[00:16] mhepp (~mhepp@r72s22p13.home.nbox.cz) left irc: Remote host closed the connection [00:16] meeby: other than the vunify script? i use teh bme patcha nd read only bind mounts. [00:40] hhmm [00:40] the problem is, mailgraph needs to read syslog of another vserver [00:40] postfix and amavis log into syslog [00:41] mailgraph analyzes it and makes rrd files [00:41] which are read by CGI scripts from the webserver [00:41] so the mailgraph part should be on the vserver with apache [00:41] but it needs to get the mailserver logs [00:41] Doener (~doener@pD958861F.dip.t-dialin.net) got netsplit. [00:41] Nesh (~dmistry@su-nat.datapipe.net) got netsplit. [00:41] kestrel (athomas@home.swapoff.org) got netsplit. [00:41] or I let mailgraph run on the mail vserver, and share the rrd directory [00:42] Doener (~doener@pD958861F.dip.t-dialin.net) returned to #vserver. [00:42] Nesh (~dmistry@su-nat.datapipe.net) returned to #vserver. [00:42] kestrel (athomas@home.swapoff.org) returned to #vserver. [00:42] and install mailgraph also on the apache vserver [00:42] I think sharing the rrd should be more secure than the logs [00:50] Nesh (~dmistry@su-nat.datapipe.net) left irc: Ping timeout: 492 seconds [00:50] Nesh (~dmistry@su-nat.datapipe.net) joined #vserver. [01:24] tanjix (tanjix@pD904A10D.dip.t-dialin.net) left irc: [01:35] norse (~norse@h118n2fls35o804.telia.com) joined #vserver. [01:36] evening people, just wondering what I might have missed if I get "sendto: operation not permitted" when I try to establish a regular udp connection. using latest stable patch for 2.4.25 and latest stable utils. [01:38] (tcp works fine) [01:40] norse: strace [01:41] 2 sec [01:42] -1 ENOENT looks rather suspicious, heh [01:42] "-1 ESPIPE (Illegal seek)" [01:50] I could be wrong - but you might need CAP_NET_RAW for udp to work correctly [01:55] ben, that was the first I tried mate [01:55] ahh, and no luck i guess! [01:55] I might have fscked the config though, are the S_CAPS seperated by a whitespace? [01:56] Nick change: Bertl_oO -> Bertl [01:56] quoted and spaced iirc [01:56] hi everyone! [01:56] ben, darnit, then it didn't help no [01:56] Bertl will know [01:56] he knows everything ;-) [01:57] ah, the residental guru? :) [01:57] hmm, didn't know that ;) [01:57] the man himself [01:57] "with respect" and other such utterances :) [01:58] Bertl, got my vservers happily failing over with drbd and heartbeat [01:58] Bertl, a short recap, Im having trouble establishing an udp connection. it tells me sendto: operation not permitted (tcp works fine though) [01:58] 1.3.7 or 1.26? [01:59] 1.26 [01:59] google gave me some references, the udp packets get sent to the host and not the vservers localhost but that was in an old version of vserver if I understood it correctly [01:59] hmm, could you try 1.3.7, we changed a little in the networking layer ... [02:00] hum, heh, I'm not sure I'm brave enough to run unstable versions mate, it's for wargames.unix.se. people try all kinds of nasty things on our servers, heh [02:00] or if you prefer, there should be a patch for 1.26 somewhere... [02:00] norse, seems quite stable for me [02:00] ah, nice one. do you know what the patch is called? [02:00] but devel isn't that 'instable' atm, it's going to become 1.4 stable very soon ... [02:00] however.. I won't have any untrusted users [02:01] norse: let me see if I can dig it out ... and probably update it to 2.4.25 ;) [02:01] damn, cheers mate [02:03] norse, don't rule out using 1.3.7, I've had no trouble with it thus far [02:03] I'm a bit paranoid about anything not being called stable in capital, blinking letters, heh [02:04] hmm, wargames.unix.se sounds interesting, please tell me a little about it .... [02:04] hehe - me either, but I took Bertl's recommendation [02:04] well, we're basicly the largest wargaming site on the net, content wise at least [02:04] we've got 13 different wargames if you count the webbased ones and the cryptos. 6 shellbased games with ~10 levels each. [02:06] we try to cover all common and uncommon vulns and some games require rather tricky coding from the players (tricky for some, that is ;) [02:09] hmm, and you use the vservers for what exactly? [02:10] we run one vserver for each wargame [02:10] shellbased wargame, that is [02:12] we used to use uml but with each update we found a new vuln of some type and it really sucks resources when you run half a dozen umls on the same box [02:20] hmm, so basically wargames.unix.se is vserver powered, right? [02:20] indeed, we use it for our dev-vms and all other public services as well (apache, etc) [02:20] or soon will be .. [02:20] it's fully vserver powered [02:20] we just haven't got all the levels working yet [02:20] hmm, the patch is outdated, I'll go and make you a new one ... [02:21] damn, I really appreciate this mate [02:37] Bertl: is there a patch for 2.6.3 and where can I find the GPG signatures for the patches? [02:38] signatures will follow shortly, I have everything I need now to 'automate' that in a secure way ... [02:38] patch for 2.6.3 will be there in an hour or so .. [02:39] ok, thx [02:41] ensc: is there a 'test' tool for the namespace copy/save/restore yet? [02:41] I added a syscall for that ... but could not test it yet ... [02:42] ad kill and race, I have a brilliant idear how to avoid this and add functionality to vserver in one simple step ... [02:42] would like to discuss it with you if you have some time ... [02:43] Bertl, I don't want to sound ingrateful but would it be cool if I hit the sack and collected the patch tomorrow (or whenever you finish it)? my girlfriend is going to do unspeakable things to me if I don't join her pretty soon, heh [02:43] norse: kernel patch is currently under test ... [02:43] ah, then I'll hang around for a while more :) [02:43] recent alpha tools are creating the namespace; but I do not have anything which enters namespaces [02:44] that is the namespace I did, including a VX_INFO_NAMESPACE flag ... [02:45] with ' vserver ... enter' you should have old functionality [02:46] no tool yet, but syscall ... [02:47] #define VCMD_enter_namespace VC_CMD(PROCALT, 1, 0) [02:47] #define VC_CAT_PROCALT 10 [02:47] the idea was, this has the context id in the id field ... [02:48] and replaces the namespace of the current task with that namespace ... [02:54] norse: okay, with no special guarantees, but it passed my minimal tests: http://vserver.13thfloor.at/Experimental/delta-2.4.25-vs1.26-net.diff [02:54] kestrel_ (~athomas@o2rosock0a.optus.net.au) joined #vserver. [02:54] Nick change: kestrel_ -> kestrelw [02:54] hi [02:54] cheers a bundle mate, I'm going to test it tomorrow. should I report any bugs we encounter or should I simply go to the dev-series? [02:55] let me know if something fails/doesn't work as expected ... I should be around tomorrow ... [02:55] and if you like vserver, please let the folks know that you use it ;) [02:55] excellent, again, thank you mate. [02:56] aye, I was going to ask that earlier when you said vserver-powered. is there a banner/button you'd like us to use or should we try to make one ourselves? [02:56] well there is none yet, but if you make something up, it would be great ;) [02:56] if not a textual note would be great too ... [02:57] I'll get our artist on it tomorrow, I can't guarantee how good it will look though.. his sense of form and colors is a bit.. odd.. [02:58] I'll be back tomorrow to report no matter if it goes well or not. cheers. [02:59] norse (~norse@h118n2fls35o804.telia.com) left irc: Quit: wargames.unix.se [03:28] netrose (john877@SP2-24.207.225.23.charter-stl.com) left irc: Read error: Connection reset by peer [03:28] netrose (john877@SP2-24.207.225.23.charter-stl.com) joined #vserver. [03:50] ExpiryJames (~james@h24-71-63-164.ok.shawcable.net) left irc: Quit: Leaving [04:02] hm, making a banner? how big should it be? [04:02] got graphicians in the team here [04:06] <_shur1> 160 x 64 [04:06] <_shur1> http://www.freebsd.org/gifs/powerlogo.gif [04:06] <_shur1> like this [04:07] <_shur1> is a nice size for a web page banner [04:10] Nick change: cdub -> cgone [04:17] click: about this size would be nice, maybe some smaller versions too http://bwalker.home.solnet.ch/images/PoweredByOPENSTEP.gif [04:17] (just my opinion) [04:18] Cmaj (~cmaj@3ffe:bc0:5f3:1:9999:911:c3d3:5431) left irc: Ping timeout: 483 seconds [04:19] _shur1 (~shushushu@vserver.electronicbox.net) left irc: Ping timeout: 483 seconds [05:21] shur1: did you get mrtg working? [05:21] serving (~serving@213.186.188.205) left irc: Read error: Connection reset by peer [05:21] damn. [05:22] hmm, whom? [05:23] talon: and why? [05:43] _shur1 (~shushushu@3ffe:bc0:1cf:1:2:3:4:9) joined #vserver. [06:10] Cmaj (~cmaj@3ffe:bc0:5f3:1:9999:911:c3d3:5431) joined #vserver. [06:10] hi Cmaj! [06:17] Bertl: heh just because i hate it when i type somthing and i dont notice someone has left. [06:18] ah okay ... obviously missed that ... [06:18] btw... shur1 is back ;) [06:38] <_shur1> :P [06:39] <_shur1> yes i am [06:39] <_shur1> dam ipv6 tunnel going alway down... [06:39] are you? [06:39] <_shur1> am i ?:P [06:43] ben (~ben@bengrimm-host225.dsl.visi.com) left irc: Ping timeout: 501 seconds [06:44] shuri, did you do some 2.6.x testing? [06:47] ouch... my head is telling me not to fall asleep in front of the keyboard ;) good night [06:47] night Doener! [06:50] Topic changed on #vserver by Bertl!~herbert@MAIL.13thfloor.at: http://linux-vserver.org/ || latest stable 1.26, devel 1.3.7, exp 0.08 [06:54] okay, have a good night everyone, cu all 2morrow! [06:55] Nick change: Bertl -> Bertl_zZ [06:55] aahha [06:55] :) weell good night [06:55] yup was ipv6 tunnel [07:18] serving (~serving@213.186.188.205) joined #vserver. [11:13] kramer (~kramer@80.86.100.172) joined #vserver. [13:01] mhepp (~mhepp@r72s22p13.home.nbox.cz) joined #vserver. [14:59] IlyaM123 (~ilya@nat.R1.bsim.ru) joined #vserver. [15:13] ben (~ben@bengrimm-host225.dsl.visi.com) joined #vserver. [15:45] IlyaM123 (~ilya@nat.R1.bsim.ru) left irc: Quit: Client Exiting [16:52] rs (rs@ice.aspic.com) joined #vserver. [16:52] hi [16:55] hi rs [17:00] Doener_zZz (~doener@pD9E12A72.dip.t-dialin.net) joined #vserver. [17:04] Nick change: Doener_zZz -> Doener_ [17:08] Doener (~doener@pD958861F.dip.t-dialin.net) left irc: Ping timeout: 492 seconds [17:40] Doener_ (~doener@pD9E12A72.dip.t-dialin.net) left irc: Quit: Leaving [18:32] is there a way to change routes under a vlan ? [18:32] s/vlan/vserver/ sorry [18:33] I would like to have a different default route for vserver than for the hosting machine [18:34] rs: it's possible to do that with iproute2 (if the vserver has a different IP than the hosting machine), but it's not possible to change the routing table from inside the vserver. [18:34] it's ok for me, so how do you do that ? [18:36] rs: http://lartc.org/howto/lartc.rpdb.html#LARTC.RPDB.SIMPLE [18:37] thx Zoiah [18:37] Np. [18:39] stone (foobar@9593B59FDFCFE9EF220ACDF5A02394B4.lnx.nu) left irc: Ping timeout: 501 seconds [18:41] Doener (~doener@pD9E12A72.dip.t-dialin.net) joined #vserver. [19:15] Bertl_zZ_ (~herbert@MAIL.13thfloor.at) joined #vserver. [19:15] Bertl_zZ (~herbert@MAIL.13thfloor.at) left irc: Read error: Connection reset by peer [19:28] ben (~ben@bengrimm-host225.dsl.visi.com) left irc: Read error: Connection reset by peer [19:35] Nick change: cgone -> cdub [19:42] Mcleod|drunkies (~altec@202.9.60.199) joined #vserver. [19:42] is anyone in here awake/alive? [19:42] Nick change: Mcleod|drunkies -> Mcleod [19:43] Hi [19:43] yes/yes [19:43] and not even drunk :) [19:43] heh [19:43] I'm having minor problems getting vserver going.. [19:43] little early here for that [19:43] i've got the kernel, just having issues creating a working instance [19:44] any chances you guys that are awake could help? [19:44] currently doing another 'vserver vps01 build' and waiting... i'll have new error messages shortly i'm sure [19:45] ./vserver vps01 start [19:45] Starting the virtual server vps01 [19:45] Server vps01 is not running [19:45] Can't set the ipv4 root (Bad address) [19:45] vps01.conf - tried both IPROOT="eth0:69.93.207.112" and IPROOT="69.93.207.112" [19:46] any ideas would be extremely greatful [19:46] been on this a few days now, tried one too many different things [19:48] guess not? :( [19:48] <_shur1> IPROOT="69.93.207.112" [19:48] <_shur1> try this alone [19:50] what do you mean alone? I've tried either of those two options with no success (not both at the same time)... [19:51] <_shur1> put IPROOT="69.93.207.112" not IPROOT="eth0:69.93.207.112" [19:52] <_shur1> IPROOTDEV=eth0 [19:52] yes, I have done that, I followed the idea of putting eth0: because that was in the config file comments [19:52] so i've tried both combinations without success [19:54] <_shur1> try [19:54] <_shur1> IPROOT="0.0.0.0" [19:58] still same error unfortunately [20:00] even --nodev gives the same error, argh [20:01] <_shur1> humm [20:01] Mcleod: what tools are you using? [20:02] and which kernel patch? [20:02] 0.29 tools [20:03] Linux sanitytech02 2.4.18-freevps-1.1-0 [20:03] upgrading to a different patch was my next step [20:04] hmm... freevps is something else, i don't think the vserver-tools will work with that, neither will util-vserver [20:05] <_shur1> hehe [20:06] ah... okay, it actually uses the vserver tools, but version 0.22 ... [20:06] yeah i started with freevps [20:06] and the included build script just does... nothing [20:07] if you wanna stick with freevps i suggest you follow their installation intructions and stick with vserver-tools 0.22 also ;) [20:07] the tools are quite version-dependend [20:07] so i'm trying to go backwards [20:07] or forwards even.. [20:08] i liekd the idea of using their supplied kernel because it had a better chance of working for me... [20:09] i've had many problems compiling a patched kernel [20:10] hmm... what kind of problems? [20:18] mm, i seem to be progressing (finally) [20:19] ok, good luck :) i have to go now [20:19] Doener (~doener@pD9E12A72.dip.t-dialin.net) left irc: Quit: Leaving [20:25] Nick change: Bertl_zZ_ -> Bertl [20:26] morning everyone! [20:26] norse (~norse@h118n2fls35o804.telia.com) joined #vserver. [20:26] hi norse! [20:26] evening mate [20:27] how is/was the testing? [20:27] just wanted to report that we have tested the patch and it looks very solid [20:27] perfect, that's the way it should be ... [20:28] indeed, we're very thankful that you helped us (and that quickly as well) [20:28] was my pleasure ... [20:28] we have a.. err, button, I guess you could call it. I'll have our artist clean it up in the future but it works. http://wargames.unix.se/index.php?cmd=1&part=34 [20:28] if you like it you are free to take it and offer it to other people that desire a powered-by-image [20:29] hey great! [20:29] may I add/make a comment? [20:29] of course mate [20:29] ooh, here's a question, how do I delete an old vserver instance, specifically the directories it's created such as /dev and /proc [20:30] norse: I like that design, and for me it would be perfect, if there was a LINUX written 90° turned on the left side, beside the V [20:30] hrm, nice one, I'll tell him to get right on it [20:31] but this is really good, and I would like to thank you and him for that design! [20:32] Mcleod: well, first unmount, then remove with rm -rf [20:32] Bertl: I get a load of operation not permitted errors [20:32] okay, let's see, you are sure the vserver is stopped? [20:32] indeed I am [20:33] a vserver was never started on it [20:33] hmm, even vserver enter does something like starting it ;) [20:33] is it a feature ? [20:33] no, its a broken setup [20:33] i'm just trying to clear it [20:34] rs: well, it's somewhat necessary, in future, it will tell you that the vserver is stopped ... or something like this ;) [20:34] in my mind, if a try to enter into an unstarted vserver, it shouldn't start it but give me an error [20:34] Mcleod: okay, so you are sure it is stopped, then let's see about the mounts [20:34] Bertl: ok, it should be better [20:35] do a 'grep /vservers/ /proc/mounts' on the host [20:38] I just started my first vserver, and I can't figure out why it tell me that the /proc isn't mounted [20:38] devel or exp branch? [20:38] devel [20:38] the last patch with 25-rc1 kernel [20:39] because you didn't configure the proc entries with vproc/setattr [20:39] and the vserver tools found under debian [20:39] ok [20:43] Bertl, http://wargames.unix.se/index.php?cmd=1&part=34 | better? [20:44] perfect! [20:44] vat (vat@pD9E37292.dip0.t-ipconnect.de) joined #vserver. [20:45] Bertl, there? [20:45] ext2fs headers were not found, or they are not usable. This can have [20:45] the following reasons: [20:45] humm. [20:45] strange util-vserver-0.28 ;) [20:45] excelent [20:45] vat: try util-vserver-0.29 [20:46] norse: and we are allowed ;) to resuse and adapt the logo, right? [20:46] s/resuse/reuse/ [20:46] Bertl, announce it on the releases page :> [20:47] Bertl, do whatever you want with it but we would appreciate it if you linked to us from whatever page you decide to use it for (other people using it to link to your profect naturally doesn't have to link to us) [20:47] bzcat: util-vserver-0.29.tar.bz2 is not a bzip2 file. [20:48] s/profect/project/ [20:48] has anyone successfully compiled a 2.4 kernel with the patch and FS_EXT3 enabled? [20:48] norse: we have a happy vserver users page, and a commercial users page, what would you prefer? [20:48] well, we're both actually [20:48] happy commercial user, heh [20:48] Bertl, do you have a working bz2? ;) [20:49] norse: okay, no problem there ... I'll add you to both ... or even better add an entry yourself, you should know better than I what you do ... [20:49] i hope to be a happy commercial user, heh [20:49] Mcleod: what is the problem? [20:50] Bertl, it's not really what I meant though mate, I just meant a single sentance somewhere that states that the button was made by wus. I don't want a huge link in blinking colors or anything :) [20:50] Bertl, ehm. does 0.29 does not have any ./configure? [20:51] How do I unmount vservers? [20:51] norse: well I would say you almost get both, add yourself to the http://www.linux-vserver.org/index.php?page=VServer+Users and if you think it's appropriate for http://www.linux-vserver.org/index.php?page=VServer+Hosting then there too ... you'll also get an entry in the Hall of Fame (or better your designer ;) [20:51] Bertl, hm. and the 0.29 makefile just brings syntax errors [20:52] nevermind,a nswered my own question [20:52] vat: ask ensc, (enrico) he is around ... [20:52] i'm beginnign to learn! :) [20:52] if I get inspired i might write some documentation - i feel there's a bit of a lack of good doc's.. [20:52] Mcleod: you didn't execute the command I suggested, right? [20:52] ensc, call me! :) [20:53] Mcleod: 18:36 < Bertl> do a 'grep /vservers/ /proc/mounts' on the host [20:53] Bertl: i'm back there, i'm running around in circles doing one too many things atm [20:53] vat: ? [20:53] Mcleod: stop doing many things we do it systematically now [20:53] Bertl: but cheers, that helped [20:53] 0.29 has a ./configure [20:53] ensc, give me a dl link please. [20:53] does not find it :( [20:54] http://www-user.tu-chemnitz.de/~ensc/util-vserver/ [20:54] vserver yamaha build [20:54] http://savannah.nongnu.org/projects/util-vserver/ [20:54] ensc, even.. it birngs e2fsprogs errors [20:54] Directory /vserver/yamaha has been populated [20:54] Action: Mcleod sits back and says a prayer [20:54] thanks enrico for adding the link to the main site ... [20:54] vat: do you have installed e2fsprogs-devel and/or good kernel headers? [20:54] Mcleod: okay the yamaha server is the one you want to stop? [20:55] and remove? [20:55] ensc, current kernel headers. [20:55] bzcat: util-vserver-0.29.tar.bz2 is not a bzip2 file. [20:55] hmpf. [20:55] Bertl: oh, no i removed the other ones, starting fresh now with one called 'yamaha' [20:55] ensc, ahhhh. [20:55] ensc, it's e2fslibs-dev on debian stable.. [20:55] not e2fsprogs-dev. [20:55] then it works. [20:56] vat: is the signature matching? [20:56] ensc, ack. [20:56] md5sum should be 2e8e2df059a5ad170d1f70d82f2d00b9 [20:57] humm. [20:57] ebbcdfaf99d3a42b1c37cf3fb57e5881 util-vserver-0.29.tar.bz2 [20:57] no ;-) [20:57] downloaded from http://www-user.tu-chemnitz.de/~ensc/util-vserver/util-vserver-0.29.tar.bz2. [20:57] Bertl, does my addition to vserver+users look alright? don't want to add pure advertisement to your site. [20:57] I tried to point out why we're soo happy about vserver [20:57] vat: got an old, broken version through your proxy? [20:57] ensc, please add the right e2fsprogs package debian name in the configure ,). [20:57] ensc, not using a proxy. [20:58] BTW, is there a debian package of vproc ? [20:58] somewhere [20:58] who needs a deb for *one* file? ;) [20:58] me [20:58] rs: not that I know of? [20:58] I need package for all files installed on a machine [20:58] rs: create one. [20:58] why not [20:59] rs: but enricos tools should do the same, although with a slightly different interface ... [20:59] does anybody have the gentoo/suse/mandrake name for the e2fsprogs-headers? [20:59] mandrake yes: [20:59] libext2fs2-devel-1.34-1mdk [20:59] libext2fs2-1.34-1mdk [20:59] Bertl: they are not working with 2.6 patches; iattr is not implemented completely there [20:59] we'll fix that today, right? [21:00] ensc, thanks. [21:00] crap... [21:00] during vserver yamaha start [21:00] yes? [21:00] option --attach without parametres [21:00] sounds interesting ... [21:01] haha, thanks! [21:02] didn't even know we have an option --attach? [21:02] if I could get the 2.4 kernel to compile with the patch AND ext3 than i'd try somethign other than 1.1 [21:03] i got that error after [21:03] okay, can we address that first? [21:03] "attach virtual interface 13451234" [21:03] insert ip here ^ [21:03] what is the issue with 2.4 and ext3 and (which?) patch? [21:04] and what is 1.1? [21:04] it's not the patch as far as I can tell, unless the patch touches the fs_ext3 stuff [21:04] okay, what _IS_ 'the patch'? [21:05] I have a million patches here, take any? [21:05] *eating corny with chocolade* [21:06] kernel 2.4.24 / 2.4.25 won't compile with ext3, god knows why [21:06] i've searched for information on the error about balloc.c with little result [21:06] hrm, it's running here with ext3 ;) [21:06] here too. [21:06] than i'm probably missing something [21:06] and it's better running with xfs than anytime ;) [21:06] especially since we have xfs support, right? [21:07] well. had 2.4.23-xfs last weeks.. [21:07] was also good. [21:07] tryin to bompile 2.4.25 [21:07] without any patches [21:07] but now the performance is much better. [21:07] and still get errors on balloc.c within fs/ext3 [21:07] Mcleod, which errors? [21:07] Mcleod: could you provide your .config somewhere [21:08] i'm a make oldconfig ; make menuconfig type of guy :P [21:08] Mcleod, maybe *this* is the problem ;). [21:08] rs (rs@ice.aspic.com) left irc: Quit: back home [21:09] ooh, comedian :) [21:09] hrhr. [21:09] hm, detected some errors from 2.4.23 to 2.4.24 with make oldconfig, esp. with NIC-supportcards [21:11] ok [21:11] rm -f .config ; make menuconfig [21:11] and i'll try again [21:12] hmm, and that should help in what way? [21:12] just starting fresh [21:13] since you suggested that make oldconfig would create problems [21:13] hmm, you should start reading the name tags on the left? side [21:14] god damn [21:14] it compiled [21:14] hihi. [21:16] Bertl, uhm. [21:16] thought vs1.26 is secure? [21:16] http://packetstormsecurity.org/0402-exploits/vserver_chroot.txt [21:17] works also with 2.4.25-vs1.26 [21:17] well, probably you did something wrong ... [21:18] we had about 20 reports, it is still working and about 20 follow ups, sorry I was wrong, didn't set the flags/perms right etc ... [21:18] uh. [21:19] so let me count this as 21, and we'll try to find out, what you didn't do yet ;) [21:19] so. [21:19] /vservers got 0000 [21:19] what else todo? ;) [21:19] chattr +t /vservers [21:20] or if you have devel release, use the setattr --barrier on that one [21:20] works :-(. [21:20] 21 [21:21] wanted to patch alle hostsystems today...okay, then waiting till it's fixxed [21:21] ;) [21:21] norse (~norse@h118n2fls35o804.telia.com) left #vserver (wargames.unix.se). [21:22] -e [21:22] vat: the exploit doesn't work if you setup your system properly ... [21:22] it *IS* set properly. [21:22] definitely. [21:22] okay, first, patch/kernel version [21:22] i can't do anything than 000/+t.. [21:23] 2.4.25-vs.1.2.6 done on one system. [21:23] I hope 2.4.25-vs1.26 [21:23] yeah ;) [21:23] a dot too much. [21:23] okay, now show me the output of: [21:23] ls -lad /vservers / [21:23] lsattr -d /vservers [21:24] (I assume that your vservers are in /vservers) [21:24] -> /vservers is a symlink to /var/lib/vservers [21:24] okay, then it's ls -lad /var/lib/vservers /var/lib [21:24] and lsattr -d /var/lib/vservers [21:25] ---------------t- /var/lib/vservers/ [21:25] d--------- 4 root root 4096 Feb 19 18:59 /var/lib/vservers/ [21:26] arghs. now it works. [21:27] as I said '21' [21:27] needed to restart the vserver, strange. [21:32] number 23 will work. . [21:32] hehe [21:35] *warning of flood* [21:35] open.c: In function `ctx_modify_statfs': [21:35] open.c:51: warning: implicit declaration of function `dprintk' [21:35] open.c:63: `NOILIMIT' undeclared (first use in this function) [21:35] open.c:63: (Each undeclared identifier is reported only once [21:35] open.c:63: for each function it appears in.) [21:35] open.c:76: `NOBLIMIT' undeclared (first use in this function) [21:35] make[2]: *** [open.o] Error 1 [21:35] (while attempting to compile linux 2.4.25 with vs1.26 patch [21:36] okay, would it now be possible to get the .config file, please? [21:37] http://www.sanitytechnology.com/.config [21:38] thank you very much .... [21:40] tanjix (tanjix@pD9049D0C.dip.t-dialin.net) joined #vserver. [21:40] hi together [21:40] hi tanjix! [21:40] bertl, i get a a segmentation fault when running newvserver (with the graphical interface) [21:40] sounds interesting ... [21:41] but it had worked some days before :) [21:42] what did you change? [21:55] Mcleod: kernel compiles here without any issues ... (with your .config) ... [21:55] hrm [21:55] should I upload it somewhere? [21:55] oh i applied the quota patch too [21:56] (sorry didn't mention that) [21:56] q0.13? [21:56] yup [21:56] 124 -rw-r--r-- 1 root root 122598 Feb 12 18:14 patch-2.4.25-rc2-vs1.26-q0.13.diff [21:56] 156 -rw-r--r-- 1 root root 154599 Feb 18 08:47 patch-2.4.25-vs1.26.diff [21:57] let me testcompile that combo ... [21:59] i'll try without [22:05] I keep getting "Can't set the ipv4 root (Bad address)" when trying to start vserver but i'll assume thats a combination of up to date utils and out of date kernel ftm.. [22:05] so i'm hoping to get this kernel compiled with vs1.26 [22:06] you did try with what patches now? [22:07] Mcleod, got that problem also [22:07] you have to turn on quota support [22:08] then it will work [22:08] hmm, your config has CONFIG_INOXID_NONE=y, which disables the context tagging entirely, I agree that this should be possible too, but it doesn't make much sense ... [22:08] dammit, that makes sense [22:08] that is why the q0.13 reports the errors [22:08] balloc.c: In function `ext2_new_block': [22:08] balloc.c:513: warning: implicit declaration of function `dlimit_block_avail' [22:09] ah ha! [22:10] on a strange side note [22:10] not sure about the open.c error yet, recompiling now ... [22:10] just in case you'd have an idea [22:10] yeah? [22:10] rpm --erase freevps-blah.rpm [22:10] says its not installed but it is, same with a bunch of others [22:10] any alternatives to removing rpm installed packages? [22:10] do rpm -e freevps-blah [22:11] yeah same error, says "freevps-blah not installed" [22:11] without the ixxx and .rpm [22:11] ahh [22:11] cheers [22:12] i feel so clueless today [22:12] how is freevps atm? [22:12] it is 5 a.m. tho, and I haven't quit on this yet [22:12] freevps is old... [22:12] i only went for it because it had a precompiled kernel [22:12] I see ;) [22:13] "must have redhat 7.3" [22:13] and "must use outdated this and that" [22:13] interesting, I thought Alexey did update it somehow ... [22:14] okay, quota support is required too, this is a sideeffect of the disk limit patch ... [22:15] yep it makes sense [22:15] just hadn't crossed my mind [22:15] nevertheless that was a good input, and I'll fix that ... [22:15] just didn't test with quota disabled for now ... [22:15] "H-Sphere VPS requires a separate box with RedHat 7.3. Other versions and operating systems are not supported. " [22:16] darn it.. [22:16] open.c: In function `chown_common': [22:16] open.c:650: `MAX_UID' undeclared (first use in this function) [22:16] open.c:650: (Each undeclared identifier is reported only once [22:16] open.c:650: for each function it appears in.) [22:16] open.c:650: `MAX_GID' undeclared (first use in this function) [22:16] make[2]: *** [open.o] Error 1 [22:16] I'm not that far yet ... [22:17] :-) [22:17] removed the quota support ftm [22:17] the q0.18 patcht hat is [22:18] 0.13 even [22:18] but I see no big problem in fixing both issues ... you said it's early in the morning for you? [22:18] the sun is shortly goign to come up [22:18] i'm in brisbane australia :) [22:18] okay, I would suggest going to bed (or work, whatever your plans are ;) [22:18] that's always a good suggestion [22:18] i have this inability to give up [22:19] and tomorrow there will be a fixe patch, where you can disable quota with the quota patches ;) [22:19] can you explain what the vs quota support actually entails [22:19] does it allow vservers to put quotas on users within the vserver [22:19] or does it allow me to set quotas on a vserver? [22:20] well, you can have per vserver disk quota (quotacheck/repquota), and per vserver disk limits (df), with that [22:20] on a shared partition, (means more than one vserver on a partition) [22:21] you can get quota and some kind of disk limits without that patch, if you put each vserver on a separate partition [22:21] *nod* [22:21] so the answer to your question is, yes and yes ;) [22:21] would something like 'df' inside a vserver say the total space on the disk or in the quota? :) [22:22] the total space of the disk limit, (that what you probably call vserver quota) [22:22] compile seems to be chugging along fine without the quota patch [22:22] it also works with the quota patch, if you turn quota on and use a tagging ... [22:22] you haven't gotten up to the open.c problem yet huh? [22:22] yes I have ... [22:23] saw the same error? [22:23] start make menuconfig and enable the following things: [22:23] Quota support (CONFIG_QUOTA) [N/y/?] (NEW) y [22:23] VFS v0 quota format support (CONFIG_QFMT_V2) [N/y/m/?] (NEW) y [22:23] so many make clean ; make's ... ack! [22:23] Persistent Context ID for files (Disabled, UID32/GID16, UID24/GID24, UID32/GID32) [UID24/GID24] [22:23] defined CONFIG_INOXID_GID24 [22:23] you do not need a make clean, if you change the config [22:24] Action: talon feels kind of bad for not releasing the howto yet.. been kind of busy. [22:24] yep yep [22:24] wwhere's that persistent context id bit [22:25] http://vserver.13thfloor.at/Stuff/Mcleod.config [22:25] this is your config with the necessary bits enabled [22:25] how nice of you :) thanks [22:26] it should be under filesystems right above quota support. [22:26] you'll still get the following message: [22:26] /usr/src/RELEASE/STABLE/linux-2.4.25-vs1.26-q0.13-P1/include/linux/quotaops.h:59:1: warning: "dprintk" redefined [22:26] but that should not bother you ... [22:29] Are you aware of any particular reason why I would see that bad address problem? [22:30] http://vserver.13thfloor.at/Stuff/testme.sh [22:30] try that one on the host, and let me know what it says [22:30] oh here we go [22:30] eth0:yama Link encap:Ethernet HWaddr 00:0D:61:B2:48:50 [22:30] inet addr:69.93.207.118 Bcast:69.93.65.119 Mask:255.255.255.248 [22:30] UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 [22:30] Interrupt:11 Base address:0xe000 [22:30] i feel the bcast and mask i swrong [22:30] compared to say [22:30] eth0:0 Link encap:Ethernet HWaddr 00:0D:61:B2:48:50 [22:30] inet addr:69.93.65.115 Bcast:69.255.255.255 Mask:255.0.0.0 [22:30] UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 [22:30] Interrupt:11 Base address:0xe000 [22:30] netrose (john877@SP2-24.207.225.23.charter-stl.com) left irc: Read error: Connection reset by peer [22:33] so if I set them in the config, with any luck it'll work [22:33] Mcleod: it would be really helpful, if you would do any of that stuff I suggest ;) [22:34] Bertl: which suggestion? I think i've done everything you've said so far? [22:34] basically you do nothing of what I suggest, but that is your problem, not mine ... [22:34] 20:31 < Bertl> http://vserver.13thfloor.at/Stuff/testme.sh [22:34] 20:31 < Bertl> try that one on the host, and let me know what it says [22:35] hey one thing at a time [22:35] :) [22:35] kernel just compiled so that's a step in the right direciton [22:35] thank you very much for your patients and help on that [22:35] np [22:35] Linux-VServer Test [V0.06] (C) 2003-2004 H.Poetzl [22:35] chcontext is working. [22:35] Can't set the ipv4 root (Bad address) [22:35] chbind failed! [22:35] Linux 2.4.18-freevps-1.1-0 i686/chcontext 0.28/chbind 0.28 [E] [22:35] --- [22:36] okay, you are using a freevps kernel, this requires freevps tools ... [22:36] ok well that's about to change [22:36] everythings vs1.26 and vserver-0.29 and util-vserver-0.28 [22:37] just not the kernel (yet) [22:37] vserver-0.29 and util-vserver-0.29 are different branches of the same tools, most likely they will colide somehow, somewhere ... [22:37] all things considered, providing this kernel works i'll know if all is good within 10 minutse [22:38] ok, i'll make uninstall one of them... [22:38] util-vserver is maintained, vserver currently is broken ... [22:39] mm [22:39] so I#d suggest to upgrate to util-vserver-0.29 and uninstall vserver-0.29 [22:40] ok, one thing before i go for the reboot [22:40] yup? [22:40] this is my grub.conf... [22:40] default=0 [22:40] timeout=10 [22:40] splashimage=(hd0,0)/grub/splash.xpm.gz [22:40] title Red Hat Linux (2.4.25-vs1.26) [22:40] root (hd0,0) [22:40] kernel /vmlinuz-2.4.25-vs1.26 ro root=/dev/hda3 [22:40] title Red Hat Linux (2.4.18-3) [22:40] root (hd0,0) [22:40] kernel /vmlinuz-2.4.18-3 ro root=/dev/hda3 [22:40] initrd /initrd-2.4.18-3.img [22:40] --- [22:40] kramer (~kramer@80.86.100.172) left irc: Remote host closed the connection [22:40] is the initrd line neccessary? just don't have a good understanding what that's about and the new kernel doesn't have that.. [22:41] depends on the config, initrd is the initial ramdisk, it is required if your hardware needs a special setup or a special driver compiled as module [22:41] in your case, you have modules enabled, but no modules selected, IIRC [22:42] so the initial ram disk isn't required here ... but you should always be able to create one with make_initrd (or whatever RH uses) [22:42] ok, so I shouldn't worry and should be safe to reboot? :) [22:43] with grub, you can always modify the boot commands on the grub prompt ... [22:43] Nick change: cdub -> cgone [22:44] the box is in texas so i don't really have second chances from here [22:44] :) [22:44] then I would suggest to do a one time boot anyway ... or use a serial console to that box .. [22:46] how do you do a one time boot? [22:46] i'm learning alot today :) [22:47] theplanet tends to be fine with being able to get console and selecting a kernel if one fails [22:47] tanjix (tanjix@pD9049D0C.dip.t-dialin.net) left irc: [22:47] but a one time boot sounds like a better approach :) [22:47] it largely depends on the grub version ... [22:47] no problems [22:47] i'll risk it [22:47] this box isn't in production anyways.. [22:51] savedefault --default=X --once [22:51] seems to work on most grubs ... as I do not know your grub version, ... [22:54] thanks for your help [22:54] the box hasn't come up so something went wrong [22:54] oh well [22:54] good time to give up for the day i guess [23:02] JonB (~NoSuchUse@kg203.kollegiegaarden.dk) joined #vserver. [23:06] hi Jon! [23:07] Mcleod: hmm, probably, have a good night, and expect a patch tomorrow ... [23:08] Bertl: evening [23:20] vat (vat@pD9E37292.dip0.t-ipconnect.de) left irc: Quit: Leaving [23:21] JonB: any news on the serial console front ;) [23:22] Action: JonB stares at his feet [23:23] lol [23:24] Bertl: if you guide me through it [23:25] do not even know for what strange method you decided to go? [23:25] Bertl: ssh login at my server [23:25] in a vserver [23:26] chroot or something [23:26] hmm, okay, that should be pretty easy then ... [23:26] you have minicom installed? [23:26] if not install it, and configure it (I'll help there) [23:27] to test it, I'll setup the serial line on the other hand, you should then be able to logon via serial line ... [23:27] start your tests in a vserver but as root for now [23:28] installed [23:28] i suppose i need to create a ttyS0123 ?' [23:29] if you do not use devfs and it isn't there yet, yes [23:29] starting minicom [23:31] then what ? [23:31] sec [23:32] okay, now press CTRL-A-Z [23:34] okay, simpler ... [23:34] copy that into your /etc [23:34] # cat /etc/minirc.LINE [23:34] # Machine-generated file - use "minicom -s" to change parameters. [23:34] pu baudrate 115200 [23:34] pu minit ^M [23:34] pu mreset [23:34] pu mdialpre [23:34] pu mdialpre2 [23:34] pu mdialpre3 [23:34] pu mdialsuf3 [23:34] pu mhangup ^M [23:35] no such file [23:35] then start the minicom with 'minicom LINE' [23:36] JonB: you have to create the /etc/minirc.LINE [23:36] tarting it [23:37] okay, if there isn't a status line at the bottom, make sure you have your terminal at 25 lines or more [23:38] you should see something like [23:38] CTRL-A Z for help |115200 8N1 | NOR | Minicom 2.00.0 | VT102 | Online 00:02 [23:38] there is, it is offline [23:38] that means that your serial cable isn't doing handshake or is broken ... [23:38] norse (~norse@h118n2fls35o804.telia.com) joined #vserver. [23:38] or connected to the wrong port, we'll see that in a minute ... [23:39] *cough* why hello there, back with yet another question, heh [23:39] JonB: just press enter for now ... [23:39] norse: yes? [23:40] it must be hell running a project like this and getting fools coming in begging for help all the time, no matter, here goes. I use debian, when I installed a package I got a neat stand alone "newvserver" script, however I cannot find it in any of the tarballs. [23:41] the only one I can find seem to be written for linuxconf which I don't use. is the version I got from apt a very in-official one? [23:41] nope, it seems to be a debian newvserver script, which is somewhat maintained somewhere somehow ... [23:41] have a look at the mailing list archives, and on the linux-vserver.org page ... [23:43] I'm digging through linux-vserver.org right now [23:43] google slapped me but only with older versions of it. just wanted to check that I hadn't missed something in the official tarballs. [23:43] > On Tue, 17 Feb 2004, Thomas Gelf wrote: [23:44] we have done many changes to debian-newvserver, adding static [23:44] context ids, per context disk limits, a little fix regarding [23:44] network configuration to match our "bridged-dummy"-solution [23:44] and so on. at the moment the code is very strictly bound to our [23:44] situation here - I'll post it, if it has become more configurable. [23:44] so that is for sure somebody who knows where to find it ;) [23:45] Subject: Re: [Vserver] debian diffs for vserver 0.29 tools anyone? [23:45] Nick change: cgone -> cdub [23:45] it won't become a part of the mainstream distribution I guess? [23:46] well, it might, why not, but you have to ask enrico about that ... [23:46] (ensc) [23:46] it might not even be required anymore with the newer tools [23:48] Bertl: i cant get it to work no matter which ttyS i use [23:48] okay, where is the cable from, did you build it yourself? [23:49] the cable is 2 connectors with 9 pins [23:50] and a blue "patch" kable [23:50] the one you get with switches and routers [23:50] hmm, so it's probably straight through, and not a nullmodem cable ... [23:51] http://vserver.13thfloor.at/Null-Modem/ [23:59] is a fastlynx a null-modem ? [23:59] the error message "Can't set the ipv4 root (Bad address)" is related to the rebootmanager, right? [23:59] JonB: what is a fastlynx? [00:00] --- Fri Feb 20 2004