:: Re: [DNG] ..a viable basis for Devu…
トップ ページ
このメッセージを削除
このメッセージに返信
著者: Arnt Karlsen
日付:  
To: dng
題目: Re: [DNG] ..a viable basis for Devuan as a hypervisor?, was: libvirt package without X11 and DBus
On Sat, 7 Aug 2021 18:21:30 +0800, Brad wrote in message
<81f66ac4-b595-2e58-04d9-90fc5dd005ed@???>:

> On 7/8/21 5:26 am, Arnt Karlsen wrote:
> > On Fri, 6 Aug 2021 20:20:15 +0800, Brad wrote in message
> > <a02bce2c-6bee-2fad-875e-336020fa959e@???>:
> >
> >> On 6/8/21 5:12 pm, Andrzej Peszynski wrote:
> >>>
> >>>
> >>> On 06.08.2021 06:25, Brad Campbell via Dng wrote:    

> >>>>
> >>>> Why do you even need/want libvirt? I have several machines which
> >>>> run qemu guests just using simple bash scripts to bring them up
> >>>> (and all the bash script is there for is to hold the command line
> >>>> parameters). I like libvirt and virt-manager for configuring and
> >>>> customising the guests, but at the end of the day all that is is
> >>>> a fancy front end to qemu.   
> >>> <snip>    
> >>>> If you are stripping the guts out of libvirt, why use it in the
> >>>> first place?   
> >>> Brad, thanks a million! Learning is fun especially for a "apt
> >>> install" man as I am. I am looking now at how I can simplify all
> >>> this (may be stripping parts of QEMU too?), to keep running, and
> >>> handle my configurations and resources binding. In the end, all
> >>> what I need is executing in isolated ring the ELF of dozen of (not
> >>> trusted) proxies, servers and libraries + resources balancing +
> >>> isolated filesystems + sockets.

> >>>
> >>> From the other side, I think that the Type 1 hypervisor for
> >>> desktop is also interesting thing, It's very tempting to have
> >>> windowed multimachine with realtime switch capability.    

> >
> > ..I get the idea that Andrzej and I are looking for Brad's kinda
> > bare metal hypervisor Devuan install?
> > We might come up with minimal net-install size install image as an
> > alternative to https://en.wikipedia.org/wiki/Qubes_OS , only
> > without systemd and based on Devuan.
>
> I'm not quite sure how my description of a self-compiled (ancient)
> libvirt install qualifies as "bare metal".


..then it probably doesn't, I'm trying to come up with a Devuan based
"Qubes OS" bare metal host OS, only without systemd and able to use
Devuan .debs off aptitude etc tools I'm familiar with.

> > ..in Debian and Devuan we often have package conflict that means
> > hold back upgrades or ditch good software we'd like to keep, those
> > conflicts disappears when we can contain each of those old or new
> > things in e.g. a vm.
> >
> >> I mostly do that and have done for over 20 years now.
> >> My desktop is essentially a moderately powered thin client
> >> (currently a 2011 iMac27 with 2 27" thunderbolt displays running
> >> Beowulf). On the server side :
> >
> > ..running on that same 2011 vintage iMac27?
>
> Yes, 3 27" displays managed by xmonad. Enough screen realestate to go
> around.


..real estate is nice, I still have a few big CTRs. :o)

> >> - A Dual head windows 8 VM for Autodesk products & MS Office.
> >> - A Dual head
> >
> > ..meaning 2 27" physical displays on top of each client's desk?
>
> Meaning I have 2 27" heads on the VM that display on 2 of my 3 27"
> displays on the desktop. Being able to use more than one display on a
> windows VM revolutionized my VM use.


..that, I can believe. :o)

> >> windows 10 VM for newer Autodesk products that won't
> >> run on Windows 8.
> >> - A Debian wheezy / xfce VM for a specific older version of
> >> Openoffice.
> >
> > ..I have some old hw running Debian Sarge thru Wheezy, can I simply
> > yank out those old disks and run them off a vm each?
> > Junk's still useful as guinea pig rigs. ;o)
>
> Might need a little tweak here or there, but sure. I've run VMs off
> dedicated drives. Right now the CCTV server has 4 8TB drives passed
> straight through.
> >> - A Windows 8 VM with a CCTV server.
> >
> > ..is that running better than e.g. motion or zoneminder, or just
> > based on company policy?
>
> Part of what I do is work with numerous CCTV systems. I've never
> found anything open source that was worth a second look.


..we're on different planets there. ;o) Last time I played with
motion on webcams 10 years ago, I fed 6 webcams into a Konqueror
(KDE's web etc browser) tab.

..motion is also nice for capturing FPV feed, I just set up a 2nd
receiver feeding video straight onto disk. Leaving the plane
alone for 5 seconds, means the picture doesn't move for 5s, which
is how it is set up to auto-edit one video per flight. ;o)


> >> - A Devuan Ascii / XFCE VM for Peer to peer.
> >> - A Devuan Ascii headless VM for Cacti, HLI to the HVAC system and
> >> some general development and plumbing
> >> - Numerous VMs with specific build configurations for embedded
> >> software.
> >>
> >> The other thing VMs are good for is tying up Scam call-center
> >> workers. "My windows is full of viruses you say? And you can help
> >> me with that? Brilliant, just let me sit down and start my computer
> >> up" (spins up a fresh clean windows VM I prepared earlier)
> >
> > ..ooo, and with a nice juicy tarpit too? :o)
>
> Yep, useful for honeypots also.


..aye, can't have them smell the tar. ;o)

> >> Win4lin, bochs and sheepshaver were brilliant, then qemu came and
> >> conquered. I can't imagine ever running Windows on the bare metal
> >> again.
> >>
> >> Between spice and rdp, there's not much you can't do.
> >>
> >> Brad
> >
> > ..I get the impression you have what we're looking for here.
> > Your 'dpkg --get-selections' would get us started, you also
> > have ideas on how to best set up our own configurations.
> >
>
> I really don't have a "minimal" install. To get what I have, a basic
> beowulf install with the addition of the packaged libvirt would be
> almost there. I'm not fanatical about the minimalist approach.
> Storage is cheap and my time isn't. The server also runs :
> - exim/dovecot
> - openvpn server
> - cups
> - custom ghostscript filters
> - apache
> - bind
> - dhcpd
> - handbrake
> - mariadb
> - postgres
> - samba


..those should really be run in one vm for each service, possibly
put a few vms that works together in another level vm?
There's also that too-many-vms-to-keep-track-of risk.

> There's years of cruft here :
>
> srv:~# dpkg --get-selections | wc -l
> 1612


..my d44 15509... messy, I know. ;o)

> Heck, a new machine with a clean install I spun up last week (minimal
> beouwlf with libvirt) : root@XXXXXX:~# dpkg --get-selections | wc -l
> 1094
>
> Not really minimal, but it took minutes to install and get running.


..maybe share that dpkg --get-selections output?

> I use VMs a "lot", but really have no use for a "minimalist"
> hypervisor install.


..se above on Devuan based "Qubes OS" bare metal host OS, it needs
to be comfortable in daily use, to be safe and useful, so it cannot
be too minimalist.

> I think you really need to do some experiments and figure out what
> perceived overhead/risk you are going to incur by using the packaged
> software on a minimalist beowulf install and figure out what you are
> really trying to achieve when you say "bare metal".


..now, I'm leaning towards a minimal Devuan Xen install. Still open
for better ideas.

> I can't imagine any of it being more than a bit of extra disk space.
> I know it'll make zero difference to the guests.


..the idea is have the guests take the online heat etc and crash and
burn protecting the host and the data.


--
..med vennlig hilsen = with Kind Regards from Arnt Karlsen
...with a number of polar bear hunters in his ancestry...
Scenarios always come in sets of three:
best case, worst case, and just in case.