Re: Automated package testing (Re: Is Sid for broken stuff? Is it too much to ask for testing the packages?)

To: debian-devel@lists.debian.org
Subject: Re: Automated package testing (Re: Is Sid for broken stuff? Is it too much to ask for testing the packages?)
From: John Goerzen <jgoerzen@complete.org>
Date: Fri, 13 Dec 2002 13:47:38 -0600
Message-id: <[🔎] 20021213194738.GA19988@wile.excelhustler.com>
In-reply-to: <[🔎] 20021213181734.GG21885@mizar.alcor.net>
References: <[🔎] 20021212000837.GC5293@thanes.org> <[🔎] 20021212013529.GA24188@quetzlcoatl.dodds.net> <[🔎] 200212111746.57828.shalehperry@attbi.com> <[🔎] 1039660986.22203.17.camel@space-ghost> <[🔎] 20021212225302.GB2186@snoopy.apana.org.au> <[🔎] 20021213040358.GB9083@mizar.alcor.net> <[🔎] 20021213144818.GB4607@wile.excelhustler.com> <[🔎] 20021213153719.GB21885@mizar.alcor.net> <[🔎] 20021213165546.GC10240@wile.excelhustler.com> <[🔎] 20021213181734.GG21885@mizar.alcor.net>

On Fri, Dec 13, 2002 at 01:17:34PM -0500, Matt Zimmerman wrote:
> > vserver provides this as well, with the exception that it does not provide
> > virtual consoles for init.
> 
> My interpretation of the documentation was that it simply did not allow
> processes in different contexts to see each other, but they shared a PID
> space.  Is this incorrect?  (i.e., could there be two processed with PID 1?)

That is correct, but there is a special provision to allow init to be PID 1
in every context.

It is not possible, in any case, send signals to/use IPC with/etc processes
in a different context.

> seems to only address two common methods; I do not know that anyone has even
> investigated whether further escapes from vserver are possible.

What are the other methods you're thinking of?

> Security concerns aside, I'd like to see someone implement similar ideas in
> vserver alongside what I want to do with UML, to see how they compare in
> practice.

Agreed!

One problem we have right now is that "vserver enter" doesn't work when the
vserver is running a different libc than the host.  I haven't quite been
able to wrap my head around why that is the case yet!

In most cases, that doesn't matter; I just ssh into my vservers anyway.  But
in this particular application, it may make things a little more difficult.

-- John

Reply to:

References:
- Is Sid for broken stuff? Is it too much to ask for testing the packages?
  - From: Marek Habersack <grendel@debian.org>
- Re: Is Sid for broken stuff? Is it too much to ask for testing the packages?
  - From: Steve Langasek <vorlon@netexpress.net>
- Re: Is Sid for broken stuff? Is it too much to ask for testing the packages?
  - From: Sean 'Shaleh' Perry <shalehperry@attbi.com>
- Re: Is Sid for broken stuff? Is it too much to ask for testing the packages?
  - From: Colin Walters <walters@debian.org>
- Re: Is Sid for broken stuff? Is it too much to ask for testing the packages?
  - From: Brian May <bam@debian.org>
- Automated package testing (Re: Is Sid for broken stuff? Is it too much to ask for testing the packages?)
  - From: Matt Zimmerman <mdz@debian.org>
- Re: Automated package testing (Re: Is Sid for broken stuff? Is it too much to ask for testing the packages?)
  - From: John Goerzen <jgoerzen@complete.org>
- Re: Automated package testing (Re: Is Sid for broken stuff? Is it too much to ask for testing the packages?)
  - From: Matt Zimmerman <mdz@debian.org>
- Re: Automated package testing (Re: Is Sid for broken stuff? Is it too much to ask for testing the packages?)
  - From: John Goerzen <jgoerzen@complete.org>
- Re: Automated package testing (Re: Is Sid for broken stuff? Is it too much to ask for testing the packages?)
  - From: Matt Zimmerman <mdz@debian.org>

Prev by Date: Re: Bug#172189: ITP: openscenegraph -- C++/OpenGL based graphics development library.
Next by Date: Re: gsview
Previous by thread: Re: Automated package testing (Re: Is Sid for broken stuff? Is it too much to ask for testing the packages?)
Next by thread: Re: Automated package testing (Re: Is Sid for broken stuff? Is it too much to ask for testing the packages?)
Index(es):
- Date
- Thread