[Users] OpenVZ and Gentoo (partly solved)
Wilhelm Meier
meier at informatik.fh-kl.de
Thu Jan 5 14:09:52 EST 2006
Am Donnerstag, 5. Januar 2006 17:31 schrieb Kirill Korotaev:
> >>found it!
> >>you need to start VPS and then do bind mount, since vzctl redo mounts on
> >>VPS start, so my 1st proposal for you was wrong. sorry :)
> >
> > no problem. It tried it already, and now I get "permissin denied" if I
> > try to access the directory from inside the VPS.
>
> huh... what file permisions do you have in /usr/portage?
> please, note, that UIDs can be different in VPS and host system.
> Also please check cat /proc/sys/fs/ve-area-access-check
> if it is non-zero value, then echo 0 to it.
o.k., that's it !!! thanks
> This check makes sure that your VPS has no access to trusted data or
> host system don't access to untrusted one. Just disable it as we did in
> recent kernel by default.
>
> >>the best way you can do it actually is to insert your special mounts in
> >>VPS mount script which will be automatically run on VPS start.
> >
> > This must be done on the host. Is there a possibility to execute scripts
> > by vzctl start?
>
> yes. see scripts in /etc/sysconfig/vz-scripts
I placed the two scripts (see below), but they aren't executed :-( The scripts
should mount/umount the bind-mounts.
gs scripts # ls -l /usr/lib/vzctl/scripts/
total 32
-rwxr-xr-x 1 root root 69 Jan 5 19:38 2001.mount
-rwxr-xr-x 1 root root 47 Jan 5 19:39 2001.umount
-rwxr-xr-x 1 root root 1522 Jan 4 01:05 vps-create
-rwxr-xr-x 1 root root 4037 Jan 4 01:05 vps-functions
-rwxr-xr-x 1 root root 1354 Jan 4 01:05 vps-net_add
-rwxr-xr-x 1 root root 1127 Jan 4 01:05 vps-net_del
-rwxr-xr-x 1 root root 2308 Jan 4 01:05 vps-postcreate
-rwxr-xr-x 1 root root 785 Jan 4 01:05 vps-stop
gs scripts # vzctl --verbose start 2001
Unable to open /usr/lib/vzctl/modules/: No such file or directory
Starting VPS ...
Running: /usr/sbin/vzquota show 2001
Running: /usr/sbin/vzquota on 2001 -r 0 -b 1048676 -B 1153534 -i 200100 -I
220100 -e 0 -n 0 -s 0
Mounting root: /vz/root/2001 /vz/private/2001
VPS is mounted
Running: /usr/sbin/vzquota stat 2001 -f
Running: vzquota setlimit 2001 -b 1048576 -B 1153434 -i 200000 -I 220000 -e 0
-n 0
Adding IP address(es): 192.168.39.21
Running: /usr/lib/vzctl/scripts/vps-net_add
Running VPS script: /etc/vz/dists/scripts/gentoo-add_ip.sh
Setting CPU units: 1000
Set hostname: ovz01
Running VPS script: /etc/vz/dists/scripts/gentoo-set_hostname.sh
VPS start in progress...
gs scripts # mount
/dev/hda1 on / type ext3 (rw,noatime)
proc on /proc type proc (rw)
sysfs on /sys type sysfs (rw)
udev on /dev type tmpfs (rw,nosuid)
devpts on /dev/pts type devpts (rw)
/dev/hdb1 on /tftproot type ext3 (rw,noatime)
shm on /dev/shm type tmpfs (rw,noexec,nosuid,nodev)
192.168.39.1:/home/lmeier on /root/lmeier type nfs (rw,addr=192.168.39.1)
gs scripts #
>
> >>Please note, on 2.6.8 kernel bind mount is still rw :(
> >
> > o.k.
> >
> >>Kirill
> >>
> >>>Am Donnerstag, 5. Januar 2006 16:27 schrieb Kirill Korotaev:
> >>>>can you give me an access? it will be much faster...
> >>>>if so, send me a private mail with login please.
> >>>
> >>>Sorry, thats not possible ...
> >>>
> >>>>Kirill
> >>>>
> >>>>>Am Donnerstag, 5. Januar 2006 15:25 schrieb Kirill Korotaev:
> >>>>>>>The network issue is partly solved: I do not use the gentoo net.lo
> >>>>>>>script for net.venet0 anymore, instead I setup the interfaces venet0
> >>>>>>>and venet0:0 with the attached workaround-script.
> >>>>>>>
> >>>>>>>But, how do I bind-mount directories from to host to the VPS, e.g.
> >>>>>>> to use /usr/portage in the VPD too. If I try to (on host)
> >>>>>>>
> >>>>>>>gs ~ # mount /usr/portage /vz/private/2001/usr/portage/ -o bind,ro
> >>>>>>
> >>>>>>try /vz/root/2001/usr/portage after VPS is mounted.
> >>>>>
> >>>>>does not solve the problem.
> >>>>>
> >>>>>on host:
> >>>>>
> >>>>>gs ~ # vzctl mount 2001
> >>>>>VPS is mounted
> >>>>>gs ~ # mount /usr/portage /vz/root/2001/usr/portage -o bind,ro
> >>>>>gs ~ # mount
> >>>>>/dev/hda1 on / type ext3 (rw,noatime)
> >>>>>proc on /proc type proc (rw)
> >>>>>sysfs on /sys type sysfs (rw)
> >>>>>udev on /dev type tmpfs (rw,nosuid)
> >>>>>devpts on /dev/pts type devpts (rw)
> >>>>>/dev/hdb1 on /tftproot type ext3 (rw,noatime)
> >>>>>shm on /dev/shm type tmpfs (rw,noexec,nosuid,nodev)
> >>>>>192.168.39.1:/home/lmeier on /root/lmeier type nfs
> >>>>>(rw,addr=192.168.39.1) none on proc type proc (rw)
> >>>>>/usr/portage on /vz/root/2001/usr/portage type none (ro,bind)
> >>>>>gs ~ #
> >>>>>
> >>>>>in the VPS:
> >>>>>
> >>>>>ovz01 usr # ls
> >>>>>bin include libexec portage sbin src
> >>>>>i386-pc-linux-gnu lib local portage.vps share tmp
> >>>>>ovz01 usr # ls -l portage
> >>>>>total 0
> >>>>>ovz01 usr #
> >>>>>
> >>>>>>>I get
> >>>>>>>
> >>>>>>>ovz01 usr # ls
> >>>>>>>bin i386-pc-linux-gnu include lib libexec local portage sbin
> >>>>>>>share src tmp
> >>>>>>>ovz01 usr # ls portage
> >>>>>>>ovz01 usr #
> >>>>>>>
> >>>>>>>on the VPS ovz01. Whats wrong?
> >>>>>>>
> >>>>>>>- Wilhelm
> >>>>>>>
> >>>>>>>Am Mittwoch, 4. Januar 2006 17:28 schrieb Wilhelm Meier:
> >>>>>>>>Am Mittwoch, 4. Januar 2006 09:51 schrieb Kirill Korotaev:
> >>>>>>>>>so you run Gentoo inside VPS yeah?
> >>>>>>>>
> >>>>>>>>Well, I try to ...
> >>>>>>>>
> >>>>>>>>>the problem seems to be in your initscripts, which didn't mount
> >>>>>>>>>/proc on VPS start and didn't create /dev/ptyX entries for
> >>>>>>>>> terminal devices. Looks like the only process in your VPS is
> >>>>>>>>> init, strange...
> >>>>>>>>
> >>>>>>>>I created the needed /dev/ttyp0 and /dev/ttyp0 by hand
> >>>>>>>>in /vz/private/<id>/dev/ and mount also /proc by hand. Then it is
> >>>>>>>>possible to enter the gentoo-VPS:
> >>>>>>>>
> >>>>>>>>gs ~ # vzctl enter 2001
> >>>>>>>>entered into VPS 2001
> >>>>>>>>ovz01 / # ps aux
> >>>>>>>>USER PID %CPU %MEM VSZ RSS TTY STAT START TIME
> >>>>>>>>COMMAND root 1 0.0 0.1 1368 480 ? Ss 17:06
> >>>>>>>>0:00 ini root 14644 0.0 0.3 1740 780 ? Ss 17:14
> >>>>>>>>0:00 vzctl: ttyp0 root 15669 0.5 0.5 2244 1288 ttyp0 Ss
> >>>>>>>>17:14 0:00 bash -i root 15671 0.0 0.3 2376 836 ttyp0
> >>>>>>>>R+ 17:14 0:00 ps aux ovz01 / #
> >>>>>>>>
> >>>>>>>>I also copied /etc/init.d/net.lo to the VPS and some additional
> >>>>>>>>scripts, which are apparently missing.
> >>>>>>>>But in the gentoo-VPS I get still:
> >>>>>>>>
> >>>>>>>>ovz01 / # /etc/init.d/net.venet0 start
> >>>>>>>>* Starting
> >>>>>>>>* no interface module has been loaded
> >>>>>>>>ovz01 / #
> >>>>>>>>ovz01 / # /sbin/ifconfig -a
> >>>>>>>>lo Link encap:Local Loopback
> >>>>>>>> LOOPBACK MTU:16436 Metric:1
> >>>>>>>> RX packets:38 errors:0 dropped:0 overruns:0 frame:0
> >>>>>>>> TX packets:38 errors:0 dropped:0 overruns:0 carrier:0
> >>>>>>>> collisions:0 txqueuelen:0
> >>>>>>>> RX bytes:2660 (2.5 Kb) TX bytes:2660 (2.5 Kb)
> >>>>>>>>
> >>>>>>>>venet0 Link encap:UNSPEC HWaddr
> >>>>>>>>00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
> >>>>>>>> BROADCAST POINTOPOINT NOARP MTU:1500 Metric:1
> >>>>>>>> RX packets:0 errors:0 dropped:0 overruns:0 frame:0
> >>>>>>>> TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
> >>>>>>>> collisions:0 txqueuelen:0
> >>>>>>>> RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)
> >>>>>>>>
> >>>>>>>>ovz01 / #
> >>>>>>>>
> >>>>>>>>If I try that with a debian-guest on the gentoo-host, I get:
> >>>>>>>>
> >>>>>>>>gs ~ # vzctl enter 2002
> >>>>>>>>entered into VPS 2002
> >>>>>>>>root at ovz02:/# ifconfig -a
> >>>>>>>>lo Link encap:Local Loopback
> >>>>>>>> LOOPBACK MTU:16436 Metric:1
> >>>>>>>> RX packets:38 errors:0 dropped:0 overruns:0 frame:0
> >>>>>>>> TX packets:38 errors:0 dropped:0 overruns:0 carrier:0
> >>>>>>>> collisions:0 txqueuelen:0
> >>>>>>>> RX bytes:2660 (2.5 KiB) TX bytes:2660 (2.5 KiB)
> >>>>>>>>
> >>>>>>>>venet0 Link encap:UNSPEC HWaddr
> >>>>>>>>00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
> >>>>>>>> inet addr:127.0.0.1 P-t-P:127.0.0.1 Bcast:0.0.0.0
> >>>>>>>>Mask:255.255.255.255
> >>>>>>>> UP BROADCAST POINTOPOINT RUNNING NOARP MTU:1500 Metric:1
> >>>>>>>> RX packets:3 errors:0 dropped:0 overruns:0 frame:0
> >>>>>>>> TX packets:3 errors:0 dropped:0 overruns:0 carrier:0
> >>>>>>>> collisions:0 txqueuelen:0
> >>>>>>>> RX bytes:252 (252.0 b) TX bytes:252 (252.0 b)
> >>>>>>>>
> >>>>>>>>venet0:0 Link encap:UNSPEC HWaddr
> >>>>>>>>00-00-FF-FF-FF-FF-00-00-00-00-00-00-00-00-00-00
> >>>>>>>> inet addr:192.168.39.22 P-t-P:192.168.39.22 Bcast:0.0.0.0
> >>>>>>>>Mask:255.255.255.255
> >>>>>>>> UP BROADCAST POINTOPOINT RUNNING NOARP MTU:1500 Metric:1
> >>>>>>>>
> >>>>>>>>root at ovz02:/#
> >>>>>>>>
> >>>>>>>>So the interface venet0:0 is missing in the gentoo-guest.
> >>>>>>>>
> >>>>>>>>>kir@ who is in charge of Gentoo will be available after Jan 7
> >>>>>>>>> only, but I can check what's wrong with your VPS if you provide
> >>>>>>>>> me the credentials in private email.
> >>>>>>>>>
> >>>>>>>>>Kirill
> >>>>>>>>>
> >>>>>>>>>>Hi,
> >>>>>>>>>>
> >>>>>>>>>>I want to use OpenVZ with Gentoo. I did the install of OpenVZ as
> >>>>>>>>>>described in
> >>>>>>>>>>
> >>>>>>>>>>http://dev.croup.de/proj/gentoo-vps/wiki
> >>>>>>>>>>
> >>>>>>>>>>When I try to enter, I get:
> >>>>>>>>>>
> >>>>>>>>>>gs ~ # vzctl start 2001
> >>>>>>>>>>Starting VPS ...
> >>>>>>>>>>VPS is mounted
> >>>>>>>>>>Setting CPU units: 1000
> >>>>>>>>>>VPS start in progress...
> >>>>>>>>>>gs ~ # vzctl status 2001
> >>>>>>>>>>VPSID 2001 exist mounted running
> >>>>>>>>>>gs ~ # vzctl enter 2001
> >>>>>>>>>>Unable to open pty: No such file or directory
> >>>>>>>>>>enter failed
> >>>>>>>>>>gs ~ #
> >>>>>>>>>>
> >>>>>>>>>>and
> >>>>>>>>>>
> >>>>>>>>>>gs ~ # vzctl exec 2001 ps aux
> >>>>>>>>>>Error, do this: mount -t proc proc /proc
> >>>>>>>>>>gs ~ # vzctl exec 2001 mount -t proc none /proc
> >>>>>>>>>>gs ~ # vzctl exec 2001 ps aux
> >>>>>>>>>>USER PID %CPU %MEM VSZ RSS TTY STAT START TIME
> >>>>>>>>>>COMMAND root 1 0.0 0.1 1368 480 ? Ss 00:30
> >>>>>>>>>>0:00 ini root 22894 0.0 0.3 2372 832 ? Rs
> >>>>>>>>>> 00:31 0:00 ps aux gs ~ #
> >>>>>>>>>>
> >>>>>>>>>>Any hints?
> >>>>>>>>>>--
> >>>>>>>>>>Wilhelm Meier
> >>>>>>>>>>email: meier at informatik.fh-kl.de
> >>>>>>>>>>_______________________________________________
> >>>>>>>>>>Users mailing list
> >>>>>>>>>>Users at openvz.org
> >>>>>>>>>>https://openvz.org/mailman/listinfo/users
--
--
Wilhelm Meier
email: meier at informatik.fh-kl.de
More information about the Users
mailing list