2014-02-01 07:43:25 <Mp5shooter> does anyone here use oidentd on alpine?
2014-02-02 13:08:07 <crow> can we have an update of oscam package?
2014-02-03 17:20:47 <crow> hi all,
2014-02-03 17:20:53 <crow> did i get any replay on this: can we have an update of oscam package?
2014-02-03 17:21:03 <crow> got disconnect.
2014-02-03 17:32:23 <castorinop> hi. some one have problem at loguin on qemu ?
2014-02-03 19:07:12 <blakes> Will 2.7.4 have the latest grsec to avoid http://www.openwall.com/lists/oss-security/2014/01/31/2 ?
2014-02-03 19:09:37 <clandmeter> crow: latest is that old?
2014-02-03 19:10:04 <clandmeter> blakes: i think we ship pretty recent grsec
2014-02-03 19:10:22 <clandmeter> but for details better ask ncopa
2014-02-03 19:10:43 <blakes> Yes, you do - but this wasn't fixed until Jan 31 I think, so I wasn't sure :-)
2014-02-03 19:11:17 <blakes> Also, do you know who I would talk to about suggesting the binaries in alpine use RELRO (reference: http://tk-blog.blogspot.com/2009/02/relro-not-so-well-known-memory.html)
2014-02-03 19:11:47 <clandmeter> blakes: best to send an email to ML
2014-02-03 19:13:21 <blakes> Ok.  I sent one to alpine@bugs.alpinelinux.org, but wasn't sure how well that would do.
2014-02-03 19:15:05 <clandmeter> blakes: http://lists.alpinelinux.org/
2014-02-03 19:15:16 <clandmeter> thats probably better for discusions
2014-02-03 19:15:56 <clandmeter> or get here earlier to catch ncopa
2014-02-03 19:16:55 <blakes> Sure, I'll probably sit in here for a bit.  Just started using Alpine and it has some pretty good options :-)
2014-02-03 19:29:51 <crow> clandmeter well latest would be nice, as the one we have currently is 'oscam-0_svn20131023-r0'
2014-02-03 19:30:10 <clandmeter> crow: which repo?
2014-02-03 19:30:55 <clandmeter> i guess you use 2.7?
2014-02-03 19:31:09 <crow> clandmeter yes i am on 2.7.3
2014-02-03 19:31:33 <clandmeter> we dont push updates *that* fast to stable
2014-02-03 19:31:57 <clandmeter> you can however pin edge and apk add oscam@edge
2014-02-03 19:32:06 <clandmeter> thats pretty recent
2014-02-03 19:32:36 <crow> ok i see, or switch to edge using this http://wiki.alpinelinux.org/wiki/Edge ?
2014-02-03 19:32:47 <clandmeter> you can
2014-02-03 19:33:02 <clandmeter> but if you only need oscam from edge, pinning is better and easier
2014-02-03 19:33:19 <clandmeter> and works (most of the time)
2014-02-03 19:35:09 <crow> ok let me try it :)
2014-02-03 19:36:08 <clandmeter> crow: http://wiki.alpinelinux.org/wiki/Alpine_Linux_package_management#Repository_pinning
2014-02-03 19:37:53 <crow> clandmeter thank i found that to, now i see this: oscam-0_svn20140109-r0
2014-02-03 19:38:02 <crow> with apk search -v oscam
2014-02-03 19:38:34 <clandmeter> yes
2014-02-03 19:38:47 <clandmeter> i create snapshots ones in a while
2014-02-03 19:38:53 <crow> clandmeter is there anyone doing some check on wiki? i wrote this http://wiki.alpinelinux.org/wiki/Installing_on_GPT_LVM but i am sure there are some typing mistakes, and thats also reason i did not linked it to Installation or Howto page.
2014-02-03 19:39:27 <crow> clandmeter on my todo list is also to crate own packagebuild VMs installation
2014-02-03 19:39:46 <clandmeter> some people go over the wiki and make corrections
2014-02-03 19:39:56 <clandmeter> im not included in those few
2014-02-03 19:47:46 <crow> ok, should i link if here? http://wiki.alpinelinux.org/wiki/Tutorials_and_Howtos
2014-02-04 06:25:14 <kozak> hi
2014-02-04 06:25:19 <kozak> Libtool archives (*.la) files found and $options has no 'libtool' flag:
2014-02-04 06:25:57 <kozak> what should i do ?
2014-02-04 06:52:47 <ncopa> morning
2014-02-04 06:53:03 <ncopa> kozak: rm "$pkgdir"/usr/lib/*.la
2014-02-04 06:53:09 <ncopa> or similar
2014-02-04 06:53:32 <ncopa> blakes: CVE-2014-0038 only affects x32 afaik?
2014-02-04 06:53:43 <ncopa> we have only x86_64 and x86_32
2014-02-04 06:53:51 <ncopa> not x32
2014-02-04 06:53:57 <ncopa> so i dont think we are affected
2014-02-04 08:15:28 <clandmeter> ncopa: i need to upgrade gnome-menu to 3x, but i see the current gnome stuff is depended on it.
2014-02-04 08:15:38 <clandmeter> should i create gnome-menu3?
2014-02-04 08:25:08 <kozak> How can i list the contents of the package without install it ?
2014-02-04 08:26:45 <clandmeter> no
2014-02-04 08:26:48 <clandmeter> not
2014-02-04 08:27:10 <ncopa> kozak: you can do: apk fetch -q --stdout <package> | tar -zt
2014-02-04 08:27:38 <ncopa> clandmeter: i'm ok if you just upgrade gnome-emnu (and dependants...)
2014-02-04 08:28:02 <ncopa> i would love get rid of gnome2 stuff
2014-02-04 08:28:04 <ncopa> or upgrade it
2014-02-04 08:28:09 <clandmeter> ok
2014-02-04 08:30:38 <clandmeter> ncopa: cant we add that to apktools? it sound better than no option at all?
2014-02-04 08:31:52 <ncopa> i suppose we could. file a feature request
2014-02-04 08:32:06 <ncopa> apk fetch --list
2014-02-04 08:32:08 <ncopa> or similar
2014-02-04 08:48:57 <clandmeter> ncopa: --no-script in apk, does that mean no install scripts will be executed?
2014-02-04 08:49:18 <ncopa>   --no-scripts            Do not execute any scripts
2014-02-04 08:49:21 <ncopa> seems so yes
2014-02-04 08:50:57 <clandmeter> could i add an option to abuild to add it when deps take too long to install because of the install scripts?
2014-02-04 08:51:17 <clandmeter> that gnome post install stuff is crazy
2014-02-04 08:51:43 <ncopa> i think hack abuild for working around that is wrong
2014-02-04 08:51:58 <ncopa> problem is gconf, right?
2014-02-04 08:52:02 <clandmeter> yes
2014-02-04 08:52:03 <ncopa> gconf2
2014-02-04 08:52:07 <clandmeter> and another one
2014-02-04 08:52:10 <clandmeter> mime whatever
2014-02-04 08:52:17 <ncopa> mime is fixable
2014-02-04 08:52:24 <ncopa> we could patch mime
2014-02-04 08:53:02 <ncopa> takes 30 seconds to some crazy disk flushing per file or so
2014-02-04 08:53:19 <clandmeter> gconf takes even longer...
2014-02-04 08:55:29 <ncopa> we should try get rid of gconf2
2014-02-04 09:07:46 <ncopa> clandmeter: i pushed a fix for shared-mime-info
2014-02-04 09:08:05 <clandmeter> nice :)
2014-02-04 09:08:45 <ncopa> hm
2014-02-04 09:08:50 <ncopa> does not seem to work as expected
2014-02-04 09:59:21 <eto> hey guys
2014-02-04 09:59:32 <eto> does anybody from you use alpine as server?
2014-02-04 10:16:29 <clandmeter> eto: sure we do
2014-02-04 10:19:08 <eto> clandmeter: given there is no libc, and i don't want glibs, which servers are alpine friendly: i guess apache is not that okay - maybe nginx or lighttpd?
2014-02-04 10:19:24 <eto> clandmeter: or you just install glibc package - if there is such a thing?
2014-02-04 10:20:36 <ncopa> eto: we use alpine as server
2014-02-04 10:20:52 <ncopa> i think people uses lighttpd, nginx and apache too
2014-02-04 10:21:05 <ncopa> the wiki.alpinelinux.org is lighttpd
2014-02-04 10:21:16 <ncopa> the www.alpinelinux.org is lighttpd behind a nginx proxy
2014-02-04 10:21:16 <eto> ncopa: what about dbs?
2014-02-04 10:21:24 <ncopa> we use postgresql and mysql
2014-02-04 10:21:33 <eto> ncopa: interesting
2014-02-04 10:21:38 <ncopa> wiki.a.o is postgresql i think
2014-02-04 10:21:44 <eto> ncopa: i will look into it
2014-02-04 10:21:45 <ncopa> and www.a.o is drupal with mysql
2014-02-04 10:22:06 <ncopa> and bugs.a.o runs redmine with mysql
2014-02-04 10:22:14 <ncopa> also behind nginx
2014-02-04 10:22:19 <ncopa> it all is alpine linux
2014-02-04 10:22:21 <eto> ncopa: and how do you layer your system - do you use flash for the main os and mount drives for the rest?
2014-02-04 10:22:59 <ncopa> i think wiki.a.o runs directly on the iron
2014-02-04 10:23:06 <ncopa> www.a.o is vserver i think
2014-02-04 10:23:20 <ncopa> vserver inside a qemu/kvm guest
2014-02-04 10:23:31 <ncopa> if i'd set it up again today i'd use lxc
2014-02-04 10:23:52 <clandmeter> if somebody sponsors us some ssd's we are happy to use them :)
2014-02-04 10:29:18 <eto> hehe
2014-02-04 10:29:35 <eto> ncopa: lxc are not same as linux namespaces are they?
2014-02-04 10:31:01 <ncopa> its is linux containers, using namespaces
2014-02-04 10:31:17 <ncopa> so yes, lxc uses linux namespaces
2014-02-04 10:31:59 <eto> ncopa: yeah i am telling myself to look into that, but it seems like huge topic to digest
2014-02-04 10:32:21 <ncopa> lxc is pretty nice
2014-02-04 10:33:18 <eto> okay thanks
2014-02-04 10:33:29 <eto> ncopa: alpine has pretty recent kernel right?
2014-02-04 10:34:35 <ncopa> yes
2014-02-04 10:34:45 <ncopa> alpine v2.7 uses 3.10 kernel
2014-02-04 10:35:18 <eto> hmm
2014-02-04 10:35:49 <eto> would it make sense to boot from usb key for server and mount regular sas drives afterwards?
2014-02-04 10:37:50 <clandmeter> eto: it all depends on your needs
2014-02-04 10:37:55 <clandmeter> but some do it like that
2014-02-04 10:38:11 <clandmeter> my iscsi works like that.
2014-02-04 10:39:47 <ncopa> eto: makes sense to me
2014-02-04 10:45:19 <eto> thanks guys
2014-02-05 08:24:48 <kozak> how to create a user before make command in APKBUILD ?
2014-02-05 08:25:46 <ncopa> kozak: add user to pkgusers and groups to pkggroups
2014-02-05 08:26:02 <ncopa> pkgusers="newuser"
2014-02-05 08:26:22 <ncopa> http://wiki.alpinelinux.org/wiki/APKBUILD_Reference#pkgusers
2014-02-05 08:26:32 <ncopa> http://wiki.alpinelinux.org/wiki/APKBUILD_Reference#pkggroups
2014-02-05 08:28:34 <kozak> ups, sorry
2014-02-05 08:29:36 <ncopa> np
2014-02-05 11:18:13 <danci1973> Hello... What's the 'preferred' way to configure an interface with multiple IP addresses?
2014-02-05 11:19:18 <fabled> danci1973, not sure about 'preferred'; but i've just added up hook with ip addr add
2014-02-05 11:19:58 <danci1973> fabled: That's what I did too, I just thought there might be a more 'elegant' way that the networking scripts can handle. :)
2014-02-05 13:20:33 <freedomrun> anyone can tell me what the package "crunch" stands for as it cannot be found in http://alpinelinux.org/packages while command "apk search run" finds it in the repos ??
2014-02-05 13:30:58 <ncopa> $ apk info crunch
2014-02-05 13:30:59 <ncopa> crunch-3.4-r0 description:
2014-02-05 13:30:59 <ncopa> A wordlist generator
2014-02-05 13:30:59 <ncopa> crunch-3.4-r0 webpage:
2014-02-05 13:30:59 <ncopa> http://sourceforge.net/projects/crunch-wordlist/
2014-02-05 13:30:59 <ncopa> crunch-3.4-r0 installed size:
2014-02-05 13:31:01 <ncopa> 106496
2014-02-05 13:32:22 <freedomrun> thnx ncopa :)
2014-02-05 13:33:11 <freedomrun> alpine works so good and without problems that I already forgot apk can give me info on package :)
2014-02-05 13:33:23 <freedomrun> sorry
2014-02-05 13:37:06 <ncopa> np
2014-02-05 16:35:14 <alacerda> Follow @alpinelinux on twitter
2014-02-05 17:04:46 <freedomrun> rss is better
2014-02-05 17:55:03 <sirrinki> Is RHEL 6.x POSIX compliant.. is there a way to know that.
2014-02-05 19:36:25 <pcarrier> debug symbols anyone?
2014-02-05 20:55:18 <pcarrier> hmmm. apk info -L glib-dev => empty
2014-02-05 20:55:30 <pcarrier> glib-dev-2.38.1-r0
2014-02-05 21:13:06 <clandmeter> pcarrier: did you install it?
2014-02-05 21:15:14 <clandmeter> pcarrier: if not, you can check this: http://bugs.alpinelinux.org/issues/2623
2014-02-05 21:21:01 <pcarrier> ha, it had failed installing. sorry, nevermind
2014-02-06 04:04:05 <aji> $chan
2014-02-06 04:43:21 <KozakIvan> testing repo only for edge alpine ?
2014-02-06 04:57:09 <KozakIvan> How to create a package for current stable release ? Do we have separate repo for it ?
2014-02-06 14:22:01 <kocka> hoi
2014-02-06 14:22:42 <kocka> did anyone try floodlight and openvswitch?
2014-02-07 16:49:02 <fleming> Hi I am having trouble monitoring processes on our alpine installation via nrpe. Is anyone available to help?
2014-02-07 16:50:05 <darkfader> fleming: what's not working?
2014-02-07 16:50:30 <darkfader> i'll throw in that i often found i need a different ps version than the one from busybox
2014-02-07 16:50:42 <fleming> When I use the nagios plugin check_proc it only returns the proccesess running as current user, not the ones running as root.
2014-02-07 16:50:57 <fleming> which ps have you found to work?
2014-02-07 16:51:02 <darkfader> apk add procps
2014-02-07 16:51:13 <darkfader> but for that issue you seem to have a problem with grsec
2014-02-07 16:51:29 <darkfader> if you try ps -ef as the same user that your nrpe daemon runs at
2014-02-07 16:51:35 <darkfader> you'll probably hit the same issue
2014-02-07 16:51:53 <fleming> ps -ef returns the same.
2014-02-07 16:54:50 <fleming> How would you suggest changing grsec?
2014-02-07 16:57:47 <freedomrun> erm lighttp say 404 !?
2014-02-07 16:58:19 <darkfader> fleming: there's a faq for it on the alpine wiki
2014-02-07 16:58:21 <darkfader> i don't remember
2014-02-07 16:58:28 <darkfader> but it's just one sysctl
2014-02-07 17:02:51 <freedomrun> is there firmware non-free ??
2014-02-07 17:04:33 <fleming> darkfader: I dont see it on the FAQ. Is there a different term I am looking for other than grsec?
2014-02-07 17:09:01 <darkfader> the kernel setting is CONFIG_GRKERNSEC_PROC_USER and i know there's a runtime switch for it but i also can't find it
2014-02-07 17:11:29 <darkfader> sorry just too tired to find this for oyu
2014-02-07 17:11:32 <darkfader> http://en.wikibooks.org/wiki/Grsecurity/Runtime_Configuration
2014-02-07 17:11:35 <darkfader> try from there
2014-02-07 17:15:11 <fleming> no problem. First time working with grsec. I will run from there. Thank you.
2014-02-07 21:10:55 <Anaphaxeton> hi there! should we expect nftables any time soon?
2014-02-07 23:39:05 <Anaphaxet0n> why are you planning to migrate to musl?
2014-02-08 00:45:23 <Anaphaxet0n> i want to boot the installer from a usb. is it possible?
2014-02-08 00:45:44 <Anaphaxet0n> (i could  use the archlinux chroot option but...)
2014-02-08 03:46:01 <gadolgrandgadolm> secrets d'état & co ( révélations, etc ), faites tourner .. http://morganroulleau.wordpress.com ( on s'en branle que vous compreniez pas, au pire ça viendra plus tard ( .. )) ( La NSA approuve ce message. ) ( méway, sans doute, ils m'aiment. )
2014-02-08 03:46:03 <gadolgrandgadolm> GL HF
2014-02-08 10:04:19 <Anaphaxeton> good morning
2014-02-08 10:05:00 <Anaphaxeton> i want to install alpine from usb with a serial console
2014-02-08 10:05:52 <Anaphaxeton> i made a usb fine, i added serial console support to the kernel, but i am stuck at getty
2014-02-08 10:06:15 <Anaphaxeton> 'getty: bad speed' is the message
2014-02-08 10:06:47 <Anaphaxeton> i tried 9600,38400,115200
2014-02-08 10:07:12 <Anaphaxeton> kernel output is always there when i sync the ports of alpine and my desktop
2014-02-08 10:07:21 <Anaphaxeton> but getty doesnt like it
2014-02-08 10:07:30 <Anaphaxeton> hmm
2014-02-08 10:07:44 <Anaphaxeton> securetty? just thought about this
2014-02-08 10:09:02 <Anaphaxeton> can someone tell me if ttyS0 is in /etc/securetty ?
2014-02-08 10:19:39 <Anaphaxeton> it seems the vserver.gz file lacks completely a securetty file
2014-02-08 10:43:06 <Anaphaxeton> i tried to play with cpio but it seems i failed
2014-02-08 10:43:45 <Anaphaxeton> can i have a quick recipe to create a vserver.gz file for my usb?
2014-02-08 17:17:45 <Anaphaxeton> hello?
2014-02-08 17:17:52 <Anaphaxeton> ncopa?
2014-02-08 18:57:59 <shafire> hi
2014-02-08 18:58:35 <shafire> do I need to set somewhere in alpine, that I want to use UTC timezone? like said here: http://rimuhosting.com/howto/timezone.jsp
2014-02-08 18:58:45 <shafire> for another os: vi /etc/sysconfig/clock and change the UTC line to: "UTC=true"
2014-02-08 20:33:31 <Anaphaxeton> hi again
2014-02-08 20:33:49 <Anaphaxeton> i hope there is somebody around to help me with getty over serial terminal
2014-02-08 20:34:58 <plueschy> Anaphaxeton: yeah :)
2014-02-08 20:35:18 <plueschy> on the live cd or an installed system?
2014-02-08 20:46:43 <Anaphaxeton> live usb actually
2014-02-08 20:47:26 <Anaphaxeton> it boots fine. the kernel outputs to my terminal but when it comes to getty i get 'getty: bad speed'
2014-02-08 20:47:40 <Anaphaxeton> various settings dont satisfy it
2014-02-08 20:49:01 <plueschy> can you paste the ttyS0 line from /etc/inittab?
2014-02-08 20:49:27 <Anaphaxeton> my desktop's?
2014-02-08 20:49:50 <Anaphaxeton> i havent touched that one on the usb
2014-02-08 20:49:50 <plueschy> no .. from the usb
2014-02-08 20:50:02 <Anaphaxeton> one moment
2014-02-08 20:50:41 <plueschy> it's maybe commented out, and that's maybe the problem ^^
2014-02-08 20:53:59 <Anaphaxeton> isnt that file in vserver.gz ?
2014-02-08 20:54:15 <Anaphaxeton> (i forgot to tell that)
2014-02-08 20:55:53 <plueschy> uhm yes
2014-02-08 20:57:34 <Anaphaxeton> i gunziped it, then cpio -i < vserver
2014-02-08 20:57:42 <Anaphaxeton> i got a fs
2014-02-08 20:57:49 <Anaphaxeton> inside etc there is not much
2014-02-08 20:58:24 <plueschy> Anaphaxeton: how have you prepared the usb device? have you used the standard iso image?
2014-02-08 20:59:51 <Anaphaxeton> standard iso image+syslinux+mbr/fat32+append console=ttyS0,38400n8
2014-02-08 21:00:03 <Anaphaxeton> it boots fine
2014-02-08 21:00:12 <Anaphaxeton> ok i admit i have a monitor nearby
2014-02-08 21:00:28 <Anaphaxeton> but i want to depend on the serial console
2014-02-08 21:00:49 <Anaphaxeton> i think that for this kind of  OS it is essential
2014-02-08 21:01:10 <plueschy> Anaphaxeton: the problem is, that on the standard image, the line in /etc/inittab is commented out ... so you see the kernel output but you can't access the tty
2014-02-08 21:02:25 <Anaphaxeton> why is there no /etc/inittab in the cpio?
2014-02-08 21:02:28 <Anaphaxeton> is it elsewhere?
2014-02-08 21:03:37 <plueschy> I don't know where it is -.- maybe another person can help?
2014-02-08 21:04:17 <Anaphaxeton> $ ls etc/
2014-02-08 21:04:17 <Anaphaxeton> apk  fstab  group  mdev.conf  modprobe.d  passwd
2014-02-08 21:04:39 <Anaphaxeton> maybe i am stupid to want to learn with vserver :p
2014-02-08 21:07:00 <Anaphaxeton> i run init. it tried to do stuff according to some plan. where did it get one from?
2014-02-08 21:12:36 <Anaphaxeton> is it some default behaviour of busybox?
2014-02-08 21:13:25 <Anaphaxeton> it looks not so random...
2014-02-08 21:20:39 <Anaphaxeton> wait...
2014-02-08 21:20:45 <Anaphaxeton> this is busybox
2014-02-08 21:20:49 <Anaphaxeton> not getty
2014-02-08 21:20:55 <Anaphaxeton> maybe i should look there
2014-02-08 22:20:17 <Anaphaxeton> there is a possible mistake in /etc/inittab, as i see it from the monitor
2014-02-08 22:20:33 <Anaphaxeton> one getty is commented  out
2014-02-08 22:20:54 <Anaphaxeton> and it has the wrong precedence of parametres
2014-02-08 22:21:11 <Anaphaxeton> the last line has another entry
2014-02-08 22:21:25 <Anaphaxeton> this time is looks correct except the baud rate
2014-02-08 22:21:40 <Anaphaxeton> it should be 38400
2014-02-08 22:22:23 <Anaphaxeton> --help plus the invocation on other ttys suggest 38400n8 is wront
2014-02-08 22:29:13 <Anaphaxeton> so
2014-02-08 22:29:30 <Anaphaxeton> where is inittab in the installation image?
2014-02-08 22:32:37 <plueschy> Anaphaxeton: rootfs image ... you need to unsquashfs it, to be able to cange the /etc/inittab, i think
2014-02-08 22:33:26 <Anaphaxeton> inside boot ?
2014-02-08 22:33:33 <plueschy> yes
2014-02-08 22:34:04 <plueschy> I've done it by using alpine-iso ... I just modified the Makefile ^^
2014-02-08 22:34:49 <Anaphaxeton> i see the kernel, the initramfs (vserver.gz) which has no /etc/inittab and there is that squash  image
2014-02-08 22:35:06 <Anaphaxeton> that when unsquashed produces only the modules
2014-02-08 22:35:12 <Anaphaxeton> but lets try again
2014-02-08 22:35:13 <plueschy> i don't know vserver.gz -.-
2014-02-08 22:36:49 <Anaphaxeton> ehm it is for the vserver version apparently
2014-02-08 22:37:15 <plueschy> can you use the normal (alpine-mini) image? ^^
2014-02-08 22:37:21 <Anaphaxeton> $ unsquashfs /run/media/georgios/CDROM/boot/vserver.modloop.squashfs
2014-02-08 22:37:38 <plueschy> because there is definitly a /etc/inittab in there ^^
2014-02-08 22:37:42 <Anaphaxeton> this thing unsquashes to something containing only modules
2014-02-08 22:37:51 <Anaphaxeton> ehm
2014-02-08 22:37:56 <Anaphaxeton> i beleive you!
2014-02-08 22:38:21 <Anaphaxeton> there is on here too! it boots, i ve looked inside it
2014-02-08 22:38:32 <plueschy> mhmm....
2014-02-08 22:38:34 <Anaphaxeton> inside th file
2014-02-08 22:38:48 <Anaphaxeton> maybe i unsquash wrong
2014-02-08 22:39:13 <plueschy> is no one else here to help? :/
2014-02-08 22:41:42 <Anaphaxeton> whatever unsquash i do i only get the modules
2014-02-08 22:41:57 <Anaphaxeton> there must be some dirty trick here
2014-02-08 22:42:01 <Anaphaxeton> lets see the docs!
2014-02-09 00:57:10 <Arby> Hello, I'm a new Alpine linux user, I've just installed Alpine sys installation using the 2.7 release, and i'd like to start using edge-musl packages. I am using a x86-64 machine. I switched my repository to edge-main, and now apk is broken with error message: Error relocating /lib/libcrypto.so.1.0.0: __ctype_b: symbol not found Error relocating /lib/libcrypto.so.1.0.0: __ctype_tolower: symbol not found. Your advice is appreciated.
2014-02-09 01:52:25 <Arby> Hello, I'm a new Alpine linux user, I've just installed Alpine sys installation using the 2.7 release, and i'd like to start using edge-musl packages. I am using a x86-64 machine. I switched my repository to edge-main, and now apk is broken with error message: Error relocating /lib/libcrypto.so.1.0.0: __ctype_b: symbol not found Error relocating /lib/libcrypto.so.1.0.0: __ctype_tolower: symbol not found. Your advice is appreciated.
2014-02-09 07:15:23 <Anaphaxeton> plueschy, i found the solution
2014-02-09 07:15:55 <Anaphaxeton> a bit strange... i had to add serial console support to... syslinux
2014-02-09 10:24:54 <shafire> hi
2014-02-09 10:25:07 <shafire> I installed the btrfs-progs and mkfs.btrfs a device
2014-02-09 10:25:12 <shafire> but I can not mount it
2014-02-09 10:25:28 <shafire> # mount -t btrfs -o defaults,compress,noatime /dev/sda1 /mnt            mount: mounting /dev/sda1 on /mnt failed: No such device
2014-02-09 10:25:30 <shafire> whats wrong?
2014-02-09 10:26:19 <shafire> # btrfs filesystem show Label: 'disk'  uuid: ############# 	Total devices 1 FS bytes used 28.00KB 	devid    1 size 465.76GB used 20.00MB path /dev/sda1  Btrfs Btrfs v0.19
2014-02-09 11:24:49 <Anaphaxeton> shafire, what does ls say?
2014-02-09 11:25:11 <shafire> Anaphaxeton: I got it already, but
2014-02-09 11:25:26 <shafire> need to run: "btrfs device scan"
2014-02-09 11:25:41 <shafire> but there was an error: https://btrfs.wiki.kernel.org/index.php/Problem_FAQ#I_get_the_message_.22failed_to_open_.2Fdev.2Fbtrfs-control_skipping_device_registration.22_from_.22btrfs_dev_scan.22
2014-02-09 11:26:23 <Anaphaxeton> so you fixed it?
2014-02-09 11:26:27 <shafire> yes
2014-02-09 11:26:36 <Anaphaxeton> thanks a lot man! you made my day
2014-02-09 11:26:45 <shafire> why?
2014-02-09 11:26:52 <Anaphaxeton> i am going to install on btrfs in a while
2014-02-09 11:26:58 <Anaphaxeton> hahaha
2014-02-09 11:27:19 <Anaphaxeton> a solution before the problem!
2014-02-09 11:27:26 <shafire> there is just the one problem which I linked
2014-02-09 11:27:35 <shafire> need to run "# mknod /dev/btrfs-control c 10 234" every reboot
2014-02-09 11:27:41 <shafire> how can we fix this?
2014-02-09 11:27:59 <Anaphaxeton> an mdev rule? i dont know mdev yet but it seems ok
2014-02-09 11:28:36 <Anaphaxeton> lets start the machine
2014-02-09 11:29:10 <shafire> I want to replace my raid1-lvm solution by btrfs-raid1
2014-02-09 11:32:26 <Anaphaxeton> i have raid1-lvm in my server but i am not sure if i will change it
2014-02-09 11:32:50 <Anaphaxeton> but this machine is going to be a vserver and i am sure subvolumes will help a lot
2014-02-09 11:32:59 <Anaphaxeton> no raid
2014-02-09 11:33:55 <shafire> I tested subvolumes and snapshots
2014-02-09 11:33:59 <shafire> It is really great
2014-02-09 11:34:20 <shafire> Anaphaxeton: lxc?
2014-02-09 11:35:18 <Anaphaxeton> linux-vserver
2014-02-09 11:35:33 <Anaphaxeton> with alpine
2014-02-09 11:36:20 <Anaphaxeton> i suppose subvolumes will make managing the vservers very easy
2014-02-09 11:36:45 <shafire> this is for sure
2014-02-09 11:37:12 <shafire> Anaphaxeton: do you have any tutorial for linux-vserver?
2014-02-09 11:37:35 <Anaphaxeton> no it is my first time!
2014-02-09 11:38:36 <shafire> why not lxc instead of linux-vserver?
2014-02-09 11:41:01 <Anaphaxeton> because alpine supports linux-vserver so i feel more certain i will make it
2014-02-09 11:44:11 <shafire> alpine supports lxc too (in the kernel)
2014-02-09 11:46:36 <Anaphaxeton> why is lxc better?
2014-02-09 11:47:35 <shafire> http://serverfault.com/questions/154054/why-lxc-when-there-is-linux-vserver
2014-02-09 11:48:52 <shafire> Anaphaxeton: do you know, how I can put my btrfs mount points into /etc/fstab?
2014-02-09 11:50:10 <Anaphaxeton> /dev/sdXY /foo btrfs  blahblah,subvol=thesubvoliwant 0 1
2014-02-09 11:50:34 <Anaphaxeton> same disk different subvol
2014-02-09 11:50:47 <Anaphaxeton> or subvolid
2014-02-09 11:54:28 <shafire> do I have to ensure, that the directory /foo exists after restart?
2014-02-09 11:56:31 <shafire> cool, I do not to have ensuring this :)
2014-02-09 11:56:32 <shafire> great
2014-02-09 11:56:45 <Anaphaxeton> btrfs is a life saver
2014-02-09 11:57:04 <shafire> what happend?
2014-02-09 11:57:07 <Anaphaxeton> i am using it on more and more machines
2014-02-09 11:57:17 <Anaphaxeton> i mean it makes my life easier
2014-02-09 11:57:24 <shafire> which options do you use? these are mine: defaults,autodefrag,compress=lzo,noatime,subvol=@disk
2014-02-09 11:57:28 <shafire> for a hdd
2014-02-09 11:57:35 <Anaphaxeton> i am not using it on my desktop though. i dont want to risk :>
2014-02-09 11:58:21 <shafire> no risk, no fun :D
2014-02-09 11:58:35 <Anaphaxeton> on the machine i am setting up right now (4gb sata disk-on-module) defaults,compress=lzo,noatime,ssd_spread,discard,subvol=
2014-02-09 11:58:40 <Anaphaxeton> :p
2014-02-09 11:58:52 <Anaphaxeton> no fun at all with the desktop!!
2014-02-09 11:59:25 <shafire> difference between ssd and ssd_spread?
2014-02-09 11:59:59 <Anaphaxeton> the btrfs wiki suggests it may be better for lower end ssds
2014-02-09 12:00:07 <Anaphaxeton> i dont know the technicals
2014-02-09 12:00:15 <shafire> oh okay
2014-02-09 12:00:50 <shafire> maybe, I can implement this idea: https://www.redhat.com/archives/libvirt-users/2013-September/msg00055.html
2014-02-09 12:00:51 <shafire> :-)
2014-02-09 12:06:19 <Anaphaxeton> it makes sense!
2014-02-09 12:06:33 <Anaphaxeton> very  well sandboxed
2014-02-09 12:09:48 <shafire> 
ACTION is excited.

2014-02-09 12:15:56 <Anaphaxeton> i do somethig different
2014-02-09 12:16:13 <Anaphaxeton> i use an image mounted as snapshot
2014-02-09 12:16:23 <Anaphaxeton> qemu will never write to it
2014-02-09 12:16:37 <Anaphaxeton> except if you pass commit to the console
2014-02-09 12:16:55 <Anaphaxeton> i do every monstrosity in the world
2014-02-09 12:17:05 <Anaphaxeton> then reboot, then have the previous state
2014-02-09 12:17:27 <Anaphaxeton> when i install something i do commit
2014-02-09 12:17:40 <Anaphaxeton> this way it is rw but selectively rw
2014-02-09 12:18:46 <shafire> you could also use the overlay system for that
2014-02-09 13:46:25 <plueschy> are there known issues with alpine-linux and ipv6? i have no interfaces set up and there are two unreachable default dev lo  metric -1 errror -101 lines at "ip -6 route" output
2014-02-09 13:46:49 <plueschy> i don't know what causes this unreachable default routes...
2014-02-09 15:22:58 <Anaphaxeton> what should i do with extlinux and btrfs without partition table?
2014-02-09 15:44:50 <Anaphaxeton> so i  see i can only use syslinux
2014-02-09 15:45:20 <Anaphaxeton> i thought about grub but for some (what?) reason it is not available
2014-02-09 15:59:39 <plueschy> is there a way to get rid of the two unreachable default v6 routes?
2014-02-10 20:24:34 <shodan45> hello.... the musl site lists alpine under "planning to switch to musl" - what's the status of that?
2014-02-10 20:31:30 <fabled> shodan45, we have test .iso and large set of packages built. but there are still known issues.
2014-02-10 21:34:45 <shafire> hi
2014-02-10 21:35:12 <shafire> How can I install the gnu "ps"? Currently it's the busybox version.
2014-02-10 23:53:24 <shafire> good night
2014-02-11 07:09:23 <ncopa> gnu ps is in procps iirc
2014-02-11 08:06:56 <StarWarsFan> general question: how can i determine in which alpine-package tool XYZ is located?
2014-02-11 08:07:44 <clandmeter> StarWarsFan: i generally use http://packages.ubuntu.com
2014-02-11 08:08:38 <StarWarsFan> so the alpine packages match the content of the ubuntu packages (more or less)?
2014-02-11 08:08:58 <clandmeter> should be
2014-02-11 08:09:38 <clandmeter> sometimes the pkgname is different
2014-02-11 08:10:41 <ncopa> it should be similar to the source package name in ubuntu/debian yes
2014-02-11 08:53:11 <StarWarsFan> but it is more than strange to look at ubuntu which package i should install on alpine...
2014-02-11 08:59:40 <clandmeter> StarWarsFan: start hacking :p
2014-02-11 08:59:52 <StarWarsFan> :-)
2014-02-11 09:19:11 <fabled> StarWarsFan, apk info -W <path-to-file>
2014-02-11 09:19:15 <fabled> assuming it is installed
2014-02-11 09:20:01 <StarWarsFan> i know but that's not the question
2014-02-11 09:20:24 <StarWarsFan> $USER needs tool XYZ and want's to know on which package it is located
2014-02-11 09:27:12 <fabled> right. i think we don't have anything convenient for that atm.
2014-02-11 09:39:51 <ncopa> we could have a secondary, optional index with that
2014-02-11 09:39:58 <ncopa> even if it was only a web service
2014-02-11 09:48:55 <StarWarsFan> interesting idea
2014-02-11 09:59:07 <clandmeter> ncopa: when i install another kernel (like vanilla) shouldnt my extlinux.conf have the new kernel added automatically?
2014-02-11 10:02:18 <ncopa> it should
2014-02-11 10:03:14 <clandmeter> it didnt on my edge install
2014-02-11 10:25:38 <ncopa> apk fix linux-vanilla?
2014-02-11 10:25:47 <ncopa> do you have syslinux installed?
2014-02-11 10:25:54 <ncopa> its a trigger in syslinux package iirc
2014-02-11 10:40:30 <jzono1> I have a broken extlinux config that fails with "Undef symbol FAIL: __syslinux_debug_enabled" "failed to load COM32 file menu.c32"
2014-02-11 10:40:49 <jzono1> if I manually type grsec on the promt it boots just fine
2014-02-11 10:43:09 <ncopa> sounds like menu.c32 version mismatch with the syslinux installed
2014-02-11 10:43:23 <ncopa> maybe extlinux --update or similar fixes it
2014-02-11 10:50:06 <jzono1> update-extlinux didn't
2014-02-11 10:51:50 <royger> could you check if the version of menu.c32 in /usr/share/syslinux is the same as the one on /boot?
2014-02-11 10:53:32 <jzono1> they are identical
2014-02-11 11:59:38 <ncopa> i suppose the syslinux loader installed is different version
2014-02-11 11:59:58 <ncopa> extlinux --update /boot or similar
2014-02-11 13:26:29 <miraculli> is alpine-linux supporting KVM ?
2014-02-11 13:27:17 <clandmeter> miraculli: yes we do
2014-02-11 13:27:31 <clandmeter> part of our infra runs on kvm
2014-02-11 13:29:38 <miraculli> clandmeter: great to hear
2014-02-11 13:30:00 <rnalrd> my VPS is an Alpine KVM guest
2014-02-11 13:30:40 <ncopa> miraculli: i use KVM and libvirt for alpine development
2014-02-11 13:30:42 <miraculli> i mean as host
2014-02-11 13:30:51 <ncopa> i use it on my host
2014-02-11 13:30:54 <ncopa> desktop
2014-02-11 13:30:57 <ncopa> windows guest
2014-02-11 13:31:04 <ncopa> and various linux guests
2014-02-11 13:31:19 <miraculli> i need MS-Server w/ MS-SQL running
2014-02-11 13:31:29 <miraculli> but it works fine on Arch
2014-02-11 13:31:43 <miraculli> but i consider useing alpine over arch
2014-02-11 13:32:15 <ncopa> my win7 guest works on lvm partition works flawless
2014-02-11 13:32:45 <ncopa> libvirt has some hickups with netowrking once in a while dunno what it is
2014-02-11 13:34:32 <miraculli> i just tried ot install qemu on alpien (inside Vbox)
2014-02-11 13:35:31 <miraculli> but can not run "qemu"
2014-02-11 13:35:47 <miraculli> there is just a "qemu-nbd" command
2014-02-11 13:39:39 <ncopa> try install one of the qemu-system's
2014-02-11 13:39:47 <ncopa> apk search qemu-system
2014-02-11 13:45:53 <miraculli> do i have to modprobe any kernel modules manually to use kvm?
2014-02-11 13:49:12 <ncopa> yes
2014-02-11 13:49:27 <ncopa> modprobe kvm-intel or kvm-amd iirc
2014-02-11 13:49:38 <ncopa> but i dont know if it works with neting
2014-02-11 13:49:44 <ncopa> nesting*
2014-02-11 13:49:57 <ncopa> i dont know if that works from a vbox guest
2014-02-11 13:50:01 <ncopa> i doubt it does
2014-02-11 13:50:02 <miraculli> you are right.... that could be the problem
2014-02-11 13:50:20 <ncopa> soft emulation should work though
2014-02-11 13:50:21 <miraculli> cat /proc/cpuinfo doesn´t show anything VT
2014-02-11 13:50:43 <miraculli> i´ll give it a try on my server later
2014-02-11 13:50:51 <miraculli> thank you until now...
2014-02-11 15:14:46 <kocka> hoi
2014-02-11 18:49:18 <mothranat1848> hi
2014-02-11 18:49:55 <mothranat1848> is there somewhere an unofficial alpine build for arm, that I can try out on a raspberry ?
2014-02-11 18:52:25 <fabled> mothranat1848, at http://dev.alpinelinux.org/~tteras/alpine-edge-131224-armhf.rpi.tar.gz
2014-02-11 18:52:38 <mothranat1848> thx cool
2014-02-11 18:52:49 <fabled> package repository is at http://nl.alpinelinux.org/alpine/edge-musl/main/
2014-02-11 18:53:18 <mothranat1848> ok, on my way to try it out ;)
2014-02-11 19:46:42 <mothranat1848> fabled, nice its running
2014-02-11 21:31:08 <kocka> is it running on cubieboard as well?
2014-02-11 22:08:42 <StarWarsFan> n8@all
2014-02-12 09:09:28 <shu> Has anyone have the experience on installing a Alpine PV Dom-U on a Alpine Dom-0? (Alpine-2.7.3)
2014-02-12 09:10:21 <shu> I followed the wiki: "install PV Dom-U" and re-start the Dom-U
2014-02-12 09:10:38 <shu> But, end up with "cannot find the partition containing kernel" error
2014-02-12 09:17:23 <shu> I am trying to use Alpine Dom-0 Xen as the basis, and try to setup Alpine PV Dom-U and WinXP HVM Dom-U
2014-02-12 13:37:36 <miraculli> KVM works fine :)
2014-02-12 13:38:11 <miraculli> but i couldn´t manage to use f2fs on /
2014-02-12 14:12:31 <eto> miraculli: with kvm?
2014-02-12 14:13:02 <eto> miraculli: f2fs doesn't support bootloaders given it's log(cow) nature
2014-02-12 14:13:25 <eto> miraculli: you usually need small ext2 partition with kernel and ramdisk
2014-02-12 14:21:51 <miraculli> eto: kvm was a nother sorry
2014-02-12 14:22:02 <miraculli> yes I´ve a 100M /boot
2014-02-12 14:22:09 <miraculli> with ext2
2014-02-12 14:22:37 <miraculli> but extlinux couldn´t append the f2fs at bootup
2014-02-12 14:26:55 <eto> miraculli: i am using syslinux with f2fs, on all my usb keys no rpoblems so far it works fine
2014-02-12 14:27:47 <miraculli> okey... will try
2014-02-12 14:29:40 <eto> miraculli: arch kernel + ramdisk infrastructure supports root= kernel parameter
2014-02-12 14:30:55 <jzono1> iptables -A INPUT -p tcp -s 192.168.1.0/24 --dport 3260 -j DRO
2014-02-12 14:31:46 <jzono1> ^that iptables line, how would I translate it to awall? it's part of my loc zone, but at the same time I have one subnet in my loc zone that should have access
2014-02-12 14:32:43 <jzono1>  "loc"  : { "iface" : [ "eth0", "ib0" ] }
2014-02-12 22:31:59 <BitL0G1c> Anyone here using OpenVswitch ? It fails to start with "/var/run/openvswitch/db.sock: connection refused" (but the socket exists)
2014-02-12 22:39:43 <BitL0G1c> logs show segfault error in libgcc_s.so.1
2014-02-13 02:25:53 <duck1> ncopa: is anyone working on tinyx? http://git.tinycorelinux.net/tinyx/
2014-02-13 08:10:31 <danci1973> Good morning
2014-02-13 08:11:53 <danci1973> Is there an ACF module that would do a similar thing that Webmin's 'Custom Commands' does? So that I could easilly add an arbitrary 'file editor' or 'run this script' to the web interface?
2014-02-13 11:19:19 <danci1973> Weird - I have two firewalls (running in RAM from CF card) that are pretty much a 'mirror-image' of each other (apart from minor network settings). Yet when I use 'apk search ....' one is telling me that /media/sda1/apks/x86/APKINDEX.tar.gz has an untrusted signature, while the other is quite happy with it...
2014-02-14 01:37:37 <duck1> ncopa: is anyone working on tinyx? http://git.tinycorelinux.net/tinyx/
2014-02-14 06:59:53 <ncopa> duck1: look liks Lauri Kasanen is working on it: http://git.tinycorelinux.net/index.cgi?url=tinyx/
2014-02-14 13:50:26 <duck1> ncopa: I really meant to imply, is anyone working on packaging tinyx for alpine linux?
2014-02-14 13:53:04 <ncopa> ah, not that i am aware of no
2014-02-14 20:50:00 <puffrfish> 
ACTION puffs

2014-02-15 05:25:21 <Mp5shooter> is it possible to have a pidfile for sntpc? it always shows as stopped in rc-status
2014-02-15 05:25:26 <Mp5shooter> thinking that might be why
2014-02-15 05:25:54 <Mp5shooter> oh
2014-02-15 05:25:54 <Mp5shooter> never mind
2014-02-15 05:26:27 <Mp5shooter> killed and started, working
2014-02-15 05:26:31 <Mp5shooter> maybe it was an update i did
2014-02-15 13:23:17 <schwedenmann> Is it possible, to install alpine-linux in a extended partition. like /dev/sdb6 ?
2014-02-15 15:05:33 <mwcampbell> Is there any documentation on how to set up a musl-based installation of Alpine? I realize I'd be running from edge.
2014-02-15 15:05:43 <mwcampbell> Just want to play with musl on a system where it's the native libc.
2014-02-15 15:18:29 <clandmet1r> mwcampbell: i think there is a iso you can use
2014-02-15 15:18:49 <clandmet1r> http://dev.alpinelinux.org/~tteras/alpine-140103-x86_64.iso
2014-02-15 15:20:10 <duck1> clandmeter: there's a musl based version of alpine?
2014-02-15 15:20:27 <clandmeter> duck1: yes
2014-02-15 15:20:38 <clandmeter> we do not yet have versions
2014-02-15 15:20:53 <duck1> is there a package repo I can download from for it?
2014-02-15 15:21:10 <duck1> so the compiler + architecture + libc are not built into the package format?
2014-02-15 15:21:27 <clandmeter> sure
2014-02-15 15:21:31 <clandmeter> http://nl.alpinelinux.org/alpine/edge-musl
2014-02-15 15:22:01 <duck1> ok, you just made my day
2014-02-15 15:22:19 <duck1> now all I want is to replace gcc with llvm+clang
2014-02-15 15:22:22 <clandmeter> most of our aports have been build ok
2014-02-15 15:22:27 <duck1> and busybox with toybox
2014-02-15 15:22:35 <mwcampbell> duck1: I heard on #musl that ncopa is running it
2014-02-15 15:23:04 <clandmeter> ncopa uses it as his desktop
2014-02-15 15:24:28 <duck1> I'm using alpine for my laptop, I boot from a 12MB initramfs that bootstraps the rest of the environment.  The whole install runs from ram, so using musl should be a big win for me.
2014-02-15 15:24:54 <schwedenmann> Is a primary partition recommanded for a hdd-install ?
2014-02-15 15:25:38 <clandmeter> schwedenmann: what do you mean?
2014-02-15 15:26:22 <duck1> schwedenmann: do you meant primary vs logical?
2014-02-15 15:26:23 <mwcampbell> duck1: Interesting setup. So do you install all the packages from the net on each reboot?
2014-02-15 15:26:30 <duck1> mwcampbell: yes
2014-02-15 15:26:46 <mwcampbell> duck1: Seems like that would be a bit annoying. Why do you do it that way?
2014-02-15 15:27:21 <mwcampbell> duck1: inconvenient, I mean
2014-02-15 15:30:01 <schwedenmann> duck1: Yes, I want to install alpine -linux on /dev/sda6, which is not a primary partition, it is a multiboot machine i386 for testing installations of various linux-distris.
2014-02-15 15:31:13 <mwcampbell> duck1: I'm not criticizing, just curious about why you use that unusual setup.
2014-02-15 15:35:11 <duck1> cat /etc/local.d/rc.local.start
2014-02-15 15:35:11 <duck1> apk update
2014-02-15 15:35:11 <duck1> while read LINE ; do
2014-02-15 15:35:11 <duck1>         for ENTRY in $LINE ; do
2014-02-15 15:35:12 <duck1>                 case "${ENTRY%%=*}" in
2014-02-15 15:35:12 <duck1>                         "apks") APKS="${ENTRY##*=}"
2014-02-15 15:35:13 <duck1>                                 break;;
2014-02-15 15:35:13 <duck1>                         *)
2014-02-15 15:35:14 <duck1>                                 continue;;
2014-02-15 15:35:14 <duck1>                 esac
2014-02-15 15:35:15 <duck1>         done
2014-02-15 15:35:15 <duck1> done < /proc/cmdline
2014-02-15 15:35:16 <duck1> TMP=$IFS
2014-02-15 15:35:16 <duck1> IFS=","
2014-02-15 15:35:56 <duck1> I use the setup for a stateless system
2014-02-15 15:36:33 <mwcampbell> duck1: Would you please do a gist (https://gist.github.com) of that script?
2014-02-15 15:37:05 <mwcampbell> duck1: Do you boot from a USB drive or an HD partition?
2014-02-15 15:37:07 <duck1> schwedenmann: your boot loader should be installed to /dev/sda in the mbr, its files (how to read the filesystems) should go to your boot partition.  Then your grub.conf or lilo.conf should specify that your root partition is /dev/sda6
2014-02-15 15:41:12 <duck1> https://gist.github.com/anonymous/9020995
2014-02-15 15:41:21 <duck1> mwcampbell: better?
2014-02-15 15:41:48 <mwcampbell> duck1: thanks
2014-02-15 15:41:50 <clandmeter> schwedenmann: check setup-disk --help
2014-02-15 15:42:07 <schwedenmann> duck1: thats clear, i am using grub2 on an debian-unstable installation at sda5. I am only a bit confued, because in Wiki from alpine, there was the speech oof a primary-partition fpr installation, and as far as i know, there is no moore need fpr a primary partition, in early days ok, but now no distri needs a primary partition, except perhaps Redhat.
2014-02-15 15:43:33 <mwcampbell> duck1: Do you use any custom scripts to build the initramfs and boot configuration?
2014-02-15 15:43:49 <mwcampbell> duck1: Also, do you store any data on your laptop's hard drive, or is it all on remote servers, Chromebook style?
2014-02-15 15:44:32 <duck1> I have a cryptfs laptop hard drive that I mount as /mnt/sysroot
2014-02-15 15:44:46 <duck1> I have an ubuntu lxc container there and run google chrome from that
2014-02-15 15:46:17 <duck1> custom initramfs generator: umount alpine-pxe/proc  ; cd alpine-pxe && rm -rf proc && find . | cpio -o -H newc | xz --check=crc32 > /var/lib/tftpboot/alpine/img-edge.xz ; mkdir proc ; cd .. ; mount -t proc proc alpine-pxe/proc
2014-02-15 15:46:52 <duck1> I install the bare minimum alpine packages, then I remove the kernel modules selectively so that I only have what's necessary to boot over a network
2014-02-15 15:46:55 <mwcampbell> duck1: oh, you boot over pxe?
2014-02-15 15:47:05 <duck1> I have several boot methods.
2014-02-15 15:47:28 <duck1> I boot from my laptop from a usb stick, I boot my servers from my laptop via pxe
2014-02-15 15:47:54 <duck1> my servers use a similar rc.local.start, but I add in a section to generate the lxc containers on bootup
2014-02-15 15:48:01 <duck1> I basically use alpine as a hypervisor
2014-02-15 15:48:49 <mwcampbell> Yeah, it's small and simple enough for that.
2014-02-15 15:49:15 <duck1> mwcampbell: on my laptop, it actually installs a full gui with X and lxde
2014-02-15 15:49:22 <duck1> sorry xfce
2014-02-15 15:49:41 <mwcampbell> So on the laptop you only use lxc for Chrome?
2014-02-15 15:49:52 <duck1> I want to switch to tinyX and use wayland native and tinyX to launch google chrome
2014-02-15 15:50:05 <duck1> I use lxc to install the chroot
2014-02-15 15:50:16 <duck1> I then just run a chroot to execute google-chrome
2014-02-15 15:50:41 <mwcampbell> And presumably you run Chrome in a chroot because it can't run on Alpine directly?
2014-02-15 15:50:46 <duck1> From /usr/share/applications/google-chrome.desktop: Exec=chroot /mnt/sysroot /bin/su - user /opt/google/chrome/google-chrome %u
2014-02-15 15:50:52 <duck1> mwcampbell: yes
2014-02-15 15:51:00 <duck1> I'm having some issues with dbus and audio not passing through
2014-02-15 15:51:31 <duck1> It used to work, then I upgraded google-chrome and my chroot environment, and audio broke.  Something with dbus and pulseaudio not being detected from the chroot of the host settings
2014-02-15 15:51:59 <duck1> my lxc/chroot is the latest version of ubuntu just because their stuff is a common denominator for most projects
2014-02-15 15:52:03 <mwcampbell> Have you considered using a different browser instead?
2014-02-15 15:52:11 <mwcampbell> so the browser can be part of the stateless Alpine-based setup too?
2014-02-15 15:52:16 <duck1> do any other browsers synchronize to Google Accounts?
2014-02-15 15:52:28 <mwcampbell> oh, probably not
2014-02-15 15:52:46 <duck1> I have Firefox installed, but I use google-chrome for synchronizing tabs between my tablet, phone, laptop, work machine
2014-02-15 15:53:01 <duck1> the only issue I run into with my setup is my laptop has 2GB of ram, and the whole install runs from ram.
2014-02-15 15:53:16 <duck1> google-chrome burns through tons of ram, so my machine goes into swap hell frequently
2014-02-15 15:53:20 <mwcampbell> You could run Firefox on your tablet and your phone, if they're Android, but that's getting off-topic
2014-02-15 15:53:34 <mwcampbell> ouch, 2GB
2014-02-15 15:53:37 <duck1> mwcampbell: except I like the google services integration.
2014-02-15 15:53:49 <duck1> mwcampbell: its an old core 2 duo laptop from 7 or so years ago
2014-02-15 15:54:04 <duck1> anyways, I want to switch to Alpine+musl to reduce binary sizes even more
2014-02-15 15:54:24 <duck1> I want to switch from xorg to tinyX so that I can run xterm & google-chrome on an X server
2014-02-15 15:54:36 <mwcampbell> AFAIK, musl isn't much smaller than uClibc
2014-02-15 15:54:47 <duck1> I want to switch my desktop to Wayland with native rdp backend so that I can remote in with FreeRDP.
2014-02-15 15:55:14 <duck1> mwcampbell: well I really want to rebuild alpine using llvm+clang or ellcc so that I can have an MIT licensed OS sans kernel.
2014-02-15 15:55:29 <duck1> and switch from busybox to toybox for that reason too
2014-02-15 15:56:00 <mwcampbell> Planning to turn your setup into a commercial product?
2014-02-15 15:56:19 <mwcampbell> Nothing wrong with that, just curious
2014-02-15 15:56:20 <duck1> mwcampbell: probably right about uClibc being ~ same size as musl, however musl website says better compatability than uClibc.  anyways, the uclibc guys were essentially a fork of the busybox project, and Rob Landley broke away from busybox to do toybox over creative and licensing differences
2014-02-15 15:57:14 <duck1> If I did a commercial product, I'd keep everything open source and contribute back.  I have some ideas, but its more for embedded systems based on a beagle bone black or better small dev board.
2014-02-15 15:57:48 <duck1> so I'd like to distance myself from busybox & uClibc in favor of toybox & musl
2014-02-15 15:58:51 <mwcampbell> duck1: RIght, I'm familiar with landley's reasons for splitting with busybox.
2014-02-15 16:00:22 <mwcampbell> Does Alpine not have Chromium because Chromium is too glibc-dependent, or is it just that nobody has tried yet?
2014-02-15 16:01:19 <clandmeter> we did have chrome
2014-02-15 16:01:28 <clandmeter> its in unmaintained
2014-02-15 16:01:49 <duck1> clandmeter: chrome or chromium?
2014-02-15 16:02:06 <mwcampbell> I figured actual Chrome was out of the question
2014-02-15 16:02:10 <duck1> mwcampbell: there was chromium, its google-chrome I use though, chromium doesn't get me what I want.
2014-02-15 16:02:25 <clandmeter> http://git.alpinelinux.org/cgit/aports/tree/unmaintained/chromium
2014-02-15 16:03:08 <duck1> clandmeter: that's chromium not chrome
2014-02-15 16:03:29 <clandmeter> yes i can read, i just cant type.
2014-02-15 16:03:33 <mwcampbell> Chromium can still be built with Google API keys IIUC.
2014-02-15 16:03:49 <duck1> mwcampbell: got links for that, news to me
2014-02-15 16:04:37 <mwcampbell> http://www.chromium.org/developers/how-tos/api-keys
2014-02-15 16:04:39 <duck1> its actually the flash integration, native pdf reader, and google tabs integration that sells me on Chrome over anything else
2014-02-15 16:05:01 <mwcampbell> oh, no go on Flash and PDF AFAIK
2014-02-15 16:05:27 <mwcampbell> Well, Flash is definitely out for a native Alpine build because it requires glibc
2014-02-15 16:05:50 <mwcampbell> And the PDF renderer isn't open-source because Google licensed it from a third party
2014-02-15 16:06:22 <mwcampbell> So yeah, I guess you still have to run Chrome in a chroot
2014-02-15 16:20:41 <duck1> mwcampbell: I'm looking into pdf.js and there's an ooffice.js somewhere to see if I can setup my own chrome apps to do document editing/viewing, so I may just need the chrome sync down the road.
2014-02-15 16:21:33 <mwcampbell> duck1: You mentioned Flash, though. I'd say that's a deal killer if you still need it these days.
2014-02-15 16:21:58 <mwcampbell> duck1: I happily use Firefox without Flash though, and it plays YouTube videos, including VEVO music videos.
2014-02-15 16:22:32 <mwcampbell> yeah, I probably just lost all my nerd cred :)
2014-02-15 16:22:37 <duck1> until kongregate.com, ageofgames.com, and armorgames.com give up on flash games, yes I still use it
2014-02-15 16:22:44 <duck1> VEVO?
2014-02-15 16:23:08 <mwcampbell> only indirectly, if it's the top result when I google for a song
2014-02-15 16:23:17 <duck1> though, you make a compelling argument for me to try chromium+api-keys, so I may do that alpine native, and then have a gaming browser elsewhere
2014-02-15 16:23:29 <duck1> what is VEVO?
2014-02-15 16:24:08 <mwcampbell> Basically, IIUC, it's a partnership between Google and the major record labels to post official music videos online
2014-02-15 16:25:02 <mwcampbell> I didn't know what you used Flash for, so I was just mentioning the one use case that used to matter at all to me
2014-02-15 16:26:43 <mwcampbell> duck1: regarding document editing, given that you're tight on memory, might it be better to use a native word processor app, sans the browser bloat?
2014-02-15 16:26:58 <mwcampbell> although OpenOffice/LibreOffice is itself pretty monstrous
2014-02-15 16:27:11 <duck1> mwcampbell: I *always* have a browser open, not interested in a native word processor outside of vim
2014-02-15 16:27:32 <duck1> so until vim can display graphics, I'll use the browser for rich multimedia document editing
2014-02-15 16:28:05 <mwcampbell> That's not something I even do (I always write in plain text or Markdown), so I can't comment further.
2014-02-15 16:28:55 <duck1> I'm looking to switch to asciidoc
2014-02-15 16:29:13 <duck1> but usually I'm reading pdf's that I download, and I prefer to render directly to the browser vs save a permanent copy
2014-02-15 16:29:26 <duck1> mwcampbell: any idea on wayland on Alpine?
2014-02-15 16:29:42 <mwcampbell> dunno, I'm an Alpine newbie
2014-02-15 16:30:24 <duck1> mwcampbell: what distro you switch from?
2014-02-15 16:30:46 <mwcampbell> Ubuntu
2014-02-15 16:30:47 <duck1> I was gentoo, then ubuntu, then Arch, now Alpine.
2014-02-15 16:30:56 <duck1> ubuntu is just so buggy, I can't take it.
2014-02-15 16:31:35 <mwcampbell> OK, confession time. I currently run Linux in a VM; my primary host OS on my desktop is Windows.
2014-02-15 16:31:43 <mwcampbell> I periodically think of reversing that relationship though
2014-02-15 16:36:46 <mwcampbell> Can the official Alpine ISOs be written to a USB flash drive as-is?
2014-02-15 16:36:49 <mwcampbell> i.e. are they hbrid ISOs?
2014-02-15 16:36:58 <clandmeter> no
2014-02-15 16:37:26 <duck1> mwcampbell: its not hard to rip out the kernel & initramfs and write a new bootloader to the USB drive
2014-02-15 16:37:59 <mwcampbell> duck1: Good point.
2014-02-15 16:39:19 <clandmeter> its easy to install it from windows. just copy the content to usb drive and use syslinux to install the bootloader/mbr
2014-02-15 16:40:00 <duck1> love me syslinux
2014-02-15 16:40:02 <mwcampbell> OK, I'm not *that* much of a Linux noob. Just lazy sometimes when it comes to doing research before asking questions
2014-02-15 16:42:24 <duck1> mwcampbell: as it should be in the age of lmgtfy.com
2014-02-15 18:06:18 <jzono1> how sensible is the defaul mysql configuration when it comes to security? do I need to do much configuring to safely run it exposed to the rest of the world? or can I just open up the port and add users and not worry much about it?
2014-02-15 22:42:11 <duck1> jzono1: typically services that are not network services should never be exposed directly to the world
2014-02-15 23:30:02 <jzono1> duck1: I know, and I wouldn't open up a normal mysql server directly to the world.
2014-02-15 23:30:44 <jzono1> I do *need* to open this one to the world, and I've found usefull information about how I should lock it down
2014-02-15 23:31:35 <BitL0G1c> I'm setting up a mysql server to run inside an alpine LXC guest in Alpine - if you use the MAC VLAN interface type not even the host can ping it
2014-02-15 23:32:09 <BitL0G1c> containerops.org shows you how to setup a DMZ
2014-02-15 23:32:55 <duck1> jzono1: dns, ldap, snmp, smtp, imap, etc. can be exposed to the world
2014-02-15 23:33:57 <duck1> jzono1: The issue boils down to the mysql tcp server code and how it handles logins.  If someone can login, or cause a DoS of your mysql instance, is that a problem?  For the most part, if you force encryption to the mysql port for login, you're fairly safe except for nation state decryption.
2014-02-15 23:34:39 <duck1> jzono1: the LXC guest running mysql offers a level of seperation from the kernel runtime and the container runtime, but there are LXC exploits to bypass the namespace limitations.
2014-02-15 23:37:06 <jzono1> I run nothing of production value on it, just a whole bunch of small non-important databases for learning sql. I need to let in 3 other people to it, and I must avoid unneccesary complications. I'd never run a production sql server open to the world
2014-02-15 23:37:19 <duck1> BitL0G1c: it doesn't matter if the host can ping the LXC guest, what matters if the network interface is up, and processing traffic
2014-02-15 23:37:38 <duck1> jzono1: run it as non-root user, and you should be fine
2014-02-15 23:37:56 <BitL0G1c> when alpine has the 3.13 kernel (a requirement for LXC 1.00) - the guests can run as a user not root
2014-02-15 23:37:58 <duck1> jzono1: if you run it in a LXC container, even better, but that's a limited security improvement
2014-02-15 23:39:11 <jzono1> since I without problems can disable a lot of the features that can leave a mysql server open to attack I'm thinking just non-root is good enough
2014-02-15 23:39:39 <duck1> BitL0G1c: the kernel processes network packets, passes through to userspace, exploits can happen in kernel or userspace, but most likely in userspace.  My last read of LXC was that it created a new kernel namespace to run a new init process.  So it has a distinct pid 1 in a new namespace.  The root user of the lxc container was essentially the same as the host kernel, but the LXC stuff was trying to lock that down better, I hadn't heard the
2014-02-15 23:41:00 <duck1> jzono1: an attacker looks for an exploit against the exposed network services, i.e. mysql.  If they can gain user access to the machine via mysql, they'd then look for a local privelege escalation from the mysql user to root.  Since you're assumably running alpine, you have grsec and uclibc working in your favor as most kernel exploits will be stopped by grsec, and uclibc will defeats rop attacks targeted at glibc
2014-02-15 23:42:48 <BitL0G1c> unprivileged LXC containers https://www.stgraber.org/2014/01/17/lxc-1-0-unprivileged-containers/
2014-02-15 23:44:45 <duck1> BitL0G1c: ya, that's only 4 weeks old, I missed those advances.  Thanks for the update that LXC 1.0 fixes that issue for security purposes
2014-02-15 23:45:59 <BitL0G1c> will try building 1.0 rc2 from git https://github.com/lxc/lxc/releases
2014-02-15 23:47:16 <BitL0G1c> has anyone got openvswitch working ?
2014-02-15 23:51:27 <duck1> BitL0G1c: wow, that's a great link, thanks for posting.  Too bad its not possible for loopback mounts or ext filesystem mounts with userspace LXC containers.
2014-02-15 23:51:55 <jzono1> hmm. anyone around with good knowledge of awall?
2014-02-15 23:52:02 <duck1> BitL0G1c: what are you using openvswitch for?  I personally only ever use standard bridge utils and ethernet bonding.
2014-02-15 23:54:27 <BitL0G1c> was just going to use it with the 3 LXC guests (php / mysql / nginx)
2014-02-15 23:54:48 <BitL0G1c> it seems to be a bit more efficient than the bridging in the kernel
2014-02-15 23:55:08 <BitL0G1c> eth0 will not have to run in promiscuous mode
2014-02-15 23:55:32 <BitL0G1c> also - openflow tables can act as firewalls
2014-02-15 23:56:20 <BitL0G1c> nginx has 2 interfaces - one veth + 1 mac vlan
2014-02-15 23:56:43 <BitL0G1c> php & mysql guests have one mac vlan each
2014-02-15 23:57:12 <BitL0G1c> nginx / php / mysql can all talk to each other on 10.xxxx
2014-02-15 23:59:23 <BitL0G1c> with openvswitch the 2nd bridge for this setup could act as a firewall to the 2 dmz guests (php & mysql) - so they have internet access out to update themselves
2014-02-16 00:00:43 <duck1> how are you guaging efficiency?
2014-02-16 00:01:02 <BitL0G1c> https://blog.flameeyes.eu/2012/08/a-good-reason-not-to-use-network-bridges
2014-02-16 00:04:06 <jzono1> keep theoretical vs actual performance overhead in mind when looking at promiscious mode. the cost of running in promiscious mode will vary depending on the amount of trafic it actually receives
2014-02-16 00:05:05 <jzono1> is it really going to make a difference in your useage case, with your load and network trafic situation? if not, why make things more complicated than they need to be?
2014-02-16 00:05:06 <BitL0G1c> for a high volume webserver - it will be more of a hit in promiscuous mode than with openvswitch
2014-02-16 00:05:25 <BitL0G1c> yes was thinking it may be overkill
2014-02-16 00:06:13 <duck1> BitL0G1c: they describe static routing on the host to avoid the bridging penalty, so may be able to leverage that to avoid the arp broadcast storms they're referring to
2014-02-16 00:06:56 <BitL0G1c> all the guests have static 10.xxx
2014-02-16 00:07:48 <duck1> BitL0G1c: using a reverse proxy?  nginx, apache, lighttpd, haproxy, other?
2014-02-16 00:08:16 <BitL0G1c> nginx as the web server
2014-02-16 00:08:48 <duck1> use nginx as a reverse proxy?
2014-02-16 00:09:31 <BitL0G1c> I could do I suppose - I've only ever used it directly
2014-02-16 00:48:55 <BitL0G1c> here is the performance figures for openvswitch versus linux bridging on more than 2 hosts http://www.opencloudblog.com/?p=96
2014-02-16 00:49:22 <BitL0G1c> The short summary is:  Use Openvswitch and Openvswitch internal ports – in the case of one  iperf thread you get 6.9 GBit/s throughput per CPU Ghz. But this  solution does not provide any iptables rules on the link. If you like the old linuxbridge and veth pairs you get only 0.7  GBit/s per CPU Ghz throughput. With this solution it’s possible to  filter the traffic on the network namespace links.
2014-02-16 00:57:11 <duck1> BitL0G1c: thanks for that, very informative
2014-02-16 00:59:32 <BitL0G1c> openvswitch looks like the way to go - "openflow" which works with it can act as a firewall on the switch
2014-02-16 01:02:02 <BitL0G1c> openswitch 2.3 should support the 3.13 kernel (so unprivileged LXC containers will be possible with it) - kernel table @ http://git.openvswitch.org/cgi-bin/gitweb.cgi?p=openvswitch;a=blob_plain;f=FAQ;hb=HEAD
2014-02-16 01:10:56 <BitL0G1c> some very good VPS offers today for the USA http://lowendbox.com/blog/bluevm-3-great-openvz-deals-in-6-locations-across-the-usa/ - "feathur" is a very nice control panel - nicer than Solus VM. They also have 1 x 8gb KVM for $25 / month
2014-02-16 01:12:00 <BitL0G1c> does anyone have an OpenVZ template for Alpine ?
2014-02-16 10:01:18 <BitL0G1c> www.bettercrypto.org - open source guide to applied crypto hardening
2014-02-16 11:18:58 <BitL0G1c> www.duosecurity.com/docs/openvpn - 2 factor authentication for openvpn
2014-02-16 16:58:13 <mwcampbell> Has anyone here seriously considered making static linking the default for Alpine packages?
2014-02-16 16:58:23 <mwcampbell> that is, for things that don't absolutely rely on dynamic linking, like Python
2014-02-16 16:58:49 <mwcampbell> I saw a userland rootkit on Hacker News. Granted, something like that would have to be adapted for uClibc or musl, but it sems to me that widespread static linking would be the best defense.
2014-02-17 02:26:41 <duck1> mwcampbell: static linking doesn't help with libc ROP attacks
2014-02-17 16:44:19 <ct2001> hi i am trying to setup wifi on alpine linux 2.6. I used the instructions list http://wiki.alpinelinux.org/wiki/Connecting_to_a_wireless_access_point .. it works fine but when i reboot i get an error saying wpa_supplicant needs service(s) dbus
2014-02-17 17:01:18 <clandmeter> ct2001: any reason you use 2.6/
2014-02-17 17:01:19 <clandmeter> ?
2014-02-17 17:18:08 <ct2001> i tried on 2.4 also and same issue
2014-02-17 17:36:33 <ct2001> or is it working on a different version?
2014-02-17 19:54:29 <crow> clandmeter: is there an way to include svn revision number in oscam package?
2014-02-17 19:55:34 <crow> reason is that this does not realy say everything about revision 'Upgrading oscam@edge (0_svn20131023-r0 -> 0_svn20140109-r0)'
2014-02-17 20:10:23 <crow> clandmeter normaly it looks like this 'version 1.20-unstable_svn, build r9482 (i686-linux-gnu)'
2014-02-17 22:10:57 <darkfader> hrmpf
2014-02-17 22:11:13 <darkfader> about time to setup a glibc chroot to run megacli
2014-02-17 22:16:10 <darkfader> any idea where bsdtar in that howto came from"
2014-02-17 22:16:12 <darkfader> http://wiki.alpinelinux.org/wiki/Running_glibc_programs
2014-02-17 22:16:16 <darkfader> it uses
2014-02-17 22:16:19 <darkfader> bsdtar xfJ $i -C ~/chroot
2014-02-17 23:11:39 <darkfader> i found that in libarchive-tools
2014-02-17 23:12:02 <darkfader> but it seems all the instructions are broken since archlinux moved stuff from /bin to /usr/bin
2014-02-17 23:12:39 <darkfader> i dont know why it causes so many issues, but it does:
2014-02-17 23:13:00 <darkfader> dave0002:~# chroot chroot /bin/sh
2014-02-17 23:13:00 <darkfader> \h:\w\$ /opt/MegaRAID/MegaCli/MegaCli
2014-02-17 23:13:00 <darkfader> /bin/sh: /opt/MegaRAID/MegaCli/MegaCli: not found
2014-02-17 23:13:00 <darkfader> \h:\w\$ /usr/bin/ldd /opt/MegaRAID/MegaCli/MegaCli
2014-02-17 23:13:00 <darkfader> /bin/sh: /usr/bin/ldd: not found
2014-02-17 23:36:59 <duck1> ncopa: I'm getting a conflict between libotr and pidgin-otr, libotr wants libgcrypt-1.6 and pidgin-otr libgcrypt-1.5.  Did I screw up my apk cache somehow?
2014-02-18 07:02:59 <ncopa> duck1: no i think we forget rebuild pidgin-otr when upgrading libgcrypt
2014-02-18 08:19:39 <clandmeter> crow: i havent found a way to include the svn rev in the version number.
2014-02-18 08:20:33 <clandmeter> but you have the date, you can crossref it with oscam repo
2014-02-18 08:21:23 <clandmeter> if there is anything new, i can create a new snapshot.
2014-02-18 08:21:50 <clandmeter> they should do proper versioning...
2014-02-18 09:00:02 <clandmeter> crow: should be fixed in latest version. apk update && apk upgrade
2014-02-18 18:46:34 <Radek_> Hello, I've simple question.  Is it normal when I execute command halt that the machine finally do not switch power off?
2014-02-18 18:49:58 <Radek_> after halt it goes to strange state that even "power off" do not work.
2014-02-18 18:50:16 <Radek_> luckilly "power off hard" or "power reset" works.
2014-02-18 20:16:12 <crow> clandmeter thank you, let me try it
2014-02-18 20:36:00 <crow> clandmeter (1/1) Upgrading oscam@edge (0_svn20140109-r0 -> 0_svn20140218-r1)
2014-02-19 13:10:26 <jzono2> hi
2014-02-19 13:11:04 <jzono2> my syslinux booting problems persist, and the last change I did has left me with a completely unbootable system
2014-02-19 13:11:08 <jzono2> what now?
2014-02-19 13:12:06 <jzono2> this is the error I get: syslinux 6.02 edd load error - boot error
2014-02-19 13:12:33 <ncopa> you boot from disk?
2014-02-19 13:12:38 <jzono2> last troubleshooting step was telling it to update the files in /boot
2014-02-19 13:12:39 <jzono2> yes
2014-02-19 13:13:28 <ncopa> create a boot usb for rescue
2014-02-19 13:13:44 <ncopa> from there try fix the /boot
2014-02-19 13:13:51 <jzono2> Im working on that right now
2014-02-19 13:14:28 <ncopa> the *.32 files installed in /boot should correspond with syslinux version
2014-02-19 13:14:42 <ncopa> *.c32
2014-02-19 13:15:00 <ncopa> copy the files from /usr/share/syslinux/ or so
2014-02-19 13:15:08 <ncopa> to a mounted /boot
2014-02-19 13:15:20 <ncopa> and run extlinux --update /boot
2014-02-19 13:15:35 <jzono2> thats one of the things I checked when I messed with it, my c32s were identical to the ones in /usr/share
2014-02-19 13:16:00 <ncopa> you could also ask in #syslinux
2014-02-19 13:16:06 <ncopa> oh, one thing more
2014-02-19 13:16:22 <ncopa> i think it might pick up /syslinux.cfg or /boot/syslinux/syslinux.cfg if you have any such
2014-02-19 13:16:34 <ncopa> i dont remember which order it looks
2014-02-19 13:16:37 <jzono2> extlinux --update /boot is what left the system unbootable
2014-02-19 13:17:22 <ncopa> it could also be that one of the c32 deps were missing
2014-02-19 13:17:37 <ncopa> syslinux has switched to elf format
2014-02-19 13:18:08 <ncopa> which is the exact list of .c32 files you have there?
2014-02-19 13:20:34 <jzono2> hang on. still working on preparing the usb stick
2014-02-19 13:24:10 <BitL0G1c> when I had an unbootable system recently - I booted a CD & mounted the partitions under /mnt & (bind mounted dev etc for a chroot) - then ran "apk fix --root /mnt" & this reinstalls the kernel & all the needed files in /boot
2014-02-19 13:30:01 <jzono2> ncopa: ldlinux, libcom32, libutil, mboot, menu
2014-02-19 13:31:40 <ncopa> thats what i have here too, on my desktop computer
2014-02-19 13:31:49 <ncopa> hm...
2014-02-19 13:34:22 <ncopa> i'm googling that  "edd load error - boot error"
2014-02-19 13:34:58 <darkfader> apk fix is sweet, didn't know that yet
2014-02-19 13:35:37 <freedomrun> man I can`t remember how did I fixed this last time ... acf is not ... well it is half forking ... I replaced minihttp with lighttpd on https port but when I point browser on https://localip/ it wants to download acf.bin file if I specify https://localip/acf then error 404 comes up, anyone have any suggestion or idea of what this could be (what config?) when someone have time for this ofc
2014-02-19 13:36:53 <jzono2> Ive chrooted myself in, and for some reason apk fails to get anything done: unable to lock database & unable to open apk database
2014-02-19 13:37:43 <ncopa> you mihgt need mount /proc and /sys
2014-02-19 13:37:51 <ncopa> check dmesg also
2014-02-19 13:37:55 <jzono2> I did
2014-02-19 13:38:09 <ncopa> grsecurity pust some restrictions to chroot
2014-02-19 13:38:13 <ncopa> puts*
2014-02-19 13:38:39 <ncopa> if its grsec that denies you then dmesg should show it
2014-02-19 13:38:42 <jzono2> nothing unusual in dmesg
2014-02-19 13:41:39 <ncopa> can you do: less /lib/apk/db/installed ?
2014-02-19 13:41:47 <ncopa> and read it?
2014-02-19 13:42:03 <ncopa> possibly run apk in strace and find out what is blocking it
2014-02-19 13:42:32 <ncopa> i dont think you should need run in chroot to fix up /boot and extlinux
2014-02-19 13:43:04 <jzono2> I guess not
2014-02-19 13:43:44 <jzono2>  /lib/apk/db/installed can be read just fine by less under the chroot
2014-02-19 13:43:59 <jzono2> so, how do I fix it from outside the chroot?
2014-02-19 13:44:41 <ncopa> apk add syslinux
2014-02-19 13:45:11 <ncopa> check that the version of syslinux is same as in your sysroot
2014-02-19 13:45:37 <ncopa> then mount /dev/sda1 (or where your boot is) some place, like /mnt
2014-02-19 13:45:49 <ncopa> and extlinux --update /mnt
2014-02-19 13:46:01 <ncopa> it should print, boot is /dev/sda1 or similar
2014-02-19 13:46:33 <ncopa> it might be you need do: extlinux --install /mnt
2014-02-19 13:46:47 <jzono2>  /mnt is device /dev/sde1
2014-02-19 13:47:06 <ncopa> and apk version syslinux?
2014-02-19 13:47:15 <ncopa> same version as the .c32 that is in /mnt ?
2014-02-19 13:47:37 <ncopa> also, search if you have any unexpected syslinux.cfg in there
2014-02-19 13:47:42 <ncopa> find /mnt -name syslinux.cfg
2014-02-19 13:47:42 <jzono2> shouldnt I give it /mnt/boot?
2014-02-19 13:48:00 <ncopa> sure
2014-02-19 13:48:01 <ncopa> yes
2014-02-19 13:48:20 <ncopa> if your /boot is not on separate partition (on target system)
2014-02-19 13:48:25 <ncopa> then yes, /mnt/boot
2014-02-19 13:49:02 <jzono2> it is on the same partition
2014-02-19 13:49:09 <ncopa> ok
2014-02-19 13:49:14 <ncopa> then /mnt/boot yes
2014-02-19 13:50:11 <ncopa> hm
2014-02-19 13:50:31 <ncopa> i wonder if the problem was that extlinux --install was needed, and not only --update
2014-02-19 13:52:00 <jzono2> still the same error :/
2014-02-19 14:02:56 <ncopa> hm
2014-02-19 14:03:28 <ncopa>  i wonder what edd error means
2014-02-19 14:04:47 <ncopa> jzono2: I'm asking in #syslinux
2014-02-19 15:03:15 <jzono2> oh come on. boot!
2014-02-19 15:05:13 <jzono2> there we go. its not pretty, but starting it from an usb drive lets me put off fixing this till later :)
2014-02-19 15:05:37 <ncopa> sorry about that...
2014-02-19 17:21:32 <miraculli> is ist possible to install a pinned pkg with all dependancies?
2014-02-19 17:21:52 <miraculli> i want to add "mongodb" from the testing repo
2014-02-19 17:22:20 <miraculli> with "apk add mongodb@testing" i just get a list of dependancies
2014-02-20 03:55:50 <aji> #alpine-linux
2014-02-20 06:51:47 <BitL0G1c> LXC RC4 https://github.com/lxc/lxc/releases/tag/lxc-1.0.0.rc4 - 1.0 release today or tomorrow
2014-02-20 08:35:36 <ncopa> yeah, should upgrade to lxc-1.0_rc
2014-02-20 08:40:18 <BitL0G1c> "So this is my final blog post before LXC 1.0 is finally released. We’re  currently at rc3 with an rc4 coming a bit later today and a final  release scheduled for tomorrow evening or Thursday morning." - RC4 is on git - I just built a pkg for debian
2014-02-20 09:56:59 <kozak> how to mount nfs share at boot alpine linux ?
2014-02-20 09:57:11 <clandmeter> add to fstab?
2014-02-20 09:57:42 <kozak> not working
2014-02-20 09:57:58 <clandmeter> are you starting nfs deps on boot?
2014-02-20 09:58:30 <clandmeter> or just nfs if thats enough (cant remember)
2014-02-20 09:58:31 <kozak> yes
2014-02-20 09:58:52 <clandmeter> you get an error?
2014-02-20 09:58:54 <kozak> 192.168.100.37:/mnt/main/nfs/mail /mnt/vmail/ rw 0 0
2014-02-20 09:59:26 <clandmeter> can you mount it after boot?
2014-02-20 09:59:51 <kozak> only by hand
2014-02-20 10:00:24 <clandmeter> by has as in mount /mnt/vmail ?
2014-02-20 10:00:31 <clandmeter> s/has/hand
2014-02-20 10:00:41 <kozak> yes
2014-02-20 10:00:59 <clandmeter> no error in your logs?
2014-02-20 10:01:24 <clandmeter> or on screen when it boots
2014-02-20 10:04:19 <kozak> no errors on screen
2014-02-20 10:21:47 <clandmeter> not in syslog nor dmesg?
2014-02-20 10:22:01 <kozak> nothing
2014-02-20 10:22:18 <BitL0G1c> I also found the same mounting a samba share in Alpine (fstab = //10.0.2.2 /mnt cifs etc.....) - running mount -a once it had booted worked fine
2014-02-20 10:24:49 <clandmeter> kozak: is localmount added to init?
2014-02-20 10:27:43 <kozak> clandmeter, in Dynamic Runlevel: needed
2014-02-20 10:28:39 <kozak> rpc.statd in Runlevel: default
2014-02-20 10:30:53 <clandmeter> kozak: try rc-update add localmount boot
2014-02-20 10:31:22 <BitL0G1c> I was missing localmount too
2014-02-20 10:31:36 <clandmeter> i think its when you run from ram
2014-02-20 10:33:45 <kozak> clandmeter, rc-service nfsmount start helped me
2014-02-20 10:34:13 <kozak> nfsmount service must be in init
2014-02-20 10:59:39 <clandmeter> kozak: if you find out how, can you add it to wiki? i see no such in on wiki.
2014-02-20 11:01:10 <kozak> clandmeter, ok
2014-02-20 11:09:36 <clandmeter> s/in/info
2014-02-20 11:40:16 <clandmeter> vkrishn around?
2014-02-20 12:01:05 <ncopa> kozak: rc-update add netmount
2014-02-20 12:01:42 <ncopa> or maybe its nfsmount
2014-02-20 12:08:47 <clandmeter> ncopa: on musl lxc i get: auth.info sshd[496]: wtmp_write: problem writing /dev/null/wtmp: Not a directory
2014-02-20 12:09:34 <ncopa> what lxc version?
2014-02-20 12:09:37 <ncopa> the last one?
2014-02-20 12:09:50 <ncopa> 1.0.0.rc4?
2014-02-20 12:10:13 <clandmeter> no
2014-02-20 12:10:29 <clandmeter> 0.9
2014-02-20 12:10:33 <ncopa> try upgrade to 1.0.0
2014-02-20 12:10:37 <ncopa> i just pushed it
2014-02-20 12:10:50 <clandmeter> im running stable
2014-02-20 12:11:01 <ncopa> oh
2014-02-20 12:11:12 <clandmeter> ssh works
2014-02-20 12:11:17 <ncopa> its a musl guest
2014-02-20 12:11:26 <clandmeter> i just found it a weird msg
2014-02-20 12:11:45 <ncopa> yeah, something looks wrong
2014-02-20 12:11:45 <clandmeter> i guess that needs to be /var/log/wtmp
2014-02-20 13:23:47 <darkfader> royger: is there any overview of the xen block scripts and architecture? we're fiddling with storage domUs at the moment (mostly for fun)
2014-02-20 13:24:18 <darkfader> and would like to build something that recreates all blockdev exports if the storage domain is ever crashed / rebooted
2014-02-20 13:24:54 <darkfader> but we can't find a way to find *how* the nodes in storage domain and domU are even generated
2014-02-20 13:25:29 <darkfader> (we'll just put them back in using xenstore for a test, but how it's done *proper* is just black magic right now, and not the cool one)
2014-02-20 14:15:50 <royger> darkfader: do you mean the xenstore backend nodes?
2014-02-20 14:17:49 <royger> darkfader: if the storage DomU crashes, all those backend xenstore nodes are deleted, I guess we should teach libxl to recreate those nodes when the driver domain is rebooted
2014-02-20 14:56:45 <darkfader> royger: is there anyone i can paypal-send 3-4 pizzas to in favour of considering this more deeply?
2014-02-20 14:58:10 <darkfader> and in theory, right now, if we re-insert all backend nodes (adjusting whatever domID changed, but keeping vbd num the same, will it work again? I'm afraid one also need to inappropriately touch the vbd state or re-wire event channels
2014-02-20 14:58:19 <darkfader> if no, it's not as bad as it looks right now
2014-02-20 14:59:58 <royger> darkfader: well, you will have to change the backend paths that are written on frontend xenstore nodes, and probably reset them to state 1 (that depends on the specifc frontend implementation)
2014-02-20 15:00:35 <darkfader> ty
2014-02-20 15:01:00 <darkfader> the first part is understood :>
2014-02-20 15:01:21 <darkfader> state 1 is something like "connecting"
2014-02-20 15:01:28 <royger> event channels should not be touched, becuase they are announced by the frontend, not the backend
2014-02-20 15:01:36 <darkfader> http://m.blog.csdn.net/blog/xianfengdesign/1621647 is what i try to get in my head
2014-02-20 15:01:39 <darkfader> cool
2014-02-20 15:01:48 <royger> state 1 is the first state
2014-02-20 15:02:01 <darkfader> ok
2014-02-20 15:02:39 <royger> I'm currently working on this, but I don't have much time right now
2014-02-20 15:02:58 <darkfader> we saw a patchset for the xl support by you hehe
2014-02-20 15:03:21 <royger> my next step will be to enable storage driver domains to work with HVM guests, then I can look into this storage driver domain reset stuff :)
2014-02-20 15:03:59 <royger> all the kernel side pieces are there, it's just a matter of orchestrating them properly from libxl
2014-02-20 15:04:30 <darkfader> we both here don't know any C, just talked about how we could help, but inside xl's guts it's too hard
2014-02-20 15:05:20 <darkfader> testing: anything you want. pizza, as mentioned, and no hurry since as of 2 days ago i was still assuming "lol, yeah, won't work anyway if we try it"
2014-02-20 15:10:25 <royger> darkfader: AFAIK the Qubes OS guys make intensive usage of driver domains for networking stuff, and they can destroy & recreate them almost on the fly, but I have no idea how they accomplish it
2014-02-20 15:10:45 <royger> darkfader: it might be worth posting a message to xen-devel about this, someone might be able to provide more info
2014-02-20 15:12:17 <darkfader> royger: i'm sorting it in my head so i know what to write
2014-02-20 15:12:35 <darkfader> otherwise it'll be another interesting unanswered mail on the xen lists :)
2014-02-20 15:13:48 <darkfader> $colleague is now updating his arch xen host and will go to dependency hell
2014-02-20 15:14:05 <royger> darkfader: right :)
2014-02-20 15:14:22 <royger> hehehe, not sure about arch Xen package status
2014-02-20 15:14:39 <royger> I don't think they have changed much from 4.2 or 4.3
2014-02-20 15:17:23 <darkfader> they have a dependency on bluez and renamed it in between releases. serious work went down the drain, we're just having fun about broken packages :)
2014-02-20 15:38:37 <royger> darkfader: bluez, wtf is that?
2014-02-20 15:39:51 <royger> darkfader: Xen on arch depends on BlueZ? that seems completely unrelated to Xen at all
2014-02-20 15:39:54 <darkfader> bluetooth, that's the amusing thing
2014-02-20 15:40:21 <darkfader> must be some mistake
2014-02-20 15:40:33 <darkfader> packager or problem between chair and keyboard
2014-02-20 15:42:15 <royger> dunno, maybe Qemu can somehow make use of that
2014-02-20 15:42:46 <darkfader> i gotta try Qubes soon, it's so interesting but i never get around to it
2014-02-20 15:44:34 <royger> I've seen it, and it looks quite good, but I'm not that much paranoic to install it on my laptop :)
2014-02-20 16:15:09 <darkfader> hargl i fell for it again
2014-02-20 16:15:30 <darkfader> upgrade, sync, xl shutdown -a -w, segfault because i updated :>
2014-02-20 16:15:41 <darkfader> i should make a note somewhere
2014-02-20 17:02:36 <CcxCZ> is it possible to have root on mdraid/lvm2?
2014-02-20 17:11:05 <BitL0G1c> @CcxCZ - I run encrypted LVM on my server & have a root user
2014-02-20 17:12:03 <CcxCZ> I mean root of filesystem, not root user
2014-02-20 17:13:05 <BitL0G1c> everything but boot
2014-02-20 17:14:09 <CcxCZ> ok, what's the syntax for the initrd to recognise that? anything special or just root=/dev/mapper/vg-lv?
2014-02-20 17:14:59 <BitL0G1c> yes
2014-02-20 17:17:21 <BitL0G1c> & make sure /etc/mkinitfs/mkinifs.conf has lvm as an option (I think it does by default)
2014-02-20 17:18:02 <CcxCZ> it does not. does raid mean mdraid?
2014-02-20 17:18:32 <BitL0G1c> not sure - dont use raid
2014-02-20 17:18:55 <BitL0G1c> i think the wiki mentions mdraid & lvm
2014-02-20 17:24:32 <BitL0G1c> http://wiki.alpinelinux.org/wiki/Setting_up_a_software_RAID1_array
2014-02-20 17:28:48 <BitL0G1c> https://wiki.archlinux.org/index.php/Software_RAID_and_LVM
2014-02-20 17:34:02 <CcxCZ> I know mdraid and lvm well, it's just matter of making the initrd start it up and mount the root
2014-02-20 17:34:12 <CcxCZ> but nvm, got alternate solution already
2014-02-20 17:55:55 <BitL0G1c> just make sure the kernel option for raid is in /etc/mkinitfs/mkinitfs.conf - to regenerate the initfs for LUKS - I ran "apk fix --root /mnt" (with dev etc bind mounted into the /mnt chroot)
2014-02-20 17:59:11 <BitL0G1c> "apk fix linux-grsec --root /mnt"
2014-02-20 20:03:51 <kocka> re
2014-02-20 20:03:59 <kocka> after installing iptables
2014-02-20 20:04:10 <kocka> # iptables -L
2014-02-20 20:04:10 <kocka> modprobe: can't change directory to '3.10.28-0-grsec': No such file or directory
2014-02-20 20:04:13 <kocka> iptables v1.4.20: can't initialize iptables table `filter': Table does not exist (do you need to insmod?)
2014-02-20 20:04:17 <kocka> Perhaps iptables or your kernel needs to be upgraded.
2014-02-20 20:04:17 <kocka> oh
2014-02-20 20:04:19 <kocka> hm
2014-02-20 21:21:58 <darkfader> any hint if a vm doesn't boot any more after updating?
2014-02-20 21:22:02 <darkfader> i get raise RuntimeError, "Unable to find partition containing kernel" only
2014-02-20 21:22:32 <darkfader> had updated to 2.7 and it seemed to have gone well
2014-02-20 21:24:18 <darkfader> log http://hastebin.com/weloqulitu.coffee
2014-02-20 21:32:00 <darkfader> i attached the disk to another vm and can see that the /boot filesystem is clean
2014-02-20 21:32:00 <darkfader> i suppose extlinux broke somehow
2014-02-21 01:39:39 <BitL0G1c> @ kocka - I fixed that during an install with a symbolic link - have a look in /lib/modules
2014-02-21 01:39:54 <BitL0G1c> & ls -ll
2014-02-21 08:58:36 <clandmeter> kozak, you probably need a reboot because of kernel update.
2014-02-21 09:16:32 <kocka> clandmeter: yep
2014-02-21 09:16:48 <kocka> that did the trick
2014-02-21 09:50:49 <clandmeter> anyone using Btrfs on alpine?
2014-02-21 11:59:14 <darkfaded> i switched my broken vm to hvm and now i can see the extlinux menu, press enter, and then i get a blinking cursor in the lower left corner. is there anything broken bootloader-wise in 2.7?
2014-02-21 12:53:34 <jzono1> clandmeter: yes
2014-02-21 12:56:02 <clandmeter> jzono1: not having issues?
2014-02-21 13:03:12 <jzono1> no
2014-02-21 13:03:37 <jzono1> it works as expected
2014-02-21 13:03:55 <jzono1> got it as my /, and for a mirrored storage array
2014-02-21 13:06:22 <jzono1> it'd be neat if I didn't have to "btrfs dev scan" manually before I can mount my array, but that's just a minor annoyance
2014-02-21 13:08:09 <clandmeter> jzono1: you can add the devices to fstab
2014-02-21 13:08:29 <clandmeter> but i hit a bug where i cannot create a multi device fs
2014-02-21 13:08:41 <clandmeter> jzono1: did you create the array on alpine?
2014-02-21 13:13:46 <jzono1> I don't know if I created it on alpine
2014-02-21 13:14:07 <jzono1> UUID=96955405-af09-4ecc-ac24-e00cec05aa6a       /mnt/0  btrfs   rw      0 0
2014-02-21 13:14:32 <jzono1> I got that in my fstab, and I need to do btrfs dev scan before it mounts
2014-02-21 13:22:53 <clandmeter> i get: mkfs.btrfs - error checking /dev/sda mount status
2014-02-21 13:23:50 <clandmeter> umount /proc && touch /proc/mounts does the trick :)
2014-02-21 15:19:55 <darkfader> my vm now works as HVM, otherwise i changed nothing
2014-02-21 15:20:13 <darkfader> so it's some issue with pygrub being unable to boot after switching 2.6 to 2.7
2014-02-21 15:20:35 <darkfader> no fun, but i'm glad i ran into this before upgrading some other vms
2014-02-23 03:35:45 <fuzzy> Does support for zfs exist in alpine-linux?
2014-02-25 13:47:01 <ginjachris> Hi all, just trying to get Alpine (latest livecd) running on a VPS from these guys: https://www.onepoundwebhosting.co.uk/xen-hvm.php  - unfortunately the livecd fails to boot with "Booting kernel failed: Invalid argument" (same on 32 and 64 bit versions).  I think the real solution is for them to upgrade their VirtualBox version (but i think that's unlikely to happen).  Trying some older versions to see if they work, but in th
2014-02-25 13:56:00 <ginjachris> Well, looks like alpine-2.4.11-x86_64.iso works :)   I'll see if it stays that way after I upgrade it :)
2014-02-25 15:34:45 <freedomrun> why can`t I start gparted from openbox session?! this smells like an bug :)
2014-02-25 16:35:44 <Bernte> Anybody knows which package contains a dhcp server?
2014-02-25 16:41:45 <clandmeter> hi Bernte
2014-02-25 16:42:56 <clandmeter> did you try dnsmasq?
2014-02-25 16:45:07 <clandmeter> or you can use dhcp. apk add dhcp
2014-02-25 16:48:53 <Bernte> clandmeter, thanks ... did not see that dhcp included a server.
2014-02-25 16:49:49 <clandmeter> dnsmasq is also a popular dhcp server
2014-02-25 16:50:38 <Bernte> Just has a look at the config file of dnsmasq ... looks highly confusing.
2014-02-25 16:52:45 <clandmeter> Bernte: https://wiki.archlinux.org/index.php/dnsmasq#DHCP_Server
2014-02-25 16:53:22 <Bernte> Thanks.
2014-02-25 16:54:24 <Bernte> How close is alpine to arch linux? I have to admit, I would use Arch if the system would not be i586-only ... :-/
2014-02-25 17:25:23 <ct2001> hi I wanted to know if anyone can assist me on how to get a script file to run after login
2014-02-25 17:37:22 <freedomrun> ct2001, did you mean something like this?: http://wiki.alpinelinux.org/wiki/Writing_Init_Scripts
2014-02-25 17:37:28 <freedomrun> or just afer specific user login
2014-02-25 19:10:37 <ct2001> yes specifically after user login
2014-02-25 20:17:02 <ct2001> hi I wanted to know if anyone can assist me on how to get a script file to run after login
2014-02-25 20:18:22 <fabled> ct2001, various options. i usually put it in /etc/local.d/foo.start and add local service to run
2014-02-25 20:19:59 <ct2001> foo.start being the script you want to run?
2014-02-25 20:20:20 <fabled> yes. local service runs /etc/local.d/*.start on start, and *.stop on shutdown
2014-02-25 20:21:10 <ct2001> ok, do i also need to add to rc-update? or just creating the file in that folderis all required?
2014-02-25 20:22:22 <fabled> yes, you'd need to "rc-update add local"
2014-02-25 20:22:46 <fabled> err
2014-02-25 20:22:58 <fabled> sorry. misread. that's to run on system start / shutdown
2014-02-25 20:23:04 <fabled> to run after login
2014-02-25 20:23:32 <fabled> add stuff in /etc/profile.d/whatever.sh
2014-02-25 20:24:37 <fabled> mmm
2014-02-25 20:24:39 <ct2001> ok and do "rc-update add profile" ?
2014-02-25 20:24:49 <fabled> no, profile is executed by shell on startup
2014-02-25 20:25:01 <fabled> actually. is it graphical login, or console login?
2014-02-25 20:25:07 <ct2001> console
2014-02-25 20:25:25 <fabled> and it starts shell or some specific other program?
2014-02-25 20:25:45 <ct2001> my script?
2014-02-25 20:26:33 <fabled> mmm... i think /etc/profile.d/xxx.sh is best
2014-02-25 20:27:50 <ct2001> to explain what i am doing better.... so alpine boots up, user logs in.. i then want to run my script that will grab user input to change IP addresses. I have the working script file just trying to get it to run after a login
2014-02-25 20:28:48 <fabled> for any user, or just 'root' ?
2014-02-25 20:28:50 <ct2001> i have no GUI running on my system just CLI
2014-02-25 20:29:04 <ct2001> root
2014-02-25 20:29:43 <fabled> add it to /root/.profile then
2014-02-25 20:30:41 <fabled> that's a file the shell executes for login shells
2014-02-25 20:31:05 <ct2001> i dont have that file.. so I would just create it and copy my script there?
2014-02-25 20:31:32 <fabled> yes
2014-02-25 20:31:56 <ct2001> ok thanks lemme try that out
2014-02-25 20:32:47 <fabled> ok. good luck. i'm off to get some sleep.
2014-02-25 20:51:44 <ct2001> worked
2014-02-26 01:08:04 <duck1> How do I resolve the following? ERROR: unsatisfiable constraints:  Huh? Error reporter did not find the broken constraints.
2014-02-26 03:04:36 <duck1> nevermind, turns out that having both a 2.5 and edge repository defined causes breakage
2014-02-26 22:28:47 <crow> is this good way to disable grsec on alpinelinux? (i dont need here security as it is behind firewall) 'sysctl -w kernel.grsecurity.chroot_deny_chmod=0'
2014-02-26 22:36:25 <jzono1> you can run a regular kernel
2014-02-26 22:37:06 <crow> reason i need to disable is because '[425962.578081] grsec: From 10.8.8.1: denied resource overstep by requesting 21 for RLIMIT_NICE against limit 0 for /usr/bin/oscam[oscam:6993] uid/euid:1000/1000 gid/egid:27/27, parent /usr/bin/oscam[oscam:6991] uid/euid:1000/1000 gid/egid:27/27'
2014-02-26 22:37:43 <jzono1> just get linux-vanilla and boot that instead of the grsec kernel
2014-02-26 22:38:40 <jzono1> but it might be a good idea to actually stick to it, if you're running anything important on the box
2014-02-26 22:38:53 <crow> which i dont unrestand what does it mean and somethime i also get segfaut grsec: From XXX: Segmentation fault occurred at 544e7549 in /usr/bin/oscam
2014-02-26 22:40:06 <jzono1> are you running it in a chroot?
2014-02-26 22:40:11 <crow> jzono1 well i dont know what this above means,
2014-02-26 22:40:25 <jzono1> if so, this might be what's stopping it from using nice: kernel.grsecurity.chroot_restrict_nice
2014-02-26 22:40:42 <crow> jzono1 no i am not
2014-02-26 22:42:26 <jzono1>  sysctl -a | grep grsec will show you all the grsec options you can tweak via sysctl, most of them deal with chroots
2014-02-26 22:42:57 <jzono1> you should try the vanilla kernel and see if you still get the segfaults though, to verify wheter grsec is at fault or not
2014-02-26 22:43:36 <crow> that was my idea to try without grsec or vanila-kernel to see about these segfaults
2014-02-26 22:44:04 <jzono1> yeah. just apk add linux-vanilla, and then select it at boot
2014-02-26 22:44:35 <crow> jzono1 that is a bit problem, headless system.., ALIX.3D3
2014-02-26 22:45:01 <jzono1> alright, move the default entry in the extlinux config file then
2014-02-26 22:46:00 <crow> http://paste.ie/view/2a9f6a01
2014-02-26 22:46:26 <crow> weird that sysctl can read all values
2014-02-26 22:47:56 <crow> i update paste with dmesg message about that http://paste.ie/view/16c190ca
2014-02-26 22:49:14 <jzono1> but yeah, get linux-vanilla, update extlinux config, and you'll see if grsec is causing your problems
2014-02-26 22:50:12 <jzono1> (package description must have a typo, btw - linux-vanilla doesn't have grsec)
2014-02-26 22:50:37 <crow> jzono1 i will try it, need to prepare backup case if it not boot anymore
2014-02-27 09:19:45 <clandmeter> crow: thats not an error afaik
2014-02-27 09:20:03 <clandmeter> you can get rid of it by disabling NICE in oscam webif
2014-02-27 17:59:43 <crow> clandmeter ok about that nice, but what afout this segfault
2014-02-27 18:11:02 <clandmeter> crow: which segfault?
2014-02-27 19:27:40 <clandmeter> crow: those segfaults are from recent, or have they been around longer?
2014-02-27 19:27:46 <clandmeter> i never have oscam segfault