1170633729 M * cehteh [PATCH] add child reaper to pid_namespace
1170633742 M * cehteh .. nice does vserver use that yet?
1170633751 M * cehteh (.20 kernl)
1170634039 M * daniel_hozac given that there's no patch for 2.6.20 yet, no :)
1170634061 M * daniel_hozac but that was ripped out, if i understood things correctly.
1170634070 M * daniel_hozac (it caused various problems)
1170634079 M * daniel_hozac so we'll need to readd it anyhow.
1170634588 M * matti :>
1170634597 M * matti Night folks.
1170634598 M * matti ;]
1170634724 M * daniel_hozac anyone well-versed in kconfig?
1170634772 M * daniel_hozac is there a technical reason select doesn't act recursively?
1170634830 M * daniel_hozac e.g. IPC_NS depends on SYSVIPC, and VSERVER selects IPC_NS, but SYSVIPC stays disabled leading to a broken configuration.
1170634877 M * matti daniel_hozac: Look at other entries in Kconfig ;]
1170634891 M * matti daniel_hozac: You can even copy and paste them, and only change values :]
1170634891 Q * dna Quit: Verlassend
1170634899 M * daniel_hozac you mean there is a recursive select?
1170634935 M * daniel_hozac AFAICT there's nothing that checks that the dependencies of the selectee are fulfilled.
1170634984 M * matti Well, there's no automatically or automagically sanity check... if this is what you mean.
1170635006 M * daniel_hozac there's some sanity checking.
1170635031 M * daniel_hozac for instance it makes sure the selectee is a boolean or a tristate.
1170635049 M * daniel_hozac (as well as the selector)
1170635104 M * daniel_hozac (scripts/kconfig/menu.c:sym_check_prop)
1170635110 M * matti Hm...
1170635119 M * matti I didn't know that.
1170635127 M * matti I never trusted Kconfig ;]
1170635161 M * daniel_hozac adding select SYSVIPC to VSERVER just to satisfy IPC_NS's requirements seems wrong to me.
1170635178 M * daniel_hozac select X should mean that X gets selected, along with whatever it needs.
1170635182 M * matti Nasty workaround.
1170635302 M * daniel_hozac i don't really feel like learning the ins and outs of kconfig to implement the correct thing though...
1170635404 Q * Radiance Remote host closed the connection
1170637737 Q * rpc Ping timeout: 480 seconds
1170638573 Q * debugger Ping timeout: 480 seconds
1170644907 Q * puck Remote host closed the connection
1170645126 J * puck ~puck@leibniz.catalyst.net.nz
1170646496 J * adamm ~adamm@polaris.galacticasoftware.com
1170646589 M * adamm Is there a SVN or CVS or similar access to the source code for vserver?
1170646920 N * Bertl_zZ Bertl
1170646930 M * Bertl morning folks!
1170646951 M * Bertl adamm: you mean the kernel or the userspace tools?
1170647863 M * adamm Bertl: I mean the kernel. usertools would be good too :)
1170647907 M * Bertl the kernel is not yet handled with a revision/version control per se, the tools have their svn/cvs repositories
1170647934 M * Bertl sooner or later the kernel will get a git tree ...
1170647990 M * adamm oh. ok.
1170648129 J * infowolfe ~infowolfe@c-67-164-195-129.hsd1.ut.comcast.net
1170648134 A * infowolfe waves at Bertl 
1170648139 M * Bertl hey infowolfe!
1170648156 M * infowolfe so i'm finally on a box that is worthwhile to run vservers on again :-p
1170648166 M * Bertl long time :)
1170648169 M * infowolfe for sure :-p
1170648178 M * infowolfe what's your opinion on this kvm stuff btw?
1170648192 M * Bertl well, kvm stuff :)
1170648204 M * Bertl not really Linux-VServer related, is it?
1170648215 M * infowolfe i was asking because it's basically stepping on your toes ;-)
1170648228 M * infowolfe linux-vserver is still a better solution for most people
1170648237 M * Bertl nah, not really, you can't do OS-level virtualization with kvm
1170648259 M * Bertl and I'm glad that Linux-VServer works quite well with Xen for some time now ...
1170648266 M * infowolfe :-)
1170648456 M * infowolfe Bertl, do you have any cutting edge stuff that needs to be broken?
1170648608 M * Bertl 2.2.0-rc10 could need some bashing, but not really cutting edge ... it's the upcoming stable branch
1170648629 M * infowolfe anything that applies against 2.6.20? ^.^
1170648655 M * Bertl nope, that will take some while, a lot of stuff is broken in 2.6.20 and needs to be fixed first
1170648662 M * infowolfe alright
1170648665 M * infowolfe i'll take my time then
1170648677 M * infowolfe barring any major issues, i should be around
1170648682 M * Bertl Linux-VServer style virtualization is getting into mainline, so we have to add workarounds :)
1170648698 M * infowolfe you talking about the kvm para-virt stuff?
1170648708 M * Bertl nope, OS-level virtualization
1170648717 M * infowolfe i'm not familiar with the major difference
1170648721 M * Bertl we already have UTS and IPC namespaces there
1170648728 M * infowolfe ah
1170648748 M * Bertl basically Xen and friends emulate an entire machine, with all drawbacks
1170648766 M * Bertl duplicate caches, duplicate kernel, device indirections
1170648774 M * infowolfe of course
1170648780 M * infowolfe and the overhead associated with such a method
1170648792 M * Bertl the OS-level virtualization (Linux-VServer) happens below the kernel, between kernel and userspace
1170648916 M * infowolfe with the machine layer being highest and userspace being lowest, right?
1170648923 M * Bertl yep
1170648960 M * infowolfe the one idea that i really like about the early kvm stuff that i saw was the fact that each vm is only a single process to the host machine
1170648977 M * Bertl like with UML? :)
1170648991 M * infowolfe but without all the other drama associated with UML
1170649077 M * Bertl well, it is very much UML + skas, what drama do you associate with UML?
1170649160 M * infowolfe performance issues mainly
1170649176 M * infowolfe I really don't like having to do loop filesystems either ;-)\
1170649187 M * Bertl I don't think there will be a big difference ...
1170649223 M * Bertl if properly done, Xen and UML+skas should have similar performance
1170649250 M * infowolfe I haven't played with UML since before I came to you a couple years ago ;-)
1170649261 M * infowolfe well, Jacques, but you get the idea ;-)
1170649268 M * Bertl yeah :)
1170649276 M * infowolfe heh
1170652567 Q * thunder1 charon.oftc.net kinetic.oftc.net
1170652567 Q * comfrey_ charon.oftc.net kinetic.oftc.net
1170652567 Q * DreamerC charon.oftc.net kinetic.oftc.net
1170652567 Q * nox charon.oftc.net kinetic.oftc.net
1170652838 J * thunder1 ~thu@tor-irc.dnsbl.oftc.net
1170652845 J * DreamerC ~dreamerc@125-225-96-10.dynamic.hinet.net
1170653033 J * comfrey_ ~comfrey@70.91.185.84
1170653045 J * nox ~nox@static.88-198-17-175.clients.your-server.de
1170653612 J * bj_ ~bj@insanefactory.com
1170653645 J * PowerKe_ ~tom@d54C13E4B.access.telenet.be
1170653653 J * _[PUPPETS]Gonzo gonzo@langweiligneutral.deswahnsinns.de
1170653695 J * mugwump_ ~samv@watts.utsl.gen.nz
1170653713 Q * PowerKe synthon.oftc.net strange.oftc.net
1170653713 Q * Medivh synthon.oftc.net strange.oftc.net
1170653713 Q * [PUPPETS]Gonzo synthon.oftc.net strange.oftc.net
1170653713 Q * mugwump synthon.oftc.net strange.oftc.net
1170653713 Q * CHTEKK synthon.oftc.net strange.oftc.net
1170653713 Q * cryptronic synthon.oftc.net strange.oftc.net
1170653713 Q * bj synthon.oftc.net strange.oftc.net
1170653755 J * mine ck@paradise.by.the.dashboardlight.de
1170654000 J * CHTEKK ~chtekk@62.48.110.172
1170654090 J * cryptronic crypt@mail.openvcp.org
1170654488 N * _[PUPPETS]Gonzo [PUPPETS]Gonzo
1170655191 Q * adamm Quit: adamm
1170655758 M * nebuchadnezzar morning folks
1170656387 M * Bertl good morning!
1170657534 N * PowerKe_ PowerKe
1170660253 Q * cdrx Ping timeout: 480 seconds
1170660452 M * jjpacheco morning Bertl!
1170660496 M * Bertl hey jjpacheco!
1170661900 J * meandtheshell ~markus@85-125-230-204.dynamic.xdsl-line.inode.at
1170661919 M * jjpacheco weee
1170661921 M * jjpacheco 2.6.20
1170661924 M * jjpacheco is out!
1170661931 M * Bertl yep, we know :)
1170661936 M * jjpacheco ooo
1170661942 M * jjpacheco been out since 7, haha
1170661948 M * Bertl yup
1170661984 M * jjpacheco nice round number
1170662033 M * Wonka mmh, when will there be vserver patches for it? ;)
1170662364 M * Bertl yep, but it will take some time ...
1170662386 M * Bertl i.e. there are several changes which have to be tested/integrated
1170662764 J * dna ~naucki@223-236-dsl.kielnet.net
1170662772 Q * dna 
1170662886 J * rpc ~no@ahm2.neoplus.adsl.tpnet.pl
1170662892 M * rpc morning everyone
1170663381 M * Bertl morning rpc!
1170663559 J * cdrx ~legoater@blueice3n1.uk.ibm.com
1170663724 M * cdrx morning
1170663738 M * Bertl good morning cdrx!
1170663743 J * Radiance 26e364673c@halt.1984world.eu
1170663773 Q * dlezcano Ping timeout: 480 seconds
1170664489 Q * michal` Ping timeout: 480 seconds
1170664492 Q * Aiken Quit: Leaving
1170664520 M * renihs morning #vserver :)
1170665000 Q * ag- Read error: Connection reset by peer
1170665016 J * ag- ~ag@caladan.roxor.cx
1170665022 J * michal` ~michal@www.rsbac.org
1170665693 M * renihs gruml, unionfs doesnt compile for vserver-sources-2.3.0.8 (gentoo), and for some reason the .19 patches have dissapeared from their homepage
1170666277 Q * FireEgl Ping timeout: 480 seconds
1170666404 M * renihs bah, unionfs doesnt want to compile :( need that for the vserver livecds :)
1170666409 J * FireEgl ~FireEgl@adsl-17-148-82.bhm.bellsouth.net
1170666571 J * rgl ~Rui@84.90.10.107
1170666845 Q * kir Ping timeout: 480 seconds
1170666858 J * kir ~kir@swsoft-mipt-nat.sw.ru
1170666939 Q * shedi Quit: Leaving
1170666967 Q * FireEgl Ping timeout: 480 seconds
1170667521 J * FireEgl Proteus@68.220.222.136
1170667566 Q * thunder1 Remote host closed the connection
1170667596 J * thunder1 ~thu@tor-irc.dnsbl.oftc.net
1170667685 J * dlezcano ~dlezcano@blueice4n2.uk.ibm.com
1170667857 M * renihs i guess i will have to wait for .20 :)
1170667907 M * waldi did the unionfs people fix the global lock on copy CoW operations?
1170667913 M * waldi s/copy //
1170667921 M * renihs dunno
1170668089 M * renihs however unionfs doesnt compile :)
1170668091 M * renihs so i guess not
1170668162 M * renihs   CC [M]  fs/unionfs/inode.o
1170668162 M * renihs fs/unionfs/inode.c: In function 'unionfs_link':
1170668162 M * renihs fs/unionfs/inode.c:277: error: too few arguments to function 'vfs_unlink'
1170668165 M * renihs gna :(
1170668181 M * waldi that is intentional
1170668189 M * renihs hmm?
1170668219 M * Bertl add a NULL argument
1170668240 M * renihs hmm? how where?
1170668247 A * renihs will happily add any NULL
1170668409 M * Bertl vfs_unlink(a,b,c,d) -> vfs_unlink(a,b,c,d,NULL)
1170668457 M * renihs ok :)
1170668466 M * renihs ah, so there are more arguments?
1170668483 M * Bertl as the error says: too few arguments
1170668534 M * renihs hmm still too few hmm 
1170668573 M * renihs however i am not sure if i should just add there: (+277 inode.c):    vfs_unlink(hidden_dir_dentry->d_inode, whiteout_dentry);
1170668585 M * renihs can i just add beyond the whiteout_dentry?
1170668596 M * Bertl you will have to :)
1170668605 M * renihs :)
1170668608 M * Bertl well, actually the unionfs will not be proper vserver aware
1170668621 M * Bertl we already saw that last time, but it should work somewhat
1170668638 M * renihs gruml
1170668645 M * renihs no i get too many arguments
1170668664 M * renihs if i remove one more i get too few
1170668665 M * renihs :)
1170668668 M * Bertl then you added more than one NULL
1170668682 M * renihs if i add 1xNULL = too few
1170668689 M * renihs if i add 2x NULL = too many :)
1170668746 M * renihs ah me needs to learn reading
1170668771 M * renihs to few arguments on another location (i assume thats logical :)
1170668903 M * renihs Bertl is without doubt a genius 
1170668910 M * renihs works :)
1170669012 M * renihs so many NULL to be added :)
1170669163 J * DavidS ~david@chello062178045213.16.11.tuwien.teleweb.at
1170669222 M * renihs mkay, now i have a solution, everytime i see too few arguments i guess i will just try to add a NULL :)
1170669249 M * renihs however adding a NARF would be much cooler
1170669271 M * Bertl well, #define NARF NULL
1170669277 M * renihs ahhh :)
1170669278 M * renihs cool
1170669291 M * renihs mkay, i will do that next time :)
1170669291 M * dm8tbr but occassionally your system might go FOO or BAR
1170669306 M * renihs i assume that would be normal once i mess around :)
1170669568 J * dna ~naucki@74-201-dsl.kielnet.net
1170670090 M * Bertl okay, off for now ... back later ...
1170670103 N * Bertl Bertl_oO
1170670992 M * renihs cya
1170672741 J * shedi ~siggi@dsl-149-109-85.hive.is
1170672763 M * renihs hmm running the unionfs vserver livecd within vmware gives me an error with util-vserver (line 1223) with /bin/umount no such file or dir 
1170673819 M * Hollow daniel_hozac: around?
1170673844 M * daniel_hozac yep
1170673889 M * Hollow daniel_hozac: why does copyMMap in unify-copy.c only copy small parts in a while loop? only thing i can think of is not to map a huge file into mem?
1170673967 M * daniel_hozac i guess so.
1170673998 M * Hollow but does mmap even load the whole file into mem?
1170674007 M * Hollow (at least if you did not use mlock)
1170674131 M * Hollow since you can control the read behaviour with madvise it does not seem so
1170674144 M * daniel_hozac right, mmap doesn't.
1170674192 M * matti :-)
1170674305 M * daniel_hozac i guess it doesn't really matter.
1170674324 M * matti daniel_hozac: Kconfig problem solved?
1170674339 M * daniel_hozac well, "solved" with the workaround.
1170674426 M * matti daniel_hozac: If it works... leave it. It is not worth of wasting more time though.
1170674429 M * matti :)
1170674560 M * matti Quick question: what is the difference between ${i} and $i? I know, that the second case is deprecated, but I wonder, why?
1170674577 M * matti Hmhmh.
1170674680 M * daniel_hozac in what instance?
1170674705 M * matti In bash scripting.
1170674713 M * renihs second is deprecated?
1170674714 M * daniel_hozac ${i}1 and $i1 aren't equivalent, e.g.
1170674767 M * matti Indeed.
1170674772 M * matti What is the difference?
1170674784 M * matti renihs: I am not sure, that's why I asked ;]
1170674802 M * daniel_hozac {} can be used do avoid the ambiguity
1170674831 M * Wonka "$i1" is equivalent to "${i1}"
1170674846 M * Wonka but "${i}1" is "$i}" with "1" appended
1170674853 M * Wonka "${i}" even
1170674870 J * Ws ~sare@81.215.247.185
1170674931 M * matti Wonka: Indeed, but why $i should be consider as depracated?
1170674938 M * matti I don't remember where I was reading about that.
1170674940 M * matti Hmm...
1170674941 M * daniel_hozac it shouldn't, AFAIK.
1170674952 Q * ||Cobra|| Read error: Connection reset by peer
1170674957 M * Wonka i don't know... maybe because of ambiguities?
1170675060 M * matti Hm...
1170675170 M * matti Oh well :)
1170675189 M * matti Not important, sorry for bothers you guys :)
1170675196 J * ||Cobra|| ~cob@pc-csa01.science.uva.nl
1170675491 Q * Ws Read error: Connection reset by peer
1170675542 J * _mcp ~hightower@wolk-project.de
1170675547 Q * mcp Read error: Connection reset by peer
1170675547 N * _mcp mcp
1170675908 J * debugger ~Rui@84.90.10.107
1170676349 Q * rgl Ping timeout: 480 seconds
1170677348 Q * cdrx Quit: Leaving
1170677363 J * cdrx ~legoater@blueice1n1.uk.ibm.com
1170677416 Q * cdrx 
1170677430 J * cdrx ~legoater@blueice2n1.uk.ibm.com
1170677706 Q * matti Ping timeout: 480 seconds
1170677757 J * baldy ~baldy@83.223.66.130
1170677760 M * baldy huhu
1170677773 M * baldy Bertl_oO: ?
1170677861 J * lilalinux ~plasma@dslb-084-058-203-081.pools.arcor-ip.net
1170677934 M * renihs Bertl is off for now :)
1170678014 J * _mcp ~hightower@wolk-project.de
1170678018 Q * mcp Read error: No route to host
1170678029 N * _mcp mcp
1170678134 M * baldy anyone here made a cento image for vserver?
1170678139 M * baldy centos
1170678212 J * matti matti@acrux.romke.net
1170678384 Q * Johnnie Remote host closed the connection
1170678412 J * Johnnie ~jdlewis@jdlewis.org
1170678556 M * harry baldy: no
1170678562 M * harry why would you make an image???
1170678563 M * matti harry: :)
1170678574 M * matti harry: What's up?
1170678583 M * harry eth0 atm
1170678600 M * matti 100BaseTX?
1170678621 M * matti I hope, your the full duplex guy!
1170678622 M * matti ;p
1170678733 M * harry 100Mbit up/down here... no limits
1170678745 M * harry if desired: Gbit too :)
1170679080 M * baldy harry: that u can use it?
1170679095 M * baldy andrew:~# vserver centos build -n centos --hostname centos --rootdir /home/ --netdev eth1 --interface test=192.168.1.1 --context 50 -m yum -- -d centos4
1170679098 M * baldy No dynamically linked rpm binary found; exiting...
1170679195 M * daniel_hozac and you _did_ install yum and rpm already?
1170679234 M * daniel_hozac --rootdir /home is a really bad idea too.
1170679242 M * daniel_hozac if you have users on the host, at least.
1170679282 M * daniel_hozac (well, no, that's legacy stuff. i'm not fully awake yet)
1170679377 M * baldy hehe i dont habe users there ;)
1170679382 M * baldy its only for vserver
1170679491 M * Hollow daniel_hozac: btw, the bus_error is never used/checked .. can be stripped probably
1170679504 M * daniel_hozac hmm?
1170679520 M * Hollow static volatile sig_atomic_t bus_error;
1170679527 M * Hollow in unify-copy.c
1170679569 M * baldy yum on a debian system?
1170679587 M * daniel_hozac baldy: it's available for at least etch and sid.
1170679727 J * Piet hiddenserv@tor.noreply.org
1170679745 M * matti harry: :)
1170679749 M * matti harry: Lucky you ;]
1170679937 Q * mcp Ping timeout: 480 seconds
1170679988 Q * cdrx Quit: Leaving
1170680002 J * cdrx ~legoater@blueice4n2.uk.ibm.com
1170680238 J * mcp ~hightower@wolk-project.de
1170680272 Q * mnemoc Ping timeout: 480 seconds
1170680741 J * mnemoc ~amery@kilo105.server4you.de
1170680977 Q * Johnnie Remote host closed the connection
1170681006 J * Johnnie ~jdlewis@jdlewis.org
1170681676 Q * ag- Read error: Connection reset by peer
1170681696 J * ag- ~ag@caladan.roxor.cx
1170682880 J * kiwi ~chatzilla@162.244.187.81.in-addr.arpa
1170682963 N * kiwi kiwiblue
1170683351 M * kiwiblue I would like to ask for some advice, if possible. Have just had a HDD replaced, and built a new 2.6.19.2 kernel and 30.212 tools, and now find I can't enter a vserver any more - this is the error:
1170683351 M * kiwiblue chcontext: vc_new_s_context(): Operation not permitted
1170683351 M * kiwiblue I've spent all day looking for a solution without success. Does anyone have any clues on this?
1170683807 J * donuto 8d5864c728@83.149.112.45
1170683963 M * donuto hi all, i'm trying to follow the openvpn hints on the wiki, but when i  try tunctl -t tun0 it says cannot find Failed to open '/dev/net/tun' : No such device, i have a tun in the /dev of the guest but the instructions don't show if this command must be done in host or guest (tunctl -t tun0 (instead of tap0))
1170684006 M * donuto so i created a tun also in the host but it still gives that error
1170684091 M * donuto i try to follow these hints: http://wiki.linux-vserver.org/Frequently_Asked_Questions#Can_I_run_an_OpenVPN_Server_in_a_guest.3F
1170684171 Q * DEac- Server closed connection
1170684172 J * DEac- ~deac@2001:6f8:1021::2
1170684314 M * daniel_hozac kiwiblue: are you using legacy configs?
1170684344 M * daniel_hozac donuto: tunctl should be executed in the host.
1170684443 M * DavidS Hmm, I have the feeling I just botched a hashify: dpkg tells me now: "failed to chmod `//usr/bin/wall.dpkg-tmp': Operation not permitted"
1170684561 M * daniel_hozac 2.0 and /usr/bin/wall is setuid, right?
1170684615 M * DavidS yes
1170684632 M * daniel_hozac then that's expected.
1170684661 M * donuto daniel_hozac, i try but it still says Failed to open '/dev/net/tun' : No such device. Although when i do ls -l i get this on the host: crw-------  1 root root 10, 200 2007-02-05 02:30 /dev/net/tun. What could be the problem ?
1170684680 M * daniel_hozac donuto: you do have tun support in your kernel, right?
1170684692 M * DavidS I have to exclude all suid binaries from hashification or upgrade to 2.1
1170684695 M * DavidS ?
1170684729 M * daniel_hozac 2.2 would probably be a better idea, as 2.1 is essentially abandoned.
1170684737 M * donuto daniel_hozac, i did not yet install the module, so this is needed before using those instruktions? 
1170684747 M * daniel_hozac donuto: yes, of course.
1170684772 M * donuto daniel_hozac, thank you, i will do that now
1170684882 J * thunder18 ~thu@tor-irc.dnsbl.oftc.net
1170684890 Q * thunder1 Remote host closed the connection
1170684894 M * DavidS daniel_hozac: thank you ...
1170685000 N * thunder18 thunder1
1170685525 M * kiwiblue Daniel_hozac: yes it's legacy configs. The 'testme.sh' script returns all OK though, and the tools were built with legacy apis.
1170685712 M * daniel_hozac entering is the only problem? start/stop works fine?
1170685813 M * kiwiblue Start only partially works, in that a couple of daemons start up but not the rest. Stopping gives the same 'chcontext' error message as trying to enter. If I chroot in and do a 'ps ax', then all the host's processes are visible:/
1170685835 M * daniel_hozac well of course, chroot doesn't change the context.
1170685980 M * kiwiblue Quite, but that's what I'm resorting to in order to keep this production box alive.  I'm tearing my remaining hair out trying to find the cause of this. Even suspecting LVM, as this is the first box I've run vservers on which uses LVM, but that's really just clutching at straws.
1170686040 M * daniel_hozac do you have vserver debugging enabled in your kernel?
1170686233 M * kiwiblue No, I didn't anticipate this happening
1170686356 M * daniel_hozac i can't seem to find any legacy configurations... could you perhaps paste one of yours to paste.linux-vserver.org?
1170686769 M * kiwiblue Done - for zolotek.net and my proper name (Lyn St George).  Note that removing the CAP_NET_RAW flag makes no difference.
1170686776 Q * CHTEKK Server closed connection
1170686845 J * ema ~ema@lart.galliera.it
1170687528 Q * donuto Quit: brb
1170687593 Q * Radiance Remote host closed the connection
1170687961 J * Radiance 4e677b70a2@halt.1984world.eu
1170689126 Q * Radiance Remote host closed the connection
1170689170 J * gerrit ~gerrit@c-67-160-146-170.hsd1.or.comcast.net
1170689209 J * Radiance 99883a273d@halt.1984world.eu
1170689258 J * marcfiu ~mef@aegis.CS.Princeton.EDU
1170692169 M * daniel_hozac kiwiblue: could you paste the result of grep VSERVER .config?
1170692203 M * daniel_hozac nevermind, i got it reproduced.
1170692360 M * PowerKe daniel_hozac: Is there a good use for the vkill command without the -c ?
1170692376 M * daniel_hozac not really.
1170692387 M * PowerKe Since it's listed between [] I thought it would kill a process in any context, but apparantly -c is necessary
1170692458 M * PowerKe It's my understanding that [] usually implies it's an optional argument, which -c doesn't seem to be.
1170692529 M * ntrs_ # top
1170692529 M * ntrs_         top: /proc is not mounted, required for output data
1170692540 M * ntrs_ Does anyone have an idea about the above problem?
1170692556 M * ntrs_ ls /proc shows all the contents of /proc and it seems to be mounted.
1170692556 M * daniel_hozac in a guest?
1170692562 M * ntrs_ in a guest, yes
1170692569 M * daniel_hozac so you've run vprocunhide?
1170692579 M * ntrs_ I think so, let me check that
1170692585 M * daniel_hozac has top worked before in that guest? what version of top is it?
1170692615 M * daniel_hozac strace would probably tell you what it's looking for...
1170692620 M * ntrs_ yes, vprocunhide is started
1170692639 M * ntrs_ open("/etc/toprc", O_RDONLY)            = -1 ENOENT (No such file or directory)
1170692639 M * ntrs_ open("/root/.toprc", O_RDONLY)          = -1 ENOENT (No such file or directory)
1170692639 M * ntrs_ getuid32()                              = 0
1170692639 M * ntrs_ stat64("/proc/self", {st_mode=S_IFDIR|0555, st_size=0, ...}) = 0
1170692639 M * ntrs_ write(2, "\ttop: /proc is not mounted, requ"..., 54     top: /proc is not mounted, required for output data
1170692661 M * daniel_hozac hmm, nothing before that?
1170692674 M * daniel_hozac (nothing looking at proc, that is)
1170692700 M * daniel_hozac kiwiblue: i guess the easy answer is: don't use legacy configs :)
1170692764 J * stefani ~stefani@tsipoor.banerian.org
1170692785 M * ntrs_ daniel_hozac, http://paste.linux-vserver.org/1088
1170692791 M * ntrs_ that's the whole strace
1170692831 M * daniel_hozac that seems really odd.
1170692864 M * ntrs_ daniel_hozac, ps aux does not work too.
1170692901 M * daniel_hozac what kernel, what procps?
1170692989 M * ntrs_ 2.6.19.1 with 2.2.0-rc5
1170693011 M * ntrs_ procps-3.2.3-8.4 in the guest
1170693082 M * ntrs_ same procps on the host
1170693111 M * daniel_hozac well, that's peculiar at least...
1170693140 M * daniel_hozac that procps version works fine on 2.6.19-1.2901.fc6.vs2.2.0.0.rc9.1.
1170693222 M * ntrs_ daniel_hozac, no guest on that host can run top or pos aux
1170693224 M * ntrs_ ps aux
1170693232 M * daniel_hozac have you messed with vprocunhide at all?
1170693242 M * ntrs_ what do you mean by messed?
1170693244 Q * shedi Ping timeout: 480 seconds
1170693247 M * ntrs_ I just start it on boot time.
1170693249 M * daniel_hozac changed the config or similar.
1170693278 M * daniel_hozac have you tried restarting it?
1170693282 M * ntrs_ I don't even know where it's config it.
1170693284 M * ntrs_ is
1170693293 M * ntrs_ I tried restarting it several times. same thing.
1170693326 M * ntrs_ top and ps aux work fine on the host.
1170693333 Q * DavidS Quit: Leaving.
1170693392 M * daniel_hozac    if (stat("/proc/self", &isproc)==-1)
1170693392 M * daniel_hozac       std_err("/proc is not mounted, required for output data");
1170693417 M * daniel_hozac so for whatever reason, the libc wrapper for stat is returning -1.
1170693453 M * daniel_hozac could you ltrace it?
1170693465 M * ntrs_ yes but ls /proc/self shows all the files just fine
1170693467 M * ntrs_ ltrace?
1170693480 M * daniel_hozac like strace but for library calls rather than syscalls.
1170693526 M * daniel_hozac is this an x86 guest on an x86_64 host?
1170693579 M * ntrs_ http://paste.linux-vserver.org/1089
1170693585 Q * cdrx Read error: Connection reset by peer
1170693594 M * ntrs_ yes, all guests are x86 on x86_64 host
1170693794 N * debugger rgl
1170693814 M * rgl mooo
1170694208 Q * thunder1 Remote host closed the connection
1170694282 J * thunder1 ~thu@tor-irc.dnsbl.oftc.net
1170694472 Q * mnemoc Ping timeout: 480 seconds
1170694522 M * ntrs_ daniel_hozac, is x86 on x86_64 the problem?
1170694977 J * mnemoc ~amery@kilo105.server4you.de
1170695245 M * daniel_hozac ntrs_: i don't know, i suppose it could be. that would be really odd though.
1170695421 M * cryptronic Hi all
1170695438 J * donuto ~donuto@83.149.112.45
1170695444 M * daniel_hozac hello cryptronic 
1170695457 M * cryptronic daniel_hozac, i have a problem with starting a vserver
1170695469 M * daniel_hozac oh?
1170695496 M * cryptronic all works fine until the vserver reaches the /etc/init.d/rc 3 (in debug mode)
1170695500 M * cryptronic after that nothing happens
1170695512 M * donuto hi, i'm in the middle of the openvpn configuration, i want to remove the ip from tun0 but when i type ip addr del 10.0.0.1 tun0   then it says: Error: either "local" is duplicate, or "tun0" is a garbage.
1170695582 M * daniel_hozac cryptronic: OS of the guest?
1170695590 M * cryptronic debian
1170695594 M * donuto ah nvm, i see the problem :p
1170695596 M * daniel_hozac donuto: dev before tun0
1170695607 M * donuto yes that was it 
1170695645 M * cryptronic daniel_hozac, now my system is freezed :(
1170695660 M * daniel_hozac cryptronic: kernel?
1170695675 M * cryptronic debian etch 2.6.18.3 vserver kernel the official kernel
1170695700 M * cryptronic yesterday i had a ram defect in the host
1170695707 M * daniel_hozac that kernel is broken.
1170695712 M * daniel_hozac upgrade to 2.6.18-4 from side.
1170695713 M * cryptronic so i changed the ram and after that nothing worked
1170695717 M * daniel_hozac s/side/sid/
1170695738 M * cryptronic so i reinstalled the base system with new kernel and everything
1170695750 M * daniel_hozac as to why the guest doesn't boot, i have no idea.
1170695756 M * daniel_hozac we'd need more details about it.
1170695767 M * daniel_hozac e.g. what services are supposed to start, is it a new guest, etc.
1170695772 M * cryptronic hmm the problem is i haven't a serial console
1170695789 M * daniel_hozac hmm, ok. and?
1170695809 M * cryptronic so i have to first reboot the sys ;) before i can give you more details
1170695855 J * bonbons ~bonbons@83.222.37.103
1170695857 M * daniel_hozac right.
1170695876 M * donuto cryptronic, i had a same problem some time ago, i fixed it by starting the vserver at the end of the runlevel, i think it has to do with networking not started and vserver blocks
1170695907 M * cryptronic network is up i start the guests by hand
1170695908 M * donuto this was also in debian
1170695917 M * cryptronic i can ping the  ip of the guest
1170695922 M * cryptronic so i got assigned
1170695940 M * cryptronic s/i/it/
1170695942 M * donuto maybe try to strt vserver at end of the runlevel
1170695982 M * cryptronic daniel_hozac, more details: http://paste.linux-vserver.org/1091
1170695990 Q * dlezcano Read error: Connection reset by peer
1170695998 M * daniel_hozac i meant on the guest.
1170696008 M * cryptronic oh sry
1170696016 M * cryptronic ok what infos of the guest?
1170696028 M * daniel_hozac 18:16 < daniel_hozac> e.g. what services are supposed to start, is it a new guest, etc.
1170696064 M * cryptronic it is a guest who runs before the ram crash very well
1170696076 J * cdrx ~legoater@cap31-3-82-227-199-249.fbx.proxad.net
1170696094 M * cryptronic it is a normal lamp vserver
1170696263 M * mael_sanger hi cdrx
1170696279 M * mael_sanger how is the work going on?
1170696385 M * cryptronic daniel_hozac, is it possible to break the starting of a vserver?
1170696397 M * daniel_hozac of course.
1170696413 M * daniel_hozac the guest is responsible for doing the actual starting of guests.
1170696417 M * daniel_hozac s/guests/itself/
1170696511 M * cryptronic but the guest self doesn't start it stops at this line:  /usr/bin/nice -n 0 /usr/sbin/chbind --silent --secure --nid .... -- /etc/init.d/rc 3
1170696627 M * daniel_hozac which doesn't really say anything.
1170696644 M * daniel_hozac you'd have to enable debugging of the rc script to see what's going wrong.
1170696658 M * cryptronic ok i try
1170696706 M * cryptronic at the meantime i upgraded to 2.6.18-4 and util vserver 212
1170696769 J * derjohn ~derjohn@80.69.41.2
1170697051 M * cryptronic it seams very various which of the vserver start and which doesn't start
1170697130 M * cryptronic daniel_hozac, how can i break the starting / creation of a vserver?
1170697152 M * daniel_hozac Gentoo e.g. breaks if you have run-files around.
1170697183 M * donuto daniel_hozac, so far it looks good, now i wonder, i have the tun0 in the guest with private ip.  I must now add to the guest eth0 with internet ip so vpn traffic uses nat to internet ip ? iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -d here_internet_ip -j MASQUERADE ? this is correct ?
1170697205 M * cryptronic can i kill the pids of the starting bin's?
1170697252 M * daniel_hozac cryptronic: sure.
1170697270 M * cryptronic i have very high wa since the vserver stops starting
1170697273 M * daniel_hozac donuto: -d here_internet_ip looks wrong. -o eth0 is probably more correct.
1170697278 M * cryptronic 80-90%
1170697282 M * daniel_hozac cryptronic: dmesg?
1170697295 M * cryptronic to segfaults of php5-cgi
1170697303 M * cryptronic *two
1170697440 M * donuto daniel_hozac, , ah i see,  but if i make this rule in the host then i cannot give eth0 the internet ip ? but it uses eth0 of the host and other internet ip ?
1170697445 M * cryptronic daniel_hozac, after killing the pids of the creation the init.d/rc file of the vserver is busy 
1170697452 M * cryptronic so i can't turn on debugging
1170697675 M * daniel_hozac cryptronic: hmm? is it still executing.
1170697683 M * cryptronic no
1170697700 M * daniel_hozac so vps doesn't show it?
1170697732 M * cryptronic yes
1170697746 M * cryptronic but vserver-stat does
1170697773 M * daniel_hozac what?
1170697792 M * cryptronic yes the vserver is marked as running and i can't stop him and can't start him
1170697846 M * daniel_hozac so vps doesn't list any processes running in it, but vserver-stat shows it as running?
1170697865 M * cryptronic yes
1170697877 M * daniel_hozac with PROC as 0?
1170697890 M * daniel_hozac (hmm, no, that's impossible. 0.30.212 doesn't have the new vserver-stat)
1170697897 M * cryptronic PROC 2
1170697911 M * daniel_hozac so there are 2 processes running in the guest.
1170697927 M * daniel_hozac what does vps faux | grep <xid> list?
1170697976 M * cryptronic http://paste.linux-vserver.org/1092
1170698082 M * daniel_hozac seems your rc script is a runaway.
1170698091 M * daniel_hozac kill it.
1170698111 M * cryptronic vkill -s 9 doesn't kill it
1170698135 M * cdrx hi mael_sanger 
1170698157 M * daniel_hozac vkill -c 7013 -s 9 12379 doesn't kill it?
1170698163 M * cryptronic yes
1170698190 M * daniel_hozac that sounds like a kernel problem to me.
1170698209 M * daniel_hozac you're using 2.6.18-4 now?
1170698213 M * cryptronic yes
1170698222 M * daniel_hozac and nothing interesting in dmesg?
1170698235 M * cryptronic no
1170698251 M * daniel_hozac that is odd...
1170698268 M * cryptronic yes that is right ;)
1170698284 M * daniel_hozac what arch is that?
1170698290 M * cryptronic amd64
1170698303 M * daniel_hozac guest too?
1170698310 M * cryptronic yes
1170698332 M * daniel_hozac which Debian?
1170698345 M * cryptronic 2 times etch
1170698392 J * duckx ~Duck@tox.dyndns.org
1170698402 M * daniel_hozac well, i can't reproduce it here.
1170698413 M * daniel_hozac does it happen with new guests as well?
1170698458 M * cryptronic the strange thing is: i restarted after the freeze and now there are 2 guests making these strange things but other guests then on the try before
1170698637 Q * gerrit Quit: Client exiting
1170698646 M * cryptronic on both guests which i can't start and stop the same situation: one zombie and the 2 remaining pids can't be killed
1170698773 M * donuto i'm not sure, but for openvpn it listens on tun0 and on eth0 so external clients connect to eth0 internet ip to openvpn and then openvpn routes traffic through tun0 ?
1170698815 M * donuto or i should give tun0 internet ip too ?
1170698853 M * daniel_hozac tun0 can have a private IP address.
1170698928 M * derjohn is there a devel 2.6.20 patch available?
1170698940 M * donuto ok i have that, and also eth0 of the guest has internet ip, now i only must add routing ? i already have iptable rules for tun0 and postrouting ready
1170699027 M * daniel_hozac derjohn: not yet.
1170699056 M * daniel_hozac donuto: i guess so.
1170699099 M * cryptronic daniel_hozac, new guest works fine
1170699138 M * daniel_hozac cryptronic: so there's a problem with your guests somehow...
1170699147 M * cryptronic hmm
1170699159 M * cryptronic the problem is before this try it starts without any problems
1170699168 M * cryptronic the same vserver
1170699188 M * donuto daniel_hozac, thanks i will try now
1170700082 M * cryptronic daniel_hozac, with enabled debug in rc i didn't get an output
1170700132 M * donuto so for my situation i make openvpn listen on eth0 with internet ip and when client connects then traffic is routed thruogh tun0 who has a private ip ? else i do not see how it can work if openvpn has private ip cause no one can connect to it from internet 
1170700244 M * cryptronic daniel_hozac, after another reboot all expect one guests are starting but the actual guest doesn't start now for the 3rd time
1170700491 M * daniel_hozac donuto: the VPN traffic will come in on tun0.
1170700569 M * donuto daniel_hozac, so openvpn server listen also on eth0 on port 1194 ? (by default ?)
1170700659 M * daniel_hozac yes.
1170700672 M * daniel_hozac openvpn forwards the traffic from the socket to the interface.
1170700792 M * donuto i see, and i should add 1 route using iproute2 on the host to what ? 10.x.x.x subetnet to default gateway ? appreciate your great help, this is my first time i try openvpn 
1170700978 M * daniel_hozac to the network which your VPN clients will use, through dev tun0.
1170701462 M * donuto daniel_hozac, ok, i have this in iptables: $IPT -t nat -A POSTROUTING -s 10.1.1.0/24 -o eth0 -j MASQUERADE  is that not enough? i mean ip route shows 10.1.1.0/24 dev tun0 scope link 10.1.1.1, default via 203.x.x.x dev eth0 ?  will this work, or i should now do: ip route add 10.1.1.0 netmask 255.255.255.0 gw 203.x.x.x ? (on host)
1170701505 M * daniel_hozac that should be enough, IMHO.
1170701575 M * donuto ok thanks, i will proceed now to config server.conf, lots of options :p
1170701796 M * cryptronic daniel_hozac, now i get a complete other result: http://paste.linux-vserver.org/1093
1170701860 M * daniel_hozac cryptronic: that looks like kernel problems, IMHO.
1170701906 J * Kerberos ~sun@85.138.138.66
1170701943 J * shuri ~shuri@hq01.electronicbox.net
1170701946 N * Kerberos Solaris
1170702011 M * cryptronic ok i'll try latest derjohn kernel
1170702092 M * daniel_hozac i think derjohn hasn't updated his kernel for a while.
1170702097 M * daniel_hozac (derjohn?)
1170702332 M * cryptronic is this to old? 2.6.18.5-vs2.1.1.3
1170702393 Q * ema Quit: leaving
1170702407 M * daniel_hozac well, try to reproduce it there.
1170702483 M * cryptronic i'm on the way ;)
1170702514 M * cryptronic will bertl come online today later?
1170702518 P * Solaris satan made me do it
1170702855 M * cryptronic the special guest has started now come the others
1170702876 M * cryptronic till now i looks very well
1170703010 M * cryptronic daniel_hozac, derjohn's kernel got it :) all guests have started
1170703031 M * daniel_hozac hehe.
1170703049 M * cryptronic derjohn, i love you about everything :D
1170703213 M * cryptronic daniel_hozac, thanks for your help anyway!!!
1170703304 M * donuto daniel_hozac, it started from commandline, looks not bad i think, now i wonder about this: --ifconfig 10.4.0.1 10.4.0.2 (example) ... this is the range of ips i give to clients and should replace by my own range? 
1170703453 M * daniel_hozac no idea... i imagine the first address is your address, and the second is the remote's.
1170703460 M * cryptronic daniel_hozac, what does that mean: 9 limit hit @ kernel/fork.c:1001
1170703468 M * daniel_hozac note that you need to use ifconfig-noexec or whatever it's called.
1170703514 Q * eyck Remote host closed the connection
1170703551 M * daniel_hozac cryptronic: you hit the AS limit.
1170703596 M * cryptronic from which vserver?
1170703616 M * donuto ok thanks i will try that
1170703627 Q * shuri Remote host closed the connection
1170703662 M * daniel_hozac cryptronic: the message doesn't include an xid?
1170703667 M * cryptronic no
1170703705 M * cryptronic and some vserver suddenly crash
1170703894 M * daniel_hozac well, grep VM /proc/virtual/*/limit would show you.
1170703972 M * daniel_hozac (last column being how many hits)
1170704432 M * micah hey all, I've got a vserver with an interface configured for 10.0.1.36, when it is brought up, the host can ping it, but not any machines on the local network, any ideas?
1170704454 M * daniel_hozac is it brought up on the correct interface?
1170704477 M * daniel_hozac the other hosts are on the same network?
1170704562 M * micah yeah it is, and yes they are... let me put up some info
1170704645 M * micah http://paste.linux-vserver.org/1095
1170704757 J * phosix ~bouncer@190.40.198.96
1170704765 P * phosix 
1170704834 J * DavidS ~david@217.19.46.18
1170704964 M * daniel_hozac can you access things on the network from the guest?
1170704975 M * micah it seems all legit, although the netmasks for the 10.x network on the host maybe are overlapping?
1170704999 M * micah i believe so, let me see
1170705063 M * micah yes, I can
1170705070 M * micah on the network, as well as the internet
1170705139 M * micah something is very odd now
1170705157 M * micah I can no longer ping the host
1170705162 M * micah but I am on the host at the moment
1170705190 M * micah oh, thats because of firewall established connections
1170705226 M * micah perhaps my firewall considers 10.0.1 as an rfc1918 address space and is blocking that, letsee
1170705297 M * micah no, thats not it -- I cleared out all iptables rules, and same thing
1170705334 Q * lilalinux Remote host closed the connection
1170705472 M * daniel_hozac policies?
1170705472 J * eyck_ eyck@kuszelas.com
1170705505 M * micah policies?
1170705516 M * daniel_hozac the default target for the chains.
1170705576 M * micah ah, all policies are ACCEPT
1170705582 M * daniel_hozac ok.
1170705603 M * daniel_hozac can you use something other than ping to try?
1170705610 M * daniel_hozac s/try/test/
1170705628 M * micah yes, thats why I first started looking into this - the spamd that runs there is not contactable
1170705652 M * micah it gets a No route to host error
1170705680 M * daniel_hozac if you run tcpdump on the host, do you see the related ARP communication?
1170705736 M * micah tcpdump -vv -s 0 -i eth3
1170705759 M * micah hmm, not getting anything
1170705779 M * daniel_hozac try pinging from a host you haven't tried before.
1170705784 M * daniel_hozac so it's not cached.
1170705877 M * micah nothing... i wonder if this interface is plugged into the right switch :)
1170705892 M * daniel_hozac hehe
1170705899 M * micah that would make a lot of sense I guess
1170705924 J * eyck__ eyck@kuszelas.com
1170705943 M * micah it has a link, but that doesnt mean that its in the right place
1170705950 M * daniel_hozac indeed
1170705954 J * n01101111x ~nox@static.88-198-17-175.clients.your-server.de
1170705969 M * micah that seems like the only possibility, I'll have to check that
1170706000 J * comfrey__ ~comfrey@70.91.185.84
1170706070 J * kiwiblue_ ~chatzilla@162.244.187.81.in-addr.arpa
1170706216 Q * eyck_ Read error: Connection reset by peer
1170706216 Q * kiwiblue Ping timeout: 480 seconds
1170706216 Q * nox Ping timeout: 480 seconds
1170706216 Q * comfrey_ Ping timeout: 480 seconds
1170706216 N * n01101111x nox
1170706217 N * kiwiblue_ kiwiblue
1170706218 J * DreamerC_ ~dreamerc@125-225-96-10.dynamic.hinet.net
1170706224 Q * mire Ping timeout: 480 seconds
1170706279 Q * DreamerC Read error: Connection reset by peer
1170706468 J * Loki|muh_ loki@satanix.de
1170706674 J * PowerKe_ ~tom@d54C13E4B.access.telenet.be
1170706748 Q * eyck__ synthon.oftc.net larich.oftc.net
1170706748 Q * DavidS synthon.oftc.net larich.oftc.net
1170706748 Q * derjohn synthon.oftc.net larich.oftc.net
1170706748 Q * stefani synthon.oftc.net larich.oftc.net
1170706748 Q * marcfiu synthon.oftc.net larich.oftc.net
1170706748 Q * matti synthon.oftc.net larich.oftc.net
1170706748 Q * FireEgl synthon.oftc.net larich.oftc.net
1170706748 Q * cryptronic synthon.oftc.net larich.oftc.net
1170706748 Q * mugwump_ synthon.oftc.net larich.oftc.net
1170706748 Q * PowerKe synthon.oftc.net larich.oftc.net
1170706748 Q * Loki|muh synthon.oftc.net larich.oftc.net
1170706748 Q * nebuchadnezzar synthon.oftc.net larich.oftc.net
1170706748 Q * yang synthon.oftc.net larich.oftc.net
1170706748 N * Loki|muh_ Loki|muh
1170706868 J * derjohn ~derjohn@80.69.41.2
1170706868 J * stefani ~stefani@tsipoor.banerian.org
1170706868 J * cryptronic crypt@mail.openvcp.org
1170706868 J * mugwump_ ~samv@watts.utsl.gen.nz
1170706868 J * nebuchadnezzar ~nebu@zion.asgardr.info
1170706868 J * yang ~yang@yang.sponsor.oftc.net
1170706869 Q * cryptronic Ping timeout: 480 seconds
1170706870 Q * nebuchadnezzar Ping timeout: 480 seconds
1170706898 J * mire ~mire@107-166-222-85.adsl.verat.net
1170706956 J * cryptronic crypt@mail.openvcp.org
1170706997 J * shedi ~siggi@ftth-237-144.hive.is
1170706998 Q * mugwump_ Read error: Connection reset by peer
1170707001 J * mugwump ~samv@watts.utsl.gen.nz
1170707034 J * marcfiu ~mef@aegis.CS.Princeton.EDU
1170707065 J * nebuchadnezzar ~nebu@zion.asgardr.info
1170707104 J * DavidS ~david@217.19.46.18
1170707163 J * eyck_ eyck@kuszelas.com
1170707308 J * FireEgl Proteus@68.220.222.136
1170707728 Q * duckx Read error: Connection reset by peer
1170708084 M * daniel_hozac PowerKe_: http://svn.linux-vserver.org/projects/util-vserver/changeset/2489?format=diff&new=2489
1170708125 Q * yang synthon.oftc.net larich.oftc.net
1170708125 Q * stefani synthon.oftc.net larich.oftc.net
1170708125 Q * derjohn synthon.oftc.net larich.oftc.net
1170708260 Q * jjpacheco Remote host closed the connection
1170708352 M * daniel_hozac PowerKe_: nevermind, that's broken.
1170708359 J * derjohn ~derjohn@80.69.41.2
1170708365 Q * derjohn Ping timeout: 480 seconds
1170708462 J * derjohn ~derjohn@80.69.41.2
1170708482 J * yang ~yang@cpe-213-157-253-172.dynamic.amis.net
1170708487 Q * thunder1 Ping timeout: 480 seconds
1170708524 J * thunder1 ~thu@149.9.0.56
1170708589 J * Aiken ~james@ppp220-70.lns2.bne1.internode.on.net
1170708607 Q * mire Ping timeout: 480 seconds
1170708793 J * baldy_ baldy@baldy.biz
1170708808 Q * baldy Quit: leaving
1170708844 N * baldy_ baldy
1170708890 J * _cob ~cob@pc-csa01.science.uva.nl
1170708910 Q * ||Cobra|| Ping timeout: 480 seconds
1170708918 J * sid3wind1 luser@bastard-operator.from-hell.be
1170708957 Q * sid3windr Read error: Connection reset by peer
1170708967 M * donuto hmm i have now a basic connection, client pc to server, but i cannot ping from each side to the ip's of them. Is there something i can try in openvpn ?
1170709011 J * menomc ~amery@kilo105.server4you.de
1170709028 M * daniel_hozac try to use something other than ping.
1170709038 Q * Piet Ping timeout: 480 seconds
1170709038 Q * mnemoc Read error: Connection reset by peer
1170709038 N * menomc mnemoc
1170709039 M * daniel_hozac something using TCP/UDP.
1170709048 M * donuto i will try telnet
1170709123 J * Piet hiddenserv@tor.noreply.org
1170709256 M * donuto hmm but what to try ? i have no services running except openvpn and it is very basic setup. no encryption, no authentication, just ifconfig server client and ifconfig client server
1170709361 J * mire ~mire@51-167-222-85.adsl.verat.net
1170709368 M * donuto all i see is that there is a succesful connection between server and client
1170709395 M * daniel_hozac so start something like nc in the guest.
1170709410 M * donuto i see on server: Peer Connection Initiated with 83.x.x.x:32776
1170709447 M * donuto can i make nc listen on tun0 ? or should it be eth0 ?
1170709471 M * daniel_hozac tun0.
1170709479 M * donuto ok
1170709720 M * donuto hmm nothing, also nothing on the firewal, i have it log everything 
1170709872 M * donuto maybe i need to add a route on the client ?
1170709882 Q * Piet Ping timeout: 480 seconds
1170709899 M * daniel_hozac it should be there already, as you gave it an address.
1170709903 N * PowerKe_ PowerKe
1170709924 M * pflanze (Is this an FAQ?) When using mount --bind, do I have to set up the parent directory of the bind source (or target) with barrier bits to prevent the target client from exiting through this directory?
1170709942 M * pflanze (barrier bits or 000 mode)
1170709951 M * daniel_hozac no.
1170709958 M * daniel_hozac mode 000 is not secure in 2.6.
1170709964 M * pflanze yeah
1170709990 M * pflanze (well I thought I remember there's still a way to make it secure, actually )
1170710009 M * pflanze (iirc I even did test this, but that has been over a year ago)
1170710028 M * donuto daniel_hozac, but there is nothing else needed on the client side to be done ? no opening up inbound ports cause a connection exists between client and server
1170710036 M * daniel_hozac not without patching the kernel or removing CAP_DAC_OVERRIDE.
1170710049 M * daniel_hozac neither of which makes sense with barrier.
1170710066 M * daniel_hozac donuto: no.
1170710158 M * donuto but since a connection is establised then what can be the problem ?
1170710221 M * donuto or i need to set special CAP's for the guest ? currently none are set
1170710307 M * daniel_hozac we'd have to locate the problem first.
1170710313 M * donuto only errors i see at server side: Note: Cannot set tx queue length on tun1: Operation not permitted (errno=1) and /sbin/ip link set dev tun1 up mtu 1500 SIOCSIFMTU: Operation not permitted
1170710353 M * donuto and i started openvpn server with this: openvpn --config server.conf --ifconfig-noexec
1170710416 M * donuto server.conf has this: dev tun and ifconfig 10.1.1.1 10.1.1.2
1170710465 M * donuto and client.conf has this: dev tun and ifconfig 10.1.1.2 10.1.1.1
1170710514 M * donuto that's it
1170710564 J * shuri ~shuri@hq01.electronicbox.net
1170710656 M * donuto oh and client.conf has also: remote ip_of_server
1170710670 M * daniel_hozac i haven't configured openvpn for years.
1170710681 M * daniel_hozac and i never played with it in a guest.
1170710825 M * donuto it's ok, much progress is made with your good help mate
1170710841 M * donuto maybe derjohn is around and can give advise too :p
1170711660 Q * mire Ping timeout: 480 seconds
1170712388 J * mire ~mire@155-167-222-85.adsl.verat.net
1170712447 Q * bonbons Quit: Leaving
1170712799 M * pflanze Hm, "vserver foo hashify" segfaults for me
1170712812 Q * rpc Ping timeout: 480 seconds
1170713054 M * pflanze anyone interested in a backtrace?
1170713289 N * Bertl_oO Bertl
1170713304 M * Bertl evening folks!
1170713309 M * Bertl pflanze: sure, always
1170713309 M * daniel_hozac evening Bertl!
1170713315 M * pflanze Hi Bertl.
1170713351 M * pflanze I'm re-reading gdb docs to find out how to step down in the backtrace to print variables
1170713358 M * Bertl daniel_hozac: did I get it right that we are missing a config dependacy for the namespaces (from PLM ?)
1170713363 M * daniel_hozac yeah.
1170713363 M * pflanze (should I feel ashamed?.)
1170713373 M * daniel_hozac Bertl: or well, i consider it a bug in kconfig.
1170713379 M * pflanze I should just get emacs gdb mode to know, I guess.
1170713387 M * Bertl daniel_hozac: let's hear ...
1170713388 M * daniel_hozac http://people.linux-vserver.org/~dhozac/p/k/delta-allnoconfig-hack01.diff
1170713406 M * daniel_hozac IPC_NS depends on SYSVIPC, but selecting IPC_NS leaves SYSVIPC disabled.
1170713459 M * Bertl hmm, IIRC, that is intended behaviour ... didn't see that IPC_NS depends on something :)
1170713538 M * daniel_hozac really? why is that intended?
1170713676 M * Bertl IIRC, there is a possibility for recursive lockups without that
1170713706 M * Bertl something like, depends on !A, select B and B -> select A
1170713720 M * Bertl (not directly but over such a dependancy)
1170713745 M * daniel_hozac ah...
1170713752 M * Bertl thus the depend stuff is not checked on select ...
1170713772 M * Bertl at least not upwards as 'select'
1170713789 Q * meandtheshell Quit: Leaving.
1170713791 M * Bertl i.e. select triggers more selects (down) but not depends (up)
1170713814 M * pflanze Ok here's the vhashify backtrace info: http://rafb.net/p/35oBb395.html
1170713825 M * Bertl daniel_hozac: any conclusions for the ntrs issue?
1170713885 M * daniel_hozac no, not yet...
1170713901 M * Bertl what about kernel options?
1170713966 M * Bertl do we know what __xstat is/does?
1170714093 M * daniel_hozac must be in the libc.
1170714127 M * Bertl yes, I assume so, but it seems to do the syscall quite fine and return an error, yes?
1170714131 M * daniel_hozac yeah.
1170714172 M * Bertl so, as I further assume that this doesn't happen on the distro with a distro kernel, (at least I hope so :) the question remains, what causes this change in behaviour :)
1170714196 M * daniel_hozac extracing procps, glibc, ncurses from CentOS 4.4 manually on my x86_64 box and chrooting to the directory works fine.
1170714212 M * Bertl I'm observing a nice failure here on x86_64 too
1170714214 M * daniel_hozac (the i386 versions)
1170714225 M * Bertl it is not really Linux-VServer related as it seems
1170714276 M * Bertl I installed (out of curiosity) a 64bit kernel on a 32bit system
1170714287 M * Bertl the cpu is 64 bit capable
1170714309 M * Bertl now everything seems to work quite fine, except for the hotplug binary :)
1170714317 M * daniel_hozac oh yeah, i saw you mention that.
1170714320 M * Bertl which gives strange kernel traces
1170714348 M * daniel_hozac hotplug is called from the kernel though... maybe it's not setting it up correctly to run as a 32-bit binary somehow?
1170714358 M * daniel_hozac (i have no idea what's required for that)
1170714378 M * pflanze daniel_hozac, ensc: which of you is maintaining vhashify?
1170714397 M * daniel_hozac whoever gets to it first, i guess :)
1170714411 M * pflanze fine:), I'm wondering:
1170714412 M * Bertl I found a strange solution to a similar error back half a year ago
1170714438 M * daniel_hozac pflanze: btw, does make check work on your system?
1170714438 M * pflanze how can I help you find the problem; should I install libbeecrypt from sources to get debug info in that lib?
1170714450 M * Bertl daniel_hozac: I'm now trying to recreate that error in a test system and check if that fixes it ...
1170714450 M * pflanze hm, let me try..
1170714483 M * daniel_hozac Bertl: ok.
1170714535 Q * mire Ping timeout: 480 seconds
1170714560 M * pflanze daniel_hozac: nope, 2 of 18 tests failed, SHA-1 mismatch at rand-0 \n FAIL: src/testsuite/hashcalc-plain.sh \n SHA-1 mismatch at rand-0 \n FAIL: src/testsuite/hashcalc.sh
1170714613 M * daniel_hozac pflanze: well, there you go :)
1170714639 M * ensc pflanze: that's an immemorial debian problem...
1170714650 M * ensc I do not have a clue why it happens there
1170714653 M * pflanze so install beeccrypt from sources?
1170714671 M * daniel_hozac is this with Debian's packages, or your own build?
1170714675 M * pflanze debian's
1170714681 M * daniel_hozac on what arch?
1170714688 M * pflanze x86
1170714707 M * daniel_hozac which Debian/util-vserver version?
1170714710 M * pflanze beecrypt2 2.2.0-pre1-5
1170714737 M * pflanze Debian stable (sarge), util-vserver-0.30.212
1170714753 M * daniel_hozac from backports?
1170714770 M * pflanze what? util-vserver is from sources.
1170714785 M * pflanze Pretty much everything else from Debian stable
1170714785 M * daniel_hozac so it _is_ your own build.
1170714790 M * pflanze ah
1170714797 M * pflanze I thought you were talking about beecrypt
1170714799 M * daniel_hozac please try with the Debian packages.
1170714817 M * Bertl ensc: the tests mentioned above, do they only depend on the beecrypt lib?
1170714862 M * ensc it seems to happen with debians beecrypt2 only (at least, I did not heared something else)
1170714905 M * Bertl so replacing the libbeecrypt helps?
1170714927 M * pflanze daniel_hozac: util-vserver in sarge is 0.30.204-5sarge3, I can fetch it and try to run the binary, but that's not a good idea for using in production, right?
1170714939 M * daniel_hozac pflanze: backports should have 0.30.212.
1170714942 M * pflanze ah
1170715008 M * ensc Bertl: perhaps; I do not know why it fails
1170715096 M * Bertl ensc, pflanze, daniel_hozac: okay, could we try that? just to eliminate the possibility that the build process for util-vserver is broken?
1170715096 M * pflanze I can install beecrypt from sources and see
1170715109 M * pflanze Bertl: try what?
1170715122 M * Bertl building libbeecrypt from source somehow
1170715134 M * pflanze ok will do
1170715164 M * ensc Bertl: the hashcalc tests are really simple programs (beecrypt-init, open-file, mmap-file, give mmap-memory to beecrypt function)
1170715171 M * ensc there is no vserver magic
1170715208 Q * shuri Remote host closed the connection
1170715284 M * pflanze I can (a) install/backport debian's libbeecrypt6 from etch, (a2) install/backport debian's beecrypt2 from etch, (b) fetch beecrypt from http://sourceforge.net/projects/beecrypt
1170715307 M * pflanze tell me your preference for knowing what's gooing on.
1170715375 J * Piet hiddenserv@tor.noreply.org
1170715376 A * pflanze wonders what libbeecrypt6 is when sourceforge has 4.1.2
1170715383 M * daniel_hozac the 6 is the soname.
1170715393 M * daniel_hozac new soname doesn't automatically mean new major version.
1170715401 M * pflanze ok
1170715408 M * pflanze 4.1.2 is from December 21, 2004 btw
1170715501 J * mire ~mire@207-166-222-85.adsl.verat.net
1170715545 M * daniel_hozac ensc: speaking of sonames, what do you think about doing a 1.0.0 release? do you have anything you think would be required?
1170715645 M * ensc why not... I thought about a stable release 3 years ago already ;)
1170715653 M * daniel_hozac hehe.
1170715670 M * daniel_hozac i can paste my current TODO-list...
1170715710 M * daniel_hozac http://paste.linux-vserver.org/1096
1170715788 M * daniel_hozac anything anyone would like to add?
1170715850 M * ensc testsuites for vhashify (and mentioned unhashify)
1170715874 M * daniel_hozac yeah, i've got testsuite on my non-util-vserver TODO-list.
1170715898 M * daniel_hozac testsuite on the grander scale of things, to test the kernel, regression test all of the utils, etc.
1170715900 M * pflanze Is the problem with link unbreaking of multiply-linked-inside-a-guest files solved?
1170715911 M * pflanze e.g. not hashify such files
1170715916 M * daniel_hozac no.
1170715940 J * Guest1603 ~mjb@fire.cs.bath.ac.uk
1170715982 M * ensc btw, the --ignore-mtime switch for vhashify should have been done in another way. There should have been added another configuration option in the hash-dir which sets this flag. Else, you will end with inconsistent files
1170715992 M * daniel_hozac yeah i know.
1170716002 M * daniel_hozac the required script sugar isn't quite there yet.
1170716022 M * daniel_hozac (added that to 0.30.213)
1170716031 M * ensc no; not a script. Like blocksize or the hash method
1170716051 M * ensc see initHashConf in vhashify-init
1170716053 M * ensc .c
1170716055 M * daniel_hozac ah right, vhashify reads its own configuration.
1170716062 M * daniel_hozac yeah.
1170716082 M * ensc to make it correct, these configuration should be moved into the hash partitions
1170716161 M * daniel_hozac i.e. store the configuration in /vservers/.hash rather than in /etc/vservers/.defaults/apps/vunify/*?
1170716182 Q * dna Quit: Verlassend
1170716228 M * Guest1603 Evenin' all  Am trying to trace a bug w/ courier-imap not working on the latest Debian prepatched kernel - can anyone spare five minutes or so to point out if I'm bieng stupid?
1170716277 M * ensc no, vhashify looks for a matching partition by iterating through /etc/vservers/.../vunify/hash/*
1170716280 M * daniel_hozac latest means 2.6.18-4, right?
1170716306 M * ensc configuration is stored under .../vunify/hash, but it should be under e.g. .../vunify/hash/00/
1170716313 M * Guest1603 Latest as in from testing : Linux version 2.6.18-3-vserver-686 (Debian 2.6.18-7)
1170716314 M * daniel_hozac right, that's what i meant.
1170716323 M * daniel_hozac Guest1603: you should upgrade. that kernel is broken.
1170716323 M * ensc and when vhashify changes to 01, it should change e.g. hash algo
1170716332 M * daniel_hozac yes, i agree.
1170716340 Q * mire Ping timeout: 480 seconds
1170716372 M * Guest1603 d_h : thank you, can you be a bit more specific about the broken?
1170716379 M * daniel_hozac that would require making 00 a directory rather than a symlink though, no?
1170716392 M * daniel_hozac Guest1603: rebooting guests will segfault/oops the kernel.
1170716433 M * Guest1603 daniel_hozac: OK, thanks.  I'm having issues with networking not doing what it used to but I'll upgrade anyway and then report back if the problem persists.
1170716447 M * ensc daniel_hozac: code uses stat(), not lstat() so it does not matter
1170716474 M * daniel_hozac ensc: well, i mean, we'd want to keep the configuration in /etc rather than in /vservers/.hash.
1170716519 M * ensc I would tie configuration to the partition
1170716555 M * daniel_hozac right, but that's what making 00 a directory would be fore.
1170716558 M * daniel_hozac s/fore/for/
1170716564 M * daniel_hozac then have a symlink inside it.
1170716618 M * daniel_hozac along with the configuration.
1170716631 M * daniel_hozac so keeping the config in /etc, while still making it partition specific
1170716633 M * ensc for backup purposes?
1170716656 M * daniel_hozac yeah, for instance.
1170716679 M * daniel_hozac Guest1603: could you elaborate on your issues?
1170716688 M * ensc ok; perhaps. But this is a really weak configuration only which was used to keep vhashify working when defaults changed
1170716720 M * daniel_hozac e.g. the default beecrypt algorithm?
1170716725 M * ensc yes
1170716728 M * daniel_hozac okay.
1170716854 J * matti matti@acrux.romke.net
1170716866 M * matti :)
1170716867 M * matti Uff.
1170716881 M * matti Bertl: I had some trobules with OFTC.
1170716886 M * matti Bertl: Thanks for help :)
1170716895 M * daniel_hozac there were some netsplits earlier.
1170716900 M * matti Yeah.
1170716927 M * Bertl matti: my pleasure ... how did I help?
1170716935 M * matti They removed DNS-es of each one server itself, and put only round-robin rotation one as irc.oftc.net :)
1170716998 M * matti Bertl: By answering on my query, you made me sure, that this is not my fault ;]
1170717009 M * matti Bertl: I mean - my irssi is fine, etc.
1170717009 M * matti ;]
1170717040 M * matti [00:10:35] Irssi uptime: 44d 9h 2m 37s
1170717042 M * matti Uh.
1170717043 M * matti ;]
1170717077 J * mire ~mire@50-166-222-85.adsl.verat.net
1170717086 M * matti Bertl: Sorry for confusing you ;]
1170717103 M * Bertl matti: np
1170717105 M * xp_prg if I have a vserver that I like, how can I duplicate it easily?
1170717120 M * pflanze daniel_hozac / ensc: with the SF beecrypt, recompiled vserver-util give "All 18 tests passed", and "vserver etch hashify" works.
1170717133 M * daniel_hozac xp_prg: with a pre/rc util-vserver, vserver ... build -m clone...
1170717145 M * Bertl pflanze: okay, so that should be a new debian bug-report then :)
1170717164 M * xp_prg oh ok
1170717167 M * daniel_hozac it's in (soon to be old) stable. i doubt it'll ever get fixed ;)
1170717169 M * pflanze well, that's sarge, that won't be updated anymore anyway.
1170717218 M * matti Night folks!
1170717221 M * matti ;]
1170717235 M * daniel_hozac good night matti!
1170717344 M * xp_prg is it possible to clone a running server?
1170717370 M * pflanze What exactly is this stuff with "calling the package manager for finding out the list of files to be excluded"? Does "hashify" still do that?
1170717374 M * Bertl xp_prg: I guess, but it might screw up the state
1170717427 M * Guest1603  daniel_hozac: Have upgraded to Linux version 2.6.18-4-vserver-686 (Debian 2.6.18.dfsg.1-10) from Unstable but the bug persists
1170717445 M * daniel_hozac pflanze: yes.
1170717496 J * shuri ~shuri@55-199-0-72-ppp.3menatwork.com
1170717565 M * pflanze I haven't found any "manpage" or other documentation *page* about vhashify.
1170717572 M * pflanze Only 2 hits in the wiki.
1170717572 M * daniel_hozac Guest1603: and what bug is that?
1170717591 M * daniel_hozac pflanze: feel free to write something up.
1170717632 M * pflanze A manpage would probably not be the right thing, since vhashify is a lib util, not to be used directly?
1170717645 M * Guest1603  daniel_hozac: courier imap is trying to open a connection through 127.0.0.1, despite having ADDRESS set to something else
1170717666 M * daniel_hozac Guest1603: and?
1170717669 M * pflanze Rather a wiki page I guess
1170717671 M * Guest1603 daniel_hozac: the source address is unchanged but the destination goes to the public IP, so it hangs on SYN sent
1170717684 M * daniel_hozac pflanze: the man pages are horribly out of date anyway.
1170717694 M * Guest1603 This is why i thought I should ask for help as it's possible I've just stuffed up the config
1170717695 M * daniel_hozac Guest1603: why?
1170717699 M * daniel_hozac Guest1603: iptables?
1170717722 M * donuto is it possible to use only a secret key on both side instead of creating a ca/crt too ? i get this eror: You must define CA file
1170717745 M * Guest1603 Am using iptables but as I understood it, nothing from the guest should have the 127.0.0.1 address as source
1170717759 M * Guest1603 The annoying thing is "it used to work"
1170717765 M * daniel_hozac Guest1603: so you selected CONFIG_VSERVER_REMAP_SADDR in your kernel?
1170717780 M * Bertl donuto: for what purpose?
1170717788 M * Guest1603 I'll check whether I did last time around
1170717789 M * daniel_hozac connections to 127.0.0.1 will have a source address of 127.0.0.1 inside a guest if not.
1170717806 M * Guest1603 OK, this is possibly the information I was missing
1170717819 M * Guest1603 Won't that cause major weirdness in the networking?
1170717845 Q * ensc Killed (NickServ (GHOST command used by ensc_))
1170717855 J * ensc ~irc-ensc@p54B4EC3C.dip.t-dialin.net
1170717857 M * donuto Berl, for openvpn, i try to make client and server talk to eachother but on commandline --secret key worked, but in server.conf it gives that error although i dhave only key enabled
1170717875 M * daniel_hozac Guest1603: what networking?
1170717903 M * daniel_hozac donuto: you might have more luck in an openvpn channel or similar...
1170717919 M * Guest1603 Routing I was thinking, if the guests are sending from 127.0.0.1 but not using the loopback device
1170717933 M * Bertl donuto: yep, works fine with a shared key
1170717947 M * daniel_hozac Guest1603: all traffic to a local IP address (i.e. one on the same machine) will use lo.
1170717953 M * Bertl donuto: you need to put that key somewhere reachable and get the config right though
1170718017 M * donuto Bertl, yes... i do: openvpn --config server.conf  (and the secret key is in the same directory) so im not sure why it does not work
1170718022 M * Guest1603 daniel_hozac: I thought chbind meant that they could only access their public IP
1170718053 M * daniel_hozac Guest1603: which is why 127.0.0.1 is rewritten to the destination address.
1170718094 M * donuto Bertl, i have this in server.conf : key static.key
1170718094 M * daniel_hozac uh, which is why connections to 127.0.0.1 gets the destination address rewritten to the first address of the context.
1170718118 M * donuto Bertl, and commentedout #ca ca.crt #cert server.crt
1170718134 M * Guest1603 daniel_hozac: OK, (sorry for my ignorance) why is this an option?  Surely thats exactly what you'd want?
1170718160 M * daniel_hozac Guest1603: that's not an option. that's what always happen.
1170718169 M * daniel_hozac Guest1603: the option rewrites the _source_ address as well.
1170718195 M * Guest1603  daniel_hozac: Ah - I'm being ditzy.  Ofcourse.
1170718216 M * Bertl donuto: try secret static.key and make sure static.key is there (and was created by openvpn)
1170718217 M * Guest1603  daniel_hozac: The debian prebuild doesn't seem to have CONFIG_VSERVER_REMAP_SADDR at all ... :-\
1170718246 M * Bertl donuto: you might also want to config persist-key
1170718262 M * donuto Bertl, i try it and now it says: --server and --secret cannot be used together (you must use SSL/TLS keys)
1170718293 M * Guest1603  daniel_hozac: Bizaarly it appears the last kernel I used didn't have it as an option either.  And with the same firewall rules it worked...
1170718294 M * donuto Bertl, persist-key and persist-tun i already have too
1170718296 M * daniel_hozac Guest1603: because Debian is using 2.0 where it depended on !CONFIG_VSERVER_LEGACY, which is enabled.
1170718305 M * Bertl donuto: yep, that sounds familiar ... doesn't work in 'server' mode
1170718357 M * Guest1603 Guest1603: OK, thanks.  So I guess I need to work around it with iptables and possibly submit a bug against courier-imap saying that it doesn't handle the last of a portmapper gracefully.
1170718358 M * donuto Bertl, i try to configure a simple server.conf i think it almost works, only this wierd error ...
1170718392 M * daniel_hozac Guest1603: what?
1170718417 M * pflanze daniel_hozac: ok, I'm ready to add wiki content; can you tell me more about what hashify does with the package manager(s)? Reason, what is executed, which distros are supported?
1170718444 M * daniel_hozac to find out what files are configuration files.
1170718445 M * Guest1603 daniel_hozac: I'm guessing that sort of recompiling the kernel my best option is to work around it by fixing the IP tables rules
1170718465 M * pflanze why not link them too if link breaking is there?
1170718467 M * daniel_hozac Guest1603: yes, fixing your iptables should make everything work, provided that's what's stopping it.
1170718474 M * pflanze or is it to not depend on that?
1170718477 M * daniel_hozac pflanze: because COW is a rather new feature.
1170718481 M * pflanze ah
1170718497 M * Guest1603 daniel_hozac: OK.  I'll see what I can do.  Thank you very much for your help.
1170718525 M * pflanze Where should I look for the invocations?
1170718559 J * shuri_ ~shuri@hq01.electronicbox.net
1170718568 M * donuto Bertl, so what can i do best to solve this ? i got it to work a few hour ago but that was commandline parameters using --secret key and client connected .. but now i get this error if i start it with --config server.conf , but what other mode can it be? it must be server..
1170718579 M * daniel_hozac pflanze: scripts/vpkg
1170718691 M * Bertl donuto: remove the 'server' entry from the config
1170718706 M * Bertl donuto: just specify local/remote
1170718727 M * Bertl (or go through the cert setup, if you want a server which allows for more than one connection)
1170718741 M * Bertl donuto: only alternative is to fix openvpn :)
1170718763 M * Guest1603  daniel_hozac: Indeed /etc/init.d/iptables stop has made the problem go away, thanks for clearing up my misunderstanding of vserver networking
1170718822 M * donuto Bertl, ok i will try that, for now i only testing, later i will make it right i hope :p
1170718985 Q * shuri Ping timeout: 480 seconds
1170719017 J * debugger ~Rui@84.90.10.107
1170719282 Q * rgl Ping timeout: 480 seconds
1170719513 M * pflanze hm, I see that the vhashify binary contains the path to vpkg, but vhashify.[hc] doesn't.
1170719522 M * pflanze How is the path inserted?
1170719626 M * pflanze hm, there's no makefile in src/ ?
1170719707 A * pflanze is seeing the one in .., automake generated
1170719815 M * daniel_hozac grep VPKG_PROG
1170719874 M * pflanze thanks
1170719961 M * pflanze I still don't see how it gets included into vhashify, though; I'd like to cpp expand vhashify.c, how'd I do this?
1170719971 A * pflanze tries w/o any flags..
1170719996 M * donuto Bertl, it is connected now (very basic), i do see this warning on both side: WARNING: 'ifconfig' is present in remote config but missing in local config