From: Herbert Poetzl (herbert_at_13thfloor.at)
Date: Sat 27 Dec 2003 - 16:25:19 GMT
On Sat, Dec 27, 2003 at 11:12:03AM +0100, Dariush Pietrzak wrote:
> > hmm, I hope you followed the vserver bug fixes,
> > and adapted them for ctx17, otherwise I cannot
> > consider ctx17 very stable ...
> which bugfixes? I'm not aware of showstopper-bugs in ctx17.
for UP it's mostly okay, on SMP machines, there are some
critical races, which either lock the machine or crash it ...
- sys_alloc_s_info(), takes the &uts_sem
sys_new_s_context() calls it with the &alloc_ctx_lock held
- dynamic context allocation can block forever
- possible race in sys_release_s_info() with access
from procfs and various other places
> Oh, and sorry for the term 'stable', let's replace it with
> 'old', that way we can avoid having to synchronize what
> 'stable' actually means.
what's in a name? that which we call a rose by any other
name would smell as sweet ...
> > what testing did you do, regarding xfs/freeswan
> > mppe/cipe/openwall interaction with vserver?
> I tend to avoid enhancments/patches that could conflict with
> each-other, that's why I use openwall instead of grsec.
> I just need those features, it's not about 'cool' factor,
> so going the easiest route is prefered
hmm, okay, so you 'assume' by using mostly 'unrelated'
patches (or patches patching different areas of the
kernel) you can 'assure' good quality (no interaction)
well, I guess that might be valid for most patches, but
you'll have to check them, to make sure ...
anyway I consider this a good approach ;)
> (and ensures vitality of the project, overly-ambitious
> one-man-shows die horrible deaths..).
which project? linux-vserver?
do I have to expect the horrible death? ;)
> Test instalation should be as easy as:
> dpkg -i kernel-image-2.4.23-13d-generic_Generic.1.00_i386.deb
> ( or you could apt-get install kernel-image-2.4.23-13d-generic )
patches for non-debian distros are where?
> Key fingerprint = 40D0 9FFB 9939 7320 8294 05E0 BCC7 02C4 75CC 50D9
> Namagumi namagomi namagoroshi
> Vserver mailing list
Vserver mailing list