-A link to the directory which will hold cached information about
-vservers.
-
-
-
- namespace-cleanup-skip
-
-
-List of paths to skip during namespace cleanup.
-
-
nonamespace
@@ -42,15 +27,6 @@ there.
In this mode the /vservers directory must have
the 'barrier' attribute. Else, common chroot(2) exploits are possible.
-
-
-
- nonamespace-cleanup
-
-
-Disable namespace cleanup globally. It can be overridden for a single vserver
-by setting the namespace-cleanup flag
-there.
@@ -100,14 +76,6 @@ from this uri and install it at a temporary place.
/etc/vservers/.defaults/apps/init
-
- environment
-
-
-The environment to set when starting guests. Contains one VAR=VAL
-pair per line.
-
-
tty
@@ -135,19 +103,6 @@ distribution specific configuration file.
-
- /etc/vservers/.defaults/apps/vlogin
-
-
-
- disable
-
-
-When this file exists, vlogin isn't used on vserver <guest> enter.
-
-
-
-
/etc/vservers/.defaults/apps/vprocunhide
@@ -156,7 +111,7 @@ When this file exists, vlogin isn't used on vserver <guest> enter.
files
-A list of files which will be made visible by vprocunhide. Wildcards are
+A list of files which will be made visibly by vprocunhide. Wildcards are
allowed and anything ending in '/' will be processed recursively. When this file exists,
it overrides the defaults in SYSDEFAULTDIR/vprocunhide-files. The entries there must be
absolute filenames inclusive the leading '/proc'.
@@ -281,20 +236,6 @@ filesystem.
-
- /etc/vservers/.defaults/interfaces
-
-
-
- vlandev
-
-
-When this file exists, the steps which setup and destroy a VLAN
-interface will be executed.
-
-
-
-
@@ -425,16 +366,9 @@ The configuration directory for the vserver vserver-name.
bcapabilities
-Contains the system capabilities. See
-lib/bcaps-v13.c
+[experimental; name is subject of possible change] Contains the system capabilities. See
+lib/bcaps-v13.c
for possible values.
-
-
-
- cache
-
-
-Path of the storage area for cached information about this vserver.
@@ -449,7 +383,8 @@ only; for 2.6 use bcapabilities.
ccapabilities
-Contains the context capabilities. See lib/ccaps-v13.c
+[experimental; name is subject of possible change] Contains the
+context capabilities. See lib/ccaps-v13.c
for possible values.
@@ -464,9 +399,54 @@ Contains the context which shall be used for the vserver.
flags
+The new process will believe it is process number 1. Useful to run a
+real /sbin/init in a vserver. Warning: this flag should not be used
+unless you know what you are doing. Often, it is better to use the
+'plain' initstyle.
+
+
+
lock
+
+
+The new process is trapped and can't use chcontext anymore.
+
+
+
nproc
+
+
+Limit the number of process in the vserver according to
+ulimit setting. Normally, ulimit is a per user thing.
+With this flag, it becomes a per vserver thing.
+
+
+
private
+
+
+No one can join this security context once created.
+
+
+
sched
+
+
+The new process and its children will share a common
+
+
+
ulimit
+
+
+Apply the current ulimit to the whole context
+
+
+
+
fstab
@@ -503,39 +483,6 @@ will be assumed as this name.
Overrides the global nonamespace flag and enables
namespace usage for the current vserver.
-
-
-
- namespace-cleanup
-
-
-Overrides the global nonamespace-cleanup flag and enables
-namespace cleanup for the current vserver.
-
-
-
- namespace-cleanup-skip
-
-
-List of paths to skip during namespace cleanup. This overrides the global
-namespace-cleanup-skip
-file.
-
-
-
- ncapabilities
-
-
-Contains the network capabilities. See lib/ncaps-net.c
-for possible values.
-
-
-
- nflags
-
-
-Contains a network flag per line. See lib/nflags-net.c
-for possible values.
@@ -577,7 +524,7 @@ the vserver is stopped, this can be a dangling symlink.
schedule
-[deprecated; use sched instead] Contains the
+[experimental; name is subject of possible change] Contains the
scheduler parameters, one per line.
The Hard CPU limit uses a mechanism called a Token Bucket. the
@@ -588,9 +535,6 @@ a running process consumes one token from the bucket, unless the
bucket is empty. If the bucket is empty the process is put in the
hold queue. When the bucket has been refilled to at least M tokens,
all on hold processes are rescheduled.
-
-See the Linux
-VServer Wiki for more information about this file.
@@ -605,7 +549,7 @@ Contains the pathname of the shell which will be used by the "vserver
vdir
-Path of the vserver root directory.
+Path of the vserver root directory
@@ -669,14 +613,6 @@ the current vserver can be started. At shutdown, the current vserver
will be stopped before its dependencies. Content of this file are
vserver ids (one name per line).
-
-
- environment
-
-
-The environment to set when starting the guest. Contains one VAR=VAL
-pair per line.
-
killseq
@@ -785,7 +721,7 @@ the vs_reboot() function in the kernel for more details.
The timeout in seconds which is used when synchronising vserver
-startup/shutdown with the vshelper. When not set, 30 seconds will be
+startup/shutdown with the vshelper. When no set, 30 seconds will be
assumed.
@@ -889,74 +825,6 @@ filesystem.
-
- /etc/vservers/vserver-name/cpuset
-
-
-
- cpu_exclusive
-
-
Is the CPU assignment exclusive?
-
-
- cpus
-
-
The list of CPUs in this cpuset
-
-
- mems
-
-
The list of Memory Nodes in this cpuset
-
-
- mems_exclusive
-
-
Is the memory node assignment exclusive?
-
-
- name
-
-
The name of the cpuset for this vserver
-
-
- nocreate
-
-
When this file exists, the cpuset will be assumed to exist already
-
-
-
-
- /etc/vservers/vserver-name/dlimits
-
-
-
- /etc/vservers/vserver-name/dlimits/dlimit
-
-
-
- directory
-
-
The directory to which the limit should be applied
-
-
- inodes_total
-
-
The amount of inodes this vserver should be limited to
-
-
- reserved
-
-
How much space (percentage-wise) should be reserved for the root user
-
-
- space_total
-
-
The amount of space this vserver should be limited to (measured in blocks of 1024 bytes)
-When this file exists, the steps which setup and destroy a VLAN
-interface will be skipped. This overrides the global
-vlandev setting for
-this vserver.
-
-
prefix
@@ -996,14 +854,6 @@ this vserver.
The default scope of the network interfaces.
-
- vlandev
-
-
-When this file exists, the steps which setup and destroy a VLAN
-interface will be executed for all interfaces of this vserver.
-
-
/etc/vservers/vserver-name/interfaces/iface
@@ -1056,16 +906,6 @@ a labeled interface is known as an "alias" also (e.g. 'eth0:foo').
When this file exists, the interface will be assumed to exist
already. This can be used to assign primary interfaces which are
created by the host or another vserver.
-
-
-
- novlandev
-
-
-When this file exists, the steps which setup and destroy a VLAN
-interface will be skipped. This will override the global
-vlandev and the per-guest
-vlandev.
@@ -1078,14 +918,6 @@ interface will be skipped. This will override the global
The scope of the network interface.
-
- vlandev
-
-
-When this file exists, the steps which setup and destroy a VLAN
-interface will be executed.
-
-
@@ -1095,8 +927,7 @@ interface will be executed.
A directory with resource limits. Possible resources are cpu, fsize,
-data, stack, core, rss, nproc, nofile, memlock, as, locks, msgqueue,
-nsock, openfd, anon, shmem, semary, nsems and dentry. This
+data, stack, core, rss, nproc, nofile, memlock, as and locks. This
configuration will be honored for kernel 2.6 only.
@@ -1112,7 +943,7 @@ in the first line. The special keyword 'inf' is recognized.
resource.hard
-A file which contains the hard-limit of the given resource in the first
+A file which contains the hard- of the given resource in the first
line. The special keyword 'inf' is recognized.
@@ -1120,7 +951,7 @@ line. The special keyword 'inf' is recognized.
resource.min
-A file which contains the guaranteed minimum of the given resource in
+A file which contains the guaranted minimum of the given resource in
the first line. The special keyword 'inf' is recognized.
@@ -1128,125 +959,12 @@ the first line. The special keyword 'inf' is recognized.
resource.soft
-A file which contains the soft-limit of the given resource in the first
+A file which contains the soft- of the given resource in the first
line. The special keyword 'inf' is recognized.
Amount of tokens to add each interval2 when advancing idle time
-
-
- idle-time
-
-
When this file exists, advancing idle time is activated
-
-
- interval
-
-
The interval between refills of the bucket
-
-
- interval2
-
-
The interval between refills of the bucket when advancing idle time
-
-
- priority-bias
-
-
Bias added to priorities calculated within the guest (result is clamped to -20/+19)
-
-
- tokens
-
-
The initial amount of tokens to put in the bucket
-
-
- tokens-max
-
-
The bucket's size
-
-
- tokens-min
-
-
The minimum amount of tokens required to unhold the context
-
-
-
-
-
/etc/vservers/vserver-name/scripts
@@ -1258,15 +976,6 @@ environment variable must be set by one of the in-shellcontext scripts
(the non-executable ones).
-
- initialize
-
-
-The scriptlet which will be executed before the root filesystem is mounted and
-the configuration has been loaded. Before executing the script, the
-configuration directory will be made the working directory.
-
-
post-start
@@ -1323,21 +1032,6 @@ enabled and the directories are mounted. Before executing the script,
the configuration directory will be made the working directory.
-Repository of initialize like scripts. Before executing the script,
-the configuration directory will be made the working directory.
-
-
-
- script
-
-
See initialize.
-
-
-
/etc/vservers/vserver-name/scripts/post-start.d
@@ -1435,7 +1129,8 @@ the configuration directory will be made the working directory.
A directory with ulimits. Possible resources are cpu, data, fsize,
-locks, memlock, nofile, nproc, rss and/or stack.
+locks, memlock, nofile, nproc, rss and/or stack. This configuration
+will be honored for kernel 2.4 only.
@@ -1450,7 +1145,7 @@ in the first line. The special keyword 'inf' is recognized.
resource.hard
-A file which contains the hard-limit of the given resource in the first
+A file which contains the hard- of the given resource in the first
line. The special keyword 'inf' is recognized.
@@ -1458,7 +1153,7 @@ line. The special keyword 'inf' is recognized.
resource.soft
-A file which contains the soft-limit of the given resource in the first
+A file which contains the soft- of the given resource in the first
line. The special keyword 'inf' is recognized.