ifconfig, lladr, netstart and booting
hi there, now that openbsd supports ethernet address changes, what is the proper way of doing it for a particular interface? i did not find references to it in hostname.if, will there be an option for it? -- doubt is the beginning of wisdom
nat problems in -current
hi there, i have just upgraded our firewall to -current (2nd may). it seems that nat stopped working.. i see packets arriving on $int_if from the inside network, but they are not leaving on $ext_if and/or nothing is arriving on $ext_if... # cat /etc/pf.conf ext_if="ne3" int_if="rl0" set loginterface $ext_if nat on $ext_if from !($ext_if) -> ($ext_if:0) going outside from the firewall is just fine. i am using the same configuration as i did before, the only difference is, that lladdr has been changed in hostname.ne3 how can i troubleshoot nat issues? -f -- an optimist invented an airplane; a pessimist a parachute.
Re: nat problems in -current
hmm, on Wed, May 04, 2005 at 11:51:37PM +0200, -f said that > hi there, > > i have just upgraded our firewall to -current (2nd may). > > it seems that nat stopped working.. > i see packets arriving on $int_if from the inside network, > but they are not leaving on $ext_if and/or nothing is arriving > on $ext_if... please ignore this post. on the other hand, always remember: net.inet.ip.forwarding=1 ;-))) i would like to thank the developers for implementing lladdr. it makes my life much easier. and so i ordered the cd and the tshirt. -- let me show you the world in my eyes.
udf vs fat32
hi there, i am reading about UDF on wikipedia, and it states that udf is becoming popular on flash media. i saw the udf commits to the tree, and i was wondering if it was possible to udf format a disk. as both windows and openbsd understands udf, maybe it could be used as a crossplatform file system? -f -- 30 minutes of begging is not considered foreplay.
more file descriptors for user www
hi there, i have processes running as www, eating up file descriptors. after a while i get errors because i need more. this is not about serving pages, this is about processes which run as www. so how can i raise the number of file descriptors for www? can be this done from /etc/login.conf ? i am bit confused, because www never logs in, or does it? -f -- if code was meant to be portable, it'd have wheels...
heal the world, and misc@ [strictly coffeetime reading]
dear list, a nice cup of coffee in front of me, and as a big fan of robert x., let me reflect a bit on the phenomenon called "misc@openbsd.org"... will try to keep it short. a couple of days ago, there was a quite big thread about optimized kernel builds. the caller had a point (all of us do, no matter how insignificant) but some of the answers were rude, childish and much more trollish than the actual post itself. that thread made me quite disgusted of misc@, the way people treat each other here. i am a teacher. i have a degree in "teaching computer science". when you learn to be a teacher, you must sign up to basic psychology classes. obviously. teachers are role models. obviously. i don't teach at the moment, and i am not sure i will. i have found the fact that some of the kids will form habits, opinions, god-knows-what-else based on my personality quite scary and too big a responsibility. for now anyway. but i am also what some might call nerd/geek (blech) and am very familiar with the social implications of that. what people here mostly fail to realize is, how impersonal the internet really is. 99% of you don't know how old i am, how do i look like, what's my life like. same is true from my side towards you. my point is, that you could be affecting(flaming) a developing personality, a 13 year old kid who just happens to be very intelligent, just installed the system and hurries off to the mailing list to satisfy his knowledge hunger without realizing all the mailing list nuances we see everyday (top posting, long signatures, not reading the documentation beforehand, posting the "taboo" questions). you just never know. (well, except darren reed ;-) it's all about experience. there is a baby born every second, and no one was born wise. everyone who uses email for more than 5 years knows just how elusive this form of communication is. how easy it is to misunderstand, misinterpret even a clearly worded email. 1. if a mail makes you angry, never respond rightaway. in the best case, sleep on it. in the worst case, go do something else, come back in an hour, read it again carefully and then respond. 2. if a mail makes you angry, in 85% of all cases, you should just delete it, and forget about it. i am quite amazed how hard it is for people to ignore stuff. you must exercise your ignore muscle. saves awful lot of time and energy. (i know, this mail is the opposite of this advice, but i slept on it ;-) 3. never assume that you are writing to an intelligent adult person. 4. remember that email is archived and one day you might read what you wrote years ago. you know, shame and stuff. 5. a whole planet could be reading what you wrote. you represent your family, upbringing, country, etc, and last but not least yourself. 6. chill out and relax. as one of my taglines say: "good words cost no more than bad." peace, -f ps. musical background for this mail provided by two lone swordsman and arovane -- en taro adun
Re: heal the world, and misc@ [strictly coffeetime reading]
hello Rick, and others, i just wanted to say, that you almost enteriley missed my point. i never said leave the young in a bubble, but 40 people yelling at you and calling names is not funny either. i didn't realize all the people here were so strong personalities in their teens, my mistake. only a sith deals in absolutes, to quote a very bad movie. i did not suggest let's make misc into a linux-newbie style lounge. i just wanted to point out that you never know what damage you make. just keep in mind. anyway, have a nice weekend. -f ps. yeah, and all of you ask your dad how many stupid questions/minute you asked him when you were young... did he just slap you: "it's scary bad world out there you fscking idiot! now shut up and code!" ? pps. i just realized my mail could depict me as the local christian from your mall. i am not. ppps. by popular demand i hereby promise i will not teach, none of your kids at least. also i wouldn't let mine near you, probably. -- computers run on smoke. if it leaks out they won't work.
Re: heal the world, and misc@ [strictly coffeetime reading]
hi there, for those who did not delete another post w/this subject: i am mostly impressed by the answers, positive, negative. my little social experiment reaffirms the following: it is not threads like i started which add too much noise to the list. it's the answers. this thread contains almost all of the archetypal answers one can get: -the fuck off style -i agree but why starting this -i disagree but why starting this -you are a troll -long live anarchy -stop this thread -you are full of shit because you provided only your initials -etc, etc. very few of them actually add anything meaningful. all these people could have flamed me offlist, because they do precisely know how much the others are not interested in it. my very favourites are "stop this thread", adding the most noise w/o any real meaning. some other remarks: -instead of nazis, terrorists are the next favourite target group -there is always someone telling you "run a spelcheker, idiot" (probably never heard of dyslexics) let me try again, because i love you all: please, reread the thread about the gcc stuff. before reading it, forget that you are member of this list, that you know the stuff you know about openbsd. imagine a friend sent it to you for amusement. what would you think about this list in general? i know i can't change people, and don't want to, that's why i do NOT teach (spare me the "you always change people stuff", and go read amok by stefan zweig), all of you who were kind enough to "enlighten" me how pointless my post was, here is a surprise: it wasn't. it shows just how much everyone want to see his/her name in the list, even when adding nothing to the thread. could have told me offlist. be polite, learn to ignore, or do the thing offlist. that was my message most of you missed. anyway, i will now go back and do what i advised. i will answer you offlist, or ignore you. thank you for ignoring me. -f -- you will become rich and famous unless you don't.
libc and BitTorrent
hi there, i was looking at BitTorrent, and this caught my attention: --enable_bad_libc_workaround enable workaround for a bug in BSD libc that makes file reads very slow. (defaults to 1) anybody knows what does this mean, and is openbsd affected? -f -- because you will burn.
Re: libc and BitTorrent
hmm, on Thu, Jun 16, 2005 at 05:12:32PM +0200, Artur Grabowski said that > -f <[EMAIL PROTECTED]> writes: > > > hi there, > > > > i was looking at BitTorrent, and this caught my attention: > > > > --enable_bad_libc_workaround > > enable workaround for a bug in BSD libc that makes file reads > > very slow. (defaults to 1) > > > > > > anybody knows what does this mean, and is openbsd affected? > > It means "The whole world is Linux, everything that is not linux is > bad. We design our software so that it uses hidden features and bugs > of glibc. If any other libc doesn't implement those bugs or unstandard > features it's bad and needs to suffer." > > Noone has ever explained what the problem is. Just that somehow "BSD > libc" is bad. i don't know python closely, but it never struck me as a linux only community, at least they are not GPL as far as i can tell. -- after two weeks of dieting, all i lost was two weeks.
Re: 3.8 beta requests
hmm, on Tue, Aug 23, 2005 at 09:23:27AM -0700, Raymond Lillard said that > Maybe a slogan along the lines of, "Is your software good enough > for OpenBSD"!! Perhaps it could be worked into the release's > theme. that is truly a brilliant idea ;-) any artists here? make a "designed for puffy" logo. first, all of the openbsd related projects could put it on their site. later the porters could ask their ported projects to include the logo on their page (if they "deserve" it) tshirts, mugs, a magazine, a tv show, finally even the HW manufacturers and microsoft would be pressed to redesign their OS to get the "seal of quality". and after the planet is conquered, the universe is the limit! ha ha ha! -f (ps. i swear the tagline was generated random!) -- all your base are belong to us.
ftp.openbsd.org
hi there, what is happening with ftp.openbsd.org? it stalls the downloads every couple of minutes. 53% [==> ] 19,162,576 6.98K/s ETA 38:08 and just hangs. then starts again, then hangs... anybody else experiencing this? -f -- it takes about ten years to get used to how old you are.
after remote upgrade to -current, can't log in with ssh
hi there, i am sure many of you started laughing after seeing the subject ;-) well, luckily, the machine is not that important, and what's more important: everything works (firewall, mysql, httpd), i just can't log in using ssh... what i did: 1. yesterday downloaded -current 2. new kernel to / 3. reboot 4. tar pxvzf *38.tgz (except x* and etc) 5. manually merged /etc 6. reboot what is happening now: when i login as myself, putty closes imeddiately as root: integer> ssh [EMAIL PROTECTED] [EMAIL PROTECTED]'s password: Last login: Fri Aug 26 21:36:57 2005 from integer.obiit.org OpenBSD 3.8-beta (GENERIC) #119: Wed Aug 24 01:47:37 MDT 2005 unable to set user context: Undefined error: 0 Connection to xyz closed. anybody seen this before? i googled and see that ssh[d] itself contains this message. is it sshd closing the connection on me? i think i must have messed up something in /etc (permisssions) -f -- why do they call it a tv set when you only get one?
/etc/pf.os
hi there, i was looking around what p0f can do nowadays, and this one caught my eye: Windows XP SP3 i didn't know there is a SP3 already... is there? -f -- if you think you have no faults, that makes one.
chroot apache and timezone
hi there, considering that httpd is chrooted by default, would it be a bad idea to have etcXX.tgz contain /var/www/etc/localtime ? the install script could also create this file based on the timezone answer... or perhaps at least afterboot(8) could mention this... -f -- excuse me if i sound bitter... i taste that way too...
Re: OpenBSD website Design.
i always liked the freebsd.org design. it's clean, functional, good to look at. can't really say the same about openbsd.org. clean? yes. functional? yes. good to look at? no. and freebsd is actually w3c correct... this is my biggest pain (as a web dev myself) as openbsd is very robust in everything else. but, no problem, can't be best in everything ;-) -f -- mexico's greatest export: their population.
Re: OpenBSD website Design. (openbsd.org down?)
hmm, on Sun, Sep 11, 2005 at 07:44:38PM -0700, Ray Percival said that > > Nice, but wrong: > > http://validator.w3.org/check?uri=http://mayuresh.freeshell.org/openbsd/ > And in what browser do any of those four errors cause actual problems? you are missing the point of validating so much... attitude like this made the web the mess it is now. > And why instead of doing a redesign don't you just sumbit a patch that > fixes those four problems? pardon? submitting a patch to something that will never be adopted here? sorry man, got better things to do. ok, now theo's mad at me, and doesn't allow me to look at the openbsd.org pages at all ;-) "The connection was refused when attempting to contact to www.openbsd.org." -f -- you made my day, now you have to sleep in it.
how to diagnose IErr's
hi there, today i noticed the following: kripel> netstat -i | grep ne NameMtu Network Address Ipkts IerrsOpkts Oerrs Colls ne3 150000:e0:06:f1:93:4f 3343306 26136 1330472 0 0 ne3 1500 fe80::%ne3/ fe80::2e0:6ff:fef 3343306 26136 1330472 0 0 ne3 1500 62.24.90/24 y763343306 26136 1330472 0 0 ne3 is my internet (digital modem) facing interface on my firewall. what does actually Ierrs mean and how can i diagnoze it? some time ago i had some Colls, but i fixed that by specifying full duplex and they disappeared. -f OpenBSD 3.8-beta (GENERIC) #119: Wed Aug 24 01:47:37 MDT 2005 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Intel Celeron ("GenuineIntel" 686-class, 128KB L2 cache) 375 MHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR real mem = 402169856 (392744K) avail mem = 359723008 (351292K) using 4278 buffers containing 20209664 bytes (19736K) of memory mainbus0 (root) bios0 at mainbus0: AT/286+(45) BIOS, date 12/24/99, BIOS32 rev. 0 @ 0xfb310 apm0 at bios0: Power Management spec V1.2 apm0: AC on, battery charge unknown apm0: flags 70102 dobusy 1 doidle 1 pcibios0 at bios0: rev 2.1 @ 0xf/0xb798 pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfde80/144 (7 entries) pcibios0: PCI Exclusive IRQs: 10 11 12 pcibios0: PCI Interrupt Router at 000:07:0 ("Intel 82371SB ISA" rev 0x00) pcibios0: PCI bus #1 is the last bus bios0: ROM list: 0xc/0x1 cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 "Intel 82443BX AGP" rev 0x02 ppb0 at pci0 dev 1 function 0 "Intel 82443BX AGP" rev 0x02 pci1 at ppb0 bus 1 vga1 at pci1 dev 0 function 0 "Nvidia Riva TNT2" rev 0x15 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) pcib0 at pci0 dev 7 function 0 "Intel 82371AB PIIX4 ISA" rev 0x02 pciide0 at pci0 dev 7 function 1 "Intel 82371AB IDE" rev 0x01: DMA, channel 0 wired to compatibility, channel 1 wired to compatibility wd0 at pciide0 channel 0 drive 0: wd0: 16-sector PIO, LBA, 5495MB, 11255328 sectors wd0(pciide0:0:0): using PIO mode 4, DMA mode 2 atapiscsi0 at pciide0 channel 1 drive 0 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: SCSI0 5/cdrom removable cd0(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 2 uhci0 at pci0 dev 7 function 2 "Intel 82371AB USB" rev 0x01: irq 12 usb0 at uhci0: USB revision 1.0 uhub0 at usb0 uhub0: Intel UHCI root hub, rev 1.00/1.00, addr 1 uhub0: 2 ports with 2 removable, self powered "Intel 82371AB Power" rev 0x02 at pci0 dev 7 function 3 not configured cmpci0 at pci0 dev 10 function 0 "C-Media Electronics CMI8738/C3DX Audio" rev 0x10: irq 10 audio0 at cmpci0 rl0 at pci0 dev 11 function 0 "Realtek 8139" rev 0x10: irq 12 address 00:50:fc:b2:05:8d rlphy0 at rl0 phy 0: RTL internal phy ne3 at pci0 dev 12 function 0 "Realtek 8029" rev 0x00: irq 11 ne3: address 00:c0:df:f0:a9:1f isa0 at pcib0 isadma0 at isa0 pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard, using wsdisplay0 pcppi0 at isa0 port 0x61 midi0 at pcppi0: spkr0 at pcppi0 sysbeep0 at pcppi0 lpt0 at isa0 port 0x378/4 irq 7 npx0 at isa0 port 0xf0/16: using exception 16 pccom0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo pccom1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo fdc0 at isa0 port 0x3f0/6 irq 6 drq 2 fd0 at fdc0 drive 0: 1.44MB 80 cyl, 2 head, 18 sec biomask f365 netmask fb65 ttymask fbe7 pctr: 686-class user-level performance counters enabled mtrr: Pentium Pro MTRR support dkcsum: wd0 matches BIOS drive 0x80 root on wd0a rootdev=0x0 rrootdev=0x300 rawdev=0x302 WARNING: / was not properly unmounted -- "give me two personal pronouns." "who, me?" -- benny hill
executable /bsd
hi there, is there a reason /bsd must be executable? is there a reason /bsd must be not executable? config -e -o writes an executable one. so is that the way it should be? -f -- it's my idea 'cause i stole it first!
Re: 3.8 pre-orders
hmm, on Wed, Sep 14, 2005 at 12:46:00AM -0600, Theo de Raadt said that > Artistically, the release is based on our RAID management efforts. > Thus, we have named the release "The Hackers of the Lost RAID", with > all the artwork and an uncoming song too. indiana jones, now that's a sweet spot! ;-) will have to make room for the poster next to my monthy python carp one. oh, and i hope like i never hoped before that there will be a tshirt off to order now. Professor Henry Jones: I didn't know you could fly a plane. Indiana Jones: Fly, yes. Land, no. -f -- opinions are like assholes - everybody has one.
pfctl -s labels
hi there, would it be a bad idea to add a short header/legend about what the numbers mean? i know the hardcore pf people know it by heart, but for me, it means a trip to the man page _every_ time ;-) and for maintaining the simple format for processing those numbers by scripts, it could be displayed only when -v is given... kripel> sudo pfctl -s labels ssh 332 0 0 0 0 0 0 torrent 89 476 181200 241 12953 235 168247 something along the lines of the tables or the interface tables maybe? kripel> sudo pfctl -vvs Inter -i ne3 ne3 Cleared: Wed Sep 14 23:56:28 2005 References: [ States: 0 Rules: 21 ] In4/Pass:[ Packets: 1869365Bytes: 1296207681 ] In4/Block: [ Packets: 242687 Bytes: 40112722 ] Out4/Pass: [ Packets: 1922181Bytes: 1302089117 ] Out4/Block: [ Packets: 10 Bytes: 3310 ] In6/Pass:[ Packets: 0 Bytes: 0 ] In6/Block: [ Packets: 0 Bytes: 0 ] Out6/Pass: [ Packets: 3 Bytes: 208] Out6/Block: [ Packets: 2 Bytes: 144 ] -f -- expert - anyone from out of town.
logging blocked connections in pf, but no line noise
hi there, i would like to log what was blocked from the outside. as of now i have the following in my pf.conf: block in log naturally this is logging too much redundant information. i would like to restrict the logging only to connections which were refused but at the same time were meant only for me, my external ip (no line noise)... i was thinking of making another rule, just below this one: block in block in log from any to $ext_if besides i don't know if this works, it seems a bit awkward to me... any ideas? -- wedding: a funeral where you smell your own flowers.
Re: logging blocked connections in pf, but no line noise
hmm, on Mon, Sep 19, 2005 at 10:01:58AM -0600, j knight said that > > i was thinking of making another rule, just below this one: > > > > block in > > block in log from any to $ext_if > > Another alternative: > > block in quick to $ext_if:broadcast > block in log this doesn't seem to have the disired effect... the rule got translated into block drop in quick inet from any to xxx.xxx.xxx.255 and is not stopping all the noise... > You either do something like this or you filter your logs when viewing > them/running reports to exclude "line noise". small disk, old machine, why keep the noise? ;) -f -- forecast for tonight: dark all night.
Re: openbsd 41 install
i am installing in ipx, created floopy, booted ok into floopy, but got these errors when I selected [I] for install. ERROR: No root partition (sd0a). disklabel: ioctl DIOCGDINFO: Input/output error Is my hdd toast? thanks,
Re: openbsd 41 install
This is a clean install. the probe-scsi shows sd0, so I know that the drive is there. On 10/15/07, Nick Holland <[EMAIL PROTECTED]> wrote: > Mike F wrote: > > i am installing in ipx, created floopy, booted ok into floopy, but got > > these errors when I selected [I] for install. > > > > ERROR: No root partition (sd0a). > > disklabel: ioctl DIOCGDINFO: Input/output error > > > > Is my hdd toast? > > > > thanks, > > Toast, or not there, or not hooked up properly... > > dmesg will tell some... > > Nick.
Re: logs
Re: logs
hey all, is there a similar "logwatch" program as in other linux systems any recommendation? thanks
sftp umask
How does one change the default umask setting for sftp files? TIA, dugg -- ___ Search for products and services at: http://search.mail.com Powered by Outblaze
Re: webmin like for openbsd
PIXMEUP.COM Advertise your website and earn at the same time from it $$ pixelpages by http://www.pixmeup.com/gjavierand best pixel site in the world, Advertise your website and earn an income from it at the same time. Pixmeup.com/pixelpages is now Ranked 1200th most view''d website in the World and is an Internet phenomenon. What we are going to share with you about pixel advertising can change your life forever and is already doing so. We are already the BIGGEST PIXEL site in the world and have more traffic at http://www.pixmeup.com/gjavierthan the top 10 network marketing companies in the world combined--and that includes all the BIG BOYS! When you join http://www.pixmeup.com/gjavier and buy an ad for $25(USD) you will receive two income generating Business Centers in our 3x8 Matrix. You receive a Gold Business Center and a Silver Business Center. You can buy as many $25 blocks of ad space that you want and you will receive a Gold and Silver Business Center for each, or get 5 or 10 adds and why wouldn''t you want to when you could be earning $19,000 on each add, So if you had 4 you could be earning over $76,000 and if yo uhad 8 you could be earnig over $152,000 and if that''s not enough you earn an extra 20% on your personal sponserd downline and if that''s not enough you make an extra 5% on your downlines downline which is crazy Some of the best network marketers in the world have already signed upto pixmeup and if their getting into it then why wouldn''t you wawt too. Your Gold Business Center is placed [top to bottom - left to right] from the top of the structure down starting with the company in the order that people join. It doesn''t matter who refers them or what country they are from, they just keep filling in. Every time a Business Center falls on your 3rd through 8th levels you will get paid. Everyone''s Silver Business Center is placed under your sponsors Silver Business Center. Every time sales take place on your 3rd through 8th levels you''re making money. Filling an entire matrix would make you $9,564.75. Once you have filled an entire Matrix you will be given a new Business Center. Remember you get TWO Business Centers for every $25 ad block, so it''s possible to make $19,129.50 for every $25 spent on advertising. All you have to do now is bring 1 person in and that''s you in the matrix. before Pre-Launch you didn''t have to bring in anyone now it''s just 1 person get yor webiste viewed by over 5 million people and more just imagine the traffic that you could be getting to your site and all the possible sales, Finaly there''s a way for the average joe to get his website view''d by millions daily in every part of the world. So come on in and take a look you wont regreat it. http://www.pixmeup.com/gjavier you''d be crazy not too it''s a win win situation - Original Message - From: "Jeffrey Lim" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Cc: Sent: Saturday, February 04, 2006 9:37 PM Subject: Re: webmin like for openbsd On 1/27/06, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: guys do you have any idea if their's another package like webmin for openbsd? and why would u want to use something like that? what is your comment also about webmin.. is it safe to use? i hate it, it sucks ;) was forced to hack on it for a project years ago - and then i saw how badly the code just sucked, i just wanted to kill the idiotsgenerous guys who would even think of sponsoring a project like that. -jf
Re: httpd question
PIXMEUP.COM Advertise your website and earn at the same time from it $$ pixelpages by http://www.pixmeup.com/gjavierand best pixel site in the world, Advertise your website and earn an income from it at the same time. Pixmeup.com/pixelpages is now Ranked 1200th most view''d website in the World and is an Internet phenomenon. What we are going to share with you about pixel advertising can change your life forever and is already doing so. We are already the BIGGEST PIXEL site in the world and have more traffic at http://www.pixmeup.com/gjavierthan the top 10 network marketing companies in the world combined--and that includes all the BIG BOYS! When you join http://www.pixmeup.com/gjavier and buy an ad for $25(USD) you will receive two income generating Business Centers in our 3x8 Matrix. You receive a Gold Business Center and a Silver Business Center. You can buy as many $25 blocks of ad space that you want and you will receive a Gold and Silver Business Center for each, or get 5 or 10 adds and why wouldn''t you want to when you could be earning $19,000 on each add, So if you had 4 you could be earning over $76,000 and if yo uhad 8 you could be earnig over $152,000 and if that''s not enough you earn an extra 20% on your personal sponserd downline and if that''s not enough you make an extra 5% on your downlines downline which is crazy Some of the best network marketers in the world have already signed upto pixmeup and if their getting into it then why wouldn''t you wawt too. Your Gold Business Center is placed [top to bottom - left to right] from the top of the structure down starting with the company in the order that people join. It doesn''t matter who refers them or what country they are from, they just keep filling in. Every time a Business Center falls on your 3rd through 8th levels you will get paid. Everyone''s Silver Business Center is placed under your sponsors Silver Business Center. Every time sales take place on your 3rd through 8th levels you''re making money. Filling an entire matrix would make you $9,564.75. Once you have filled an entire Matrix you will be given a new Business Center. Remember you get TWO Business Centers for every $25 ad block, so it''s possible to make $19,129.50 for every $25 spent on advertising. All you have to do now is bring 1 person in and that''s you in the matrix. before Pre-Launch you didn''t have to bring in anyone now it''s just 1 person get yor webiste viewed by over 5 million people and more just imagine the traffic that you could be getting to your site and all the possible sales, Finaly there''s a way for the average joe to get his website view''d by millions daily in every part of the world. So come on in and take a look you wont regreat it. http://www.pixmeup.com/gjavier you''d be crazy not too it''s a win win situation - Original Message - From: "Robert C Wittig" <[EMAIL PROTECTED]> To: "Dave Feustel" Sent: Saturday, February 04, 2006 9:04 PM Subject: Re: httpd question Hello Dave, Saturday, February 4, 2006, 11:10:08 AM, you wrote: DF> I am now starting httpd at boot. It reports that it cannot DF> determine the fully qualified domain name and listens to DF> only 127.0.0.1. How can I set the ip address to which httpd DF> listens to the address assigned to me by verizon's dhcp server? If you watch your boot message, right before the login prompt, you will see the assigned IP addy come up, from dhcp. Then, you can add the line: lease {fixed-address the.dhcp.ip.address;} {curly braces, not parentheses} ...to /etc/dhclient.conf and dhcp will always give you the same IP addy, when the lease renews. You can also include the IP and server name, nickname to /etc/hosts and also place the IP in httpd.conf in the 'Listen' directive, the 'BindAddress' directive, or the container, depending on how you configure Apache to run. -wittig http://www.robertwittig.com/ .
Re: unwanted key repeating in X, dmesg
PIXMEUP.COM Advertise your website and earn at the same time from it $$ pixelpages by http://www.pixmeup.com/gjavierand best pixel site in the world, Advertise your website and earn an income from it at the same time. Pixmeup.com/pixelpages is now Ranked 1200th most view''d website in the World and is an Internet phenomenon. What we are going to share with you about pixel advertising can change your life forever and is already doing so. We are already the BIGGEST PIXEL site in the world and have more traffic at http://www.pixmeup.com/gjavierthan the top 10 network marketing companies in the world combined--and that includes all the BIG BOYS! When you join http://www.pixmeup.com/gjavier and buy an ad for $25(USD) you will receive two income generating Business Centers in our 3x8 Matrix. You receive a Gold Business Center and a Silver Business Center. You can buy as many $25 blocks of ad space that you want and you will receive a Gold and Silver Business Center for each, or get 5 or 10 adds and why wouldn''t you want to when you could be earning $19,000 on each add, So if you had 4 you could be earning over $76,000 and if yo uhad 8 you could be earnig over $152,000 and if that''s not enough you earn an extra 20% on your personal sponserd downline and if that''s not enough you make an extra 5% on your downlines downline which is crazy Some of the best network marketers in the world have already signed upto pixmeup and if their getting into it then why wouldn''t you wawt too. Your Gold Business Center is placed [top to bottom - left to right] from the top of the structure down starting with the company in the order that people join. It doesn''t matter who refers them or what country they are from, they just keep filling in. Every time a Business Center falls on your 3rd through 8th levels you will get paid. Everyone''s Silver Business Center is placed under your sponsors Silver Business Center. Every time sales take place on your 3rd through 8th levels you''re making money. Filling an entire matrix would make you $9,564.75. Once you have filled an entire Matrix you will be given a new Business Center. Remember you get TWO Business Centers for every $25 ad block, so it''s possible to make $19,129.50 for every $25 spent on advertising. All you have to do now is bring 1 person in and that''s you in the matrix. before Pre-Launch you didn''t have to bring in anyone now it''s just 1 person get yor webiste viewed by over 5 million people and more just imagine the traffic that you could be getting to your site and all the possible sales, Finaly there''s a way for the average joe to get his website view''d by millions daily in every part of the world. So come on in and take a look you wont regreat it. http://www.pixmeup.com/gjavier you''d be crazy not too it''s a win win situation - Original Message - From: "Jonathan Glaschke" <[EMAIL PROTECTED]> To: Sent: Saturday, February 04, 2006 10:41 PM Subject: Re: unwanted key repeating in X, dmesg OpenBSD 3.8-stable (GENERIC) #1: Sat Jan 7 16:45:00 CET 2006 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC cpu0: AMD Athlon(tm) XP 1800+ ("AuthenticAMD" 686-class, 256KB L2 cache) 1.50 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,F XSR cpu0: AMD Powernow: FID real mem = 502833152 (491048K) avail mem = 451829760 (441240K) using 4278 buffers containing 25243648 bytes (24652K) of memory mainbus0 (root) bios0 at mainbus0: AT/286+(00) BIOS, date 06/19/02, BIOS32 rev. 0 @ 0xfdae0 apm0 at bios0: Power Management spec V1.2 apm0: AC on, no battery apm0: flags 30102 dobusy 0 doidle 1 pcibios0 at bios0: rev 2.1 @ 0xf/0x1 pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xf82d0/144 (7 entries) pcibios0: PCI Interrupt Router at 000:02:0 ("SIS 85C503 System" rev 0x00) pcibios0: PCI bus #1 is the last bus bios0: ROM list: 0xc/0xc000 0xcc000/0xa000 cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 "SIS 740 PCI" rev 0x01 ppb0 at pci0 dev 1 function 0 "SIS 86C201 AGP" rev 0x00 pci1 at ppb0 bus 1 vga1 at pci1 dev 0 function 0 "SIS 650 VGA" rev 0x00: aperture at 0xc000, size 0x40 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) pcib0 at pci0 dev 2 function 0 "SIS 85C503 System" rev 0x10 pciide0 at pci0 dev 2 function 5 "SIS 5513 EIDE" rev 0xd0: 740: DMA, channel 0 wired to compatibility, channel 1 wired to compatibility wd0 at pciide0 channel 0 drive 0: wd0: 16-sector PIO, LBA, 38154MB, 78140160 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2 atapiscsi0 at pciide0 channel 1 drive 0 scsibus0 at atapiscsi0: 2 tar
Re: unwanted key repeating in X
PIXMEUP.COM Advertise your website and earn at the same time from it $$ pixelpages by http://www.pixmeup.com/gjavierand best pixel site in the world, Advertise your website and earn an income from it at the same time. Pixmeup.com/pixelpages is now Ranked 1200th most view''d website in the World and is an Internet phenomenon. What we are going to share with you about pixel advertising can change your life forever and is already doing so. We are already the BIGGEST PIXEL site in the world and have more traffic at http://www.pixmeup.com/gjavierthan the top 10 network marketing companies in the world combined--and that includes all the BIG BOYS! When you join http://www.pixmeup.com/gjavier and buy an ad for $25(USD) you will receive two income generating Business Centers in our 3x8 Matrix. You receive a Gold Business Center and a Silver Business Center. You can buy as many $25 blocks of ad space that you want and you will receive a Gold and Silver Business Center for each, or get 5 or 10 adds and why wouldn''t you want to when you could be earning $19,000 on each add, So if you had 4 you could be earning over $76,000 and if yo uhad 8 you could be earnig over $152,000 and if that''s not enough you earn an extra 20% on your personal sponserd downline and if that''s not enough you make an extra 5% on your downlines downline which is crazy Some of the best network marketers in the world have already signed upto pixmeup and if their getting into it then why wouldn''t you wawt too. Your Gold Business Center is placed [top to bottom - left to right] from the top of the structure down starting with the company in the order that people join. It doesn''t matter who refers them or what country they are from, they just keep filling in. Every time a Business Center falls on your 3rd through 8th levels you will get paid. Everyone''s Silver Business Center is placed under your sponsors Silver Business Center. Every time sales take place on your 3rd through 8th levels you''re making money. Filling an entire matrix would make you $9,564.75. Once you have filled an entire Matrix you will be given a new Business Center. Remember you get TWO Business Centers for every $25 ad block, so it''s possible to make $19,129.50 for every $25 spent on advertising. All you have to do now is bring 1 person in and that''s you in the matrix. before Pre-Launch you didn''t have to bring in anyone now it''s just 1 person get yor webiste viewed by over 5 million people and more just imagine the traffic that you could be getting to your site and all the possible sales, Finaly there''s a way for the average joe to get his website view''d by millions daily in every part of the world. So come on in and take a look you wont regreat it. http://www.pixmeup.com/gjavier you''d be crazy not too it''s a win win situation - Original Message - From: "Jonathan Glaschke" <[EMAIL PROTECTED]> To: Sent: Saturday, February 04, 2006 10:37 PM Subject: unwanted key repeating in X Hello, sometimes when i type a key under x, it gets repeated and repeated and so on. Sometimes i can stop this repeating by pressing the key again. But then there will be another key that gets repeated in the next seconds. If i can not stop it by pressing it again, it will be repeated till i power off my computer manually (i waited 12 houres and i still gets repeated). i can't quit X or something else because the repeated key blocks all other keys. If i manage to stop the key repeating by pressing the key again and leave x, there will be no problem until i start x again. i never saw this behaver when not using x11. i changed my xorg.conf and i already tried to delete it and then use x but the result was the same. I experienced the problem with severeal window manangers, so i don't think that the problem lies there. I dont thing it's a hardware problem because it only occurs in x11. The problem don't seems to be a known issue because i didn't found anything in openbsd's or x11's bug tracking system. Any help would be appreciated, Jonathan -- | /"\ ASCII Ribbon | Jonathan Glaschke - Lorenz-Goertz-Stra_e 71, | \ / Campaign Against | 41238 Moenchengladbach, Germany; | XHTML In Mail | jabber: [EMAIL PROTECTED] | / \ And News | http://jonathan-glaschke.de/ [demime 1.01d removed an attachment of type application/pgp-signature]
Problems installing OpenBSD-4.3 using bsd.rd
Hello I'm currently trying to install OpenBSD-4.3 on my subnotebook (JVC MP-XP3), the problem is that it doesn't have any CD-ROM and/or floppy drive and it isn't capable of booting using PXE nor booting from USB-HDD. (Already checked that) I read in the FAQ that there's a possibility to install OpenBSD from harddisk through bsd.rd, so I downloaded the latest (4.3-RELEASE) bsd.rd, put it on a small separate partition in a directory named /boot, modified the Grub menu and tried to boot that. It didn't work out, here's what I get: panic: /boot too old: upgrade! The operating system has halted. Please press any key to reboot After this I thought that maybe bsd.rd needs some other files which it expects to be usually found in /boot. So I downloaded cd43.iso, extracted its contents to /boot and retried. Still the same problem. Following to that I also tried with install43.iso, same procedure, but the problem remains. The Grub menu entry I used for the 2nd and 3rd try: root (hd0,3) kernel --openbsd=openbsd /boot/4.3/i386/bsd.rd In the FAQ, section 4.11 it says: [0] ... if you have a running older version of OpenBSD, ... Does this probably mean that the install method with bsd.rd is only possible if there's already an OpenBSD system existing on the harddisk? If that's correct, is there any other suitable installation method using a install-image on a harddisk? Currently I don't have any more ideas, beside the following: I could install OpenBSD on an other (totally different) computer using the standard CD-ROM install method, after that I'd copy the hole system to an USB-HDD which in turn I would plug to my subnotebook. There I'd copy the hole system to a temporary partition, download the latest (4.3) bsd.rd again, edit the Grub menu and retry to boot the bsd.rd. I already searched the web for other installing methods suitable for my case and searched further if there's a possibility of directly booting .iso images using Grub but couldn't find anything useful. Suggestions most welcome Thanks, ~fc [0] http://www.openbsd.org/faq/faq4.html#bsd.rd
Re: captivating window manager
--- Pieter Verberne <[EMAIL PROTECTED]> wrote: > I'm working almost only full screen. So DWM is not > -that- usefull for me > actually. > > > I had a look on CWM first cause it was in base, > and finaly I found it > > more attractive. Taste matter. > ( CWM's binary is almost twice the size of DWM:) > 32.0K /usr/bin/dwm > 52.0K /usr/X11R6/bin/cwm > > But I really don't know about libraries and memory > usage etc. ) > > What I need is a GNU-Screen-like > graphical-window-manager. Smaller than > DWM and have a permissive license. Do you know 'ratpoison' [0]? It's not under a permissive license nor smaller than dwm, but it's GNU-Screen-like. If you plan to develop a window manager which is GNU-Screen-like, smaller than dwm and under a permissive license, then drop me line as I'd be really interested. [0] http://www.nongnu.org/ratpoison/
Get rid of windows limit in 'window'?
I just discovered 'window' in base, a very usefull tool! I was used to install 'screen' to get a terminal multiplexer but as I found 'window' which gives me multiplexing without 'screen's' bloat and restrictive license. Just two questions: Is there an example.windowrc available somewhere or would someone be so kind a send me his own customized one? I already searched the web on this but couldn't find much. Is there a way to go beyond the limit of 9 windows beside executing 'window' in 'window'? Suggestions welcome
[Error code 1] Compiling -STABLE fails
I'm currently trying to follow the -STABLE branch, so I followed all the instructions found in ttp://openbsd.org/stable.html until building the kernel with 'make clean && make depend && make'. This is what I get: #: make clean && make depend && make rm -f eddep *bsd bsd.gdb tags *.[io] [a-z]*.s [Ee]rrs linterrs makelinks assym.h rm -f param.c cp /usr/src/sys/arch/i386/compile/GENERIC/../../../../conf/param.c cp: ./param.c: Permission denied *** Error code 1 Stop in /usr/src/sys/arch/i386/compile/GENERIC (line 812 of Makefile). #: I use OpenBSD-4.3, GENERIC Kernel and also tried fetching the tree from different anoncvs servers ([EMAIL PROTECTED]:/cvs, [EMAIL PROTECTED]:/cvs, [EMAIL PROTECTED]:/cvs) Suggestions welcome
[Perl/locales] Warning about locales
I get the following when I (as root and standard user) execute pkg_info, pkg_add or pkg_delete with Xorg on: # pkg_info perl: warning: Setting locale failed. perl: warning: Please check that your locale settings: LC_ALL = (unset) LC_CTYPE = "en_US.UTF-8", LANG = (unset) are supported and installed on your system. perl: warning: Falling back to standard locale ("C"). If I do this directly in a ttyCx when Xorg is off, I don't get any error messages. The point is that, I didn't changed anything related locales and I couldn't find any config files where these locales are specified. So I'm wondering why this problem appears if I didn't change anything. (Obviously I must've changend something without seeing it, but what and where?) If I manually set/export LC_ALL and LANG as C, Perl stops complaining. How can I fix this problem? I'm using OpenBSD-4.3, GENERIC Kernel and pdksh.
Re: [Perl/locales] Warning about locales
--- Pieter Verberne <[EMAIL PROTECTED]> wrote: > On Sun, Jun 15, 2008 at 07:20:32AM -0700, F. Caulier > wrote: > > I get the following when I (as root and standard > user) > > execute pkg_info, pkg_add or pkg_delete with Xorg > on: > > > > # pkg_info > > perl: warning: Setting locale failed. > > perl: warning: Please check that your locale > settings: > >LC_ALL = (unset) > >LC_CTYPE = "en_US.UTF-8", > >LANG = (unset) > > are supported and installed on your > system. > > perl: warning: Falling back to standard locale > ("C"). > > I had the same problem. See > http://perldoc.perl.org/perllocale.html . > But I havn't used that site for my solution. I found > a workaround: > > # ln -s /usr/share/locale/en_GB.ISO8859-1 > /usr/share/locale/en_US.UTF-8 > > > The point is that, I didn't changed anything > related > > locales and I couldn't find any config files where > > these locales are specified. So I'm wondering why > this > > problem appears if I didn't change anything. > Me too. > > Pieter Verberne Thanks for your fast reply. I tried to figure out why this problem occurs and following to that I noticed that this perllocale warning only comes up when dropping a pkg_* directly in xterm. When using screen in an xterm and dropping pkg_* to it everything will work fine. Same for tty shells without X where everything works fine too. I don't know much about this terminal stuff, but if everything beside XTerm works fine, could it be that XTerm itself and not the locales are the problems' source? Maybe XTerm doesn't manage to pass on the locales correctly? Some questions: - Is this bug a dangerous one or can I ignore it safely? - Is this a bug related to XTerm? - Should I set the LC_TYPE and LANG variables in /etc/login.conf? (Is this a clean solution?) - If I want to get the OpenBSD's default locale (is this C/POSIX or another one?) back what file should I link to whom? (Following Pieter's workaround) - What about copying a CL_TYPE file from [0] in to the concerned directory which is listed by perl? [0] http://www.openbsd.org/cgi-bin/cvsweb/src/share/locale/ctype/?only_with_tag=OPENBSD_4_3_BASE
Re: [Perl/locales] Warning about locales
--- Philip Guenther <[EMAIL PROTECTED]> wrote: > pOn Sun, Jun 15, 2008 at 12:46 PM, F. Caulier > <[EMAIL PROTECTED]> wrote: > > --- Pieter Verberne <[EMAIL PROTECTED]> > wrote: > > > >> On Sun, Jun 15, 2008 at 07:20:32AM -0700, F. > Caulier > >> wrote: > >> > I get the following when I (as root and > standard user) > >> > execute pkg_info, pkg_add or pkg_delete with > Xorg on: > >> > > >> > # pkg_info > >> > perl: warning: Setting locale failed. > >> > perl: warning: Please check that your locale > settings: > >> >LC_ALL = (unset) > >> >LC_CTYPE = "en_US.UTF-8", > >> >LANG = (unset) > >> > are supported and installed on your > system. > >> > perl: warning: Falling back to standard locale > ("C"). > > So something has set LC_CTYPE to en_US.UTF-8, a > locale which is not > supported by OpenBSD, which results in the > setlocale() call failing, > something perl complains about so that you don't > blame perl when you > get broken results. > > > ... > >> I found a workaround: > >> > >> # ln -s /usr/share/locale/en_GB.ISO8859-1 > >> /usr/share/locale/en_US.UTF-8 > > That seems like a really bad idea to me. UTF-8 and > ISO8859-1 are > fundamentally different: UTF-8 uses variable-length > characters while > ISO8859-* uses fixed-width (8bit) characters. > Giving the locale calls > the same data for those two is likely to result in > incorrect behavior > for all characters >127. Wouldn't it be better to > simply not lie and > just set the locale to en_US.ISO8859-1? > > > >> > The point is that, I didn't changed anything > related > >> > locales and I couldn't find any config files > where > >> > these locales are specified. So I'm wondering > why this > >> > problem appears if I didn't change anything. > > Well, have you examined all the programs involved in > getting to that > shell inside xterm to see if any of them document > that they alter the > environment? For example, if you use 'uxterm' > instead of 'xterm' then > you'll see exactly the above behavior, as uxterm is > just a script that > sets LC_CTYPE=en_US.UTF-8 and then invokes xterm > with the -en option. > > If nothing obvious sticks out, consider debugging > further by checking > the environment seen by your .xsession (if you xdm) > by adding a line > like this: > env > $HOME/.xsession-env.out > > to it. Similarly, check the shell's environment by > doing something > similar from your .profile. > > > > I tried to figure out why this problem occurs and > > following to that I noticed that this perllocale > > warning only comes up when dropping a pkg_* > directly > > in xterm. When using screen in an xterm and > dropping > > pkg_* to it everything will work fine. Same for > tty > > shells without X where everything works fine too. > > Windows inside screen inherit their environment from > the original > screen process. So, how do you start the initial > (daemon) screen > process? From outside X, before running xinitrc? > From your .xinitrc > or .xsession? From an xterm? > > > > I don't know much about this terminal stuff, but > if > > everything beside XTerm works fine, could it be > that > > XTerm itself and not the locales are the problems' > > source? Maybe XTerm doesn't manage to pass on the > > locales correctly? > > Something is setting LC_CTYPE to an unsupported > value. That's the > program that needs to be fixed. > > > > Some questions: > > - Is this bug a dangerous one or can I ignore it > safely? > > perl complains about it because you may get bogus > results from various > operations. That doesn't sound ignorable to me. > > > > - Is this a bug related to XTerm? > > Insufficient data. > > > > - Should I set the LC_TYPE and LANG variables in > > /etc/login.conf? (Is this a clean solution?) > > Why do you think that would solve the problem? > > > > - If I want to get the OpenBSD's default locale > (is > > this C/POSIX or another one?) back what file > should I > > link to whom? (Following Pieter's workaround) > > Why would you do that instead of simply not setting > LC_CTYPE? > > > > - What about copying a CL_TYPE file from [0] in to > t
Hardware to donate: Ubiquiti routerstation
Hi, I've a Ubiquiti routerstation to donate, if anybody is interested in porting to that. I was going to sell this on ebay, but I figure this is a better cause. The manufacturer's page is pretty useless: http://wiki.ubnt.com/RouterStation FreeBSD has been ported to this already: https://wiki.freebsd.org/FreeBSD/mips/UBNT-RouterStation It weighs nothing, so I'll post it wherever, if you want it. In fact, if anybody is interested in porting to this, I'll probably happily buy you the routerstation "pro" board, too (which FreeBSD also supports). Please CC me, as I'm not subscribed. Thanks, -- Kate
5.2 > 5.3 mouse issues
I just upgraded from 5.2-release to 5.3-release and notice the following issues with touchpad mouse control. 1) using left-click then drag to hilight then copy text no longer works; happens in term window or gui app (ie: firefox). 2) When using google maps in firefox; the mouse pointer takes about 2-3 seconds to convert from pointer to grab/drag to move map within window. 3) Another website I use has an interface to maps; left-click mouse never converts from pointer to grab/drag mode. I don't know how I can copy/paste my dmesg into this email; so its available here: http://www.gallery.bax.on.ca/dmesg53.txt
Re: 5.2 > 5.3 mouse issues
On Tue, Jun 4, 2013 at 1:19 PM, F Bax wrote: > I just upgraded from 5.2-release to 5.3-release and notice the following > issues with touchpad mouse control. > 1) using left-click then drag to hilight then copy text no longer works; > happens in term window or gui app (ie: firefox). > 2) When using google maps in firefox; the mouse pointer takes about 2-3 > seconds to convert from pointer to grab/drag to move map within window. > 3) Another website I use has an interface to maps; left-click mouse never > converts from pointer to grab/drag mode. > After further testing; I find that all three issues are in fact a single problem. When I left-click, I must wait 3 seconds before taking any of the previously mentioned drag actions (either to hilight text or to scroll maps). I also found that the same issue arises when trying to move or resize a window. Can someone please point me to the correct file that allows me to tinker with settings that will "fix" this behaviour? dmesg follows OpenBSD 5.3 (GENERIC.MP) #62: Tue Mar 12 18:21:20 MDT 2013 dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP real mem = 3218931712 (3069MB) avail mem = 3110813696 (2966MB) mainbus0 at root bios0 at mainbus0: SMBIOS rev. 2.4 @ 0xe0010 (68 entries) bios0: vendor LENOVO version "7IET30WW (1.11 )" date 07/13/2007 bios0: LENOVO 8744J2U acpi0 at bios0: rev 2 acpi0: sleep states S0 S3 S4 S5 acpi0: tables DSDT FACP SSDT ECDT TCPA APIC MCFG HPET SLIC BOOT SSDT SSDT SSDT S SDT acpi0: wakeup devices LID_(S3) SLPB(S3) LURT(S3) DURT(S3) EXP0(S4) EXP1(S4) EXP2 (S4) EXP3(S4) PCI1(S4) USB0(S3) USB1(S3) USB2(S3) USB7(S3) HDEF(S4) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpiec0 at acpi0 acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: Intel(R) Core(TM)2 CPU T7200 @ 2.00GHz, 1994.62 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CF LUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,DTES64,MWAIT,DS-CPL,VMX,EST,TM 2,SSSE3,CX16,xTPR,PDCM,LONG,LAHF,PERF cpu0: 4MB 64b/line 16-way L2 cache cpu0: apic clock running at 166MHz cpu1 at mainbus0: apid 1 (application processor) cpu1: Intel(R) Core(TM)2 CPU T7200 @ 2.00GHz, 1994.34 MHz cpu1: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CF LUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,DTES64,MWAIT,DS-CPL,VMX,EST,TM 2,SSSE3,CX16,xTPR,PDCM,LONG,LAHF,PERF cpu1: 4MB 64b/line 16-way L2 cache ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins ioapic0: misconfigured as apic 2, remapped to apid 1 acpimcfg0 at acpi0 addr 0xf000, bus 0-63 acpihpet0 at acpi0: 14318179 Hz acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 1 (AGP_) acpiprt2 at acpi0: bus 2 (EXP0) acpiprt3 at acpi0: bus 3 (EXP1) acpiprt4 at acpi0: bus 4 (EXP2) acpiprt5 at acpi0: bus 12 (EXP3) acpiprt6 at acpi0: bus 21 (PCI1) acpicpu0 at acpi0: C3, C2, C1, PSS acpicpu1 at acpi0: C3, C2, C1, PSS acpipwrres0 at acpi0: PUBS acpitz0 at acpi0: critical temperature is 127 degC acpitz1 at acpi0: critical temperature is 100 degC acpibtn0 at acpi0: LID_ acpibtn1 at acpi0: SLPB acpibat0 at acpi0: BAT0 model "92P1133" serial 4562 type LION oem "Panasonic" acpibat1 at acpi0: BAT1 not present acpiac0 at acpi0: AC unit online acpithinkpad0 at acpi0 acpidock0 at acpi0: GDCK not docked (0) cpu0: Enhanced SpeedStep 1994 MHz: speeds: 2000, 1667, 1333, 1000 MHz pci0 at mainbus0 bus 0 pchb0 at pci0 dev 0 function 0 "Intel 82945GM Host" rev 0x03 ppb0 at pci0 dev 1 function 0 "Intel 82945GM PCIE" rev 0x03: msi pci1 at ppb0 bus 1 vga1 at pci1 dev 0 function 0 "ATI Mobility FireGL V5250" rev 0x00 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) radeondrm0 at vga1: apic 1 int 16 drm0 at radeondrm0 azalia0 at pci0 dev 27 function 0 "Intel 82801GB HD Audio" rev 0x02: msi azalia0: codecs: Analog Devices AD1981HD, Conexant/0x2bfa, using Analog Devices AD1981HD audio0 at azalia0 ppb1 at pci0 dev 28 function 0 "Intel 82801GB PCIE" rev 0x02: msi pci2 at ppb1 bus 2 em0 at pci2 dev 0 function 0 "Intel PRO/1000MT (82573L)" rev 0x00: msi, address 00:1a:6b:6b:20:6c ppb2 at pci0 dev 28 function 1 "Intel 82801GB PCIE" rev 0x02: msi pci3 at ppb2 bus 3 wpi0 at pci3 dev 0 function 0 "Intel PRO/Wireless 3945ABG" rev 0x02: msi, MoW1, address 00:1b:77:8d:23:55 ppb3 at pci0 dev 28 function 2 "Intel 82801GB PCIE" rev 0x02: msi pci4 at ppb3 bus 4 ppb4 at pci0 dev 28 function 3 "Intel 82801GB PCIE" rev 0x02: msi pci5 at ppb4 bus 12 uhci0 at pci0 dev 29 function 0 "Intel 82801GB USB" rev 0x02: apic 1 int 16 uhci1 at pci0 dev 29 function 1 "Intel 82801GB USB" rev 0x02: apic 1 int 17 uhci2 at pci0 dev 29 function 2 "Intel 82801GB USB" rev 0x02: apic 1 int 18 uhci3 at pci0 dev 29 function 3 &quo
spamd whitelist
In this archived message; Peter explains here how to get ip address for various gmail servers - which can then be added to whitelist... http://marc.info/?l=openbsd-misc&m=136449396910976&w=2 When I try this process for yahoo.com; I get $ host -ttxt yahoo.com yahoo.com descriptive text "v=spf1 redirect=_spf.mail.yahoo.com" $ host -ttxt _spf.mail.yahoo.com _spf.mail.yahoo.com descriptive text "v=spf1 ptr:yahoo.com ptr:yahoo.net ?all" What should I do with "ptr" info?
Re: spamd whitelist
Thanks for the suggestion. I whitelisted the ip addresses for mta[567]. am0.yahoodns.net ; but email from yahoo still gets bounced. Is there an easy way to find all the other sources at yahoo? The message bounced back to yahoo contains... Received: from [66.196.81.173] by nm34.bullet.mail.bf1.yahoo.com with NNFMP; 24 Feb 2015 00:55:04 - Received: from [98.139.212.250] by tm19.bullet.mail.bf1.yahoo.com with NNFMP; 24 Feb 2015 00:55:04 - Received: from [127.0.0.1] by omp1059.mail.bf1.yahoo.com with NNFMP; 24 Feb 2015 00:54:41 - On Sat, Feb 21, 2015 at 9:09 PM, Edgar Pettijohn wrote: > On 02/21/15 18:29, Martin Brandenburg wrote: > >> Edgar Pettijohn wrote: >> >>> On 02/21/15 18:09, trondd wrote: >>> On 2015-02-21 18:57, Martin Brandenburg wrote: > That doesn't mean you can't find the information somewhere else. > > I just did this for gmail by simply sending a couple emails, letting gmail retry for a couple hours and grabbing the IPs out of spamdb. Tim. $ host yahoo.com >>> yahoo.com has address 98.138.253.109 >>> yahoo.com has address 98.139.183.24 >>> yahoo.com has address 206.190.36.45 >>> yahoo.com mail is handled by 1 mta5.am0.yahoodns.net. >>> yahoo.com mail is handled by 1 mta6.am0.yahoodns.net. >>> yahoo.com mail is handled by 1 mta7.am0.yahoodns.net. >>> >>> $ nslookup mta5.am0.yahoodns.net >>> Server: 192.168.1.1 >>> Address:192.168.1.1#53 >>> >>> Non-authoritative answer: >>> Name: mta5.am0.yahoodns.net >>> Address: 66.196.118.34 >>> Name: mta5.am0.yahoodns.net >>> Address: 66.196.118.36 >>> Name: mta5.am0.yahoodns.net >>> Address: 98.136.216.25 >>> Name: mta5.am0.yahoodns.net >>> Address: 66.196.118.35 >>> Name: mta5.am0.yahoodns.net >>> Address: 98.136.216.26 >>> Name: mta5.am0.yahoodns.net >>> Address: 98.138.112.35 >>> Name: mta5.am0.yahoodns.net >>> Address: 98.138.112.32 >>> Name: mta5.am0.yahoodns.net >>> Address: 98.138.112.37 >>> >>> so on and so forth for the following mta's. add the ip's to your >>> whitelist and it should be good to go. >>> >>> >>> Just because you send mail to Yahoo through those IPs doesn't mean they >> send mail to you from those IPs. It's not unheard of for incoming and >> outgoing mail to go through different servers once you get to a certain >> size. >> >> (It may well be that they do go through the same servers. A lot of this >> is guesswork anyway without information direct from the source.) >> >> -- Martin >> >> I agree its possible, but its a good place to start. > > $ dig yahoo.com mx > > ; <<>> DiG 9.4.2-P2 <<>> yahoo.com mx > ;; global options: printcmd > ;; Got answer: > ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 24018 > ;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 0 > > ;; QUESTION SECTION: > ;yahoo.com. IN MX > > ;; ANSWER SECTION: > yahoo.com. 1000IN MX 1 mta7.am0.yahoodns.net. > yahoo.com. 1000IN MX 1 mta5.am0.yahoodns.net. > yahoo.com. 1000IN MX 1 mta6.am0.yahoodns.net. > > no need to cc me i'm on the list
Suddenly Trojta mail application on my computer can't sent e-mail.
question regarding rc.d multi daemon tool and synmlink
Dear reader, according to the rc.d man: -- daemon_class is a special read-only variable. It is set to "daemon" unless there is a login class configured in login.conf(5) with the same name as the rc.d script itself, in which case it will be set to that login class. This allows setting many initial process properties, for example environment variables, scheduling priority, and process limits such as maximum memory use and number of files. -- If the demon requires a specific class, like lets say `unbound`, but it s launched through a symlink `unbound_jail -> unbound`, the class will not be used and login.conf *must* declare `unbound_jail` ? In other words, Is there a way to, without rewriting rc_exec, use a specific class for all 'instances' created through a symlink of the rc.d/script directory. So all other unbound daemon actually do `su -c unbound` and not `su -c unbound_secondary` Best,
Why is disk full?
I copied all files from /mnt/wd1l to /mnt/wd2l wd2l is slightly larger than wd1l; yet wd2l is full! $ df -h /mnt/wd1l /mnt/wd2l Filesystem Size Used Avail Capacity Mounted on /dev/wd1l 1020G 952G 16.5G 98% /mnt/wd1l /dev/wd2l 1020G 969G -508M 100% /mnt/wd2l Output from disklabel is almost identical: type: SCSI disk: SCSI disk label: WDC WD2000FYYZ-0 flags: bytes/sector: 512 sectors/track: 63 tracks/cylinder: 255 sectors/cylinder: 16065 cylinders: 243201 total sectors: 3907029168 rpm: 0 interleave: 1 trackskew: 0 cylinderskew: 0 headswitch: 0 # microseconds track-to-track seek: 3907029168 # microseconds drivedata: 0 Difference between wd1 and wd2: wd1: interleave: 0 wd2: interleave: 1 Partition details (A added 'wd1/wd2' to beginning of line: # size offset fstype [fsize bsize cpg] wd1l: 2147472640 525486208 4.2BSD 8192 65536 1 wd2l: 2147483647 63 4.2BSD 8192 65536 1 Why is wd2l full?
Re: Why is disk full?
I used rsync to copy files. sudo rsync -anv --delete /mnt/wd1l/ /mnt/wd2l/ reports no changes required (runtime under 3 minutes). sudo diff -r /mnt/wd1l/ /mnt/wd2l/ reports no difference (runtime 10 hours) $ sudo df -i /mnt/wd1l/ /mnt/wd2l/ Filesystem 512-blocks Used Avail Capacity iused ifree %iused Mounted on /dev/wd1l 2138940784 1997329632 3466412898% 483707 33313411 1% /mnt/wd1l /dev/wd2l 2138951776 2033043696 -1039504 100% 483707 33313411 1% /mnt/wd2l On Tue, Mar 29, 2022 at 10:49 AM F Bax wrote: > I used rsync to copy files. df -i reports 483707 inodes used for both > partitions. > sudo rsync -anv --delete /mnt/wd1l/ /mnt/wd2l/ > reports no changes required (runtime under 3 minutes). > sudo diff -r /mnt/wd1l/ /mnt/wd2l/ > reports no difference (runtime 10 hours) > > On Tue, Mar 29, 2022 at 10:39 AM Otto Moerbeek wrote: > >> On Tue, Mar 29, 2022 at 10:25:34AM -0400, F Bax wrote: >> >> > I copied all files from /mnt/wd1l to /mnt/wd2l >> > >> > wd2l is slightly larger than wd1l; yet wd2l is full! >> > >> > $ df -h /mnt/wd1l /mnt/wd2l >> > Filesystem Size Used Avail Capacity Mounted on >> > /dev/wd1l 1020G 952G 16.5G 98% /mnt/wd1l >> > /dev/wd2l 1020G 969G -508M 100% /mnt/wd2l >> >> How did you copy? Some forms of copy will cause hardlinked files to be >> separate files on the destination. df -i will tell how many inodes you >> have used. If wd2l has more inodes in use, I bet it's that. >> >> -Otto >> >> > >> > Output from disklabel is almost identical: >> > >> > type: SCSI >> > disk: SCSI disk >> > label: WDC WD2000FYYZ-0 >> > flags: >> > bytes/sector: 512 >> > sectors/track: 63 >> > tracks/cylinder: 255 >> > sectors/cylinder: 16065 >> > cylinders: 243201 >> > total sectors: 3907029168 >> > rpm: 0 >> > interleave: 1 >> > trackskew: 0 >> > cylinderskew: 0 >> > headswitch: 0 # microseconds >> > track-to-track seek: 3907029168 # microseconds >> > drivedata: 0 >> > >> > Difference between wd1 and wd2: >> > wd1: interleave: 0 >> > wd2: interleave: 1 >> > >> > Partition details (A added 'wd1/wd2' to beginning of line: >> > # size offset fstype [fsize bsize cpg] >> > wd1l: 2147472640 525486208 4.2BSD 8192 65536 1 >> > wd2l: 2147483647 63 4.2BSD 8192 65536 1 >> > >> > Why is wd2l full? >> >
Re: Why is disk full?
# dumpfs /dev/rwd1l | head -1 magic 11954 (FFS1)timeWed Jan 8 19:45:37 2020 # dumpfs /dev/rwd2l | head -1 magic 11954 (FFS1)timeSun Mar 27 13:01:58 2022 On Tue, Mar 29, 2022 at 11:07 AM Otto Moerbeek wrote: > On Tue, Mar 29, 2022 at 10:58:49AM -0400, F Bax wrote: > > > I used rsync to copy files. > > sudo rsync -anv --delete /mnt/wd1l/ /mnt/wd2l/ > > reports no changes required (runtime under 3 minutes). > > sudo diff -r /mnt/wd1l/ /mnt/wd2l/ > > reports no difference (runtime 10 hours) > > > > $ sudo df -i /mnt/wd1l/ /mnt/wd2l/ > > Filesystem 512-blocks Used Avail Capacity iused ifree %iused > > Mounted on > > /dev/wd1l 2138940784 1997329632 3466412898% 483707 33313411 > 1% > > /mnt/wd1l > > /dev/wd2l 2138951776 2033043696 -1039504 100% 483707 33313411 > 1% > > /mnt/wd2l > > Ok, then it could be an FFS1 vs FFS2 thing. FFS2 has a larger > meta-data overhead due to its larger inodes. > > Check > > # dumpfs /dev/rwd1l | head -1 > # dumpfs /dev/rwd2l | head -1 > > -Otto > > > > > On Tue, Mar 29, 2022 at 10:49 AM F Bax wrote: > > > > > I used rsync to copy files. df -i reports 483707 inodes used for both > > > partitions. > > > sudo rsync -anv --delete /mnt/wd1l/ /mnt/wd2l/ > > > reports no changes required (runtime under 3 minutes). > > > sudo diff -r /mnt/wd1l/ /mnt/wd2l/ > > > reports no difference (runtime 10 hours) > > > > > > On Tue, Mar 29, 2022 at 10:39 AM Otto Moerbeek wrote: > > > > > >> On Tue, Mar 29, 2022 at 10:25:34AM -0400, F Bax wrote: > > >> > > >> > I copied all files from /mnt/wd1l to /mnt/wd2l > > >> > > > >> > wd2l is slightly larger than wd1l; yet wd2l is full! > > >> > > > >> > $ df -h /mnt/wd1l /mnt/wd2l > > >> > Filesystem Size Used Avail Capacity Mounted on > > >> > /dev/wd1l 1020G 952G 16.5G 98% /mnt/wd1l > > >> > /dev/wd2l 1020G 969G -508M 100% /mnt/wd2l > > >> > > >> How did you copy? Some forms of copy will cause hardlinked files to be > > >> separate files on the destination. df -i will tell how many inodes you > > >> have used. If wd2l has more inodes in use, I bet it's that. > > >> > > >> -Otto > > >> > > >> > > > >> > Output from disklabel is almost identical: > > >> > > > >> > type: SCSI > > >> > disk: SCSI disk > > >> > label: WDC WD2000FYYZ-0 > > >> > flags: > > >> > bytes/sector: 512 > > >> > sectors/track: 63 > > >> > tracks/cylinder: 255 > > >> > sectors/cylinder: 16065 > > >> > cylinders: 243201 > > >> > total sectors: 3907029168 > > >> > rpm: 0 > > >> > interleave: 1 > > >> > trackskew: 0 > > >> > cylinderskew: 0 > > >> > headswitch: 0 # microseconds > > >> > track-to-track seek: 3907029168 # microseconds > > >> > drivedata: 0 > > >> > > > >> > Difference between wd1 and wd2: > > >> > wd1: interleave: 0 > > >> > wd2: interleave: 1 > > >> > > > >> > Partition details (A added 'wd1/wd2' to beginning of line: > > >> > # size offset fstype [fsize bsize cpg] > > >> > wd1l: 2147472640 525486208 4.2BSD 8192 65536 1 > > >> > wd2l: 2147483647 63 4.2BSD 8192 65536 1 > > >> > > > >> > Why is wd2l full? > > >> > > > >
Re: Why is disk full?
Looks like sparse files are no longer sparse on /mnt/wd2l/ !! Thanks Otto & Aner. du reported different sizes for several dozen folders that contain files created by scan to PDF. Not all of the scanned files were affected; but some might contain mostly blank pages. For one sample file; ls -l reports -rw-rw 1 fbax fbax 6683710 Oct 21 2019 du reports 13056 /mnt/wd1/ ... 13184 /mnt/wd2l/ ... rsync -anvS does NOT report these files! Is there an easy way to make these files to be sparse on wd2l? On Tue, Mar 29, 2022 at 11:32 AM Aner Perez wrote: > You may have large files with "holes" in them (i.e. sparse files). Rsync > has a --sparse > (-S) flag that tries to create holes in the replicated files when it finds > sequences of > nulls in the source file. > > The -a flag does not turn on this sparse file handling. > > You can run "du" on different directories to narrow down where the file > size difference is > coming from. > > - Aner > > On 3/29/22 10:58, F Bax wrote: > > I used rsync to copy files. > > sudo rsync -anv --delete /mnt/wd1l/ /mnt/wd2l/ > > reports no changes required (runtime under 3 minutes). > > sudo diff -r /mnt/wd1l/ /mnt/wd2l/ > > reports no difference (runtime 10 hours) > > > > $ sudo df -i /mnt/wd1l/ /mnt/wd2l/ > > Filesystem 512-blocks Used Avail Capacity iused ifree %iused > > Mounted on > > /dev/wd1l 2138940784 1997329632 3466412898% 483707 33313411 > 1% > >/mnt/wd1l > > /dev/wd2l 2138951776 2033043696 -1039504 100% 483707 33313411 > 1% > >/mnt/wd2l > > > > On Tue, Mar 29, 2022 at 10:49 AM F Bax wrote: > > > >> I used rsync to copy files. df -i reports 483707 inodes used for both > >> partitions. > >> sudo rsync -anv --delete /mnt/wd1l/ /mnt/wd2l/ > >> reports no changes required (runtime under 3 minutes). > >> sudo diff -r /mnt/wd1l/ /mnt/wd2l/ > >> reports no difference (runtime 10 hours) > >> > >> On Tue, Mar 29, 2022 at 10:39 AM Otto Moerbeek wrote: > >> > >>> On Tue, Mar 29, 2022 at 10:25:34AM -0400, F Bax wrote: > >>> > >>>> I copied all files from /mnt/wd1l to /mnt/wd2l > >>>> > >>>> wd2l is slightly larger than wd1l; yet wd2l is full! > >>>> > >>>> $ df -h /mnt/wd1l /mnt/wd2l > >>>> Filesystem Size Used Avail Capacity Mounted on > >>>> /dev/wd1l 1020G 952G 16.5G 98% /mnt/wd1l > >>>> /dev/wd2l 1020G 969G -508M 100% /mnt/wd2l > >>> How did you copy? Some forms of copy will cause hardlinked files to be > >>> separate files on the destination. df -i will tell how many inodes you > >>> have used. If wd2l has more inodes in use, I bet it's that. > >>> > >>> -Otto > >>> > >>>> Output from disklabel is almost identical: > >>>> > >>>> type: SCSI > >>>> disk: SCSI disk > >>>> label: WDC WD2000FYYZ-0 > >>>> flags: > >>>> bytes/sector: 512 > >>>> sectors/track: 63 > >>>> tracks/cylinder: 255 > >>>> sectors/cylinder: 16065 > >>>> cylinders: 243201 > >>>> total sectors: 3907029168 > >>>> rpm: 0 > >>>> interleave: 1 > >>>> trackskew: 0 > >>>> cylinderskew: 0 > >>>> headswitch: 0 # microseconds > >>>> track-to-track seek: 3907029168 # microseconds > >>>> drivedata: 0 > >>>> > >>>> Difference between wd1 and wd2: > >>>> wd1: interleave: 0 > >>>> wd2: interleave: 1 > >>>> > >>>> Partition details (A added 'wd1/wd2' to beginning of line: > >>>> # size offset fstype [fsize bsize cpg] > >>>> wd1l: 2147472640 525486208 4.2BSD 8192 65536 1 > >>>> wd2l: 2147483647 63 4.2BSD 8192 65536 1 > >>>> > >>>> Why is wd2l full? > >
hostnames in syslogd
Dear readers, After modifying the hostname as device.project with `hostname device.project` and in /etc/myname and starting a syslogd debug instance with -h , i see the hostname logged is only 'device' not 'device.project' This could be a feature, as a hostname is not a FQDN but it looks inconsistent with hostname displaying device.project and the log using only the first part. Would a diff to syslogd; logging the name found in the configuration or (kern.hostname) instead of a modified one be a bug breaking some auto configuration with DHCP or a feature ? Moreover just like -h send the hostname , in a SSL setup it would be useful to log the CN of the client certificat , with -i maybe, since it is a strong ID sorting logs with that feels more reliable than ip, or modified hostnames. I may miss some important legacy behavior but a `-i` option that logs the CN after the hostname in a similar manner looks non breaking and useful. Thanks for reading, I Look forward to having opinions on that. -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
First time using filter-dkimsign with smtpd
Hello, I run openSMTPD on openbsd7.1, i was about to send this to openSMTP mailing list, but i think it s openbsd/chroot/static sendmail related I just found out about `filter-dkimsign` , follow up on the man and installation instructions . and have the filter running : `_dkimsig 61499 0.0 0.0 704 3288 ?? Ip 6:39PM 0:00.03 /usr/local/libexec/smtpd/filter-dkimsign -d http://example.com -s mydkim -k /etc/mail/dkim/private.rsa.key` my /etc/mail/dkim/private.rsa.key is mode 0440 and owned by _dkimsig and only apply on the localhost `listen on lo0 filter dkimsign_rsa` When the php fpm thingy calls mail ... ` Jun 1 18:45:15 php-fpm-8.1[80816]: mail() on [/example.com/wp-includes/PHPMailer/PHPMailer.php:877]: To: l...@gmail.com -- Headers: Date: Wed, 1 Jun 2022 16:45:15 + ` it just gets stuck forever. I cannot find any log error, my clueless guess is the sendmail call is stuck on a read and the filter somewhat broke the stdout ? looking for actual clues Also the server WAS sending email without the filter. and using sendmail from the fpm user (did) work(s) Another guess: would this be the behavior if a header is not found ? Maybe it was DNS ? ( /etc/hosts ) So after poking around and adding -v to the php sendmail i figure out i broke the chrooted sendmail, because is create a $chroot/etc/hosts file I now unit test the problem like that (i did add ksh to the chroot): # chroot -g merci -u merci /var/www /bin/sh -c 'echo HELLO | /usr/sbin/sendmail -t -v -v -4 -f no-re...@example.com. -F TEST3 -i sven.falem...@gmail.com' Jun 1 21:02:58 merci smtpd[77228]: 1658fe91a067cec2 smtp connected address=127.0.0.1 host=localhost <<< 220 example.com. ESMTP OpenSMTPD >>> EHLO example.com. Jun 1 21:02:58 merci smtpd[77228]: 1658fe91a067cec2 smtp failed-command command="EHLO example.com." result="501 5.5.4 Invalid command arguments: Invalid domain name" <<< 501 5.5.4 Invalid command arguments: Invalid domain name >>> HELO example.com. <<< 501 5.5.4 Invalid command arguments: Invalid domain name Jun 1 21:02:58 merci smtpd[77228]: 1658fe91a067cec2 smtp failed-command command="HELO example.com." result="501 5.5.4 Invalid command arguments: Invalid domain name" sendmail: remote host refuses our greeting Jun 1 21:02:58 merci smtpd[77228]: 1658fe91a067cec2 smtp disconnected reason=disconnect 'fun' fact i cannot get it to work again the host file: 127.0.0.1 localhost example.com. ::1 localhost and in despair i tried # match from local for any action "outbound" match from any for any action "outbound" Note: example.com. is a placeholder, and resolved from any public dns, i used reboot a few times. I do not understand why deleting /var/www/etc/hosts does not go back to previous behavior nor why smtpd refuses EHLO example.com. Thanks for reading that far, Please help Best
Re: First time using filter-dkimsign with smtpd
On Wed, Jun 1, 2022 at 3:13 PM Sven F. wrote: > > Hello, > > I run openSMTPD on openbsd7.1, i was about to send this to openSMTP > mailing list, but i think it s openbsd/chroot/static sendmail related > > I just found out about `filter-dkimsign` , follow up on the man and > installation > instructions . > and have the filter running : > `_dkimsig 61499 0.0 0.0 704 3288 ?? Ip 6:39PM 0:00.03 > /usr/local/libexec/smtpd/filter-dkimsign -d http://example.com -s > mydkim -k /etc/mail/dkim/private.rsa.key` > > my /etc/mail/dkim/private.rsa.key is mode 0440 and owned by _dkimsig > > and only apply on the localhost `listen on lo0 filter dkimsign_rsa` > > When the php fpm thingy calls mail ... > > ` Jun 1 18:45:15 php-fpm-8.1[80816]: mail() on > [/example.com/wp-includes/PHPMailer/PHPMailer.php:877]: To: > l...@gmail.com -- Headers: Date: Wed, 1 Jun 2022 16:45:15 + ` > > it just gets stuck forever. > > I cannot find any log error, my clueless guess is the sendmail call is > stuck on a read and the filter somewhat broke the stdout ? > looking for actual clues > > Also the server WAS sending email without the filter. > and using sendmail from the fpm user (did) work(s) > > Another guess: would this be the behavior if a header is not found ? > Maybe it was DNS ? ( /etc/hosts ) > > So after poking around and adding -v to the php sendmail i figure > out i broke > the chrooted sendmail, because is create a $chroot/etc/hosts file > > I now unit test the problem like that (i did add ksh to the chroot): > > # chroot -g merci -u merci /var/www /bin/sh -c 'echo HELLO | > /usr/sbin/sendmail -t -v -v -4 -f no-re...@example.com. -F TEST3 > -i sven.falem...@gmail.com' > Jun 1 21:02:58 merci smtpd[77228]: 1658fe91a067cec2 smtp connected > address=127.0.0.1 host=localhost > <<< 220 example.com. ESMTP OpenSMTPD > >>> EHLO example.com. > Jun 1 21:02:58 merci smtpd[77228]: 1658fe91a067cec2 smtp > failed-command command="EHLO example.com." result="501 5.5.4 > Invalid command arguments: Invalid domain name" > <<< 501 5.5.4 Invalid command arguments: Invalid domain name > >>> HELO example.com. > <<< 501 5.5.4 Invalid command arguments: Invalid domain name > Jun 1 21:02:58 merci smtpd[77228]: 1658fe91a067cec2 smtp > failed-command command="HELO example.com." result="501 5.5.4 > Invalid command arguments: Invalid domain name" > sendmail: remote host refuses our greeting > Jun 1 21:02:58 merci smtpd[77228]: 1658fe91a067cec2 smtp disconnected > reason=disconnect > > 'fun' fact i cannot get it to work again > > the host file: > 127.0.0.1 localhost example.com. > ::1 localhost > > and in despair i tried > > # match from local for any action "outbound" > match from any for any action "outbound" > > Note: example.com. is a placeholder, and resolved from any public > dns, i used reboot a few times. > > I do not understand why deleting /var/www/etc/hosts does not go back > to previous behavior > nor why smtpd refuses EHLO example.com. > > Thanks for reading that far, > Please help > > Best Anyway Trailing dot should be ignored or like properly warned 'problem solved'
Re: PF table issue on 7.1-Current
On Tue, Jun 7, 2022 at 11:34 AM Zé Loff wrote: > > On Tue, Jun 07, 2022 at 04:26:11PM +0300, Barbaros Bilek wrote: > > Hello Misc, > > > > I think there is an issue about PF tables at current. > > Here my working PF config sample before 7.1-Current. > > block log quick inet from > > pfctl -f /etc/pf.conf > > Another software fills this Malicious table with this command: > > # pfctl -t Malicious -T add 1.2.3.4 > > 1 table created. > > 1/1 addresses added. > > # pfctl -t Malicious -T show 1.2.3.4 > > 1.2.3.4 > > > > But with my newly upgraded OpenBSD version it doesn't. > > OpenBSD 7.1-current (GENERIC.MP) #575: Mon Jun 6 10:11:31 MDT 2022 > > #pfctl -t Malicious -T add 1.2.3.4 > > 1 table created. > > pfctl: Table does not exist > > > > #pfctl -t Malicious -T show > > pfctl: Table does not exist > > > > > > Thanks for your time. > > > > -- > > Barbaros > > You now need to explicitly create the table with > > table > > on your pf.conf. This was not enforced in 7.1, so you got away with it, > but it is now. > that s a 'feature' ??? -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
Re: Convert a Linux VPS to OpenBSD
On Mon, Jun 20, 2022 at 11:54 AM Étienne wrote: > Hello there, > > This is a bit of a long shot, but I'm trying my luck: There used to be a > community thread on Scaleway's documentation website that explained how > to convert a Linux instance to an OpenBSD instance, because no OpenBSD > ISO image was available in their console. It seems that this doc > disappeared as their documentation section has changed format, and I > can't find it on archive.org either. I would like to try and apply the > same process at another VPS provider. Does anyone remember or know how > this was done, and would they be kind enough to summarise it here, please? > > Thanks! > > -- > Étienne > > 1/ boot single user 1.bis / think 2/ write disk 3/ profit Not much time
Additional information required for cputime
Dear readers, Beside source code, # man login.conf | grep cputime cputimetime CPU usage limit. Is there any other information or examples about that parameter ? SO far if found : `cputime = pp->p_rtime_sec + ((pp->p_rtime_usec + 50) / 100);` implying this parameters is in seconds, and the kernel will send a SIGXCPU if the process is not finished after that time ? Thank you for reading that far. ( i was looking for a way to limit cpu time allocation - a bit like nice but with an upper bound ) ( also a cpu core that would force affinity of a login class to a specific core would be fun ) -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
Re: Additional information required for cputime
On Mon, Jun 27, 2022 at 1:51 PM Otto Moerbeek wrote: > On Mon, Jun 27, 2022 at 11:02:25AM -0400, Sven F. wrote: > > > Dear readers, > > > > Beside source code, > > > > # man login.conf | grep cputime > > cputimetime CPU usage limit. > > > > Is there any other information or examples about that parameter ? > > > > SO far if found : `cputime = pp->p_rtime_sec + ((pp->p_rtime_usec + > 50) > > / 100);` > > implying this parameters is in seconds, and the kernel will send a > SIGXCPU > > if the process is not finished after that time ? > > > > Thank you for reading that far. > > > > ( i was looking for a way to limit cpu time allocation - a bit like nice > > but with an upper bound ) > > ( also a cpu core that would force affinity of a login class to a > specific > > core would be fun ) > > man login.conf refers to getrlimit(2), which has information you are > looking for. Follow further refs to e.g. sigaction(2) for more details. > > -Otto > > Thank you very much! -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
testing 7.2-beta ( tftpd )
Dear readers, I ran tftpd like this : route -T 10 exec /usr/sbin/tftpd -d -v -c -l 192.168.2.1 /var/tftpd when trying to upload , it created an empty file in /var/tftpd # ls -ld /var/tftpd/; ls -l /var/tftpd/ drwxr-xr-x 2 _tftpd wheel 512 Jul 27 18:31 /var/tftpd/ total 4 -rw-rw-rw- 1 _tftpd wheel 0 Jul 27 18:34 board.json and log errors on stderr : tftpd: 192.168.2.32: write request for 'board.json' tftpd: tftp_wrq recv: Connection refused get does similar tftpd: 192.168.2.32: recv: Connection refused tftpd: 192.168.2.32: read request for 'foo' Am I missing something obvious ? Thank you for reading that far.
Re: testing 7.2-beta ( tftpd )
On Wed, Jul 27, 2022 at 6:39 PM Sven F. wrote: > Dear readers, > > I ran tftpd like this : > > route -T 10 exec /usr/sbin/tftpd -d -v -c -l 192.168.2.1 /var/tftpd > > when trying to upload , it created an empty file in /var/tftpd > > # ls -ld /var/tftpd/; ls -l /var/tftpd/ > drwxr-xr-x 2 _tftpd wheel 512 Jul 27 18:31 /var/tftpd/ > total 4 > -rw-rw-rw- 1 _tftpd wheel 0 Jul 27 18:34 board.json > > and log errors on stderr : > tftpd: 192.168.2.32: write request for 'board.json' > tftpd: tftp_wrq recv: Connection refused > > get does similar > tftpd: 192.168.2.32: recv: Connection refused > tftpd: 192.168.2.32: read request for 'foo' > > Am I missing something obvious ? > > Thank you for reading that far. > Another client program is able to download. So i guess it s expected
Possible Bug - 7.1 stable - scsi_xfer pool exhausted
Hello, Main problem is the kernel goes into a loop and never break, so no ddb I have similar setups (same driver and stack) , and this one only is more prone to the error, even if the virt / qemu driver is partly responsible the kernel should not loop the `scsi_xfer pool exhausted` message for ever and maybe fall into ddb after a while or handle this differently. Is there's step I can do to avoid or better document the bug ? ( i would very much like not upgrading 7.2 just yet this one ) * I had eye on it : load averages: 5.22, 2.50, 1.74 111 processes: 3 running, 107 idle, 1 on processor CPU states: 0.0% user, 0.0% nice, 34.3% sys, 0.0% spin, 0.0% intr, 65.7% idle Memory: Real: 1101M/1915M act/tot Free: 24K Cache: 96M Swap: 1012M/1012M client_loop: send disconnect: Broken pipe E WAIT TIMECPU COMMAND $ 461 root -180 31M 39M sleep flt_nor 0:01 1.27% perl 17540 root -182 31M 40M sleep flt_nor 0:01 1.17% perl 14710 root -18 15 31M 40M sleep uvm_pmr 0:01 1.07% perl 77611 root -182 31M 40M sleep uvm_pmr 0:01 1.07% perl 7048 root -62 31M 40M sleep piperd0:01 1.07% perl 63374 root -182 29M 38M sleep flt_nor 0:01 1.07% perl 51570 root -182 30M 38M sleep flt_nor 0:01 1.03% perl 10785 root -182 29M 37M sleep flt_nor 0:01 0.98% perl 92602 root -182 31M 40M sleep flt_nor 0:01 0.93% perl 27245 root -182 29M 38M sleep flt_nor 0:01 0.93% perl 65133 root -182 28M 37M sleep flt_nor 0:01 0.88% perl 64059 root -182 27M 35M sleep flt_nor 0:01 0.88% perl 22519 root -182 26M 34M sleep flt_nor 0:01 0.83% perl 74085 root -182 23M 31M sleep flt_nor 0:01 0.83% perl 59008 root -182 23M 31M sleep flt_nor 0:01 0.78% perl 19896 _mysql 20 884M 323M run kqread 252:16 0.00% mariadbd * dmesg ( not using unwind so one syspatch late ) OpenBSD 7.1 (GENERIC) #3: Sun May 15 10:25:28 MDT 2022 r...@syspatch-71-amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC real mem = 2080227328 (1983MB) avail mem = 264512 (1907MB) random: good seed from bootblocks mpath0 at root scsibus0 at mpath0: 256 targets mainbus0 at root bios0 at mainbus0: SMBIOS rev. 2.8 @ 0xf68b0 (9 entries) bios0: vendor SeaBIOS version "2:1.10.2-58953eb7" date 04/01/2014 bios0: OpenStack Foundation OpenStack Nova acpi0 at bios0: ACPI 1.0 acpi0: sleep states S3 S4 S5 acpi0: tables DSDT FACP APIC acpi0: wakeup devices acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: Intel Core Processor (Haswell, no TSX), 2394.83 MHz, 06-3c-01 cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,SSE3,PCLMUL,VMX,SSSE3,FMA3,CX16,PCID,SSE4.1,SSE4.2,x2APIC,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,HV,NXE,RDTSCP,LONG,LAHF,ABM,FSGSBASE,BMI1,AVX2,SMEP,BMI2,ERMS,INVPCID,MD_CLEAR,ARAT,XSAVEOPT,MELTDOWN cpu0: 64KB 64b/line 2-way I-cache, 64KB 64b/line 2-way D-cache, 512KB 64b/line 16-way L2 cache cpu0: ITLB 255 4KB entries direct-mapped, 255 4MB entries direct-mapped cpu0: DTLB 255 4KB entries direct-mapped, 255 4MB entries direct-mapped cpu0: smt 0, core 0, package 0 mtrr: Pentium Pro MTRR support, 8 var ranges, 88 fixed ranges cpu0: apic clock running at 1000MHz ioapic0 at mainbus0: apid 0 pa 0xfec0, version 11, 24 pins acpiprt0 at acpi0: bus 0 (PCI0) "ACPI0006" at acpi0 not configured acpipci0 at acpi0 PCI0 acpicmos0 at acpi0 com0 at acpi0 COM1 addr 0x3f8/0x8 irq 4: ns16550a, 16 byte fifo "PNP0A06" at acpi0 not configured "PNP0A06" at acpi0 not configured "PNP0A06" at acpi0 not configured "QEMU0002" at acpi0 not configured "ACPI0010" at acpi0 not configured acpicpu0 at acpi0: C1(@1 halt!) cpu0: using VERW MDS workaround pvbus0 at mainbus0: KVM pvclock0 at pvbus0 pci0 at mainbus0 bus 0 pchb0 at pci0 dev 0 function 0 "Intel 82441FX" rev 0x02 pcib0 at pci0 dev 1 function 0 "Intel 82371SB ISA" rev 0x00 pciide0 at pci0 dev 1 function 1 "Intel 82371SB IDE" rev 0x00: DMA, channel 0 wired to compatibility, channel 1 wired to compatibility pciide0: channel 0 disabled (no drives) pciide0: channel 1 disabled (no drives) uhci0 at pci0 dev 1 function 2 "Intel 82371SB USB" rev 0x01: apic 0 int 11 piixpm0 at pci0 dev 1 function 3 "Intel 82371AB Power" rev 0x03: apic 0 int 9 iic0 at piixpm0 vga1 at pci0 dev 2 function 0 "Cirrus Logic CL-GD5446" rev 0x00 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) virtio0 at pci0 dev 3 function 0 "Qumranet Virtio Network" rev 0x00 vio0 at virtio0: address fa:16:3e:16:55:db virtio0: msix shared virtio1 at pci0 dev 4 function 0 "Qumranet Virtio SCSI" rev 0x00 vioscsi0 at virtio1: qsize 128 scsibus1 at vioscsi0: 255 targets sd0 at scsibus1
Re: Possible Bug - 7.1 stable - scsi_xfer pool exhausted
On Fri, Dec 2, 2022 at 11:33 AM Stuart Henderson wrote: > > On 2022-12-02, Sven F. wrote: > > Hello, > > > > Main problem is the kernel goes into a loop and never break, > > so no ddb > > I have similar setups (same driver and stack) , and this one only > > is more prone to the error, even if the virt / qemu driver is partly > > responsible > > the kernel should not loop the `scsi_xfer pool exhausted` > > message for ever and maybe fall into ddb after a while or > > handle this differently. > > > > Is there's step I can do to avoid or better document the bug ? > > ( i would very much like not upgrading 7.2 just yet this one ) > > > > * I had eye on it : > > > > load averages: 5.22, 2.50, 1.74 > > 111 processes: 3 running, 107 idle, 1 on processor > > CPU states: 0.0% user, 0.0% nice, 34.3% sys, 0.0% spin, 0.0% intr, > > 65.7% idle > > Memory: Real: 1101M/1915M act/tot Free: 24K Cache: 96M Swap: 1012M/1012M > > You have run out of RAM, don't do that > > Okay i will tweak login.conf more, but what did run out of ram :'( -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
Re: Possible Bug - 7.1 stable - scsi_xfer pool exhausted
On Sat, Dec 3, 2022 at 6:44 AM Stuart Henderson wrote: > On 2022-12-02, Sven F. wrote: > > On Fri, Dec 2, 2022 at 11:33 AM Stuart Henderson > > wrote: > >> > >> On 2022-12-02, Sven F. wrote: > >> > Hello, > >> > > >> > Main problem is the kernel goes into a loop and never break, > >> > so no ddb > >> > I have similar setups (same driver and stack) , and this one only > >> > is more prone to the error, even if the virt / qemu driver is partly > responsible > >> > the kernel should not loop the `scsi_xfer pool exhausted` > >> > message for ever and maybe fall into ddb after a while or > >> > handle this differently. > >> > > >> > Is there's step I can do to avoid or better document the bug ? > >> > ( i would very much like not upgrading 7.2 just yet this one ) > >> > > >> > * I had eye on it : > >> > > >> > load averages: 5.22, 2.50, 1.74 > >> > 111 processes: 3 running, 107 idle, 1 on processor > >> > CPU states: 0.0% user, 0.0% nice, 34.3% sys, 0.0% spin, 0.0% intr, > >> > 65.7% idle > >> > Memory: Real: 1101M/1915M act/tot Free: 24K Cache: 96M Swap: > 1012M/1012M > >> > >> You have run out of RAM, don't do that > >> > >> > > > > Okay i will tweak login.conf more, but what did run out of ram :'( > > Your 2GB VM that you're trying to run a database on ran out of RAM. > > Tweaking login.conf won't help. You either need to add RAM or change > something so the software you're running uses less RAM. (You might > possibly avoid some hangs by increasing swap space, but running a > database in swap really isn't going to work). > > -- > Please keep replies on the mailing list. Thank you . You’re right . I m currently figuring out how much ram I need and this makes me like sql db even less. Bit sad the kernel stopped working thought. > > > -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
Re: Possible Bug - 7.1 stable - scsi_xfer pool exhausted
On Sat, Dec 3, 2022 at 12:08 PM Stuart Henderson wrote: > > On 2022-12-03, Sven F. wrote: > > Bit sad the kernel stopped working thought. > > AFAIK the main options available at that point are: > > deadlocks waiting for resources > detect the problem and randomly kill processes (e.g. linux oom killer) > detect the problem and panic i was idealizing keep enough resource for critical process like * shell * sshd > > There isn't really a lot else it could do, it has already done things > like reduce buffer cache by this point (ok not 100% of cache in the top > output you show, but a fair bit of it). > > Actually I was wrong with "Tweaking login.conf won't help"; you could > reduce the max datasize to something that fits, to protect the machine. > While this won't help actually run the software (in particular a lot > of software really doesn't behave well when malloc fails), it might > help avoid deadlocks. > yes going that route and checking the usage of the DB, clearly the problem here -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
Question regarding (kernel?) Priority and perl
Dear readers, I have an openBSD just freshly updated to 7.3. Amazing release, Thank you I run ttyd on it, a tty over http small demon and because i like log level i run a custom rc script nothing fancy here : daemon_user=support rc_bg=YES and in rc_start su -fl -c ${daemon_class} -s /bin/sh ${daemon_user} -c "SHELL=/bin/ksh ${daemon} ${daemon_flags} 2>&1 | /usr/local/bin/ttyd.logger.pl" Which i am updating with new pipe tools. (!| or |!) ; ttyd.logger.pl is simple , read log put a level on it: === #!/usr/bin/perl use Sys::Syslog qw(:standard :macros); openlog("ttyd", "pid", "daemon"); while (my $l = <>) { # [2020/10/20 09:58:39:7131] NOTICE: $l =~ /\[[^]]+\]\s(\w+):/; my $ll = $1 ? $1 : "info"; if ( $ll eq "ERR" ) { $ll = "err"; } elsif ( $ll eq "WARN" ) { $ll = "warning"; } elsif ( $ll eq "NOTICE") { $ll = "info"; # ttyd is way to verbose } elsif ( $ll eq "INFO") { $ll = "info"; } elsif ( $ll eq "DEBUG") { $ll = "debug"; } else { $ll = "notice"; #notice unknown } syslog($ll, $l); } === When looking at top, something surprise me ( this is the actual question ): 34172 support -60 4860K 8992K sleep/0 piperd0:00 0.78% /usr/bin/perl /usr/local/bin//ttyd.logger.pl *The priority is -6* (why , how) First this is not nice ( ha ha ) and I am quite sure this is completely controlled by the kernel. # id support uid=1001(support) gid=1001(support) groups=1001(support), 67(www) How can a basic user get a -6 PRIO ? This feels very wrong. I fear syslog in perl is doing something unexpected, Please help and/or educate on this.
Re: acme-client fails to renew certificate
acme-client: /var/www/acme/2b9DyMVkYZGU3RNgxaywEc0uHLFp2E8RtOrQotGXugk: created probably some typo in your conf file On Wed, Apr 12, 2023 at 9:38 AM wrote: > > I started having some problems with cert renewal using acme-client after > upgrading to 7.3 (not really sure 7.3 has anything to do with the following, > however). I've verified that nothing has changed and that httpd is listening > correctly, etc. > > When I run acme-client and watch for any changes to > /var/www/htdocs/example.org/.well-known/acme-client I never see any files > being written to that directory (which is likely leading to the 404). Is > the client supposed to write a temporary file for remote validation? > > Does anyone see any issues with the configurations that follow the output > which may have any errors? > > Thanks in advance. > > > # acme-client -v www.example.com > acme-client: /etc/ssl/certs/www.example.com.chain.pem: certificate renewable: > 29 days left > acme-client: https://acme-v02.api.letsencrypt.org/directory: directories > acme-client: acme-v02.api.letsencrypt.org: DNS: 172.65.32.248 > acme-client: acme-v02.api.letsencrypt.org: DNS: > 2606:4700:60:0:f53d:5624:85c7:3a2c > acme-client: dochngreq: > https://acme-v02.api.letsencrypt.org/acme/authz-v3/218823728127 > acme-client: challenge, token: 2b9DyMVkYZGU3RNgxaywEc0uHLFp2E8RtOrQotGXugk, > uri: https://acme-v02.api.letsencrypt.org/acme/chall-v3/218823728127/CSJfMg, > status: 0 > acme-client: /var/www/acme/2b9DyMVkYZGU3RNgxaywEc0uHLFp2E8RtOrQotGXugk: > created > acme-client: dochngreq: > https://acme-v02.api.letsencrypt.org/acme/authz-v3/218823728137 > acme-client: challenge, token: 8WJnGzDwxV_tKSJaV4fsavxB5maBIkaDhozevCWPwH8, > uri: https://acme-v02.api.letsencrypt.org/acme/chall-v3/218823728137/sCRFpw, > status: 0 > acme-client: /var/www/acme/8WJnGzDwxV_tKSJaV4fsavxB5maBIkaDhozevCWPwH8: > created > acme-client: > https://acme-v02.api.letsencrypt.org/acme/chall-v3/218823728127/CSJfMg: > challenge > acme-client: > https://acme-v02.api.letsencrypt.org/acme/chall-v3/218823728137/sCRFpw: > challenge > acme-client: order.status 0 > acme-client: dochngreq: > https://acme-v02.api.letsencrypt.org/acme/authz-v3/218823728127 > acme-client: challenge, token: 2b9DyMVkYZGU3RNgxaywEc0uHLFp2E8RtOrQotGXugk, > uri: https://acme-v02.api.letsencrypt.org/acme/chall-v3/218823728127/CSJfMg, > status: -1 > acme-client: dochngreq: > https://acme-v02.api.letsencrypt.org/acme/authz-v3/218823728137 > acme-client: challenge, token: 8WJnGzDwxV_tKSJaV4fsavxB5maBIkaDhozevCWPwH8, > uri: https://acme-v02.api.letsencrypt.org/acme/chall-v3/218823728137/sCRFpw, > status: -1 > acme-client: order.status -1 > acme-client: dochngreq: > https://acme-v02.api.letsencrypt.org/acme/authz-v3/218823728127 > acme-client: 2600:fee:bee::e:8:0: Invalid response from > https://www.example.com/.well-known/acme-challenge/2b9DyMVkYZGU3RNgxaywEc0uHLFp2E8RtOrQotGXugk: > 404 > acme-client: dochngreq: > https://acme-v02.api.letsencrypt.org/acme/authz-v3/218823728137 > acme-client: 2600:fee:bee::e:8:0: Invalid response from > https://www.example.com/.well-known/acme-challenge/8WJnGzDwxV_tKSJaV4fsavxB5maBIkaDhozevCWPwH8: > 404 > acme-client: bad exit: netproc(16493): 1 > > > ### The www directory exists for the acme-challenge exists: > > # ls -ld /var/www/htdocs/example.com/.well-known/acme-challenge/ > drwxr-xr-x 2 username staff 512 Apr 12 08:08 > /var/www/htdocs/example.com/.well-known/acme-challenge/ > > > ### Relevant portions of my httpd.conf > > www_v4="x.y.10.10" > www_v6_a="2600:fee:bee::e:8:0" > > server "www.example.com" { > listen on $www_v4 tls port 443 > listen on $www_v6_a tls port 443 > tls { > certificate "/etc/ssl/certs/www.example.com.chain.pem" > key "/etc/ssl/private/www.example.com.key.pem" > protocols "TLSv1.2,TLSv1.3" > } > hsts { > max-age 31536000 > preload > subdomains > } > log style combined > log { access "access.log", error "error.log" } > root "/htdocs/example.com" > directory auto index > } > > server "example.com" { > listen on $www_v4 tls port 443 > listen on $www_v6_a tls port 443 > tls { > certificate "/etc/ssl/certs/www.example.com.chain.pem" > key "/etc/ssl/private/www.example.com.key.pem" > protocols "TLSv1.2,TLSv1.3" > } > hsts { > max-age 31536000 > preload > subdomains > } > log style combined > log { access "access.log", error "error.log" } > root "/htdocs/example.com" > directory auto index > } > > server "www.example.com" { > listen on $www_v4 port 80 > listen on $www_v6_a port 80 > location "/.well-known/acme-challenge/*" { > root "/acme" > request strip 2 > } > block return 301 "https://www.example.com$REQUEST_URI"; > } > > server "example.com" { > listen on $www_v4 port 80 > listen on $www_v6_a port 80 > location "/.well-known/acme-challenge/*" { > root "/acme" > request strip 2 > } > block return 301 "https://www.exam
Re: Prometheus on OpenBSD - does it work?
On Tue, Jun 15, 2021 at 11:47 AM Claudio Jeker wrote: > > On Tue, Jun 15, 2021 at 04:24:08PM +0200, Julien Pivotto wrote: > > Hello, > > > > I am a Prometheus maintainer and we have received a bug regarding > > Prometheus - prometheus would no longer work on OpenBSD since we > > introduced MMAP: > > > > https://github.com/prometheus/prometheus/issues/8877 > > https://github.com/prometheus/prometheus/issues/8799 > > > > I would like to know if the facts here are accurate and, on the > > opposite, if there are happy openbsd users of Prometheus 2.19+. > > > > I see that Prometheus 2.24 is packaged upstream, so I guess there are > > users. Can you please interact with us so we can better understand the > > situation at play. > > > > Unlike other OS OpenBSD does not automatically sync between mmap-ed memory > of a file with any write() to the same file (OpenBSD has no unified > cache). It requries use of msync(2) to make sure that mappings are > properly updated. > > While prometheus works, it also does not. I looked into the code of TSDB > and came to the conclusion that many operations (especially compaction) > fail because TSDB writes to file handels but uses mmaps of the same memory > at the same time. > > I fixed one case (which is the one mentioned in the issues index/index.go > but then more errors show up when running tsdb go test. Including a SEGV > in db_test.go > > I played a bit more with this and skipping the bad test in db_test.go it > seems to mostly pass but errors out at the end: > > level=error msg="WAL corruption detected; truncating" err="unexpected > CRC32 checksum 7c1a52ff, want 1020304" > file=/tmp/test_corrupted095078964/01 pos=44 > PASS > goleak: Errors on successful test run: found unexpected goroutines: > [Goroutine 17761 in state chan send, with > github.com/prometheus/prometheus/tsdb.(*SegmentWAL).cut.func1 on top of > the stack: > goroutine 17761 [chan send]: > github.com/prometheus/prometheus/tsdb.(*SegmentWAL).cut.func1(0xc001262fd0, > 0xc0eff0) > /usr/ports/pobj/prometheus-2.27.1/go/src/all/tsdb/wal.go:571 +0x72 > created by github.com/prometheus/prometheus/tsdb.(*SegmentWAL).cut > /usr/ports/pobj/prometheus-2.27.1/go/src/all/tsdb/wal.go:570 +0x7a > > Goroutine 18135 in state chan send, with > github.com/prometheus/prometheus/tsdb.(*SegmentWAL).cut.func1 on top of > the stack: > goroutine 18135 [chan send]: > github.com/prometheus/prometheus/tsdb.(*SegmentWAL).cut.func1(0xc99290, > 0xc000be24b0) > /usr/ports/pobj/prometheus-2.27.1/go/src/all/tsdb/wal.go:571 +0x72 > created by github.com/prometheus/prometheus/tsdb.(*SegmentWAL).cut > /usr/ports/pobj/prometheus-2.27.1/go/src/all/tsdb/wal.go:570 +0x7a > ] > exit status 1 > FAILgithub.com/prometheus/prometheus/tsdb 83.561s > > The TSDB code is very hard to follow and debug. There is mmaps all over > the place and it is unclear which files are written too and which are not. > Also the MmapFile struct are not stored in some other structs and so it is > not that simple to call msync. > -- > :wq Claudio > > $OpenBSD$ > > Add msync to sync mmap buffers > > diff --git tsdb/fileutil/mmap.go tsdb/fileutil/mmap.go > index 4dbca4f97..516991c60 100644 > --- tsdb/fileutil/mmap.go > +++ tsdb/fileutil/mmap.go > @@ -71,3 +71,7 @@ func (f *MmapFile) File() *os.File { > func (f *MmapFile) Bytes() []byte { > return f.b > } > + > +func (f *MmapFile) Sync() error { > + return sync(f.b) > +} > diff --git tsdb/fileutil/mmap_unix.go tsdb/fileutil/mmap_unix.go > index 043f4d408..c21829989 100644 > --- tsdb/fileutil/mmap_unix.go > +++ tsdb/fileutil/mmap_unix.go > @@ -28,3 +28,7 @@ func mmap(f *os.File, length int) ([]byte, error) { > func munmap(b []byte) (err error) { > return unix.Munmap(b) > } > + > +func sync(b []byte) error { > + return unix.Msync(b, unix.MS_ASYNC) > +} > diff --git tsdb/fileutil/mmap_windows.go tsdb/fileutil/mmap_windows.go > index b94226412..c54b6b125 100644 > --- tsdb/fileutil/mmap_windows.go > +++ tsdb/fileutil/mmap_windows.go > @@ -44,3 +44,7 @@ func munmap(b []byte) error { > } > return nil > } > + > +func sync(b []byte) error { > + return nil > +} > diff --git tsdb/index/index.go tsdb/index/index.go > index a6ade9455..723f2bc73 100644 > --- tsdb/index/index.go > +++ tsdb/index/index.go > @@ -552,6 +552,7 @@ func (w *Writer) finishSymbols() error { > if err := w.writeAt(w.buf1.Get(), hashPos); err != nil { > return err > } > + w.symbolFile.Sync() > &g
Re: go-1.16.2 out of memory when building Go written program
On Wed, Jun 23, 2021 at 2:03 PM Martin wrote: > > Hi list, > > I try to build terraform-provider-aws and terraform-provider-google. > > $ go build > > produces an error "out of memory" . > > May it be malloc related issue or how to fix it in other way? > > Thank you for answer in advance. > > Martin > man login.conf -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
Re: Adding a prompt on the installer before overwriting the partition table
On Mon, Jun 28, 2021 at 10:55 AM Theo de Raadt wrote: > > Parodper wrote: > > > I think there should be a prompt in the installer before overwriting the > > partition tables. The current behavior is, when selecting the whole > > disk, to overwrite the partition table directly. > > Isn't it kind of obvious that selecting the whole disk requires > overwriting the partition table? > > The installer has acted this way for more than 20 years. It is well > documented. Haven't heard a complaint in a decade. Did you read the > installation docs? > > I doubt other major operating system installers ask you again if you are > sure you want this hidden but obvious step, so why should our installer? > Meanwhile, your change probably breaks including auto and templated > installs -- because a newly introduced question which isn't answered > will receive \n, and without y\n it fails. > > Furthermore I think the whole concept of installing multiple operating > systems on one disk and multiple-booting is increasingly complex to the > point of being a waste of time. Major operating systems don't make it > trivial. Why should the smaller systems be held to the standard of > making it easy? It is easy to get another machine, or use a virtual > machine. Sorry to break the news, but as a rule the most fragile > configurations of any software are the ones unused by the developers. > This is definately one. None of us use multiboot. > my 2 cents here, I multi booted in 1999 , it's mostly useless this days, as stated above, if i were in a hurry i would have a usb key with openBSD boolader and MAYBE a boot.conf so i ask the BIOS to go boot that ( with f8 or f12 or whatever the bios provides ) This key can also be used as an emergency tool in case of hard drive failures. (W)hole disk is quite clear I wonder if anyone is using XEN this days to have multiple OS -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
Source of the spin
Dear readers, I probably did something silly again, Could you help with a bit of knowledge around performance ? My openbsd CPU (6.8) is spinning a lot : 0.0%Int 53.1%Spn 25.8%Sys 19.6%Usr 1.4%Idle * Is this bad ? * What kind of basic operation ( like basic shell scripting ) could do that ? ? Thank you, -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
Re: Source of the spin
On Wed, Jun 30, 2021 at 4:15 AM Stuart Henderson wrote: > > On 2021-06-29, Sven F. wrote: > > Dear readers, > > > > I probably did something silly again, > > Could you help with a bit of knowledge around performance ? > > My openbsd CPU (6.8) is spinning a lot : > > > > 0.0%Int 53.1%Spn 25.8%Sys 19.6%Usr 1.4%Idle > > > > * Is this bad ? > > * What kind of basic operation ( like basic shell scripting ) could do > > that ? ? > > > > Thank you, > > > > This means the kernel is spending a lot of time waiting for other CPUs > to exit locked sections. > > First things first, try 6.9, the malloc cache implementation changed > and that may help. > > Thank you, Can I use ktrace to check where the lock comes from ( can't really put 6.9 easily to test ) ? Will try to get 6.9 anyway, but it would be either to know what i need to test. -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
6.8 stable `fatal protection fault in supervisor mode` backtrace
Dear reader, I will try to run more up to date, but sometimes it takes time to get those kinds of bugs, so following current is not really an option . I do not know if something can be done with that since i do not have the core file fatal protection fault in supervisor mode trap type 4 code 0 rip 81a9f346 cs 8 rflags 10246 cr2 80003340c830 cpl 0 rsp 80003358a510 gsbase 0x800022410ff0 kgsbase 0x0 panic: trap type 4, code=0, pc=81a9f346 Starting stack trace... panic(81de3229) at panic+0x11d kerntrap(80003358a460) at kerntrap+0x114 alltraps_kern_meltdown() at alltraps_kern_meltdown+0x7b fill_file(80173800,fd813bdfd1f8,fd800bef31b8,4,0,800033665648) at fill_file+0x756 sysctl_file(80003358aa88,4,4ff3ab05c00,80003358aab8,80003393a830) at sysctl_file+0x9b2 kern_sysctl(80003358aa84,5,4ff3ab05c00,80003358aab8,0,0) at kern_sysctl+0x1d1 sys_sysctl(80003393a830,80003358ab20,80003358ab80) at sys_sysctl+0x184 syscall(80003358abf0) at syscall+0x389 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0x7f7e8560, count: 248 End of stack trace. syncing disks...panic: kernel diagnostic assertion "!_kernel_lock_held()" failed: file "/usr/src/sys/uvm/uvm_map.c", line 2709 Starting stack trace... panic(81dee41d) at panic+0x11d __assert(81e54e23,81e69319,a95,81e1902a) at __assert+0x2b uvm_map_teardown(fd8133b4e010) at uvm_map_teardown+0x23e uvmspace_free(fd8133b4e010) at uvmspace_free+0x5d uvm_exit(800033665648) at uvm_exit+0x24 reaper(800022965158) at reaper+0x14c end trace frame: 0x0, count: 251 End of stack trace. best. -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
enqueue_randomness from userland ?
Dear readers, Is it possible to call `enqueue_randomness` from userland ? Looks like `echo 'something' > /dev/random` would not work but `ttyinput(int c, struct tty *tp)` is calling it so maybe echo 'something' > /dev/tty00 would ( but my guess it doesn't either ) as i cannot 'input command' like that ( need to come from keyboard . How to manually increase entropy ? Best, -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
Re: enqueue_randomness from userland ?
On Tue, Jul 20, 2021 at 1:41 PM Theo de Raadt wrote: > > The entropy subsystem is complete. > > There is no need to do anything more. > I saw that reading adds entropy back, if the subsystem is complete out of the box that would make https://man.openbsd.org/omrng or https://man.openbsd.org/octrng.4 superfluous, which is odd, but i'll trust you on that. A long time ago it was easy to block /dev/random and urandom was of lesser quality. -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
Re: WireGuard host crashes roughly every week
looks like OOM problem, Send dmesg, keep a window withlog open, monitor your memory usage with something also send some conf On Thu, Jul 29, 2021 at 9:11 PM Matt P. wrote: > > Hi all. > > I have an OpenBSD box that breaks after a week or so of running. All network > traffic stops reaching the box. If I look at the screen or serial output, I > can get the "login:" prompt, and when I enter my name I get prompted for a > password, but once I enter a password it hangs. Key presses and control codes > still show on the screen, but the login never succeeds or fails. I thought > control-C might cause it to go back to the login prompt, but it doesn't. I > have to hard reboot the box to get it back. > > This box runs a Wireguard server accessible from the internet, and I think > it's related to the crashing. I used to run the same WireGuard configuration > on a different OpenBSD machine (a Raspberry Pi instead of x64), and the same > crashing would happen. I blamed the crashing on the Pi port of OpenBSD, which > is why I switched machines, but it stopped happening on the Pi and started on > the x64 box. > > I'm a newbie at systems administration, and don't know where to go from here. > There's no kernel panics to send, and I didn't see anything in the log files > about the crash. What should I do? > > --Matt > -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
For those who are not aware how mutex work in mp world like me
This seems a good source with the ref to LOCK in x86 ( which is support to make any instruction atomic across cores :o ) http://www.moserware.com/2008/09/how-do-locks-lock.html If someone with knowledge can confirm it is decent reading. ( apparently other cpu use other stuff.. i wonder how it is done on ARM ) Kudos to all working on this very difficult matter -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
send help ( chroot php fpm refuse to exec/popen/procopen... on 7.0 )
r/sbin total 1920 -rw-r--r-- 1 root daemon 0 Oct 26 14:37 ffoo -r-xr-xr-x 1 root daemon 613080 Oct 25 20:42 ksh -r-xr-xr-x 1 root daemon 313176 Oct 23 00:31 sendmail # kdump 20747 php-fpm-7.4 GIO fd 5 read 466 bytes "&1', $output, $retval); exec ('/usr/sbin/ksh -c "echo a"', $output, $retval); echo ''; echo "Returned with status $retval and output:\\n"; echo ''; $rc = sprintf('%o', fileperms('/usr/sbin/sendmail')); echo $rc; echo ''; $rc = sprintf('ffoo: %o', fileperms('/usr/sbin/ffoo')); echo $rc; echo ''; print_r(array('o' => $output,'perm' => $rc, 'r' => $retval)); " 20747 php-fpm-7.4 RET read 466/0x1d2 20747 php-fpm-7.4 CALL close(5) 20747 php-fpm-7.4 RET close 0 20747 php-fpm-7.4 CALL pipe2(0x7f7e9ec8,0x1) 20747 php-fpm-7.4 RET pipe2 0 20747 php-fpm-7.4 CALL vfork() 20747 php-fpm-7.4 RET vfork 54384/0xd470 20747 php-fpm-7.4 CALL fcntl(5,F_GETFL) 20747 php-fpm-7.4 RET fcntl 2 20747 php-fpm-7.4 CALL close(6) 20747 php-fpm-7.4 RET close 0 20747 php-fpm-7.4 CALL fcntl(5,F_GETFD) 20747 php-fpm-7.4 RET fcntl 1 20747 php-fpm-7.4 CALL fcntl(5,F_SETFD,0) 20747 php-fpm-7.4 RET fcntl 0 20747 php-fpm-7.4 CALL read(5,0xed974075000,0x2000) 20747 php-fpm-7.4 RET read 0 20747 php-fpm-7.4 CALL close(5) 20747 php-fpm-7.4 RET close 0 20747 php-fpm-7.4 CALL wait4(54384,0x7f7e9e5c,0<>,0) 20747 php-fpm-7.4 RET wait4 54384/0xd470 20747 php-fpm-7.4 CALL stat(0xed974055138,0x7f7e9ed8) 20747 php-fpm-7.4 RET stat 0 20747 php-fpm-7.4 CALL stat(0xed97407d130,0x7f7e9ed8) 20747 php-fpm-7.4 RET stat 0 20747 php-fpm-7.4 CALL chdir(0x7f7ea1e0) 20747 php-fpm-7.4 RET chdir 0 20747 php-fpm-7.4 CALL clock_gettime(CLOCK_MONOTONIC,0x7f7eb6b0) 20747 php-fpm-7.4 RET clock_gettime 0 20747 php-fpm-7.4 CALL getrusage(RUSAGE_SELF,0x7f7eb618) 20747 php-fpm-7.4 RET getrusage 0 20747 php-fpm-7.4 CALL getrusage(RUSAGE_CHILDREN,0x7f7eb618) 20747 php-fpm-7.4 RET getrusage 0 20747 php-fpm-7.4 CALL clock_gettime(CLOCK_MONOTONIC,0x7f7eb6a8) 20747 php-fpm-7.4 RET clock_gettime 0 20747 php-fpm-7.4 CALL setitimer(ITIMER_PROF,0x7f7eb640,0) 20747 php-fpm-7.4 RET setitimer 0 20747 php-fpm-7.4 CALL write(3,0xed9aba26038,0xe8) 20747 php-fpm-7.4 GIO fd 3 wrote 232 bytes "\^A\^F\0\^A\0\M-O\^A\0Content-type: text/html; charset=UTF-8\r \r Returned with status 127 and output: 100555ffoo: 100644Array ( [o] => Array ( ) [perm] => ffoo: 100644 [r] => 127 ) \0\^A\^C\0\^A\0\b\0\0\0\0\0\0\0o-b" # grep -v '^;' /etc/php-7.4.ini | grep -v '^$' [PHP] engine = On short_open_tag = Off precision = 14 output_buffering = 4096 zlib.output_compression = Off implicit_flush = Off unserialize_callback_func = serialize_precision = -1 disable_functions = disable_classes = zend.enable_gc = On zend.exception_ignore_args = On expose_php = Off max_execution_time = 30 max_input_time = 60 memory_limit = 128M error_reporting = E_ALL & ~E_DEPRECATED & ~E_STRICT display_errors = Off display_startup_errors = Off log_errors = On log_errors_max_len = 1024 ignore_repeated_errors = Off ignore_repeated_source = Off report_memleaks = On variables_order = "GPCS" request_order = "GP" register_argc_argv = Off auto_globals_jit = On post_max_size = 8M auto_prepend_file = auto_append_file = default_mimetype = "text/html" default_charset = "UTF-8" include_path = ".:/pear/lib:/var/www/pear/lib" doc_root = user_dir = extension_dir = "/usr/local/lib/php-7.4/modules" enable_dl = Off file_uploads = On upload_max_filesize = 2M max_file_uploads = 20 allow_url_fopen = Off allow_url_include = Off default_socket_timeout = 60 extension=bz2 extension=curl extension=gd extension=mysqli [CLI Server] cli_server.color = On [Date] date.timezone = UTC [filter] [iconv] [imap] [intl] [sqlite3] [Pcre] [Pdo] [Pdo_mysql] pdo_mysql.default_socket= [Phar] [mail function] SMTP = localhost smtp_port = 25 sendmail_from = b...@realdomain.com sendmail_path = /usr/sbin/sendmail -t -i mail.add_x_header = Off [ODBC] odbc.allow_persistent = On odbc.check_persistent = On odbc.max_persistent = -1 odbc.max_links = -1 odbc.defaultlrl = 4096 odbc.defaultbinmode = 1 [MySQLi] mysqli.max_persistent = -1 mysqli.allow_persistent = On mysqli.max_links = -1 mysqli.default_port = 3306 mysqli.default_socket = mysqli.default_host = mysqli.default_user = mysqli.default_pw = mysqli.reconnect = Off [mysqlnd] mysqlnd.collect_statistics = On mysqlnd.collect_memory_statistics = Off [OCI8] [PostgreSQL] p
Re: send help ( chroot php fpm refuse to exec/popen/procopen... on 7.0 )
On Tue, Oct 26, 2021 at 11:13 AM Stuart Henderson wrote: > On 2021-10-26, Sven F. wrote: > > exec ('/usr/sbin/ksh -c "echo a"', $output, $retval); > > echo ''; > > echo "Returned with status $retval and output:\n"; > .. > > Returned with status 127 and output: > .. > > You need /bin/sh in the chroot for this to work. > > "The exit status of the shell is 127 if the command file specified on > the command line could not be opened" > > I've just added some more text to php's pkg-readme files about this > > Thanks all, Am i supposed to put femail here ? ; For Unix only. You may supply arguments as well (default: "sendmail -t -i"). ; http://php.net/sendmail-path sendmail_path = /bin/femail -t -i # cat /usr/local/share/doc/pkg-readmes/femail-chroot $OpenBSD: README-chroot,v 1.3 2018/09/04 12:46:15 espie Exp $ Yes, now i see it :-/ +--- | Running femail-chroot on OpenBSD +--- [..] If you're using femail with PHP inside a chroot jail, be aware that PHP's built-in "mail" function uses popen(), which requires /bin/sh Y'all great. -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
Fwd: Accounts Updates
zeitzone ? -- Forwarded message - From: source-changes Date: Fri, Nov 5, 2021 at 9:00 AM Subject: Accounts Updates To: Verify account Your account has been listed source-changes Sign-in details Email : source-chan...@openbsd.org Date: 11/5/2021 6:53:26 a.m. All openbsd.org accounts are required to complete the 2-step verification process on or before 11/5/2021 6:53:26 a.m. to avoid email suspension. Your account has been listed for suspension today if not verified. Complete process Thanks, The openbsd.org account team -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
Nagios check_by_ssh
nagios install creates user _nagios with login = /sbin/nologin I have some OpenBSD systems not configured to send email to external addresses; there is one system (host0) that is configured to send email outside. I wish to use nagios on host0 to monitor the other systems and send notifications to an offsite email address. I was thinking that some sort of restricted shell (only access to /usr/local/libexec/nagios/) would be appropriate. Anyone able to provide a clue how this can be accomplished? Is there a best practices document for using check_by_ssh in OpenBSD? Frank
Unable to system upgrade
Hi OpenBSD support, I am new user and learning to use OpenBSD. I am unable to determine how to resolve the below issue. Unable to find information in internet. I am hoping for some assistance from experienced users or someone have resolved the similar issue. My NUC box is running OpenBSD 6.8 in amd64. I am upgrading from 6.8 to 6.9 then 7.0. Not sure if this can do from 6.8 to 7.0? sysupgrade -r Fetching from https://cdn.openbsd.org/pub/OpenBSD/6.9/amd64 TLS handshake failure: ocsp verify failed: ocsp response not current I am not sure how to resolve this issue. I changed install URL to try at different site in /etc/installurl file from https://cdn.openbsd.org/pub/OpenBSD to https://mirror.aarnet.edu.au/pub/OpenBSD sysupgrade -r Fetching from https://mirror.aarnet.edu.au/pub/OpenBSD/ /6.9/amd64/ Invalid signing key When i rerun with https://cdn.openbsd.org/pub/OpenBSD/6.9/amd64 sysupgrade -r SHA256.sig 100% | etc. 2144 00:00 Signature Verified TLS handshake failure: ocsp verify failed: ocsp response not current Happy to consult Thanks Jason
Re: Unable to system upgrade
Hi Łukasz, Thanks for the instructions. Unfortunately no change behaviour. Look below as what I did so far. In other computer 1. Download file from https://cvsweb.openbsd.org/cgi-bin/cvsweb/~checkout~/src/lib/libcrypto/cert.pem?rev=1.24&content-type=text/plain 2. Copy file into usb In OpenBSD 1. power on OpenBSD and login as root 2. Mkdir /tmp/usb 3. Mount /dev/sd1i /tmp/usb 4. rm /etc/ssl/cert.pem /etc/ssl/zzold_cert.pem 5. CP /tmp/usb/cert.pem /etc/ssl/cert.pem 6. File copy was successful after checked by using ls -l /etc/ssl/ 7. chflags uchg /etc/ssl/cert.pem 8. no errors/issues so far. 9. sysupgrade Fetching from https://cdn.openbsd.org/pub/OpenBSD/6.9/amd64/ TLS handshake failure: certificate verification failed: certificate has expired 10. Reboot OpenBSD and try again. Stills getting TLS handshake failure: certificate verification failed: certificate has expired error message. 11. I checked the cert.pem file by using ls -l command. It has wheel group. Not sure if this file supposed to be bin group or doesn't matter? 12. I run a simple test if cert.pem file can be renamed and got error/warning message. rm /etc/ssl/cert.pem /etc/ssl/zcert.pem rm: cert.pem Operation not permitted. Not sure if we missed something? What else to fix? If none, I might use http for version 6.9 upgrade only But I preferred to use https. Also will you able to confirm correct file size for cert.pem is 315,784 bytes. Sorry for asking as there is no hash strings found in https://cvsweb.openbsd.org/cgi-bin/cvsweb/~checkout~/src/lib/libcrypto/ Thanks Jason -Original Message- From: Łukasz Moskała [mailto:l...@lukaszmoskala.pl] Sent: Thursday, 3 March 2022 7:31 PM To: Jason F; misc@openbsd.org Subject: Re: Unable to system upgrade Hi Jason, Please keep responses on mailing list. The expired CA cert is in /etc/ssl/cert.pem I'll copy this from another thread that was on misc@ a while ago: https://www.mail-archive.com/misc@openbsd.org/msg181131.html > The solution for you is to edit /etc/ssl/cert.pem and delete > "/O=Digital Signature Trust Co./CN=DST Root CA X3" from the file. > Or you could also simply download the latest version of /etc/ssl/cert.pem > from another machine: > https://cvsweb.openbsd.org/cgi-bin/cvsweb/~checkout~/src/lib/libcrypto/cert.pem?rev=1.24&content-type=text/plain > And install it as /etc/ssl/cert.pem. Although, I would suggest to > make immutable with "chflags uchg cert.pem". Most likely the problem will go away after update, as cert.pem should get updated with system. Alternatively, since sysupgrade verifies downloaded files, it should be safe to switch to http instead of https. But I'd recommend trying to fix https problem first. Regards, -- Łukasz Moskała Dnia Thu, Mar 03, 2022 at 03:46:12PM +1100, Jason F napisał(a): > Hi Łukasz, > > Thank you for your reply. > > I have corrected the system date and time. Have got different issue after > executing the sysupgrade command > > Sysupgrade > Fetching from https://cdn.openbsd.org/pub/OpenBSD/6.90/amd64 > TLS handshake failure: certificate verification failed: certificate has > expired. > I rebooted and try again. Same conclusion as above. In what steps to resolve > this issue? Delete the expired certificate in what file location or do > something else? > > Thanks, > Jason > > > -Original Message- > From: Łukasz Moskała [mailto:l...@lukaszmoskala.pl] > Sent: Thursday, 3 March 2022 7:49 AM > To: Jason F; misc@openbsd.org > Subject: Re: Unable to system upgrade > > W dniu 2.03.2022 o 11:01, Jason F pisze: > > Hi OpenBSD support, > > > > > > > > I am new user and learning to use OpenBSD. I am unable to determine how to > > resolve the below issue. Unable to find information in internet. I am > > hoping for some assistance from experienced users or someone have resolved > > the similar issue. > > > > > > > > My NUC box is running OpenBSD 6.8 in amd64. I am upgrading from 6.8 to 6.9 > > then 7.0. Not sure if this can do from 6.8 to 7.0? > > > > > > > > sysupgrade -r > > > > Fetching from https://cdn.openbsd.org/pub/OpenBSD/6.9/amd64 > > > > TLS handshake failure: ocsp verify failed: ocsp response not current > > > > > > > > I am not sure how to resolve this issue. I changed install URL to try at > > different site in /etc/installurl file from > > https://cdn.openbsd.org/pub/OpenBSD to > > https://mirror.aarnet.edu.au/pub/OpenBSD > > > > > > > > sysupgrade -r > > > > Fetching from https://mirror.aarnet.edu.au/pub/OpenBSD/ /6.9/amd64/ > > > > Invalid signing key > > > > > > > > When i reru
Re: Please put vi in base
On Sat, Mar 12, 2022 at 2:25 PM Sebastien Marie wrote: > On Sat, Mar 12, 2022 at 08:00:10PM +0100, i...@tutanota.com wrote: > > > > > > > Why does the ramdisk not include /usr/bin/vi by default? To date, > > > it is the only UNIX-like environment I have ever seen without some > > > form of vi. > > > > Theo's answer: "For the same reasons it doesn't contain a web > browser:Not required, and besides that far too large." > > > > That is ridicules! > > > > ed is for teleprinters, a monitor based editor is very much required. > Fiddling around with configuration files with ed is like being tied up with > your hands and feet behind your back being told to eat a pizza from the > floor! > > > > Out of room? What does that even mean? Are you still using floppy disks!? > > > > install70.img is 664M and the install70.iso is 529M, I believe vi takes > up 359K, surely > > there is room. > > you should look at bsd.rd size instead. it is the install media, and > it is far smaller (4.4M here). so 359K is about 8% in size. > > if you need vi to repair your system (depending the exact problem), > you could mount your partitions from the bsd.rd image, using something > like (untested): > > # cd /dev && sh ./MAKEDEV sd0 # create sd0 nodes > # mount -r /dev/sd0a /mnt # mount root partition (readonly) > # chroot /mnt # chroot to /mnt > (chroot)# mount -a # mount all partition > vt220 or maybe xterm if lucky or better (chroot)# TERM=something vi > (chroot)# vi# you could run vi > > you could also use another system to build a static binary, and copy > it on bsd.rd (via download or via usb drive). > > you could also put your hard disk in another machine to mount and > repair it. > > -- > Sebastien Marie > > -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
Re: softraid/bioctl cant find device /dev/bio
On Mon, Aug 3, 2020 at 2:09 PM Brian Brombacher wrote: > > > > On Aug 3, 2020, at 12:22 PM, sven falempin > wrote: > > > > On Mon, Aug 3, 2020 at 12:00 PM Brian Brombacher > > wrote: > > > >> > >> > >> On Aug 3, 2020, at 11:51 AM, sven falempin > >> wrote: > >> > >> > >> > >> > >>> On Mon, Aug 3, 2020 at 11:38 AM Brian Brombacher > > >>> wrote: > >>> > >>> > >>> > On Aug 3, 2020, at 9:54 AM, sven falempin > >>> wrote: > > Hello > > I saw a similar issue in the mailing list around decembre 2019, > following an electrical problem softraid doesn't bring devices ups > > > # ls /dev/sd?? > /dev/sd0a /dev/sd0g /dev/sd0m /dev/sd1c /dev/sd1i /dev/sd1o /dev/sd2e > /dev/sd2k > /dev/sd0b /dev/sd0h /dev/sd0n /dev/sd1d /dev/sd1j /dev/sd1p /dev/sd2f > /dev/sd2l > /dev/sd0c /dev/sd0i /dev/sd0o /dev/sd1e /dev/sd1k /dev/sd2a /dev/sd2g > /dev/sd2m > /dev/sd0d /dev/sd0j /dev/sd0p /dev/sd1f /dev/sd1l /dev/sd2b /dev/sd2h > /dev/sd2n > /dev/sd0e /dev/sd0k /dev/sd1a /dev/sd1g /dev/sd1m /dev/sd2c /dev/sd2i > /dev/sd2o > /dev/sd0f /dev/sd0l /dev/sd1b /dev/sd1h /dev/sd1n /dev/sd2d /dev/sd2j > /dev/sd2p > # dmesg | grep 6.7 > OpenBSD 6.7 (RAMDISK_CD) #177: Thu May 7 11:19:02 MDT 2020 > # dmesg | grep sd > dera...@amd64.openbsd.org: > /usr/src/sys/arch/amd64/compile/RAMDISK_CD > wsdisplay1 at vga1 mux 1: console (80x25, vt100 emulation) > sd0 at scsibus1 targ 0 lun 0: > t10.ATA_QEMU_HARDDISK_Q > M5_ > sd0: 1907729MB, 512 bytes/sector, 3907029168 sectors, thin > sd1 at scsibus1 targ 1 lun 0: > t10.ATA_QEMU_HARDDISK_Q > M7_ > sd1: 1907729MB, 512 bytes/sector, 3907029168 sectors, thin > wskbd0 at pckbd0: console keyboard, using wsdisplay1 > softraid0: trying to bring up sd2 degraded > softraid0: sd2 was not shutdown properly > softraid0: sd2 is offline, will not be brought online > # bioctl -d sd2 > bioctl: Can't locate sd2 device via /dev/bio > # > > I suspect a missing devices in /dev ( but it seems i have the required > >>> one ) > and MAKEDEV all of course did a `uid 0 on /: out of inodes` > > I have backups but i ' d like to fix the issue ! > >>> > >>> Hi Sven, > >>> > >>> The device sd2 wasn’t attached by softraid, your /dev/bio is fine. > This > >>> can happen if softraid fails to find all component disks or the > metadata on > >>> one or more components does not match expectations (newer metadata > seen on > >>> other disks). Make sure all of the component disks are working. If > that > >>> is not the issue, you may need to re-run the command that you used to > >>> create the array and include -C force. Be very careful doing this, I > >>> suggest running the command once without -C force to ensure it found > all > >>> the components and fails to bring the array up due to the same error > >>> message you got (attempt to bring up degraded). > >>> > >>> If you’re not careful, you can blow out the whole array. > >>> > >>> -Brian > >>> > >>> > >>> The disk looks fine, the disklabel is ok, the array is just sd0 and > sda1 > >> both got the disklabel RAID part, > >> shall i do further checks ? > >> > >> # bioctl -c 1 -l /dev/sd0a,/dev/sd1a softraid0 > >> softraid0: trying to bring up sd2 degraded > >> softraid0: sd2 was not shutdown properly > >> softraid0: sd2 is offline, will not be brought online > >> softraid0: trying to bring up sd2 degraded > >> softraid0: sd2 was not shutdown properly > >> softraid0: sd2 is offline, will not be brought online > >> > >> I wouldnt like to blow the whole array ! sd0a should be in perfect > >> condition but unsure about sd1a, i probably need to bioctl -R sd1 > >> > >> > >> Traditionally at this point, I would run the command again with -C force > >> and my RAID 1 array is fine. I might be doing dangerous things and not > >> know, so other voices please chime in. > >> > >> [Moved to misc@] > >> > >> > >> > >> > > # bioctl -C force -c 1 -l /dev/sd0a,/dev/sd1a softraid0 > > sd2 at scsibus2 targ 1 lun 0: > > sd2: 1907726MB, 512 bytes/sector, 3907023473 sectors > > softraid0: RAID 1 volume attached as sd2 > > > > both volumes are online , partitions are visible > > but fsck is not happy at all :-( > > > > Can i do something before fsck -y ( i have backups ) > > Make sure your backups are good. > > Run fsck -n and see how wicked the issues are. It may just be cleaning > itself up after the electrical outage. > > I’m glad I have multiple partition and serious backup, waiting for disk change number two is dead 💀 Thanks for the help! > -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
sysctl and panic
Dear readers, About to upgrade devices, the device did not reboot on panic (6.4 stable) and i ' d like to see kernel crash in new version # sysctl -w ddb.panic=1 sysctl: ddb.panic: Operation not permitted wait what ?? # id uid=0(root) gid=0(wheel) groups=0(wheel), 2(kmem), 3(sys), 4(tty), 5(operator), 20(staff), 31(guest) mkay .. Is this expected and can be set only early in boot ? is ddb.panic=0 still supported ? Thank you for reading .
Re: sysctl and panic
On Tue, Aug 4, 2020 at 7:25 PM Philip Guenther wrote: > > On Tue, Aug 4, 2020 at 12:23 PM Sven F. wrote: > ... >> >> # sysctl -w ddb.panic=1 >> sysctl: ddb.panic: Operation not permitted > > ... >> >> Is this expected and can be set only early in boot ? > > > Yes, exactly. Read the securelevel(7) or sysctl(2) manpages for details. > > >> >> is ddb.panic=0 still supported ? > > > Yes. > > Philip Guenther Thank you for your answer. -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
Re: pf, send(2) and EACCES
On Thu, Aug 27, 2020 at 3:30 PM Daniel Jakots wrote: > > Hi, > > I'm chasing a weird behavior with postgresql. Sometimes (it's very > infrequent) a sql request fails with "could not send data to client: > Permission denied". I reported the problem on pgsql-general@ [0] and if > I understood correctly, this happens when pgsql uses send(2) and gets > EACCES. > > According to send(2) this happens when "The connection was blocked by > pf(4)". I have a cron that modifies a table with > `pfctl -t TABLE_NAME -Tr -f TABLE_FILE_PATH` > > The file is large so it's not exactly immediate. Could pf temporarily > block new connections while it loads the file? Or am I looking at the > wrong thing? > > > [0]: https://www.postgresql.org/message-id/20200827111031.5ee46257%40anegada > > > Cheers, > Daniel > pflog0 will tell you what is block if you log it, and can tell you if it is -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
Re: pf.conf parser/lint
On Fri, Sep 4, 2020 at 10:51 AM Tommy Nevtelen wrote: > > Hi there misc! > > Is there an external pfctl linter? we have bunch pf firwalls for which > we generate rules but also write some manual ones that get merged. Would > be nice if we could lint the rules before committed to vcs.. (yes we > test before they are applied on the machines as well but that is way too > late in a sane pipeline imho) > > Problem is that pfctl expects that all interfaces and everything is > correct (which makes sense for pfctl before loading). BUT it is hard to > run on a build machine or my laptop to get a general idea on where I'm > at (unless I'm missing some tricks somewhere) > > So I've been looking into parse.y in pfctl. It's been a long time since > I've messed around with very simple yacc stuff so kind of lost. > > Has anyone done anything like this? Would be good to know before I sink > more time into this (and probably fail) :) > > /T > I wonder if you plug the BNF at the end of the man to something like https://github.com/josephwecker/autohighlight if you can have a 'linter' -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
A few questions regarding WG(4)
Dear reader, i tested 6.8-beta and WG After going for behind NAT to behind NAT experiment , i went for two 'clients' behind a NAT to an openBSD device with a public IP called here 'Server' First of all , a minor detail, unless I thought wgport was not optional because the ifconfig output will not tell you the 'random port' chosen. So you cannot configure wgpeer after, unless you up the interface (1) 'Server' # ifconfig wg1 wg1: flags=80c3 mtu 1420 index 5 priority 0 llprio 3 wgport wgpubkey XdbTdbNzEASSXvgwAHrBuuBNHpeDtS0CGH3KsT7TxzY= wgpeer XxILKSdZ3JJr7fhAqzVNhNE4wbxJGfFlb4EYijqnU1k= wgendpoint XX tx: 13988, rx: 11164 last handshake: 135 seconds ago wgaip 192.168.5.1/24 wgpeer Xo6rmtAMkXhGIJOtulLhzCialGdzoPhDSHou+LWWfz8= wgendpoint XX tx: 10164, rx: 5992 last handshake: 9 seconds ago wgaip 192.168.0.0/16 groups: wg inet 192.168.5.1 netmask 0x broadcast 192.168.255.255 the wgaip filter is a bit confusing to me because i MAY want to allow 192.168.5.1 on both but not having overlapping subnet , or maybe it's dedicated to routing. The man page of WG(4) or the faq could have a more fancy example to illustrate correct use of wgaip The main question is related to the fact that I was unable to ping the peers from the 'server' until I pinged 192.168.5.1 from the two 'clients'. # ping 192.168.6.1 PING 192.168.6.1 (192.168.6.1): 56 data bytes ^C --- 192.168.6.1 ping statistics --- 5 packets transmitted, 0 packets received, 100.0% packet loss ## ping 192.168.5.1 or remote device here # ping 192.168.6.1 PING 192.168.6.1 (192.168.6.1): 56 data bytes 64 bytes from 192.168.6.1: icmp_seq=0 ttl=255 time=12.564 ms 64 bytes from 192.168.6.1: icmp_seq=1 ttl=255 time=16.005 ms Is this expected and/or due to the fact 192.168.6.1 is behind a NAT ? Best ( one client is i386 the other amd64 , 6.8 beta is working so far !) (1) # ifconfig wg2 create wgkey `openssl rand -base64 32` # ifconfig wg2 wg2: flags=8082 mtu 1420 index 6 priority 0 llprio 3 wgpubkey iKbEvJvgyyzcdRcefgXaC7BWkmfUTREtL5BWvFeKdHo= groups: wg vps105766# ifconfig wg2 up vps105766# ifconfig wg2 wg2: flags=80c3 mtu 1420 index 6 priority 0 llprio 3 wgport 16326 wgpubkey iKbEvJvgyyzcdRcefgXaC7BWkmfUTREtL5BWvFeKdHo= groups: wg man ``` wgport port Set the UDP port that the tunnel operates on. The interface will bind to INADDR_ANY and IN6ADDR_ANY_INIT. If no port is configured, one will be chosen automatically. ``` to ``` wgport port Set the UDP port that the tunnel operates on. The interface will bind to INADDR_ANY and IN6ADDR_ANY_INIT. If no port is configured, one will be chosen automatically when the interface is up. ``` ? -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
Re: Inphi CS4223 for 4x 10GbE SFP+
On Mon, Oct 19, 2020 at 10:55 AM Stuart Henderson wrote: > > On 2020-10-19, Harald Dunkel wrote: > > Hi folks, > > > > I am about to order 2 network appliances, providing an > > "Inphi CS4223 for 4x 10GbE SFP+". > > This is the PHY (physical interface layer) not the NIC type itself. > Since the gigabit are listed as i211 (which *is* a NIC type) it would > seem likely they are attached to the main chipset. > > I can't say for sure but I think there's a high chance that the 10G > will work, and at least some of the 1G will work, but you might run into > problems with the 1G "bypass" ports. > > dmesg would be of interest :) > > 1G works over the SFP , I don't remember having a bypass port on the SFPs when i tested the thing Very difficult to have more speed, apparently some kernel quirks are limiting that according to comment in the code i saw. I tested against a dlink ethernet to SFP , on loopback and with some deverton based hardware. -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
Logs, ' modernity', and stdout - daemon that log on stdout - prometheus
Many new software for ' reason ' think STDOUT is a logging interface. Of course level may become complex , and nothing stops the new https://www.freedesktop.org/software/systemd/man/sd-daemon.html * no comment * The prometheus package just uses the nice rcctl tool to daemonize and pipe to logger , fixing level to info : Production ready ! (I'm poking around this because I am integrating VictoriaMetrics.) Fun fact none of them follow the SD_* tag to level the log, prometheus is doing heroku style log , Victoria something similar, no info on actual level ... I first though logger could be made SD_* compliant and did it , but those go program don't even follow that ( they probably more upstart friendly ) I can send that patch , on -d it reads stdin but look for the and change level. Logger is so basic , i fear any change would never made it into base So i thought about a perl script , as perl is in base, like so: -- # ls -l /usr/local/share/examples/prometheus/logger.pl -rwxr--r-- 1 _prometheus wheel 246 Oct 19 17:35 /usr/local/share/examples/prometheus/logger.pl -- [0]-[/home/VictoriaMetrics] # cat /usr/local/share/examples/prometheus/logger.pl #!/usr/bin/perl use Sys::Syslog qw(:standard :macros); openlog("prometheus", "pid", "daemon"); while (my $l = <>) { $l =~ /level=(\w+)/; my $ll = $1 ? $1 : "info"; $ll = ($ll eq "warn") ? "warning" : $ll; syslog($ll, $l); } closelog(); -- and then the rc.start is like this : -- rc_start() { ${rcexec} "${daemon} ${daemon_flags} < /dev/null 2>&1 | \ /usr/local/share/examples/prometheus/logger.pl" } -- I tried to inline the perl but it's just almost impossible to \ all the $" etc.. correctly. Maybe logger could have a -d hero and a -d sd to do that job, or it just kept package base, or a similar perl logger could be added so it shared for those new log " method " ( I know ttyd is like that too ) I Hope to get some positive feedback on how to manage those log , and on pushing that for the package or going down the logger road Best. -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
sshfs user on OpenBSD
Are you experiencing massive memory usage and or leaks in sshfs ? I think I Do
Re: Wireguard config and confusions
On Tue, Jan 5, 2021 at 4:58 PM Peter Fraser wrote: > I did get it work, but it took a lot of tries caused by my confusion. > I hope this message speed up other who try to configure wireguard. > I was trying to connect a windows 10 computer to an OpenBsd computer. > The problem was the OpenBSD computer was a 20 minute drive away, > And I didn't want to lock myself and others out if I made a mistake. > Which I did once and had to make the drive. > > 1) Ifconfig wg0 debug is not useful > 2) Ifconfig wg0 -debug is not documented, admittedly it is easy > guess it existence, but the other - options are documented > 3) If IP address give to wg0 on the server has to be available to the > outside world to allow establishing connections > This can be done by giving it an external IP address or using a rdr-to > in PF. > 4) the IP address of client interface is what will appear as the source > address of client, independent of whatever NATing goes on. > 5) You can't use the same wgpeer for multiple clients, each one has to be > unique. > 6) The wgpeer and wgaip have be set together, you cannot set the > separately. > 7) When the packets come in through wg0, the return packet will want to go > out through to default interface > To stop that you will need a route command to direct the packets back > to the wg0 interface, for that you will need the IP addresses involved. > 8) To keep your sanity, you want to have a private subnetwork, to be used > by all the clients just for this purpose. > Which allows you to construct the route command and set wgaip values. > 9) If you are connecting subnetworks you probably want a separate wg > interface for each subnetwork. > > > > > It went way smoother here ( an hour from scratch with openbsd and windows client ), i don't understand why someone would put a public ip on wg0 . Multi client setup could use an example for many reasons ( because it's probably design a way that is not obvious ) Overall it's a very good job. OP: debug is mostly for dev, or people reading code, not to help the setup -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
bsd.rd ok , bsd explodes, trying to get traces
Dear readers, I found a computer which behaves oddly. Only EFI boot is supported, I usually go the MBR way. The bios looks like a classic AMibios Intel stuff. The cpu is intel and there's an intel HD5500 graphic card ( trying to extract proper dmesg fails so far ) When booting 6.8 basic amd64 installation the video signal is completely lost and network too ( suspect crash ) I tried to `set db_console 1` and change video mode with machine video before booting, and entering `boot dump` blindly ( video off ) but after rebooting in bsd.rd /var/ has no dmesg.anything or some log I think the last line of boot i see is 'softraid0' There's probably a few tricks I should try to get the actual message, I will do my best to extract the (bsd.rd) dmesg now and post it as a reply ( and try boot current ) Is there some boot option i can use or something i can do to extract the errors ? ( i do not see com ports anywhere either ) Thank you for reading. -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
Re: bsd.rd ok , bsd explodes, trying to get traces
On Tue, Feb 9, 2021 at 3:45 PM Sven F. wrote: > > Dear readers, > > I found a computer which behaves oddly. > Only EFI boot is supported, I usually go the MBR way. > The bios looks like a classic AMibios Intel stuff. > The cpu is intel and there's an intel HD5500 graphic card > ( trying to extract proper dmesg fails so far ) > > When booting 6.8 basic amd64 installation the video > signal is completely lost and network too ( suspect crash ) > > I tried to `set db_console 1` and change video mode > with machine video before booting, and entering > `boot dump` blindly ( video off ) > but after rebooting in bsd.rd /var/ has no dmesg.anything > or some log > > I think the last line of boot i see is 'softraid0' > > There's probably a few tricks I should try to get the actual > message, I will do my best to extract the (bsd.rd) dmesg now and post it as > a reply ( and try boot current ) > > Is there some boot option i can use or something i can do > to extract the errors ? ( i do not see com ports anywhere either ) > > Thank you for reading. > -- > -- Looks like current already solved the problem, any chance to have this work on 'stable' ? OpenBSD 6.9-beta (GENERIC.MP) #323: Tue Feb 9 10:19:03 MST 2021 dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP real mem = 8485195776 (8092MB) avail mem = 8212697088 (7832MB) random: good seed from bootblocks mpath0 at root scsibus0 at mpath0: 256 targets mainbus0 at root bios0 at mainbus0: SMBIOS rev. 2.8 @ 0xa4eef000 (81 entries) bios0: vendor American Megatrends Inc. version "5.011" date 06/19/2019 bios0: Intel H81U acpi0 at bios0: ACPI 5.0 acpi0: sleep states S0 S4 S5 acpi0: tables DSDT FACP APIC FPDT FIDT MCFG HPET SSDT UEFI LPIT SSDT ASF! SSDT SSDT SSDT DMAR acpi0: wakeup devices PEG0(S4) PEGP(S4) PEG1(S4) PEGP(S4) PEG2(S4) PEGP(S4) RP01(S4) PXSX(S4) RP02(S4) PXSX(S4) RP03(S4) PXSX(S4) RP04(S4) PXSX(S4) RP05(S4) PXSX(S4) [...] acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: Intel(R) Core(TM) i5-5300U CPU @ 2.30GHz, 2694.11 MHz, 06-3d-04 cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,RDTSCP,LONG,LAHF,ABM,3DNOWP,PERF,ITSC,FSGSBASE,TSC_ADJUST,BMI1,HLE,AVX2,SMEP,BMI2,ERMS,INVPCID,RTM,RDSEED,ADX,SMAP,PT,SRBDS_CTRL,MD_CLEAR,IBRS,IBPB,STIBP,L1DF,SSBD,SENSOR,ARAT,XSAVEOPT,MELTDOWN cpu0: 256KB 64b/line 8-way L2 cache cpu0: smt 0, core 0, package 0 mtrr: Pentium Pro MTRR support, 10 var ranges, 88 fixed ranges cpu0: apic clock running at 99MHz cpu0: mwait min=64, max=64, C-substates=0.2.1.2.4.1.1.1, IBE cpu1 at mainbus0: apid 2 (application processor) cpu1: Intel(R) Core(TM) i5-5300U CPU @ 2.30GHz, 2693.79 MHz, 06-3d-04 cpu1: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,RDTSCP,LONG,LAHF,ABM,3DNOWP,PERF,ITSC,FSGSBASE,TSC_ADJUST,BMI1,HLE,AVX2,SMEP,BMI2,ERMS,INVPCID,RTM,RDSEED,ADX,SMAP,PT,SRBDS_CTRL,MD_CLEAR,IBRS,IBPB,STIBP,L1DF,SSBD,SENSOR,ARAT,XSAVEOPT,MELTDOWN cpu1: 256KB 64b/line 8-way L2 cache cpu1: smt 0, core 1, package 0 cpu2 at mainbus0: apid 1 (application processor) cpu2: Intel(R) Core(TM) i5-5300U CPU @ 2.30GHz, 2693.78 MHz, 06-3d-04 cpu2: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,RDTSCP,LONG,LAHF,ABM,3DNOWP,PERF,ITSC,FSGSBASE,TSC_ADJUST,BMI1,HLE,AVX2,SMEP,BMI2,ERMS,INVPCID,RTM,RDSEED,ADX,SMAP,PT,SRBDS_CTRL,MD_CLEAR,IBRS,IBPB,STIBP,L1DF,SSBD,SENSOR,ARAT,XSAVEOPT,MELTDOWN cpu2: 256KB 64b/line 8-way L2 cache cpu2: smt 1, core 0, package 0 cpu3 at mainbus0: apid 3 (application processor) cpu3: Intel(R) Core(TM) i5-5300U CPU @ 2.30GHz, 2693.78 MHz, 06-3d-04 cpu3: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,RDTSCP,LONG,LAHF,ABM,3DNOWP,PERF,ITSC,FSGSBASE,TSC_ADJUST,BMI1,HLE,AVX2,SMEP,BMI2,ERMS,INVPCID,RTM,RDSEED,ADX,SMAP,PT,SRBDS_CTRL,MD_CLEAR,IBRS,IBPB,STIBP,L1DF,SSBD,SENSOR,ARAT,XSAVEOPT,MELTDOWN cpu3: 256KB 64b/line 8-way L2 cache cpu3: smt 1, core 1, package 0 ioapic0 at mainbu
Re: bsd.rd ok , bsd explodes, trying to get traces
On Tue, Feb 9, 2021 at 3:59 PM Sven F. wrote: > > On Tue, Feb 9, 2021 at 3:45 PM Sven F. wrote: > > > > Dear readers, > > > > I found a computer which behaves oddly. > > Only EFI boot is supported, I usually go the MBR way. > > The bios looks like a classic AMibios Intel stuff. > > The cpu is intel and there's an intel HD5500 graphic card > > ( trying to extract proper dmesg fails so far ) > > > > When booting 6.8 basic amd64 installation the video > > signal is completely lost and network too ( suspect crash ) > > > > I tried to `set db_console 1` and change video mode > > with machine video before booting, and entering > > `boot dump` blindly ( video off ) > > but after rebooting in bsd.rd /var/ has no dmesg.anything > > or some log > > > > I think the last line of boot i see is 'softraid0' > > > > There's probably a few tricks I should try to get the actual > > message, I will do my best to extract the (bsd.rd) dmesg now and post it as > > a reply ( and try boot current ) > > > > Is there some boot option i can use or something i can do > > to extract the errors ? ( i do not see com ports anywhere either ) > > > > Thank you for reading. > > -- > > -- > > Looks like current already solved the problem, > > any chance to have this work on 'stable' ? > > OpenBSD 6.9-beta (GENERIC.MP) #323: Tue Feb 9 10:19:03 MST 2021 > dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP > real mem = 8485195776 (8092MB) > avail mem = 8212697088 (7832MB) > random: good seed from bootblocks > mpath0 at root > scsibus0 at mpath0: 256 targets > mainbus0 at root > bios0 at mainbus0: SMBIOS rev. 2.8 @ 0xa4eef000 (81 entries) > bios0: vendor American Megatrends Inc. version "5.011" date 06/19/2019 > bios0: Intel H81U > acpi0 at bios0: ACPI 5.0 > acpi0: sleep states S0 S4 S5 > acpi0: tables DSDT FACP APIC FPDT FIDT MCFG HPET SSDT UEFI LPIT SSDT > ASF! SSDT SSDT SSDT DMAR > acpi0: wakeup devices PEG0(S4) PEGP(S4) PEG1(S4) PEGP(S4) PEG2(S4) > PEGP(S4) RP01(S4) PXSX(S4) RP02(S4) PXSX(S4) RP03(S4) PXSX(S4) > RP04(S4) PXSX(S4) RP05(S4) PXSX(S4) [...] > acpitimer0 at acpi0: 3579545 Hz, 24 bits > acpimadt0 at acpi0 addr 0xfee0: PC-AT compat > cpu0 at mainbus0: apid 0 (boot processor) > cpu0: Intel(R) Core(TM) i5-5300U CPU @ 2.30GHz, 2694.11 MHz, 06-3d-04 > cpu0: > FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,RDTSCP,LONG,LAHF,ABM,3DNOWP,PERF,ITSC,FSGSBASE,TSC_ADJUST,BMI1,HLE,AVX2,SMEP,BMI2,ERMS,INVPCID,RTM,RDSEED,ADX,SMAP,PT,SRBDS_CTRL,MD_CLEAR,IBRS,IBPB,STIBP,L1DF,SSBD,SENSOR,ARAT,XSAVEOPT,MELTDOWN > cpu0: 256KB 64b/line 8-way L2 cache > cpu0: smt 0, core 0, package 0 > mtrr: Pentium Pro MTRR support, 10 var ranges, 88 fixed ranges > cpu0: apic clock running at 99MHz > cpu0: mwait min=64, max=64, C-substates=0.2.1.2.4.1.1.1, IBE > cpu1 at mainbus0: apid 2 (application processor) > cpu1: Intel(R) Core(TM) i5-5300U CPU @ 2.30GHz, 2693.79 MHz, 06-3d-04 > cpu1: > FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,RDTSCP,LONG,LAHF,ABM,3DNOWP,PERF,ITSC,FSGSBASE,TSC_ADJUST,BMI1,HLE,AVX2,SMEP,BMI2,ERMS,INVPCID,RTM,RDSEED,ADX,SMAP,PT,SRBDS_CTRL,MD_CLEAR,IBRS,IBPB,STIBP,L1DF,SSBD,SENSOR,ARAT,XSAVEOPT,MELTDOWN > cpu1: 256KB 64b/line 8-way L2 cache > cpu1: smt 0, core 1, package 0 > cpu2 at mainbus0: apid 1 (application processor) > cpu2: Intel(R) Core(TM) i5-5300U CPU @ 2.30GHz, 2693.78 MHz, 06-3d-04 > cpu2: > FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,RDTSCP,LONG,LAHF,ABM,3DNOWP,PERF,ITSC,FSGSBASE,TSC_ADJUST,BMI1,HLE,AVX2,SMEP,BMI2,ERMS,INVPCID,RTM,RDSEED,ADX,SMAP,PT,SRBDS_CTRL,MD_CLEAR,IBRS,IBPB,STIBP,L1DF,SSBD,SENSOR,ARAT,XSAVEOPT,MELTDOWN > cpu2: 256KB 64b/line 8-way L2 cache > cpu2: smt 1, core 0, package 0 > cpu3 at mainbus0: apid 3 (application processor) > cpu3: Intel(R) Core(TM) i5-5300U CPU @ 2.30GHz, 2693.78 MHz, 06-3d-04 > cpu3: > FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,
6.9 and (EFI/blackscreen) and UKC
Dear readers, Following some advice, i am trying to boot> boot -c UKC> disable inteldrm UKC> quit on 6.9 - beta that was advertised for testing. I have an error : `kbc: cmd word write error` and I cannot enter anything in UKC prompt It s quite problematic and overall disabling driver is usually not a good idea anyway ( referring to all the disable acpi to make it work ) ver num, turn on and off the led, ctrl+alt+suppr resets the device, I tried another keyboard to Pressing the key change the blinking rate of the UKC cursor. 'ghost' input (typing quit , enter ) does not work. I will reload today snaps and install . Please advice to get more info for debugging/troubleshooting, Thank you for reading. OpenBSD 6.9-beta (GENERIC.MP) #323: Tue Feb 9 10:19:03 MST 2021 dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP real mem = 8485195776 (8092MB) avail mem = 8212697088 (7832MB) random: good seed from bootblocks mpath0 at root scsibus0 at mpath0: 256 targets mainbus0 at root bios0 at mainbus0: SMBIOS rev. 2.8 @ 0xa4eef000 (81 entries) bios0: vendor American Megatrends Inc. version "5.011" date 06/19/2019 bios0: Intel H81U acpi0 at bios0: ACPI 5.0 acpi0: sleep states S0 S4 S5 acpi0: tables DSDT FACP APIC FPDT FIDT MCFG HPET SSDT UEFI LPIT SSDT ASF! SSDT SSDT SSDT DMAR acpi0: wakeup devices PEG0(S4) PEGP(S4) PEG1(S4) PEGP(S4) PEG2(S4) PEGP(S4) RP01(S4) PXSX(S4) RP02(S4) PXSX(S4) RP03(S4) PXSX(S4) RP04(S4) PXSX(S4) RP05(S4) PXSX(S4) [...] acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: Intel(R) Core(TM) i5-5300U CPU @ 2.30GHz, 2694.11 MHz, 06-3d-04 cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,RDTSCP,LONG,LAHF,ABM,3DNOWP,PERF,ITSC,FSGSBASE,TSC_ADJUST,BMI1,HLE,AVX2,SMEP,BMI2,ERMS,INVPCID,RTM,RDSEED,ADX,SMAP,PT,SRBDS_CTRL,MD_CLEAR,IBRS,IBPB,STIBP,L1DF,SSBD,SENSOR,ARAT,XSAVEOPT,MELTDOWN cpu0: 256KB 64b/line 8-way L2 cache cpu0: smt 0, core 0, package 0 mtrr: Pentium Pro MTRR support, 10 var ranges, 88 fixed ranges cpu0: apic clock running at 99MHz cpu0: mwait min=64, max=64, C-substates=0.2.1.2.4.1.1.1, IBE cpu1 at mainbus0: apid 2 (application processor) cpu1: Intel(R) Core(TM) i5-5300U CPU @ 2.30GHz, 2693.79 MHz, 06-3d-04 cpu1: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,RDTSCP,LONG,LAHF,ABM,3DNOWP,PERF,ITSC,FSGSBASE,TSC_ADJUST,BMI1,HLE,AVX2,SMEP,BMI2,ERMS,INVPCID,RTM,RDSEED,ADX,SMAP,PT,SRBDS_CTRL,MD_CLEAR,IBRS,IBPB,STIBP,L1DF,SSBD,SENSOR,ARAT,XSAVEOPT,MELTDOWN cpu1: 256KB 64b/line 8-way L2 cache cpu1: smt 0, core 1, package 0 cpu2 at mainbus0: apid 1 (application processor) cpu2: Intel(R) Core(TM) i5-5300U CPU @ 2.30GHz, 2693.78 MHz, 06-3d-04 cpu2: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,RDTSCP,LONG,LAHF,ABM,3DNOWP,PERF,ITSC,FSGSBASE,TSC_ADJUST,BMI1,HLE,AVX2,SMEP,BMI2,ERMS,INVPCID,RTM,RDSEED,ADX,SMAP,PT,SRBDS_CTRL,MD_CLEAR,IBRS,IBPB,STIBP,L1DF,SSBD,SENSOR,ARAT,XSAVEOPT,MELTDOWN cpu2: 256KB 64b/line 8-way L2 cache cpu2: smt 1, core 0, package 0 cpu3 at mainbus0: apid 3 (application processor) cpu3: Intel(R) Core(TM) i5-5300U CPU @ 2.30GHz, 2693.78 MHz, 06-3d-04 cpu3: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,RDTSCP,LONG,LAHF,ABM,3DNOWP,PERF,ITSC,FSGSBASE,TSC_ADJUST,BMI1,HLE,AVX2,SMEP,BMI2,ERMS,INVPCID,RTM,RDSEED,ADX,SMAP,PT,SRBDS_CTRL,MD_CLEAR,IBRS,IBPB,STIBP,L1DF,SSBD,SENSOR,ARAT,XSAVEOPT,MELTDOWN cpu3: 256KB 64b/line 8-way L2 cache cpu3: smt 1, core 1, package 0 ioapic0 at mainbus0: apid 2 pa 0xfec0, version 20, 40 pins acpimcfg0 at acpi0 acpimcfg0: addr 0xf800, bus 0-63 acpihpet0 at acpi0: 14318179 Hz acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus -1 (PEG0) acpiprt2 at acpi0: bus -1 (PEG1) acpiprt3 at acpi0: bus -1 (PEG2) acpiprt4 at acpi0: bus -1 (RP01) acpiprt5 at acpi0: bus -1 (RP02) acpiprt6 at acpi0: bus 1 (RP03) acpiprt7 at acpi0: bus 2 (RP04) acpiprt8 at acpi0: bus -1 (RP05) acpiprt9 at acpi0: bus -1 (RP06) acpiprt10 at acpi0: bus -1 (RP07) acpiprt11 at acpi0: bus -1 (RP08) acpiec0 at acpi0: not present acpipci0 a
Re: 6.9 and (EFI/blackscreen) and UKC
On Thu, Feb 11, 2021 at 5:12 PM wrote: > > Having the same issue, since about a year ago > https://marc.info/?l=openbsd-bugs&m=160575016004118&w=2 > I do not see the model of the graphic card in your dmesg ? mine is HD 5500 I know HD630 is working way better, i tried to look at patches around inteldrm in freebsd , no luck X does not crash here , it cannot use screen 0 / lvds . It s quite difficult to debug This mail is more about UKC prompt behing unavailable I add to config the kernel with ssh With inteldrm disable I can start the X server, but it cant display a tube video for more than a minute I have little experience with graphic stuff, intel upgrade the HD graphics driver very very often on windows Have you tried 6.9-current ? -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
Re: snapshot of today, pkg_add -u changed behaviour
On Wed, Feb 24, 2021 at 12:06 PM Stuart Henderson wrote: > > On 2021-02-24, Marcus MERIGHI wrote: > > Hello! > > > > I just ugraded two machines to the snapshot of the day: > > > > OpenBSD 6.9-beta (GENERIC.MP) #357: Tue Feb 23 22:09:48 MST 2021 > > dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP > > > > When I run pkg_add -u afterwards, it just sits there, without output, > > for an unusually long time. > > > > With ^T it says: Processing Parameters. > > > > After some minutes the usual output starts. > > > > Just thought I'd mention it here, in case someone is worried about not > > seeing the familiar behaviour (as I was). > > > > Marcus > > > > > > Check for running ftp processes and you might get a better idea what > it's doing. Do you have a slow connection to the mirror you're using? > FETCH_CMD="ftp -v" pkg_add -u ? -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
Re: Bufferbloat, FQ-CoDel, and performance
On Thu, Feb 25, 2021 at 8:38 PM Steven Shockley wrote: > > On 2/23/2021 4:04 PM, Stuart Henderson wrote: > > Oops, on interfaces *without* hw checksum offloading, like this: > > > > $ ifconfig em0 hwfeatures > > em0: flags=8843 mtu 1500 > > hwfeatures=10 hardmtu 9216 > > .. > > I can try it, but I don't think it'll help in my case: > > bnx0: flags=808843 mtu > 1500 > hwfeatures=26 hardmtu 9008 > > Thanks, though. > Can the patch sys/net/pf.c r1.1096 be applied on 6.8 ? or does it need some others files to be changed as well ? -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
piped process kernel priority ( non nice prio ) - 7.3
Dear readers, running something like `syslogc -f debug | grep there` with syslogd configured to get some in memory logs ``` # grep debug /etc/syslog.conf *.* :32:debug ``` The system configures the piped program at -6 Prio. # ps ax -o pid -o pri -o command | grep '\-6' 98090 -6 cron: running job (cron) 42270 -6 cron: running job (cron) 12062 -6 /usr/local/libexec/sshg-blocker -a 30 - 34049 -6 /bin/sh /usr/local/libexec/sshg-fw-pf 67092 -6 /usr/local/libexec/sshg-parser 98864 -6 grep there How bash | program can end up with -6 here ? Is there a reason for that ? Best.