1266192511 M * petzsch FYI: added http://linux-vserver.org/util-vserver:Cgroups#using_cgroup_to_enforce_memory_limits to the wiki to describe the usage of the cgroup memory configuration 1266193143 Q * petzsch Quit: Leaving. 1266198110 Q * routinedecilit Ping timeout: 480 seconds 1266199675 N * Bertl_zZ Bertl 1266199683 M * Bertl back now ... was more a nap 1266199696 M * Bertl daniel_hozac: ping? 1266199822 Q * bzed Ping timeout: 480 seconds 1266199843 M * Bertl daniel_hozac: what am I doing wrong here? http://paste.linux-vserver.org/14246 1266199892 J * bzed ~bzed@devel.recluse.de 1266200082 P * agaffney 1266200329 Q * FloodServ synthon.oftc.net services.oftc.net 1266200515 M * Bertl nevermind, found the offending 'uri' entry :) 1266202850 J * aj__ ~aj@e180193007.adsl.alicedsl.de 1266203255 Q * derjohn_foo Ping timeout: 480 seconds 1266203823 J * FloodServ services@services.oftc.net 1266203909 J * Matt2 ~Matt@c-71-60-82-180.hsd1.pa.comcast.net 1266203944 J * imcsk8 ~ichavero@148.229.1.11 1266204125 P * Matt2 1266204635 J * MathisTCP ~mathis@c-71-60-82-180.hsd1.pa.comcast.net 1266204677 P * MathisTCP 1266204967 J * derjohn_foo ~aj@e180192149.adsl.alicedsl.de 1266205055 Q * aj__ Ping timeout: 480 seconds 1266206173 Q * derjohn_foo Remote host closed the connection 1266206208 Q * Bushmills Quit: Leaving. 1266206225 J * Bushmills ~l@scarydevilmonastery.net 1266206281 Q * Bushmills 1266206298 J * Bushmills ~l@scarydevilmonastery.net 1266206443 J * SauLus_ ~SauLus@c192234.adsl.hansenet.de 1266206854 Q * SauLus Ping timeout: 480 seconds 1266206854 N * SauLus_ SauLus 1266206877 J * derjohn_mob ~aj@e180192149.adsl.alicedsl.de 1266207359 Q * derjohn_mob Ping timeout: 480 seconds 1266212036 J * derjohn_mob ~aj@tmo-105-17.customers.d1-online.com 1266213670 Q * SauLus charon.oftc.net joule.oftc.net 1266213670 Q * Piet charon.oftc.net joule.oftc.net 1266213670 Q * Mr_Smoke charon.oftc.net joule.oftc.net 1266213670 Q * ktwilight_ charon.oftc.net joule.oftc.net 1266213670 Q * nou charon.oftc.net joule.oftc.net 1266213670 Q * Loki|muh charon.oftc.net joule.oftc.net 1266213670 Q * DLange charon.oftc.net joule.oftc.net 1266213670 Q * evilhackerdude charon.oftc.net joule.oftc.net 1266213670 Q * nox charon.oftc.net joule.oftc.net 1266213670 Q * biz charon.oftc.net joule.oftc.net 1266213670 Q * grobie charon.oftc.net joule.oftc.net 1266213670 Q * groente_ charon.oftc.net joule.oftc.net 1266213670 Q * Marillion charon.oftc.net joule.oftc.net 1266213670 Q * niki charon.oftc.net joule.oftc.net 1266213670 Q * geb charon.oftc.net joule.oftc.net 1266213670 Q * derjohn_mob charon.oftc.net joule.oftc.net 1266213670 Q * urbee charon.oftc.net joule.oftc.net 1266213670 Q * kolorafa charon.oftc.net joule.oftc.net 1266213670 Q * ensc charon.oftc.net joule.oftc.net 1266213670 Q * DoberMann[ZZZzzz] charon.oftc.net joule.oftc.net 1266213670 Q * michal charon.oftc.net joule.oftc.net 1266213670 Q * tokkee charon.oftc.net joule.oftc.net 1266213670 Q * _nono_ charon.oftc.net joule.oftc.net 1266213670 Q * smash charon.oftc.net joule.oftc.net 1266213670 Q * ruskie charon.oftc.net joule.oftc.net 1266213670 Q * sid3windr charon.oftc.net joule.oftc.net 1266213670 Q * fosco charon.oftc.net joule.oftc.net 1266213670 Q * Bushmills charon.oftc.net joule.oftc.net 1266213670 Q * manana charon.oftc.net joule.oftc.net 1266213670 Q * hijacker charon.oftc.net joule.oftc.net 1266213670 Q * Radiance charon.oftc.net joule.oftc.net 1266213670 Q * julius charon.oftc.net joule.oftc.net 1266213670 Q * niki_work charon.oftc.net joule.oftc.net 1266213670 Q * DreamerC charon.oftc.net joule.oftc.net 1266213670 Q * _are_ charon.oftc.net joule.oftc.net 1266213670 Q * opuk charon.oftc.net joule.oftc.net 1266213670 Q * ex charon.oftc.net joule.oftc.net 1266213670 Q * sladen charon.oftc.net joule.oftc.net 1266213670 Q * DelTree charon.oftc.net joule.oftc.net 1266213670 Q * PowerKe charon.oftc.net joule.oftc.net 1266213670 Q * zbyniu charon.oftc.net joule.oftc.net 1266213670 Q * bzed charon.oftc.net joule.oftc.net 1266213670 Q * theocrite charon.oftc.net joule.oftc.net 1266213670 Q * Chlorek charon.oftc.net joule.oftc.net 1266213670 Q * Hunger charon.oftc.net joule.oftc.net 1266213670 Q * larsivi charon.oftc.net joule.oftc.net 1266213670 Q * arekm charon.oftc.net joule.oftc.net 1266213670 Q * eyck charon.oftc.net joule.oftc.net 1266213670 Q * weasel charon.oftc.net joule.oftc.net 1266213670 Q * Medivh charon.oftc.net joule.oftc.net 1266213670 Q * C14r charon.oftc.net joule.oftc.net 1266213670 Q * FloodServ charon.oftc.net joule.oftc.net 1266213670 Q * pflanze charon.oftc.net joule.oftc.net 1266213670 Q * imcsk8 charon.oftc.net joule.oftc.net 1266213670 Q * gdm charon.oftc.net joule.oftc.net 1266213673 Q * quasisane charon.oftc.net joule.oftc.net 1266213673 Q * fLoo charon.oftc.net joule.oftc.net 1266213673 Q * bobnormal charon.oftc.net joule.oftc.net 1266213673 Q * fzylogic charon.oftc.net joule.oftc.net 1266213673 Q * jrdnyquist charon.oftc.net joule.oftc.net 1266213673 Q * nkukard charon.oftc.net joule.oftc.net 1266213673 Q * grant charon.oftc.net joule.oftc.net 1266213673 Q * Snow-Man charon.oftc.net joule.oftc.net 1266213673 Q * thalunil charon.oftc.net joule.oftc.net 1266213673 Q * blathijs charon.oftc.net joule.oftc.net 1266213673 Q * mEDI_S charon.oftc.net joule.oftc.net 1266213673 Q * tolkor charon.oftc.net joule.oftc.net 1266213673 Q * mathx charon.oftc.net joule.oftc.net 1266213673 Q * Guest1917 charon.oftc.net joule.oftc.net 1266213673 Q * Hollow charon.oftc.net joule.oftc.net 1266213673 Q * tam charon.oftc.net joule.oftc.net 1266213673 Q * AndrewLee charon.oftc.net joule.oftc.net 1266213673 Q * fback charon.oftc.net joule.oftc.net 1266213673 Q * FireEgl charon.oftc.net joule.oftc.net 1266213673 Q * dannf charon.oftc.net joule.oftc.net 1266213673 Q * MooingLemur charon.oftc.net joule.oftc.net 1266213673 Q * micah charon.oftc.net joule.oftc.net 1266213673 Q * infowolfe charon.oftc.net joule.oftc.net 1266213673 Q * kjj charon.oftc.net joule.oftc.net 1266213673 Q * http203 charon.oftc.net joule.oftc.net 1266213673 Q * carnage charon.oftc.net joule.oftc.net 1266213937 J * derjohn_mob ~aj@tmo-105-17.customers.d1-online.com 1266213937 J * urbee ~urbee@93-103-199-233.dynamic.dsl.t-2.net 1266213937 J * kolorafa ~kolorafa@irc.kolorafa.dlk.pl 1266213937 J * ensc ~irc-ensc@77.235.160.26 1266213937 J * DoberMann[ZZZzzz] ~james@cap31-6-88-180-72-76.fbx.proxad.net 1266213937 J * michal ~michal@www.rsbac.org 1266213937 J * tokkee tokkee@osprey.tokkee.org 1266213937 J * _nono_ ~gomes@libation.ircam.fr 1266213937 J * smash smash@newton.uk.to 1266213937 J * ruskie ruskie@ruskie.user.oftc.net 1266213937 J * sid3windr luser@bastard-operator.from-hell.be 1266213937 J * fosco fosco@marx.wirefull.org 1266213956 J * FloodServ services@services.oftc.net 1266213956 J * gdm ~gdm@lair.fifthhorseman.net 1266213956 J * quasisane ~sanep@c-75-67-251-206.hsd1.nh.comcast.net 1266213956 J * fLoo ~fLoo@fs.coresec.de 1266213956 J * pflanze ~chris__@69-196-152-229.dsl.teksavvy.com 1266213956 J * bobnormal ~irc@87-194-32-179.bethere.co.uk 1266213956 J * Guest1917 ~Genghis@ph34r.my.d-n-s.org.uk 1266213956 J * MooingLemur ~troy@shells195.pinchaser.com 1266213956 J * Hollow ~bene@shiva.xnull.de 1266213956 J * fzylogic ~fzylogic@dsl081-243-128.sfo1.dsl.speakeasy.net 1266213956 J * jrdnyquist ~jrdnyquis@slayer.caro.net 1266213956 J * nkukard ~nkukard@196.212.73.74 1266213956 J * micah ~micah@micah.riseup.net 1266213956 J * Snow-Man ~sfrost@tamriel.snowman.net 1266213956 J * tam ~tam@gw.nettam.com 1266213956 J * thalunil ~thalunil@82.94.215.130 1266213956 J * infowolfe ~infowolfe@c-71-236-152-35.hsd1.or.comcast.net 1266213956 J * kjj ~kjj@pool-74-107-128-126.ptldor.fios.verizon.net 1266213956 J * http203 ~http203@d80h232.public.uconn.edu 1266213956 J * AndrewLee ~andrew@u7.hlc.edu.tw 1266213956 J * fback fback@red.fback.net 1266213956 J * FireEgl FireEgl@173-16-9-10.client.mchsi.com 1266213956 J * grant mep@87-98-246-129.ovh.net 1266213956 J * blathijs ~matthijs@drsnuggles.stderr.nl 1266213956 J * mEDI_S ~medi@255.255.255.255.li 1266213956 J * tolkor ~rj@tdream.lly.earlham.edu 1266213956 J * dannf ~dannf@utter.lackof.org 1266213956 J * mathx ~math@sizone.org 1266213956 J * carnage carnage@voip-colo-74-86-148-74.link2voip.com 1266214338 J * bzed ~bzed@devel.recluse.de 1266214505 J * Bushmills ~l@scarydevilmonastery.net 1266214505 J * manana ~mayday090@84.17.11.51 1266214505 J * hijacker ~hijacker@213.91.163.5 1266214505 J * Radiance ~Radiance@193.16.154.187 1266214505 J * julius ~julius@217.20.127.15 1266214505 J * niki_work ~niki@cpe.fe4-0-120.0x50a6de52.kdnxd4.customer.tele.dk 1266214505 J * DreamerC ~DreamerC@122-116-181-118.HINET-IP.hinet.net 1266214505 J * _are_ ~quassel@h1417489.stratoserver.net 1266214505 J * opuk ~kupo@pipe.intertubez.net 1266214505 J * ex ex@valis.net.pl 1266214505 J * sladen ~paul@starsky.19inch.net 1266214505 J * DelTree ~deplagne@goldorak3.eric.deplagne.name 1266214505 J * zbyniu ~zbyniu@ip-62.181.188.13.static.crowley.pl 1266214505 J * PowerKe ~tom@94-224-78-36.access.telenet.be 1266214520 J * SauLus ~SauLus@c192234.adsl.hansenet.de 1266214520 J * Piet ~Piet__@04ZAAAD8A.tor-irc.dnsbl.oftc.net 1266214520 J * Mr_Smoke smokey@layla.lecoyote.org 1266214520 J * ktwilight_ ~ktwilight@123.174-247-81.adsl-dyn.isp.belgacom.be 1266214520 J * nou Chaton@causse.larzac.fr.eu.org 1266214520 J * Loki|muh ~loki@satanix.de 1266214520 J * DLange ~DLange@dlange.user.oftc.net 1266214520 J * evilhackerdude ~stephan@78.46.203.42 1266214520 J * nox ~nox@nox.user.oftc.net 1266214520 J * biz ~biz@node2.cluster1.pyrox.eu 1266214520 J * grobie ~grobie@tyr.schnuckelig.eu 1266214520 J * groente_ ~groente@shell.puscii.nl 1266214520 J * Marillion ~dirk@hetzner4.127011.net 1266214520 J * niki ~niki@94.145.207.11 1266214520 J * geb ~geb@mars.gebura.eu.org 1266214538 J * theocrite ~Hubert@kim.theocrite.org 1266214538 J * Chlorek ~cokolwiek@c.sed.pl 1266214538 J * Hunger ~Hunger@Hunger.hu 1266214538 J * larsivi ~larsivi@47.80-202-217.nextgentel.com 1266214538 J * arekm arekm@carme.pld-linux.org 1266214538 J * eyck ~eyck@77.79.198.60 1266214538 J * weasel ~weasel@weasel.noc.oftc.net 1266214538 J * Medivh ck@dolphin.serverbox.de 1266214538 J * C14r ~C14r@mail.cipworx.de 1266215329 Q * niki Quit: Leaving 1266218586 J * ghislain ~AQUEOS@adsl2.aqueos.com 1266218757 J * bzed_ ~bzed@devel.recluse.de 1266218757 Q * bzed Read error: Connection reset by peer 1266218773 N * bzed_ bzed 1266218796 J * balbir ~balbir@122.248.161.59 1266221359 J * petzsch ~markus@p4FF45E79.dip.t-dialin.net 1266221497 M * petzsch good morning everyone 1266221518 M * hijacker morning petzsch 1266221596 M * petzsch is it somehow possible to have virt_mem funcitonallity with cgroup memory limits? i wan't guests to see there limits when running free or top 1266221608 J * yarihm ~yarihm@217-162-53-251.dclient.hispeed.ch 1266222389 Q * petzsch Quit: Leaving. 1266223214 Q * Bushmills Quit: Leaving. 1266223554 Q * derjohn_mob Ping timeout: 480 seconds 1266225135 J * petzsch ~markus@p4FF45E79.dip.t-dialin.net 1266225225 Q * yarihm Quit: This computer has gone to sleep 1266225479 J * cluk ~cluk@p5B17F2CB.dip.t-dialin.net 1266225824 J * yarihm ~yarihm@80-219-168-230.dclient.hispeed.ch 1266226047 J * ncopa ~ncopa@245.39.189.109.customer.cdi.no 1266226069 M * ncopa hi 1266226101 M * ncopa my 2.6.32.8-vs2.3.0.36.29 kernel fails to build 1266226108 M * ncopa http://pastebin.com/d3e9fda66 1266226132 M * ncopa looks like a missing #include ? 1266226189 M * petzsch had the same problem, bertl mentioned that you need to add some config lines, see: http://linux-vserver.org/util-vserver:Cgroups#using_cgroup_to_enforce_memory_limits 1266226239 M * ncopa thanks! 1266226515 N * DoberMann[ZZZzzz] DoberMann 1266226676 J * kir ~kir@swsoft-msk-nat.sw.ru 1266226811 P * kir 1266227538 M * bobnormal morning! 1266227551 M * petzsch moin 1266229029 M * bobnormal anyone tried DEVTMPFS option - kernel maintained /dev tmpfs @ bootup? 1266229211 M * Bertl yep, seems to work, not quite unexpected, devfs did the same for several years before it was labeled 'unmaintained' and 'unfixable' 1266229298 M * petzsch Bertl: any idea how to get top/free inside the guest to show the cgroup set memory limits? 1266229317 M * Bertl with recent kernel, just enable VIRT_MEM 1266229400 J * gnuk ~F404ror@pla93-3-82-240-11-251.fbx.proxad.net 1266229843 M * petzsch maybe it was too late yesterday when i tried it, seems to work all as expected now: 4 GB memory.limit_in_bytes and 12 GB memory.memsw.limit_in_bytes resulting in 4 GB of memory and 8 GB of swap 1266229876 M * Bertl excellent 1266230233 M * petzsch grep 1 /dev/zero - grep: /dev/zero: Cannot allocate memory 1266230243 M * petzsch limit effective 1266230275 J * Bushmills ~l@scarydevilmonastery.net 1266231502 M * bobnormal getting errors trying to compile 2.6.32-8-vs2.3.0.36.29-grsec2.1.14-20100213 -- in kernel/vserver/limit.o / error: implicit declaration (x4) 1266231502 Q * ktwilight_ Read error: Connection reset by peer 1266231541 M * bobnormal harry: can you recommend a >2.6.31.11-vs2.3.0.36.28-grsec2.1.13 patch? 1266231558 J * ktwilight ~ktwilight@98.92-240-81.adsl-dyn.isp.belgacom.be 1266231563 M * Bertl bobnormal: get vs2.3.0.36.29.1 or enable CGROUP/MEMCTL 1266231579 M * bobnormal ok, thanks 1266232776 M * bobnormal whats the actual name of the kernel option to enable, i tried enabling all CGROUP stuff under general config but it still fails to compile 1266232812 M * bobnormal grep -i MEMCTL .config # yields nothing 1266233082 M * petzsch bobnormal: see http://linux-vserver.org/util-vserver:Cgroups#using_cgroup_to_enforce_memory_limits 1266233096 M * petzsch had the same problem and enabling the 3 lines helped 1266233125 M * bobnormal cheers. 1266233730 Q * balbir Ping timeout: 480 seconds 1266236123 M * bobnormal after upgrade from 2.6.31.11 / vs2.3.0.36.28 / grsec 2.1.13 to 2.6.32.8 / vs2.3.0.36.29 / grsec 2.1.14 ... i get 'vsysctl: open("."): Permission denied' when starting a vserver. 1266236130 M * bobnormal found some irc logs showing chxid as a possible solution 1266236143 M * bobnormal but when i run it when the arguments recommended i get invalid argument against seemingly all files in the guest 1266236177 M * bobnormal (and error persists) 1266236189 M * Bertl chxid/lsxid needs a tagged filesystem 1266236210 M * bobnormal filesystem hasnt changed 1266236221 M * bobnormal ext3 (rw,noatime) 1266236222 M * Bertl I doubt that your filesystem is mounted with the required attribute (tag) and I also doubt that this has anything to do with your issues 1266236230 M * bobnormal ok :) 1266236246 M * Bertl what util-vserver version do you use? 1266236266 M * bobnormal this one is 0.30.215 1266236279 M * Bertl too old for that kernel 1266236283 M * bobnormal ok, thanks 1266236289 M * Bertl also: grsec .. double check the chroot settings 1266236302 M * bobnormal unchanged since last kernel .. i did cp .config then make oldconfig 1266237729 M * Bertl btw 0.30.215 was too old for the 'other' kernel too 1266237834 M * bobnormal it worked :) 1266237848 Q * yarihm Quit: This computer has gone to sleep 1266237853 M * bobnormal so i co'd svn via http .. i want trunk? 1266237884 M * Bertl nah, a recent prerelease is fine 1266237911 M * Bertl and no, it didn't work, actually it didn't even give you the basic guest protextion 1266237919 M * bobnormal eek :) 1266238297 J * mnemoc ~amery@shell.opensde.net 1266238812 M * bobnormal bertl: so im now running 0.30.216-pre2864 and the issue persists 1266238851 M * Bertl okay, start the guest with --debug and upload the output (pastebin) 1266238962 J * yarihm ~yarihm@adsl-89-217-40-33.adslplus.ch 1266239172 M * bobnormal http://pastebin.ca/1797213 1266239344 M * Bertl where does /usr/local/etc/vservers/newclone/vdir point to? 1266239446 M * bobnormal to /vservers/newclone 1266239481 M * Bertl okay, check the barrier (with showattr) for /vservers/newclone /vservers and / 1266239496 M * bobnormal = no, /vservers = yes 1266239539 M * Bertl / and /vservers/newclone both have no barrier set? 1266239589 M * bobnormal the /vservers/newclone did, removed but now (after recompile util-vserver with --prefix=/ to fix /usr/local/etc/ hassles .. initially i symlinked back to /etc/vservers) i am now getting 'problems encountered while verifying vshelper functionality' 1266239608 M * bobnormal where /sbin/vshelper != util-vserver's vshelper 1266239629 M * Bertl looks like you have two versions installed then 1266239638 M * bobnormal yeah i upgraded from 215 1266239660 M * bobnormal does make install && make install-distribution not overwrite the old copy? 1266239661 M * Bertl _have_ not _had_ i.e. you should have removed 0.30.215 1266239677 M * bobnormal ok i will restore from snapshot and retry then 1266239691 M * bobnormal this time with --prefix=/ on util-vserver compile ;) 1266239692 M * bobnormal thanks 1266239729 Q * jrdnyquist Quit: Leaving 1266240224 J * jrdnyquist ~jrdnyquis@slayer.caro.net 1266240598 M * bobnormal bertl: seems to be working now, thanks 1266240620 M * Bertl you're welcome! 1266240824 M * bobnormal with those versions, should hide_netif/hide_lback be working? i can still see lo and eth0 with interface info in the vserver, though nattribute --get --nid `cat /etc/vservers/newclone/context` reports the flags are set (ncontext does not exist) 1266240870 M * Bertl what exactly do you expect hide_netif/hide_lback to do? 1266240871 M * bobnormal vserver-info now reports 2.6.32.8-grsec2.1.14-vs2.3.0.36.29 / VS-API 0x00020305 / util-vserver 0.30.216-pre2864 1266240890 M * bobnormal previously in testing with vattribute ONLY (not nattribute) i managed to make them disappear entirely from ifconfig output 1266240924 M * bobnormal ie: hide packet counts on shared physical interface from individual VMs 1266240970 M * Bertl ah, well, no that's not what they do ... and I'm kind of puzzled what your previous testing results were 1266240985 M * bobnormal dont worry that was all old releases, i dont really mind either way 1266241003 M * Bertl hide_netif hides network interfaces not carrying an IP belonging to the guest 1266241011 M * bobnormal ok 1266241030 M * Bertl and hide_lback 'remaps' the lback address to 127.0.0.1 when queried (for interfaces) 1266241063 M * Bertl but, if your aim is to 'hide' the packet counters, that can be easily done 1266241079 M * Bertl just assign the IP to a dummy device, the counters there will always be 0 1266241088 M * Bertl (or at least close to 0) 1266241151 M * bobnormal dummy device = eth0:x or veth device or what? sorry not so clear what you mean by dummy device .. i do need networking on the guest 1266241174 M * Bertl dummy device is 'dummy0' :) 1266241192 M * Bertl you get that when you modprobe 'dummy' 1266241202 M * bobnormal then use iptables to route between that and the ethernet interface? 1266241218 M * Bertl no need, dummy will not be used for the actual traffic 1266241229 M * Bertl (it would result in packets being dropped) 1266241229 M * bobnormal ok 1266241365 M * bobnormal i will add to the networking section of the FAQ unless you recommend otherwise 1266241403 M * Bertl well, folks used to use dummy0 since ages, as some FAQ/Wiki told them to do so (with no good reason) 1266241434 M * Bertl now this is actually a good reason, but I'm not sure we should emphasize on that (i.e. not really a FAQ :) 1266241480 M * bobnormal shall i just add it and someone can move it later to a new home 1266241590 M * Bertl no, but you could clean up the following, and mention it there: http://linux-vserver.org/Networking_vserver_guests 1266241596 M * bobnormal ok 1266241610 M * _are_ Is there any way to chenge sysctl-values for a running vserver, or do I need to restart the vserver? 1266241621 M * Bertl bobnormal: i.e. explain that there is no real reason for dummy0 except if you want to e.g. hide the counters or so 1266241652 M * Bertl _are_: you can enter the namespace and change them there (as long as they are guest specific) 1266241816 J * Piet_ ~Piet__@04ZAAAEU7.tor-irc.dnsbl.oftc.net 1266241819 M * _are_ Seems they are not guest-specific enough: sys.fs.inotify.* 1266241836 M * _are_ result is a permission denied 1266241939 M * _are_ changing it on the host doesn't change the guest 1266241959 M * _are_ guess i have to restart the guest then 1266241971 M * Bertl how did you enter the namespace? 1266242099 M * _are_ vserver X enter 1266242235 Q * Piet Ping timeout: 480 seconds 1266242427 M * _are_ had been some missunderstanding, the vserver takes the values from the host-/proc/sys just fine for fs.inotify.* 1266242619 J * balbir ~balbir@122.172.110.29 1266243988 Q * nkukard Quit: Leaving 1266244050 Q * bzed charon.oftc.net joule.oftc.net 1266244050 Q * Medivh charon.oftc.net joule.oftc.net 1266244050 Q * eyck charon.oftc.net joule.oftc.net 1266244050 Q * arekm charon.oftc.net joule.oftc.net 1266244050 Q * larsivi charon.oftc.net joule.oftc.net 1266244050 Q * Chlorek charon.oftc.net joule.oftc.net 1266244050 Q * weasel charon.oftc.net joule.oftc.net 1266244050 Q * C14r charon.oftc.net joule.oftc.net 1266244050 Q * theocrite charon.oftc.net joule.oftc.net 1266244050 Q * Hunger charon.oftc.net joule.oftc.net 1266244050 Q * Piet_ charon.oftc.net joule.oftc.net 1266244050 Q * Bushmills charon.oftc.net joule.oftc.net 1266244050 Q * gnuk charon.oftc.net joule.oftc.net 1266244050 Q * cluk charon.oftc.net joule.oftc.net 1266244050 Q * petzsch charon.oftc.net joule.oftc.net 1266244050 Q * geb charon.oftc.net joule.oftc.net 1266244050 Q * groente_ charon.oftc.net joule.oftc.net 1266244050 Q * biz charon.oftc.net joule.oftc.net 1266244050 Q * nox charon.oftc.net joule.oftc.net 1266244050 Q * evilhackerdude charon.oftc.net joule.oftc.net 1266244050 Q * Loki|muh charon.oftc.net joule.oftc.net 1266244050 Q * Mr_Smoke charon.oftc.net joule.oftc.net 1266244050 Q * SauLus charon.oftc.net joule.oftc.net 1266244050 Q * DLange charon.oftc.net joule.oftc.net 1266244050 Q * grobie charon.oftc.net joule.oftc.net 1266244050 Q * Marillion charon.oftc.net joule.oftc.net 1266244050 Q * nou charon.oftc.net joule.oftc.net 1266244050 Q * yarihm charon.oftc.net joule.oftc.net 1266244050 Q * ktwilight charon.oftc.net joule.oftc.net 1266244050 Q * PowerKe charon.oftc.net joule.oftc.net 1266244050 Q * DelTree charon.oftc.net joule.oftc.net 1266244050 Q * sladen charon.oftc.net joule.oftc.net 1266244050 Q * ex charon.oftc.net joule.oftc.net 1266244050 Q * opuk charon.oftc.net joule.oftc.net 1266244050 Q * _are_ charon.oftc.net joule.oftc.net 1266244050 Q * hijacker charon.oftc.net joule.oftc.net 1266244050 Q * manana charon.oftc.net joule.oftc.net 1266244050 Q * zbyniu charon.oftc.net joule.oftc.net 1266244050 Q * niki_work charon.oftc.net joule.oftc.net 1266244050 Q * Radiance charon.oftc.net joule.oftc.net 1266244050 Q * DreamerC charon.oftc.net joule.oftc.net 1266244050 Q * julius charon.oftc.net joule.oftc.net 1266244058 J * bzed ~bzed@devel.recluse.de 1266244058 J * theocrite ~Hubert@kim.theocrite.org 1266244058 J * Chlorek ~cokolwiek@c.sed.pl 1266244058 J * Hunger ~Hunger@Hunger.hu 1266244058 J * larsivi ~larsivi@47.80-202-217.nextgentel.com 1266244058 J * arekm arekm@carme.pld-linux.org 1266244058 J * eyck ~eyck@77.79.198.60 1266244058 J * weasel ~weasel@weasel.noc.oftc.net 1266244058 J * Medivh ck@dolphin.serverbox.de 1266244058 J * C14r ~C14r@mail.cipworx.de 1266244121 J * Piet_ ~Piet__@04ZAAAEU7.tor-irc.dnsbl.oftc.net 1266244121 J * Bushmills ~l@scarydevilmonastery.net 1266244121 J * gnuk ~F404ror@pla93-3-82-240-11-251.fbx.proxad.net 1266244121 J * cluk ~cluk@p5B17F2CB.dip.t-dialin.net 1266244121 J * petzsch ~markus@p4FF45E79.dip.t-dialin.net 1266244121 J * SauLus ~SauLus@c192234.adsl.hansenet.de 1266244121 J * Mr_Smoke smokey@layla.lecoyote.org 1266244121 J * nou Chaton@causse.larzac.fr.eu.org 1266244121 J * Loki|muh ~loki@satanix.de 1266244121 J * DLange ~DLange@dlange.user.oftc.net 1266244121 J * evilhackerdude ~stephan@78.46.203.42 1266244121 J * nox ~nox@nox.user.oftc.net 1266244121 J * biz ~biz@node2.cluster1.pyrox.eu 1266244121 J * grobie ~grobie@tyr.schnuckelig.eu 1266244121 J * groente_ ~groente@shell.puscii.nl 1266244121 J * Marillion ~dirk@hetzner4.127011.net 1266244121 J * geb ~geb@mars.gebura.eu.org 1266244125 J * yarihm ~yarihm@adsl-89-217-40-33.adslplus.ch 1266244125 J * ktwilight ~ktwilight@98.92-240-81.adsl-dyn.isp.belgacom.be 1266244125 J * manana ~mayday090@84.17.11.51 1266244125 J * hijacker ~hijacker@213.91.163.5 1266244125 J * Radiance ~Radiance@193.16.154.187 1266244125 J * julius ~julius@217.20.127.15 1266244125 J * niki_work ~niki@cpe.fe4-0-120.0x50a6de52.kdnxd4.customer.tele.dk 1266244125 J * DreamerC ~DreamerC@122-116-181-118.HINET-IP.hinet.net 1266244125 J * _are_ ~quassel@h1417489.stratoserver.net 1266244125 J * opuk ~kupo@pipe.intertubez.net 1266244125 J * ex ex@valis.net.pl 1266244125 J * sladen ~paul@starsky.19inch.net 1266244125 J * DelTree ~deplagne@goldorak3.eric.deplagne.name 1266244125 J * zbyniu ~zbyniu@ip-62.181.188.13.static.crowley.pl 1266244125 J * PowerKe ~tom@94-224-78-36.access.telenet.be 1266244760 Q * manana Ping timeout: 480 seconds 1266245335 M * bobnormal does lback_remap only effect connections from a guest to 127.0.0.1 or 127.x.x.x 1266245367 M * Bertl 127.x.x.x 1266245396 M * bobnormal is that only with lback_allow or always? 1266246114 Q * petzsch Quit: Leaving. 1266246269 Q * yarihm Quit: This computer has gone to sleep 1266246320 M * bobnormal am i correct to assume that nattribute --ncap is legacy only can is safe to ignore? raw_icmp / ~raw_icmp seems to work but in Caps&flags wiki it says it's legacy and classes as a ccap, no ncap section exists. 1266246488 M * Bertl no, actually quite the oposite is true 1266246517 M * Bertl i.e. RAW_ICMP as ccap is legacy only, it has been moved to the ncapabilities (ncap) 1266246545 M * bobnormal ok, there is no ncap section in the caps & flags section of the wiki 1266246547 M * Bertl if you feel like, you can add a table 'ncapabilities' to the wiki with the following entries 1266246554 M * Bertl #define NXC_TUN_CREATE 0x00000001 1266246563 M * Bertl #define NXC_RAW_ICMP 0x00000100 1266246587 M * Bertl those are the only capabilities for the network context used so far 1266246602 M * bobnormal bertl: available since version ?? 1266246621 M * Bertl available since ages :) but let me check the details :) 1266246654 M * bobnormal description for tun_create? 1266246671 M * bobnormal raw_icmp = allow opening of raw ICMP sockets, i assume ;) 1266246703 M * Bertl 2.6.22.19-vs2.3.0.34 is the oldest kernel I have at hand, and it already has both capabilities 1266246736 M * Bertl raw_icmp is the same as the corresponding ccaps flag 1266246779 J * BenG ~bengreen@cpc2-aztw22-2-0-cust521.aztw.cable.virginmedia.com 1266246794 M * Bertl TUN_CREATE guards creating tun devices from inside the guest 1266246815 M * Bertl i.e. tun_set_iff() 1266246832 M * bobnormal == tun/tap interface tun devices? 1266246837 M * bobnormal <-- not very familiar with tun/tap 1266246851 M * Bertl yep, network devices which 'link 1266246854 M * Bertl ' to userspace 1266247050 M * bobnormal ok added 1266247153 M * Bertl k, thanks 1266247201 M * bobnormal on that subject someone showed me http://en.wikipedia.org/wiki/LOLCODE last week :) 1266249029 M * bobnormal can someone explain what 'make network context persistent' (PERSISTENT nflag) actually does? 1266249098 Q * cluk Quit: Ex-Chat 1266249112 M * Bertl it makes the context stick around even if there is no user left 1266249162 M * bobnormal what is the net effect of that from a vServer start/stop userspace perspective 1266249211 M * Bertl when you start a guest, the contexts are created, and processes are spawned inside those contexts 1266249228 M * bobnormal ie: what would it achieve, when/why would it be desirable to keep the context in the kernel 1266249239 M * Bertl the contexts exist as long as there is at least a process (or socket in the network context case) left 1266249282 M * Bertl once the last process exits/socket is destroyed, the context is terminated too 1266249314 M * Bertl if you specify the PERSISTANT flag, the context will 'hang around' and you can enter it again later 1266249342 M * Bertl (you need to explicitely destroy it when you want to get rid of it) 1266249349 M * bobnormal does that mean it's theoretically possible to start a guest vServer with a specially written network daemon that is vServer aware and leaves its sockets lingering and can re-attach to old sockets again? 1266249387 M * bobnormal im just not sure of the point .. surely if the vServer goes missing any active socket is going to die when the remote side fails to receive a response to traffic? 1266249396 M * Bertl again, not related, as 'lingering' sockets would keep the context alive anyway 1266249411 Q * balbir Read error: Connection reset by peer 1266249412 M * bobnormal is there an example usage scenario 1266249433 M * Bertl the point is, if you want, for example to configure a network context to use IP a.b.c.d with some specific flags 1266249455 M * Bertl and then, you start short time processes using that context 1266249491 M * Bertl with long pauses between them .. then you might want to make it persistant and not recreate it every time a process comes along 1266249554 M * bobnormal ok, so its mainly for starting a context where you are aiming to run individual processes sporadically within that context rather than necessarily having a full environment / system daemons running constantly 1266249571 M * bobnormal i hope i understood correctly 1266249597 M * bobnormal i havent done much with running things in specific contexts as im mostly interested in entire vservers rather than individual processes or lingering contexts so far .. 1266249608 M * bobnormal thanks for the info 1266249707 M * Bertl yep, correct 1266249942 Q * BenG Quit: I Leave 1266250368 J * balbir ~balbir@122.172.109.212 1266250776 M * bobnormal im not familiar with setrlimit(2) .. does allowing the context to call this allow processes running in the guest context to potentially change rlimits defined by the host and therefore represent a security concern, or not? 1266250925 M * Bertl check out 'man setrlimit' for details on the limits 1266250968 M * Bertl the rlimits are actually ulimits and Linux-VServer uses the term rlimit for the context wide 'limits' 1266250992 M * Bertl i.e. giving that allows the guest to mess with the ulimits, but not with the context wide limits 1266251362 M * bobnormal thanks again 1266251373 M * bobnormal im learning a lot 1266251607 J * ghislain1 ~AQUEOS@LPuteaux-151-41-11-129.w217-128.abo.wanadoo.fr 1266251923 Q * ghislain Ping timeout: 480 seconds 1266251995 M * Bertl again, you're welcome! that's what the channel is for ... 1266253470 J * niki ~niki@94.145.207.11 1266253598 J * imcsk8 ~ichavero@148.229.1.11 1266253811 J * bonbons ~bonbons@2001:960:7ab:0:2c0:9fff:fe2d:39d 1266254209 J * elesouef ~elesouef@212.51.177.50 1266254248 Q * bonbons Quit: Leaving 1266254381 J * bonbons ~bonbons@2001:960:7ab:0:2c0:9fff:fe2d:39d 1266255239 J * hijacker_ ~hijacker@87-126-142-51.btc-net.bg 1266255578 M * bobnormal is there any particular reason that SET_RLIMIT is disabled by default? 1266255850 N * DoberMann DoberMann[PullA] 1266256059 M * Bertl rlimits as well as ulimits can be set for the guest in the config, by default, the guest does not need to change them 1266256259 M * bobnormal are there any distros that might expect rlimit support and die horribly? or is there any overhead in allowing additional rlimit restrictions to be set by the guest itself? 1266256402 M * Bertl no overhead in allowing or denying such limits, it's just that we usually play it safe :) 1266256416 J * ghislain ~AQUEOS@adsl2.aqueos.com 1266256436 M * Bertl I know that recently some distros insist on setting certain limits via pam, those will fail if not adjusted 1266256451 M * bobnormal ok 1266256457 M * Bertl (like giving audio group a slightly higher priority or so) 1266256481 M * bobnormal how about CONFIG_VSERVER_VTIME .. if disabled and you want to set VIRT_TIME on a vserver guest's context, what will happen 1266256519 Q * hijacker_ Remote host closed the connection 1266256520 M * Bertl nothing, the flag will be set, but otherwise ignored 1266256584 M * bobnormal what's the good word on the feasibility of live migration support in future 1266256618 Q * ghislain1 Ping timeout: 480 seconds 1266256810 M * Bertl not really interesting to us ... would be a lot of work to keep it consistant and working with quite little gain ... 1266256882 M * Bertl I know, it's been some hype over the years, but what would you use live migration for? 1266256921 M * bobnormal decomissioning live hardware without manual sysadmin tasks 1266256939 M * bobnormal thats about all i can see as a benefit 1266256950 M * bobnormal i note that other virtualisation solutions are talking that functionality up 1266256954 M * bobnormal thats the only reason i asked 1266257021 M * _Shiva_ ack - and the more guests you put on a host, the more important it gets that the guests are more or less independent of the host.. 1266257039 M * Bertl well, scheduled maintainance on hardware can be done with a single xen/kvm wrapper 1266257070 M * Bertl or if you know that the maintainance is short, with hibernate/suspend 1266257084 M * _Shiva_ (Bertl - yup, that's why my vs-hosts are running as ESX VMs :-) ) 1266257105 M * bobnormal we're avoiding esxi etc. since we want high performance disk io 1266257106 M * _Shiva_ same as with KVM, i agree 1266257114 M * bobnormal so we cant really wrap as it defeats the purpose 1266257133 M * bobnormal anyway no great issues at the moment 1266257141 M * _Shiva_ bobnormal: what about "loopback iSCSI"? 1266257172 M * bobnormal _shiva_: no idea, never looked at it 1266257318 M * _Shiva_ bobnormal: it's worth a look ;-) 1266257407 M * pmjdebruijn esxi has reasonably disk performance if you present it a raw lun 1266257409 M * Bertl what IMHO would make sense, but seems to be of little interest to the public/linux developers is having a Linux-VServer cluster solution 1266257420 M * pmjdebruijn emphasis on reasonably 1266257443 M * bobnormal bertl: i found a good gentoo page about combining linux-HA and vservers, haven't yet tried it 1266257451 M * bobnormal bertl: i do plan to have a look 1266257481 M * _Shiva_ Bertl: ..like Proxmox? and substitute OpenVZ with linux-vserver? 1266257547 M * Bertl proxmox doesn't do cluster stuff 1266257572 M * _Shiva_ Bertl: it does for the KVM part.. 1266257587 M * _Shiva_ Bertl: so maybe they add that vor the container stuff too 1266257593 M * Bertl you do not understand what I'm actually referring to 1266257631 Q * bonbons Quit: Leaving 1266257642 M * Bertl I'm referring to being able to set up a cluster of machines running a Linux-VServer kernel, and to actively move processes or process groups between those clusters in a transparent way 1266257670 M * Bertl think mosix + Linux-VServer 1266257689 M * _Shiva_ Bertl: ah - single processes that is.. not whole containers 1266257701 M * _Shiva_ ideed, that would be nice :) 1266257877 J * bonbons ~bonbons@2001:960:7ab:0:2c0:9fff:fe2d:39d 1266258069 M * bobnormal has anyone here set up a front-end proxy for serving web stuff out of vservers on virtual IPs / multiple vserver hosts 1266258074 M * bobnormal i will probably look at doing that soon 1266258187 M * bobnormal just tried setting SCHED_PAUSE on a running vserver, doesnt seem to have had any effect on a session started with vserver enter ... is this normal? 1266258241 M * Bertl depends on the kernel/patch 1266258264 M * Bertl recent kernels replaced the TBS with CFS/hardlimit 1266258287 M * bobnormal i should use sched_hardlimit instead? 1266258291 M * Bertl the TBS mechanism is required for the sched flags to have effect 1266258339 M * Bertl so, if you are using e.g. the stable branch, you can kind of stop/freeze/pause the guest with that flag 1266258358 M * Bertl on vs2.3.x and linux > 2.6.22 it has no effect 1266258400 M * bobnormal 2.6.32-32.8 / vS2.3.0.36.29 1266258583 M * bobnormal bertl: http://linuxpmi.org/ appears to be latest mosix effort .. difficult to use with vServer? 1266258702 M * bobnormal looks quite limited actually 1266258716 M * bobnormal different sort of project 1266260837 Q * jrdnyquist Quit: Leaving 1266261266 J * yarihm ~yarihm@80-219-150-83.dclient.hispeed.ch 1266261324 M * Bertl off to bed now ... have a good one everyone! 1266261330 N * Bertl Bertl_zZ 1266262364 J * jrdnyquist ~jrdnyquis@slayer.caro.net 1266263264 J * hijacker_ ~hijacker@87-126-142-51.btc-net.bg 1266264394 Q * gnuk Quit: NoFeature 1266265132 J * petzsch ~markus@p4FF45E79.dip.t-dialin.net 1266265480 Q * ncopa Quit: Ex-Chat 1266266130 M * ktwilight hm, so i can't start my guest, and it seems i'm missing run.rev. i didn't touch the configs at all, which i find strange. using .27.31-vs2.3.0.36.6 with 0.30.216-pre2841 1266266163 M * ktwilight hm, maybe my util-vserver is outdated... 1266266928 M * ktwilight *phew* it was just util-vserver 1266267856 Q * hijacker_ Quit: Leaving 1266268923 Q * bonbons Quit: Leaving 1266269063 J * bonbons ~bonbons@2001:960:7ab:0:2c0:9fff:fe2d:39d 1266269983 Q * bonbons Quit: Leaving 1266270835 A * arekm has offtopic question. there is a puzzle board 6x10 (picture of something). Now every two elements can be swapped. The goal is to swap element to see original picture. Does such type of puzzle have some specific name in english? 1266271734 M * mnemoc arekm: http://en.wikipedia.org/wiki/Sliding_puzzle ? 1266271822 M * arekm mnemoc: no, not slide, you can swap any arbitrary 2 pieces 1266271846 M * arekm these don't have to be neighbours to be swappable 1266271860 M * mnemoc ic 1266271863 M * mnemoc don't know it 1266271960 M * _Shiva_ arekm: http://en.wikipedia.org/wiki/Concentration_%28game%29 ? 1266272046 M * arekm _Shiva_: no, all pieces are visible but in wrong places 1266272068 M * arekm so it's easy to make it but my goeal is to make it in lowest possible number of moves 1266272190 M * arekm like this: http://carme.pld-linux.org/~arekm/swappuzzle.png 1266272273 M * _Shiva_ arekm: http://www.freegaming.de/onlinegames/Puzzle-|-Logic-Games/Tile-Swap-Puzzle.html 1266272350 M * _Shiva_ so i thik it's just "tile swap puzzle" 1266272440 M * _Shiva_ omg - there's even a domain called tileswap.com .. it _has to_ be the korrect name ;-) 1266272763 M * mnemoc hehe 1266273192 M * arekm _Shiva_: thanks! 1266273232 M * arekm now googling for solver ;> in python or something 1266273375 Q * petzsch Read error: Connection reset by peer 1266273423 J * petzsch ~markus@p4FF45E79.dip.t-dialin.net 1266273839 Q * ghislain Quit: Leaving. 1266274215 Q * Piet_ Ping timeout: 480 seconds 1266274633 N * DoberMann[PullA] DoberMann[ZZZzzz] 1266277429 Q * petzsch Quit: Leaving.