300532 M * micah is there a way to background the starting of vservers, like there used to be for legacy?
1164300697 M * Bertl yes, parallel startup and such, IIRC, check the runlevel script
1164301015 M * micah the runlevels inside the guest? I was meaning more on the host -- you used to be able to do: startservers >/dev/tty8 </dev/tty8 2>/dev/tty8 to have the vservers start on tty9 in the background so the rest of the boot process can continue
1164301112 Q * gerrit Ping timeout: 480 seconds
1164301244 M * matti Bertl: :)
1164301260 M * micah hmm maybe I can do that now with vserver-wrapper still
1164301324 J * FireEgl FireEgl@Sebastian.Atlantica.US
1164301649 J * gerrit ~gerrit@c-67-160-146-170.hsd1.or.comcast.net
1164301850 N * _Hunger Hunger
1164301913 J * bonbons ~bonbons@83.222.39.117
1164302118 M * brcc bertl
1164302170 M * brcc If i connect from the a guest to the host, which will be teh source ip of that connectin? I am getting the host main interface
1164302243 M * daniel_hozac Bertl: hmm? trigger on what dir?
1164302293 Q * lilalinux__ Remote host closed the connection
1164302303 M * daniel_hozac (and what does trigger mean in this instance)
1164302369 M * derjohn off topic Q: (but it's a vserver host :)) i made a lvm2 volgrp setup on top of md. now I want to hotadd a disk to md which was broken. but with Logvol mounted, I dont see the /dev/md any longer (debian sid ...) ... A bug in Debian? Or "works as designed?"
1164302411 M * brcc sorry bertl it had something to do with my nat
1164302414 M * brcc :)
1164302610 Q * m4z Ping timeout: 480 seconds
1164302614 M * Bertl derjohn: what do your mean by 'see'?
1164302646 M * Bertl derjohn: did udev remove the /dev entry or what?
1164302673 M * Bertl daniel_hozac: on my upload dir (Experimental :)
1164302677 M * derjohn Bertl, /dev/md2 is not there. mdadm --examine /dev/sdb2 says no superblock ... but I swear honestly I build the VG on top of md2 !
1164302684 M * derjohn and it was there ....!
1164302714 M * daniel_hozac Bertl: ah, no, hehe, i just refresh that tab every once in a while :)
1164302728 M * Bertl hmm ... sounds like a bug or broken system/hardware
1164302733 M * derjohn lvm2 uses dm, and created /dev/mapper/bla stuff ... 
1164302735 M * derjohn argh
1164302738 M * derjohn again 
1164302746 M * Bertl daniel_hozac: yeah, thought so, but you spotted it a few seconds after my upload :)
1164302749 M * derjohn not broken stuff again ;(
1164302782 M * Bertl well, dm is also capable of doing (some) raid functionality
1164302806 M * Bertl check with dmsetup table
1164303297 M * Bertl was that bon asking for iptables support?
1164303350 J * bronson ~bronson@c-24-16-67-28.hsd1.mn.comcast.net
1164303468 M * daniel_hozac yes.
1164303471 M * derjohn Bertl, pvdisplay told me that the PV is on /dev/sda3 , not /dev/md2. Maybe that happend after the 2nd disk was removed? Now I killed the PV and recreate... let see what happens
1164303475 M * Bertl bon: ping?
1164303678 M * brcc Anyone want to try iptables inside vserver ?
1164303703 M * derjohn brcc, hm, yes :)
1164303717 M * derjohn but just now ive got differnt todos ...
1164303730 M * brcc ok. as soon as you have time, msg me :)
1164303751 M * derjohn Bertl, BTW: The kernel with the hash fix is compiled (without pri..fix02)
1164303770 M * derjohn still need to test? or obsoleted meanwhile ?
1164303776 M * Bertl ah, excellent, please try to crash it :)
1164304097 M * Bertl Hollow: you did observe the hard cpu issues with what kernel version?
1164304221 M * Hollow 2.2.0_pre1
1164304381 M * Bertl could you try a command for me?
1164304497 M * dreamind Bertl: 2.2.0pre1 has that rss problem too, right?
1164304511 M * daniel_hozac yes.
1164304521 M * daniel_hozac all of them have it.
1164304525 M * Bertl well, as we figured, it is not a 'problem' per se ... more a missing feature
1164304790 T * daniel_hozac http://linux-vserver.org/ | latest stable 2.02.1, exp 2.02.2-rc8, devel 2.1.1.2, 2.2.0-pre4, stable+grsec 2.0.2.1, devel+grsec 2.1.1 | util-vserver-0.30.211 | libvserver-1.0.2 & vserver-utils-1.0.3 | He who asks a question is a fool for a minute; he who doesn't ask is a fool for a lifetime -- share the gained knowledge on the Wiki, and we'll forget about the minute ;)
1164304803 M * Bertl ah, tx
1164304814 M * dreamind Bertl: ok, but its really important for me *g*
1164304826 M * daniel_hozac dreamind: if you have a patch, do share :)
1164304826 M * Bertl dreamind: working on it as we speak
1164304843 M * dreamind Bertl: nice :DD
1164304893 M * Hollow Bertl: sure
1164304912 M * Bertl http://linux-vserver.org/VCMD_HowTo last line
1164304928 M * Bertl (adjust the pathes if necessary)
1164305038 M * Hollow 100% CPU
1164305062 M * Bertl works fine here ... (2.2.0-pre4)
1164305067 M * Hollow pre2 here
1164305096 M * Bertl what arch?
1164305098 M * daniel_hozac Hollow: hmm, anything in dmesg?
1164305110 M * Hollow nothing ..
1164305240 M * bon Bertl: pong :)
1164305244 M * daniel_hozac Bertl: where could i get the most recent 1.3 patch?
1164305262 M * daniel_hozac well, last 1.3 patch, i guess.
1164305287 M * Bertl bon: brcc has a prototype version for guest iptables .. wanna try?
1164305344 M * derjohn Bertl "ah, excellent, please try to crash it :)" .. was that for /me ? well, I dunno how I crashed it, but I feel I should do so on the same machine/setup ?
1164305372 M * Bertl daniel_hozac: Experimental/OBSOLETE/delta-vs1.3.9-vs1.3.9.1.diff
1164305408 M * Bertl derjohn: yeah, that'd be fine .. but any machine will do, with similar commands
1164305413 M * daniel_hozac Bertl: thanks.
1164305434 M * Bertl you're welcome!
1164305447 M * derjohn Bertl, similar commands ? ah, stuff like fstab.remote could be special in that case
1164305449 M * bon Bertl: yeah, got the patch somewhere? :)
1164305458 M * derjohn well, I think i'
1164305464 M * derjohn ll have to crash that prodiction machine again
1164305475 M * Bertl bon: it's userspace for now, please contact brcc directly
1164305501 M * derjohn but as long as the vservers arent set to autostart, the reset should solve the crash situation ;)
1164305509 M * derjohn I will do so about 223ß
1164305512 M * derjohn 2230h
1164305532 M * Bertl np, please keep us posted
1164305558 M * derjohn Bertl, you think it will fix problem? Or do you want to prove yout theory it really crashes ?
1164305568 J * s0undt3ch_ ~s0undt3ch@81.193.58.122
1164305582 M * daniel_hozac derjohn: it shouldn't crash.
1164305590 M * daniel_hozac but you shouldn't be able to create a network context either.
1164305607 M * daniel_hozac (i.e. chbind --ip 127.0.0.1 true should fail)
1164305611 M * derjohn daniel_hozac, hm? you mean without priv..fix02 ?
1164305617 M * Bertl yep
1164305621 M * daniel_hozac well, that's obsoleted now.
1164305637 M * derjohn daniel_hozac, could that also be the cause for my former NFS problems in some way? or unlikely ?
1164305643 M * daniel_hozac or actually, the unhash fix removed lock too, no?
1164305660 M * Bertl yep
1164305670 M * daniel_hozac so everything should work.
1164305674 M * daniel_hozac sorry.
1164305696 M * derjohn hm, but not network context (no fstab.remote?)
1164305704 M * daniel_hozac that should work too.
1164305725 M * derjohn so the hashfix solved all the problems? (except to new rss problem) ?
1164305737 M * daniel_hozac yes, it should've.
1164305751 M * Bertl derjohn: there is no rss problem, as we clarified :)
1164305783 A * derjohn is specialized in only listening with only one ear ;)
1164305808 M * daniel_hozac no, i was misremembering now, chbind --ip 127.0.0.1 true _should_ fail.
1164305815 M * daniel_hozac delta-private-fix03 is what removes lock.
1164305845 M * Bertl I thought you meant the patch which went into the release
1164305866 M * Bertl but yeah, we want the create to 'fail' and potentially trigger issues
1164305902 M * daniel_hozac right.
1164305914 M * Bertl or should that be: trigger potential issues?
1164305968 M * bon bertl are you being paid for vserver development? since i only see you hang around here everytime i attach my irc client ;)
1164306014 Q * s0undt3ch Ping timeout: 480 seconds
1164306014 N * s0undt3ch_ s0undt3ch
1164306041 M * Bertl bon: depends, some companies decide to pay for certain developments from time to time ... but typically it's not enough to pay my bills :)
1164306069 M * Bertl bon: feel free to sponsor further development ...
1164306073 M * Skram : )
1164306136 M * daniel_hozac Bertl: NXF_HIDE_NETIF == VXF_HIDE_NETIF, right? is it used in 2.3 only?
1164306158 M * Bertl yes, VXF_HIDE_NETIF will go away in 2.3
1164306183 J * m4z m4z@bastard-operator.from-hell.net
1164306290 M * Bertl wb m4z!
1164306308 M * m4z tx Bertl! you seem to be bored (;
1164306319 M * Bertl not really :)
1164306345 M * daniel_hozac will network caps be called NXC_*?
1164306357 M * bon Bertl: we might be having some reports on iptables support tonight
1164306363 M * Bertl daniel_hozac: I'd say so ...
1164306367 M * bon as at the moment i am sitting in a cafe :)
1164306382 M * daniel_hozac ok, just checking before i commit :)
1164306391 M * Bertl bon: and that keeps you from testing? :)
1164306399 M * m4z i for my part ignore joins/parts/quits because they get on my nerves but you greet everyone - thats kind but gives the impression of boredom d;
1164306452 M * bon Bertl: mz girlfriend is getting angry on me :)
1164306453 M * bon my
1164306454 M * Bertl ah, well, depends on the person I guess, most of the folks around consider it 'just friendly' :)
1164306464 M * Wonka bon: have fun with her...
1164306471 M * bon Wonka: heh, thanks ;)
1164306484 M * Bertl bon: and your keyboard layout is wrong :)
1164306493 M * bon Bertl: indeed, i consider this to be one of the friendliest channels
1164306500 M * bon people develop but still are friendly ;)
1164306509 M * bon Bertl: that is from switching various layouts inside winxp
1164306748 M * daniel_hozac Bertl: ok, util-vserver trunk should now support all of the kernel names, with or without prefix :)
1164306913 M * Bertl excellen!
1164307198 M * Bertl +t
1164308021 M * dreamind Bertl: anytime you have a patch ready I could test it :)
1164308042 M * Bertl okay, should have something within the hour
1164308047 M * dreamind :D
1164308155 M * Bertl as usual, it's thinking a long time about a proper solution, then coding a few lines :)
1164308207 M * dreamind Bertl: yup thats normal :)
1164308509 M * Bertl brb, need something to eat :)
1164308527 M * Hollow daniel_hozac: wouldn't it be nice to have something like http://paste.linux-vserver.org/691 for util-vserver too?
1164308587 M * daniel_hozac i've been thinking about it, at least for the interfaces that are queryable.
1164308625 M * Hollow well, for bcaps, ccaps, cflags, etc you have the lists already in util-vservers libvserver as well, no?
1164308643 M * daniel_hozac indeed.
1164308643 M * Hollow other lists might be not as interesting ..
1164308666 M * Hollow so it should be a simple iteration through these lists..
1164308677 M * Hollow and it's quite handy ;)
1164308697 M * phreak`` Hollow: hrm, all I hear you saying all day long is "lists, lists, lists, lists ..."
1164308700 A * phreak`` runs
1164308753 M * Hollow lists are awesome
1164308755 M * Hollow :P
1164310262 M * Bertl back now
1164310311 M * TheSeer hmm.. what would be the smartest way today to physically move a vserver guest to a new box?
1164310321 M * TheSeer using vserver-copy from 2002? ;)
1164310374 M * Bertl daniel_hozac: what is the status of 'copy' and 'clone' in the tools atm?
1164310438 N * BSc`phedny phedny
1164310512 J * yarihm ~yarihm@84-75-123-221.dclient.hispeed.ch
1164310663 M * daniel_hozac currently still missing.
1164310673 M * daniel_hozac i suppose an rsync build method wouldn't be much work though.
1164312671 Q * cubic_ Quit: enhance 34 to 46; pull back; wait a minute ... go right; stop; enhance 57, 19
1164313104 M * dreamind btw, one question, is it really needed to have xid flags on the filesystem? and is this possible with xfs while still using big (>16bit) uid/gid's?
1164313138 M * daniel_hozac it's required for certain features, like disk limits.
1164313162 M * dreamind well I don't need disk limits, because every vserver gets its own logical volume on lvm.
1164313612 M * Bertl dreamind: no, it's not required, yes it works with xfs and it is also supposed to work with big (e.g. 24bit uid/gid)
1164313647 M * dreamind hm... dunno why but chxid didn't work :(
1164313677 M * Bertl probably your filesystem is not mounted with tag?
1164314008 M * dreamind yup probably.
1164314067 M * dreamind no filesystem on that server is mounted with tagxid
1164314083 M * dreamind guess if its only for disk limits, then I don't need it
1164314908 M * Bertl dreamind: what was that perl line again?
1164314941 M * dreamind my @blah = (); while (1) { push @blah, "blah"; }
1164314953 Q * TheSeer Remote host closed the connection
1164314965 M * dreamind thats the actual code I used, the line before was only typed manually ;)
1164315145 M * Bertl okay, will take a little longer than expected, have to prepare some tests ...
1164315395 M * dreamind Bertl: ok :)
1164315428 M * dreamind how long it takes it not that important, as long as I know somebody cares about the problem :)
1164315774 J * Piet hiddenserv@tor.noreply.org
1164315795 J * Aiken ~james@tooax6-207.dialup.optusnet.com.au
1164316438 M * daniel_hozac Bertl: do you think it'd be ok to put CLONE_NEWUTS|CLONE_NEWIPC into vnamespace? or would it be better to wait until we've stabilized it somewhat, and maybe written another util?
1164316986 Q * Johnnie Read error: Connection reset by peer
1164317070 M * Bertl daniel_hozac: I see no problem with that
1164317085 M * Bertl the flags are unused for <2.6.19
1164317097 M * Bertl and 2.6.19 will require them to work ...
1164317203 M * daniel_hozac right.
1164317303 J * Johnnie ~jdlewis@jdlewis.org
1164317490 Q * bonbons Quit: Leaving
1164318464 M * brcc bertl, i read somewhere on the ML about quota support on shared partitions. dont remove the part of the implementation. quota in shared partitions is really usefull
1164318530 M * Bertl brcc: well, we'll see who comes up and prepares the tests
1164319023 Q * meandtheshell Quit: Leaving.
1164319700 Q * dna_ Quit: Verlassend
1164320204 M * dreamind Bertl: if you don't have any patch ready today, over the weekend you can only reach me via mail... (if I should test something)
1164320520 M * Bertl there should be 'something' to test today ... but it won't hurt to show up now and then
1164320537 M * dreamind ok
1164320551 M * dreamind maybe I can manage to be on the net saturday ;)
1164320559 J * oli ice@p54A3B389.dip0.t-ipconnect.de
1164320562 M * oli Hi all
1164320568 M * dreamind hi oli 
1164320579 M * oli hi dreamind 
1164320605 N * oli crypt
1164320624 M * crypt I have a question conserning testfs.sh
1164320661 M * crypt what do i have to change to get state 116 green?
1164320802 J * Beuc ~yo@perso.beuc.net
1164320826 M * Beuc Hi, I just hit a kernel BUG at kernel/vserver/network.c:147! What should I do? :)
1164320837 M * Bertl upgrade to a newer kernel patch :)
1164320851 M * Beuc It's vs2.0.2.2-rc8
1164320906 M * Bertl hum, sure?
1164320990 M * Beuc It's something I compiled yesterday. Currently the machine is panic'd and I can't access it (remote access + thanksgiving...)
1164321002 M * Beuc So maybe it was rc7
1164321021 M * Bertl okay, that would match it ...
1164321028 M * Beuc Yes, that's it
1164321030 M * Bertl it was fixed yesterday
1164321052 M * crypt Bertl, was means when state 116 of testfs.sh is red?
1164321058 M * Beuc darn - if only I had recompiled the kernel today... :)
1164321106 M * Beuc Thanks then :)
1164321106 M * Bertl Beuc: trust me, it was a glitch which was completely unintentional
1164321125 M * Bertl crypt: it means that the CoW link breaking _did_ break the link
1164321139 M * Bertl crypt: that's not unexpected with recent kernels
1164321154 M * Bertl matti: any progress/success on updating that?
1164321157 M * crypt ok so i can continue my changes with quota
1164321189 M * Beuc Incidentally, do you know about a way to reboot an HP Proliant via it's ILO? I
1164321203 M * Bertl yes, actually I do :)
1164321214 M * Bertl what iLO do you have?
1164321261 M * Beuc I have little info on that machine. It was bought in 2003.
1164321316 M * Beuc apparently a Proliant DL380
1164321324 M * Bertl try 'power reset
1164321377 M * Bertl (assuming you have a command line logon :)
1164321397 M * Beuc I use telnet
1164321416 M * Bertl okay, so like this: >hpiLO-> power reset
1164321534 M * Beuc Hmm, when I telnet I'm asked a login/passwd. I enter the credentials, and I see what's on the screen. Do you mean I have to type this verbatim, or is here some kind of menu somewhere?
1164321560 M * Bertl on the screen means the terminal?
1164321567 M * Bertl i.e. the remote console view?
1164321592 M * Beuc I think so.
1164321621 M * Beuc (that's the first and only proliant I use, so I'm not very familiar :))
1164321643 M * Bertl if so, then try pressing ,./ or CTRL-[ 
1164321746 M * Bertl ah, CTRL-] actually
1164321776 M * Beuc CTRL-] is for telnet right?
1164321822 M * Bertl ah, right, sec, I have it here in my notes
1164321830 M * Beuc :)
1164321861 M * Bertl CTRL-P 0
1164321879 M * Bertl CTRL-P ! (reboot)
1164321996 M * Beuc I can't get it to work :/
1164322005 M * Bertl ah, here it is for older ones
1164322021 M * Bertl ESC R ESC r ESC R (why didn't I remember? :)
1164322167 M * Beuc I'm doomed. I tried with the keyboard and with telnet's "send escape" - nope produce a change :/
1164322217 M * Beuc The fact Linux is panic'd might not help - the machine still pings though.
1164322227 M * Bertl do you know if you are on the console or the iLO?
1164322233 M * Bertl i.e. the command line?
1164322245 M * Bertl do you get any reaction if you type?
1164322251 M * Beuc None.
1164322265 M * Bertl okay, and you get there right after the telnet?
1164322300 M * Beuc When I telnet, I have the credentials screen, then something that looks like a Ctrl+Alt+F1 screen
1164322330 M * Bertl what happens when you press ESC-(
1164322330 M * Beuc When I reboot, I can glimpse a few startup messages and I can type keys when they're grub
1164322345 M * Bertl ah, so you can reboot?
1164322363 M * Bertl I thought you tried to boot the machine without success?
1164322368 M * Beuc Currently not.
1164322372 M * Bertl what am I missing then?
1164322380 M * Beuc But I had rebooted it earlier - like last month
1164322396 M * Beuc I was describing the ILO generaly
1164322407 M * Bertl if you _are_ in virtual console mode right now, you have to exit
1164322419 M * Bertl (or send the ESC R ESC r ESC R sequence)
1164322426 M * Bertl note, the R vs r
1164322500 M * Beuc A bit more info: I'm SSHing to a machine, then telneting from it.
1164322511 M * Bertl btw, if you are doing that from a graphical environment, you might want to make sure that the keys are actually sent there
1164322538 M * Bertl (and ESC is the escape key :)
1164322587 M * Beuc Emacs on the SSH'd machine says I'm typing ESC - apparently that passes throuh.
1164322598 M * crypt gn8 all i'm off
1164322628 M * Beuc Do you mean I type ESC R ESC r ESC R during the crendentials or after being logged? I tried both though
1164322645 M * Bertl after being logged in
1164322682 M * Bertl unless you get a prompt, in which case you type server reset or power reset
1164322683 M * Beuc I just tried. I never saw anything else than this console screen btw, I don't know if I can escape it.
1164322707 M * dreamind nite folks :)
1164322719 M * Bertl good night crypt! dreamind!
1164322720 Q * crypt Quit: Leaving
1164322725 M * dreamind gn8 Bertl :)
1164322727 Q * dreamind Quit: dreamind
1164322807 M * Beuc ESC-( is silent as well
1164322811 M * Bertl Beuc: btw, the timeout for the sequence keys is one second
1164322821 M * Bertl (so you have to type fast :)
1164322847 M * Bertl does ESC Q terminate the session?
1164322861 M * Beuc Does't look like
1164322879 M * Bertl I'd say your iLO is confused then
1164323008 M * Beuc Probably I guess :)
1164323316 M * Bertl check out the iLO manuals from HP, maybe they contain more information than I could provide
1164323336 M * Beuc I'll try to dig them out :)
1164323372 M * Bertl okay ... nap attack ... back later :)
1164323379 N * Bertl Bertl_zZ
1164323687 M * micah daniel_hozac: simple fix of the wiki URLs, three files to change
1164323691 M * micah daniel_hozac: 15:58 < Bertl> good night crypt! dreamind!
1164323693 M * micah err
1164323695 M * micah bad paste!
1164323703 M * micah daniel_hozac: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=%23400101
1164323966 M * ntrs Is there a changelog for 2.1.1.2 from 2.1.1.1?
1164323980 M * ntrs What was changed?
1164324130 J * adrien ~mirc@ppp08-89.dsl.citenet.net
1164324147 M * adrien Hi
1164324159 M * adrien I'm trying to virtualize an existing centos4 server
1164324167 M * adrien I can start the server
1164324182 M * adrien but when I enter it
1164324183 M * adrien I got
1164324192 M * adrien vlogin: openpty(): No such file or directory
1164324205 M * adrien any Idea of what I am missing ?
1164324306 J * DavidS ~david@chello062178045213.16.11.tuwien.teleweb.at
1164324532 M * adrien Ok I found
1164324555 M * adrien I forgot to do the mknod thing
1164324733 M * daniel_hozac micah: thanks, i'll add it.
1164324758 M * daniel_hozac ntrs: you want to use 2.1.1.2, 2.1.1 and 2.1.1.1 are broken.
1164324884 M * daniel_hozac micah: hmm, where's the patch?
1164324921 M * Beuc Bertl_zZ: eventually another admin used an https interface to reboot the machine. The key shortcut still don't work in Console mode ;) Thanks.
1164325080 M * derjohn does mysql need special capabilitie or other care ? I try to run it in stable
1164325083 M * derjohn 2.0.2
1164325121 M * daniel_hozac derjohn: it shouldn't.
1164325131 M * derjohn it doesnt want to start. 
1164325143 M * derjohn but the whole guest is simply copied. grrr
1164325232 Q * bronson Quit: Ex-Chat
1164325238 M * daniel_hozac micah: i don't think your fix is correct.
1164325249 M * daniel_hozac the current FAQ doesn't mention procfs security at all.
1164325259 M * daniel_hozac derjohn: should it?
1164325324 M * derjohn /usr/bin/mysqladmin: connect to server at 'localhost' failed
1164325335 M * derjohn on debian etch , etch guest, too
1164325350 M * derjohn localhost is set to it public ip in /etc/hosts
1164325363 M * derjohn and it did work on one of my devel kernels before
1164325392 M * daniel_hozac does netstat show it as listening?
1164325416 M * derjohn Nov 24 00:41:40 localhost mysqld[6394]: 061124  0:41:40 [ERROR] Can't start server : Bind on unix socket: Permission denied
1164325426 M * derjohn hmmm
1164325433 M * daniel_hozac can the mysql user access the directory?
1164325439 M * daniel_hozac and has write access?
1164325456 M * derjohn shiiit
1164325468 M * derjohn I sync i didnt rsync the uids correctly
1164325477 M * derjohn *think
1164325481 M * derjohn wtf !
1164325484 M * derjohn omg !
1164325805 P * Beuc Leaving
1164326253 M * daniel_hozac micah: http://svn.linux-vserver.org/projects/util-vserver/changeset/2396