Re: [Bug (?) ld]: ld interprets % weirdly

Claudio Jeker wrote: > What a stupid interface, lets rebuild mktemp(2) and not learn from > history. It is not like this is new unless you think 30years is new... > > Humanity is surely doomed Yes, the next generation will face big challenges.

Re: [Bug (?) ld]: ld interprets % weirdly

Claudio Jeker wrote: > On Sun, Jun 11, 2023 at 12:01:04AM -0600, Theo de Raadt wrote: > > I assume you are on an architecture where the linker is LLVM ld, > > otherwise known as ld-lld in OpenBSD (some older architectures > > still use ld-bfd). > > > > In ll

Re: [Bug (?) ld]: ld interprets % weirdly

I assume you are on an architecture where the linker is LLVM ld, otherwise known as ld-lld in OpenBSD (some older architectures still use ld-bfd). In llvm/lib/Support/Path.cpp, there is code that acts just like you describe: void createUniquePath(const Twine &Model, SmallVectorImpl &ResultPath,

Re: netstat: vfprintf %s NULL in " %2d %-5.16s"

Stuart Henderson wrote: > On 2023-05-31, Benjamin Stürz wrote: > > Hi misc@, > > > > while scrolling through my /var/log/messages I found this entry: > > netstat: vfprintf %s NULL in " %2d %-5.16s" > > > > I tracked down the issue to line 278 of /usr/src/usr.bin/netstat/show.c: > >> printf(" %

Re: RSS or Atom syndication for security advisories?

I am not going to do any of this work you want. Good bye. Xavier wrote: > "Theo de Raadt" said: > > > I'd be thrilled to do less work on errata! > > How about we do RSS, and stop making errata? > > We can do static RSS. > > Configure and forget.

Re: RSS or Atom syndication for security advisories?

Stuart Henderson wrote: > On 2023-05-22, Xavier B. wrote: > > Why? > > If you make too much extra work for people who are handling errata, > they won't want to handle errata any more. I'd be thrilled to do less work on errata! How about we do RSS, and stop making errata? We can do static RSS

Re: RSS or Atom syndication for security advisories?

Not going to happen. Xavier B. wrote: > Yeah!, I understand you. But I think it should be included in official > resources. To whom is concerned about. > > On Sun, 21 May 2023 21:27:19 +0200 > Hiltjo Posthuma ha escrit: > > > On Sun, May 21, 2023 at 06:26:12PM +, Xavier B. wrote: > > > T

Re: Potential bgpd.conf parsing bug?

Many of our daemons (and a few non-daemon tools) contain a a particular parse.y parser for their domain-specific-languages. This is how variables work in that parser. This is kind of like a historical mistake that would be hard to repair, because everytime we looked into changing the way it works

Re: hw RNG on APUs

I would appreciate if everyone stepped back on this. 1. repeatedly reading constant data and shoving it into the kernel software RNG is safe. Such values do not saturate or decrease the quality. 2. The kernel software RNG does not require a hardware RNG to be available. 3. The people w

Re: syspatch + custom kernel

The rules are clear. syspatch only works on against official releases. We are not going to change this code to handle piece-meal adjustments and the potential shitshow that could occur. So you get to run release (and use syspatch), or you are on your own and probably following -current / snapsho

Re: Minimum install size

Peter N. M. Hansteen wrote: > On Fri, Apr 28, 2023 at 09:55:13PM -0600, Theo de Raadt wrote: > > > > Do not assume "desireable" and "possible" are always the same. > > > > > > My point was whether the wording "installable on 512MB of s

Re: Minimum install size

Yoshihiro Kawamata wrote: > From: Janne Johansson > Subject: Re: Minimum install size > Date: Fri, 28 Apr 2023 09:09:49 +0200 > > > Do not assume "desireable" and "possible" are always the same. > > My point was whether the wording "installable on 512MB of storage" is > appropriate to put in t

Re: apm doesn't know AC state on APU1C

Jan Stary wrote: > On Apr 26 14:57:22, stu.li...@spacehopper.org wrote: > > On 2023-04-26, Jan Stary wrote: > > > This is current/amd64 on an APU1C (dmesg below). > > > While 'sysctl hw' knows hw.power=1, apm doesn't know: > > > > > > Battery state: absent, 0% remaining, unknown life estimate >

Re: hw RNG on APUs

That was in 2022. Lots of people will have machines without new BIOS. I wonder if our kernel should have similar code to enable the registers. Jan Stary wrote: > On Apr 21 17:27:37, dera...@openbsd.org wrote: > > Christian Weisgerber wrote: > > > > > Christian Weisgerber: > > > > > > > I bui

Re: hw RNG on APUs

Christian Weisgerber wrote: > Christian Weisgerber: > > > I built a kernel with an instrumented driver. Unfortunately, no > > entropy is provided: > > FWIW, it appears to work on the SoftIron OverDrive 1000: > > ccp: rng 058f9dad > ccp: rng f0a495ba > ccp: rng a757bdf7 > ccp: rng 31b21d19 > c

Re: hw RNG on APUs

Maybe the driver is broken. Maybe it fails to initialize it. Maybe in other cases, the BIOS initializes it. So maybe on this machine, it is broken, but on other machines it is not broken. Pushing 0's to the random subsystem doesn't make the random state worse. It just fails to make it better.

Re: login string size

Gustavo Rios wrote: > What is the maximum login length on OpenBSD ? You can stay logged in as long as you want.

Re: hardware

Gustavo Rios wrote: > What is the best supported servers by OpenBSD ? The silver ones work a little bit better than the black ones.

Re: 7.3: speetest doesn't work

Martin Schröder wrote: > Am So., 16. Apr. 2023 um 15:49 Uhr schrieb Stuart Henderson > : > > At this point I think you might be better served by dumping the > > package list, uninstalling them all, and reinstalling with 022 umask. > > > > Borrowing the old instructions from the 5.5 time_t flag da

Re: ixl not seeing SFP+ modules ?

Welcome to the world of vendor optic locking. Laura Smith wrote: > I have an ixl card (ixl0 at pci1 dev 0 function 0 "Intel X710 SFP+" rev 0x02: > port 3, FW 6.0.48442 API 1.7, msix, 4 queues) on OpenBSD that doesn't seem to > be seeing any of my SFP+ modules. > > > The modules are all MSA c

Re: dns priority from different network connections - or disabling?

Stuart Henderson wrote: > There is a complication in Kaya's case because if my handle on the > config is correct, there are likely to be nameservers learned from > both DHCP (in one rdomain) and PPPOE (in another), but they won't > work on the opposite connection. > > In this situation I would d

Re: dns priority from different network connections - or disabling?

Kaya Saman wrote: > Like I mentioned previously, it may have had something to do with me > running: sh /etc/netstart pppoe0 a few times after the system had been > booted. I was at the time trying to make use of 2 isp's and route > accordingly per subnet or even ip address. It might have even bee

Re: dns priority from different network connections - or disabling?

Stuart Henderson wrote: > On 2023-04-11, Theo de Raadt wrote: > > Kaya Saman wrote: > > > >> This somehow is overriding my resolv.conf file; another words the > >> information is *not* being used from resolv.conf and is instead being > >> used from

Re: Setuid changed on /sbin/ping after installing patch 022_resolv

the man page says: o Check for changes in setuid/setgid files and devices. Those setuid binaries did change. They were replaced. The sizes are different also. That's because there is a libc.a change and these are static binaries. the security script is not not just reporting whether set

Re: dns priority from different network connections - or disabling?

Kaya Saman wrote: > This somehow is overriding my resolv.conf file; another words the > information is *not* being used from resolv.conf and is instead being > used from the ipcp negotiation as part of the pppoe kernel module. then the pppoe code should submit a RTM_PROPOSAL route message ...

OpenBSD 7.3 released

- OpenBSD 7.3 RELEASED - April 10, 2023. We are pleased to announce the official release of OpenBSD 7.3. This is our 54th release. We remain proud of OpenBSD's record of mor

Re: dhclient/autoconf in singleuser vs. ramdisk kernel

Erling Westenvik wrote: > Hi, > > When booting bsd.rd I can do: > > # ifconfig inet autoconf > > and it will negotiate a working IP and gateway setup from my DHCP > server. > > However, when booting 'boot -s' (singleuser) the only way to have a > working IP and gateway setup is to specify it

Re: Questions about man gcc-local

"Stanislav Syekirin" wrote: > > The people on clang architectures need to know that the gcc systems > > are > > different, that different decisions have been made. Education is way > > more important than consistancy. > > I'm all for being educated about differences between architectures. I > thi

Re: Questions about man gcc-local

And I think you are INCORRECT. The #1 reason to make a manual page visible is for learning. The people on clang architectures need to know that the gcc systems are different, that different decisions have been made. Education is way more important than consistancy. This manual page is not hurti

Re: Questions about man gcc-local

"Stanislav Syekirin" wrote: > On Do, 2 Mär 2023 22:22:51 - (UTC) > Stuart Henderson wrote: > > Archs which still use gcc in base do have the gcc(1) manual, >e.g. >sparc64 > > > > Thanks for the answer. However, > https://man.openbsd.org/OpenBSD-7.2/sparc64/gcc is empty as well. I, > s

Re: Authentication in OpenIKED

Tobias Heider wrote: > On Wed, Mar 01, 2023 at 01:38:24PM +, Stuart Henderson wrote: > > On 2023/03/01 14:21, Tobias Heider wrote: > > > On Wed, Mar 01, 2023 at 09:24:50AM -, Stuart Henderson wrote: > > > > On 2023-03-01, J Doe wrote: > > > > > Hello, > > > > > > > > > > I have a questio

Re: How to produce statically linked sshd binary

Ashlen wrote: > To sum it all up, what you're trying to do is hazardous and likely to end > poorly. That's why it's unsupported. Sorry, that last sentence is incorrect. our source tree contains what we want, and i the simplest way possible for our requirements. Whatever reconfiguration the r

Re: How to produce statically linked sshd binary

Oh my god, don't do that! Your program will have a single aspect of randomness. If you leave it as it is, it has 6 .so's with independent random placement, and 4 of them (sshd, ld.so, libc.so, and libcrypto.so) are randomly linked at boot. These independent randomness are an incomplete but stron

Re: Disabling .core file generation

You can do the same to avoid flat tires on my car -- just remove the rubber. No more flats! Jonathan Thornburg wrote: > Another "low-tech" way of disabling .core file generation is to create > the core file yourself, as a symlink to /dev/null: > > % ls -lFgd $HOME/*.core > lrwxr-xr-x 1 jonath

Re: OpenBSD, PHP lifecycle and PHP 8.1 broken compatibility

We would be happy to give you a refund if you are not happy. Daniele Bonini wrote: > > > Stuart Henderson wrote: > > > You're probably looking at the wrong OS then. > > OpenBSD takes in my game *portability* at any level: > I do backups of my system in 12min.. and I can put it almost on >

Re: crontab and /usr/local/{,s}bin

Todd C. Miller wrote: > The default root crontab on OpenBSD sets a more limited PATH: > > PATH=/bin:/sbin:/usr/bin:/usr/sbin > > Perhaps that is what you are talking about? We might want to > consider removing PATH from root's crontab and just use the value > from login.conf. The reason i

Re: hw.ncpuonline

Janne Johansson wrote: > Den ons 1 feb. 2023 kl 03:08 skrev Justin Muir : > > I've got an AMD A10 with 4 cores and only 2 are online. I'm not sure how to > > enable the other 2. > > > > hw.ncpufound=4 btw > > Any ideas out there? > > OpenBSD disables hyperthreading (or symmetric multithreading,

Re: ioctl BIOCVERSION command causes SIGABRT after pledge(2) with all promises from the manpage

lroy hills wrote: > Thanks for the info. Does that mean there are some functions that aren't > covered by any of the available promises? If so I guess this ioctl() might be > an example. Intentionally. > I'm not actually trying to pledge everything - that was just me trying to find > out what

Re: ioctl BIOCVERSION command causes SIGABRT after pledge(2) with all promises from the manpage

pledge("everything", NULL) is not the same as not calling pledge. roy hills wrote: > I'm using pledge(2) to harden an application on OpenBSD, but cannot find > a promise that will allow it to run. Even after adding all the promises > listed in the pledge manpage (apart from "error") it still fa

Re: Max number of NICs

Łukasz Moskała wrote: > Dnia 23 stycznia 2023 23:54:21 CET, Lars Bonnesen > napisał/a: > >How many physical NICs can you add to an OpenBSD host (vmx) > > > >I am asking because I am running an OpenBSD on a VMware host but apparently > >OpenBSD can only see 8 of them. > > > >Can I raise the limi

Re: Issue with acpi0 on Intel NUC11TNHi3

ent > a way of > dynamically masking troublesome ones on specific platforms like these NUC or > similar > devices? > > Cheers > > On Thu, 19 Jan 2023, 06:51 Theo de Raadt, wrote: > > Remco wrote: > > > On 1/16/23 03:01, Bradley Latus wrote: >

Re: Issue with acpi0 on Intel NUC11TNHi3

Remco wrote: > On 1/16/23 03:01, Bradley Latus wrote: > > Hello Stuart, > > I noticed that someone else had a similar issue on the openbsd-bugs > > list.. > > https://marc.info/?l=openbsd-bugs&m=166497715729842&w=2 > > I was able to apply a patch I found from another user (Joe Miller) > > which m

Re: init: single user shell terminated, restarting

kettenis figured out what the problem is. There might be a solution tomorrow. Johan Huldtgren wrote: > hello, > > On 2023-01-16 10:23, Stuart Henderson wrote: > > On 2023-01-15, Barry Grumbine wrote: > > > In case someone else runs in to this, and bothers to check misc@ > > > > > > In this c

Re: init: single user shell terminated, restarting

And I just tried a machine with NX disabled. It works. Barry Grumbine wrote: e> In case someone else runs in to this, and bothers to check misc@ > > In this commit: > https://marc.info/?l=openbsd-cvs&m=167283731726983&w=2 > > --execute-only (aka NX bit, aka XD bit, aka Data Execution Preventi

Re: init: single user shell terminated, restarting

A commit to riscv64 and arm64 does not affect amd64 in the way you describe. Your theory about it being that commit is wrong. Barry Grumbine wrote: > In case someone else runs in to this, and bothers to check misc@ > > In this commit: > https://marc.info/?l=openbsd-cvs&m=167283731726983&w=2 >

Re: sndio and bit perfect playback

Geoff Steckel wrote: > Other OSes allow unprivileged users to access raw audio devices > and bypass any system processing. > Users should be given that option. But they are given that option; they can run other systems. Other OSes allow unprivileged users to run telnetd and bypass modern securi

Re: Is CRONTAB(5) random really random ?

Theo Buehler wrote: > On Thu, Jan 05, 2023 at 06:15:43PM +0100, Rachel Roch wrote: > > According to the docs : > > > > > A random value (within the legal range) may be obtained by usingthe > > > ‘~’ character in a field. > > The random numbers are drawn once and then repeated regularly. Th

Re: Question about temporary pf(4) ruleset in: /etc/rc

J Doe wrote: > Hi, > > I have a question regarding the temporary pf(4) ruleset that is found > in: /etc/rc. > > A couple of lines below: "# Set initial temporary pf rule set." there > appears to be two lines for DHCPv4 traffic: > > pass out inet proto udp from any port bootpc to any port b

Re: [RFC v1 2/2] Use arc4random_range() instead of arc4random_uniform() when appropriate

Your proposal is junk. Not going to happen. >From owner-misc+M195331=deraadt=cvs.openbsd@openbsd.org Sat Dec 31 >11:19:48 2022 >Delivered-To: dera...@cvs.openbsd.org >DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; s=selector1; bh=/JVUSEqVR3 > /k8gFGm9V8QDDc/a7fMpZ1djd/RE+G3ho=; h=

Re: Some NFS clients won't mount

vitmau...@gmail.com wrote: > I did some tests and I'm now pretty sure the problem revolves around > the point naddy made: Kodi and VLC try to mount my NFS share through a > non-privileged port. As both Kodi and VLC use the same NFS client > library (libnfs), I tried to find out a bit more about h

Re: dhclient -d run0

Geoff Steckel wrote: > My objection to dhcpleased is not whether the program does useful things. > I'm sure it does "what it should". > > Adding this sentence to the dhcpleased man page would make > it clear what it does beyond leasing the IP: > > "By default, it replaces the DNS server in /etc

Re: dhclient -d run0

we were the last operating system to have dynamic resolv.conf management and then the whiners who had left the operating systems with dynamic resolv.conf and come here for static resolv.conf became upset. i am very sorry they got upset. not going to change it. after 2-3 years of small changes, th

Re: scp doesn't work properly when the file name begins with a dash h

This is a Unix 101 question. For all programs which use getopt(3) to parse arguments (which is nearly 100% of programs because POSIX mandates the behaviour), the options can be seperated from the non-options by using "--". So you would use the following; ie. scp [-options] -- -hh-6CP0_3Xf9nreW4

Re: vmm(4)/vmd(8) trouble: vmd exits with proc_dispatch msgbuf_write error

> vmd: getgrnam > parent: proc_dispatch: msgbuf_write: Broken pipe Your /etc/group file is out of date. And this code in vm_agentx.c is very unreasonable: /* * Make sure we can connect to /var/agentx/master with the correct * group permissions. */ if ((

Re: ex/vi 100% CPU when STDIN_FILENO set to O_NONBLOCK

Claudio Jeker wrote: > I think this is the wrong way around. The callers need to be fixed to pass > a blocking stdin to programs since that is what every unix utility > expects. What you propose it to fix every unix utility to have such a check > at the start of main. Sorry but no. That's right.

Re: acpi0: state S3 unavailable on lenovo L13

Mare Dedeu wrote: > This is a lenovo L13 gen 3. Has the vendor dropped support for that or is > this something related to uefi, which I do not understand at all? Some machines have a BIOS option called "Linux Suspend", which re-enables the S3 code in ACPI / SMI. Other machines don't. There is

Re: ifconfig vs lladdr

Marc Espie wrote: > Maybe I'm stupid, but the way we proceeded with disks was with > making euids integral part of mount(8). > > Why not do the same with lladdr and ifconfig (and lower parts) > (possibly with an option, though 60a44ce81465 is rather recognizable > as a MAC) ? lower parts? the

Re: less prints superfluous characters with --no-init

Jason McIntyre wrote: > On Wed, Nov 23, 2022 at 11:31:57PM +1059, Reuben mac Saoidhea wrote: > > i hate to harp on about it, but: > > > > in case you happen to discover the `command' command, > > beware that its description in sh(1) is wrong. > > > > sh(1) says: > > command -vV command args

Re: Manpage of strlcat/strlcpy

Eric Sanchis wrote: > Dear Maintainer, > > I have two remarks about: > https://man.openbsd.org/OpenBSD-5.9/strlcpy.3 > > (1) In the section “Return Values”, it is written: > n = strlcpy(dst, src, len); > n = snprintf(dst, len, "%s", src); > But len should not be a length but a size. Thi

Re: Locking network card configuration

Theo de Raadt wrote: > Thomas Bohl wrote: > > > Hello, > > > > > I suppose there is some argument that we should support hostname.MAC > > > files > > > > Maybe a function in netstart right before vifscreate could be enough > > to ach

Re: Locking network card configuration

Thomas Bohl wrote: > Hello, > > > I suppose there is some argument that we should support hostname.MAC > > files > > Maybe a function in netstart right before vifscreate could be enough > to achieve this? I creates this diff, against stable for now though, > as a test. > > Create a /etc/hostna

Re: UNIX manual volume 2 (Supplementary Documents) Re: less prints superfluous characters with --no-init

Reuben mac Saoidhea wrote: > > [what about ssh?] > > man(1) should document commands you might from the shell. Oh, so man(1) should cover *ANY* shell thing. # man if if(3p) Perl Programmers Reference Guide if(3p) NAME if - "use" a Perl module if a cond

Re: less prints superfluous characters with --no-init

Forgive me, I don't spend my life using ksh esoterica But I do use ssh all the time man AddKeysToAgent man AddressFamily man BatchMode man BindAddress man CanonicalDomains man CanonicalizeFallbackLocal man CanonicalizeHostname man CanonicalizeMaxDots man CanonicalizePermittedCNAMEs man CASignatur

Re: Locking network card configuration

Steve Litt wrote: > Vitaliy Makkoveev said on Mon, 21 Nov 2022 03:48:21 +0300 > > >> On 20 Nov 2022, at 18:06, Odd Martin Baanrud > >> wrote: > >> > >> Hello, > >> > >> I have a Raspberry Pi 4 with 2 USB NIC’s attached. > >> One via USB3 (ure0), and the other via USB2 (ure1). > >> Since the

Re: slaacd, MTUs, and pledge

Stefan R. Filipek wrote: > > they could change the mtu on an interface. > > No. I'm only proposing the ability to GET the MTU (SIOCG...). > > Setting the MTU (SIOCSIFMTU) is currently in "wroute", which slaacd > already has pledged. OK. But it is still more kernel code reached.

Re: slaacd, MTUs, and pledge

do this all the time. I expect others to do this. Theo de Raadt wrote: > sorry you've missed the point entire, and didn't answer either question. > > the shortlist of affected programs is: > > dhclient dhcpleased iked route > slaacd

Re: slaacd, MTUs, and pledge

rst implied question. > > What is the danger of *getting* (not setting) the current MTU and/or > hardware maximum MTU value? I certainly hope there is none, as that is > something externally discernable. > > > On Sun, Nov 20, 2022 at 5:38 PM Theo de Raadt wrote: > > > >

Re: slaacd, MTUs, and pledge

> 1. Does it make sense to add SIOCGIFHARDMTU (and maybe SIOCGIFMTU too) > to pledge("route")? No, I don't think so. Set it ahead of time. (In particular, you've failed to ask the two required questions: If this is capability is added to all programs that use "route", what is that list of progr

Re: less prints superfluous characters with --no-init

Reuben mac Saoidhea wrote: > > It is a builtin, so it is documented inside ksh. > > i think the 4.3BSD manual allowed for example `man while' for `man sh'? I rather doubt that, and this is not 4.3BSD

Re: less prints superfluous characters with --no-init

indivC wrote: > I can't say I understand the technical differences > between 'type' and which(1). > However, I will mention these points: > > 1. There is no man page for 'type', but there is for which(1) It is a builtin, so it is documented inside ksh.

Re: cdn.openbsd.org not synced

Pierre-Edouard wrote: User-Agent: Mozilla/5.0 (X11; OpenBSD amd64; rv:102.0) Gecko/20100101 > Hi, > I'm using cdn.openbsd.org as installurl, and last update of packages > is stuck to 30th Oct. > > Switching back to ftp.openbsd.org solves the issue. > Is there an issue with the sync or did the c

Re: Thinkpad T14 AMD Gen 3

Jonathan Gray wrote: > > More importantly the wifi card (Qualcomm QCNFA765) is not recognized. Is > > there any chance that it might become supported in the reasonable future or > > should I try to get a different wifi card (and in such a case, which one)? > > Any advice? Thank you. > > It is

Re: VMware Tools driver to advertise OS as 'FreeBSD 64-bit' OS, not 32-bit version

Kalabic S, wrote: > To be more precise, I wanted to say sticking with FreeBSD means > sticking with whatever behavior VMware will keep consistent and > support in the future. For "Others" option I don't think they care and > is more probable to vary. I cannot tell the difference. I think you ar

Re: VMware Tools driver to advertise OS as 'FreeBSD 64-bit' OS, not 32-bit version

Kalabic S. wrote: > I have an OpenBSD VM running without issues as a guest with 'FreeBSD' > option for years and serving as an Internet router for home > network. IMO, it's pretty good chice. I want to say more. You really have no idea what you are talking about. The difference between 7.1 and

Re: VMware Tools driver to advertise OS as 'FreeBSD 64-bit' OS, not 32-bit version

Kalabic S. wrote: > Also, OpenBSD really is part of BSD family. That is such a load of crap. You have absolutely no idea what vmware is doing behind the scenes based upon that string. Obviously, it is doing stuff. But you want to say "oh family". Stop it.

Re: sysupdate and space check

Luke A. Call wrote: > On 2022-10-26 11:57:23-, Stuart Henderson > wrote: > > On 2022-10-24, Peter Fraser wrote: > > > I make a stupid mistake; I didn't check partition sizes before doing a > > > sysupgrade. > > > sysupgrade ran out of space or /usr in the middle of the upgrade. > > > I kn

OpenBSD 7.2 released: Oct 20, 2022

- OpenBSD 7.2 RELEASED - October 20, 2022. We are pleased to announce the official release of OpenBSD 7.2. This is our 53rd release. We remain proud of OpenBSD's record of

Re: Supposed way to have a login without password but still able to login via ssh?

A Tammy wrote: > On 9/26/22 16:03, Antoine Jacoutot wrote: > > On Mon, Sep 26, 2022 at 09:58:13PM +0200, Florian Obser wrote: > >> Set the password hash to 13 * using vipw(8) or usermod -p. > >> > >> I wonder if we document that somewhere. > > We do, in passwd(5). > > > > Similarly, login account

Re: Supposed way to have a login without password but still able to login via ssh?

Antoine Jacoutot wrote: > On Mon, Sep 26, 2022 at 09:58:13PM +0200, Florian Obser wrote: > > Set the password hash to 13 * using vipw(8) or usermod -p. > > > > I wonder if we document that somewhere. > > We do, in passwd(5). Way too hard to find. Easier to start a thread.

Re: Is there a public to-do list for the project as a whole?

unix wrote: > As a new contributor, I wonder, is there a unified list of things > that should be fixed/(re)written/ported? > I read the FAQ and surfed around the CVS sources, but can't find > anything that resembles what I imagine this to be. > So far I noticed several things people tend to compl

Re: Freeze/hang on arm64 when pushing smsc/usb

John Verne wrote: > So, tentatively, this is either fixed because it was never a problem, > or the recent usb or dwc changes (which are too large and unfamiliar > for me to make sense of) corrected a corner case with USB ethernet > devices. well, that was the purpose of mglocker's extremely larg

Re: whither struct __kvm?

>The first declaration in is: > > typedef struct __kvm kvm_t; > >and yet 'grep -r __kvm /usr/include /sys' returns only the above >line. What am I missing? Uhm ./bin/ps/nlist.c:extern kvm_t *kd; ./bin/ps/print.c:extern kvm_t *kd; ./bin/ps/ps.c:kvm_t *kd; etc etc etc etc It is the published AP

Re: dump(8) is slow

Tomasz Rola wrote: > Ok. But what is a theoretic speed limit for this device? > > If I do something like this on my laptop w/ssd: > > # date +'%s'; dd if=/dev/sda2 of=/dev/null bs=1024 count=$((512*1024)); > date +'%s' > 1660089697 > 521565184 bytes (522 MB, 497 MiB) copied, 2 s, 261 MB/s >

Re: usbhidaction(1) is unvel(2)ed too strictly to run programs.

I suspect it should unveil("/", "x") It is better than not doing anything.

Re: Freeze on OpenBSD 7.1

Zé Loff wrote: > On Tue, Jul 19, 2022 at 03:27:53PM +0200, Nicolas wrote: > > Hello Stuart, > > > > I haven't seen your messages immediately, it was incorrectly filtered by my > > email client. > > > > Here are the results of the commands. I hope my email client won't render it > > useless ! >

Re: Multiple OpenBSD mirror issues for i386.

Stuart Henderson wrote: > On 2022-07-17, Brian Durant wrote: > > I am trying to download and install the i386 verion of OpenBSD 7.1 to an > > IBM/Lenovo T60. > > > > https://cdn.openbsd.org/pub/OpenBSD/7.1/i386/install71.img (and .iso) > > give me the following message: > > > > Error 503 Backe

Re: dhcpleased and ifstated

Christer Solskogen wrote: > On Thu, Jul 14, 2022 at 1:23 AM Theo de Raadt wrote: > > > Is this specific to a particular network driver? > > > > > Probably not, but I can't be sure as I haven't tried all of them but it > happens on both re (APU1) and

Re: dhcpleased and ifstated

Christer Solskogen wrote: > This happens every time with dhcpleased and my ISP and it didn't with > dhclient, and what I do see now, that I didn't see with dhclient, > is that during the negotiation ifconfig says that the interface has > "status: no carrier" for 2-3 seconds. Which explains why I

Re: how to completely reset all networking configuration without rebooting?

Jonathan Thornburg wrote: > In , > Stuart Henderson wrote > > netstart does nothing to clear existing configuration. It wouldn't make > > sense to do this for joinlist without also e.g. clearing IP addresses > > from interfaces as needed,

Re: rpcbind security

I am certain you can find it yourself. Gustavo Rios wrote: > may some here points me where rpcbind is implemented ? I would like to see > the C code > of it. > Thanks. > > Em sex., 17 de jun. de 2022 às 00:20, Theo de Raadt > escreveu: > > Gustavo Ri

Re: rpcbind security

Gustavo Rios wrote: > Hi folks! > > How does openbsd rpcbind prevent ordinary users to unset a given rpc port > mapping registered by, for instance, the root user ? Poorly. It will only allow local root (who request upon a reserved port) to touch ports which are reserved (< 1024), and 2049 is

Re: pkg_add in -current

Stuart Henderson wrote: > On 2022/06/04 15:23, Theo de Raadt wrote: > > Stuart Henderson wrote: > > > > > If you are running -current and have not updated base recently, you > > > may run inTO "pkg_add: Unknown option: always-update ". > >

Re: reminder: ports snapshots go with base snapshots

That Subject is incorrect. Unless pkg_add is going to start doing a stat() of /bin/cat and demanding you run sysupgrade INCLUDING THE REBOOT if the file is more than a day old? or is it two days? Or is it a week? What has happened for years now is that if you attempt to upgrade an old base sn

Re: pkg_add in -current

Stuart Henderson wrote: > If you are running -current and have not updated base recently, you > may run inTO "pkg_add: Unknown option: always-update ". > To fix it, just update to a newer base snapshot. What happened is that a developer made a change to the pkg tools which creates completely i

Re: happy birthday theo

Thank you all, but I don't understand why this is so exciting. I mean, it isn't a release day! stati...@cryptolab.net wrote: > I will join in as well: Happy birthday, Theo! > And thank you for all the good work on this sublime OS... > > Cheers, > Oddmund > > > Le 19/05/2022 à 16:33, Amit Ku

Re: Problems with bsd.rd upgrade and FDE.

Nicola Dell'Uomo wrote: > From a couple of weeks I've been noticing these problems when I upgrade from > bsd.rd: > > - after installing all verified .tgz files and making device nodes & > fw_update my system reports as follows: 'Failed to install bootblocks. You > will not be able to boot Ope

Re: Historical Reasons For Default NAT Source Port Modification

Elias Carter wrote: > I have found that preserving the source port if possible works better > out of the box when hosting publicly accessable UDP applications > within a private network. Preserving the source port also works better for attacking services... I don't see anything strange in what

Re: Wireguard IP packets fragmentation issue

.Bd -literal -offset indent -inet 0.0.0.0 255.255.255.255 NONE \e +inet 0.0.0.0 255.255.255.255 0.0.0.1 \e pppoedev em0 authproto pap \e authname 'testcaller' authkey 'donttell' up -dest 0.0.0.1 inet6 eui64 I don't think this is the right way to go. Yes, on p2p links the broadca

Re: Cron running at 99% CPU for seemingly no reason

This is a bug in a diff I put into snapshots.

Re: hw.perfpolicy behavior on desktop/server

f.holop wrote: > Theo de Raadt - Wed, 11 May 2022 at 18:08:53 > > f.holop wrote: > > > > > Stuart Henderson - Mon, 09 May 2022 at 17:17:57 > > > > Currently, you can either set it manually to low speed > > > > (hw.perfpolicy=manual, hw.setperf=0

<    1   2   3   4   5   6   7   8   9   10   >