Re: Broadcom's bcm4313 not yet supported ?

2013-06-18 Thread Giovanni Bechis 
Tori Mus  wrote:
> Hi,
> 
> just installed OpenBSD-current and most of things do work out of box.
> However Broadcom's wireless card BCM4313 does appear in dmesg output as
> properly detected but not initialized/configured:
> 
>  snip 
> pci2 at ppb1 bus 2
> "Broadcom BCM4313" rev 0x01 at pci2 dev 0 function 0 not configured
>  snip 
> 
> Ifconfig does not list this card. (bwi?) expected.
> Even tried if the missing firmware is the cause, but fw_update only fetched
> firmware for a webcam.
> 
I tried to hack a bit on bwi but when it attaches it does not load the firmware,
I think that bwn should be ported from FreeBSD:
http://svnweb.freebsd.org/base/head/sys/dev/bwn/
 Cheers
  Giovanni

Re: smtpd aliases

2013-06-18 Thread Gilles Chehade 
On Sun, Jun 16, 2013 at 04:44:02PM -0700, William Orr wrote:
> Hello, all!
>

Hello,


> I'm having some problems with aliases in smtpd, in that they're not
> properly resolving. I have a bunch of incoming mails stuck in the
> queue that dovecot (my MDA) refuses to deliver. The logs don't point
> to any problem reading or opening the aliases file.
> 
> Here is my smtpd.conf:
> #   $OpenBSD: smtpd.conf,v 1.6 2013/01/26 09:38:25 gilles Exp $
> 
> # This is the smtpd server system-wide configuration file.
> # See smtpd.conf(5) for more information.
> 
> av = "amavis"
> originating = "originating"
> dn = "worrbase.com"
> av_foreign = "lmtp://localhost:10024"
> av_origin = "lmtp://localhost:10026"
> dovecot = "lmtp://localhost:10110"
> 
> table aliases db:/etc/mail/aliases.db
> 
> # listen on smtp, submission and the amavis port
> # should be able to use tls almost all the time
> listen on fxp0 port smtp tls certificate mail
> listen on fxp0 port submission tls-require certificate mail auth \
> tag $originating
> listen on lo port 10025 tag $av
> 
> # coming in from amavis
> accept tagged $av for domain $dn relay via $dovecot
> accept tagged $av for any relay
> 
> # coming in from the outside
> accept from any for domain $dn alias  relay via $av_foreign
> 
> # coming in from local
> accept for any alias  relay via $av_origin
> 
> # coming in from authed clients
> accept tagged $originating for any alias  relay via $av_origin
> 

Ok, there's a parse.y bug here that I'll be looking into.
You shouldn't be able to use "alias" in a relay rule, it is discarded.
What you want is to use local lmtp delivery, not lmtp relaying.

-- 
Gilles Chehade

https://www.poolp.org  @poolpOrg

Re: Utility to evaluate AML (disable discrete vga) ?

2013-06-18 Thread Paul Irofti 
On Tue, Jun 18, 2013 at 02:40:22AM +0200, Tori Mus wrote:
> Hello,
> 
> first I've to admit I'm really excited with OpenBSD. Today finished a fresh
> install, most things do work out of a box, sane defaults, excellent
> documentation, impression of consistent design and smooth experience so
> far. Deserted from Linux world because things get constantly breaking
> (repeated kernel regressions, system inits, devices management, userland
> instead of system solutions like networking or power handling, etc. etc.).
> 
> Sorry for the above intro but I'm very pleased to just found what I've been
> (hopefully) looking for.
> 
> To significantly reduce power consumption on a notebook, I'd need yet to
> disable the discrete nvidia graphics adapter to a fully satisfaction.
> After some investigation of acpidump output I have the proper AML to be
> sent/evaluated to take an effect of turning off this card. Is there some
> tool or similar way how to evaluate/send this AML ? Or do I have to write
> my own code by `9 aml_evalnode' man page ? Did tested on FreeBSD with
> acpi_control and did worked reliably.
> 
> Any idea ?

We don't have a proxy like that in userland. Not even for testing
or development. So your best bet is to either write your own tool
(which would probably be the fastest method) or find a place for your
work in the kernel and submit a patch (cleanest method but also hard
to get right and hard to generalize for more than your model).

If you chose the later look at specialized devices such as acpisony(4),
acpiasus(4), acpithinkpad(4) and others in sys/dev/acpi.

We don't really support nvidia graphic cards so this will be
interesting.

carp hung at INIT after update to current snapshot--followup

2013-06-18 Thread Jeff Ross 

Followup:

When running sh -x /etc/netstart, I get the following on the firewall 
stuck in INIT:


+ ifmstart trunk svlan vlan carp
ifconfig: SIOCAIFADDR: No buffer space available
ifconfig: SIOCAIFADDR: No buffer space available

The normally backup firewall running /etc/netstart from
OpenBSD 5.3-current (GENERIC.MP) #148: Tue Apr 30 11:41:58 MDT 2013
t...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP
shows this instead

+ ifmstart  trunk svlan vlan carp gif gre pfsync pppoe tun bridge

Hope that helps!

Jeff


Hi all,

Tonight I updated to the June 17 snapshot on my primary firewall. 
Before updating carp has been working flawlessly, with this server the 
primary and its twin the secondary.  When I'd reboot the primary the 
secondary would become master but only until the primary had finished 
rebooting.  After updating and reboot the primary's carp0 and carp1 
interfaces remain in INIT.


I did run sysmerge and don't see anything apropos in the Running 
-current section of the FAQ.


My secondary firewall took over as carp master on reboot but I'm a 
little leery of updating or even rebooting it to see if the primary will 
take over--I'm 650 miles from the server room :-)


dmesg, ifconfig -a and /etc/hostname* follow.

Thanks,

Jeff Ross

OpenBSD 5.3-current (GENERIC.MP) #7: Mon Jun 17 12:17:04 MDT 2013
dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP
cpu0: Intel(R) Xeon(TM) CPU 3.20GHz ("GenuineIntel" 686-class) 3.21 GHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,LONG,SSE3,DTES64,MWAIT,DS-CPL,CNXT-ID,CX16,xTPR,LAHF,PERF

real mem  = 3757490176 (3583MB)
avail mem = 3684646912 (3513MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 03/29/05, BIOS32 rev. 0 @ 0xf0010, 
SMBIOS rev. 2.3 @ 0xfa380 (61 entries)

bios0: vendor American Megatrends Inc. version "080010" date 03/29/2005
bios0: SiMech R200
acpi0 at bios0: rev 2
acpi0: sleep states S0 S1 S4 S5
acpi0: tables DSDT FACP APIC OEMB
acpi0: wakeup devices PXHA(S4) PXHB(S4) EPA0(S4) EPA1(S4) EPB0(S4) 
EPB1(S4) EPC0(S4) P0P1(S4) MC97(S4) USB1(S1) USB2(S1) EUSB(S4) PS2K(S4) 
PS2M(S4) P0PC(S4) SLPB(S4)

acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: apic clock running at 200MHz
cpu1 at mainbus0: apid 6 (application processor)
cpu1: Intel(R) Xeon(TM) CPU 3.20GHz ("GenuineIntel" 686-class) 3.21 GHz
cpu1: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,LONG,SSE3,DTES64,MWAIT,DS-CPL,CNXT-ID,CX16,xTPR,LAHF,PERF

cpu2 at mainbus0: apid 1 (application processor)
cpu2: Intel(R) Xeon(TM) CPU 3.20GHz ("GenuineIntel" 686-class) 3.21 GHz
cpu2: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,LONG,SSE3,DTES64,MWAIT,DS-CPL,CNXT-ID,CX16,xTPR,LAHF,PERF

cpu3 at mainbus0: apid 7 (application processor)
cpu3: Intel(R) Xeon(TM) CPU 3.20GHz ("GenuineIntel" 686-class) 3.21 GHz
cpu3: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,LONG,SSE3,DTES64,MWAIT,DS-CPL,CNXT-ID,CX16,xTPR,LAHF,PERF

ioapic0 at mainbus0: apid 8 pa 0xfec0, version 20, 24 pins
ioapic1 at mainbus0: apid 11 pa 0xfec1, version 20, 24 pins
ioapic1: misconfigured as apic 9, remapped to apid 11
ioapic2 at mainbus0: apid 9 pa 0xfec8, version 20, 24 pins
ioapic2: misconfigured as apic 10, remapped to apid 9
ioapic3 at mainbus0: apid 10 pa 0xfec80400, version 20, 24 pins
ioapic3: misconfigured as apic 11, remapped to apid 10
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 1 (EPA0)
acpiprt2 at acpi0: bus 3 (PXHA)
acpiprt3 at acpi0: bus 2 (PXHB)
acpiprt4 at acpi0: bus 4 (EPA1)
acpiprt5 at acpi0: bus 6 (P0P1)
acpiprt6 at acpi0: bus 5 (P0PC)
acpicpu0 at acpi0
acpicpu1 at acpi0
acpicpu2 at acpi0
acpicpu3 at acpi0
acpibtn0 at acpi0: PWRB
acpibtn1 at acpi0: SLPB
bios0: ROM list: 0xc/0x8000 0xc8000/0x800 0xc8800/0x1000 0xc9800/0x1000
ipmi at mainbus0 not configured
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 "Intel E7320 Host" rev 0x0c
ppb0 at pci0 dev 2 function 0 "Intel E7520 PCIE" rev 0x0c
pci1 at ppb0 bus 1
ppb1 at pci1 dev 0 function 0 "Intel 6700PXH PCIE-PCIX" rev 0x09
pci2 at ppb1 bus 3
mpi0 at pci2 dev 5 function 0 "Symbios Logic 53c1030" rev 0xc1: msi
scsibus0 at mpi0: 16 targets, initiator 7
ppb2 at pci1 dev 0 function 2 "Intel 6700PXH PCIE-PCIX" rev 0x09
pci3 at ppb2 bus 2
em0 at pci3 dev 1 function 0 "Intel 82546GB" rev 0x03: apic 10 int 0, 
address 00:1b:21:15:6a:82
em1 at pci3 dev 1 function 1 "Intel 82546GB" rev 0x03: apic 10 int 1, 
address 00:1b:21:15:6a:83

ppb3 at pci0 dev 3 function 0 "Intel E7520 PCIE" rev 0x0c
pci4 at ppb3 bus 4
ppb4 at pci0 dev 28 function 0 "Intel 6300ESB PCIX" rev 0x02
pci5 at ppb4 bus 5
em2 at pci5 d

Re: smtpd aliases

2013-06-18 Thread William Orr 
Is that available in OpenBSD 5.3? I saw that in the -current manpage 
when I was originally configuring smtpd, but lmtp delivery wasn't in the 
manpage in 5.3.

Gilles Chehade 
June 18, 2013 1:00 AM
On Sun, Jun 16, 2013 at 04:44:02PM -0700, William Orr wrote:

Hello, all!



Hello,



I'm having some problems with aliases in smtpd, in that they're not
properly resolving. I have a bunch of incoming mails stuck in the
queue that dovecot (my MDA) refuses to deliver. The logs don't point
to any problem reading or opening the aliases file.

Here is my smtpd.conf:
#   $OpenBSD: smtpd.conf,v 1.6 2013/01/26 09:38:25 gilles Exp $

# This is the smtpd server system-wide configuration file.
# See smtpd.conf(5) for more information.

av = "amavis"
originating = "originating"
dn = "worrbase.com"
av_foreign = "lmtp://localhost:10024"
av_origin = "lmtp://localhost:10026"
dovecot = "lmtp://localhost:10110"

table aliases db:/etc/mail/aliases.db

# listen on smtp, submission and the amavis port
# should be able to use tls almost all the time
listen on fxp0 port smtp tls certificate mail
listen on fxp0 port submission tls-require certificate mail auth \
 tag $originating
listen on lo port 10025 tag $av

# coming in from amavis
accept tagged $av for domain $dn relay via $dovecot
accept tagged $av for any relay

# coming in from the outside
accept from any for domain $dn alias  relay via $av_foreign

# coming in from local
accept for any alias  relay via $av_origin

# coming in from authed clients
accept tagged $originating for any alias  relay via $av_origin



Ok, there's a parse.y bug here that I'll be looking into.
You shouldn't be able to use "alias" in a relay rule, it is discarded.
What you want is to use local lmtp delivery, not lmtp relaying.

William Orr 
June 16, 2013 4:44 PM
Hello, all!

I'm having some problems with aliases in smtpd, in that they're not 
properly resolving. I have a bunch of incoming mails stuck in the 
queue that dovecot (my MDA) refuses to deliver. The logs don't point 
to any problem reading or opening the aliases file.


Here is my smtpd.conf:
#   $OpenBSD: smtpd.conf,v 1.6 2013/01/26 09:38:25 gilles Exp $

# This is the smtpd server system-wide configuration file.
# See smtpd.conf(5) for more information.

av = "amavis"
originating = "originating"
dn = "worrbase.com"
av_foreign = "lmtp://localhost:10024"
av_origin = "lmtp://localhost:10026"
dovecot = "lmtp://localhost:10110"

table aliases db:/etc/mail/aliases.db

# listen on smtp, submission and the amavis port
# should be able to use tls almost all the time
listen on fxp0 port smtp tls certificate mail
listen on fxp0 port submission tls-require certificate mail auth \
tag $originating
listen on lo port 10025 tag $av

# coming in from amavis
accept tagged $av for domain $dn relay via $dovecot
accept tagged $av for any relay

# coming in from the outside
accept from any for domain $dn alias  relay via $av_foreign

# coming in from local
accept for any alias  relay via $av_origin

# coming in from authed clients
accept tagged $originating for any alias  relay via $av_origin

The aliases file (this is concatenated with the default 
/etc/mail/aliases):

root:   will
admin:  will
webmaster:  will
sysadmin:   will
worr:   will
backups:will
cron:   will
clamav: will
hostmaster: will
virusalert: will
dmarc-rua:  repo...@dmarcanalyzer.com, postmaster
dmarc-ruf:  repo...@dmarcanalyzer.com, postmaster

I've run newaliases after modifying the aliases db, and I've tried 
sending mails to the aliases listed in the default aliases file.


Mail to actual users works great.

Here's some of the logfile:
Jun 16 18:49:29 ponyexpress smtpd[26195]: smtp-out: Connecting to 
lmtp://127.0.0.1:10110 (localhost) on session 00c8ec12b3d9...
Jun 16 18:49:29 ponyexpress smtpd[26195]: smtp-out: Connected on 
session 00c8ec12b3d9

Jun 16 18:49:29 ponyexpress dovecot: lmtp(14309): Connect from 127.0.0.1
Jun 16 18:49:29 ponyexpress smtpd[26195]: relay: TempFail for 
9336e65b41a220af: from=<>, to=, relay=127.0.0.1 
(localhost), delay=13h26m41s, stat=451 4.3.0  
Invalid user settings. Refer to server log for more information.
Jun 16 18:49:29 ponyexpress dovecot: lmtp(14309): Error: user root: 
Invalid settings in userdb: userdb returned 0 as uid
Jun 16 18:49:29 ponyexpress dovecot: lmtp(14309): Disconnect from 
127.0.0.1: Client quit (in reset)
Jun 16 18:49:29 ponyexpress smtpd[26195]: smtp-out: Closing session 
00c8ec12b3d9: 0 message sent.
Jun 16 18:49:31 ponyexpress smtpd[26195]: smtp-out: Connecting to 
lmtp://127.0.0.1:10110 (localhost) on session 00cb899c72fd...
Jun 16 18:49:31 ponyexpress smtpd[26195]: smtp-out: Connected on 
session 00cb899c72fd

Jun 16 18:49:31 ponyexpress dovecot: lmtp(14309): Connect from 127.0.0.1
Jun 16 18:49:31 ponyexpress smtpd[26195]: relay: TempFail for 
cec99e69ffab9bdf: from=<>, to=, relay=127

Re: smtpd aliases

2013-06-18 Thread Gilles Chehade 
On Tue, Jun 18, 2013 at 09:10:25AM -0700, William Orr wrote:
> Is that available in OpenBSD 5.3? I saw that in the -current manpage
> when I was originally configuring smtpd, but lmtp delivery wasn't in
> the manpage in 5.3.
>

Nope, not part of OpenBSD 5.3

But you can fetch a 5.3.3 stable tarball from opensmtpd.org and it will
run on top of OpenBSD 5.3

-- 
Gilles Chehade

https://www.poolp.org  @poolpOrg

Problem with icmp state creation on 5.3 PF

2013-06-18 Thread Wiesław Herr 
Hi misc@!

After deploying a new OpenBSD 5.3 firewall today I ran into a strange
problem. The first rule in my ruleset is one NAT-ing ICMP packets from my
host to Google's DNS IP (8.8.8.8):

> fw1a-spt # pfctl -sr -R0
> pass out log quick inet proto icmp from 192.168.5.96 to 8.8.8.8 nat-to
195.182.23.4

195.182.23.4 is my public IP address.

The problem is that only one in every ~20 packets gets NAT-ed. Other ones
get passed as-is. A tcpdump is available here:

http://hpaste.org/90099

I managed to increase the number of NAT-ed packets to about one-in-five
adding the following line to my PF:

> set timeout { icmp.first 0, icmp.error 0 }

I would like not to paste my whole pf.conf file, since it's a bit large
(~1k lines) and has been recently migrated from a FreeBSD machine. There
are no arcane things inside (like limits or any other 'set' directives),
just other pass and block rules.

The trunk0 interface configuration:
> trunkproto lacp
> trunkport bge0
> trunkport bge1
> up

Disabling one of the bge interfaces didn't help either, which makes me
think LACP is unrelated to this.

A carp interface with the 195.182.23.4 IP address sits on top of the trunk
interface:
> vhid 1 advskew 10 carpdev trunk0 pass *snip!*
> inet 195.182.23.4 255.255.255.0 NONE
> other aliases here...

If any other information is needed please ask and I'll happily provide it.

Does anybody have an idea what might be causing this? I'll try testing this
on CURRENT later, since I'm running out of ideas here...

And a mandatory dmesg follows:
OpenBSD 5.3 (GENERIC.MP) #62: Tue Mar 12 18:21:20 MDT 2013
dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
real mem = 2145452032 (2046MB)
avail mem = 2065903616 (1970MB)
mainbus0 at root
bios0 at mainbus0: SMBIOS rev. 2.31 @ 0xdc010 (57 entries)
bios0: vendor HP version "O08" date 08/13/2007
bios0: HP ProLiant DL140 G3
acpi0 at bios0: rev 0
acpi0: sleep states S0 S4 S5
acpi0: tables DSDT FACP SPMI APIC MCFG BOOT SPCR SSDT
acpi0: wakeup devices BPD0(S5) BMF3(S5) P0P4(S5) P0P6(S5) PEX0(S5) PEX1(S5)
PEX2(S5) PEX3(S5) USB1(S5) USB2(S5) USB3(S5) EUSB(S5) PCIB(S5)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: Intel(R) Xeon(R) CPU 5130 @ 2.00GHz, 1995.29 MHz
cpu0:
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS
H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,DTES64,MWAIT,DS-CPL,VMX,TM2,SS
SE3,CX16,xTPR,PDCM,DCA,NXE,LONG,LAHF,PERF
cpu0: 4MB 64b/line 16-way L2 cache
cpu0: apic clock running at 332MHz
cpu1 at mainbus0: apid 1 (application processor)
cpu1: Intel(R) Xeon(R) CPU 5130 @ 2.00GHz, 1995.00 MHz
cpu1:
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS
H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,DTES64,MWAIT,DS-CPL,VMX,TM2,SS
SE3,CX16,xTPR,PDCM,DCA,NXE,LONG,LAHF,PERF
cpu1: 4MB 64b/line 16-way L2 cache
ioapic0 at mainbus0: apid 2 pa 0xfec0, version 20, 24 pins
ioapic1 at mainbus0: apid 3 pa 0xfec8, version 20, 24 pins
acpimcfg0 at acpi0 addr 0xe000, bus 0-23
acpiprt0 at acpi0: bus 1 (P0P2)
acpiprt1 at acpi0: bus 2 (BMD0)
acpiprt2 at acpi0: bus 3 (BPD0)
acpiprt3 at acpi0: bus -1 (BPD1)
acpiprt4 at acpi0: bus -1 (BPD2)
acpiprt5 at acpi0: bus 7 (BMF3)
acpiprt6 at acpi0: bus 12 (P0P4)
acpiprt7 at acpi0: bus 14 (P0P6)
acpiprt8 at acpi0: bus 0 (PCI0)
acpiprt9 at acpi0: bus 22 (PEX0)
acpiprt10 at acpi0: bus 23 (PEX1)
acpiprt11 at acpi0: bus -1 (PEX2)
acpiprt12 at acpi0: bus -1 (PEX3)
acpiprt13 at acpi0: bus 24 (PCIB)
acpicpu0 at acpi0
acpicpu1 at acpi0
acpibtn0 at acpi0: PWRB
pci0 at mainbus0 bus 0
pchb0 at pci0 dev 0 function 0 "Intel 5000X Host" rev 0x31
ppb0 at pci0 dev 2 function 0 "Intel 5000 PCIE x8" rev 0x31
pci1 at ppb0 bus 1
ppb1 at pci1 dev 0 function 0 "Intel 6321ESB PCIE" rev 0x01
pci2 at ppb1 bus 2
ppb2 at pci2 dev 0 function 0 "Intel 6321ESB PCIE" rev 0x01
pci3 at ppb2 bus 3
ppb3 at pci1 dev 0 function 3 "Intel 6321ESB PCIE-PCIX" rev 0x01
pci4 at ppb3 bus 7
ppb4 at pci0 dev 3 function 0 "Intel 5000 PCIE" rev 0x31
pci5 at ppb4 bus 8
ppb5 at pci0 dev 4 function 0 "Intel 5000 PCIE x16" rev 0x31: msi
pci6 at ppb5 bus 12
ppb6 at pci0 dev 5 function 0 "Intel 5000 PCIE" rev 0x31: msi
pci7 at ppb6 bus 13
ppb7 at pci0 dev 6 function 0 "Intel 5000 PCIE" rev 0x31: msi
pci8 at ppb7 bus 14
ppb8 at pci0 dev 7 function 0 "Intel 5000 PCIE" rev 0x31: msi
pci9 at ppb8 bus 15
pchb1 at pci0 dev 16 function 0 "Intel 5000 Error Reporting" rev 0x31
pchb2 at pci0 dev 16 function 1 "Intel 5000 Error Reporting" rev 0x31
pchb3 at pci0 dev 16 function 2 "Intel 5000 Error Reporting" rev 0x31
pchb4 at pci0 dev 17 function 0 "Intel 5000 Reserved" rev 0x31
pchb5 at pci0 dev 19 function 0 "Intel 5000 Reserved" rev 0x31
pchb6 at pci0 dev 21 function 0 "Intel 5000 FBD" rev 0x31
pchb7 at pci0 dev 22 function 0 "Intel 5000 FBD" rev 0x31
ppb9 at pci0 dev 28 function 0 "Intel 6321ESB PCIE" rev 0x09: msi
pci10 at ppb9 bus 22
bge0 at pci10 dev 0 functio

Re: carp hung at INIT after update to current snapshot

2013-06-18 Thread Chris Cappuccio 
Stuart Henderson keeps old kernels around at 
ftp://sym.spacehopper.org/pub/OpenBSD/snapshots/i386/oldkern/

To help narrow down what change might have caused this, try and figure out
the newest kernel that still works properly.

Jeff Ross [jr...@openvistas.net] wrote:
> Hi all,
> 
> Tonight I updated to the June 17 snapshot on my primary firewall.
> Before updating carp has been working flawlessly, with this server
> the primary and its twin the secondary.  When I'd reboot the primary
> the secondary would become master but only until the primary had
> finished rebooting.  After updating and reboot the primary's carp0
> and carp1 interfaces remain in INIT.
> 
> I did run sysmerge and don't see anything apropos in the Running
> -current section of the FAQ.
> 
> My secondary firewall took over as carp master on reboot but I'm a
> little leery of updating or even rebooting it to see if the primary
> will take over--I'm 650 miles from the server room :-)
> 
> dmesg, ifconfig -a and /etc/hostname* follow.
> 
> Thanks,
> 
> Jeff Ross
> 
> OpenBSD 5.3-current (GENERIC.MP) #7: Mon Jun 17 12:17:04 MDT 2013
> dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP
> cpu0: Intel(R) Xeon(TM) CPU 3.20GHz ("GenuineIntel" 686-class) 3.21 GHz
> cpu0: 
> FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,LONG,SSE3,DTES64,MWAIT,DS-CPL,CNXT-ID,CX16,xTPR,LAHF,PERF
> real mem  = 3757490176 (3583MB)
> avail mem = 3684646912 (3513MB)
> mainbus0 at root
> bios0 at mainbus0: AT/286+ BIOS, date 03/29/05, BIOS32 rev. 0 @
> 0xf0010, SMBIOS rev. 2.3 @ 0xfa380 (61 entries)
> bios0: vendor American Megatrends Inc. version "080010" date 03/29/2005
> bios0: SiMech R200
> acpi0 at bios0: rev 2
> acpi0: sleep states S0 S1 S4 S5
> acpi0: tables DSDT FACP APIC OEMB
> acpi0: wakeup devices PXHA(S4) PXHB(S4) EPA0(S4) EPA1(S4) EPB0(S4)
> EPB1(S4) EPC0(S4) P0P1(S4) MC97(S4) USB1(S1) USB2(S1) EUSB(S4)
> PS2K(S4) PS2M(S4) P0PC(S4) SLPB(S4)
> acpitimer0 at acpi0: 3579545 Hz, 24 bits
> acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
> cpu0 at mainbus0: apid 0 (boot processor)
> cpu0: apic clock running at 200MHz
> cpu1 at mainbus0: apid 6 (application processor)
> cpu1: Intel(R) Xeon(TM) CPU 3.20GHz ("GenuineIntel" 686-class) 3.21 GHz
> cpu1: 
> FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,LONG,SSE3,DTES64,MWAIT,DS-CPL,CNXT-ID,CX16,xTPR,LAHF,PERF
> cpu2 at mainbus0: apid 1 (application processor)
> cpu2: Intel(R) Xeon(TM) CPU 3.20GHz ("GenuineIntel" 686-class) 3.21 GHz
> cpu2: 
> FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,LONG,SSE3,DTES64,MWAIT,DS-CPL,CNXT-ID,CX16,xTPR,LAHF,PERF
> cpu3 at mainbus0: apid 7 (application processor)
> cpu3: Intel(R) Xeon(TM) CPU 3.20GHz ("GenuineIntel" 686-class) 3.21 GHz
> cpu3: 
> FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,LONG,SSE3,DTES64,MWAIT,DS-CPL,CNXT-ID,CX16,xTPR,LAHF,PERF
> ioapic0 at mainbus0: apid 8 pa 0xfec0, version 20, 24 pins
> ioapic1 at mainbus0: apid 11 pa 0xfec1, version 20, 24 pins
> ioapic1: misconfigured as apic 9, remapped to apid 11
> ioapic2 at mainbus0: apid 9 pa 0xfec8, version 20, 24 pins
> ioapic2: misconfigured as apic 10, remapped to apid 9
> ioapic3 at mainbus0: apid 10 pa 0xfec80400, version 20, 24 pins
> ioapic3: misconfigured as apic 11, remapped to apid 10
> acpiprt0 at acpi0: bus 0 (PCI0)
> acpiprt1 at acpi0: bus 1 (EPA0)
> acpiprt2 at acpi0: bus 3 (PXHA)
> acpiprt3 at acpi0: bus 2 (PXHB)
> acpiprt4 at acpi0: bus 4 (EPA1)
> acpiprt5 at acpi0: bus 6 (P0P1)
> acpiprt6 at acpi0: bus 5 (P0PC)
> acpicpu0 at acpi0
> acpicpu1 at acpi0
> acpicpu2 at acpi0
> acpicpu3 at acpi0
> acpibtn0 at acpi0: PWRB
> acpibtn1 at acpi0: SLPB
> bios0: ROM list: 0xc/0x8000 0xc8000/0x800 0xc8800/0x1000 0xc9800/0x1000
> ipmi at mainbus0 not configured
> pci0 at mainbus0 bus 0: configuration mode 1 (bios)
> pchb0 at pci0 dev 0 function 0 "Intel E7320 Host" rev 0x0c
> ppb0 at pci0 dev 2 function 0 "Intel E7520 PCIE" rev 0x0c
> pci1 at ppb0 bus 1
> ppb1 at pci1 dev 0 function 0 "Intel 6700PXH PCIE-PCIX" rev 0x09
> pci2 at ppb1 bus 3
> mpi0 at pci2 dev 5 function 0 "Symbios Logic 53c1030" rev 0xc1: msi
> scsibus0 at mpi0: 16 targets, initiator 7
> ppb2 at pci1 dev 0 function 2 "Intel 6700PXH PCIE-PCIX" rev 0x09
> pci3 at ppb2 bus 2
> em0 at pci3 dev 1 function 0 "Intel 82546GB" rev 0x03: apic 10 int
> 0, address 00:1b:21:15:6a:82
> em1 at pci3 dev 1 function 1 "Intel 82546GB" rev 0x03: apic 10 int
> 1, address 00:1b:21:15:6a:83
> ppb3 at pci0 dev 3 function 0 "Intel E7520 PCIE" rev 0x0c
> pci4 at ppb3 bus 4
> ppb4 at pci0 dev 28 function 0 "Intel 6300ESB PCIX" rev 0x02
> pci5 at ppb4 bus 5
> em2 at pci5 dev 1 function 0 "Intel 82541GI" rev 0x05: apic 11 int
> 2, address 00:30:48:87:2e:b0
> em3 at p

Re: smtpd aliases

2013-06-18 Thread William Orr 

Thanks Gilles, first for the help and second for the fantastic software.

One last question - is there a way I can resend the mail stuck in the 
queue? I've tried smtpctl schedule all, but it doesn't seem to resolve 
the aliases, since it already passed through amavis.



Gilles Chehade 
June 18, 2013 9:14 AM

Nope, not part of OpenBSD 5.3

But you can fetch a 5.3.3 stable tarball from opensmtpd.org and it will
run on top of OpenBSD 5.3

William Orr 
June 18, 2013 9:10 AM
Is that available in OpenBSD 5.3? I saw that in the -current manpage 
when I was originally configuring smtpd, but lmtp delivery wasn't in 
the manpage in 5.3.


Gilles Chehade 
June 18, 2013 1:00 AM
On Sun, Jun 16, 2013 at 04:44:02PM -0700, William Orr wrote:

Hello, all!



Hello,



I'm having some problems with aliases in smtpd, in that they're not
properly resolving. I have a bunch of incoming mails stuck in the
queue that dovecot (my MDA) refuses to deliver. The logs don't point
to any problem reading or opening the aliases file.

Here is my smtpd.conf:
#   $OpenBSD: smtpd.conf,v 1.6 2013/01/26 09:38:25 gilles Exp $

# This is the smtpd server system-wide configuration file.
# See smtpd.conf(5) for more information.

av = "amavis"
originating = "originating"
dn = "worrbase.com"
av_foreign = "lmtp://localhost:10024"
av_origin = "lmtp://localhost:10026"
dovecot = "lmtp://localhost:10110"

table aliases db:/etc/mail/aliases.db

# listen on smtp, submission and the amavis port
# should be able to use tls almost all the time
listen on fxp0 port smtp tls certificate mail
listen on fxp0 port submission tls-require certificate mail auth \
 tag $originating
listen on lo port 10025 tag $av

# coming in from amavis
accept tagged $av for domain $dn relay via $dovecot
accept tagged $av for any relay

# coming in from the outside
accept from any for domain $dn alias  relay via $av_foreign

# coming in from local
accept for any alias  relay via $av_origin

# coming in from authed clients
accept tagged $originating for any alias  relay via $av_origin



Ok, there's a parse.y bug here that I'll be looking into.
You shouldn't be able to use "alias" in a relay rule, it is discarded.
What you want is to use local lmtp delivery, not lmtp relaying.

William Orr 
June 16, 2013 4:44 PM
Hello, all!

I'm having some problems with aliases in smtpd, in that they're not 
properly resolving. I have a bunch of incoming mails stuck in the 
queue that dovecot (my MDA) refuses to deliver. The logs don't point 
to any problem reading or opening the aliases file.


Here is my smtpd.conf:
#   $OpenBSD: smtpd.conf,v 1.6 2013/01/26 09:38:25 gilles Exp $

# This is the smtpd server system-wide configuration file.
# See smtpd.conf(5) for more information.

av = "amavis"
originating = "originating"
dn = "worrbase.com"
av_foreign = "lmtp://localhost:10024"
av_origin = "lmtp://localhost:10026"
dovecot = "lmtp://localhost:10110"

table aliases db:/etc/mail/aliases.db

# listen on smtp, submission and the amavis port
# should be able to use tls almost all the time
listen on fxp0 port smtp tls certificate mail
listen on fxp0 port submission tls-require certificate mail auth \
tag $originating
listen on lo port 10025 tag $av

# coming in from amavis
accept tagged $av for domain $dn relay via $dovecot
accept tagged $av for any relay

# coming in from the outside
accept from any for domain $dn alias  relay via $av_foreign

# coming in from local
accept for any alias  relay via $av_origin

# coming in from authed clients
accept tagged $originating for any alias  relay via $av_origin

The aliases file (this is concatenated with the default 
/etc/mail/aliases):

root:   will
admin:  will
webmaster:  will
sysadmin:   will
worr:   will
backups:will
cron:   will
clamav: will
hostmaster: will
virusalert: will
dmarc-rua:  repo...@dmarcanalyzer.com, postmaster
dmarc-ruf:  repo...@dmarcanalyzer.com, postmaster

I've run newaliases after modifying the aliases db, and I've tried 
sending mails to the aliases listed in the default aliases file.


Mail to actual users works great.

Here's some of the logfile:
Jun 16 18:49:29 ponyexpress smtpd[26195]: smtp-out: Connecting to 
lmtp://127.0.0.1:10110 (localhost) on session 00c8ec12b3d9...
Jun 16 18:49:29 ponyexpress smtpd[26195]: smtp-out: Connected on 
session 00c8ec12b3d9

Jun 16 18:49:29 ponyexpress dovecot: lmtp(14309): Connect from 127.0.0.1
Jun 16 18:49:29 ponyexpress smtpd[26195]: relay: TempFail for 
9336e65b41a220af: from=<>, to=, relay=127.0.0.1 
(localhost), delay=13h26m41s, stat=451 4.3.0  
Invalid user settings. Refer to server log for more information.
Jun 16 18:49:29 ponyexpress dovecot: lmtp(14309): Error: user root: 
Invalid settings in userdb: userdb returned 0 as uid
Jun 16 18:49:29 ponyexpress dovecot: lmtp(14309): Disconnect from 
127.0.0.1

Re: carp hung at INIT after update to current snapshot

2013-06-18 Thread Stuart Henderson 
On 2013-06-18, Chris Cappuccio  wrote:
> Stuart Henderson keeps old kernels around at 
> ftp://sym.spacehopper.org/pub/OpenBSD/snapshots/i386/oldkern/
>


These are now going offline.

Every single time I have mentioned this URL I have been careful to say do NOT 
post it in public.

Re: carp hung at INIT after update to current snapshot

2013-06-18 Thread Jeff Ross 

Can't get them, though.

jross@samsara2:/home/jross $ ftp 
ftp://sym.spacehopper.org/pub/OpenBSD/snapshots/i386/oldkern/

Trying 85.158.44.150...
ftp: connect to address 85.158.44.150: Connection refused
Trying 2001:8b0:648e:cc01:230:48ff:fe58:8640...
ftp: connect: No route to host
ftp: Can't connect or login to host `sym.spacehopper.org'

On 6/18/13 12:54 PM, Chris Cappuccio wrote:

Stuart Henderson keeps old kernels around at 
ftp://sym.spacehopper.org/pub/OpenBSD/snapshots/i386/oldkern/

To help narrow down what change might have caused this, try and figure out
the newest kernel that still works properly.

Jeff Ross [jr...@openvistas.net] wrote:

Hi all,

Tonight I updated to the June 17 snapshot on my primary firewall.
Before updating carp has been working flawlessly, with this server
the primary and its twin the secondary.  When I'd reboot the primary
the secondary would become master but only until the primary had
finished rebooting.  After updating and reboot the primary's carp0
and carp1 interfaces remain in INIT.

I did run sysmerge and don't see anything apropos in the Running
-current section of the FAQ.

My secondary firewall took over as carp master on reboot but I'm a
little leery of updating or even rebooting it to see if the primary
will take over--I'm 650 miles from the server room :-)

dmesg, ifconfig -a and /etc/hostname* follow.

Thanks,

Jeff Ross

OpenBSD 5.3-current (GENERIC.MP) #7: Mon Jun 17 12:17:04 MDT 2013
dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP
cpu0: Intel(R) Xeon(TM) CPU 3.20GHz ("GenuineIntel" 686-class) 3.21 GHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,LONG,SSE3,DTES64,MWAIT,DS-CPL,CNXT-ID,CX16,xTPR,LAHF,PERF
real mem  = 3757490176 (3583MB)
avail mem = 3684646912 (3513MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 03/29/05, BIOS32 rev. 0 @
0xf0010, SMBIOS rev. 2.3 @ 0xfa380 (61 entries)
bios0: vendor American Megatrends Inc. version "080010" date 03/29/2005
bios0: SiMech R200
acpi0 at bios0: rev 2
acpi0: sleep states S0 S1 S4 S5
acpi0: tables DSDT FACP APIC OEMB
acpi0: wakeup devices PXHA(S4) PXHB(S4) EPA0(S4) EPA1(S4) EPB0(S4)
EPB1(S4) EPC0(S4) P0P1(S4) MC97(S4) USB1(S1) USB2(S1) EUSB(S4)
PS2K(S4) PS2M(S4) P0PC(S4) SLPB(S4)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: apic clock running at 200MHz
cpu1 at mainbus0: apid 6 (application processor)
cpu1: Intel(R) Xeon(TM) CPU 3.20GHz ("GenuineIntel" 686-class) 3.21 GHz
cpu1: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,LONG,SSE3,DTES64,MWAIT,DS-CPL,CNXT-ID,CX16,xTPR,LAHF,PERF
cpu2 at mainbus0: apid 1 (application processor)
cpu2: Intel(R) Xeon(TM) CPU 3.20GHz ("GenuineIntel" 686-class) 3.21 GHz
cpu2: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,LONG,SSE3,DTES64,MWAIT,DS-CPL,CNXT-ID,CX16,xTPR,LAHF,PERF
cpu3 at mainbus0: apid 7 (application processor)
cpu3: Intel(R) Xeon(TM) CPU 3.20GHz ("GenuineIntel" 686-class) 3.21 GHz
cpu3: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,LONG,SSE3,DTES64,MWAIT,DS-CPL,CNXT-ID,CX16,xTPR,LAHF,PERF
ioapic0 at mainbus0: apid 8 pa 0xfec0, version 20, 24 pins
ioapic1 at mainbus0: apid 11 pa 0xfec1, version 20, 24 pins
ioapic1: misconfigured as apic 9, remapped to apid 11
ioapic2 at mainbus0: apid 9 pa 0xfec8, version 20, 24 pins
ioapic2: misconfigured as apic 10, remapped to apid 9
ioapic3 at mainbus0: apid 10 pa 0xfec80400, version 20, 24 pins
ioapic3: misconfigured as apic 11, remapped to apid 10
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 1 (EPA0)
acpiprt2 at acpi0: bus 3 (PXHA)
acpiprt3 at acpi0: bus 2 (PXHB)
acpiprt4 at acpi0: bus 4 (EPA1)
acpiprt5 at acpi0: bus 6 (P0P1)
acpiprt6 at acpi0: bus 5 (P0PC)
acpicpu0 at acpi0
acpicpu1 at acpi0
acpicpu2 at acpi0
acpicpu3 at acpi0
acpibtn0 at acpi0: PWRB
acpibtn1 at acpi0: SLPB
bios0: ROM list: 0xc/0x8000 0xc8000/0x800 0xc8800/0x1000 0xc9800/0x1000
ipmi at mainbus0 not configured
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 "Intel E7320 Host" rev 0x0c
ppb0 at pci0 dev 2 function 0 "Intel E7520 PCIE" rev 0x0c
pci1 at ppb0 bus 1
ppb1 at pci1 dev 0 function 0 "Intel 6700PXH PCIE-PCIX" rev 0x09
pci2 at ppb1 bus 3
mpi0 at pci2 dev 5 function 0 "Symbios Logic 53c1030" rev 0xc1: msi
scsibus0 at mpi0: 16 targets, initiator 7
ppb2 at pci1 dev 0 function 2 "Intel 6700PXH PCIE-PCIX" rev 0x09
pci3 at ppb2 bus 2
em0 at pci3 dev 1 function 0 "Intel 82546GB" rev 0x03: apic 10 int
0, address 00:1b:21:15:6a:82
em1 at pci3 dev 1 function 1 "Intel 82546GB" rev 0x03: apic 10 int
1, address 00:1b:21:15:6a:83
ppb3 at pci0 dev 3 function 0 "Intel E7520 PCIE" rev 0x0c
pci4 at ppb3