[00:02] well, maybe not ;) [00:02] Action: riel guesses sys_sethostname should have effect inside a vserver [00:03] and sys_gethostname would get the virtual context's hostname [00:03] mmmmm [00:03] kind of like mount only working inside a namespace [01:03] Simon (~sgarner@apollo.quattro.net.nz) joined #vserver. [01:07] Nick change: Bertl_oO -> Bertl_zZ [01:30] Nick change: riel -> unriel [01:33] netrose (~john877@cc-ubr03-24.171.20.14.charter-stl.com) joined #vserver. [03:31] netrose (~john877@cc-ubr03-24.171.20.14.charter-stl.com) left irc: Ping timeout: 492 seconds [05:23] netrose (~john877@24.171.20.14) joined #vserver. [09:55] loger joined #vserver. [11:00] say (~say@212.86.243.154) left irc: Ping timeout: 483 seconds [14:34] loger joined #vserver. [16:00] Last message repeated 1 time(s). [16:00] holly_may (~james@electra.aic.at) joined #vserver. [16:29] Nick change: Bertl_zZ -> Bertl [16:30] hi all! [16:39] netrose (~john877@24.171.20.14) left irc: [17:04] holly_may (~james@electra.aic.at) left irc: Quit: Eject! Eject! Eject! [17:18] hi there [17:20] hi kestrel! [17:20] Nick change: unriel -> riel [17:36] @alec, you know there is a xbox version of vserver? [17:49] aaaa [18:00] hmm, you don't want to communicate, right? (I take 'no answer' as a yes ;) [18:03] serving (~serving@213.186.189.201) left irc: Ping timeout: 483 seconds [18:10] bertl: no i didn't know that... [18:10] not surprising though, i guess [18:10] vserver is so cool [18:12] morning [18:13] morning [18:13] morning? [18:14] it is morning here ;) [18:14] no it is afternoon here! ;) [18:18] Daan (~daan@62-177-204-162.bbeyond.nl) joined #vserver. [18:18] Hi [18:18] ok, looks like I can just do the vserver permissions stuff as an LSM module, stackable with selinux [18:19] did somebody put /vserver on nfs (kernel nfsd)? [18:22] hi Da'an? [18:22] man, i am the lag king [18:23] @mdaur probably ... but you wont have ILI and chroot block there ... [18:23] Bertl: what do you mean with ILI? [18:24] Immutable Linkage Invert (unify stuff) [18:24] Bertl: i ran several vserver over nfs (user nfsd) [18:24] Bertl: with chroot, but kernel nfs (v2 problems) v3 did not work [18:29] JonB (~jon@kg232.kollegiegaarden.dk) joined #vserver. [18:31] matta (root@debian.unixshell.com) left irc: Ping timeout: 492 seconds [18:32] hmm, well the chmod 000 will not work, but the rest should work regardless of the nfs implementation, if that implementation itself works ;) [18:32] ok ... super stackable LSM module it is [18:32] @rik release date 2005? [18:33] slightly less efficient than integrated into selinux (when combined with selinux), but should be way easier to maintain [18:33] Bertl: nah, I was just learning all of the selinux kernel code first [18:33] to determine the best way to go for the implementation [18:33] okay so we can expect 2.6 vserver next month, right? [18:33] what's our website url again? http;//www.linux-vserver.org/ ? [18:33] I certainly hope so ;) [18:33] for example ... [18:33] http://www.linux-vserver.org/ duh [18:33] Bertl: i will try tomorrow some nfs patch maybe it will work (in openafs i have locking problems) [18:34] by [18:34] bye [18:34] mdaur (~mdaur@141.59.19.50) left irc: Quit: Client exiting [18:36] the reason I'm taking my time is that I don't want to carry around the vserver legacy code from 2.2 [18:36] hrm, 2.4 I hope ... [18:36] I want something that's clean enough so that distributions can just merge it, preferably without frowning [18:37] ISTR vserver in 2.2, but maybe my memory is faulty [18:38] I first tried vserver about 2 years ago [18:38] I think [18:38] yes, there is a 2.2 version ... but what legacy code do you mean then? [18:39] the code from that patch that's in the 2.4 patch, but doesn't need to be because the kernel already has other infrastructure to do the same functionality [18:39] basically I don't want the 2.6 vserver patch to duplicate functionality that's already in 2.6 [18:39] only to add the functionality 2.6 doesn't already have [18:39] hmm, please could you define functionality? [18:40] say, editing syscall code everywhere to add permission checks, when it could be done with an LSM module [18:40] or adding chrootsafe, when we have filesystem namespaces [18:41] while things like "make sys_hostname lie and return something else" cannot be done with the existing infrastructure, so the vserver patch will need to add that ;) [18:42] well I don't remember that LSM got into 2.4, did they? [18:42] :) [18:43] Does somebody know the ipv4 error? [18:43] Can't set the ipv4 root (Bad address) [18:43] :) [18:43] yes, what tools? [18:43] exactly, LSM isn't in 2.4 but it is in 2.6 [18:44] so the 2.6 vserver patch should be implemented differently, instead of being just a simple port [18:44] so it isn't 2.2 legacy code then, right? [18:44] no, but the chrootsafe stuff and the 000 perm hack are legacy IMHO ;) [18:45] well, there is no chrootsafe (which, by the way, is called chsaferoot, don't ask me why) in vserver 2.4 ... [18:45] good point ;) [18:45] you've got better taste than that [18:45] hello? [18:45] :) [18:46] 16:44 < Bertl> yes, what tools? [18:46] daan: i think bertl is trying to imply that you should upgrade your userspace tools [18:46] what tools, and what patch do you use ... [18:46] okay, let me do some guessing: c17h? right? [18:47] userspace tools? [18:47] :) [18:49] hmm, okay ... let us start this conversation again from the beginning ... [18:49] hi Da'an? [18:49] hehe [18:50] :) [18:50] Daan :) [18:50] just Daan [18:50] it's dutch :) [18:50] okay daan! [18:50] :) [18:50] like then [18:50] so how can I help you? [18:50] haha :) [18:51] Are you the programmer of vserver? [18:51] not the, but a ... [18:51] ahhhh Nice work :) [18:51] :) [18:51] i was looking for something like this for a long time [18:51] :) [18:51] really long time :) [18:51] I installed it yesterday [18:51] but since yesterday i have the same problem :S [18:52] yeah, same here. it's good stuff [18:52] :) [18:52] The error i get is: Can't set the ipv4 root (Bad address) [18:53] really irritating me :) [18:54] is ist a standard error? [18:54] :) [18:55] what version of the kernel patch do you have? [18:55] and what version of the userspace utilities? [18:55] i don't know :S [18:55] what are the utils? [18:55] :) [18:55] i havent see them :S [18:56] okay daan, what did you do, to get there (where you are now ;) [19:00] well, in the interim i have a quick question...is this (http://vserver.13thfloor.at/Experimental/c17e.html) the best version of the memory limit patch? [19:00] and also, what is the 'mq' patch? [19:01] hahaha [19:01] :) [19:01] ;) [19:01] I only installed two rpm's (lame) :D [19:04] @kestrel ml0.06 is the last released version ... mq is for Mountpoint Quota, which I consider to rename to qh/qa because it adds the Quota Hash Abstraction ... if you want to know what this is, jsut ask ... ;) [19:04] @daan okay, the vserver project consist of a) a kernel aptch and b) some tools ... you probably only installed the tools ... and probably old ones too ... [19:04] i've downloaded kernel-2.4.22ctx-17c.tar.gz now :) [19:05] but i'm scared :S [19:05] my server is runnign in amsterdam [19:05] and i don't want to loose it :) [19:05] ok, I've also worked out how to stack LSM modules more than 2 deep [19:05] ah, okay, so i am running the latest and greatest [19:05] @daan well you should be scared with ctx17c ;) [19:05] that means vserver can be combined with selinux and capability [19:06] :D [19:06] from the name i would hazard a guess that it is using a hash to manage quotas in some way...what is it specifically? [19:06] hehe can i run it on mu box? [19:06] Linux Amendo 2.4.20-8 #1 Thu Mar 13 17:18:24 EST 2003 i686 athlon i386 GNU/Linux [19:06] mu=my :) [19:06] @daan if you want something stable, use c17e/f ... [19:06] but that isn't on your site :) [19:06] of course ... you have to get the kernel sources and some aptches ... [19:07] site is linux-vserver.org ... [19:07] brr ;D [19:07] time to put the site back into the topic ? ;) [19:07] Topic changed on #vserver by riel!~riel@riel.netop.oftc.net: http://www.linux-vserver.org/ || preparing for vserver-1.0.0 release 8-) [19:07] soi have to download patch-2.4.22ctx-17c.gz? [19:08] and then patch the source of kernel 2.4.22 [19:08] ;) [19:08] which kernel do you want to use? [19:08] 2.4.22? [19:08] 2.6 :P [19:08] bu i can't :) [19:08] i have to use 2.4.22 [19:08] :) [19:08] hehe [19:08] or can i use 2.6? [19:08] well talk to master Rik then ... [19:09] if i download linux-2.4.22-17 [19:09] and the patch-2.4.22ctx-17c.gz patch [19:09] should it work then? [19:09] 2.4.22-c17f 11:11am up 22:11, 2 users, load average: 0.42, 0.40, 0.31 [19:10] heh has not crashed yet :P [19:10] well it will work, but you should get http://vserver.13thfloor.at/Stuff/patch-2.4.22-c17f.diff.bz2 [19:10] Daan: 2.6 code isn't ready yet [19:10] nope i know [19:10] and use the 2.4.22 vanilla kernel ... [19:10] heh [19:11] or, if you want to do some testing (but it isn't really less stable) c17h ... [19:11] http://vserver.13thfloor.at/Stuff/c17h/ [19:11] hmmm [19:11] The problem is that my server is in AMsterdam :) [19:11] and i'm somewhere else [19:11] so if it crashes [19:11] :) [19:11] well you could try it on your home box ... [19:11] yeah ;) [19:11] that's better [19:12] can i use a patched kernel to? [19:12] by the way, who said you are not in amsterdam, sitting right beside your server? [19:12] ;) [19:13] if i use kernel-2.4.22ctx-17c.tar.gz [19:13] you can, but it would be better to patch it yourself ... (this way you would learn how to do it ;) [19:13] is it patched? [19:13] yes ;) [19:13] you're right ;) [19:13] and it is not sooo hard anyway ... [19:14] shall I explain how to do it? [19:14] If i'm not bugging you yes :) [19:14] if you got something better to do :) [19:15] shadow (~umka@212.86.233.226) joined #vserver. [19:15] Hi all [19:15] Hi [19:15] :) [19:15] Nick change: Daan -> all [19:15] Nick change: all -> Daan [19:15] :) [19:15] hey [19:16] I assume you know how to download the kernel (linux-2.4.22.tar.bz2) and the patch (patch-2.4.22-c17h.diff.bz2) [19:16] hi alex! [19:16] yeah :) [19:16] great! 8-) [19:16] Hi Herbert [19:17] okay further I assume you know how to install packages (well you told me ;) [19:18] now please make sure you've installed the 'patch' utility ... [19:21] Bertl>you read my mail about multiplexing command in syscall ? [19:21] Hi Alex [19:22] yes, but I have to admit, I didn't understand it ... [19:22] :) [19:22] hehe [19:22] i'm downloading the kernel [19:22] ok [19:22] Bertl> ask :) [19:22] unpacking :) [19:23] patch -p0 < patch*diff right? [19:23] not exactly ... [19:23] ahh ;) [19:23] cd linux-2.4.22 [19:23] patch -p1 --dry-run <../patch-*.diff [19:23] ok [19:24] if that works ... just remove the --dry-run ... [19:24] Muhahah [19:24] -bash: patch: command not found [19:24] forgot :) [19:24] done [19:24] make menuconfig [19:24] ;) [19:24] @alex okay, what do you mean by 'we can`t finish talk about multiplexing in vserver syscall. [19:26] hmm, I'm sorry, but I have to leave in a few minutes ... so maybe we can discuss this later then? [19:27] @daan you should know what to do with the kernel then, right? [19:27] hmm noit exactly :) [19:28] Bertl> some days ago in channel we talk about categoryes and commands in vserver syscall.... [19:28] make menuconfig; make; make dep; make clean; make modules;make modules_install; make install ? [19:28] :) [19:28] well, you install it side by side with your old one, and change your boot config to boot it ... [19:28] i know how to edit grub.conf [19:28] i had to do it with 2.6 rpm to [19:28] ;) [19:28] perfect! [19:29] yes? [19:29] kewl :D [19:29] okay, sorry again alex ... cul8er ... [19:29] Nick change: Bertl -> Bertl_oO [19:30] okey... [19:32] I have to go [19:32] going home :) [19:32] i'm at work now :) [19:32] See you soon again [19:32] i'll be back at 19:00 :) [19:32] Thanks [19:32] :) [19:33] Daan (~daan@62-177-204-162.bbeyond.nl) left irc: Quit: vserver ROulates! :D [19:57] serving (~serving@213.186.189.236) joined #vserver. [20:11] Daan (~Sponsje@d24178.upc-d.chello.nl) joined #vserver. [20:11] Hi :) [20:11] I'm back :) [20:28] JonB (~jon@kg232.kollegiegaarden.dk) left irc: Ping timeout: 483 seconds [20:28] JonB (~jon@kg232.kollegiegaarden.dk) joined #vserver. [20:36] jack (~jack@206.162.172.138) joined #vserver. [21:33] damn [21:33] kernel compiled [21:33] now the server is not comming up again [21:34] my worrest nightmare :S [21:48] matta (matta@tektonic.net) joined #vserver. [21:48] hello [21:50] Hi Matt [21:50] hi alex [22:17] Daan (~Sponsje@d24178.upc-d.chello.nl) left irc: Ping timeout: 480 seconds [22:36] netrose (~john877@cc-ubr03-24.171.20.14.charter-stl.com) joined #vserver. [22:59] mhepp (~mhepp@r72s22p13.home.nbox.cz) joined #vserver. [23:01] mhepp (~mhepp@r72s22p13.home.nbox.cz) left irc: Client Quit [23:09] bye all [23:09] bye Alex [23:09] shadow (~umka@212.86.233.226) left irc: Quit: go to sleep [23:26] say (~say@212.86.243.154) left irc: Read error: Connection reset by peer [23:29] mhepp (~mhepp@r72s22p13.home.nbox.cz) joined #vserver. [23:29] mhepp (~mhepp@r72s22p13.home.nbox.cz) left irc: Remote host closed the connection [23:48] alekibango (~john@b59.brno.mistral.cz) joined #vserver. [00:00] --- Thu Oct 23 2003