Re: FreeBSD-EN-21:07.caroot.asc question
On Wed, Feb 24, 2021 at 7:21 PM Herbert J. Skuhra wrote: > > On Wed, Feb 24, 2021 at 06:42:17PM -0600, Greg Balfour wrote: > > After installing the security and errata patches that came out today > > on my 12.2-RELEASE system, I see the following during the "make > > installworld" step. Is this the expected output after removing > > certificates from the root certificate bundle or did something go > > wrong? ... > > unable to load certificate > > 34371108864:error:0909006C:PEM routines:get_name:no start > > line:/usr/src/crypto/openssl/crypto/pem/pem_lib.c:745:Expecting: > > TRUSTED CERTIFICATE > > Error: /usr/share/certs/trusted/GeoTrust_Global_CA.pem ... > Patch does not remove empty files unless "-E" switch is used. > > The pem files above are propably empty and you have to remove them > manually (both in /usr/src and /usr/share). > > Why are you not using svn/git to update /usr/src? > > -- > Herbert Applying the patch with the -E option does fix the problem. Thanks. ___ freebsd-stable@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "freebsd-stable-unsubscr...@freebsd.org"
FreeBSD-EN-21:07.caroot.asc question
After installing the security and errata patches that came out today on my 12.2-RELEASE system, I see the following during the "make installworld" step. Is this the expected output after removing certificates from the root certificate bundle or did something go wrong? [...] -- >>> Installing everything completed on Wed Feb 24 18:16:59 CST 2021 -- Scanning /usr/share/certs/blacklisted for certificates... Scanning /usr/share/certs/trusted for certificates... unable to load certificate 34371108864:error:0909006C:PEM routines:get_name:no start line:/usr/src/crypto/openssl/crypto/pem/pem_lib.c:745:Expecting: TRUSTED CERTIFICATE Error: /usr/share/certs/trusted/GeoTrust_Global_CA.pem unable to load certificate 34371108864:error:0909006C:PEM routines:get_name:no start line:/usr/src/crypto/openssl/crypto/pem/pem_lib.c:745:Expecting: TRUSTED CERTIFICATE Error: /usr/share/certs/trusted/GeoTrust_Primary_Certification_Authority.pem unable to load certificate 34371108864:error:0909006C:PEM routines:get_name:no start line:/usr/src/crypto/openssl/crypto/pem/pem_lib.c:745:Expecting: TRUSTED CERTIFICATE Error: /usr/share/certs/trusted/GeoTrust_Primary_Certification_Authority_-_G3.pem unable to load certificate 34371108864:error:0909006C:PEM routines:get_name:no start line:/usr/src/crypto/openssl/crypto/pem/pem_lib.c:745:Expecting: TRUSTED CERTIFICATE Error: /usr/share/certs/trusted/GeoTrust_Universal_CA.pem unable to load certificate 34371108864:error:0909006C:PEM routines:get_name:no start line:/usr/src/crypto/openssl/crypto/pem/pem_lib.c:745:Expecting: TRUSTED CERTIFICATE Error: /usr/share/certs/trusted/GeoTrust_Universal_CA_2.pem unable to load certificate 34371108864:error:0909006C:PEM routines:get_name:no start line:/usr/src/crypto/openssl/crypto/pem/pem_lib.c:745:Expecting: TRUSTED CERTIFICATE Error: /usr/share/certs/trusted/VeriSign_Class_3_Public_Primary_Certification_Authority_-_G4.pem unable to load certificate 34371108864:error:0909006C:PEM routines:get_name:no start line:/usr/src/crypto/openssl/crypto/pem/pem_lib.c:745:Expecting: TRUSTED CERTIFICATE Error: /usr/share/certs/trusted/VeriSign_Class_3_Public_Primary_Certification_Authority_-_G5.pem unable to load certificate 34371108864:error:0909006C:PEM routines:get_name:no start line:/usr/src/crypto/openssl/crypto/pem/pem_lib.c:745:Expecting: TRUSTED CERTIFICATE Error: /usr/share/certs/trusted/thawte_Primary_Root_CA.pem unable to load certificate 34371108864:error:0909006C:PEM routines:get_name:no start line:/usr/src/crypto/openssl/crypto/pem/pem_lib.c:745:Expecting: TRUSTED CERTIFICATE Error: /usr/share/certs/trusted/thawte_Primary_Root_CA_-_G2.pem unable to load certificate 34371108864:error:0909006C:PEM routines:get_name:no start line:/usr/src/crypto/openssl/crypto/pem/pem_lib.c:745:Expecting: TRUSTED CERTIFICATE Error: /usr/share/certs/trusted/thawte_Primary_Root_CA_-_G3.pem ___ freebsd-stable@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "freebsd-stable-unsubscr...@freebsd.org"
Re: 12.2-RELEASE and ctwm
On Mon, Dec 14, 2020 at 8:33 AM Greg Balfour wrote: > > I just upgraded a machine from 11.4-RELEASE to 12.2-RELEASE. Using > the same version of ctwm (4.0.3,1 installed from packages) with the > same .ctwmrc, things behave differently and I don't know why. > > My first problem is the middle button on my Logitech TrackMan Marble > PS/2 mouse is no longer recognized by ctwm. > > Button2 = : root : f.menu "windowops" > > This worked under 11.4-RELEASE but doesn't any more. Using Button1 > or Button3 works fine. However the middle button does work within > an xterm to do a paste. > > Secondly, these two lines from .ctwmrc don't work until I restart ctwm > with either a kill -HUP or by calling f.restart from a ctwm menu. > > "Right" = c : all : f.nextworkspace > "Left" = c : all : f.prevworkspace > > After restarting ctwm these key bindings work. > > This machine has integrated Intel(R) HD Graphics 2000 and I'm using > the xf86-video-intel driver package along with building the > graphics/drm-kmod port. > > Can someone recommend some things to look at to resolve these issues? So on a whim I built a new kernel commenting out these lines: #optionsEVDEV_SUPPORT # evdev support in legacy drivers #device evdev # input event device support #device uinput # install /dev/uinput cdev Which also necessitated commenting out the following in /etc/rc.conf: #kld_list="/boot/modules/drm.ko /boot/modules/i915kms.ko" And after rebooting all the issues I mentioned above went away. So I guess I have an evdev problem. But I still don't know what to do about it. ___ freebsd-stable@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "freebsd-stable-unsubscr...@freebsd.org"
12.2-RELEASE and ctwm
I just upgraded a machine from 11.4-RELEASE to 12.2-RELEASE. Using the same version of ctwm (4.0.3,1 installed from packages) with the same .ctwmrc, things behave differently and I don't know why. My first problem is the middle button on my Logitech TrackMan Marble PS/2 mouse is no longer recognized by ctwm. Button2 = : root : f.menu "windowops" This worked under 11.4-RELEASE but doesn't any more. Using Button1 or Button3 works fine. However the middle button does work within an xterm to do a paste. Secondly, these two lines from .ctwmrc don't work until I restart ctwm with either a kill -HUP or by calling f.restart from a ctwm menu. "Right" = c : all : f.nextworkspace "Left" = c : all : f.prevworkspace After restarting ctwm these key bindings work. This machine has integrated Intel(R) HD Graphics 2000 and I'm using the xf86-video-intel driver package along with building the graphics/drm-kmod port. Can someone recommend some things to look at to resolve these issues? ___ freebsd-stable@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "freebsd-stable-unsubscr...@freebsd.org"
FreeBSD 12.2-BETA1 i386
Since this won't boot on my i586 I'm assuming it was compiled for i686? ___ freebsd-stable@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "freebsd-stable-unsubscr...@freebsd.org"
11.4-RELEASE i386 won't boot
I have an ancient Pentium machine(*) that I've been keeping up to date using freebsd-update. It has run everything fine up through 11.3-RELEASE-p11. However it does not like the 11.4-RELEASE kernel. /boot/kernel/kernel text=0x128f22b data=0xe9748+0x2890f4 syms=[0x4+0xea3e0+0x4+0x1797e9] /boot/entropy size=0x1000 Hit [Enter] to boot immediately, or any other key for command prompt. Booting [/boot/kernel/kernel] in 9 seconds... Type '?' for a list of commands, 'help' for more detailed help. OK set boot_verbose OK boot Booting... \ int=0006 err= efl=00010002 eip=c0ba6fa2 eax=0001 ebx=0201ec00 ecx= edx=c19ef18c esi=c19eed34 edi=c19eeaa0 ebp=c201fd08 esp=c19ee704 cs=0008 ds=0010 es=0010fs=0010 gs=0010 ss=0010 cs:eip=0f 45 d1 c1 e0 04 89 56-20 66 89 46 26 a1 d0 2c 95 c1 89 46 28 5e 5d c3-90 90 90 90 90 90 55 89 ss:esp=00 00 00 00 00 00 00 00-00 00 00 00 0c e7 9e c1 00 00 00 00 00 00 00 00-00 00 00 00 00 00 00 00 BTX halted The old 11.3 kernel still boots fine. /boot/kernel.old/kernel text=0x12941cb data=0xe8e74+0x2890ec syms=[0x4+0xe9c90+0x4+0x178d4c] OK boot -s Booting... Copyright (c) 1992-2019 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All rights reserved. FreeBSD is a registered trademark of The FreeBSD Foundation. FreeBSD 11.3-RELEASE-p11 #0: Wed Jul 8 05:39:37 UTC 2020 r...@amd64-builder.daemonology.net:/usr/obj/usr/src/sys/GENERIC i386 FreeBSD clang version 8.0.0 (tags/RELEASE_800/final 356365) (based on LLVM 8.0.0) VT(vga): resolution 640x480 CPU: Pentium/P55C (233.03-MHz 586-class CPU) Origin="GenuineIntel" Id=0x543 Family=0x5 Model=0x4 Stepping=3 Features=0x8001bf real memory = 133169152 (127 MB) avail memory = 98197504 (93 MB) ... The kernel file is good and there's nothing in loader.conf that should cause a problem. # md5 -r /boot/kernel/kernel 40f1065ab4aff80489b456386e9721c0 /boot/kernel/kernel # cat /boot/loader.conf console="comconsole vidconsole" hint.acpi.0.disabled=1 # removing this doesn't help beastie_disable="YES" Any suggestions? (*) I occasionally have to pull data off 5-1/4 inch floppies and this machine is equipped to do that. ___ freebsd-stable@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "freebsd-stable-unsubscr...@freebsd.org"
11.4-RELEASE make delete-old
On a fresh install of 11.4-RELEASE, rebuilding the operating system results in several files being deleted during the "make delete-old" step. This surprised me. I wouldn't have expected this on a rebuild of a new install without any updates applied. See below, but for example /usr/bin/llvm-ar is present after the initial install but is then removed by the "make delete-old" step. Is this to be expected? Is the correct action to respond y when prompted about the files? root@test:/usr/src # make -j 4 buildworld buildkernel ... root@test:/usr/src # make installkernel ... root@test:/usr/src # make installworld ... root@test:/usr/src # make delete-old >>> Removing old files (only deletes safe to delete libs) remove /usr/bin/llvm-ar? y remove /usr/lib/debug/usr/bin/llvm-ar.debug? y remove /usr/bin/llvm-nm? y remove /usr/lib/debug/usr/bin/llvm-nm.debug? y remove /usr/bin/llvm-ranlib? y remove /usr/share/man/man1/llvm-ar.1.gz? y remove /usr/share/man/man1/llvm-nm.1.gz? y remove /usr/share/man/man1/llvm-symbolizer.1.gz? y >>> Old files removed >>> Removing old directories >>> Old directories removed To remove old libraries run 'make delete-old-libs'. ___ freebsd-stable@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "freebsd-stable-unsubscr...@freebsd.org"
Re: Firefox pkg for 11.4-RELEASE amd64
After looking at this some more I see the problem.
http://pkg.freebsd.org/FreeBSD:11:amd64/release_4/All/
is missing firefox. Both
http://pkg.freebsd.org/FreeBSD:11:amd64/latest/All/
and
http://pkg.freebsd.org/FreeBSD:11:amd64/quarterly/All/
have it. I had created a /usr/local/etc/pkg/repos/FreeBSD.conf
with the url set to "pkg+http://pkg.FreeBSD.org/${ABI}/release_4;
so pkg wasn't seeing it. I do this with new releases since I
don't want to track latest or quarterly packages. (It makes
adding packages at a much later date easier.)
Anyone know why firefox didn't make it into release_4?
On Wed, Jun 17, 2020 at 4:22 PM Greg Balfour wrote:
>
> I don't see a firefox package for 11.4-RELEASE amd64. There's one
> for i386, but not amd64. Do I have to use firefox-esr for amd64?
> (I'm looking for a prebuilt package, don't want to build the port.)
___
freebsd-stable@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-stable
To unsubscribe, send any mail to "freebsd-stable-unsubscr...@freebsd.org"
Firefox pkg for 11.4-RELEASE amd64
I don't see a firefox package for 11.4-RELEASE amd64. There's one for i386, but not amd64. Do I have to use firefox-esr for amd64? (I'm looking for a prebuilt package, don't want to build the port.) ___ freebsd-stable@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "freebsd-stable-unsubscr...@freebsd.org"
Re: FreeBSD-SA-19:03 source code patch
On Wed, May 15, 2019 at 9:55 PM Greg Balfour wrote: > After applying wpa-11.patch (and the rest of the recent patches) to my > 11.2 machine I'm > having build problems. Looks like a binder directory and associated files > did not get > created. Pilot error? > > # uname -a > FreeBSD freebsd.example.com 11.2-RELEASE FreeBSD 11.2-RELEASE #0: Thu > Jan 3 19:29:29 CST 2019 > r...@freebsd.example.com:/usr/obj/usr/src/sys/GENERIC > amd64 > > --- notify.o --- > cc -target x86_64-unknown-freebsd11.2 --sysroot=/usr/obj/usr/src/tmp > -B/usr/obj/usr/src/tmp/usr/bin -O2 -pipe > -I/usr/src/usr.sbin/wpa/wpa_supplicant -I/usr/src/contrib/wpa//hostapd > -I/usr/src/contrib/wpa//src -I/usr/src/contrib/wpa//src/common > -I/usr/src/contrib/wpa//src/crypto -I/usr/src/contrib/wpa//src/drivers > -I/usr/src/contrib/wpa//src/l2_packet -I/usr/src/contrib/wpa//src/utils > -I/usr/src/contrib/wpa//src/wps -DCONFIG_CTRL_IFACE > -DCONFIG_CTRL_IFACE_UNIX -DNEED_AP_MLME > -DTLS_DEFAULT_CIPHERS=\"DEFAULT:!EXP:!LOW\" -DCONFIG_BACKEND_FILE > -DCONFIG_DEBUG_SYSLOG -DCONFIG_DRIVER_BSD -DCONFIG_DRIVER_NDIS > -DCONFIG_DRIVER_WIRED -DCONFIG_GAS -DCONFIG_HS20 -DCONFIG_IEEE80211R > -DCONFIG_INTERWORKING -DCONFIG_PEERKEY -DCONFIG_PRIVSEP > -DCONFIG_SMARTCARD -DCONFIG_TERMINATE_ONLASTIF -DCONFIG_TLS=openssl > -DCONFIG_WPS -DCONFIG_WPS2 -DCONFIG_WPS_UPNP -DPKCS12_FUNCS -DEAP_GTC > -DEAP_LEAP -DEAP_MD5 -DEAP_MSCHAPv2 -DEAP_OTP -DEAP_PEAP -DEAP_PSK > -DEAP_TLS -DEAP_TTLS -DIEEE8021X_EAPOL -DCONFIG_SHA256 -DEAP_TLS_OPENSSL > -I/usr/src/usr.sbin/wpa/wpa_supplicant -I/usr/src/contrib/wpa//hostapd > -I/usr/src/contrib/wpa//src -I/usr/src/contrib/wpa//src/common > -I/usr/src/contrib/wpa//src/crypto -I/usr/src/contrib/wpa//src/drivers > -I/usr/src/contrib/wpa//src/l2_packet -I/usr/src/contrib/wpa//src/utils > -I/usr/src/contrib/wpa//src/wps -DCONFIG_CTRL_IFACE > -DCONFIG_CTRL_IFACE_UNIX -DNEED_AP_MLME > -DTLS_DEFAULT_CIPHERS=\"DEFAULT:!EXP:!LOW\" -g -MD -MF.depend.notify.o > -MTnotify.o -std=gnu99 -fstack-protector-strong-Qunused-arguments -c > /usr/src/contrib/wpa//wpa_supplicant/notify.c -o notify.o > /usr/src/contrib/wpa//wpa_supplicant/notify.c:16:10: fatal error: > 'binder/binder.h' file not found > #include "binder/binder.h" > ^ > 1 error generated. > *** [notify.o] Error code 1 > > make[5]: stopped in /usr/src/usr.sbin/wpa/wpa_supplicant > 1 error > What what it's worth, I finally figured out the patch had to be applied with: # cd /usr/src # patch -p0 < /path/to/patch ___ freebsd-stable@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "freebsd-stable-unsubscr...@freebsd.org"
FreeBSD-SA-19:03 source code patch
After applying wpa-11.patch (and the rest of the recent patches) to my 11.2 machine I'm having build problems. Looks like a binder directory and associated files did not get created. Pilot error? # uname -a FreeBSD freebsd.example.com 11.2-RELEASE FreeBSD 11.2-RELEASE #0: Thu Jan 3 19:29:29 CST 2019 r...@freebsd.example.com:/usr/obj/usr/src/sys/GENERIC amd64 --- notify.o --- cc -target x86_64-unknown-freebsd11.2 --sysroot=/usr/obj/usr/src/tmp -B/usr/obj/usr/src/tmp/usr/bin -O2 -pipe -I/usr/src/usr.sbin/wpa/wpa_supplicant -I/usr/src/contrib/wpa//hostapd -I/usr/src/contrib/wpa//src -I/usr/src/contrib/wpa//src/common -I/usr/src/contrib/wpa//src/crypto -I/usr/src/contrib/wpa//src/drivers -I/usr/src/contrib/wpa//src/l2_packet -I/usr/src/contrib/wpa//src/utils -I/usr/src/contrib/wpa//src/wps -DCONFIG_CTRL_IFACE -DCONFIG_CTRL_IFACE_UNIX -DNEED_AP_MLME -DTLS_DEFAULT_CIPHERS=\"DEFAULT:!EXP:!LOW\" -DCONFIG_BACKEND_FILE -DCONFIG_DEBUG_SYSLOG -DCONFIG_DRIVER_BSD -DCONFIG_DRIVER_NDIS -DCONFIG_DRIVER_WIRED -DCONFIG_GAS -DCONFIG_HS20 -DCONFIG_IEEE80211R -DCONFIG_INTERWORKING -DCONFIG_PEERKEY -DCONFIG_PRIVSEP -DCONFIG_SMARTCARD -DCONFIG_TERMINATE_ONLASTIF -DCONFIG_TLS=openssl -DCONFIG_WPS -DCONFIG_WPS2 -DCONFIG_WPS_UPNP -DPKCS12_FUNCS -DEAP_GTC -DEAP_LEAP -DEAP_MD5 -DEAP_MSCHAPv2 -DEAP_OTP -DEAP_PEAP -DEAP_PSK -DEAP_TLS -DEAP_TTLS -DIEEE8021X_EAPOL -DCONFIG_SHA256 -DEAP_TLS_OPENSSL -I/usr/src/usr.sbin/wpa/wpa_supplicant -I/usr/src/contrib/wpa//hostapd -I/usr/src/contrib/wpa//src -I/usr/src/contrib/wpa//src/common -I/usr/src/contrib/wpa//src/crypto -I/usr/src/contrib/wpa//src/drivers -I/usr/src/contrib/wpa//src/l2_packet -I/usr/src/contrib/wpa//src/utils -I/usr/src/contrib/wpa//src/wps -DCONFIG_CTRL_IFACE -DCONFIG_CTRL_IFACE_UNIX -DNEED_AP_MLME -DTLS_DEFAULT_CIPHERS=\"DEFAULT:!EXP:!LOW\" -g -MD -MF.depend.notify.o -MTnotify.o -std=gnu99 -fstack-protector-strong-Qunused-arguments -c /usr/src/contrib/wpa//wpa_supplicant/notify.c -o notify.o /usr/src/contrib/wpa//wpa_supplicant/notify.c:16:10: fatal error: 'binder/binder.h' file not found #include "binder/binder.h" ^ 1 error generated. *** [notify.o] Error code 1 make[5]: stopped in /usr/src/usr.sbin/wpa/wpa_supplicant 1 error ___ freebsd-stable@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "freebsd-stable-unsubscr...@freebsd.org"
