libera/#devuan/ Friday, 2019-08-02

agrisplease help me, OpenRC is stuck on sysinit runlevel indefinately05:41
agrison a fresh install05:41
xrogaanI don't think I use openrc05:51
gnarfaceagris: you installed all from the devuan repos right?05:53
gnarfaceagris: everyone runs into a problem the first time, i think it's the same one every time too05:53
agrisyes05:53
gnarfacemaybe missing package05:54
agrishow can I check?05:54
gnarfacemaybe a unruly startup script05:54
gnarfacei wish i knew05:54
gnarfaceone of these days i'll have to install it to try out05:54
agrisroot@test2:/# rc-status05:54
agris * Caching service dependencies ...                                                                                                                                                     [ ok ]05:54
agrisRunlevel: sysinit05:54
agris mountkernfs.sh                                                                                                                                                                  [  stopped  ]05:54
gnarfacehmmm05:54
gnarfaceand then it just hangs there?05:55
agrisstay's like that indefinitely until i type 'openrc'05:55
agrisuntil next reboot05:55
gnarfacewait, you type openrc then what?05:55
agristhen it says starting servers, entering runlevel 3, etc05:55
gnarfacehmmm05:56
gnarfaceweird05:56
gnarfacehow did you know to type openrc?05:56
gnarfacedoes it work if you type something else?05:56
agrisactually i take that back05:58
agrisit doesn't enter another runlevel05:58
agrisit just makes all the services in sysinit say started05:58
drawkulawhat is /sbin/init? not openrc?05:59
gnarfacei think this has been discussed on the forums05:59
gnarfaceif you changed to openrc from sysvinit in an existing install, there is some extra steps you have to take i just don't know what they are05:59
agrisI don't know what /sbin/init is06:00
agrisif it's openrc or not06:00
gnarfaceif you chose openrc at installation time though, it is a different issue06:00
agrisI bootstrapped with openrc06:00
agrisgnarface, http://0x0.st/zfkh.mkv06:00
gnarfaceuh, what's that?06:01
gnarfacei'm sorry not clicking on it, too paranoid06:01
agrisa video06:01
gnarfaceascii or beowulf?06:02
drawkula$ dpkg --search /sbin/init # ?06:03
gnarfacemight require sysvinit-core and sysvinit-utils06:05
gnarfaceor something like that06:05
gnarfaceeven though it is openr06:05
gnarfaceopenrc*06:05
drawkulahttps://dev1galaxy.org/viewtopic.php?id=2788 <<< openrc in forum06:05
agrisascii06:08
agrisroot@test2:/# dpkg --search /sbin/init06:08
agrissysvinit-core: /sbin/init06:08
drawkulahttps://dev1galaxy.org/viewtopic.php?pid=15542#p15542 <<< beowulf06:11
drawkulathat's a lot tinkering... stuff which should be done by sime install scrips...06:12
drawkulamaybe someone has fresher infos than shown there?06:13
agrishmm06:13
agrisi edited /etc/init.d/rcS and now it's loading openrc, but it's still stuck in sysinit runlevel06:13
agrishmm06:13
agrisyes, I really wish OpenRC was better supported06:14
drawkulahttp://forums.debian.net/viewtopic.php?f=16&t=134915 <<< from debian9 days and HOAS can be reached in the d1g forum too...06:16
drawkulathere they set the kernel init= parameter to openrc-init but thjat may have evolved since 201706:18
agrisI don't know if that works for my situation as I'm using a kernel namespace not a full kernel06:20
agrisalso, OpenRC loads fine on the hypervisor06:21
agrisand my other containers load openrc fine06:21
agrisdon't know what's changed06:21
gnarfaceoh, this is in a VM?06:37
gnarfacehmmm, interesting06:38
gnarfacemaybe it is just one of the startup scripts trying to access something it can't06:38
gnarface"mountkernfs.sh" sounds like the type of thing a guest VM shouldn't be able to do06:38
gnarfacethe sysvinit scripts just fail loudly but startup/shutdown keeps going anyway06:38
gnarfacemaybe one of the openrc scripts doesn't fail at it that gracefully06:39
gnarfaceprobably something about mounting swap or tmpfs?06:39
gnarfaceif that's the case, it's probably something the hypervisor does anyway and you can just safely comment it out or even remove the offending script06:39
gnarfaceagris: ^06:40
agrisno06:42
agristhis is not a vm06:42
agristhis is a container06:42
gnarfacesemantic irrelevance06:43
gnarfacecheck that mountkernfs.sh, figure out what it's actually trying to mount06:45
gnarfacei'd bet you'll find something it doesn't have permission to mount, that is probably already mounted in the first place06:45
gnarfacelike the swap partition or something06:45
gnarfaceand it probably *should* be changed to fail more gracefully but i doubt that's a case they would have considered06:46
gnarfaceor if not mountkernfs.sh, whatever script is supposed to run right after it06:52
gnarfacei don't know openrc well enough to know exactly06:52
gnarfacebut the whole point of containers *or* VMs, or any type of virtualization really, is to prevent access to certain host-level things that are often routine actions of startup scripots06:53
gnarfacescripts06:53
gnarfacethis is all starting to give me deja-vu06:54
agrisgnarface, it does matter, a lot actually. In a containerization setup, there is absolutely zero 'virtualization' being done07:00
agrisand there is only one kernel07:00
agristhe kernel that runs on the bare metal07:00
agrispage nesting or special CPU instructions/features are not used at all07:01
gnarfaceoh yea?  log into a working container and unmount the host /tmp partition07:01
gnarfacetry it07:01
gnarfacei mean, unmount it from inside the container07:02
gnarfaceand the host swap partition07:02
gnarfaceswapoff it07:02
gnarfacetry it07:02
gnarfacei'm guessing you'll get a permission denied error07:02
gnarfaceeither that or the device won't even be visible07:03
gnarfacehell just look in /dev from inside the container07:04
gnarfaceit's probably missing stuff07:04
gnarfaceif you have other working ones, working with openrc, maybe it's even something simple you can put back07:05
gnarfacebut it probably represents a big security risk then07:05
gnarfacewhich is important to know about even if you don't care in your use case07:05
agrissure07:25
agristhere are problems with devuan ascii right now07:25
agrisspecificly in the implementations of ascii's apparmor rules07:26
agrisbut hopefully that will be fully resolved in beowulf07:26
agrisas it is in the debian equivalent, ubuntu, and alpine07:26
agrisas in the apparmor profile for lxc containers is incomplete, but not fully missing07:27
agrishttps://github.com/lxc/lxc/issues/189507:27
agrishttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=88370307:28
agrisin other news I think I have resolved the issue07:29
agrisboth /etc/inittab and /etc/init.d/rcS were wrong07:29
agrisand the thing is says on the forum to put in rcS is wrong07:30
agrisit should be set -e07:30
agrisexec /sbin/openrc07:30
agrisnot set -e07:30
agrisexec /sbin/openrc sysinit07:30
agristhis makes the container boot properly again07:31
agrisI'm going to patch my templates then submit a pull request on git.devuan.org07:31
agrishopefully the error 500s are gone by now or we've moved on to gitea07:31
agristhank you gnarface. You did provide me enough information to figure out the rest of why it wasn't working07:39
gnarfacehmm, well the important part is that you got it working07:55
gnarfacethere really aren't a lot of people using openrc on devuan yet, so your testing and fixes are important07:56
gnarfaceyou very well may have been the first person to try it with lxc containers07:59
agrisyeah08:27
agrisI find myself in that position a lot these days08:27
ErRandirIn ascii it runs an elogind daemon. Can it be disabled or does that cause issues?11:02
gnarfaceyou don't need it if you're not using a graphical login11:06

Generated by irclog2html.py 2.17.0 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!