On 11 Sep 2020, at 13:36, Andrey V. Elsukov wrote:
> On 01.09.2020 17:20, Hiroshi Nishida wrote:
>> Interestingly, I have exactly the same problem also with CentOS 8 +
>> KVM/QEMU.
>>
>> I would appreciate it if anybody could tell me how to fix this.
>> Thank you.
>
> Hi,
>
> I think you just
Hi,
I have been wondering about this with other (commercial) virtualisation
solutions in the past. If running on a “disk image” ideally I’d
love that image to be a sparse file and ideally I’d love for
bhyve/underlying virtualisation for the disk to understand TRIM so in
case one deletes
On 15 Oct 2018, at 16:10, Marcelo Araujo wrote:
Em ter, 16 de out de 2018 às 00:06, Bjoern A. Zeeb <
bzeeb-li...@lists.zabbadoz.net> escreveu:
Hi,
I tried to use bhyve with the tap(4)/vtnet(4) solution as documented
in
the handbook (tap needs autoopen).
However, I am using no br
Hi,
I tried to use bhyve with the tap(4)/vtnet(4) solution as documented in
the handbook (tap needs autoopen).
However, I am using no bridge(4) interface but a “point-to-point”
configuration.
Example:
guest configures vtnet0 to 192.0.2.2/24
host configures tap0 to 192.0.2.1/24
When
On 15 Dec 2016, at 15:10, Nikos Vassiliadis wrote:
It'd would be so good if we had a extra pkg for vbox-kmod with
vnet support
I think that’s your best solution. And possibly not just for
vbox-kmod but for all networking kmods?
/bz
___
bz added a comment.
Can I have you guys have a look at https://reviews.freebsd.org/D6924
Thanks
REVISION DETAIL
https://reviews.freebsd.org/D1944
EMAIL PREFERENCES
https://reviews.freebsd.org/settings/panel/emailpreferences/
To: nvass-gmx.com, trociny, kristof, gnn, zec, rodrigc,
___
freebsd-virtualization@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-virtualization
To unsubscribe, send any mail to
"freebsd-virtualization-unsubscr...@freebsd.org"
> On 02 Mar 2016, at 14:53 , Sergey Zakharchenko
> wrote:
>
> Hello,
>
> As far as I can tell, jails still do not properly encapsulate SysV
> IPC. Should I look into VIMAGE or is situation the same there?
There’s a patch floating around. We still hope to have the
Hi,
sorry for the cross-post, Reply-To: set.
> On 22 Feb 2016, at 13:41 , Bjoern A. Zeeb <bzeeb-li...@lists.zabbadoz.net>
> wrote:
>
> Hi,
>
> has anyone else experienced VNET jails to not fully go away anymore on a
> recent HEAD kernel (or possibly an older kern
Hi,
has anyone else experienced VNET jails to not fully go away anymore on a recent
HEAD kernel (or possibly an older kernel)?
I have test cases with which I can have them in DYING state (see jls -av) for
ever or at least more than half a day. I am in the process of trying to find
the cause
Hi,
sorry for the cross-post; Reply-To set.
I extracted a patch from projects VNET which tries to get the VNET teardown
more robust (and in a next step plug the remaining [TCP] memory leaks).
If anyone has an interest in testing some parts on a non-production setup
(you have been warned)
On 15 Jun 2015, at 17:10 , kikuc...@uranus.dti.ne.jp wrote:
On Mon, 15 Jun 2015 09:53:53 +, Bjoern A. Zeeb
bzeeb-li...@lists.zabbadoz.net wrote:
Hi,
removed hackers, added virtualization.
On 12 Jun 2015, at 01:17 , kikuc...@uranus.dti.ne.jp wrote:
Hello,
I’m (still
bz reopened this revision.
bz added a comment.
This revision is now accepted and ready to land.
Even if this would have been merged properly and not broken the build there's
still stuff that is wrong for initialisation with different net contexts in
this and that needs to be fixed properly.
5 years ago?
Scary. probbaly worth having someone who is currently active and up to date
look at it to see if it's all still correct..
especially the module load/unload stuff.
Yeah I popped it up in a browser window to read through it once I have a short
break to do that.
—
Bjoern A. Zeeb
On 21 Nov 2014, at 08:06 , Craig Rodrigues rodr...@freebsd.org wrote:
On Thu, Nov 20, 2014 at 10:07 AM, Craig Rodrigues rodr...@freebsd.org
wrote:
On Wed, Nov 19, 2014 at 6:05 AM, Bjoern A. Zeeb b...@freebsd.org wrote:
For people to use pf with VIMAGE we first MUST have the security
otherwise.
—
Bjoern A. Zeeb Come on. Learn, goddamn it., WarGames, 1983
___
freebsd-virtualization@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-virtualization
To unsubscribe, send any mail to
freebsd-virtualization
://wiki.freebsd.org/?action=fullsearchcontext=180value=VIMAGEtitlesearch=Titles
but didn’t see anything that could be readily turned into a man page.
https://people.freebsd.org/~bz/20100530-02.vnet.9.html
The man page should be in that perforce branch you converted to github.
—
Bjoern A. Zeeb
network stack. There’ll
be a lot of regression test writing and debugging to be done.
That all said, I’d like to see it happen as well, but I’d love to have a lot
of the issues being addressed first before putting a date on it to enable
it in GENERIC in HEAD.
/bz
—
Bjoern A. Zeeb Come
those been fixed?
No, an old perforce branch of mine had all but the last TCP ones fixed. The
code is still there.
—
Bjoern A. Zeeb Come on. Learn, goddamn it., WarGames, 1983
___
freebsd-virtualization@freebsd.org mailing list
http
does
not mind, if he does not have time to review -)
To me the patch looks wrong; I am wondering if someone broke some other central
assumptions but given I cannot currently spend time on this and if it fixes
things
feel free to go ahead.
/bz
--
Bjoern A. Zeeb
...
/bz
--
Bjoern A. Zeeb You have to have visions!
It does not matter how good you are. It matters what good you do!
___
freebsd-virtualization@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo
On Sep 7, 2011, at 3:32 PM, Nikos Vassiliadis wrote:
Hi,
Wouldn't it be good to note in UPDATING that the new pf supports VIMAGE?
Well, see the PRs on how much it does. We'll first fix the real (serious) pf
bugs and then address the rest of virtualization.
--
Bjoern A. Zeeb
-an, ndp -n, netstat -rn, ... would
certainly help. I am aware of one bug that epair can stop passing packets
but ETIME currently to look.
/bz
--
Bjoern A. Zeeb You have to have visions!
Stop bit received. Insert coin for new address family
and arp -an from inside the
VIMAGE as well? Myabe try to ping your default gateway from within the jail
first so that there might be actual traffic (or at least an attempt of).
/bz
--
Bjoern A. Zeeb You have to have visions!
Stop bit received. Insert coin
On May 6, 2011, at 8:28 PM, Mickey Harvey wrote:
Is it possible to run pf or ipfw within a jail? I am running 8.2 and have
vimage compiled in the kernel.
The next time please post to one list only and not zillions of them.
See my reply on freebsd-jail.
--
Bjoern A. Zeeb
Hi,
this is a heads up in case anyone is relying on this in private VNET
modules or code. I am planning on merging this code to stable/8
probably during the weekend. It should be a NOP for almost everyone,
especially if not running a VIMAGE kernel.
/bz
--
Bjoern A. Zeeb
On Thu, 3 Feb 2011, Monthadar Al Jaberi wrote:
On Thu, Feb 3, 2011 at 12:18 PM, Bjoern A. Zeeb
bzeeb-li...@lists.zabbadoz.net wrote:
On Thu, 3 Feb 2011, Monthadar Al Jaberi wrote:
On Thu, Feb 3, 2011 at 11:59 AM, Bjoern A. Zeeb
bzeeb-li...@lists.zabbadoz.net wrote:
On Thu, 3 Feb 2011
out.
I'll keep you updated during next week as things progress and might
post merge candidate patches for your testing.
Regards,
Bjoern
--
Bjoern A. Zeeb You have to have visions!
ks Going to jail sucks -- bz All my daemons like it!
http://www.freebsd.org
On Wed, 26 Jan 2011, Mikolaj Golub wrote:
On Wed, 26 Jan 2011 14:18:03 + (UTC) Bjoern A. Zeeb wrote:
BAZ On Wed, 26 Jan 2011, Mikolaj Golub wrote:
On Wed, 26 Jan 2011 09:15:46 + (UTC) Bjoern A. Zeeb wrote:
BAZ I think you should wrap the CURVNET changes in __FreeBSD_version
BAZ
--
Bjoern A. Zeeb You have to have visions!
ks Going to jail sucks -- bz All my daemons like it!
http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/jails.html
___
freebsd-virtualization@freebsd.org mailing
On Thu, 18 Nov 2010, Thierry Herbelot wrote:
Bjoern A. Zeeb bzeeb-li...@lists.zabbadoz.net a écrit
On Thu, 18 Nov 2010, Thierry Herbelot wrote:
Bjoern A. Zeeb bzeeb-li...@lists.zabbadoz.net a écrit
On Wed, 17 Nov 2010, Thierry Herbelot wrote:
As promised, here are the full logs
On Fri, 14 Jan 2011, Thierry Herbelot wrote:
Bjoern A. Zeeb bzeeb-li...@lists.zabbadoz.net a écrit
On Thu, 18 Nov 2010, Thierry Herbelot wrote:
Bjoern A. Zeeb bzeeb-li...@lists.zabbadoz.net a écrit
On Thu, 18 Nov 2010, Thierry Herbelot wrote:
Bjoern A. Zeeb bzeeb-li...@lists.zabbadoz.net
announcement for VIMAGE:
http://svn.freebsd.org/viewvc/base/head/sys/net/vnet.c?r1=217203r2=217202pathrev=217203
# sysctl kern.features.vimage
it's been MFCed to stable/8 and will be part of FreeBSD 8.3 (it'll
miss 8.2).
/bz
--
Bjoern A. Zeeb You have to have
would really appreciate if someone would support the move of the general
infrastructure from perforce to HEAD (and help so we can get an exp run
for the ports which break similarly).
That would help interface and other subsystems (people are doing)
immendiately.
/bz
--
Bjoern A. Zeeb
someone outside the jail (who can see that point in the filesystem)
sees it,
who's stack do they use to access it?
Short answer: you cannot mount any file system inside a jail unless
it's marked jail friendly which brings us to ZFS only currently.
/bz
--
Bjoern A. Zeeb
kern.features.vimage: 1
kern.features.posix_shm: 1
kern.features.ipsec_natt: 1
kern.features.ipsec: 1
/bz
--
Bjoern A. Zeeb You have to have visions!
ks Going to jail sucks -- bz All my daemons like it!
http://www.freebsd.org/doc/en_US.ISO8859-1
On Sun, 9 Jan 2011, Bjoern A. Zeeb wrote:
On Sun, 9 Jan 2011, Brandon Gooch wrote:
On Sun, Jan 9, 2011 at 9:17 AM, Subbsd sub...@gmail.com wrote:
Hi
is there any mechanism to find out from userland is supports the
current kernel VIMAGE or not? something like 'sysctl
kern.features.vnet=1
://docs.freebsd.org/mail/current/freebsd-virtualization.html
(will rotate at midnight UTC I think).
So yes, we received them.
/bz
--
Bjoern A. Zeeb You have to have visions!
ks Going to jail sucks -- bz All my daemons like it!
http://www.freebsd.org/doc
3469
(further tests showed an increase of the routetbl malloc zone by 4MBytes for
each vnet jail creation/destruction cycle)
Hmm, I had fixed that (somewhere). I'll see where the patch went. You
are on 8.1-RELEASE or -STABLE?
/bz
--
Bjoern A. Zeeb Welcome
On Thu, 18 Nov 2010, Thierry Herbelot wrote:
Bjoern A. Zeeb bzeeb-li...@lists.zabbadoz.net a écrit
On Wed, 17 Nov 2010, Thierry Herbelot wrote:
As promised, here are the full logs (in attachment)
This is a serial console log showing the command loop that triggers the
bug on a debug kernel
application heavily.
No, fsck will not help you anything; this is a memory (RAM) not a disk
storage/file system problem.
/bz
--
Bjoern A. Zeeb Welcome a new stage of life.
ks Going to jail sucks -- bz All my daemons like it!
http://www.freebsd.org/doc
whether to go left
or right.
/bz
--
Bjoern A. Zeeb Welcome a new stage of life.
ks Going to jail sucks -- bz All my daemons like it!
http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/jails.html
___
freebsd
figure out
the right jail.
I promised the group that after the meeting I would bring up the topic with
other interested
developers... so here we are..
Tahnks a lot!
/bz
--
Bjoern A. Zeeb Welcome a new stage of life.
ks Going to jail sucks -- bz All my
are talking to him, even though I got busy the last weeks.
As he's piggybacking on VNET/VIMAGE and there'll me more things he and
we'll do, there's certainly code going to be shared (I would hope).
/bz
--
Bjoern A. Zeeb Welcome a new stage of life.
ks Going
yes, see the comment at the top of the patch:
! You should not leak /dev/pf into jails for now or they might
! change your rules;-)
See devfs, devfs.rules, etc. The jail startup script would usually
apply the devfsrules_jail defines in /etc/defaults/devfs.rules.
/bz
--
Bjoern A. Zeeb
but should allow
using pf in the base system even if VIMAGE is enabled. In case it
still panics for you, let me know and include a backtrace in your
report.
http://people.freebsd.org/~bz/20100907-01-pf-vnet0.diff
/bz
--
Bjoern A. Zeeb Welcome a new stage of life
On Tue, 7 Sep 2010, Bjoern A. Zeeb wrote:
Hey,
in a way to work on something I needed to be able to at least load pf
on my VIMAGE development machine. So I quickly hacked together a
patch that does exactly that. I hope it'll apply to HEAD or stable/8
but I didn't test on either
mode IPsec you do not need gif tunnels at all. You can
just setup ipsec. If you need interfaces over ipsec for link state
protocols like OSPF you would want to configure transport mode for the
gif-tunnel endpoints and only protect those (the gif tunnel) and then
use routes.
--
Bjoern A. Zeeb I
.
--
Bjoern A. Zeeb It will not break if you know what you are doing.
___
freebsd-virtualization@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-virtualization
To unsubscribe, send any mail to
freebsd-virtualization
wrt. VIMAGE_GLOBALS even with all the larger changes that
went in. I think it's safe to keep them another 4-6 weeks.
/bz
--
Bjoern A. Zeeb The greatest risk is not taking one.
___
freebsd-virtualization@freebsd.org mailing list
http
50 matches
Mail list logo