Re: Outdated example in smtpd.conf(5)

[Gilles Chehade]

On Sun, May 01, 2011 at 07:23:24PM -0600, Anthony J. Bentley wrote:
 I recently upgraded to a snapshot and tried to set up smtpd.
 
 But the first example in the smtpd.conf(5) manpage fails with a usage error:
 # makemap /etc/mail/secrets
 Usage: makemap [-C cffile] [-N] [-c cachesize] [-D commentchar]
[-d] [-e] [-f] [-l] [-o] [-r] [-s] [-t delimiter]
[-u] [-v] type mapname
 
 What is the correct way to perform this step? Should the manpage be updated?
 

You need to read mailer.conf(5)  ;-)

-- 
Gilles - http://users.poolp.org/~gilles/

pf ruleset for openbsd 4.9

[OpenBSD Geek]

http://mouedine.net/ruleset49.aspx [1]



Links:
--
[1]
http://mouedine.net/ruleset49.aspx

Re: Any suggests for modest, known compatible servers with RAID 1?

[George Georgalis]

On Sat 30 Apr 2011 at 10:03:11 AM -0400, Nico Kadel-Garcia wrote:
keys and uploaded files need someplace to be. You've raised an
interesting point with flash hardware. How well is that working for
you?

I've been using IDE cflash perimeter firewalls since about 2006,
another bsd but no complaints. This one has no fans, moving parts etc, 
AMD Geode LX (586-class), 498.08 MHz, id 0x5a2

-George

Re: 4.8 and 4.9 panic on Supermicro P8SCi

[Ivo Chutkin]

Hi Owain,
I was not able to disable it by config -e /bsd, it keeps panic.
I just compile new kernel with inteldrm disabled and it OK.
Thanks for the help,
Ivo

On 1.5.2011 P3. 18:16 Q., Owain Ainsworth wrote:

On Sun, May 01, 2011 at 05:57:47PM +0300, Ivo Chutkin wrote:

Hi Chris,
It solves the problem and system boots normally.
Do I need to compile custom kernel and disable inteldrm there?
Thanks for the help,



config -e /bsd

should allow you to make the disable permanent.

FWIW i just commited a fix to current that should stop the crash at
least.

-0-


Ivo
On 1.5.2011 P3. 17:10 Q., Chris Cappuccio wrote:

looks like a setup bug in the non-attachment of inteldrm?

try disabling inteldrm in the UKC

(boot -c
disable inteldrm
quit)

Ivo Chutkin [open...@bgone.net] wrote:

Hello sirs,
I have problem to get this system running.
It is Supermicro P8SCi, dmesg and panic messages are below.
I have three identical systens, I tried 4.8 stable, 4.9 official and
4.9 snapshot, all i386 GENERIC and 4.9 snapshot GENERIC.MP
ACPI enabled and disabled.
The result is the same. I am not skillful enough to diagnose the
problem myself.

I am glad to help you with any info or tests.

Thank you for the help.

Ivo




###

#

panic 4.8

OpenBSD 4.8-stable (GENERIC) #11: Thu Apr 28 11:24:34 EEST 2011
 r...@old.my.domain:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel(R) Pentium(R) 4 CPU 3.20GHz (GenuineIntel 686-class) 3.21

GHzI

cpu0:

FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS
H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,CNXT-ID,xTPR

real mem  = 2137550848 (2038MB)/  CI Cntrlr
avail mem = 2092621824 (1995MB)6   2659   0C03  USB 1.0/1.1 UHCI
Cntrlr 10
mainbus0 at root  A   0C03  USB 1.0/1.1 UHCI
Cntrlr 12
bios0 at mainbus0: AT/286+ BIOS, date 04/07/05, BIOS32 rev. 0 @
0xfa000, SMBIOS rev. 2.3 @ 0xf0800 (49 entries)rom CD
bios0: vendor Phoenix Technologies, LTD version 6.00 PG date 04/07/2005
bios0: Supermicro P8SC8
acpi at bios0 function 0x0 not configured
mpbios0 at bios0: Intel MP Specification 1.4
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: apic clock running at 200MHz
mpbios0: bus 0 is type PCI
mpbios0: bus 1 is type PCI
mpbios0: bus 2 is type PCI
mpbios0: bus 3 is type PCI
mpbios0: bus 4 is type PCI
mpbios0: bus 5 is type PCI
mpbios0: bus 6 is type PCI
mpbios0: bus 7 is type ISA
ioapic0 at mainbus0: apid 4 pa 0xfec0, version 20, 24 pins
ioapic0: misconfigured as apic 0, remapped to apid 4
ioapic1 at mainbus0: apid 5 pa 0xfec84400, version 20, 24 pins
pcibios0 at bios0: rev 3.0 @ 0xf/0xcb24
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfc9f0/288 (16 entries)
pcibios0: PCI Exclusive IRQs: 5 9 10 12
pcibios0: PCI Interrupt Router at 000:31:0 (Intel 82801FB LPC rev 0x00)
pcibios0: PCI bus #6 is the last bus
bios0: ROM list: 0xc/0x9400! 0xcc000/0x4000! 0xd/0x1800
0xd2000/0x1800
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 Intel E7221 Host rev 0x05
ppb0 at pci0 dev 1 function 0 Intel E7221 PCIE rev 0x05: apic 4
int 16 (irq 5)
pci_intr_map: bus 0 dev 1 func 0 pin 2; line 5
pci_intr_map: no MP mapping found
pci_intr_map: bus 0 dev 1 func 0 pin 3; line 12
pci_intr_map: no MP mapping found
pci_intr_map: bus 0 dev 1 func 0 pin 4; line 10
pci_intr_map: no MP mapping found
pci1 at ppb0 bus 1
ppb1 at pci1 dev 0 function 0 Intel PCIE-PCIE rev 0x09
pci2 at ppb1 bus 2
Intel IOxAPIC rev 0x09 at pci1 dev 0 function 1 not configured
vga1 at pci0 dev 2 function 0 Intel E7221 Video rev 0x05
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
intagp at vga1 not configured
inteldrm0 at vga1: apic 4 int 16 (irq 5)
drm0 at inteldrm0: couldn't find agp
uvm_fault(0xd0a05960, 0x0, 0, 3) -   e
kernel: page fault trap, code=0
Stopped at  rw_cas_486+0xf: cmpxchgl%ebx,0(%ecx)
rw_cas_486(48,0,d0a05a64,0,0) at rw_cas_486+0xf
rw_enter_write(48,0,d0b75b68,0,d2e14000) at rw_enter_write+0x29
i915_gem_idle(d2e14000,d02094e0,0,d2e0f600,d0b75b74) at

i915_gem_idle+0x20

inteldrm_lastclose(d2e0f600,0,8,0,d09967b8) at inteldrm_lastclose+0x1a
drm_lastclose(d2e0f600,d2e0f600,d0b75bf8,d03e4aab,0) at

drm_lastclose+0x1b



config_attach(d2e14000,d09919cc,d0b75bf8,d0207cd0,0,2,0,d03eca77,d099b238,5

,d08

24200,d2dfac80,d09acea0,1,14,1,d0b75c05) at config_attach+0x140
drm_attach_pci(d0824200,d0b75d70,1,d2e14000,0) at drm_attach_pci+0xaa
inteldrm_attach(d2d0f900,d2e14000,d0b75d70,d03e4aab,d059b940) at
inteldrm_attac
h+0x40e
config_attach(d2d0f900,d09919f0,d0b75d70,0,258a,6280,628015d9) at
config_attach
+0x140
vga_pci_attach(d2dfde00,d2d0f900,d0b75d70,d03e4aab,d0598b60) at
vga_pci_attach+
0x12b
ddb




###

Re: 4.8 and 4.9 panic on Supermicro P8SCi

[Kapetanakis Giannis]

On 02/05/11 12:07, Ivo Chutkin wrote:
 Hi Owain,
 I was not able to disable it by config -e /bsd, it keeps panic.
 I just compile new kernel with inteldrm disabled and it OK.
 Thanks for the help,
 Ivo

You should do

config -ef /bsd
disable inteldrm
quit

If you are not using /bsd kernel replace first line with the appropriate
kernel.

Giannis

[demime 1.01d removed an attachment of type application/pkcs7-signature which 
had a name of smime.p7s]

How to mount usb disk at boot

[Ivo Chutkin]

Hello misc,
I have problem mounting usb disk at boot time (namely Western Digital My 
Book 1130) on Alix2d2 board, dmesg below.

I am getting this message and the disk is not mounted:
mount_ffs: /dev/sd0a on /data: Device not configured

also:

r...@asterisk1.my.domain
~ # mount
/dev/wd0a on / type ffs (local)
/dev/wd0e on /home type ffs (local, nodev, nosuid)
/dev/wd0d on /mfs type ffs (local, nodev, nosuid)

After boot, I can mount it by hand without problem issuing:

r...@asterisk1.my.domain
~ # mount /dev/sd0a /data

and:

r...@asterisk1.my.domain
~ # mount
/dev/wd0a on / type ffs (local)
/dev/wd0e on /home type ffs (local, nodev, nosuid)
/dev/wd0d on /mfs type ffs (local, nodev, nosuid)
/dev/sd0a on /data type ffs (local)


My fstab is:

/dev/wd0a / ffs rw 1 1
/dev/wd0e /home ffs rw,nodev,nosuid 1 2
/dev/wd0d /mfs ffs rw,nodev,nosuid 1 2
/dev/sd0a /data ffs rw,nodev 0 0

How can I mount this disk at boot?
Thanks for the help,
Ivo

Dmesg:
OpenBSD 4.8-stable (GENERIC) #1: Wed Apr  6 17:51:44 EEST 2011
r...@mail.bgone.bg:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Geode(TM) Integrated Processor by AMD PCS (AuthenticAMD 
586-class) 499 MHz

cpu0: FPU,DE,PSE,TSC,MSR,CX8,SEP,PGE,CMOV,CFLUSH,MMX
real mem  = 268009472 (255MB)
avail mem = 253669376 (241MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 11/05/08, BIOS32 rev. 0 @ 0xfd088
pcibios0 at bios0: rev 2.1 @ 0xf/0x1
pcibios0: pcibios_get_intr_routing - function not supported
pcibios0: PCI IRQ Routing information unavailable.
pcibios0: PCI bus #0 is the last bus
bios0: ROM list: 0xe/0xa800
cpu0 at mainbus0: (uniprocessor)
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 1 function 0 AMD Geode LX rev 0x33
glxsb0 at pci0 dev 1 function 2 AMD Geode LX Crypto rev 0x00: RNG AES
vr0 at pci0 dev 9 function 0 VIA VT6105M RhineIII rev 0x96: irq 10, 
address 00:0d:b9:20:95:08
ukphy0 at vr0 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI 
0x004063, model 0x0034
vr1 at pci0 dev 11 function 0 VIA VT6105M RhineIII rev 0x96: irq 15, 
address 00:0d:b9:20:95:09
ukphy1 at vr1 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI 
0x004063, model 0x0034
glxpcib0 at pci0 dev 15 function 0 AMD CS5536 ISA rev 0x03: rev 3, 
32-bit 3579545Hz timer, watchdog, gpio

gpio0 at glxpcib0: 32 pins
pciide0 at pci0 dev 15 function 2 AMD CS5536 IDE rev 0x01: DMA, 
channel 0 wired to compatibility, channel 1 wired to compatibility

wd0 at pciide0 channel 0 drive 0: TS4GCF133
wd0: 1-sector PIO, LBA, 3823MB, 7831152 sectors
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2
pciide0: channel 1 ignored (disabled)
ohci0 at pci0 dev 15 function 4 AMD CS5536 USB rev 0x02: irq 12, 
version 1.0, legacy support

ehci0 at pci0 dev 15 function 5 AMD CS5536 USB rev 0x02: irq 12
usb0 at ehci0: USB revision 2.0
uhub0 at usb0 AMD EHCI root hub rev 2.00/1.00 addr 1
isa0 at glxpcib0
isadma0 at isa0
com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
com0: console
com1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo
pcppi0 at isa0 port 0x61
spkr0 at pcppi0
npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16
usb1 at ohci0: USB revision 1.0
uhub1 at usb1 AMD OHCI root hub rev 1.00/1.00 addr 1
biomask 7be7 netmask ffe7 ttymask 
mtrr: K6-family MTRR support (2 registers)
nvram: invalid checksum
softraid0 at root
root on wd0a swap on wd0b dump on wd0b
clock: unknown CMOS layout
umass0 at uhub0 port 2 configuration 1 interface 0 Western Digital My 
Book 1130 rev 2.10/10.12 addr 2

umass0: using SCSI over Bulk-Only
scsibus0 at umass0: 2 targets, initiator 0
Automatic boot in progress: starting file system checks.
/dev/rwd0a: file system is clean; not checking
/dev/rwd0e: file system is clean; not checking
/dev/rwd0d: file system is clean; not checking
mount_ffs: /dev/sd0a on /data: Device not configured
setting tty flags
pf enabled
net.inet.ip.forwarding: 0 - 1
starting network
DHCPREQUEST on vr0 to 255.255.255.255 port 67
DHCPACK from 192.168.75.1 (00:1e:58:9f:a5:ff)
bound to 192.168.75.66 -- renewal in 21600 seconds.
starting system logger
starting initial daemons: ntpd.
mount_ffs: /dev/sd0a on /data: Device not configured
savecore: no core dump
checking quotas: done.
building ps databases: kvm dev.
clearing /tmp
starting pre-securelevel daemons:.
setting kernel security level: kern.securelevel: 0 - 1
sd0 at scsibus0 targ 1 lun 0: WD, My Book 1130, 1012 SCSI4 0/direct fixed
sd0: 953837MB, 512 bytes/sec, 1953458176 sec total
ses0 at scsibus0 targ 1 lun 1: WD, SES Device, 1012 SCSI4 13/enclosure 
services fixed

ses0: unable to read enclosure configuration
creating runtime link editor directory cache.
preserving editor files.
starting network daemons: sshd sendmail inetd.
starting local daemons:.
standard daemons: cron.
Mon May  2 09:36:28 EEST 2011

OpenBSD/i386 (asterisk1.my.domain) (tty00)

Re: Choosing a window manager...

[Steffen Daode Nurpmeso]

On Tue, 15 Mar 2011 19:50:50 +0100, marc li...@drwx.org wrote:
 Hi all,
 Subject: Choosing a window manager...

All of you - you are completely misguided.
The redmoondian horror misled you to use crude stuff.
(Hey, if you're american: crude is *not* a noun here!!!)
'Cause there is one, and only *one* real and functioning
window manager on this whole small planet!

And it is ahwm.
(http://people.cs.uchicago.edu/~ahiorean/ahwm/)

Free at last, free at last, oh how i wished i would be free at last.
And it is ahwm.

--
Steffen
sdao...@gmail.com

Re: How to mount usb disk at boot

[Raimo Niskanen]

On Mon, May 02, 2011 at 12:31:47PM +0300, Ivo Chutkin wrote:
 Hello misc,
 I have problem mounting usb disk at boot time (namely Western Digital My 
 Book 1130) on Alix2d2 board, dmesg below.
 I am getting this message and the disk is not mounted:
 mount_ffs: /dev/sd0a on /data: Device not configured

It seems the boot does not wait for every possible USB device
before mounting from /etc/fstab

Try the mount option 'noauto' and mount the drive
through hotplugd(8) if you need automatic mount.

 
 also:
 
 r...@asterisk1.my.domain
 ~ # mount
 /dev/wd0a on / type ffs (local)
 /dev/wd0e on /home type ffs (local, nodev, nosuid)
 /dev/wd0d on /mfs type ffs (local, nodev, nosuid)
 
 After boot, I can mount it by hand without problem issuing:
 
 r...@asterisk1.my.domain
 ~ # mount /dev/sd0a /data
 
 and:
 
 r...@asterisk1.my.domain
 ~ # mount
 /dev/wd0a on / type ffs (local)
 /dev/wd0e on /home type ffs (local, nodev, nosuid)
 /dev/wd0d on /mfs type ffs (local, nodev, nosuid)
 /dev/sd0a on /data type ffs (local)
 
 
 My fstab is:
 
 /dev/wd0a / ffs rw 1 1
 /dev/wd0e /home ffs rw,nodev,nosuid 1 2
 /dev/wd0d /mfs ffs rw,nodev,nosuid 1 2
 /dev/sd0a /data ffs rw,nodev 0 0
 
 How can I mount this disk at boot?
 Thanks for the help,
 Ivo
 
 Dmesg:
 OpenBSD 4.8-stable (GENERIC) #1: Wed Apr  6 17:51:44 EEST 2011
 r...@mail.bgone.bg:/usr/src/sys/arch/i386/compile/GENERIC
 cpu0: Geode(TM) Integrated Processor by AMD PCS (AuthenticAMD 
 586-class) 499 MHz
 cpu0: FPU,DE,PSE,TSC,MSR,CX8,SEP,PGE,CMOV,CFLUSH,MMX
 real mem  = 268009472 (255MB)
 avail mem = 253669376 (241MB)
 mainbus0 at root
 bios0 at mainbus0: AT/286+ BIOS, date 11/05/08, BIOS32 rev. 0 @ 0xfd088
 pcibios0 at bios0: rev 2.1 @ 0xf/0x1
 pcibios0: pcibios_get_intr_routing - function not supported
 pcibios0: PCI IRQ Routing information unavailable.
 pcibios0: PCI bus #0 is the last bus
 bios0: ROM list: 0xe/0xa800
 cpu0 at mainbus0: (uniprocessor)
 pci0 at mainbus0 bus 0: configuration mode 1 (bios)
 pchb0 at pci0 dev 1 function 0 AMD Geode LX rev 0x33
 glxsb0 at pci0 dev 1 function 2 AMD Geode LX Crypto rev 0x00: RNG AES
 vr0 at pci0 dev 9 function 0 VIA VT6105M RhineIII rev 0x96: irq 10, 
 address 00:0d:b9:20:95:08
 ukphy0 at vr0 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI 
 0x004063, model 0x0034
 vr1 at pci0 dev 11 function 0 VIA VT6105M RhineIII rev 0x96: irq 15, 
 address 00:0d:b9:20:95:09
 ukphy1 at vr1 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI 
 0x004063, model 0x0034
 glxpcib0 at pci0 dev 15 function 0 AMD CS5536 ISA rev 0x03: rev 3, 
 32-bit 3579545Hz timer, watchdog, gpio
 gpio0 at glxpcib0: 32 pins
 pciide0 at pci0 dev 15 function 2 AMD CS5536 IDE rev 0x01: DMA, 
 channel 0 wired to compatibility, channel 1 wired to compatibility
 wd0 at pciide0 channel 0 drive 0: TS4GCF133
 wd0: 1-sector PIO, LBA, 3823MB, 7831152 sectors
 wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2
 pciide0: channel 1 ignored (disabled)
 ohci0 at pci0 dev 15 function 4 AMD CS5536 USB rev 0x02: irq 12, 
 version 1.0, legacy support
 ehci0 at pci0 dev 15 function 5 AMD CS5536 USB rev 0x02: irq 12
 usb0 at ehci0: USB revision 2.0
 uhub0 at usb0 AMD EHCI root hub rev 2.00/1.00 addr 1
 isa0 at glxpcib0
 isadma0 at isa0
 com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
 com0: console
 com1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo
 pcppi0 at isa0 port 0x61
 spkr0 at pcppi0
 npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16
 usb1 at ohci0: USB revision 1.0
 uhub1 at usb1 AMD OHCI root hub rev 1.00/1.00 addr 1
 biomask 7be7 netmask ffe7 ttymask 
 mtrr: K6-family MTRR support (2 registers)
 nvram: invalid checksum
 softraid0 at root
 root on wd0a swap on wd0b dump on wd0b
 clock: unknown CMOS layout
 umass0 at uhub0 port 2 configuration 1 interface 0 Western Digital My 
 Book 1130 rev 2.10/10.12 addr 2
 umass0: using SCSI over Bulk-Only
 scsibus0 at umass0: 2 targets, initiator 0
 Automatic boot in progress: starting file system checks.
 /dev/rwd0a: file system is clean; not checking
 /dev/rwd0e: file system is clean; not checking
 /dev/rwd0d: file system is clean; not checking
 mount_ffs: /dev/sd0a on /data: Device not configured
 setting tty flags
 pf enabled
 net.inet.ip.forwarding: 0 - 1
 starting network
 DHCPREQUEST on vr0 to 255.255.255.255 port 67
 DHCPACK from 192.168.75.1 (00:1e:58:9f:a5:ff)
 bound to 192.168.75.66 -- renewal in 21600 seconds.
 starting system logger
 starting initial daemons: ntpd.
 mount_ffs: /dev/sd0a on /data: Device not configured
 savecore: no core dump
 checking quotas: done.
 building ps databases: kvm dev.
 clearing /tmp
 starting pre-securelevel daemons:.
 setting kernel security level: kern.securelevel: 0 - 1
 sd0 at scsibus0 targ 1 lun 0: WD, My Book 1130, 1012 SCSI4 0/direct fixed
 sd0: 953837MB, 512 bytes/sec, 1953458176 sec total
 ses0 at scsibus0 targ 1 lun 1: WD, SES Device, 1012 SCSI4 13/enclosure 
 services fixed
 ses0: unable to read enclosure configuration
 

Listino Prezzi

[Sconto Promozionale]

Potete trovare il ns. listino rivenditori su:
http://www.vegastore.it/default.asp?idA=4cmd=pageSXcmdID=2

Cordiali
Vegastore S.r.l.

Re: How to mount usb disk at boot

[Thomas Jeunet]

On Mon, May 2, 2011 at 11:31, Ivo Chutkin open...@bgone.net wrote:
 Hello misc,
 I have problem mounting usb disk at boot time (namely Western Digital My
 Book 1130) on Alix2d2 board, dmesg below.
 I am getting this message and the disk is not mounted:
 mount_ffs: /dev/sd0a on /data: Device not configured

[snip]

 Dmesg:
 OpenBSD 4.8-stable (GENERIC) #1: Wed Apr  6 17:51:44 EEST 2011
r...@mail.bgone.bg:/usr/src/sys/arch/i386/compile/GENERIC
[snip]
 Automatic boot in progress: starting file system checks.
 /dev/rwd0a: file system is clean; not checking
 /dev/rwd0e: file system is clean; not checking
 /dev/rwd0d: file system is clean; not checking
 mount_ffs: /dev/sd0a on /data: Device not configured
[snip]
 sd0 at scsibus0 targ 1 lun 0: WD, My Book 1130, 1012 SCSI4 0/direct fixed
 sd0: 953837MB, 512 bytes/sec, 1953458176 sec total
[snip]
 OpenBSD/i386 (asterisk1.my.domain) (tty00)


Hello,

your sd0 disk is discovered later in the boot process. Have a look at
hotplugd(8) to mount your disk as soon as it's discovered :

Regards,
--
Thomas Jeunet

Re: 4.8 and 4.9 panic on Supermicro P8SCi

[Kapetanakis Giannis]

On 02/05/11 13:14, Ivo Chutkin wrote:

On 2.5.2011 P3. 12:31 Q., Kapetanakis Giannis wrote:

On 02/05/11 12:07, Ivo Chutkin wrote:

Hi Owain,
I was not able to disable it by config -e /bsd, it keeps panic.
I just compile new kernel with inteldrm disabled and it OK.
Thanks for the help,
Ivo


You should do

config -ef /bsd
disable inteldrm
quit

If you are not using /bsd kernel replace first line with the appropriate
kernel.



Hi Giannis,
I did exactly this but it seems not to work

# config -e /bsd


config -ef /bsd

Re: How to mount usb disk at boot

[Olivier Cherrier]

On Mon, May 02, 2011 at 12:31:47PM +0300, open...@bgone.net wrote:
 Dmesg:
 OpenBSD 4.8-stable (GENERIC) #1: Wed Apr  6 17:51:44 EEST 2011
 r...@mail.bgone.bg:/usr/src/sys/arch/i386/compile/GENERIC
 cpu0: Geode(TM) Integrated Processor by AMD PCS (AuthenticAMD  
 586-class) 499 MHz
[snip]
 mount_ffs: /dev/sd0a on /data: Device not configured
[snip]
 sd0 at scsibus0 targ 1 lun 0: WD, My Book 1130, 1012 SCSI4 0/direct fixed
 sd0: 953837MB, 512 bytes/sec, 1953458176 sec total
 ses0 at scsibus0 targ 1 lun 1: WD, SES Device, 1012 SCSI4 13/enclosure  

Your USB disk seems to take a lot of time to start and it is discovered
after /etc/rc issues the 'mount -a' command.  Try to put a 'sleep 10'
before mounting the FS.

-- 
Olivier Cherrier - Symacx.com
mailto:o...@symacx.com

xenocara doesn't build correctly on 4.9-stable/hppa

[Maurice Janssen]

Hi,

I noticed something strange while building xenocara on 4.9-stable on
an hppa-system.

One of the files in the xbase49.tgz file set (from 4.9-release) is
/usr/X11R6/lib/libfontconfig.so.7.0.
After 'make build', there's a libfontconfig.so.5.4 in /usr/X11R6/lib/
that is identical to the 7.0 file from -release.

When I do 'make release', only the 5.4 file ends up in /usr/dest/ , resulting
in a missing libfontconfig.so file in the xbase49.tgz file set (the
maketars script expects that libfontconfig.so.7.0 is there, but it isn't).

So for some reason, the libfontconfig.so.x.y file has the wrong name.
I tried to find the cause, but I get lost in Makefiles and configure scripts.

BTW: I followed the exact steps from the FAQ (section 5.5), with the xenocara
source tree on an NFS server.  The build / release process works without a
hitch on other architectures that use the same NFS server for the source tree.

Does anyone know what is going on and, even better, how to fix it?

Thanks,
Maurice

IPSEC tunnels failing intermittently

[Jakob Alvermark]

Hi,

I am getting some strange problems with IPSEC tunnels.
There are 5 sites connected using IPSEC tunnels, which used to work perfectly,
but since upgrading to 4.8 (from 4.4),
tunnels started failing, seemly at random intervals.
To investigate I set up two machines in the lab and they exhibit the same
behavior:
After a seemingly random amount of time, when there is a renegotiation of an
SA due to its lifetime expired,
traffic will stop flowing (I have a ping running). 'ipsecctl -sa' and 'netstat
-rn' shows everything as normal.
When that SA lifetime expires and a new SA is negotiated it comes back again.

I recompiled the kernel with 'option ENCDEBUG' and set net.inet.ip.encdebug=1
and when it fails
I get 'esp_input_cb(): authentication failed for packet in SA
xxx.xxx.xxx.97/6e68c6ae'

The machines are installed with stock OpenBSD 4.8, nothing special about the
configuration.
ipsec.conf is very simple, just one line:

ike esp from {192.168.1.9/24 172.16.1.0/24} to {192.168.31.0/24
192.168.32.254} local xxx.xxx.xxx.97 peer xxx.xxx.xxx.99

Public keys copied across, isakmpd started with flags -K -v

Does anyone have any ideas about this?

Thank you

Jakob Alvermark
jakob.alverm...@bsdlabs.com
BSDLabs AB
Solna, Sweden
556759-7652

Hybrid graphics and OpenBSD

[Ilya Ilembitov]

Hi, all.

Does OpenBSD has any equivalent of vga_switcheroo?

Say, I have HP Envy 13 laptop. It has Intel GMA 4500MHD and ATI Radeon
HD4330. Both are supported by the respective open source drivers. In
theory (ok, in Windows) I should be able to switch between more
power-efficient Intel IGP and more potent ATI dedicated GPU. In Linux
(and in OpenBSD) by default both cards will be turned on (so both of
them will drain battery(, but only Intel will work. Unless you use
vga_switcheroo, which does a switch and can turn the unused card off

Does OpenBSD have anything like this?

Thanks for any advice.

Re: IPSEC tunnels failing intermittently

[Stuart Henderson]

I see something similar which I've been trying to track down but not
really succeeding. The thing we have in common is multiple subnets,
I wonder if this is a factor...


 (and this setup has always been post-4.4 
On 2011-05-02, Jakob Alvermark jakob.alverm...@bsdlabs.com wrote:
 Hi,

 I am getting some strange problems with IPSEC tunnels.
 There are 5 sites connected using IPSEC tunnels, which used to work perfectly,
 but since upgrading to 4.8 (from 4.4),
 tunnels started failing, seemly at random intervals.
 To investigate I set up two machines in the lab and they exhibit the same
 behavior:
 After a seemingly random amount of time, when there is a renegotiation of an
 SA due to its lifetime expired,
 traffic will stop flowing (I have a ping running). 'ipsecctl -sa' and 'netstat
 -rn' shows everything as normal.
 When that SA lifetime expires and a new SA is negotiated it comes back again.

 I recompiled the kernel with 'option ENCDEBUG' and set net.inet.ip.encdebug=1
 and when it fails
 I get 'esp_input_cb(): authentication failed for packet in SA
 xxx.xxx.xxx.97/6e68c6ae'

 The machines are installed with stock OpenBSD 4.8, nothing special about the
 configuration.
 ipsec.conf is very simple, just one line:

 ike esp from {192.168.1.9/24 172.16.1.0/24} to {192.168.31.0/24
 192.168.32.254} local xxx.xxx.xxx.97 peer xxx.xxx.xxx.99

 Public keys copied across, isakmpd started with flags -K -v

 Does anyone have any ideas about this?

 Thank you

 Jakob Alvermark
 jakob.alverm...@bsdlabs.com
 BSDLabs AB
 Solna, Sweden
 556759-7652

Re: bsd.rd and (automated) upgrading

[Chris Bennett]

I use remote IP KVM to do my upgrades. Occasionally, I can't get my keybord 
input to get boot bsd.rd fast enough, so I just replace bsd with bsd.rd and 
reboot. Voila! I get bsd.rd without a hitch. If that were to be a problem, I 
can just kick down to shell, mv bsd back and reboot. All works just fine.

Chris Bennett

Re: IPSEC tunnels failing intermittently

[Sebastian Benoit]

Stuart Henderson(s...@spacehopper.org) on 2011.05.02 13:30:34 +:
 I see something similar which I've been trying to track down but not
 really succeeding. The thing we have in common is multiple subnets,
 I wonder if this is a factor...

I have seen this too, two times in 3 weeks, with 7 subnets between two
endpoints. Haven't made a bug report yet because i want to update first ...

/Benno

Re: Hybrid graphics and OpenBSD

[Owain Ainsworth]

On Mon, May 02, 2011 at 04:29:08PM +0400, Ilya Ilembitov wrote:
 Hi, all.
 
 Does OpenBSD has any equivalent of vga_switcheroo?
 
 Say, I have HP Envy 13 laptop. It has Intel GMA 4500MHD and ATI Radeon
 HD4330. Both are supported by the respective open source drivers. In
 theory (ok, in Windows) I should be able to switch between more
 power-efficient Intel IGP and more potent ATI dedicated GPU. In Linux
 (and in OpenBSD) by default both cards will be turned on (so both of
 them will drain battery(, but only Intel will work. Unless you use
 vga_switcheroo, which does a switch and can turn the unused card off
 
 Does OpenBSD have anything like this?

Sorry, for the time being we have no such feature.  There is a lot of
code still to be written before it can be supported.

 
 Thanks for any advice.
 

-0-
-- 
Graduate life: It's not just a job.  It's an indenture.

Re: Hybrid graphics and OpenBSD

[Kevin Chadwick]

On Mon, 2 May 2011 16:29:08 +0400
Ilya Ilembitov wrote:

 In Linux
 (and in OpenBSD) by default both cards will be turned on (so both of
 them will drain battery

This seems silly, you'd still be wasting power untill your driver
loaded or whatever. Does your motherboards bios not have the ability to
switch one off. Some switch off the intel automatically when an addon
card is put in.

XEN-Guest

[Tobias Crefeld]

I think about installing an OpenBSD-guest on a XEN-Host (Debian
Squeeze), all OS as 64bit-version alias amd64. Are there any
experiences with OpenBSD as Dom-U? 

The guest will be a firewalling-router with ospfd, bind, openvpn and 6
ethernet-interfaces.

Any comments are welcome!

Regards,
 Tobias.

Re: IPSEC tunnels failing intermittently

[Robert]

Hi,

Same here, but between 2 hosts in the same subnet (very basic network
setup).
I was also waiting for 4.9 (and time to investigate...)

kind regards,
Robert


On Mon, 2 May 2011 13:30:34 + (UTC)
Stuart Henderson s...@spacehopper.org wrote:

 I see something similar which I've been trying to track down but not
 really succeeding. The thing we have in common is multiple subnets,
 I wonder if this is a factor...
 
 
  (and this setup has always been post-4.4 
 On 2011-05-02, Jakob Alvermark jakob.alverm...@bsdlabs.com wrote:
  Hi,
 
  I am getting some strange problems with IPSEC tunnels.
  There are 5 sites connected using IPSEC tunnels, which used to work 
  perfectly,
  but since upgrading to 4.8 (from 4.4),
  tunnels started failing, seemly at random intervals.
  To investigate I set up two machines in the lab and they exhibit the same
  behavior:
  After a seemingly random amount of time, when there is a renegotiation of an
  SA due to its lifetime expired,
  traffic will stop flowing (I have a ping running). 'ipsecctl -sa' and 
  'netstat
  -rn' shows everything as normal.
  When that SA lifetime expires and a new SA is negotiated it comes back 
  again.
 
  I recompiled the kernel with 'option ENCDEBUG' and set 
  net.inet.ip.encdebug=1
  and when it fails
  I get 'esp_input_cb(): authentication failed for packet in SA
  xxx.xxx.xxx.97/6e68c6ae'
 
  The machines are installed with stock OpenBSD 4.8, nothing special about the
  configuration.
  ipsec.conf is very simple, just one line:
 
  ike esp from {192.168.1.9/24 172.16.1.0/24} to {192.168.31.0/24
  192.168.32.254} local xxx.xxx.xxx.97 peer xxx.xxx.xxx.99
 
  Public keys copied across, isakmpd started with flags -K -v
 
  Does anyone have any ideas about this?
 
  Thank you
 
  Jakob Alvermark
  jakob.alverm...@bsdlabs.com
  BSDLabs AB
  Solna, Sweden
  556759-7652

Re: XEN-Guest

[John Jackson]

On Mon, May 02, 2011 at 05:21:11PM +0200, Tobias Crefeld wrote:
 I think about installing an OpenBSD-guest on a XEN-Host (Debian
 Squeeze), all OS as 64bit-version alias amd64. Are there any
 experiences with OpenBSD as Dom-U? 

It's probably much more straightforward to run kvm-qemu instead of XEN.
OpenBSD works fine as a guest using kvm/kvm-qemu and a CPU which
supports hardware virtualization (egrep svm|vmx /proc/cpuinfo).  On
the first boot after install, boot into ukc and disable mpbios.
Afterwards, disable mpbios in /bsd with 'config' and it should work
fine.

 
 The guest will be a firewalling-router with ospfd, bind, openvpn and 6
 ethernet-interfaces.

I've successfully run IPSEC (iked and isakmpd both work), bridging and
various network services this way.

 
 Any comments are welcome!
 
 Regards, Tobias.

John

Re: XEN-Guest

[Tomas Bodzar]

On Mon, May 2, 2011 at 5:21 PM, Tobias Crefeld t...@cataneo.eu wrote:
 I think about installing an OpenBSD-guest on a XEN-Host (Debian
 Squeeze), all OS as 64bit-version alias amd64. Are there any
 experiences with OpenBSD as Dom-U?

 The guest will be a firewalling-router with ospfd, bind, openvpn and 6
 ethernet-interfaces.

 Any comments are welcome!

http://marc.info/?l=openbsd-miscm=129051611606830w=2
http://marc.info/?l=openbsd-miscm=126328361516932w=2


 Regards,
 B Tobias.

Re: IPSEC tunnels failing intermittently

[Per olof Ljungmark]

On 05/02/11 18:08, Robert wrote:
 Hi,
 
 Same here, but between 2 hosts in the same subnet (very basic network
 setup).
 I was also waiting for 4.9 (and time to investigate...)

We see same behaviour on 4.9 so upgrading will not help.

 
 On Mon, 2 May 2011 13:30:34 + (UTC)
 Stuart Henderson s...@spacehopper.org wrote:
 
 I see something similar which I've been trying to track down but not
 really succeeding. The thing we have in common is multiple subnets,
 I wonder if this is a factor...


  (and this setup has always been post-4.4 
 On 2011-05-02, Jakob Alvermark jakob.alverm...@bsdlabs.com wrote:
 Hi,

 I am getting some strange problems with IPSEC tunnels.
 There are 5 sites connected using IPSEC tunnels, which used to work 
 perfectly,
 but since upgrading to 4.8 (from 4.4),
 tunnels started failing, seemly at random intervals.
 To investigate I set up two machines in the lab and they exhibit the same
 behavior:
 After a seemingly random amount of time, when there is a renegotiation of an
 SA due to its lifetime expired,
 traffic will stop flowing (I have a ping running). 'ipsecctl -sa' and 
 'netstat
 -rn' shows everything as normal.
 When that SA lifetime expires and a new SA is negotiated it comes back 
 again.

 I recompiled the kernel with 'option ENCDEBUG' and set 
 net.inet.ip.encdebug=1
 and when it fails
 I get 'esp_input_cb(): authentication failed for packet in SA
 xxx.xxx.xxx.97/6e68c6ae'

 The machines are installed with stock OpenBSD 4.8, nothing special about the
 configuration.
 ipsec.conf is very simple, just one line:

 ike esp from {192.168.1.9/24 172.16.1.0/24} to {192.168.31.0/24
 192.168.32.254} local xxx.xxx.xxx.97 peer xxx.xxx.xxx.99

 Public keys copied across, isakmpd started with flags -K -v

 Does anyone have any ideas about this?

 Thank you

 Jakob Alvermark
 jakob.alverm...@bsdlabs.com
 BSDLabs AB
 Solna, Sweden
 556759-7652
 

-- 
Do you consider your e-mail important?

BSDLabs AB
Registered in Solna, Sweden
SE556759765201
http://www.bsdlabs.com

Re: XEN-Guest

[Matt S]

I use kvm/qemu on a Debian Squeeze box to virtualize all of my OpenBSD stuff 
and 
it works extremely well (my only wish is that OpenBSD could support Dom0 or the 
kvm/qemu equivalent).  If you decide to go this route, you need to make certain 
to disable MPBIOS after installing OpenBSD on a guest or else the guest will 
hang on startup at Setting TTYs.  



On Mon, May 02, 2011 at 05:21:11PM +0200, Tobias Crefeld wrote:
 I think about installing an OpenBSD-guest on a XEN-Host (Debian
 Squeeze), all OS as 64bit-version alias amd64. Are there any
 experiences with OpenBSD as Dom-U? 

It's probably much more straightforward to run kvm-qemu instead of XEN.
OpenBSD works fine as a guest using kvm/kvm-qemu and a CPU which
supports hardware virtualization (egrep svm|vmx /proc/cpuinfo).  On
the first boot after install, boot into ukc and disable mpbios.
Afterwards, disable mpbios in /bsd with 'config' and it should work
fine.

 
 The guest will be a firewalling-router with ospfd, bind, openvpn and 6
 ethernet-interfaces.

I've successfully run IPSEC (iked and isakmpd both work), bridging and
various network services this way.

 
 Any comments are welcome!
 
 Regards, Tobias.

John

Re: IPSEC tunnels failing intermittently

[Chris Smith]

On Mon, May 2, 2011 at 7:28 AM, Jakob Alvermark
jakob.alverm...@bsdlabs.com wrote:
 tunnels started failing, seemly at random intervals.

Similar problem here with -current.

Log entries like:

Apr 25 01:07:33 hostname isakmpd[995]: message_recv: invalid cookie(s)
77081dce1d157a88 689ce96611c630c2
Apr 25 01:07:33 hostname isakmpd[995]: dropped message from
62.41.252.83 port 500 due to notification type INVAL
ID_COOKIE


Happens quite often.
Sometimes the tunnel will start back up on its own, maybe always so
if one can wait long enough. Sometimes waiting is not possible and
isakmpd must be restarted.

Re: IPSEC tunnels failing intermittently

[Vijay Sankar]

Per olof Ljungmark wrote:

On 05/02/11 18:08, Robert wrote:

Hi,

Same here, but between 2 hosts in the same subnet (very basic network
setup).
I was also waiting for 4.9 (and time to investigate...)


We see same behaviour on 4.9 so upgrading will not help.


On Mon, 2 May 2011 13:30:34 + (UTC)
Stuart Henderson s...@spacehopper.org wrote:


I see something similar which I've been trying to track down but not
really succeeding. The thing we have in common is multiple subnets,
I wonder if this is a factor...


 (and this setup has always been post-4.4 
On 2011-05-02, Jakob Alvermark jakob.alverm...@bsdlabs.com wrote:

Hi,

I am getting some strange problems with IPSEC tunnels.
There are 5 sites connected using IPSEC tunnels, which used to work perfectly,
but since upgrading to 4.8 (from 4.4),
tunnels started failing, seemly at random intervals.
To investigate I set up two machines in the lab and they exhibit the same
behavior:
After a seemingly random amount of time, when there is a renegotiation of an
SA due to its lifetime expired,
traffic will stop flowing (I have a ping running). 'ipsecctl -sa' and 'netstat
-rn' shows everything as normal.
When that SA lifetime expires and a new SA is negotiated it comes back again.

I recompiled the kernel with 'option ENCDEBUG' and set net.inet.ip.encdebug=1
and when it fails
I get 'esp_input_cb(): authentication failed for packet in SA
xxx.xxx.xxx.97/6e68c6ae'

The machines are installed with stock OpenBSD 4.8, nothing special about the
configuration.
ipsec.conf is very simple, just one line:

ike esp from {192.168.1.9/24 172.16.1.0/24} to {192.168.31.0/24
192.168.32.254} local xxx.xxx.xxx.97 peer xxx.xxx.xxx.99

Public keys copied across, isakmpd started with flags -K -v

Does anyone have any ideas about this?

Thank you

Jakob Alvermark
jakob.alverm...@bsdlabs.com
BSDLabs AB
Solna, Sweden
556759-7652




FWIW, I have the following number of flows and tunnels using OpenBSD 4.8 
at the moment. I have not seen any problems when both peers are OpenBSD 
servers.


Mon May 02 11:57:12 CPU@36.0C # ipsecctl -sa | grep -c flow
160
Mon May 02 11:57:21 CPU@36.0C # ipsecctl -sa | grep -c tunnel
254

Approximately two months ago I had a similar situation to what you 
described and sort of narrowed it down to the following:


The peer site had Cisco ASA VPN concentrator and they had different 
subnets with 172.16.0.0/24, 172.16.1.0/24, and so on to different 
customer networks. At our end with OpenBSD, we had a subnet of 
172.16.0.0/21 for our internal network. Because the Cisco end could not 
change their subnet mask, we changed the subnet mask on the OpenBSD box 
to 172.16.1.0/24 and allowed access only to a few hosts with the address 
172.16.1.xx and set up static routes from those boxes to go through the 
OpenBSD box. The problems seemed to be isolated to the internal hosts at 
the Cisco end that were NAT'ed out to a DMZ and were accessing our 
network from the the ASA box located in their DMZ. We reconfigured our 
firewall rules to allow all traffic to their network to flow through and 
the problems stopped for a full three weeks. Unfortunately, (apparently) 
they said that intermittent drops started again (even though we had not 
made any changes at our end once everything was working properly), 
blamed me for this problem and asked us to use a Cisco PIX router 
instead of the OpenBSD box just for their access. So that is what we 
ended up doing since I had no access to their Cisco gear and they did 
not have time to troubleshoot.



--
Vijay Sankar, M.Eng., P.Eng.
ForeTell Technologies Limited
59 Flamingo Avenue, Winnipeg, MB, Canada R3J 0X6
Phone: (204) 885-9535, E-Mail: vsan...@foretell.ca

Sun Ultra45 4.9R crashes loading kernel...

[Pete Vickers]

Hi,

trying to boot my Sun Ultra45 workstation from install49.iso results in this:



ok reset-all


Sun Ultra 45 Workstation, No Keyboard
Copyright 2006 Sun Microsystems, Inc.  All rights reserved.
OpenBoot 4.22.19, 8192 MB memory installed, Serial #69377208.
Ethernet address 0:14:4f:22:9c:b8, Host ID: 84229cb8.




ok boot cdrom
Boot device: /pci@1e,60/pci@0/pci@1/pci@0/ide@1f/cdrom@0,0:f  File and
args:
OpenBSD IEEE 1275 Bootblock 1.3
.. OpenBSD BOOT 1.4
Trying bsd...
Booting /pci@1e,60/pci@0/pci@1/pci@0/ide@1f/cdrom@0,0:f/bsd
3785400@0x100+7496@0x139c2b8+3255032@0x180+939272@0x1b1aaf8
symbols @ 0xfefbc240 65 start=0x100
console is /ebus@1f,464000/serial@2,80
Copyright (c) 1982, 1986, 1989, 1991, 1993
The Regents of the University of California.  All rights reserved.
Copyright (c) 1995-2011 OpenBSD. All rights reserved.  http://www.OpenBSD.org

OpenBSD 4.9 (RAMDISK) #517: Wed Mar  2 07:49:10 MST 2011
dera...@sparc64.openbsd.org:/usr/src/sys/arch/sparc64/compile/RAMDISK
real mem = 8589934592 (8192MB)
avail mem = 8447508480 (8056MB)
mainbus0 at root: Sun Ultra 45 Workstation
cpu0 at mainbus0: SUNW,UltraSPARC-IIIi (rev 3.4) @ 1600 MHz
cpu0: physical 32K instruction (32 b/l), 64K data (32 b/l), 1024K external (64
b/l)
memory-controller at mainbus0 not configured
pyro0 at mainbus0: Fire, rev 3, ign 780, bus A 2 to 12
pyro0: dvma map c000-
pci0 at pyro0
ppb0 at pci0 dev 0 function 0 PLX PEX 8532 rev 0xaa
pci1 at ppb0 bus 3
ppb1 at pci1 dev 1 function 0 PLX PEX 8532 rev 0xaa
pci2 at ppb1 bus 4
ppb2 at pci2 dev 0 function 0 Acer Labs M5249 PCI-PCI rev 0x00
pci3 at ppb2 bus 5
ohci0 at pci3 dev 28 function 0 Acer Labs M5237 USB rev 0x03: ivec 0x780,
version 1.0, legacy support
ohci1 at pci3 dev 28 function 1 Acer Labs M5237 USB rev 0x03: ivec 0x780,
version 1.0, legacy support
ohci2 at pci3 dev 28 function 2 Acer Labs M5237 USB rev 0x03: ivec 0x780,
version 1.0, legacy support
ehci0 at pci3 dev 28 function 3 Acer Labs M5239 USB2 rev 0x01: ivec 0x781
usb0 at ehci0: USB revision 2.0
uhub0 at usb0 Acer Labs EHCI root hub rev 2.00/1.00 addr 1
Acer Labs M5455 Audio rev 0x21 at pci3 dev 29 function 0 not configured
Acer Labs M7101 Power rev 0x00 at pci3 dev 30 function 1 not configured
pciide0 at pci3 dev 31 function 0 Acer Labs M5229 UDMA IDE rev 0xc8: DMA,
channel 0 configured to native-PCI, channel 1 configured to native-PCI
pciide0: using ivec 0x784 for native-PCI interrupt
atapiscsi0 at pciide0 channel 0 drive 0
scsibus0 at atapiscsi0: 2 targets
cd0 at scsibus0 targ 0 lun 0: MATSHITA, DVD-RAM UJ-845S, D100 ATAPI 5/cdrom
removable
cd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2
pciide0: channel 1 disabled (no drives)
usb1 at ohci0: USB revision 1.0
uhub1 at usb1 Acer Labs OHCI root hub rev 1.00/1.00 addr 1
usb2 at ohci1: USB revision 1.0
uhub2 at usb2 Acer Labs OHCI root hub rev 1.00/1.00 addr 1
usb3 at ohci2: USB revision 1.0
uhub3 at usb3 Acer Labs OHCI root hub rev 1.00/1.00 addr 1
ppb3 at pci1 dev 2 function 0 PLX PEX 8532 rev 0xaa
pci4 at ppb3 bus 6
ppb4 at pci4 dev 0 function 0 ServerWorks PCIE-PCIX rev 0xb3
pci5 at ppb4 bus 7
bge0 at pci5 dev 4 function 0 Broadcom BCM5715 rev 0xa2, BCM5715 A1
(0x9001): ivec 0x796, address 00:14:4f:22:9c:b8
brgphy0 at bge0 phy 1: BCM5714 10/100/1000baseT/SX PHY, rev. 0
bge1 at pci5 dev 4 function 1 Broadcom BCM5715 rev 0xa2, BCM5715 A1
(0x9001): ivec 0x797, address 00:14:4f:22:9c:b9
brgphy1 at bge1 phy 1: BCM5714 10/100/1000baseT/SX PHY, rev. 0
ppb5 at pci1 dev 3 function 0 PLX PEX 8532 rev 0xaa: ivec 0x796
pci6 at ppb5 bus 8
ppb6 at pci1 dev 8 function 0 PLX PEX 8532 rev 0xaa: ivec 0x794
pci7 at ppb6 bus 9
ppb7 at pci1 dev 9 function 0 PLX PEX 8532 rev 0xaa
pci8 at ppb7 bus 10
ppb8 at pci8 dev 0 function 0 Intel 41210 PCIE-PCIX rev 0x09
pci9 at ppb8 bus 11
mpi0 at pci9 dev 1 function 0 Symbios Logic SAS1064 rev 0x02: ivec 0x78f
scsibus1 at mpi0: 63 targets
sd0 at scsibus1 targ 0 lun 0: SEAGATE, ST914602SSUN146G, 0603 SCSI3 0/direct
fixed
sd0: 140009MB, 512 bytes/sec, 286739329 sec total
ppb9 at pci8 dev 0 function 2 Intel 41210 PCIE-PCIX rev 0x09
pci10 at ppb9 bus 12
radeonfb0 at pci10 dev 2 function 0 ATI Radeon VE rev 0x00
radeonfb0: SUNW,375-3290, 1152x900
wsdisplay0 at radeonfb0
wsdisplay0: screen 0 added (std, sun emulation)
pyro1 at mainbus0: Fire, rev 3, ign 7c0, bus B 2 to 255
pyro1: dvma map c000-
pci11 at pyro1
ebus0 at mainbus0: ign 7c0
flashprom at ebus0 addr 0-1f not configured
rtc0 at ebus0 addr 10-1f: bq4802
com0 at ebus0 addr 80-87 ivec 0x8: st16650, no working fifo
com0: console
com1 at ebus0 addr 0-7 ivec 0x8: st16650, no working fifo
env-monitor at ebus0 addr 0-41 not configured
i2c at ebus0 addr 80-81 ivec 0x1 not configured
power at ebus0 addr e0-e1 ivec 0x3 not configured
i2c at mainbus0 not configured
i2c at mainbus0 not configured
i2c at mainbus0 not configured
ppm at mainbus0 not configured
data error type 32 sfsr=80800c sfva=4004fba0001 afsr=1008000500
afva=7f8100012c0 

Re: XEN-Guest

[Tobias Crefeld]

Am Mon, 2 May 2011 11:15:57 -0500
schrieb John Jackson open...@lacutt.com:

 It's probably much more straightforward to run kvm-qemu instead of
 XEN. 

Hm, I'll consider this alternative. Till now our test-LAN ran on
VMware but for some reasons we want to get away from VMware.


 OpenBSD works fine as a guest using kvm/kvm-qemu and a CPU which
 supports hardware virtualization (egrep svm|vmx /proc/cpuinfo).

This egrep isn't successful on my host but this might be due to the
fact that it's an AMD-Opteron (Lisbon) and not a Intel-machine. After
enabling virtualizing support in BIOS (+ enabling IOMMU)
/proc/cpuinfo shows these flags:

$ grep flags /proc/cpuinfo |head -1
flags   : fpu de tsc msr pae mce cx8 apic mtrr mca cmov pat clflush mmx 
fxsr sse sse2 ht syscall nx mmxext fxsr_opt lm 3dnowext 3dnow constant_tsc 
rep_good nonstop_tsc extd_apicid pni cx16 popcnt hypervisor lahf_lm cmp_legacy 
extapic cr8_legacy abm sse4a misalignsse 3dnowprefetch nodeid_msr


 I've successfully run IPSEC (iked and isakmpd both work), bridging and
 various network services this way.

I moved from IPSEC to SSL/OpenVPN some years ago because it's more
robust against packet loss but in combination with routing protocols
like OSPF OpenVPN seems to be a bad choice as it keeps the
tunnel-interfaces AKA link-states always UP even if the tunnel is down.
Is there a way IPSEC can handle link-state-protocols better?



Regards,
 Tobias.

suspend resume trouble with pms0

[Karl Karlsson]

Hello,  when resuming i get an pms0: enable error. Other than that
everything that matters to me is working. Running/not running  wmoused
makes no difference.

Googlevise it seems to be a fairly unusual problem. Just shoot if you
need more info.

Any ideas worth testing? The machine is a couple of years old now but
i just kind of like it anyways..  :-)

Thanks for a great OS!

/ Kalle


Info about the machine in case of interest:

Fujitsu-Siemens Amilo Pro v3205

acpidump available on http://tomta.mine.nu/temp/v3205.tar.gz


dmesg and pcidump -v follows.


OpenBSD 4.9-current (GENERIC.MP) #91: Sat Apr 23 12:17:33 MDT 2011
dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP
cpu0: Intel(R) Core(TM)2 CPU T5500 @ 1.66GHz (GenuineIntel 686-class) 1.67 GHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM
real mem  = 1063415808 (1014MB)
avail mem = 1035853824 (987MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 02/14/07, BIOS32 rev. 0 @
0xfd580, SMBIOS rev. 2.4 @ 0xdc010 (29 entries)
bios0: vendor Phoenix version 1.20 date 02/14/2007
bios0: FUJITSU SIEMENS AMILO Pro V3205
acpi0 at bios0: rev 0
acpi0: sleep states S0 S3 S4 S5
acpi0: tables DSDT FACP APIC HPET MCFG APIC BOOT SLIC SSDT
acpi0: wakeup devices LID_(S3) HDEF(S3) PXS1(S4) PXS2(S4) PXS3(S4)
USB1(S3) USB2(S3) USB3(S3) USB4(S3) USB7(S3) LANC(S4)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: apic clock running at 166MHz
cpu1 at mainbus0: apid 1 (application processor)
cpu1: Intel(R) Core(TM)2 CPU T5500 @ 1.66GHz (GenuineIntel 686-class) 1.67 GHz
cpu1: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM
ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins
ioapic0: misconfigured as apic 2, remapped to apid 1
acpihpet0 at acpi0: 14318179 Hz
acpimcfg0 at acpi0 addr 0xe000, bus 0-255
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus -1 (PEGP)
acpiprt2 at acpi0: bus 1 (RP01)
acpiprt3 at acpi0: bus 3 (RP02)
acpiprt4 at acpi0: bus 5 (RP03)
acpiprt5 at acpi0: bus 7 (PCIB)
acpiec0 at acpi0
acpicpu0 at acpi0: C3, C2, C1, PSS
acpicpu1 at acpi0: C3, C2, C1, PSS
acpitz0 at acpi0: critical temperature 100 degC
acpibtn0 at acpi0: PWRB
acpibtn1 at acpi0: SLPB
acpiac0 at acpi0: AC unit offline
acpibat0 at acpi0WARN:  not buffer
WARN:  not buffer
WARN:  not buffer
WARN:  not buffer
WARN:  not buffer
: BAT1 model MWL32b serial   type LION oem SANYO
acpibtn2 at acpi0: LID_
acpidock0 at acpi0: DCK1 not docked (0)
acpivideo0 at acpi0: VGA_
acpivideo1 at acpi0: GFX0
bios0: ROM list: 0xc/0xe600! 0xdc000/0x4000!
cpu0: Enhanced SpeedStep 1664 MHz: speeds: 1667, 1333, 1000 MHz
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 Intel 82945GM Host rev 0x03
vga1 at pci0 dev 2 function 0 Intel 82945GM Video rev 0x03
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
intagp0 at vga1
agp0 at intagp0: aperture at 0xc000, size 0x1000
inteldrm0 at vga1: apic 1 int 16
drm0 at inteldrm0
Intel 82945GM Video rev 0x03 at pci0 dev 2 function 1 not configured
azalia0 at pci0 dev 27 function 0 Intel 82801GB HD Audio rev 0x02:
apic 1 int 22
azalia0: codecs: Conexant CX20549
audio0 at azalia0
ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x02: apic 1 int 17
pci1 at ppb0 bus 1
wpi0 at pci1 dev 0 function 0 Intel PRO/Wireless 3945ABG rev 0x02:
apic 1 int 16, MoW2, address 00:19:d2:35:6f:7d
ppb1 at pci0 dev 28 function 1 Intel 82801GB PCIE rev 0x02: apic 1 int 16
pci2 at ppb1 bus 3
ppb2 at pci0 dev 28 function 2 Intel 82801GB PCIE rev 0x02: apic 1 int 18
pci3 at ppb2 bus 5
uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x02: apic 1 int 23
uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x02: apic 1 int 19
uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x02: apic 1 int 18
uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x02: apic 1 int 16
ehci0 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x02: apic 1 int 23
usb0 at ehci0: USB revision 2.0
uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1
ppb3 at pci0 dev 30 function 0 Intel 82801BAM Hub-to-PCI rev 0xe2
pci4 at ppb3 bus 7
fxp0 at pci4 dev 8 function 0 Intel PRO/100 VM rev 0x02, i82562:
apic 1 int 20, address 00:16:36:f2:56:f7
inphy0 at fxp0 phy 1: i82562ET 10/100 PHY, rev. 0
Ricoh 5C832 Firewire rev 0x00 at pci4 dev 9 function 0 not configured
sdhc0 at pci4 dev 9 function 1 Ricoh 5C822 SD/MMC rev 0x19: apic 1 int 21
sdmmc0 at sdhc0
Ricoh 5C843 MMC rev 0x01 at pci4 dev 9 function 2 not configured
Ricoh 5C592 Memory Stick rev 0x0a at pci4 dev 9 function 3 not configured
Ricoh 5C852 xD rev 0x05 at pci4 dev 9 function 4 not configured

Re: XEN-Guest

[Stuart Henderson]

On 2011-05-02, Tobias Crefeld t...@cataneo.eu wrote:

 I've successfully run IPSEC (iked and isakmpd both work), bridging and
 various network services this way.

 I moved from IPSEC to SSL/OpenVPN some years ago because it's more
 robust against packet loss but in combination with routing protocols
 like OSPF OpenVPN seems to be a bad choice as it keeps the
 tunnel-interfaces AKA link-states always UP even if the tunnel is down.
 Is there a way IPSEC can handle link-state-protocols better?

gre(4), which you can run inside ipsec, can do keepalives which
will bring the link-state down when the tunnel is down.

support for this was added to OpenBSD in 4.8.

Re: em(4) is just 10baseT

[Stuart Henderson]

On 2010-11-17, Jochen Fabricius jfabric...@web.de wrote:
 On Tue, Nov 16, 2010 at 11:24:37PM +0100, Jochen Fabricius wrote:
  Hi all, 
  
  today I discovered that my network connection on an Acer Aspire X3900 is 
  only 10baseT. Never realized it before because the speed is enough (mostly 
  relatively slow internet connection, no large files to/from other 
  machines). System is 4.8-release. 
  
  I checked: 
  - wiring: even at shortest connection to the switch only 10baseT was 
  available
  - other switches
  - other machines with the same cables, same port on switch
  
  The PHY is a 82578, and as I understand the commit messages the support is 
  still basic, but shouldn't at least 100baseTX work? That's what all my 
  switches support. I have to check with a 1 GbE switch, but I don't know if 
  I can get one in the next time. Has anyone higher speeds working with this 
  PHY? 
 
 This is a known issue with the 82578DC (82578DM doesn't show it).
 It is likely something along the lines of missing workarounds
 for particular revisions of the phy.
 

 I was afraid of that. Is there anything I could do, maybe send some more 
 information (which?) for solving these issues? 

The following diff was just committed to -current which should fix this.


Index: if_em_hw.c
===
RCS file: /cvs/src/sys/dev/pci/if_em_hw.c,v
retrieving revision 1.64
retrieving revision 1.65
diff -u -p -r1.64 -r1.65
--- if_em_hw.c  2 May 2011 12:25:42 -   1.64
+++ if_em_hw.c  2 May 2011 18:16:58 -   1.65
@@ -31,7 +31,7 @@
 
 
***/
 
-/* $OpenBSD: if_em_hw.c,v 1.64 2011/05/02 12:25:42 jsg Exp $ */
+/* $OpenBSD: if_em_hw.c,v 1.65 2011/05/02 18:16:58 dhill Exp $ */
 /*
  * if_em_hw.c Shared functions for accessing and configuring the MAC
  */
@@ -9863,20 +9863,6 @@ em_hv_phy_workarounds_ich8lan(struct em_
}
 
if (hw-phy_type == em_phy_82578) {
-   if (hw-revision_id  3) {
-   /* PHY config */
-   ret_val = em_write_phy_reg(hw, (1  6) | 0x29,
-  0x66C0);
-   if (ret_val)
-   goto out;
-
-   /* PHY config */
-   ret_val = em_write_phy_reg(hw, (1  6) | 0x1E,
-  0x);
-   if (ret_val)
-   goto out;
-   }
-
/*
 * Return registers to default by doing a soft reset then
 * writing 0x3140 to the control register.

Re: XEN-Guest

[Tomas Bodzar]

On Mon, May 2, 2011 at 7:40 PM, Tobias Crefeld t...@cataneo.eu wrote:
 Am Mon, 2 May 2011 11:15:57 -0500
 schrieb John Jackson open...@lacutt.com:

 It's probably much more straightforward to run kvm-qemu instead of
 XEN.

 Hm, I'll consider this alternative. Till now our test-LAN ran on
 VMware but for some reasons we want to get away from VMware.


 OpenBSD works fine as a guest using kvm/kvm-qemu and a CPU which
 supports hardware virtualization (egrep svm|vmx /proc/cpuinfo).

 This egrep isn't successful on my host but this might be due to the
 fact that it's an AMD-Opteron (Lisbon) and not a Intel-machine. After
 enabling virtualizing support in BIOS (+ enabling IOMMU)
 /proc/cpuinfo shows these flags:

 $ grep flags /proc/cpuinfo |head -1
 flags B  B  B  B  B  : fpu de tsc msr pae mce cx8 apic mtrr mca cmov pat
clflush mmx fxsr sse sse2 ht syscall nx mmxext fxsr_opt lm 3dnowext 3dnow
constant_tsc rep_good nonstop_tsc extd_apicid pni cx16 popcnt hypervisor
lahf_lm cmp_legacy extapic cr8_legacy abm sse4a misalignsse 3dnowprefetch
nodeid_msr


you're looking for svm flag which is not in your output however (not
sure what's that hypervisor one)



 I've successfully run IPSEC (iked and isakmpd both work), bridging and
 various network services this way.

 I moved from IPSEC to SSL/OpenVPN some years ago because it's more
 robust against packet loss but in combination with routing protocols
 like OSPF OpenVPN seems to be a bad choice as it keeps the
 tunnel-interfaces AKA link-states always UP even if the tunnel is down.
 Is there a way IPSEC can handle link-state-protocols better?



 Regards,
 B Tobias.

Point-to-point without PPPoe

[Fabio Almeida]

Hi,

Is it possible to configure a point-to-point similar connection without 
using PPPoe protocol, /30 netmask or VPN?


I need to autenticate around 1.000 wireless customers, for this I'll be 
using authpf, but there's a need to isolate each customer in a way that 
each client PC can't see each other, but only directly communicates 
with the Firewall, like a ppp connection.


Any advice will be appreciated :)

Thanks in advance,
Fabio Almeida

Re: [Bulk] XEN-Guest

[Kevin Chadwick]

On Mon, 2 May 2011 17:21:11 +0200
Tobias Crefeld wrote:

 Any comments are welcome!

Any comments welcome about a firewall virtualised ontop of debian.

Your brave


p.s. what's debian required for?

Re: xenocara doesn't build correctly on 4.9-stable/hppa

[Maurice Janssen]

Maurice Janssen wrote:

Hi,

I noticed something strange while building xenocara on 4.9-stable on
an hppa-system.

One of the files in the xbase49.tgz file set (from 4.9-release) is
/usr/X11R6/lib/libfontconfig.so.7.0.
After 'make build', there's a libfontconfig.so.5.4 in /usr/X11R6/lib/
that is identical to the 7.0 file from -release.

When I do 'make release', only the 5.4 file ends up in /usr/dest/ , resulting
in a missing libfontconfig.so file in the xbase49.tgz file set (the
maketars script expects that libfontconfig.so.7.0 is there, but it isn't).

So for some reason, the libfontconfig.so.x.y file has the wrong name.
I tried to find the cause, but I get lost in Makefiles and configure scripts.

BTW: I followed the exact steps from the FAQ (section 5.5), with the xenocara
source tree on an NFS server.  The build / release process works without a
hitch on other architectures that use the same NFS server for the source tree.

Does anyone know what is going on and, even better, how to fix it?


After some more testing, it seems that make -j is causing the problem. I 
thought xenocara was make -j safe, but apparantly there are some corner 
cases where things can go wrong.


I am now doing a make build again (without -j), and it seems that the 
problem is gone.


Maurice

Re: em(4) is just 10baseT

[Jochen Fabricius]

Hi, 

 
 The following diff was just committed to -current which should fix
 this.

thanks. I will test it in a few days and report. 


Jochen Fabricius jfabric...@web.de

Re: XEN-Guest

[Tobias Crefeld]

Am Mon, 2 May 2011 19:40:23 +0200
schrieb Tobias Crefeld t...@cataneo.eu:

 $ grep flags /proc/cpuinfo |head -1
 flags   : fpu de tsc msr pae mce cx8 apic mtrr mca cmov pat
 clflush mmx fxsr sse sse2 ht syscall nx mmxext fxsr_opt lm 3dnowext
 3dnow constant_tsc rep_good nonstop_tsc extd_apicid pni cx16 popcnt
 hypervisor lahf_lm cmp_legacy extapic cr8_legacy abm sse4a
 misalignsse 3dnowprefetch nodeid_msr

Sorry, the flag list was accidentally taken from a /proc/cpuinfo after
booting a XEN-kernel. 
With a normal kernel its flag list contains AMD's svm:

flags   : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge
mca cmov pat pse36 clflush mmx fxsr sse sse2 ht syscall nx mmxext
fxsr_opt pdpe1gb rdtscp lm 3dnowext 3dnow constant_tsc rep_good
nonstop_tsc extd_apicid pni monitor cx16 popcnt lahf_lm cmp_legacy svm
extapic cr8_legacy abm sse4a misalignsse 3dnowprefetch osvw ibs skinit
wdt nodeid_msr


Regards,
 Tobias.

Re: Novice browser questions

[LeviaComm Networks]

On 01-May-11 09:35, Charles Blair wrote:

Is the absence of a graphical browser from the base system
a statement that any attempt to do such things as look at
stuff on youtube is inherently unsafe?


Browsers take a lot of space on install media
We like choice, not everyone wants Firefox/Opera/Conqueror/whatever, so 
we leave the choice to the user.



Is tor considered a safe way to do anonymous browsing, or
does openbsd recommend an alternative?

Nothing on the internet is anonymous, you can obfuscate your session all 
to hell, but it will never be anonymous.

Building a Successful Project Management Office seminar (Istanbul Turkey June 5,6,7 2011)

[CMCCO]

CMCCO, Construction Management Consultant Co.

Has the pleasure to invite you to attend a seminar in:
Building a Successful Project Management Office
Learn From the Real Experts in Project Management

 Seminar Overview:
An effective project management office (PMO) is central to project management
success. Building a successful PMO within your organization is important for
proper implementation of project management theory and organizational strategy
and successful execution and planning of all projects. This course is intended
to guide management staff through the process of creating a PMO within their
own organizations.

 Click for Seminar Outline

 This unique seminar will be held in Beautiful Istanbul - Turkey this June 5,
6, 7, 2011
Don't miss the chance, reserve your attendance ASAP, Places are limited!!
Our training seminars are the fruit of long years of experience and effort of
our company, one of the few Lebanese Project Management Within this seminar,
this direct experience of CMCCOs PMO will be used for case studies and help
material.

 Seminar Objectives:
Identify PMO capabilities
Determine the appropriate PMO structure for your organization
Determine which PMO functions are required to fulfill your project management
support requirements
Customize standards for project management methodologies, processes and
procedures
Overcome barriers related to PMO implementation
Create a preliminary PMO implementation plan
Align project selection criteria with strategic organizational objectives
Provide ongoing project management support through mentoring and coaching.
Learn how to create and implement a PROJECT MANAGEMENT MANUAL for your PMO.
Who Should Attend:
Project managers, program managers, directors, team leaders and all senior
management staff. Individuals who need to gain understanding of the PMO and
learn how to plan and implement an appropriate PMO within their own
organization.








Beirut Head Office:  Tell: 00961-1-736171  Tel/Fax: 00961-1-744049
Cell: 00961-3-644526
E-mail: i...@cmcco.com, hr...@cmcco.com   Webpage: http://www.cmcco.com/
If you are not interested receiving further Newsletters click here to remove

Help finding file-analysis tool?

[Dave Anderson]

Sorry to bother you all, but I'm failing miserably at searching for a
tool to help analyze the structure of arbitrary files (prefereably one
which runs on OpenBSD).

I've got a device which exports data in a undocumented format and the
only program available to use that data doesn't do what I need, so I
need to figure out the file formats so I can communicate with the device
the way I need to.

What I'm looking for is an interactive program which makes it easy to
look at selected parts of a file (individual items, sets of items
located at regular intervals, sets of items linked by pointers or
offsets, etc) in any of many formats (ascii, unicode, int, double float,
etc) and either endianness, store comments about items or sets of items
in an aux file, store names for various values in particular items and
display those items values using those names, search for patterns at
regular intervals or linked by pointers or offsets, etc, etc, etc; all
those things which make it easier to discover and keep track of the
structure of an unknown file.

It's hard to believe that nobody has ever written such a program, but
I've been unable to find one.  Any suggestions for effective searches or
for suitable programs would be appreciated.

Thanks,

Dave

-- 
Dave Anderson
d...@daveanderson.com

Re: IPSEC tunnels failing intermittently

[MG]

On 5/2/2011 12:13 PM, Vijay Sankar wrote:

Per olof Ljungmark wrote:

On 05/02/11 18:08, Robert wrote:

Hi,

Same here, but between 2 hosts in the same subnet (very basic network
setup).
I was also waiting for 4.9 (and time to investigate...)


We see same behaviour on 4.9 so upgrading will not help.


On Mon, 2 May 2011 13:30:34 + (UTC)
Stuart Henderson s...@spacehopper.org wrote:


I see something similar which I've been trying to track down but not
really succeeding. The thing we have in common is multiple subnets,
I wonder if this is a factor...


 (and this setup has always been post-4.4 On 2011-05-02, Jakob 
Alvermark jakob.alverm...@bsdlabs.com wrote:

Hi,

I am getting some strange problems with IPSEC tunnels.
There are 5 sites connected using IPSEC tunnels, which used to 
work perfectly,

but since upgrading to 4.8 (from 4.4),
tunnels started failing, seemly at random intervals.
To investigate I set up two machines in the lab and they exhibit 
the same

behavior:
After a seemingly random amount of time, when there is a 
renegotiation of an

SA due to its lifetime expired,
traffic will stop flowing (I have a ping running). 'ipsecctl -sa' 
and 'netstat

-rn' shows everything as normal.
When that SA lifetime expires and a new SA is negotiated it comes 
back again.


I recompiled the kernel with 'option ENCDEBUG' and set 
net.inet.ip.encdebug=1

and when it fails
I get 'esp_input_cb(): authentication failed for packet in SA
xxx.xxx.xxx.97/6e68c6ae'

The machines are installed with stock OpenBSD 4.8, nothing special 
about the

configuration.
ipsec.conf is very simple, just one line:

ike esp from {192.168.1.9/24 172.16.1.0/24} to {192.168.31.0/24
192.168.32.254} local xxx.xxx.xxx.97 peer xxx.xxx.xxx.99

Public keys copied across, isakmpd started with flags -K -v

Does anyone have any ideas about this?

Thank you

Jakob Alvermark
jakob.alverm...@bsdlabs.com
BSDLabs AB
Solna, Sweden
556759-7652




FWIW, I have the following number of flows and tunnels using OpenBSD 
4.8 at the moment. I have not seen any problems when both peers are 
OpenBSD servers.


Mon May 02 11:57:12 CPU@36.0C # ipsecctl -sa | grep -c flow
160
Mon May 02 11:57:21 CPU@36.0C # ipsecctl -sa | grep -c tunnel
254

Approximately two months ago I had a similar situation to what you 
described and sort of narrowed it down to the following:


The peer site had Cisco ASA VPN concentrator and they had different 
subnets with 172.16.0.0/24, 172.16.1.0/24, and so on to different 
customer networks. At our end with OpenBSD, we had a subnet of 
172.16.0.0/21 for our internal network. Because the Cisco end could 
not change their subnet mask, we changed the subnet mask on the 
OpenBSD box to 172.16.1.0/24 and allowed access only to a few hosts 
with the address 172.16.1.xx and set up static routes from those boxes 
to go through the OpenBSD box. The problems seemed to be isolated to 
the internal hosts at the Cisco end that were NAT'ed out to a DMZ and 
were accessing our network from the the ASA box located in their DMZ. 
We reconfigured our firewall rules to allow all traffic to their 
network to flow through and the problems stopped for a full three 
weeks. Unfortunately, (apparently) they said that intermittent drops 
started again (even though we had not made any changes at our end once 
everything was working properly), blamed me for this problem and asked 
us to use a Cisco PIX router instead of the OpenBSD box just for their 
access. So that is what we ended up doing since I had no access to 
their Cisco gear and they did not have time to troubleshoot.



I am also experiencing random drops that last for approximately 14 
minutes.  This is between two OpenBSD 4.8 boxes.  Pinging devices 
through the IPSec tunnel begins to fail but pinging the external IP 
address works fine during the outages.  I'm new to tunnels so I'm not 
sure how to troubleshoot exactly.  I have multiple subnets on both sides 
of the f/ws.  I was getting cookie errors in /var/log/messages but I 
don't see them in my recent logs and my log files have turned over.

Re: problems configuring wireless adapter on ThinkPad T-23

[Fred Crowson]

On 1 May 2011 22:48, Dale Scott dalesc...@shaw.ca wrote:
 Hi Fred, thanks for helping.

 What happens when you do an ifconfig rtw0 scan?
 Do you see your access point?

 It looks like I see my access point, as well as one neighbor's (see below).
 Fyi, I went through config for both wired and wireless interfaces when I
 installed OpenBSD 4.8, but didn't know how to specify the WEP key for rtw0.
 Is it possible to config both fxp0 and rtw0 simultaneously? I typically use
 a wired connection in my study (convenience and because Wireless signal
 level is low), but use wireless everywhere else.

 # ifconfig rtw0 scan
 rtw0: flags=8863UP,BROADCAST,NOTRAILERS,RUNNING,SIMPLEX,MULTICAST mtu
1500
 lladdr 00:09:5b:e2:15:2b
 priority: 4
 groups: wlan
 media: IEEE802.11 autoselect (DS1 mode 11b)
 status: no network
 ieee80211: nwid sundancer chan6 bssid 00:13:46:fa:9b:56 127dB nwkey
 0xXX
 nwid sundancer chan 6 bssid 00:13:46:fa:9b:56 127dB 54M
 privacy,short_preamble,short_slottime
 lladdr 00:23:7d:05:94:69 127dB 11M ibss cache
 nwid TELUS3645 chan 1 bssid 00:26:88:e7:e9:30 126dB 54M
 privacy,short_slottime
 #

 Dale


Hi Dale,

It looks like you have successfully configured your interface, but
then you need to get an IP address, so you need an:

/sbin/dhclient rtw0

You can do this automatically in a hostname.if file (see man
hostname.if), but it should look something like:

dhcp \
nwid sundancer nwkey 0xYourHexPassword

hth

Fred

Re: Openbsd 4.9 released May 1, 2011

[David Steiner]

On Sun, 1 May 2011 08:16:26 -0600 (MDT)
Bob Beck b...@cvs.openbsd.org wrote:

 
 May 1, 2011.
 
 We are pleased to announce the official release of OpenBSD 4.9.
 This is our 29th release on CD-ROM (and 30th via FTP).  We remain
 proud of OpenBSD's record of more than ten years with only two remote
 holes in the default install.
 
 As in our previous releases, 4.9 provides significant improvements,
 including new features, in nearly all areas of the system:

thank you developers and people involved for another fine release!

Prevención de Demandas Laborales este 16 de Mayo 2011

[Adriana Hernandez]

[IMAGE]

Pms Capacitacisn Efectiva de Mixico presenta:

Acciones Preventivas contra las Demandas Laborales

Exclusiva presentacisn 16 de Mayo en la Ciudad de Mixico

Expositor: Mtro. Alberto Ledesma Gonzalez

10 horas de entrenamiento

Empresa Registrada ante la STPS Reg. COLG640205CP30005

Smguenos en Twitter@pmscapacitacion o bien en Facebook PMS de Mixico

Mayores informes responda este correo electrsnico con los siguientes
datos.

Empresa:

Nombre:

Telifono:

Email:

Nzmero de Interesados:

Y en breve le haremos llegar la informacisn completa del evento.

O bien comunmquense a nuestros telifonos un ejecutivo con gusto le
atendera Tels. (33) 8851-2365, (33)8851-2741.

Copyright (C) 2010, PMS Capacitacisn Efectiva de Mixico S.C. Derechos
Reservados. PMS de Mixico, El logo de PMS de Mixico son marcas
registradas.

ADVERTENCIA PMS de Mixico no cuenta con alianzas estratigicas de ningzn
tipo dentro de la Republica Mexicana. NO SE DEJE ENGAQAR - DIGA NO A LA
PIRATERIA. Todos los logotipos, marcas comerciales e imagenes son
propiedad de sus respectivas corporaciones y se utilizan con fines
informativos solamente.

Este Mensaje ha sido enviado a misc@openbsd.org como usuario de Pms de
Mixico o bien un usuario le refiris para recibir este boletmn.

Como usuario de Pms de Mixico, en este acto autoriza de manera expresa
que Pms de Mixico le puede contactar vma correo electrsnico u otros
medios.

Si usted ha recibido este mensaje por error, haga caso omiso de el y
reporte su cuenta respondiendo este correo con el subject BAJADEMANDAS

Unsubscribe to this mailing list, reply a blank message with the subject
UNSUBSCRIBE BAJADEMANDAS Tenga en cuenta que la gestisn de nuestras bases
de datos es de suma importancia y no es intencisn de la empresa la
inconformidad del receptor.

[demime 1.01d removed an attachment of type image/jpeg which had a name of 
demandaspromo.jpg]

Re: Samsung Galaxy S USB Tethering (patch)

[Erik Mugele]

On Sat, Apr 30, 2011 at 04:08:35PM -0600, Erik Mugele wrote:
 The following patch against -current enables the Samsung Galaxy S
 Android device (Samsung Captivate with ATT) to be be used for USB
 tethering.
[snip]

 Index: if_urndis.c
 ===
 RCS file: /cvs/src/sys/dev/usb/if_urndis.c,v
 retrieving revision 1.29
 diff -u -r1.29 if_urndis.c
 --- if_urndis.c   25 Jan 2011 20:03:35 -  1.29
 +++ if_urndis.c   30 Apr 2011 19:02:43 -
 @@ -135,7 +135,8 @@
   * Supported devices that we can't match by class IDs.
   */
  static const struct usb_devno urndis_devs[] = {
 - { USB_VENDOR_HTC,   USB_PRODUCT_HTC_ANDROID }
 + { USB_VENDOR_HTC,   USB_PRODUCT_HTC_ANDROID },
 + { USB_VENDOR_SAMSUNG2,  USB_PRODUCT_SAMSUNG2_ANDROID }
  };
  
  usbd_status
 Index: usbdevs
 ===
 RCS file: /cvs/src/sys/dev/usb/usbdevs,v
 retrieving revision 1.544
 diff -u -r1.544 usbdevs
 --- usbdevs   24 Apr 2011 02:55:50 -  1.544
 +++ usbdevs   30 Apr 2011 19:02:50 -
 @@ -3269,6 +3269,7 @@
  /* Samsung products */
  product SAMSUNG2 RT2870_10x2018  RT2870
  product SAMSUNG2 I3300x8001  I330
 +product SAMSUNG2 ANDROID 0x6881  Android Phone USB Tethering
  product SAMSUNG SWL2100W 0xa000  SWL-2100U
  
  /* ScanLogic products */

Original message and patch at 
http://marc.info/?l=openbsd-miscm=130420171126624w=2

The following patch updates the urndis(4) man page to add the Samsung
Galaxy S and cooresponds to the aforementioned original patch if/when
it is committed.

I'm not sure if the Samsung *Nexus* S on this man page refers to another
device or is a typo for the Samsung Galaxy S, but the Galaxy S was not
supported by urndis(4) before.

Index: urndis.4
===
RCS file: /cvs/src/share/man/man4/urndis.4,v
retrieving revision 1.8
diff -u -r1.8 urndis.4
--- urndis.429 Apr 2011 17:04:33 -  1.8
+++ urndis.43 May 2011 01:20:45 -
@@ -61,6 +61,8 @@
 HTC Wildfire
 .It
 Samsung Nexus S
+.It
+Samsung Galaxy S
 .El
 .Pp
 The


Erik

Re: Samsung Galaxy S USB Tethering (patch)

[vovka]

On Sat, Apr 30, 2011 at 18:08, Erik Mugele e...@teuton.org wrote:

 The following patch against -current enables the Samsung Galaxy S
 Android device (Samsung Captivate with ATT) to be be used for USB
 tethering.

 With or without this patch, the device can still act as a modem and
 can be used with PPP.  With this patch, the device can be used as an IP
 router over USB the same way that the Mobile AP mode works.

 A new USB device shows up when USB tethering is enabled on the
 Galaxy S.

 [big snip]


 Erik, great work and great patch... I, too, have a Samsung Galaxy S.
Your patch did not apply correctly, so here is my version of it.I've also
attached a diff of usbdevs.h .


Index: if_urndis.c
===
RCS file: /cvs/src/sys/dev/usb/if_urndis.c,v
retrieving revision 1.29
diff -N -u if_urndis.c
--- if_urndis.c 25 Jan 2011 20:03:35 -  1.29
+++ if_urndis.c 3 May 2011 00:14:49 -
@@ -135,7 +135,8 @@
  * Supported devices that we can't match by class IDs.
  */
 static const struct usb_devno urndis_devs[] = {
-   { USB_VENDOR_HTC,   USB_PRODUCT_HTC_ANDROID }
+   { USB_VENDOR_HTC,   USB_PRODUCT_HTC_ANDROID },
+   { USB_VENDOR_SAMSUNG2,  USB_PRODUCT_SAMSUNG2_ANDROID }
 };

 usbd_status
Index: usbdevs
===
RCS file: /cvs/src/sys/dev/usb/usbdevs,v
retrieving revision 1.544
diff -N -u usbdevs
--- usbdevs 24 Apr 2011 02:55:50 -  1.544
+++ usbdevs 3 May 2011 00:15:01 -
@@ -3269,6 +3269,7 @@
 /* Samsung products */
 product SAMSUNG2 RT2870_1  0x2018  RT2870
 product SAMSUNG2 I330  0x8001  I330
+product SAMSUNG2 ANDROID   0x6881  Android Phone USB Tethering
 product SAMSUNG SWL2100W   0xa000  SWL-2100U

 /* ScanLogic products */
Index: usbdevs.h
===
RCS file: /cvs/src/sys/dev/usb/usbdevs.h,v
retrieving revision 1.554
diff -N -u usbdevs.h
--- usbdevs.h   24 Apr 2011 02:56:01 -  1.554
+++ usbdevs.h   3 May 2011 00:15:11 -
@@ -3276,6 +3276,7 @@
 /* Samsung products */
 #defineUSB_PRODUCT_SAMSUNG2_RT2870_1   0x2018  /* RT2870 */
 #defineUSB_PRODUCT_SAMSUNG2_I330   0x8001  /* I330 */
+#defineUSB_PRODUCT_SAMSUNG2_ANDROID0x6881  /* Android
USB Tether */
 #defineUSB_PRODUCT_SAMSUNG_SWL2100W0xa000  /* SWL-2100U
*/

 /* ScanLogic products */

Re: IPSEC tunnels failing intermittently

[Steven Surdock]

I see nearly identical results between two hosts running 4.8-stable.  I
believe it started after upgrading to 4.8. I see nothing in the logs
during the outage.  I have two tunnels, inside - inside and inside -
outside.  I can see the outage via  gaps in Cacti graphs.  To help me
troubleshoot during the outage, I configured ifstated on the Cacti host
(not an IPSEC endpoint) with a ping test to the inside of the remote
gateway.  This is supposed to alert me when the tunnel has issues.
Interestingly, while the Cacti graphs shows gaps, the ifstated ping test
has never failed.

-Steve S.

 -Original Message-
 From: owner-m...@openbsd.org [mailto:owner-m...@openbsd.org] On Behalf
Of
 MG
 Sent: Monday, May 02, 2011 3:59 PM
 To: misc@openbsd.org
 Subject: Re: IPSEC tunnels failing intermittently

...
 
 I am also experiencing random drops that last for approximately 14
 minutes.  This is between two OpenBSD 4.8 boxes.  Pinging devices
 through the IPSec tunnel begins to fail but pinging the external IP
 address works fine during the outages.  I'm new to tunnels so I'm not
 sure how to troubleshoot exactly.  I have multiple subnets on both
sides
 of the f/ws.  I was getting cookie errors in /var/log/messages but I
 don't see them in my recent logs and my log files have turned over.

Tome Acciones Preventivas contra Demandas Laborales

[Ing. Manuel Ruelas]

[IMAGE]

Acciones Preventivas Contra las Demandas Laborales

16 de Mayo / Mixico, D.F.

PMS Capacitacisn Efectiva de Mixico . Le presenta este exclusivo
seminario, debemos de tomar en cuenta que una demanda es el inicio de un
juicio laboral, en la cual se dirige a los miembros de la Junta Especial
de Conciliacisn y Arbitraje, ya sea local o federal, en donde el
trabajador, quien normalmente es quien promueve, manifiesta su
inconformidad con su patrsn mediante la vma legal, reclamando diversas
prestaciones, las cuales pueden ser justificadas o no. Esto le representa
una considerable perdida de tiempo y recursos en caso de no tener una
correcta cultura preventiva.

Beneficios para usted:

-Desarrolle Mecanismos de Prevencisn de Demandas Laborales para la
proteccisn de su empresa u organizacisn.

-Conozca los alcances de los recursos legales del Patrsn y csmo
aprovechar los mismos.

-Aprenda a ejecutar acciones contundentes y eficaces en esta materia.

Ventajas de asistir a nuestro seminario:
Es la forma mas efectiva para mantenerse a la vanguardia, le brindara
estrategias aplicables en su organizacisn, y una excelente
retroalimentacisn con los asistentes de diferentes empresas.

Duracisn: 10 Horas de entrenamiento.

Presentado por el experto consultor: Lic. Alberto Ledesma G.

!Promociones Especiales para Grupos!

Mayores informes responda este correo electrsnico con los siguientes
datos.
Empresa:
Nombre:
Telifono:
Email:
Nzmero de Interesados:
Y en breve le haremos llegar la informacisn completa del evento. 
O bien comunmquense a nuestros telifonos  un ejecutivo con gusto le
atendera
Tels. (33) 8851-2365, (33)8851-2741.

Copyright (C) 2010, PMS Capacitacisn Efectiva de Mixico  S.C. Derechos
Reservados. PMS de Mixico, El logo de PMS de Mixico son marcas
registradas. ADVERTENCIA PMS de Mixico no cuenta con alianzas
estratigicas de ningzn tipo dentro de la Republica Mexicana. NO SE DEJE
ENGAQAR - DIGA NO A LA PIRATERIA. Todos los logotipos, marcas comerciales
e imagenes son propiedad de sus respectivas corporaciones y se utilizan
con fines informativos solamente.

Este Mensaje ha sido enviado a  misc@openbsd.org como usuario de Pms de
Mixico o bien un usuario le refiris para recibir este boletmn
Como usuario de Pms de Mixico, en este acto autoriza de manera expresa
que Pms de Mixico le puede contactar vma correo electrsnico u otros
medios.
Si usted ha recibido este mensaje por error, haga caso omiso de el y
reporte su cuenta respondiendo este correo con el subject BAJADEMANDAS

Unsubscribe to this mailing list, reply a blank message with the subject
UNSUBSCRIBE BAJADEMANDAS
Tenga en cuenta que la gestisn de nuestras bases de datos es de suma
importancia y no es intencisn de la empresa la inconformidad del
receptor.

[demime 1.01d removed an attachment of type image/jpeg which had a name of 
image001pmsjpg.jpg]