1243555689 Q * Piet Ping timeout: 480 seconds
1243556379 J * Piet ~piet@tor-irc.dnsbl.oftc.net
1243558828 M * Bertl off to bed now .. have a good one everyone!
1243558832 N * Bertl Bertl_zZ
1243560390 J * balbir ~balbir@202.81.30.16
1243561185 J * imcsk8 ~ichavero@189.155.128.62
1243562372 Q * imcsk8 Quit: This computer has gone to sleep
1243564284 J * imcsk8 ~ichavero@189.155.135.32
1243566676 Q * imcsk8 Quit: This computer has gone to sleep
1243568472 J * imcsk8 ~ichavero@189.155.135.32
1243571035 J * derjohn_foo ~aj@c145109.adsl.hansenet.de
1243571463 Q * derjohn_mob Ping timeout: 480 seconds
1243572736 Q * hparker Quit: Read error: 104 (Peer reset by connection)
1243574741 J * davidkarban ~david@193.85.217.71
1243574791 J * sharkjaw ~gab@149-242-57.oke2-bras6.adsl.tele2.no
1243575186 J * yarihm ~yarihm@68.121.151.12
1243577509 J * geb ~geb@AOrleans-253-1-52-135.w92-140.abo.wanadoo.fr
1243577686 J * hijacker ~hijacker@213.91.163.5
1243578315 J * geb_ ~geb@earth.gebura.eu.org
1243578424 Q * derjohn_foo Ping timeout: 480 seconds
1243578704 Q * geb Ping timeout: 480 seconds
1243579015 Q * imcsk8 Quit: This computer has gone to sleep
1243579057 J * cluk ~cluk@p5B17F8DD.dip.t-dialin.net
1243579304 Q * geb_ Ping timeout: 480 seconds
1243579824 Q * sharkjaw Ping timeout: 480 seconds
1243580086 J * doener_ ~doener@i59F55A14.versanet.de
1243580190 Q * doener Ping timeout: 480 seconds
1243580880 J * derjohn_foo ~aj@tmo-100-182.customers.d1-online.com
1243580905 Q * MooingLe1ur Quit: leaving
1243580910 J * MooingLemur ~troy@shells195.pinchaser.com
1243581405 J * harobed ~harobed@pda57-1-82-231-115-1.fbx.proxad.net
1243581918 J * geb ~geb@AOrleans-253-1-52-135.w92-140.abo.wanadoo.fr
1243582188 J * sharkjaw ~gab@149-242-57.oke2-bras6.adsl.tele2.no
1243583174 Q * fb Ping timeout: 480 seconds
1243583454 Q * sharkjaw Ping timeout: 480 seconds
1243583694 J * dna ~dna@186-204-103-86.dynamic.dsl.tng.de
1243584282 J * cga ~weechat@194.244.1.164
1243584286 J * sharkjaw ~gab@149-45-98.oke2-bras6.adsl.tele2.no
1243584349 Q * yarihm Quit: This computer has gone to sleep
1243584364 J * ktwilight_ ~keliew@160.15-241-81.adsl-dyn.isp.belgacom.be
1243584413 J * fb fback@red.fback.net
1243584724 Q * ktwilight Ping timeout: 480 seconds
1243584795 J * ktwilight__ ~keliew@61.13-240-81.adsl-dyn.isp.belgacom.be
1243584798 Q * ktwilight_ Read error: Connection reset by peer
1243585754 Q * balbir Ping timeout: 480 seconds
1243586806 J * balbir ~balbir@202.81.30.16
1243587593 J * kir ~kir@swsoft-msk-nat.sw.ru
1243588455 J * gnuk ~F404ror@pla93-3-82-240-11-251.fbx.proxad.net
1243588478 J * Pazzo ~ugelt@reserved-225136.rol.raiffeisen.net
1243589604 Q * dna Quit: Verlassend
1243589764 J * ghislainocfs2 ~Ghislain@adsl2.aqueos.com
1243589855 Q * ghislainocfs21 Ping timeout: 480 seconds
1243590368 Q * geb Quit: Quitte
1243591108 M * cluk Hi
1243591121 M * cluk I am having a problem setting bcaps on a running vserver.
1243591130 M * cluk I have tried this command:
1243591157 M * cluk vattribute --set --xid 1001 --bcap IPC_OWNER
1243591187 M * cluk the status file still shows: BCaps:	00000000344c04ff afterwards.
1243591216 M * cluk this is util-vserver 0.30.212-1 on debian etch
1243591257 M * cluk on an ubuntu system with util-vserver 0.30.216~r2772 the same command works as expected.
1243591292 M * cluk did I just get the syntax wrong or is this a bug in the older util-vserver version?
1243593324 Q * sid3windr Ping timeout: 480 seconds
1243593840 J * sid3windr luser@bastard-operator.from-hell.be
1243593995 N * Bertl_zZ Bertl
1243593999 M * Bertl morning folks!
1243594042 M * Bertl cluk: expected, 0.30.212 is like 3 years old or so
1243594088 Q * balbir Ping timeout: 480 seconds
1243594089 M * cluk Hi Bertl
1243594103 M * cluk thanks. restarting the vserver worked as expected.
1243594125 M * Bertl yes, the kernel you are using there is probably ancient too, right?
1243594205 M * cluk well, debian etch 2.6.18. 
1243594447 M * Bertl so, probably doesn't have the capability masking
1243596160 Q * cga Ping timeout: 480 seconds
1243596810 J * cga ~weechat@194.244.1.164
1243596991 J * saulus_ ~saulus@d026149.adsl.hansenet.de
1243597389 Q * SauLus Ping timeout: 480 seconds
1243597400 N * saulus_ SauLus
1243600667 J * Net147 Net147@c211-30-18-226.rivrw2.nsw.optusnet.com.au
1243600861 Q * davidkarban Quit: Ex-Chat
1243600882 J * docelic ~docelic@78.134.199.252
1243601689 J * mrfree ~mrfree@host1-89-static.40-88-b.business.telecomitalia.it
1243602073 M * cluk Bertl: as you might remember :) I have prepared some binary ubuntu vserver kernels. 
1243602105 M * cluk my ubuntu jaunty kernel is based on vs2.3.0.36.9
1243602134 Q * sharkjaw Quit: Leaving
1243602145 J * docelic_ ~docelic@78.134.198.23
1243602159 M * cluk I would now like to update it to vs2.3.0.36.13. Is it sufficient to apply all the delta patches past 2.3.0.36.9?
1243602212 M * cluk Or should I better restart with the latest 2.6.28 patch?
1243602555 Q * docelic Ping timeout: 480 seconds
1243602731 M * Bertl cluk: probably the best to update all and use the latest patch
1243602760 M * Bertl of course, if you like to spend some time on it, you might do both, and checl the differences
1243602763 M * Bertl *check
1243602831 Q * cga Quit: got a DELL??? update you BIOS with http://github.com/cga/dellbiosupdate.sh/tree/master ;)
1243602855 M * cluk Bertl: thanks
1243602899 Q * docelic_ Quit: http://www.spinlocksolutions.com/
1243602923 M * Net147 though I was having problems with 2.3.0.36.13 with plain init style...
1243603008 M * Net147 Bertl: did you discover anything more about it?
1243603038 M * Bertl not really, waiting for daniel_hozac as I do not have a clue what the difference between the two setups might be
1243603045 J * thierryp ~thierry@zanzibar.inria.fr
1243603059 M * Net147 hmm okay
1243603066 M * Bertl I suspect that it is struct_fs related somehow, but I do not see how 
1243603076 M * Bertl *fs_struct actuall :)
1243603120 M * Net147 yea, need to remember to tell daniel_hozac about resetting the groups on exec/enter or something
1243603188 M * Net147 if it wasn't already fixed in 2.3.0.36.11 or later. I can't test because of that init issue.
1243603235 M * Net147 how would they be reset though? would it read it from /etc/groups in the guest?
1243603249 M * Net147 */etc/group
1243603264 M * Bertl it would make sense to reset them to 0 (main group) and no auxillary groups
1243603403 Q * thierryp Quit: ciao folks
1243603445 Q * Pazzo Quit: Ex-Chat
1243603836 Q * mrfree Quit: Leaving
1243604000 J * balbir ~balbir@116.50.167.3
1243604406 Q * jrdnyquist Quit: Leaving
1243606028 Q * derjohn_foo Ping timeout: 480 seconds
1243606296 J * dgr 577f3ede@webchat.mibbit.com
1243606398 M * dgr Is there any vserver documentation that has recommended grsec settings? With grsec set to "high", chroot functionality is too limited to create or start vservers.
1243606461 M * fb dgr: iirc harry provides his own kernel .config
1243606502 M * Bertl you might want to talk to harry ... in general, grsec configuration is like selinux configuration a real art
1243606538 M * dgr Thanks guys. I'll drop Harry an email in that case.
1243606575 M * dgr Setting up vserver for the first time after one of our customers needs to use a 32bit PHP extensions but their dedicated server is a 64bit OS :(
1243606597 M * dgr (the PHP extension is closed source, so no chance of recompiling it)
1243606648 M * Bertl shouldn't be a problem with Linux-VServer 
1243606768 J * dna ~dna@186-204-103-86.dynamic.dsl.tng.de
1243606849 M * daniel_hozac dgr: http://people.linux-vserver.org/~harry/_README_
1243606879 J * yarihm ~yarihm@whitehead2.dhcp.lbl.gov
1243606905 M * Bertl hey daniel_hozac! got a minute?
1243606912 M * dgr daniel_hozac: Thank you very much :)
1243606920 A * dgr goes for another kernel recompile.
1243606929 J * Pazzo ~ugelt@reserved-225136.rol.raiffeisen.net
1243606954 Q * yarihm 
1243606958 M * daniel_hozac Bertl: sure.
1243606981 M * Bertl we have a problem with the struct_fs changes in recent 2.6.29 kernels
1243607007 M * daniel_hozac oh?
1243607011 M * Bertl it seems that the guest starts fine, but entering isn't possible, as no files are left
1243607031 M * Bertl funny thing is, that it works for sysv style guests, but fails for plain init guests
1243607065 M * Bertl the system calls done in both cases look really similar to me, also the enter syscall commands are basically the same
1243607207 M * Bertl any ideas what makes them different in regad to the filesystem namespace?
1243607302 M * Bertl (if you want to test something, I have a test setup available)
1243607540 M * daniel_hozac how was the context setup?
1243607561 M * Bertl in both cases the config is identical, except for the init style
1243607568 M * daniel_hozac using recent utils?
1243607580 M * Bertl using the latest snapshot available
1243607608 M * Bertl pre2833 to be precise
1243607794 M * daniel_hozac there should be no difference...
1243607850 M * Bertl well, somehow there is .. at least for the kernel :)
1243607865 M * Net147 don't forget about needing to reset groups on exec/enter...
1243607895 M * Bertl Net147: more a feature, but the issue at hand is a bug :)
1243607931 M * Bertl but yeah, would be nice to have vserver - enter reset the groups for root
1243607997 J * mrfree ~mrfree@host1-89-static.40-88-b.business.telecomitalia.it
1243608001 M * Bertl daniel_hozac: note: it seems that it worked before the recent struct_fs changes (and the adaptation in Linux-VServer) so maybe I'm doing something wrong there, but ATM, I cannot figure what the difference would be
1243608065 M * Bertl (the only thing I can think of is that in the plain init case, init is still 'holding' the fs/namespace, but how that prevents the enter to succeed is beyond my comprehension atm
1243608114 J * hparker ~hparker@linux.homershut.net
1243608178 M * Bertl one question is: when we do a set_space(), do you expect the current fs (when listed in the mask) to be 'frozen' (i.e. duplicated) or 'referenced'?
1243608222 M * Bertl means: will changes the process does to the fs have an effect on the one stored in the vxi or not
1243608447 M * dgr Thanks for the grsec pointer. Pleased to say that I have a server running within vserver :)
1243608457 M * Bertl congrats!
1243608487 M * dgr Just a quick one, whilst I think of it...
1243608503 M * dgr If I run iptables on the host, will that also firewall guests?
1243608521 M * dgr Since the packets are passing through the host's interface.
1243608525 M * Bertl assumed that your firewall setup covers the guest IP(s), yes
1243608534 M * dgr OK, great.
1243608567 M * Bertl note that all host-guest and guest-guest traffic will use 'lo'
1243608590 A * dgr will modify his firewall script in that case.
1243608740 M * daniel_hozac Bertl: duplicated.
1243608892 M * Bertl okay, maybe that causes the difference, as I'm just taking a reference at the moment ... going to try to duplicate it
1243609319 Q * Net147 
1243609444 Q * Piet Ping timeout: 480 seconds
1243609603 Q * mrfree Quit: Leaving
1243610096 J * Piet ~piet@tor-irc.dnsbl.oftc.net
1243610208 Q * dna Quit: Verlassend
1243610279 M * Bertl daniel_hozac: also it seems we are leaking user namespaces, but that could be a mainline issue as well
1243610507 M * daniel_hozac okay.
1243610517 M * daniel_hozac the user namespaces changed quite a bit recently, didn't they?
1243610537 M * Bertl yep
1243610584 M * daniel_hozac i'll take a look at it tonight, i'm running a bit late right now.
1243610595 M * Bertl okay, np, thanks for the input!
1243610635 M * Bertl enter works now (with the duplication :)
1243610682 M * daniel_hozac nice.
1243611021 Q * kir Quit: Leaving.
1243611543 Q * harobed Ping timeout: 480 seconds
1243612197 J * dowdle ~dowdle@scott.coe.montana.edu
1243612507 J * derjohn_mob ~aj@tmo-105-163.customers.d1-online.com
1243612516 J * imcsk8 ~ichavero@148.229.1.11
1243612577 Q * cluk Quit: Ex-Chat
1243612938 M * harrydg dgr: i replied to your mail
1243612942 M * harrydg but gotta run now
1243612958 M * harrydg (cfr mail :))
1243613137 M * dgr Thanks Harry, have a great weekend.
1243613608 J * bonbons ~bonbons@2001:960:7ab:0:2c0:9fff:fe2d:39d
1243614143 Q * derjohn_mob Ping timeout: 480 seconds
1243614445 A * dgr heads off.
1243614449 M * dgr Thanks again guys.
1243614451 P * dgr 
1243614811 M * ghislainocfs2 bertl: the 2.6.29 kernels have issues ?
1243614880 M * Bertl all kernels have issues :)
1243614960 M * ghislainocfs2 lol
1243614965 M * Bertl there is a known problem with 2.6.29.3 and vs2.3.0.36.13 with entering 'plain' init guests
1243614975 M * Bertl which is fixed in vs2.3.0.36.14 :)
1243614993 M * ghislainocfs2 well i wanted to build one but it is quite hard on my setup so i wanted to take the best bet
1243614996 M * ghislainocfs2 ok
1243615056 M * ghislainocfs2 2.6.27 is the long term support i guess
1243615087 M * ghislainocfs2 oh the .14 is quite fresh lol
1243615180 M * Bertl indeed :)
1243615304 M * ghislainocfs2 so you think i am better with v2.6.28.10-vs2.3.0.36.11 or the last one ? 
1243615353 M * ghislainocfs2 bah i guess this is the impossible to answer question ;)
1243615368 M * Bertl look at the dates, releases (the deltas between) and you probably get an idea :)
1243615552 J * derjohn_mob ~aj@tmo-104-231.customers.d1-online.com
1243615752 M * ghislainocfs2 i see you asume some degree of intelligence on my side :p
1243615786 M * ghislainocfs2 one day someone will create one kernel to rule them all
1243615803 M * Bertl and in darkness bind them :)
1243615848 M * ghislainocfs2 eheh of course
1243616990 Q * gnuk Quit: NoFeature
1243617293 Q * derjohn_mob Ping timeout: 480 seconds
1243618557 J * derjohn_mob ~aj@tmo-096-136.customers.d1-online.com
1243618974 Q * pmenier_off Quit: Konversation terminated!
1243619219 Q * uva_ Read error: Connection reset by peer
1243620091 Q * imcsk8 Quit: This computer has gone to sleep
1243622423 Q * dowdle Remote host closed the connection
1243622993 Q * derjohn_mob Ping timeout: 480 seconds
1243623037 J * dowdle ~dowdle@scott.coe.montana.edu
1243623136 J * cga ~weechat@82.84.189.184
1243623520 Q * bonbons Quit: Leaving
1243623804 J * harobed ~harobed@arl57-1-82-231-110-14.fbx.proxad.net
1243624483 J * bonbons ~bonbons@2001:960:7ab:0:2c0:9fff:fe2d:39d
1243624604 Q * Pazzo Quit: Ex-Chat
1243624630 J * uva bno@118-160-161-159.dynamic.hinet.net
1243624729 M * micah Bertl: I'm trying now to sort through the corrections to the vpn setup on the wiki by following the great flower page
1243624747 M * micah Bertl: I created interfaces/3/tun and interfaces/3/ip with the ip that the vpn will have
1243624783 M * micah but when I try to start, I get:
1243624783 M * micah No device specified for '/etc/vservers/eider/interfaces/3'                      
1243624826 M * Bertl sounds expected
1243624838 M * Bertl i.e. specify a device or use 'nodev'
1243624867 M * Bertl also make sure that you have recent util-vserver installed
1243624886 M * micah what device would I specify? 
1243624892 M * micah the device where the vpn link will be established over?
1243624900 M * micah or the tun device
1243624912 M * Bertl the tun device
1243624942 M * micah hm, then I will need multiple tun devices on the host, one for each guest for a p-t-p link I am guessing
1243624963 M * Bertl but as I said, make sure that util-vserver is recent enough to understand the 'tun' entry
1243624982 M * micah right
1243625092 M * micah looks like it worked
1243625106 M * micah although taking down the vserver resulted in this: 
1243625108 M * micah tunctl: ioctl(TUNSETIFF): Operation not permitted
1243625110 M * micah but thats probably fine
1243625321 M * Bertl depends, if that comes from something _inside_ the guest trying to take the tun down, then it should be fine, if that comes from outside (i.e. util-vserver) something is wrong
1243625512 Q * bonbons Quit: Leaving
1243626013 J * bonbons ~bonbons@2001:960:7ab:0:2c0:9fff:fe2d:39d
1243627517 J * imcsk8 ~ichavero@148.229.1.11
1243633558 Q * dowdle Remote host closed the connection
1243634663 J * Floops[w]1 ~baihu@205.214.201.176
1243635036 Q * cga Quit: got a DELL??? update you BIOS with http://github.com/cga/dellbiosupdate.sh/tree/master ;)
1243635063 Q * Floops[w] Ping timeout: 480 seconds
1243635230 J * dowdle ~dowdle@scott.coe.montana.edu
1243636111 Q * bonbons Quit: Leaving
1243636773 Q * harobed Ping timeout: 480 seconds
1243637180 J * derjohn_mob ~aj@e180193173.adsl.alicedsl.de
1243637646 J * geos_one ~chatzilla@chello084115149052.4.graz.surfer.at
1243638542 Q * imcsk8 Quit: This computer has gone to sleep
1243638546 Q * geos_one Quit: ChatZilla 0.9.84 [Firefox 3.0.10/2009050120]
1243639924 Q * derjohn_mob Ping timeout: 480 seconds