1254096145 M * Bertl off to bed now ... have a good one everyone!
1254096151 N * Bertl Bertl_zZ
1254100300 M * isodude uh, had to shut off chroot.deny_pivot to be able to mount proc correctly.
1254100936 M * isodude wierd that debootstrap don't include locales or debian-keyring.
1254100959 M * isodude as they give humongos error-messages :o
1254101868 J * sladen ~paul@212.13.202.11
1254101902 J * s1aden ~paul@212.13.202.11
1254102883 M * isodude oh, scrap debian-keyring.
1254103244 J * derjohn_foo ~aj@e180192237.adsl.alicedsl.de
1254103677 Q * derjohn_mob Ping timeout: 480 seconds
1254105425 Q * sladen Remote host closed the connection
1254105425 Q * s1aden Remote host closed the connection
1254106812 J * saulus_ ~saulus@c150136.adsl.hansenet.de
1254107223 Q * SauLus Ping timeout: 480 seconds
1254107227 N * saulus_ SauLus
1254108542 J * imcsk8 ~ichavero@189.155.65.128
1254108545 Q * imcsk8 
1254108804 Q * derjohn_foo Ping timeout: 480 seconds
1254110880 J * yarihm ~yarihm@12.38.244.2
1254111948 J * sladen ~paul@212.13.202.11
1254112574 J * derjohn_foo ~aj@tmo-100-16.customers.d1-online.com
1254112777 J * blues_ ~blues@dqr244.neoplus.adsl.tpnet.pl
1254112831 J * thierryp ~thierry@home.parmentelat.net
1254112893 Q * blues Ping timeout: 480 seconds
1254113723 Q * sladen Ping timeout: 480 seconds
1254114044 Q * zbyniu Remote host closed the connection
1254114801 Q * pmenier_off Quit: Konversation terminated!
1254115664 J * zbyniu ~zbyniu@ip-62.181.188.13.static.crowley.pl
1254117400 Q * yarihm Quit: Leaving
1254117886 J * sharkjaw ~gab@90.149.121.45
1254118378 J * ghislainocfs2 ~Ghislain@LPuteaux-151-41-11-129.w217-128.abo.wanadoo.fr
1254118538 Q * thierryp Remote host closed the connection
1254120289 J * larsivi ~larsivi@37.80-202-217.nextgentel.com
1254122464 J * thierryp ~thierry@zanzibar.inria.fr
1254123542 Q * derjohn_foo Ping timeout: 480 seconds
1254124180 Q * BWare Remote host closed the connection
1254124581 Q * balbir Read error: Operation timed out
1254124779 J * BWare ~itsme@ip-80-113-1-198.ip.prioritytelecom.net
1254125640 J * mrfree ~mrfree@host1-89-static.40-88-b.business.telecomitalia.it
1254126035 Q * mrfree Quit: Leaving
1254127532 Q * DLange Ping timeout: 480 seconds
1254127800 J * DLange ~DLange@dlange.user.oftc.net
1254128294 J * gnuk ~F404ror@pla93-3-82-240-11-251.fbx.proxad.net
1254128361 J * derjohn_foo ~aj@tmo-100-124.customers.d1-online.com
1254129454 Q * geb Ping timeout: 480 seconds
1254129857 J * geos_one ~chatzilla@213.229.35.178
1254129991 Q * geos_one 
1254130188 J * geb ~geb@219.4.82-79.rev.gaoland.net
1254130463 N * Bertl_zZ Bertl
1254130468 M * Bertl morning folks!
1254130480 M * arachnist moin
1254130937 J * BenG ~bengreen@94-169-110-10.cable.ubr22.aztw.blueyonder.co.uk
1254131006 Q * BenG 
1254131014 J * BenG ~bengreen@94-169-110-10.cable.ubr22.aztw.blueyonder.co.uk
1254131125 M * ncopa isnt there a testscript to check that util-vserver works?
1254131151 M * ncopa trying to find the doc where it was mentioned
1254131241 M * ncopa google found it for me :)
1254131245 J * moulinux ~mouloud@netceler.pck.nerim.net
1254131246 M * ncopa its in bugreporting
1254131523 J * urbee ~dssd@84-255-255-120.static.t-2.net
1254131525 M * urbee hoi :)
1254131962 P * moulinux 
1254132510 J * vServer_user ~vServer_U@host90-152-0-28.ipv4.regusnet.com
1254133561 M * urbee is it possible to use hardened kernel with vserver support?
1254133670 J * Pazzo ~ugelt@reserved-225136.rol.raiffeisen.net
1254133796 M * Bertl probably
1254134014 Q * geb Quit: /
1254134660 M * Bertl i.e. I don't see why not
1254134703 J * kir ~kir@swsoft-msk-nat.sw.ru
1254135467 Q * FloodServ synthon.oftc.net services.oftc.net
1254135764 J * FloodServ services@services.oftc.net
1254138108 Q * Piet Ping timeout: 480 seconds
1254138978 J * doener ~doener@i59F55887.versanet.de
1254139083 Q * doener_ Ping timeout: 480 seconds
1254139609 Q * FireEgl Quit: Leaving...
1254139818 J * Piet ~piet@659AACXXX.tor-irc.dnsbl.oftc.net
1254141520 Q * nkukard Ping timeout: 480 seconds
1254142141 J * AntoNio ~root@78-1-105-193.adsl.net.t-com.hr
1254142148 M * AntoNio hello
1254142187 Q * AntoNio 
1254142825 Q * BenG Quit: I Leave
1254143139 J * nkukard ~nkukard@196.212.73.74
1254144556 J * ksn ~kuben@82.128.69.86
1254146141 M * ncopa which is the util-vserver utils that should be linked static to dietlibc?
1254146396 M * Bertl basically all elements which enter a guest
1254146401 Q * sharkjaw Remote host closed the connection
1254146601 M * ncopa and linking dynamically to libc is dangerous
1254146628 M * ncopa seems like the buildscript links dynamic if not dietlibc is used
1254146645 M * Bertl yes, because at least glibc loads various 'plugin' modules at runtime ... which would then be loaded from inside the guest
1254146678 M * Bertl so, if your setup (uClibc, IIRC) doesn't do that, it should be fine
1254146688 M * ncopa uclbic yes
1254146708 M * ncopa but it should still not link dynamically?
1254146777 M * Bertl I think loading a dynamic library should be fine, as long as it is loaded before the context is entered (i.e. before the syscall happens)
1254146809 M * Bertl for glibc it doesn't matter if you compile stuff dynamically or statically, it will load stuff at runtime anyways
1254146822 M * ncopa ok
1254146861 M * Bertl so, yes, probably it would make sense to compile with uClibc statically, more details and insight from daniel_hozac 
1254147001 M * ncopa can someone with a proerply dietlibc compiled util-vserver paste me the output of readelf -d /usr/sbin/vkill | grep NEEDED
1254147018 M * ncopa i wanna check if libvserver is linked static as well
1254147486 J * cluk ~cluk@p5B17CE91.dip.t-dialin.net
1254147508 M * Bertl There is no dynamic section in this file.
1254147972 M * ncopa ok, thanks
1254148010 M * ncopa just curious. how big is it?
1254148020 Q * cluk Quit: Ex-Chat
1254148131 J * FireEgl Proteus@2001:470:e056:1:4::9
1254148160 N * DoberMann[ZZZzzz] DoberMann
1254148203 M * Bertl 17040
1254148260 M * Bertl 64bit, x86_64
1254148278 Q * SauLus Remote host closed the connection
1254148294 J * saulus ~saulus@c150136.adsl.hansenet.de
1254148423 M * ncopa bytes I assume?
1254148442 M * Bertl correct
1254148446 M * ncopa peanuts
1254148517 M * ncopa dynamic uclibc is 8287
1254148990 M * Bertl dynamic is easy, it doesn't do much
1254148995 M * Bertl what is the static size?
1254149012 Q * thierryp Ping timeout: 480 seconds
1254149040 J * dowdle ~dowdle@scott.coe.montana.edu
1254149257 J * manana mayday_095@84.17.25.144
1254149274 P * kir Leaving.
1254149287 M * manana hi. I've prepared own debian tempate. but when I'm creating a VM, file attributes are flushing. all files are owned by root and suid bit is missed too
1254149298 M * Bertl hey :)
1254149306 M * manana )
1254149311 N * manana krushik
1254149324 M * Bertl how did you create the template?
1254149336 M * krushik I have my debian-5.3-i386-minimal_krushik.tar.gz
1254149375 M * krushik and doing vserver test build -m template --context 18 --hostname test --interface eth1:92.240.xx.xx --initstyle sysv -- -d debian -t /root/template/debian-5.3-i386-minimal_krushik.tar.gz
1254149430 M * Bertl does your tar contain the proper uid/gid and access/suid flags?
1254149453 M * krushik yep. after  tar --numeric-owner -zcvf  debian-5.3-i386-minimal_krushik.tar.gz --exclude='/sys/*' --exclude='/proc/*' --exclude='/tmp/*' --exclude='debian-5.3-i386-minimal_krushik.tar.gz' --exclude='*.bash_history' /  there are correct uid values
1254149492 M * Bertl could you upload that template for me somewhere?
1254149511 M * krushik sure
1254149612 Q * ghislainocfs2 Ping timeout: 480 seconds
1254149672 M * ncopa i didnt try link it static
1254150044 M * Bertl krushik: let me know when and where I can download it
1254150073 M * krushik Bertl, sent you notice 30 sec ago
1254150176 M * Bertl okay, tx
1254150196 Q * vasko Quit: ircII EPIC4-2.6 -- Accept no limitations
1254150418 M * Bertl krushik: unpacking that tar gives me root.root for almost all files
1254150455 J * uva bno@114-45-226-43.dynamic.hinet.net
1254150477 M * Bertl exceptions are var/cache/man and /home
1254150543 Q * urbee Ping timeout: 480 seconds
1254150598 M * Bertl I'm also unable to detect any suid flags, could it be that the tar is the wrong one?
1254150712 M * Bertl correction, sudo, sudoedit,  and pt_chown have suid set
1254150713 M * krushik hmm. If I untar it in console attributes include UID and SUID are missed... If press enter at mc, everything is fine..
1254150875 M * Bertl well, maybe mc uses a different file or something, but try listing the tar with -t
1254150904 M * BWare krushik: how do you untar it ?
1254150911 M * BWare tar -zxpf ?
1254150953 J * ghislainocfs2 ~Ghislain@LPuteaux-151-41-11-129.w217-128.abo.wanadoo.fr
1254150968 M * Bertl BWare: -p is default for superuser
1254150996 M * krushik yep. -p not helps
1254151146 M * Bertl so, to me it looks like the tar is somewhat 'different' .. let me ask why not build the debian guest from scratch via network? does your template include any special setups?
1254151173 M * Bertl (note: different here means unusual or broken)
1254151308 M * Bertl I see it contains uid/gid when viewed with tvzf (which is probably what mc does too)
1254151311 M * krushik do vserver use tar from host system? actually host system is very old (2007) and strange. should I compile latest tar?
1254151365 M * Bertl yes, vserver will use the tar from the host system, but my tar should be up-to-date and strangely still fails to extract the uid/gid and suid ...
1254151388 M * krushik yes, I see correct permissions with tvzf, but incorrect when zxf
1254151410 M * krushik oh..
1254151453 M * krushik how can I build guest from scratch? debootstrap?
1254151508 M * Bertl yes, that's actually quite simple with util-vserver, sec
1254151544 M * Bertl http://linux-vserver.org/Building_Guest_Systems
1254151575 M * Bertl assuming that you have a recent util-vserver installed, it should work out of the box for all debian and ubuntu flavors
1254151620 M * Bertl i.e. just switch from the template build method, to the debootstrap one, and specify the mirror (-m) instead
1254151633 M * krushik host system is not up to date and there even isn't any package manager installed)
1254151655 M * Bertl no problem, util-vserver will download the debootstrap binary 
1254151716 M * krushik but I should compile the latest util-vserver..
1254151761 M * Bertl well, older versions will work too, but you might have to adjust the debootstrap url and such
1254151816 M * ncopa got 2.6.30.8 vserver kernel compiled
1254151835 M * ncopa seems to wortk but i need to put some work into getting util-vserver play nice with busybox :-(
1254151874 M * krushik last time I tried debootstrap guest system it said something like "can't find architecture" or may be "atrchitecture not defined"
1254151922 M * Bertl what does 'uname -a' give you?
1254151959 M * krushik Linux xxxx 2.6.20.4-vs2.2.0 #8 SMP Tue May 8 20:53:26 MSD 2007 i686 i686 i386 GNU/Linux
1254151996 M * krushik I think it is linux from scratch or smth like that
1254151997 M * Bertl okay, so you want to add -- --arch i386
1254152027 M * Bertl debian uses i386 and amd64 for i686 and x86_64 
1254152041 M * krushik to my vserver buld command?
1254152072 M * Bertl yep, see first example on the page I pasted above
1254152086 M * Bertl (i.e. comment below that example)
1254152306 M * krushik hehe. awesome =)
1254152314 J * hparker ~hparker@2001:470:1f0f:32c:290:96ff:fe50:40fa
1254152473 M * krushik ... E: no /usr/share/debootstrap/devices.tar.gz. cannot create devices
1254152521 M * Bertl does it stop after that?
1254152543 M * krushik yes..
1254152556 M * Bertl what util-vserver version?
1254152584 M * krushik 0.30.215
1254152592 M * krushik oh. sry
1254152595 M * krushik 0.30.213
1254152605 M * Bertl you probably could work around that by simply putting an empty tar there, but you might encounter other debootstrap related issues
1254152609 J * kir ~kir@swsoft-msk-nat.sw.ru
1254152619 M * krushik 'll try
1254152642 M * Bertl the simplest way is likely to remove any installed util-vserver and debootstrap binaries and update to 0.30.216-preXXX (take the latest snapshot there)
1254152848 M * krushik done! )
1254152857 M * krushik with empty /usr/share/debootstrap/devices.tar.gz
1254152881 M * krushik great, thanks a lot)
1254152896 M * Bertl np
1254153026 J * imcsk8 ~ichavero@148.229.1.11
1254153868 P * kir Leaving.
1254153882 J * kir ~kir@swsoft-msk-nat.sw.ru
1254154083 J * thierryp ~thierry@home.parmentelat.net
1254154268 J * bonbons ~bonbons@2001:960:7ab:0:2c0:9fff:fe2d:39d
1254154605 J * mrfree ~mrfree@host1-89-static.40-88-b.business.telecomitalia.it
1254156160 J * BenG ~bengreen@94-169-110-10.cable.ubr22.aztw.blueyonder.co.uk
1254156184 Q * ksn Quit: Ex-Chat
1254156638 J * geb ~geb@earth.gebura.eu.org
1254157533 Q * bonbons Quit: Leaving
1254157719 Q * mrfree Quit: Leaving
1254157924 Q * BenG Quit: I Leave
1254158343 Q * derjohn_foo Ping timeout: 480 seconds
1254159029 J * bonbons ~bonbons@2001:960:7ab:0:2c0:9fff:fe2d:39d
1254160425 J * sladen ~paul@212.13.202.11
1254162498 J * derjohn_foo ~aj@c150209.adsl.hansenet.de
1254162642 Q * gnuk Quit: NoFeature
1254164938 Q * derjohn_foo Ping timeout: 480 seconds
1254166107 Q * sladen Ping timeout: 480 seconds
1254166437 Q * Pazzo Quit: Bye!
1254167159 M * arekm Bertl: 5 day and counting
1254167434 Q * ghislainocfs2 Quit: Leaving.
1254167675 M * Bertl arekm: do you have +       vx_set_rq_time(rq, jiffies);    /* update time */
1254167675 M * Bertl +       vx_schedule(prev, rq, cpu);     /* hold if over limit */
1254167675 M * Bertl +       vx_try_unhold(rq, cpu);         /* unhold if refilled */
1254167683 M * Bertl hmm, nope
1254167700 M * Bertl do you have VSERVER_HARDCPU enabled?
1254167751 M * arekm yes, enabled
1254167777 M * Bertl hmm, does any of the guest have the SCHED_HARD flag on?
1254167806 M * arekm yes, they do
1254167814 M * arekm (all of them)
1254167841 M * Bertl what about blues_, any idea what the setup/config is there?
1254167973 M * arekm he has HARDCPU enabled (we use exactly the same config) but no idea about sched_hard (asked him via email)
1254168720 J * Borg_ borg@borg.uu3.net
1254169548 Q * zbyniu Ping timeout: 480 seconds
1254169948 J * Kmos ~gothicx@kmos.user.oftc.net
1254170130 J * zbyniu ~zbyniu@ip-62.181.188.13.static.crowley.pl
1254171249 Q * bonbons Quit: Leaving
1254172337 Q * blues_ Quit: Reconnecting
1254172337 J * blues ~blues@dqr244.neoplus.adsl.tpnet.pl
1254173990 M * krushik what about unix-socket sharing between guests?
1254174021 M * Bertl you need to share the ipc namespace for that
1254174036 M * Bertl i.e. it's usually easier to use a network socket instead
1254174071 M * krushik but not so fast I suppose
1254174091 M * Bertl I doubt you will be able to tell the difference :)
1254174094 M * krushik how can I share "ipc namespace"? and what is this?)
1254174119 M * Bertl guest-guest as well as host-guest network traffic happens via lo, so you get the full speed
1254174144 M * Bertl no additional network stack traversal or similar is involved
1254174182 M * Bertl a Linux-VServer guest is composed of several namespaces, one being the IPC namespace
1254174294 M * krushik afaik perfomance through unix-socket better even when both apps communicates through lo at 1 host
1254174310 M * daniel_hozac i thought a bind mount was sufficient for UNIX sockets.
1254174341 M * Bertl for named sockets, that should work 
1254174362 M * krushik I've tried mount --bind from 1 guest to another, but socket disappeared even at first VE
1254174560 M * krushik ok. I'll keep using tcp sockets for a while)
1254174592 M * Bertl try to mount a directory from the host into both guests via the guest configs fstab
1254175127 M * krushik [ERROR] Can't start server : Bind on unix socket: Permission denied
1254175193 M * krushik but permissions are enough
1254175206 M * Bertl yeah, I remember that there were plans to add unix sockets to the IPC namespace, guess that happened ... what kernel/patch is that
1254177118 Q * Kmos Quit: return unless user.signoff?
1254177176 N * DoberMann DoberMann[ZZZzzz]
1254178274 Q * imcsk8 Quit: Leaving
1254179075 Q * geb Quit: /
1254179156 Q * dowdle Remote host closed the connection
1254181666 M * Bertl off to bed now .. have a good one everyone!
1254181672 N * Bertl Bertl_zZ