keepassxc in Jun 20 snap is sad

[Edward Ahlsen-Girard]

qt.qpa.plugin: Could not load the Qt platform plugin "xcb" in "" even
though it was found. This application failed to start because no Qt
platform plugin could be initialized. Reinstalling the application may
fix this problem.

Available platform plugins are: eglfs, minimal, minimalegl, offscreen,
vnc, wayland-egl, wayland, wayland-xcomposite-egl,
wayland-xcomposite-glx, xcb.

Abort trap (core dumped) 


-- 

Edward Ahlsen-Girard
Ft Walton Beach, FL

OpenBSD 7.3-current (GENERIC.MP) #1253: Tue Jun 20 13:52:16 MDT 2023
dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
real mem = 4174688256 (3981MB)
avail mem = 4028489728 (3841MB)
random: good seed from bootblocks
mpath0 at root
scsibus0 at mpath0: 256 targets
mainbus0 at root
bios0 at mainbus0: SMBIOS rev. 2.8 @ 0xec530 (36 entries)
bios0: vendor AMI version "80.06" date 04/01/2015
bios0: Hewlett-Packard 550-036
efi0 at bios0: UEFI 2.3.1
efi0: American Megatrends rev 0x4028e
acpi0 at bios0: ACPI 5.0
acpi0: sleep states S0 S3 S4 S5
acpi0: tables DSDT FACP APIC FPDT FIDT MSDM SSDT SSDT MCFG HPET SSDT SSDT DBGP
acpi0: wakeup devices RP01(S4) PXSX(S4) PXSX(S4) PXSX(S4) RP04(S4) PXSX(S4) 
PXSX(S4) RP06(S4) PXSX(S4) RP07(S4) PXSX(S4) PXSX(S4) GLAN(S4) EHC1(S3) 
EHC2(S3) XHC_(S3) [...]
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: Intel(R) Core(TM) i3-4170 CPU @ 3.70GHz, 3691.58 MHz, 06-3c-03
cpu0: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,RDTSCP,LONG,LAHF,ABM,PERF,ITSC,FSGSBASE,TSC_ADJUST,BMI1,AVX2,SMEP,BMI2,ERMS,INVPCID,SRBDS_CTRL,MD_CLEAR,IBRS,IBPB,STIBP,L1DF,SSBD,SENSOR,ARAT,XSAVEOPT,MELTDOWN
cpu0: 32KB 64b/line 8-way D-cache, 32KB 64b/line 8-way I-cache, 256KB 64b/line 
8-way L2 cache, 3MB 64b/line 12-way L3 cache
cpu0: smt 0, core 0, package 0
mtrr: Pentium Pro MTRR support, 10 var ranges, 88 fixed ranges
cpu0: apic clock running at 99MHz
cpu0: mwait min=64, max=64, C-substates=0.2.1.2.4, IBE
cpu1 at mainbus0: apid 2 (application processor)
cpu1: Intel(R) Core(TM) i3-4170 CPU @ 3.70GHz, 3691.59 MHz, 06-3c-03
cpu1: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,RDTSCP,LONG,LAHF,ABM,PERF,ITSC,FSGSBASE,TSC_ADJUST,BMI1,AVX2,SMEP,BMI2,ERMS,INVPCID,SRBDS_CTRL,MD_CLEAR,IBRS,IBPB,STIBP,L1DF,SSBD,SENSOR,ARAT,XSAVEOPT,MELTDOWN
cpu1: 32KB 64b/line 8-way D-cache, 32KB 64b/line 8-way I-cache, 256KB 64b/line 
8-way L2 cache, 3MB 64b/line 12-way L3 cache
cpu1: smt 0, core 1, package 0
cpu2 at mainbus0: apid 1 (application processor)
cpu2: Intel(R) Core(TM) i3-4170 CPU @ 3.70GHz, 3691.76 MHz, 06-3c-03
cpu2: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,RDTSCP,LONG,LAHF,ABM,PERF,ITSC,FSGSBASE,TSC_ADJUST,BMI1,AVX2,SMEP,BMI2,ERMS,INVPCID,SRBDS_CTRL,MD_CLEAR,IBRS,IBPB,STIBP,L1DF,SSBD,SENSOR,ARAT,XSAVEOPT,MELTDOWN
cpu2: 32KB 64b/line 8-way D-cache, 32KB 64b/line 8-way I-cache, 256KB 64b/line 
8-way L2 cache, 3MB 64b/line 12-way L3 cache
cpu2: smt 1, core 0, package 0
cpu3 at mainbus0: apid 3 (application processor)
cpu3: Intel(R) Core(TM) i3-4170 CPU @ 3.70GHz, 3691.78 MHz, 06-3c-03
cpu3: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,RDTSCP,LONG,LAHF,ABM,PERF,ITSC,FSGSBASE,TSC_ADJUST,BMI1,AVX2,SMEP,BMI2,ERMS,INVPCID,SRBDS_CTRL,MD_CLEAR,IBRS,IBPB,STIBP,L1DF,SSBD,SENSOR,ARAT,XSAVEOPT,MELTDOWN
cpu3: 32KB 64b/line 8-way D-cache, 32KB 64b/line 8-way I-cache, 256KB 64b/line 
8-way L2 cache, 3MB 64b/line 12-way L3 cache
cpu3: smt 1, core 1, package 0
ioapic0 at mainbus0: apid 8 pa 0xfec0, version 20, 24 pins
acpimcfg0 at acpi0
acpimcfg0: addr 0xf800, bus 0-63
acpihpet0 at acpi0: 14318179 Hz
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 1 (RP01)
acpiprt2 at acpi0: bus 2 (RP04)
acpiprt3 at acpi0: bus 3 (RP06)
acpiprt4 at acpi0: bus 4 (RP07)
acpiprt5 at acpi0: bus -1 (PEG0)
acpiec0 at acpi0: not present
acpipci0 at acpi0 PCI0: 0x 0x0011 0x0001
acpicmos0 at acpi0
acpibtn0 at acpi0: PWRB
acpibtn_attach: failed to enable PWRB's GPE for wake
"PNP0C14" at acpi0 not configured
"PNP0C0B" at acpi

Re: how to transmit desktop sound on xenodm.

[Edward Ahlsen-Girard]

Subject:

  Re: how to transmit desktop sound on xenodm.  From: Jan Stary   Date: 2023-03-21 18:27:19  Message-ID:   
ZBn3B33q/zIDg/lR () www ! stare ! cz  [Download RAW   message   or   body  ]  
  On Mar 21 16:56:51, openbsd_s...@protonmail.com wrote:
  > How to convert "sndiod data stream" to "RTP(rtmp/rtsp) data stream".
  > mplayer and vlc can recive the "RTP(rtmp/rtsp) data stream".
  
  "sndio data stream" is linear PCM audio data.
  That can be played in any audio player out there.
  Why do you want to convert it to a RTP stream first?
  
  > If OpenBSD packages have "module-sndio", it will same too... 
  > I know, OpenBSD ports and packages "omit the any functions".
  > I understood "If I can use the any useful factions. it is so lucky.".
  
  I cannot quite parse your sentences.

I think the original question might have better phrased as: How do I
forward sound and X from OpenBSD to Windows? Leaving particular tools out
of it. The natural tendency to include a tool that solves part of the
problem rather than restate the problem /de novo/ can bite us. --Ed
Ahlsen-Girard

Re: recommended partitions to backup with dump

[Edward Ahlsen-Girard]

On Thu, 25 Aug 2022 07:59:00 - (UTC)
Stuart Henderson  wrote:


> /var, maybe exclude /var/cache. (maybe also /var/log, but it can be
> useful to have).
> 
Is there a way to exclude directories within a selected volume for a
full backup? It looks as though nodump only works for levels above 0.


-- 

Edward Ahlsen-Girard
Ft Walton Beach, FL

Re: xfreerdp and stuttering sound

[Edward Ahlsen-Girard]

On Wed, 27 Jul 2022 16:32:59 -0500
Ed Ahlsen-Girard  wrote:

> I am remoting to a Windows machine to view Widevine encrypted videos,
> and need to forward the sound. My xfreerdp line is:
> 
> xfreerdp /h:2560 /w:3712 /d:[hostname] /u:[username] /sound:sys:sndio
> \ /v:[hostname]
> 
> I see the video, but the sound stutters badly. Closing other
> applications does not improve this, and choosing a different browser
> on the remote Windows machine does not improve it.
> 
> dmesg below signature.
> 

Closing out the loop, it appears that FreeRDP only supports multi-media
forwarding of Windows Media Player.

The rdesktop port is not an alternative: upstream has been
un-maintained since November 2019, and its latest version cannot
connect to Windows 10 21H2 if fully patched.
-- 

Edward Ahlsen-Girard
Ft Walton Beach, FL

Re: Docking station and external monitor

[Edward Ahlsen-Girard]

On Sun, 3 Jul 2022 09:25:09 - (UTC)
Stuart Henderson  wrote:

> On 2022-07-02, Ed Ahlsen-Girard  wrote:
>  [...]  
> 
> Does it work during boot? (It's older hardware, I'm wondering if it
> is actually functional).
> 
> Docks on previous and newer generation ThinkPads generally "just work"
> usually mirroring by default and are then controllable with xrandr.
> 

It doesn't display through the docking station at any point.

If I attempt to start from the dock's power button with the lid down, I
won't see anything displayed even on the lid after opening it, but the
machine will become pingable.

-- 

Edward Ahlsen-Girard
Ft Walton Beach, FL

transparent https proxy with using pf's rdr-to and divert-to

[Edward Crawler]

Hi Misc,

I'm writing a transparent https proxy for tls inspection. This proxy works fine 
when I use "rdr-to" in pf.
However, when I try use "divert-to", it's not working..

What's the actual difference between the rdr-to and divert-to? What could be 
the problem?

Sierra Wireless MC7455 umsm to umb

[Edward Crawler]

Hi People,

I have a Sierra Wireless MC7455 LTE module.
When I plugged in the module, OpenBSD attachs it as "umsm"
Is there any AT command to attach this module as "umb" instead of "umsm" ?


dmesg output:

umsm0 at uhub0 port 2 configuration 1 interface 0 "Sierra Wireless, 
Incorporated Sierra Wireless MC7455 Qualcomm\M-. Snapdragon? X7 LTE-A" rev 
2.10/0.06 addr 3
ucom0 at umsm0
umsm1 at uhub0 port 2 configuration 1 interface 2 "Sierra Wireless, 
Incorporated Sierra Wireless MC7455 Qualcomm\M-. Snapdragon? X7 LTE-A" rev 
2.10/0.06 addr 3
ucom1 at umsm1
umsm2 at uhub0 port 2 configuration 1 interface 3 "Sierra Wireless, 
Incorporated Sierra Wireless MC7455 Qualcomm\M-. Snapdragon? X7 LTE-A" rev 
2.10/0.06 addr 3
ucom2 at umsm2
umsm3 at uhub0 port 2 configuration 1 interface 8 "Sierra Wireless, 
Incorporated Sierra Wireless MC7455 Qualcomm\M-. Snapdragon? X7 LTE-A" rev 
2.10/0.06 addr 3
ucom3 at umsm3
umsm4 at uhub0 port 2 configuration 1 interface 10 "Sierra Wireless, 
Incorporated Sierra Wireless MC7455 Qualcomm\M-. Snapdragon? X7 LTE-A" rev 
2.10/0.06 addr 3
ucom4 at umsm4

Kernel ddb trace output

[Edward Crawler]

Hi People,

I have a OpenBSD 6.9 device which I'm using as firewall. The system crashes 
frequently -almost once a day-
Also, there is lots of "pmap_unwire" errors in dmesg. Can it be a reason for 
system crash?
What would be the reason of these crashes?

ddb trace:

ddb{10}> show panic
the kernel did not panic
ddb{10}>
the kernel did not panic
ddb{10}> trace
fill_file(8554b800,fd8a753091f8,fd8a80bff6c0,4,0,80002602cb
d8) at fill_file+0x759
sysctl_file(8000269edc58,4,a389e966000,8000269edc88,8000268e37b0) a
t sysctl_file+0x9b2
kern_sysctl(8000269edc54,5,a389e966000,8000269edc88,0,0) at kern_sysctl
+0xc0
sys_sysctl(8000268e37b0,8000269edcf0,8000269edd50) at sys_sysctl+0x
184
syscall(8000269eddc0) at syscall+0x389
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x7f7ef1d0, count: -6
ddb{10}>
fill_file(8554b800,fd8a753091f8,fd8a80bff6c0,4,0,80002602cb
d8) at fill_file+0x759
end trace frame: 0x8000269ed900, count: 0
ddb{10}> machine ddbcpu 1
Stopped at  x86_ipi_db+0x12:leave
ddb{1}> show trace
No such command
ddb{1}> traace
No such command
ddb{1}> trace
x86_ipi_db(80001d85aff0) at x86_ipi_db+0x12
x86_ipi_handler() at x86_ipi_handler+0x80
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23
__mp_acquire_count(821f8f60,1) at __mp_acquire_count+0x92
mi_switch() at mi_switch+0x241
sleep_finish(8000269751d0,1) at sleep_finish+0x2ce
rw_enter(820d54a8,1) at rw_enter+0x1cd
sysctl_rtable(80002697537c,3,0,8000269753a8,0,0) at sysctl_rtable+0x2ed

sys_sysctl(8000268e22b0,800026975410,800026975470) at sys_sysctl+0x
184
syscall(8000269754e0) at syscall+0x389
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x7f7d8650, count: -11
ddb{1}> machine ddbcpu 2
Stopped at  x86_ipi_db+0x12:leave
ddb{2}> trace
x86_ipi_db(80001d863ff0) at x86_ipi_db+0x12
x86_ipi_handler() at x86_ipi_handler+0x80
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23
__mp_acquire_count(821f8f60,2) at __mp_acquire_count+0x80
mi_switch() at mi_switch+0x241
sleep_finish(8000265b5cd0,1) at sleep_finish+0x2ce
rw_enter(820d54a8,1) at rw_enter+0x1cd
solock(fd8a78337210) at solock+0x38
filt_sowrite(fd8a71677c60,0) at filt_sowrite+0x3b
kqueue_scan(8000265b5fb0,8,8000265b5eb0,8000265b60a0,8000fffd82
b0,8000265b60ec) at kqueue_scan+0x417
sys_kevent(8000fffd82b0,8000265b6150,8000265b61b0) at sys_kevent+0x
3b6
syscall(8000265b6220) at syscall+0x389
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x2b130fd00, count: -13
ddb{2}> machine ddbcpu 3
Stopped at  x86_ipi_db+0x12:leave
ddb{3}> trace
x86_ipi_db(80001d86cff0) at x86_ipi_db+0x12
x86_ipi_handler() at x86_ipi_handler+0x80
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23
_kernel_lock() at _kernel_lock+0xb2
uvm_unmap_detach(800025cc1a18,1) at uvm_unmap_detach+0x9f
uvm_map_teardown(fd8a803f7990) at uvm_map_teardown+0x1c9
uvmspace_free(fd8a803f7990) at uvmspace_free+0x5a
reaper(800025c8e550) at reaper+0x14c
end trace frame: 0x0, count: -8
ddb{3}> machine ddbcpu 4
Stopped at  x86_ipi_db+0x12:leave
ddb{4}> trace
x86_ipi_db(80001d875ff0) at x86_ipi_db+0x12
x86_ipi_handler() at x86_ipi_handler+0x80
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23
_kernel_lock() at _kernel_lock+0xae
vn_read(fd8e342d7e18,8000260787c8,0) at vn_read+0x40
dofilereadv(800026035cf0,e,8000260787c8,0,8000260788a0) at dofilere
adv+0x14c
sys_read(800026035cf0,800026078840,8000260788a0) at sys_read+0x51
syscall(800026078910) at syscall+0x389
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x210ad4970, count: -9
ddb{4}> machine ddbcpu 5
Stopped at  x86_ipi_db+0x12:leave
ddb{5}> trace
x86_ipi_db(80001d87eff0) at x86_ipi_db+0x12
x86_ipi_handler() at x86_ipi_handler+0x80
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23
__mp_acquire_count(821f8f60,1) at __mp_acquire_count+0x89
mi_switch() at mi_switch+0x241
sleep_finish(80002612bd20,1) at sleep_finish+0x2ce
rw_enter(820d54a8,1) at rw_enter+0x1cd
solock(fd8c88cd2c08) at solock+0x38
soo_poll(fd9059eaca68,3,8000260c2540) at soo_poll+0x34
doppoll(8000260c2540,540632f9a40,3,80002612bf58,0,80002612c000) at d
oppoll+0x234
sys_poll(8000260c2540,80002612bfa0,80002612c000) at sys_poll+0x6a
syscall(80002612c070) at syscall+0x389
Xsyscall() at Xsyscall+0x128
end of kernel
end trace frame: 0x7f7bf480, count: -13
ddb{5}>  machine ddbcpu 6
Stopped at  x86_ipi_db+0x12:leave
ddb{6}> trace
x86_ipi_db(80001d887ff0) at x86_ipi_db+0x12
x86_ipi_handler() at x86_ipi_handler+0x80
Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23
_kernel_lock() at _kernel_lock+0xb2
selwakeup(850bfe28) at selwakeup+0x11
tun_enqueue(850bf800,fd8053832b00) at tun_enqueue+0x50

Re: Does OpenBSD support Carrier Grade Nat?

[Edward Carver]

Can you send me sample config please?


Sent with ProtonMail Secure Email.

‐‐‐ Original Message ‐‐‐
On Friday, August 7, 2020 3:33 PM, Marc Peters  wrote:

> On Fri, Aug 07, 2020 at 12:12:14PM +0000, Edward Carver wrote:
>
> > Does OpenBSD support Carrier Grade Nat (cg-nat)?
> > Thanks for helping..
>
> My router sits behind one, so yes.
>
> hth,
> Marc

Does OpenBSD support Carrier Grade Nat?

[Edward Carver]

Hi Misc,

Does OpenBSD support Carrier Grade Nat (cg-nat)?
Thanks for helping..

--
Edward Carver
Sent with [ProtonMail](https://protonmail.com) Secure Email.

Move romp.html and testimonials.html to the Attic?

[Edward]

Files www/romp.html and www/testimonials.html are not linked to from
any other webpage of the OpenBSD website. May be they could be moved
to the Attic.

Edward

Re: Downloadable CIDR network calculator

[Edward Lopez-Acosta]

Is it possible to get this hosted on GitLab or GiHub for collaboration to 
improve the script? I have used, and like, sipcalc but options are always good.

If you are using Python 3.6 or newer you may consider using f-strings as well 
for better readability when substituting variables into strings. Same with 
using argparse for required args to save some manual logic in the code.

Just my 2c, keep up the good work.
-- 
Sent from my mobile device, please excuse my brevity and formatting issues.

Re: wifi gui manager

[Edward Lopez-Acosta]

Can't properly reply to the thread. I need to fix my subscription, but why
not just update the following to work on OpenBSD?

https://github.com/ghostbsd/networkmgr

Seems like a better use of resources than reinventing the wheel. Unless
there is something fundamental I am missing in the new project.

The linked project would also work for wired networks, not just wifi.

Re: lsof alternative for listing open files?

[Edward Lopez-Acosta]

Ingo,

Thank you for the detailed explanation. I wasn't thinking about atomically
handling both at the same time. I also see why lsof in Linux can be
deceiving.

@marc Yes I think it is of pretty poor design. With Ingo's explanation and
the fact they both read /proc and/or use lsof.

And the learning continues.

On Thursday, August 9, 2018, Ingo Schwarze  wrote:
> Hi Edward,
>
> Edward Lopez-Acosta wrote on Thu, Aug 09, 2018 at 06:29:04PM -0500:
>
>> I was looking to port bleachbit, system cleanup tool, to OpenBSD
>> and one function is to make sure certain files are not in use before
>> it proceeds.
>
> Strictly speaking, that is impossible due to a TOCTOU race condition.
> You cannot do the check and the removal atomically in one step.
> If you do the check and find that no process has it open, then by
> the time you proceed to removing it, another process may have opened
> it.  Or even worse, someone may have deleted the old file or moved
> it to a different name and a third person may have created a
> completely new file for a completely different purpose with the old
> name.  None of that is OpenBSD-specific, by the way, the same
> arguments hold on Linux.
>
> If you are willing to ignore the dangers posed by such race conditions,
> then both fuser(1) and fstat(1) can be used: both take "file"
> arguments.
>
> By the way, i just confirmed that the /proc/PID/fd/FDNUM filename
> feature is indeed broken on Linux:
>
>$ uname -a
>   Linux donnerwolke.asta-kit.de 4.9.0-0.bpo.3-686 #1 SMP Debian
>   4.9.30-2+deb9u5~bpo8+1 (2017-09-28) i686 GNU/Linux
>$ cd /tmp
>$ touch old.txt
>$ tail -f old.txt
>
> In another terminal:
>
>$ cd /tmp
>$ ln old.txt new.txt
>$ rm old.txt
>$ pgrep tail
>   24052
>$ readlink /proc/24052/fd/3
>   /tmp/old.txt (deleted)
>$ lsof | grep new.txt
>$ lsof | grep tail | grep 3r
>   /tmp/old.txt (deleted)
>
> So the kernel claims that "new.txt" is not open by any process,
> and it also claims that the file open by tail(1) can no longer
> be accessed via the file system.  However, typing
>
>$ echo test >> new.txt
>
> in the second terminal makes "test" appear on the first terminal,
> so it is a totally normal, fully functional file.
>
> So the description
>
>   "Obsolete package: lsof (ancient software that doesn't work)"
>
> is indeed accurate.  If lsof says a file isn't open, it may well
> be open anyway.  If lsof says a file was deleted, that may be an
> outright lie.  If lsof reports that a given process has a file open
> with some name, then that name may be neither the name the process
> used for opening the file nor any of the names the file has now,
> though it usually is one of the names that the file may have had
> at some undefined time in between.  You cannot rely on any of those
> statements from lsof because making such statements is just impossible
> by the basic way how UNIX (including Linux) works, even without any
> race conditions.  And then you get the race conditions on top of
> all that.  Enjoy the mix!
>
> Yours,
>   Ingo
>

Re: lsof alternative for listing open files?

[Edward Lopez-Acosta]

Hi Ingo,

I was looking to port bleachbit, system cleanup tool, to OpenBSD and one 
function is to make sure certain files are not in use before it 
proceeds. An example would be cache files by a browser which would need 
closed.


Beyond that though it was more of an educational exercise on my part as 
I continue becoming familiar with OpenBSD and its workings.


Edward Lopez-Acosta

On 8/9/18 6:17 PM, Ingo Schwarze wrote:

Hi Edward,

Edward Lopez-Acosta wrote on Thu, Aug 09, 2018 at 05:41:04PM -0500:


I am aware of fuser and fstat but these seem to only give me inodes.
Is there an equivalent to the Linux application `lsof`?


$ pkg_add lsof
   Obsolete package: lsof (ancient software that doesn't work)

Once a process has a file open, there is no was to get back from
the file descriptor to a file name.  Actually, the file name may
have changed since the file was opened, or the file may not have
any name whatsoever any longer, or the name might now point to a
different file that is not open.  It is by design that you cannot
translate an inode number back to a filename.  I have no idea what
the Linux kernel is doing with symbolic links like /proc/21325/fd/3,
but i doubt that it makes much sense.

What is the actual problem you are trying to solve?

Yours,
   Ingo

lsof alternative for listing open files?

[Edward Lopez-Acosta]

Hello,

I am aware of fuser and fstat but these seem to only give me inodes. Is 
there an equivalent to the Linux application `lsof`? I also noticed 
there is no `/proc` filesystem so checking that is also out.


Thank you,

--
Edward Lopez-Acosta

NSA encryption algorithms in Linux kernel, OpenBSD too?

[Edward Lopez-Acosta]

I imagine the answer is this is not implemented or going to be but saw 
this article and figured I would ask.


Seems suspect to not release all details, and have it rejected by ISO 
but yet still being put in both the kernel and Android OS.


https://itsfoss.com/nsas-encryption-algorithm-in-linux-kernel-is-creating-unease-in-the-community/

Thank you,
--
Edward Lopez-Acosta

Re: Copy files to usb (slow)

[edward wandasiewicz]

>From your dmesg, your machine has USB 3.0 hardware ports

usb0 at xhci0: USB revision 3.0

and you're using a USB 2.0 flash drive - rev 2.00/1.10

umass0 at uhub0 port 2 configuration 1 interface 0 "Kingston
DataTraveler 2.0" rev 2.00/1.10 addr 6

You could upgrade to a USB 3.0 flash drive.

On USB 3.0 hardware port with a USB 3.0 flash drive ( not an SSD ), with a

MSDOS file system, I get about 2.5 MB/s

4.2BSD file system, I get about 7 MB/s

with rsync --info=progress2 ./SOURCE/ /DEST transferring a single 1GB file.

Attempting to dd an image, I get about 20 MB/s

# dd if=img bs=1m | pv -s 16GB | dd of=/dev/rsd1c bs=1m

On Sun, Jan 29, 2017 at 6:57 PM, Ali Farzanrad  wrote:
> G  wrotes:
>>Hello.
>>Im trying to copy files from my laptop to a usb stick.
>>The speed varies between 300kB/sec and 400kB/sec. Its really slow.
>
> I also have the same problem.
> It seems that block files are slow and it is not possible to mount raw
> files.
> I tested it with dd(1) and found that fastest way to transfer data is
> using raw devices:
>
> # dd if=/dev/rsd1c of=temp.fs bs=1m
> # vnconfig vnd0 temp.fs
> # mount /dev/vnd0i /mnt/usb
> # ... do copy ...
> # umount /mnt/usb
> # vnconfig -u vnd0
> # dd if=temp.fs of=/dev/rsd1c bs=1m

Loss of USB connection if I "wiggle the cable at device end"

[edward wandasiewicz]

I am noticing a loss of USB connection if I accidentally / purposely
wiggle the cable near the USB type-C device end, using 6.0-current
#150.

I have 2 USB-A male to type-C cables, one implements USB 2.1, the other USB
3.1

I get the same problem with both cables.

The problem doesn't happen all the time, about 1 in 10 when I try to
replicate it, and I haven't had this problem in the past.

I get 2 different types of messages when the problem occurs



1. uhub0: port 2 reset failed

2. uhub0: device problem, disabling port X



where "disabling port X" can be either port 2 or port 1 - see below

I've also attached a dmesg from boot

I can compile a kernel with UMASS_DEBUG if further output is needed

Edward.

#
# uhub0: port 2 reset failed
#

Jan 24 12:10:21 mousse /bsd: sd3 detached
Jan 24 12:10:21 mousse /bsd: scsibus5 detached
Jan 24 12:10:21 mousse /bsd: umass1 detached
Jan 24 12:10:23 mousse /bsd: uhub0: port 2 reset failed

#
# uhub0: device problem, disabling port 2
#
# suddenly connect, from 12:11:19 to 12:11:20
#
# detach and attach using same cable, USB 2.1
#

Jan 24 12:10:46 mousse /bsd: sd3 detached
Jan 24 12:10:46 mousse /bsd: scsibus5 detached
Jan 24 12:10:46 mousse /bsd: umass1 detached
Jan 24 12:11:19 mousse /bsd: uhub0: device problem, disabling port 2
Jan 24 12:11:20 mousse /bsd: umass1 at uhub0 port 2 configuration 1
interface 0 "Samsung Portable
SSD T3" rev 2.10/1.00 addr 5
Jan 24 12:11:20 mousse /bsd: umass1: using SCSI over Bulk-Only
Jan 24 12:11:20 mousse /bsd: scsibus5 at umass1: 2 targets, initiator 0
Jan 24 12:11:20 mousse /bsd: sd3 at scsibus5 targ 1 lun 0: <Samsung,
Portable SSD T3, 0> SCSI4
0/direct fixed serial.04e861f312345678E41F
Jan 24 12:11:20 mousse /bsd: sd3: 476940MB, 512 bytes/sector, 976773168
sectors
Jan 24 12:11:20 mousse /bsd: sd3 detached
Jan 24 12:11:20 mousse /bsd: scsibus5 detached
Jan 24 12:11:20 mousse /bsd: umass1 detached

#
# uhub0: device problem, disabling port 1
#
# suddenly connect, from 12:20:43 to 12:20:45
#
# detach and attach using different cables
#
# detach with USB 2.1 cable, attach with USB 3.1 cable
#

Jan 24 12:19:57 mousse /bsd: umass1 at uhub0 port 1 configuration 1
interface 0 "Samsung Portable
SSD T3" rev 2.10/1.00 addr 5
Jan 24 12:19:57 mousse /bsd: umass1: using SCSI over Bulk-Only
Jan 24 12:19:57 mousse /bsd: scsibus5 at umass1: 2 targets, initiator 0
Jan 24 12:19:57 mousse /bsd: sd3 at scsibus5 targ 1 lun 0: <Samsung,
Portable SSD T3, 0> SCSI4
0/direct fixed serial.04e861f312345678E41F
Jan 24 12:19:57 mousse /bsd: sd3: 476940MB, 512 bytes/sector, 976773168
sectors
Jan 24 12:19:59 mousse /bsd: sd3 detached
Jan 24 12:19:59 mousse /bsd: scsibus5 detached
Jan 24 12:19:59 mousse /bsd: umass1 detached
Jan 24 12:20:43 mousse /bsd: uhub0: device problem, disabling port 1
Jan 24 12:20:45 mousse /bsd: umass1 at uhub0 port 13 configuration 1
interface 0 "Samsung Portable
SSD T3" rev 3.00/1.00 addr 5
Jan 24 12:20:45 mousse /bsd: umass1: using SCSI over Bulk-Only
Jan 24 12:20:45 mousse /bsd: scsibus5 at umass1: 2 targets, initiator 0
Jan 24 12:20:45 mousse /bsd: sd3 at scsibus5 targ 1 lun 0: <Samsung,
Portable SSD T3, 0> SCSI4
0/direct fixed serial.04e861f312345678E41F
Jan 24 12:20:45 mousse /bsd: sd3: 476940MB, 512 bytes/sector, 976773168
sectors

#
# dmesg
#

OpenBSD 6.0-current (GENERIC.MP) #150: Tue Jan 17 17:41:15 MST 2017
bu...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
real mem = 17094049792 (16302MB)
avail mem = 16571342848 (15803MB)
mpath0 at root
scsibus0 at mpath0: 256 targets
mainbus0 at root
bios0 at mainbus0: SMBIOS rev. 2.7 @ 0x7ce42020 (9 entries)
bios0: vendor coreboot version "(null)" date 04/02/2015
bios0: GOOGLE Samus
acpi0 at bios0: rev 2
acpi0: sleep states S0 S1 S2 S3 S4 S5
acpi0: tables DSDT FACP HPET APIC MCFG SSDT
acpi0: wakeup devices HDEF(S3) WLAN(S3) EHCI(S3) XHCI(S3) ATPA(S3)
CODC(S3) LID0(S5)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpihpet0 at acpi0: 14318179 Hz
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: Intel(R) Core(TM) i7-5500U CPU @ 2.40GHz, 2394.83 MHz
cpu0:
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS
H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX
,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,MOVBE,POPCN
T,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,LONG,LAHF,ABM,3DNOWP,PERF,IT
SC,FSGSBASE,BMI1,AVX2,SMEP,BMI2,ERMS,INVPCID,RDSEED,ADX,SMAP,PT,SENSOR,ARAT
cpu0: 256KB 64b/line 8-way L2 cache
cpu0: TSC frequency 2394830480 Hz
cpu0: smt 0, core 0, package 0
mtrr: Pentium Pro MTRR support, 10 var ranges, 88 fixed ranges
cpu0: apic clock running at 99MHz
cpu0: mwait min=64, max=64, C-substates=0.2.1.2.4.1.1.1, IBE
cpu1 at mainbus0: apid 1 (application processor)
cpu1: Intel(R) Core(TM) i7-5500U CPU @ 2.40GHz, 2394.46 MHz
cpu1:
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,P

Missing "boot> machine regs" on amd64

[edward wandasiewicz]

The man page on boot(8) for amd64 says we should be able to print the
contents of the processor registers if compiled with DEBUG.

If we can do so on amd64, it seems we are missing a few debug.* files
in the amd64 source tree to do so.

% find /usr/src/sys/ -type f | xargs grep -l "DUMP_REGS"
/usr/src/sys/arch/amd64/stand/libsa/cmd_i386.c
/usr/src/sys/arch/i386/stand/libsa/cmd_i386.c
/usr/src/sys/arch/i386/stand/libsa/debug_md.h

% find /usr/src/sys/ -type f | xargs grep -l "debug_md.h"
/usr/src/sys/arch/i386/stand/libsa/CVS/Entries
/usr/src/sys/arch/i386/stand/libsa/debug.h
/usr/src/sys/arch/i386/stand/libsa/debug_i386.S
/usr/src/sys/arch/i386/stand/libsa/debug_md.h
/usr/src/sys/arch/i386/stand/libsa/gidt.S

Are we missing this feature on amd64?

Or should the man page for boot(8) amd64 be changed if this feature is
not available on amd64?

Edward.

Re: file(1) - install.iso is 44.1kHz, stereo

[AHLSENGIRARD, EDWARD F CTR USAF AFMC AFNWC/NDBD]

Subject:Re: file(1) - install.iso is 44.1kHz, stereo
At 13:14:51 on 2015-12-30, Nick Holland 
posted:
>On 12/30/15 06:02, Jan Stary wrote:
>> $ file install59.iso
>> install59.iso: ISO 9660 CD-ROM filesystem data
>> 'OpenBSD/amd64   5.9 Install CD ' (bootable), 44.1 kHz, Stereo
>>
>> Is this intended?
>>
>> Jan
>>
>
>What do you want it to return?
>
>If you record it to a CDR and put it in a plain ol' CD player, it will
>play.  In stereo.  Sounds kinda like Justin Bieber(*).
>
>Nick.
>
>
>* Replace with whomever's music/existence you dislike this week
>

Other Canadian artists only, one would think.
--
Edward Ahlsen-Girard

Re: utilities in bsd.rd

[AHLSENGIRARD, EDWARD F CTR USAF AFMC AFNWC/NDBD]

>On Mon, 21 Dec 2015 20:45:15 + "AHLSENGIRARD, EDWARD F CTR USAF AFMC
AFNWC/NDBD" <edward.ahlsengirard.2@us.af.mil> wrote:
>> By any chance is there a handy list of the utilities compiled into
>> bsd.rd (release or recent snap)?
>>
>>
>> --
>> Edward Ahlsen-Girard
>>

>it may not be exhaustive but the kernel is compiled from /usr/src/distrib
and:

>$ ls /usr/src/distrib/special/
>CVS  dhclient grep mkdirmv   route
>Makefile disklabelgzip mknodnewfssed
>Makefile.inc dmesghostname mkuboot  newfs_ext2fs signify
>arch ed   ifconfig more newfs_msdos  sleep
>bioctl   eeprom   init mountpax  stty
>cat  encrypt  installboot  mount_cd9660 pdisksync
>chmodfdiskkbd  mount_ext2fs ping sysctl
>chroot   fsck ksh  mount_ffsping6umount
>cp   fsck_ext2fs  libstubs mount_msdos  pwd_mkdb ztsscale
>date fsck_ffs ln   mount_nfsreboot
>dd   fsck_msdos   ls   mount_udfrestore
>df   ftp  md5  mt   rm


>you can also use the process in
>https://marc.info/?l=openbsd-misc=141552533922277=2

>which will allow you to look at the filesystem of the kernel itself.

Sir, you are a gentleman and a scholar.

--
Edward Ahlsen-Girard

utilities in bsd.rd

[AHLSENGIRARD, EDWARD F CTR USAF AFMC AFNWC/NDBD]

By any chance is there a handy list of the utilities compiled into bsd.rd
(release or recent snap)?


--
Edward Ahlsen-Girard

Re: iwm(4) 11n support: it just works

[edward wandasiewicz]

 "Intel 9 Series PCIE" rev 0xe3
pci1 at ppb0 bus 1
iwm0 at pci1 dev 0 function 0 "Intel Dual Band Wireless AC 7260" rev 0xcb,
msi
pcib0 at pci0 dev 31 function 0 "Intel 9 Series LPC" rev 0x03
ahci0 at pci0 dev 31 function 2 "Intel 9 Series AHCI" rev 0x03: msi, AHCI 1.3
ahci0: port 0: 6.0Gb/s
scsibus1 at ahci0: 32 targets
sd0 at scsibus1 targ 0 lun 0: <ATA, KINGSTON RBU-SUS, S9FM> SCSI3
0/direct fixed t10.ATA_KINGSTON_RBU-SUS151S364GD_50026B7E51D7488F_
sd0: 61057MB, 512 bytes/sector, 125045424 sectors, thin
"Intel 9 Series Thermal" rev 0x03 at pci0 dev 31 function 6 not configured
isa0 at pcib0
isadma0 at isa0
com0 at isa0 port 0x3f8/8 irq 4: ns16450, no fifo
pckbc0 at isa0 port 0x60/5 irq 1 irq 12
pckbd0 at pckbc0 (kbd slot)
wskbd0 at pckbd0 mux 1
wskbd0: connecting to wsdisplay0
pcppi0 at isa0 port 0x61
spkr0 at pcppi0
uvideo0 at uhub0 port 7 configuration 1 interface 0
"NMGAAI00010200253N01253 NCM-G102" rev 2.00/0.02 addr 2
ugen0 at uhub0 port 8 "Intel product 0x07dc" rev 2.00/0.01 addr 3
vscsi0 at root
scsibus2 at vscsi0: 256 targets
softraid0 at root
scsibus3 at softraid0: 256 targets
sd1 at scsibus3 targ 1 lun 0: <OPENBSD, SR CRYPTO, 005> SCSI2 0/direct fixed
sd1: 16383MB, 512 bytes/sector, 33553904 sectors
root on sd1a (685567a3b591f896.a) swap on sd1b dump on sd1b
clock: unknown CMOS layout
iwm0: hw rev 0x140, fw ver 25.228 (API ver 9), address 6c:29:95:23:03:98
video0 at uvideo0
iwm0: could not initiate 2 GHz scan

$ ifconfig iwm0

iwm0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 6c:29:95:23:03:98
priority: 4
groups: wlan egress
media: IEEE802.11 autoselect (HT-MCS4 mode 11n)
status: active
ieee80211: nwid should_u_b_here chan 149 bssid 60:e3:27:6a:04:e7 47%
wpakey  wpaprotos wpa1,wpa2 wpaakms psk wpaciphers
tkip,ccmp wpagroupcipher tkip
inet 192.168.86.102 netmask 0xff00 broadcast 192.168.86.255

Edward.



On Wed, Dec 16, 2015 at 9:37 PM, Peter N. M. Hansteen <pe...@bsdly.net>
wrote:
> For those not following tech@ or the commits closely, it might be nice to
> know that 11n support is arriving, as far as I can tell complete in iwm(4)
-
> common in recent laptop models such as 2014 onwards thinkpads and others
> such as my noname (clevo). Next up the older iwn(4), also common in a lot
of
> laptops out there but possibly more in the slightly older ones such as the
> one mentioned in my old piece[1]
>
> Case in point, with a simple /etc/hostname.iwm0
>
> nwid we_see_all_your_naughty_bits wpakey alltomorrowsparties[2]
>
> the resulting config becomes
>
> [Wed Dec 16 22:31:42] peter@elke:~$ ifconfig iwm0
> iwm0: flags=208843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,AUTOCONF6> mtu
> 1500
> lladdr a0:a8:cd:63:ab:b9
> priority: 4
> groups: wlan egress
> media: IEEE802.11 autoselect (HT-MCS6 mode 11n)
> status: active
> ieee80211: nwid we_see_all_your_naughty_bits chan 36 bssid
> e0:3f:49:23:bb:2c 35% wpakey  wpaprotos wpa1,wpa2 wpaakms
psk
> wpaciphers tkip,ccmp wpagroupcipher tkip
> inet 192.168.1.95 netmask 0xff00 broadcast 192.168.1.255
> inet6 fe80::a2a8:cdff:fe63:abb9%iwm0 prefixlen 64 scopeid 0x1
>
> Meaning if you have a reasonably recent laptop with something that looks
> similar to what 'man iwm' tells you is supported and an 11n access point
> within reach, *now* is a good time to see what the new code is good for.
>
> Enjoy!
>
> [1] http://bsdly.blogspot.no/2010/01/goodness-of-men-and-machinery.html
> [2] no, not really but you can dream

Re: No USB 3.0 on 5.8 -current Broadwell

[edward wandasiewicz]

Update to 5.8 -current. It now works.

See 1.65 of

http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys/dev/usb/xhci.c?sortby=date

Edward
On 16 Dec 2015 3:14 p.m., "Mark Carroll" <m...@ixod.org> wrote:

> On 20 Nov 2015, edward wandasiewicz wrote:
>
> > If I try to plug in various USB 3.0 umass(4) devices into a USB 3.0 or
> > USB 3.1 Type C port, nothing gets registered via dmesg, even if I add
> >
> > option USB_DEBUG
> > option UMASS_DEBUG
> > option XHCI_DEBUG
> >
> > and compile a kernel. No dmesg output upon attachment of USB 3.0
> > devices.
>
> For what it's worth, also on 5.8 stable I also don't see anything twitch
> (dmesg, usbdevs, etc.) if I plug in a USB3 drive.
>
> > The USB 3.0 devices can only get recognised if I attach them via a USB
> > 2.0 cable, and plug this cable into the USB 3.0 or USB 3.1 Type C
> > port.
>
> Ha, an interesting discovery! If I put a cheap USB extension cable
> (http://www.amazon.co.uk/gp/product/B000BI804Y) inline then suddenly
> dmesg /does/ notice the drive,
>
> Dec 16 15:00:47 saffron /bsd: umass0 at uhub0
> Dec 16 15:00:47 saffron /bsd:  port 4 configuration 1 interface 0 "Seagate
> Expansion" rev 2.10/7.06 addr 2
> Dec 16 15:00:47 saffron /bsd: umass0: using SCSI over Bulk-Only
> Dec 16 15:00:47 saffron /bsd: scsibus4 at umass0: 2 targets, initiator 0
> Dec 16 15:03:55 saffron /bsd: sd1 at scsibus4 targ 1 lun 0: <Seagate,
> Expansion, 0706> SCSI4 0/direct fixed
>
> though not in any useful way, e.g.,
>
> # fdisk sd1
> fdisk: sd1: Device not configured
>
> > $ pcidump -v 0:20:0
> >
> > 0:20:0: Intel 9 Series xHCI
> > 0x: Vendor ID: 8086 Product ID: 9cb1
>
> I too have this.
>
> -- Mark

Re: Meaning of '+', '*' in disk: hd0+ hd1+* hd2*

[edward wandasiewicz]

On Mon, Nov 30, 2015 at 6:39 PM, Alexander Salmin <alexan...@salmin.biz> wrote:
> The '+' character after the "hd0" indicates that the BIOS has told /boot
> that this disk can be accessed via LBA. When doing a first-time install, you
> will sometimes see a '*' after a hard disk -- this indicates a disk that
> does not seem to have a valid OpenBSD disk label on it.
>
> http://www.openbsd.org/faq/faq14.html#Boot386

So hd2* means

- cannot be accessed via LBA
- no OpenBSD disklabel

Edward.
>
>
>
> On 2015-11-30 19:28, edward wandasiewicz wrote:
>>
>> If I have the following showing after a probe during biosboot
>>
>> disk: hd0+ hd1+* h2*
>>
>> What is the meaning of '+', '+*' and '*' next to each disk?
>>
>> Edward.

Meaning of '+', '*' in disk: hd0+ hd1+* hd2*

[edward wandasiewicz]

If I have the following showing after a probe during biosboot

disk: hd0+ hd1+* h2*

What is the meaning of '+', '+*' and '*' next to each disk?

Edward.

Re: Meaning of '+', '*' in disk: hd0+ hd1+* hd2*

[edward wandasiewicz]

Many thanks. I knew it was man paged / documented somewhere, just
couldn't find it.

Reason for asking?

I have a USB 3.0 device attached to a Chromebook Pixel 2015, and on
booting, SeaBIOS is recognising the same single USB drive twice, as
hd1+* and hd2*.

hd0 is the soldered SSD.

...Looks like two separate issues are occurring - the Philips drive is
being detected as both a high speed device and as a super speed
device.  I need a log with CONFIG_DEBUG_LEVEL=5 to diagnose that...

See http://www.seabios.org/pipermail/seabios/2015-November/010058.html

Edward.

On Mon, Nov 30, 2015 at 6:54 PM, Ted Unangst <t...@tedunangst.com> wrote:
> edward wandasiewicz wrote:
>> If I have the following showing after a probe during biosboot
>>
>> disk: hd0+ hd1+* h2*
>>
>> What is the meaning of '+', '+*' and '*' next to each disk?
>
> + means big disk support.
>
> * means no openbsd disklabel. probably not the openbsd disk.

No USB 3.0 on 5.8 -current Broadwell

[edward wandasiewicz]

t: pipe=0x806e3000 addr=0 depth=1 port=8 speed=2
dev 2 dci 1 (epAddr=0x0)
xhci0: xhci_cmd_set_address BSR=1
xhci0: xhci_cmd_set_address BSR=0
xhci0: dev 2 addr 2
ugen0 at uhub0 port 8 "Intel product 0x07dc" rev 2.00/0.01 addr 3
vscsi0 at root
scsibus2 at vscsi0: 256 targets
softraid0 at root
scsibus3 at softraid0: 256 targets
sd1 at scsibus3 targ 1 lun 0: <OPENBSD, SR CRYPTO, 005> SCSI2 0/direct fixed
sd1: 16383MB, 512 bytes/sector, 33553904 sectors
root on sd1a (685567a3b591f896.a) swap on sd1b dump on sd1b
clock: unknown CMOS layout
iwm0: hw rev 0x140, fw ver 25.228 (API ver 9), address 6c:29:95:23:03:98
iwm0: could not initiate 2 GHz scan

Edward

Re: No USB 3.0 on 5.8 -current Broadwell

[edward wandasiewicz]

On 20 Nov 2015 5:54 p.m., "Martin Pieuchot" <m...@openbsd.org> wrote:
>
> On 20/11/15(Fri) 17:32, edward wandasiewicz wrote:
> > If I try to plug in various USB 3.0 umass(4) devices into a USB 3.0 or
> > USB 3.1 Type C port, nothing gets registered via dmesg, even if I add
>
> This issue seems to be occurring only after a warm reboot as found by
> jcs@.
>
> Could you tell me if your USB 3 devices are detected after the 1st cold
> boot?

They aren't detected after a 1st cold boot.

If the umass device has a bootable softraid, it does get flagged and recognised

I get sr0* for the main SSD and sr1* for the USB 3.0 device

However, upon booting the USB 3.0 device, I get

ugen0 at uhubo port 8 "Intel product 0x07dc" rev 2.00/0.01 addr 3
scsibus2 at vscsi0: 256 targets
softraid0 at root
scsibus3 at softraid0: 256 targets
panic: root device (90480fed822a4f03) not found
Stopped at Debugger +0x9: leave
TID  PID  UID  PRFLAGSPFLAGS
 CPU COMMAND
* 0 0  0 0x1
   0x2000 swapper
Debugger at Debugger+0x9
panic() at panic+0xfe
setroot() at setroot+0xa59
diskconf() at diskconf+0
main() at main+0x565
end trace frame: 0x0, count: 10
http://www.openbsd.org/ddb.html describes the minimum info required in bug
reports. Insufficient info makes it difficult to find and fix bugs.
ddb{0}>

No USB 3.0 ethernet devices get recognised either.

>
> >  UKC> disable xhci
> >
> > I get no USB 2.0 support at all.
>
> Because you don't seem to have any ehci hardware.

Re: No USB 3.0 on 5.8 -current Broadwell

[edward wandasiewicz]

I also get no dmesg or /var/log/messages output when I detach the USB
3.0 device from the USB 3.0 port or Type C port.

If I attach and / or detach the USB 3.0 device, it's like it's not
recognised at all.

I do however, get an "indicator light on" the device when it's plugged
in, for what it's worth.

Edward.

On Fri, Nov 20, 2015 at 5:32 PM, edward wandasiewicz <0.w3...@gmail.com>
wrote:
> If I try to plug in various USB 3.0 umass(4) devices into a USB 3.0 or
> USB 3.1 Type C port, nothing gets registered via dmesg, even if I add
>
> option USB_DEBUG
> option UMASS_DEBUG
> option XHCI_DEBUG
>
> and compile a kernel. No dmesg output upon attachment of USB 3.0 devices.
>
> If I try, via config(8)
>
>  UKC> disable xhci
>
> I get no USB 2.0 support at all.
>
> The USB 3.0 devices can only get recognised if I attach them via a USB
> 2.0 cable, and plug this cable into the USB 3.0 or USB 3.1 Type C
> port.
>
> I've attached
>
> 1. usbdevs via USB 2.0 with USB 3.0 device attached
> 2. usbdevs via USB 3.0, with USB 3.0 device attached
> 3. pcidump
> 4. and dmesg
>
> via USB 2.0 cable
> 
>
> $ usbdevs -vd
>
> Controller /dev/usb0:
> addr 1: super speed, self powered, config 1, xHCI root hub(0x),
> Intel(0x8086), rev 1.00
>   uhub0
>  port 1 addr 4: high speed, power 224 mA, config 1, Ultra Fit(0x5583),
> SanDisk(0x0781), rev 1.00, iSerialNumber 4C530147300909108282
>umass0
>  port 2 disabled
>  port 3 disabled
>  port 4 disabled
>  port 5 disabled
>  port 6 disabled
>  port 7 addr 2: high speed, power 500 mA, config 1, NCM-G102(0x6001),
> NMGAAI00010200253N01253(0x2232), rev 0.02
>uvideo0
>  port 8 addr 3: full speed, self powered, config 1, product
> 0x07dc(0x07dc), Intel(0x8087), rev 0.01
>ugen0
>  port 9 disabled
>  port 10 disabled
>  port 11 disabled
>  port 12 disabled
>  port 13 disabled
>  port 14 disabled
>  port 15 disabled
>
> direct to USB 3.0 port
> *
>
> $ usbdevs -vd
>
> Controller /dev/usb0:
> addr 1: super speed, self powered, config 1, xHCI root hub(0x),
> Intel(0x8086), rev 1.00
>   uhub0
>  port 1 disabled
>  port 2 disabled
>  port 3 disabled
>  port 4 disabled
>  port 5 disabled
>  port 6 disabled
>  port 7 addr 2: high speed, power 500 mA, config 1, NCM-G102(0x6001),
> NMGAAI00010200253N01253(0x2232), rev 0.02
>uvideo0
>  port 8 addr 3: full speed, self powered, config 1, product
> 0x07dc(0x07dc), Intel(0x8087), rev 0.01
>ugen0
>  port 9 disabled
>  port 10 disabled
>  port 11 disabled
>  port 12 disabled
>  port 13 disabled
>  port 14 disabled
>  port 15 disabled
>
> pcidump
> **
>
> $ pcidump -v 0:20:0
>
> 0:20:0: Intel 9 Series xHCI
> 0x: Vendor ID: 8086 Product ID: 9cb1
> 0x0004: Command: 0106 Status: 0290
> 0x0008: Class: 0c Subclass: 03 Interface: 30 Revision: 03
> 0x000c: BIST: 00 Header Type: 00 Latency Timer: 00 Cache Line Size: 00
> 0x0010: BAR mem 64bit addr: 0xe120/0x0001
> 0x0018: BAR empty ()
> 0x001c: BAR empty ()
> 0x0020: BAR empty ()
> 0x0024: BAR empty ()
> 0x0028: Cardbus CIS: 
> 0x002c: Subsystem Vendor ID: 8086 Product ID: 9cb1
> 0x0030: Expansion ROM Base Address: 
> 0x0038: 
> 0x003c: Interrupt Pin: 01 Line: 8b Min Gnt: 00 Max Lat: 00
> 0x0070: Capability 0x01: Power Management
> 0x0080: Capability 0x05: Message Signaled Interrupts (MSI)
>
> dmesg with XHCI_DEBUG
> ***
>
> OpenBSD 5.8-current (GENERIC.MP) #3: Fri Nov 20 15:50:27 UTC 2015
> char...@mousse.my.domain:/usr/src/sys/arch/amd64/compile/GENERIC.MP
> real mem = 17094049792 (16302MB)
> avail mem = 16571830272 (15804MB)
> mpath0 at root
> scsibus0 at mpath0: 256 targets
> mainbus0 at root
> bios0 at mainbus0: SMBIOS rev. 2.7 @ 0x7ce42020 (9 entries)
> bios0: vendor coreboot version "(null)" date 04/02/2015
> bios0: GOOGLE Samus
> acpi0 at bios0: rev 2
> acpi0: sleep states S0 S1 S2 S3 S4 S5
> acpi0: tables DSDT FACP HPET APIC MCFG SSDT
> acpi0: wakeup devices HDEF(S3) WLAN(S3) EHCI(S3) XHCI(S3) ATPA(S3)
> CODC(S3) LID0(S5)
> acpitimer0 at acpi0: 3579545 Hz, 24 bits
> acpihpet0 at acpi0: 14318179 Hz
> acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
> cpu0 at mainbus0: apid 0 (boot processor)
> cpu0: Intel(R) Core(TM) i7-5500U CPU @ 2.40GHz, 2400.74 MHz
> cpu0:
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS
H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX
,EST,TM2,SSSE3,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,MOVBE,POPCNT,DEA
DLINE,AES,

Re: Boot on a device with only one video mode 1280 x 850 x 16

[edward wandasiewicz]

1280 x 850 x 16 refers to 16 bit colour depth ( 16bpp )

I can only get grub2 output if I set

GFXTERM = 1280 x 850

If I test on grub2

$ videotest 640x480x8

I get a black screen

Try

$ videotest 1280x850x16

I get the test patten on the Pixel 2.

I believe the reason for just the one resolution, is at present, the
SeaVGABIOS does not have support for mode switching on Intel graphics
adapters. So even if we had more than one resolution available, the
SeaVGABIOS can't switch to it.

On Fri, Oct 9, 2015 at 9:14 PM, edward wandasiewicz <0.w3...@gmail.com> wrote:
> Is it possible to boot OpenBSD on a device which only has one video
> mode available through the BIOS?
>
> At present, we boot in text mode via vga(4) and wscons(4).
>
> If we have a machine compatible with inteldrm(4), it attaches, and the
> dmesg output is then set to the highest resolution.
>
> Is it possible to boot with no dmesg output during the VGA text mode,
> but then once we attach to inteldrm(4), as if by magic, we get the
> dmesg output and can login.
>
> At present, with only one video mode on an inteldrm(4) compatible
> machine, the kernel boots, and then hangs / freezes.
> Basically, no dmesg output. Just sits there...
>
> Is it possible to say, okay, we have a resolution that's not
> compatible for VGA console text mode, but if we can attach to
> inteldrm(4) successfully, we can continue with booting?
>
> Or is it a case of a bad BIOS design in the first place, and it would
> be a case of making bad coding practice following someone else's bad
> coding practice, which is a mess.
>
> The machine in question is a Google Chromebook Pixel 2, which only has
> one video resolution available of 1280 x 850 x 16 in the BIOS. It has
> a Broadwell i7 processor.
>
> vbeinfo command in Grub2 lists just one value of 1280 x 850 x 16.
>
> Edward.

Boot on a device with only one video mode 1280 x 850 x 16

[edward wandasiewicz]

Is it possible to boot OpenBSD on a device which only has one video
mode available through the BIOS?

At present, we boot in text mode via vga(4) and wscons(4).

If we have a machine compatible with inteldrm(4), it attaches, and the
dmesg output is then set to the highest resolution.

Is it possible to boot with no dmesg output during the VGA text mode,
but then once we attach to inteldrm(4), as if by magic, we get the
dmesg output and can login.

At present, with only one video mode on an inteldrm(4) compatible
machine, the kernel boots, and then hangs / freezes.
Basically, no dmesg output. Just sits there...

Is it possible to say, okay, we have a resolution that's not
compatible for VGA console text mode, but if we can attach to
inteldrm(4) successfully, we can continue with booting?

Or is it a case of a bad BIOS design in the first place, and it would
be a case of making bad coding practice following someone else's bad
coding practice, which is a mess.

The machine in question is a Google Chromebook Pixel 2, which only has
one video resolution available of 1280 x 850 x 16 in the BIOS. It has
a Broadwell i7 processor.

vbeinfo command in Grub2 lists just one value of 1280 x 850 x 16.

Edward.

Re: Backup of OpenBSD to Linux box

[Edward]

On Mon, Jun 15, 2015 at 07:46:31AM +0100, Bernd Schoeller wrote:
 Hi -
 
 I have got an OpenBSD box, and I would like to create regular full backups
 of that box to a Linux server at a different location.
 
 The main purpose of this backup is to be able to restore the OpenBSD box on
 a severe hardware failure (HD corruption, fire, etc.). If possible, the
 backup should be incremental as I am somewhat bandwidth constrained between
 the two sites.
 
 There are a number of remote backup systems floating around (rdiff-backup,
 rsnapshot, etc.) and of course there are in-house solutions (dump/restore),
 though I don't know if these are interoperable.
 
 Is there somebody on the list who has a similar setup and could point me at
 a solution that works for him/her?
 
 Thanks,
 Bernd

I used a combination of puppet  rsync to achieve backup with disaster
recovery strategy. System  programs configuration are managed by
puppet, providing consistency between changes  auto recovery through
puppet.

Generally, rsync is used for backup  restore after puppet done it's
configuration.

Do regular testing of your backups so that it's usable when it's needed.

Regards,
Edward.

cvs(1) template when committing

[Edward]

Hi,

My goal was to make cvs (in base) to show a template (with files
commiting) in editor when cvs commit is executed. E.g.:

Modified files: program.c program.h
Fix: __fill this up__
Comments: __fill this up__

Where program.c program.h is auto filled in (by cvs hooks?). The
reason for this is so to make cvs log or cvs log source_file shows
up every log entry with files modified and it's purpose.

Reading the docs, it points to rcsinfo file in CVSROOT might be able
to do it. So I did a pkg_add cvs-guide and read
/usr/local/share/doc/cvs-guide/html/cvsbook.html. Gave a few tries using
hooks commitinfo, loginfo, verifymsg, rcsinfo  loginfo and only managed
to make cvs present static template in editor (vi) from a template file.

I can't seem to figure out how to make it include file name committing
into the template. Anyone got this working? How do you make it work? 

Edward.

Re: suspend/resume regression

[Edward]

On Tue, Jan 13, 2015 at 12:03:31PM +0100, frantisek holop wrote:
 is anybody else seeing regression in suspend/resume?
 i am noticing that my 100% resume ratio is starting
 to decline.  at resume time, the thinkpad half moon
 icon starts blinking and nothing else happens.
 not all resumes fail, but i cannot see a pattern.
 i suspend every night and resume every morning.
 any ideas what i could try?  this was not an issue
 in the past (started in november/december IIRC).
 

Hi,

I've having the same problem on my T430s and cannot reproduce it.  This
machine shutdowns down every night but suspend/resume if not using for
more than 15 minutes. This problem has been with me since 5.5 (-stable).
Below is my thinkpad dmesg:

OpenBSD 5.6-stable (GENERIC.MP) #3: Fri Dec 12 12:21:17 MYT 2014
root@hostname:/usr/src/sys/arch/amd64/compile/GENERIC.MP
real mem = 8255635456 (7873MB)
avail mem = 8027082752 (7655MB)
mpath0 at root
scsibus0 at mpath0: 256 targets
mainbus0 at root
bios0 at mainbus0: SMBIOS rev. 2.7 @ 0xdae9d000 (68 entries)
bios0: vendor LENOVO version G7ET96WW (2.56 ) date 09/12/2013
bios0: LENOVO 2356CTO
acpi0 at bios0: rev 2
acpi0: sleep states S0 S3 S4 S5
acpi0: tables DSDT FACP TCPA SSDT SSDT SSDT HPET APIC MCFG ECDT FPDT ASF! UEFI 
UEFI POAT SSDT SSDT UEFI DBG2
acpi0: wakeup devices LID_(S4) SLPB(S3) IGBE(S4) EXP3(S4) XHCI(S3) EHC1(S3) 
EHC2(S3) HDEF(S4)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpihpet0 at acpi0: 14318179 Hz
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: Intel(R) Core(TM) i5-3320M CPU @ 2.60GHz, 2594.54 MHz
cpu0: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,LONG,LAHF,PERF,ITSC,FSGSBASE,SMEP,ERMS
cpu0: 256KB 64b/line 8-way L2 cache
cpu0: smt 0, core 0, package 0
mtrr: Pentium Pro MTRR support, 10 var ranges, 88 fixed ranges
cpu0: apic clock running at 99MHz
cpu0: mwait min=64, max=64, C-substates=0.2.1.1.2, IBE
cpu1 at mainbus0: apid 1 (application processor)
cpu1: Intel(R) Core(TM) i5-3320M CPU @ 2.60GHz, 2594.11 MHz
cpu1: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,LONG,LAHF,PERF,ITSC,FSGSBASE,SMEP,ERMS
cpu1: 256KB 64b/line 8-way L2 cache
cpu1: smt 1, core 0, package 0
cpu2 at mainbus0: apid 2 (application processor)
cpu2: Intel(R) Core(TM) i5-3320M CPU @ 2.60GHz, 2594.11 MHz
cpu2: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,LONG,LAHF,PERF,ITSC,FSGSBASE,SMEP,ERMS
cpu2: 256KB 64b/line 8-way L2 cache
cpu2: smt 0, core 1, package 0
cpu3 at mainbus0: apid 3 (application processor)
cpu3: Intel(R) Core(TM) i5-3320M CPU @ 2.60GHz, 2594.11 MHz
cpu3: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,LONG,LAHF,PERF,ITSC,FSGSBASE,SMEP,ERMS
cpu3: 256KB 64b/line 8-way L2 cache
cpu3: smt 1, core 1, package 0
ioapic0 at mainbus0: apid 2 pa 0xfec0, version 20, 24 pins
acpimcfg0 at acpi0 addr 0xf800, bus 0-63
acpiec0 at acpi0
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus -1 (PEG_)
acpiprt2 at acpi0: bus 2 (EXP1)
acpiprt3 at acpi0: bus 3 (EXP2)
acpiprt4 at acpi0: bus 4 (EXP3)
acpiprt5 at acpi0: bus -1 (EXP5)
acpiprt6 at acpi0: bus -1 (EXP6)
acpiprt7 at acpi0: bus -1 (EXP7)
acpiprt8 at acpi0: bus -1 (EXP8)
acpicpu0 at acpi0: C2, C1, PSS
acpicpu1 at acpi0: C2, C1, PSS
acpicpu2 at acpi0: C2, C1, PSS
acpicpu3 at acpi0: C2, C1, PSS
acpipwrres0 at acpi0: PUBS, resource for XHCI, EHC1, EHC2
acpitz0 at acpi0: critical temperature is 103 degC
acpibtn0 at acpi0: LID_
acpibtn1 at acpi0: SLPB
acpibat0 at acpi0: BAT0 model 45N1143 serial   520 type LION oem Panasonic
acpibat1 at acpi0: BAT1 not present
acpiac0 at acpi0: AC unit online
acpithinkpad0 at acpi0
cpu0: Enhanced SpeedStep 2594 MHz: speeds: 2601, 2600, 2500, 2400, 2300, 2200, 
2100, 2000, 1900, 1800, 1700, 1600, 1500, 1400, 1300, 1200 MHz
pci0 at mainbus0 bus 0
pchb0 at pci0 dev 0 function 0 Intel Core 3G Host rev 0x09
vga1 at pci0 dev 2 function 0 Intel HD Graphics 4000 rev 0x09
intagp at vga1 not configured
inteldrm0 at vga1
drm0 at inteldrm0
drm: Memory usable by graphics device = 2048M
inteldrm0: 1600x900
wsdisplay0 at vga1 mux 1: console (std, vt100 emulation)
wsdisplay0: screen 1-5 added (std, vt100 emulation)
Intel 7 Series MEI rev 

Re: support of really big volumes

[Edward]

On Wed, Nov 26, 2014 at 09:21:53PM -0600, Boris Goldberg wrote:
 
   Has anyone used the OpenBSD with really big arrays - 50 to 200 terabytes?
 Are there any issues? Is there a rule about how many gigabytes of RAM per
 terabyte mounted is needed?
 

OpenBSD's documentation are really a gem of the project. Here's a quick
one from FAQ 14.8:

A rough guideline is the system should have at least 1M of available
memory for every 1G of disk space to successfully fsck the disk. Swap
can be used here, but at a very significant performance penalty, so
severe that it is usually unacceptable, except in special cases.

In that big arrray you're interested to build, I would be more concern
about the time to fsck.

Ref: http://www.openbsd.org/faq/faq14.html#LargeDrive

X Window manual pages not on http://www.openbsd.org/cgi-bin/man.cgi

[Edward Lourenco]

Hi,

It seems that manual pages related to X Window (e.g. xterm) do not
appear on http://www.openbsd.org/cgi-bin/man.cgi causing all links
that point to them on the OpenBSD FAQ to be broken.

Best regards,
Edward

Patch: mention tc capability in login.conf(5)

[Edward]

Hi,

While reading on login.conf(5), can't find tc capability mentions.
But, examples  usage are demonstrated in /etc/login.conf. After some
search and readings, found out that it has a few paragraph explaining in
getcap(3):

A special capability, tc= name, is used to indicate that the record specified
by name should be substituted for the tc capability.  tc capabilities may
interpolate records which also contain tc capabilities and more than one tc
capability may be used in a record.  A tc expansion scope (i.e., where the
argument is searched for) contains the file in which the tc is declared and all
subsequent files in the file array.
 
When a database is searched for a capability record, the first matching record
in the search is returned.  When a record is scanned for a capability, the
first matching capability is returned; the capability :nameT@: will hide any
following definition of a value of type T for name; and the capability :name@:
will prevent any following values of name from being seen.
   
These features combined with tc capabilities can be used to generate variations
of other databases and records by either adding new capabilities, overriding
definitions with new definitions, or hiding following definitions via `@'
capabilities.

I though it should be mention in login.conf(5). Attached is a diff
inserting tc capability into the table of login.conf(5).

Comments?

Regards,
Edward.

Index: login.conf.5
===
RCS file: /cvs/src/share/man/man5/login.conf.5,v
retrieving revision 1.52
diff -u -p -r1.52 login.conf.5
--- login.conf.518 Feb 2014 22:54:14 -  1.52
+++ login.conf.58 Aug 2014 02:00:04 -
@@ -310,6 +310,13 @@ The
 environment variable will contain the shell specified in the password file.
 .\
 .Pp
+.It tc Ta string Ta  Ta
+Interpolate / Expands records from corresponding
+.Pa login.conf .
+See
+.Xr getcap 3 .
+.\
+.Pp
 .It term Ta string Ta Dv su Ta
 Default terminal type if not able to determine from other means.
 .\

Re: Patch: porters guide chapter 2.2, item no. 23

[Edward]

On Sun, Jul 27, 2014 at 01:19:07PM +0200, Ingo Schwarze wrote:
 Hi Edward,
 
 i agree the wording was a bit awkward, so i have committed a tweaked
 version of your patch:
 
  - Make it clearer which installation we are talking about,
there is text between the description of make fake and
this paragraph, and people could otherwise confuse this
with make install
 
  - I don't think done is better than complete,
and i don't think sub-directory is clearer than directory.
The document also talks about the directory patches
in another paragraph.
 
  - As noticed by others, template would be misleading.
 
 Yours,
   Ingo
 

Hi Ingo,

The changes is good. Thanks!

Regards,
Edward.

[Patch] CVS on Web broken link in FAQ 8

[Edward]

Hi,

While browsing for mg editor tutorial[1] from www.openbsd.org, stumble
on broken link to it in FAQ 8. A random check on cvsweb related target
link, is broken as well. Below is a patch for fixing all the links in
faq8.html. 

If this looks good, I'll send in more patch (particularly on FAQ 5,9,10
and 11) as I'm not too sure whether there's something going on behind
the scene (change of web setup?) that causes this or it has broken for a
while.

Ok?

Regards,
Edward.

[1]http://openbsd.cs.toronto.edu/cgi-bin/cvsweb/~checkout~/src/usr.bin/mg/tutorial?rev=HEAD

Index: faq8.html
===
RCS file: /cvs/www/faq/faq8.html,v
retrieving revision 1.253
diff -u -p -r1.253 faq8.html
--- faq8.html   3 Jun 2014 11:11:20 -   1.253
+++ faq8.html   26 Jul 2014 11:24:09 -
@@ -250,7 +250,7 @@ feel free to a href=../report.htmlre
 
 tr valign=top
 td
-a 
href=http://www.openbsd.org/cgi-bin/cvsweb/ports/lang/gawk/?only_with_tag=OPENBSD_5_5;lang/gawk/a
+a 
href=http://openbsd.cs.toronto.edu/cgi-bin/cvsweb/ports/lang/gawk/?only_with_tag=OPENBSD_5_5;lang/gawk/a
 /td
 tdGNU awk/td
 /tr
@@ -273,8 +273,8 @@ Most platforms use gcc 4.2.1.
 
 tr valign=top
 td
-a 
href=http://www.openbsd.org/cgi-bin/cvsweb/ports/lang/gcc/?only_with_tag=OPENBSD_5_5;lang/gcc/a
-a 
href=http://www.openbsd.org/cgi-bin/cvsweb/ports/devel/llvm/?only_with_tag=OPENBSD_5_5;devel/llvm/a
+a 
href=http://openbsd.cs.toronto.edu/cgi-bin/cvsweb/ports/lang/gcc/?only_with_tag=OPENBSD_5_5;lang/gcc/a
+a 
href=http://openbsd.cs.toronto.edu/cgi-bin/cvsweb/ports/devel/llvm/?only_with_tag=OPENBSD_5_5;devel/llvm/a
 /td
 tdThese compilers have not gone through the security audit and do not
 contain security enhancements like those in the base system.
@@ -286,7 +286,7 @@ confusion with their counterparts in the
 tr valign=top
 tdCaml/td
 td
-a 
href=http://www.openbsd.org/cgi-bin/cvsweb/ports/lang/ocaml/?only_with_tag=OPENBSD_5_5;lang/ocaml/a
+a 
href=http://openbsd.cs.toronto.edu/cgi-bin/cvsweb/ports/lang/ocaml/?only_with_tag=OPENBSD_5_5;lang/ocaml/a
 /td
 tdObjective Caml/td
 /tr
@@ -294,7 +294,7 @@ confusion with their counterparts in the
 tr valign=top
 tdCOBOL/td
 td
-a 
href=http://www.openbsd.org/cgi-bin/cvsweb/ports/lang/open-cobol/?only_with_tag=OPENBSD_5_5;lang/open-cobol/a
+a 
href=http://openbsd.cs.toronto.edu/cgi-bin/cvsweb/ports/lang/open-cobol/?only_with_tag=OPENBSD_5_5;lang/open-cobol/a
 /td
 td/td
 /tr
@@ -302,7 +302,7 @@ confusion with their counterparts in the
 tr valign=top
 tdErlang/td
 td
-a 
href=http://www.openbsd.org/cgi-bin/cvsweb/ports/lang/erlang/?only_with_tag=OPENBSD_5_5;lang/erlang/a
+a 
href=http://openbsd.cs.toronto.edu/cgi-bin/cvsweb/ports/lang/erlang/?only_with_tag=OPENBSD_5_5;lang/erlang/a
 /td
 td/td
 /tr
@@ -310,14 +310,14 @@ confusion with their counterparts in the
 tr valign=top
 td rowspan=2Fortran/td
 td
-a 
href=http://www.openbsd.org/cgi-bin/cvsweb/ports/lang/g77/?only_with_tag=OPENBSD_5_5;lang/g77/a
+a 
href=http://openbsd.cs.toronto.edu/cgi-bin/cvsweb/ports/lang/g77/?only_with_tag=OPENBSD_5_5;lang/g77/a
 /td
 tdOnly Fortran 77 support./td
 /tr
 
 tr valign=top
 td
-a 
href=http://www.openbsd.org/cgi-bin/cvsweb/ports/lang/gcc/?only_with_tag=OPENBSD_5_5;lang/gcc/a
+a 
href=http://openbsd.cs.toronto.edu/cgi-bin/cvsweb/ports/lang/gcc/?only_with_tag=OPENBSD_5_5;lang/gcc/a
 /td
 tdFortran 95 is also supported by ttegfortran/tt in gcc 4.0 and above.
 This new compiler is available as a subpackage (f95) of gcc.
@@ -327,14 +327,14 @@ This new compiler is available as a subp
 tr valign=top
 td rowspan=2Haskell/td
 td
-a 
href=http://www.openbsd.org/cgi-bin/cvsweb/ports/lang/ghc/?only_with_tag=OPENBSD_5_5;lang/ghc/a
+a 
href=http://openbsd.cs.toronto.edu/cgi-bin/cvsweb/ports/lang/ghc/?only_with_tag=OPENBSD_5_5;lang/ghc/a
 /td
 td/td
 /tr
 
 tr valign=top
 td
-a 
href=http://www.openbsd.org/cgi-bin/cvsweb/ports/lang/nhc98/?only_with_tag=OPENBSD_5_5;lang/nhc98/a
+a 
href=http://openbsd.cs.toronto.edu/cgi-bin/cvsweb/ports/lang/nhc98/?only_with_tag=OPENBSD_5_5;lang/nhc98/a
 /td
 td/td
 /tr
@@ -342,28 +342,28 @@ This new compiler is available as a subp
 tr valign=top
 td rowspan=4Java/td
 td
-a 
href=http://www.openbsd.org/cgi-bin/cvsweb/ports/devel/jdk/?only_with_tag=OPENBSD_5_5;devel/jdk/a
+a 
href=http://openbsd.cs.toronto.edu/cgi-bin/cvsweb/ports/devel/jdk/?only_with_tag=OPENBSD_5_5;devel/jdk/a
 /td
 tdOpenJDK - 1.7 and 1.6 as a package on amd64/td
 /tr
 
 tr valign=top
 td
-a 
href=http://www.openbsd.org/cgi-bin/cvsweb/ports/www/icedtea-web/?only_with_tag=OPENBSD_5_5;www/icedtea-web/a
+a 
href=http://openbsd.cs.toronto.edu/cgi-bin/cvsweb/ports/www/icedtea-web/?only_with_tag=OPENBSD_5_5;www/icedtea-web/a
 /td
 tdBrowser plugin and web start for OpenJDK./td
 /tr
 
 tr valign=top
 td
-a 
href=http://www.openbsd.org/cgi-bin/cvsweb/ports/devel/eclipse/?only_with_tag=OPENBSD_5_5;devel/eclipse/a
+a 
href=http://openbsd.cs.toronto.edu/cgi-bin/cvsweb/ports/devel/eclipse

Re: [Patch] CVS on Web broken link in FAQ 8

[Edward]

On Sat, Jul 26, 2014 at 07:41:18PM +0800, Edward wrote:
 Hi,
 
 While browsing for mg editor tutorial[1] from www.openbsd.org, stumble
 on broken link to it in FAQ 8. A random check on cvsweb related target
 link, is broken as well. Below is a patch for fixing all the links in
 faq8.html. 
 
 If this looks good, I'll send in more patch (particularly on FAQ 5,9,10
 and 11) as I'm not too sure whether there's something going on behind
 the scene (change of web setup?) that causes this or it has broken for a
 while.
 
 Ok?
 
 Regards,
 Edward.
 
 [1]http://openbsd.cs.toronto.edu/cgi-bin/cvsweb/~checkout~/src/usr.bin/mg/tutorial?rev=HEAD
 

Hi,

Got to know (thanks Erwin!) that this is intended [1].

Sorry for the noise.

Regards,
Edward.

[1] http://marc.info/?l=openbsd-techm=140553819232513w=2

Patch: porters guide chapter 2.2, item no. 23

[Edward]

Hi,

The original wording doesn't seems to flow too well:

Create pkg/PLIST. After the install is complete use the developer's
command, make plist which makes the file PLIST in the pkg directory.
This file is a candidate packing list.

I would like to suggest changing to the followig:

Create pkg/PLIST. After the installation is done, use the developer's
command make plist, which creates the file PLIST in pkg sub-directory.
It will be a template for this port.

The patch to my suggestion is at the bottom of this mail, ok?

Regards,
Edward.

Index: guide.html
===
RCS file: /cvs/www/faq/ports/guide.html,v
retrieving revision 1.29
diff -u -p -r1.29 guide.html
--- guide.html  21 Jun 2014 12:17:47 -  1.29
+++ guide.html  25 Jul 2014 08:08:35 -
@@ -498,10 +498,9 @@ generated packing-lists). Remember that 
 For automatic updating of tt/etc/tt, sysmerge(8) may help.
 brbrli
 Create ttpkg/PLIST/tt.
-After the install is complete use the developer's command,
-ttbmake plist/b/tt which makes the file ttPLIST/tt in the
-ttpkg/tt directory.
-This file is a candidate packing list.
+After the installation is done, use the developer's command 
+ttbmake plist/b/tt, which creates the file ttPLIST/tt in 
+ttpkg/tt sub-directory. It will be a template for this port.
 p
 Peruse ttPLIST/tt and verify that everything was installed and that it was
 installed in the proper locations.

Patch: porters guide chapter 2.2, item no. 23 (again)

[Edward]

Hi,

I thought pkg_create(1) is worth mentioning in the porting checklist so
that a new porter would know where to find more information on PLIST
variables  annotations that's useful to the PLIST file. 

The below patch appended the sentence PLIST variables/annotations can
be found in pkg_create(1). to the second paragraph of item 23, chapter
2.2 of Porting guide[1].

Regards,
Edward.

[1]http://www.openbsd.org/faq/ports/guide.html

Index: guide.html
===
RCS file: /cvs/www/faq/ports/guide.html,v
retrieving revision 1.29
diff -u -p -r1.29 guide.html
--- guide.html  21 Jun 2014 12:17:47 -  1.29
+++ guide.html  25 Jul 2014 09:17:40 -
@@ -506,7 +506,9 @@ This file is a candidate packing list.
 Peruse ttPLIST/tt and verify that everything was installed and that it was
 installed in the proper locations.
 Anything not installed can be added to a port ttMakefile/tt
-ttpost-install/tt rule.
+ttpost-install/tt rule. ttPLIST/tt variables/annotations can be found 
in
+a href=http://www.openbsd.org/cgi-bin/man.cgi?sektion=1amp;query=pkg_create;
+pkg_create(1)/a.
 p
 Ports that install shared libraries will have another file called
 ttPFRAG.shared/tt.

Re: Patch: porters guide chapter 2.2, item no. 23

[Edward]

On Fri, Jul 25, 2014 at 11:22:44AM -0700, patrick keshishian wrote:
 On 7/25/14, Edward edw...@rdtan.net wrote:
  Hi,
 
  The original wording doesn't seems to flow too well:
 
  Create pkg/PLIST. After the install is complete use the developer's
  command, make plist which makes the file PLIST in the pkg directory.
  This file is a candidate packing list.
 
  I would like to suggest changing to the followig:
 
  Create pkg/PLIST. After the installation is done, use the developer's
  command make plist, which creates the file PLIST in pkg sub-directory.
  It will be a template for this port.
 
 I don't think definition of the word template fits this
 use-case. What issue do you have with the original
 wording?
 
 --patrick
 

Hi Patrick,

Refering to this sentence:
After the install is complete use the developer's command, make plist
which makes the file PLIST in the pkg directory.

There's 3 points to make in this original sentence:
1. After the install is complete
2. use the developer's command, make plist
3. which makes the file PLIST in the pkg directory.

Which I think should be broken up with commas so that it appears
clearer. And thus my suggestion to change it to:
After the installation is done, use the developer's
command make plist, which creates the file PLIST in pkg sub-directory.

As for the last sentences, This file is a candidate packing list., I
think the word candidate usually refers to a person than an object.
But I do agree, template might not be as good.

Regards,
Edward.

Resume connetions of urtwn(4) - from zzz resume

[Edward]

Hi,

urtwn0 is a usb wifi connnection which work perfectly after bootup,
which got its configuration from /etc/hostname.urtwn0. But every time
resuming from zzz, it gets offline and need to online (sh /etc/netstart)
manually. Tried using /etc/apm/resume or ifstated(8) to execute sh
/etc/netstart in order to bring urtwn0 online but it doesn't work.
Instead, through /etc/apm/resume, ifstated(8) is able to bring urtwn0
online.

1. ifstated
ifconfig urtwn0 down after ifstated started (through
/etc/rc.d/ifstated) works correctly. But after resume, it doesn't seems
to do anything. /var/log/messages  /var/log/daemon didn't show anything
useful to me. A /etc/rc.d/ifstated reload fixes it and it then does
its job, bringing urtwn0 online. A possible bug in ifstated or I've
mis-configured ifstated?

2. /etc/apm/resume
After resume from zzz, the command sh /etc/netstart in /etc/apm/resume
doesn't seems get executed at all, or some error happens but didn't get
recorded in /var/log/messages or /var/log/daemon. Tried set -x (made
/etc/apm/resume as bourne shell script) but nothing useful shown in
those logfiles. Maybe I've done something wrong here?

3. With ifstated through /etc/apm/resume
By reloading ifstated in /etc/apm/resume, it works accordingly.

Although this achieve my purpose of bringing interface urtwn0 online
after resume, the extra step taken to bring urtwn0 online seems awkward.
What seems to be wrong in what I've done in ifstated or /etc/apm/resume
that it doesn't execute sh /etc/netstart?

Below are my configurations and logs I've noticed. Please do let me know
if more information is needed.

Regards,
Edward.

/etc/hostname.urtwn0:
nwid ssid_name
wpakey secret
inet 10.10.10.2 255.0.0.0

/etc/ifstated-urtwn0.conf:
urtwn0_up = urtwn0.link.up
urtwn0_down = !urtwn0.link.up
urtwn0_unknown = urtwn0.link.unknown

net = '( ping -q -c 1 -w 1 8.8.8.8  /dev/null every 10 )'
gateway = '( ping -q -c 1 -w 1 10.10.10.1  /dev/null every 10 )'

state check {
if $urtwn0_down || $urtwn0_unknown
set-state dead
}

state dead {
init {
run sh /etc/netstart
}
}

/etc/apm/resume:
#!/bin/sh

# wait 5 for urtwn0 gets loaded
sleep 5; /etc/rc.d/ifstated reload

/etc/rc.conf.local:
ifstated_flags=-f /etc/ifstated-urtwn0.conf

uname -a:
OpenBSD laptop 5.5 GENERIC.MP#315 amd64

ifconfig urtwn0:
urtwn0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500
lladdr 90:61:0c:16:66:00
priority: 4
groups: wlan egress
media: IEEE802.11 autoselect (OFDM54 mode 11g)
status: active
ieee80211: nwid ssid_name chan 10 bssid b8:a3:86:bf:22:bb 188dB 
wpakey not displayed wpaprotos wpa1,wpa2 wpaakms psk wpaciphers tkip,ccmp 
wpagroupcipher tkip
inet 10.10.10.111 netmask 0xff00 broadcast 10.10.10.255
inet6 fe80::9261:cff:fe16:540a%urtwn0 prefixlen 64 scopeid 0x16

/var/log/daemon:
Jul  8 10:16:33 laptop apmd: system suspending
Jul  8 10:16:46 laptop apmd: system resumed from sleep
Jul  8 10:18:42 laptop apmd: system suspending
Jul  8 10:19:25 laptop apmd: system resumed from sleep

/var/log/messages:
Jul  8 10:16:33 laptop apmd: system suspending
Jul  8 10:16:35 laptop /bsd: error: [drm:pid12060:i915_write8] *ERROR* 
Unknown unclaimed register before writing to 3b4
Jul  8 10:16:46 laptop /bsd: error: [drm:pid12060:i915_write32] *ERROR* 
Unclaimed write to 70030
Jul  8 10:16:46 laptop /bsd: error: 
[drm:pid12060:intel_dp_set_link_train] *ERROR* Timed out waiting for DP idle 
patterns
Jul  8 10:16:46 laptop /bsd: error: [drm:pid12060:i915_write32] *ERROR* 
Unknown unclaimed register before writing to 64040
Jul  8 10:16:46 laptop /bsd: urtwn0 detached
Jul  8 10:16:46 laptop /bsd: wskbd1: disconnecting from wsdisplay0
Jul  8 10:16:46 laptop /bsd: wskbd1 detached
Jul  8 10:16:46 laptop /bsd: ukbd0 detached
Jul  8 10:16:46 laptop /bsd: uhidev0 detached
Jul  8 10:16:46 laptop /bsd: wsmouse1 detached
Jul  8 10:16:46 laptop /bsd: ums0 detached
Jul  8 10:16:46 laptop /bsd: uhid0 detached
Jul  8 10:16:46 laptop /bsd: uhid1 detached
Jul  8 10:16:46 laptop /bsd: uhid2 detached
Jul  8 10:16:46 laptop /bsd: uhidev1 detached
Jul  8 10:16:46 laptop /bsd: uhid3 detached
Jul  8 10:16:46 laptop /bsd: uhid4 detached
Jul  8 10:16:46 laptop /bsd: uhid5 detached
Jul  8 10:16:46 laptop /bsd: uhid6 detached
Jul  8 10:16:46 laptop /bsd: uhidev2 detached
Jul  8 10:16:46 laptop /bsd: ugen0 detached
Jul  8 10:16:46 laptop /bsd: video0 detached
Jul  8 10:16:46 laptop /bsd: uvideo0 detached

Re: [Patch] Possible typo in stdio(3) manpage

[Edward]

On Wed, Jul 02, 2014 at 11:14:50PM +0059, Jason McIntyre wrote:
 i think the phrase going off and computing means use fflush before
 your code goes elsewhere, to do other things. whatever it means, the
 wording is kind of tragic, i agree.
 
 your diff seeks to tweak bad wording, whereas i prefer to kill it. i'll
 commit the diff below in the morning (relatively speaking, of course)
 unless my maibox gets jammed with outrage.
 
 jmc
 
 Index: stdio.3
 ===
 RCS file: /cvs/src/lib/libc/stdio/stdio.3,v
 retrieving revision 1.30
 diff -u -r1.30 stdio.3
 --- stdio.3   25 Mar 2014 15:23:27 -  1.30
 +++ stdio.3   2 Jul 2014 22:11:10 -
 @@ -148,8 +148,7 @@
  or when a large amount of computation is done after printing
  part of a line on an output terminal, it is necessary to
  .Xr fflush 3
 -the standard output before going off and computing so that the output
 -will appear.
 +the standard output so that the output will appear.
  Alternatively, these defaults may be modified via the
  .Xr setvbuf 3
  function.
 

Hi Jason,

Thanks for fix and clarification.

Regards,
Edward.

Re: What is the difference between these two SSHD configs?

[Edward M]

On 07/01/14 09:18, Ez Egy wrote:

#1

 Match Group GROUPNAME, User *,!root

#2

 Match Group GROUPNAME User !root

What is the difference between #1 and #2 in the SSHD_CONFIG?

If someone could help me.. thanks in advance..



 May want to take a look at 'PATTERNS' section of 'ssh_config' manpage.

[Patch] Possible typo in stdio(3) manpage

[Edward]

Hi,

Caught in a slight confusion about the wordings describing stdio(3) scenario
needing fflush(3). The diff shows my understanding, but please do reply if it
is otherwise.

# cvs diff
cvs server: Diffing .
Index: stdio.3
===
RCS file: /cvs/src/lib/libc/stdio/stdio.3,v
retrieving revision 1.30
diff -u -p -r1.30 stdio.3
--- stdio.3 25 Mar 2014 15:23:27 -  1.30
+++ stdio.3 2 Jul 2014 03:00:36 -
@@ -148,7 +148,7 @@ In these cases,
 or when a large amount of computation is done after printing
 part of a line on an output terminal, it is necessary to
 .Xr fflush 3
-the standard output before going off and computing so that the output
+the standard output before continuing computation so that the output
 will appear.
 Alternatively, these defaults may be modified via the
 .Xr setvbuf 3

Regards,
Edward.

Wireless USB device - found working

[Edward]

Hi,

Bought a Prolink wireless-n mini USB adapter and it works great with
OpenBSD 5.5-release. Survived 2 suspend (zzz) with 10 hours of
connectivity up till this writing.

Below is some hardware info detected and hope it helps someone.

Attached is a diff to list this device in urtwn(4), if it is okay.

uname:
OpenBSD puffy 5.5 GENERIC.MP#315 amd64

dmesg:
Jun 23 13:48:52 puffy /bsd: urtwn0 at uhub1
Jun 23 13:48:52 puffy /bsd:  port 1 Realtek 802.11n WLAN Adapter rev 
2.00/2.00 addr 3
Jun 23 13:48:52 puffy /bsd: urtwn0: MAC/BB RTL8192CU, RF 6052 2T2R, address 
90:61:0c:16:54:0a

usbdevs:
$ usbdevs -vda3 
Controller /dev/usb0:
addr 3: high speed, power 500 mA, config 1, 802.11n WLAN Adapter(0x8178), 
Realtek(0x07b8), rev 2.00, iSerialNumber 00e04c01
  urtwn0

diff:
# cvs diff urtwn.4  
  
Index: urtwn.4
===
RCS file: /cvs/src/share/man/man4/urtwn.4,v
retrieving revision 1.29
diff -u -p -r1.29 urtwn.4
--- urtwn.4 14 Mar 2014 15:00:47 -  1.29
+++ urtwn.4 23 Jun 2014 07:07:12 -
@@ -114,6 +114,7 @@ The following adapters should work:
 .It Planex GW-USValue-EZ
 .It Planex GW-USWExtreme
 .It POWCHIP POW-N18
+.It Prolink WN2201
 .It Sitecom WL-365
 .It Solwise NET-WL-UMD-606N
 .It TRENDnet TEW-648UBM

Regards,
Edward.

Linux Foundation to fund OpenSSL

[AHLSENGIRARD, EDWARD F CTR USAF AFSOC AFSOC A6/A6OK]

This just in:

http://www.theinquirer.net/inquirer/news/2347534/linux-foundation-thro\
ws-money-at-openssl-staffing-post-heartbleed



--
Ed Ahlsen-Girard, Contractor (Application Management Services) AFSOC/A6OK
email: edward.ahlsen-girard@hurlburt.af.mil
850-884-2414
DSN: 312-579-2414

Potential scripting engine to integrate into mg?

[Edward L.]

Hello misc@
There have been discussions about extending mg with tinyscheme:
http://www.daemonforums.org/showthread.php?t=7262
Or with lua:
http://undeadly.org/cgi?action=articlesid=20120723072952
What about with python?
Any thoughts?

Regards,Edward.

Re: Potential scripting engine to integrate into mg?

[Edward L.]

So why don't we have python in the base? Perl is in there.
Just curious, not that I'm requesting. :-)
Thanks.
Edward



From: Theo de Raadt dera...@cvs.openbsd.org
To: Edward L. drawd...@gmail.com
CC: misc@openbsd.org misc@openbsd.org
Sent: December 2, 2013 12:53 PM
Subject: Re: Potential scripting engine to integrate into mg?

 There have been discussions about extending mg with tinyscheme:
 http://www.daemonforums.org/showthread.php?t=7262
 Or with lua:
 http://undeadly.org/cgi?action=articlesid=20120723072952
 What about with python?

So we should put python in the base.  That would be great.

Re: disklabel error in softraid crypto volume after updating to 5.0/5.1

[Edward M]

On 05/22/2012 01:43 AM, Rodolfo Gouveia wrote:

Hi all,
I was running 4.9 on this server and finally got it
updated to 5.0 and right after to 5.1.
But security(8) now gives me this:
disklabel: partition a: partition extends past end of unit
sd1 is a softraid crypto volume and running disklabel I can see the problem:
 # disklabel sd1
 # /dev/rsd1c:
 type: SCSI
 disk: SCSI disk
 label: SR CRYPTO
 duid: 
 flags:
 bytes/sector: 512
 sectors/track: 63
 tracks/cylinder: 255
 sectors/cylinder: 16065
 cylinders: 24136
 total sectors: 387758000
 boundstart: 0
 boundend: 387758000
 drivedata: 0

 16 partitions:
 #size   offset  fstype [fsize bsize  cpg]
   a:3877580010  4.2BSD   2048 163841
   c:3877580000  unused
 disklabel: partition a: partition extends past end of unit

So in fact it goes beyond the disk. This sd1a comes from sd0h:
 h:387758080 98568192RAID

I can mount the partition and have been using it without any problems.
So is this something to be worried about?

cheers,
rodolfo



 Saw this before. Is this occuring  on a sparc system? if it is. 
read section 12.16.2, it may apply?

  http://www.openbsd.org/faq/faq12.html#sparc64gt8g

Re: acer aspire one D270

[Edward M]

On 05/04/2012 05:41 AM, Stuart Henderson wrote:

On 2012-05-04, Edward Mmindbende...@live.com  wrote:

cpu0: Intel(R) Atom(TM) CPU N2600 @ 1.60GHz (GenuineIntel 686-class) 1.60 GHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,NXE,LONG,SSE3,MWAIT,DS-CPL,EST,TM2,SSSE3,CX16,xTPR,PDCM,MOVBE,LAHF

  is this correct four core cpu?

http://lmgtfy.com/?q=atom+n2600+specsl=1



Thanks for the reply.  first time  I read the specs site I missed 
the part that this cpu
has Hyper Threading. First I believed it could been a bug.  Was not 
aware  atoms comes with Hyper threading,until now:-)

Re: acer aspire one D270

[Edward M]

On 05/03/2012 04:04 PM, frantisek holop wrote:

OpenBSD 5.1-current (GENERIC.MP) #253: Thu Apr 26 01:45:24 MDT 2012
 dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP
cpu0: Intel(R) Atom(TM) CPU N2600 @ 1.60GHz (GenuineIntel 686-class) 1.60 GHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,NXE,LONG,SSE3,MWAIT,DS-CPL,EST,TM2,SSSE3,CX16,xTPR,PDCM,MOVBE,LAHF
real mem  = 1061408768 (1012MB)
avail mem = 1033216000 (985MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 01/12/12, BIOS32 rev. 0 @ 0xef725, SMBIOS 
rev. 2.7 @ 0xe3e00 (47 entries)
bios0: vendor Insyde Corp. version V1.04 date 01/12/2012
bios0: Acer AOD270
acpi0 at bios0: rev 2
acpi0: sleep states S0 S3 S4 S5
acpi0: tables DSDT FACP HPET APIC MCFG WDRT SLIC BOOT MSDM FPDT SSDT SSDT SSDT 
WDAT
acpi0: wakeup devices USB0(S3) USB1(S3) USB2(S3) USB3(S3) USB7(S3) PXSX(S4) 
RP01(S4) PXSX(S4) PXSX(S4) PXSX(S4)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpihpet0 at acpi0: 14318179 Hz
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: apic clock running at 99MHz
cpu1 at mainbus0: apid 1 (application processor)
cpu1: Intel(R) Atom(TM) CPU N2600 @ 1.60GHz (GenuineIntel 686-class) 1.60 GHz
cpu1: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,NXE,LONG,SSE3,MWAIT,DS-CPL,EST,TM2,SSSE3,CX16,xTPR,PDCM,MOVBE,LAHF
cpu2 at mainbus0: apid 2 (application processor)
cpu2: Intel(R) Atom(TM) CPU N2600 @ 1.60GHz (GenuineIntel 686-class) 1.60 GHz
cpu2: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,NXE,LONG,SSE3,MWAIT,DS-CPL,EST,TM2,SSSE3,CX16,xTPR,PDCM,MOVBE,LAHF
cpu3 at mainbus0: apid 3 (application processor)
cpu3: Intel(R) Atom(TM) CPU N2600 @ 1.60GHz (GenuineIntel 686-class) 1.60 GHz
cpu3:

is this correct four core cpu?

Re: xxxterm and firefox35 May 11 snapshot

[Ahlsen-Girard, Edward F CTR USAF AFSOC AFSOC/A6OK]

On 2011-05-16 16:42:22, Ted Unangst ted.unangst () gmail ! com wrote:

 On May 16, 2011, at 2:21 AM, Stuart Henderson s...@spacehopper.org
wrote:

  On 2011/05/15 18:22, Ted Unangst wrote:
  On Sun, May 15, 2011 at 4:42 AM, Stuart Henderson
s...@spacehopper.org
 wrote:
  In one week, libpng is updated to version X+1 and firefox is
updated
  to version Z+1.  You update.  The gtk version has not changed, it
will
  not be upgraded.  Now firefox is linked to png X+1 and X (via
gtk).
  Hilarity ensues.  A newly built gtk will be linked against png
X+1 and
  will work correctly.
 
  Determining which package needs rebuilding is really hard.  It's
much
  easier to install a complete matched set.
 
 
 
  Packages takes care of this just fine *but* you are supposed to
  use packages from a consistent snapshot. Don't just update a
single
  package, make sure you 1) update packages as a complete set and
  2) the mirror you're updating from isn't half-way through
updating.
 
  They do?  As far as I know, firefox will only say that it depends
on
  gtk Y and png X+1.  Nothing records the fact that firefox depends
on a
  gtk Y that itself depends on png X+1.
 
  If you update all packages from a consistent snapshot then this
doesn't
  matter because the firefox and gtk packages will both depend on the
same
  version of png.

 Right, but what happens when you upgrade firefox? Then it's from a
different
 snapshot. Or is gtk upgraded as well even though the version doesn't
change?
 I don't see how pkgadd can know to do that.

 Returning to point 1 above, how does one update packages as a complete
set?



Are there any results from a fresh snapshot install (not update), or
shall
I try that when I get home?



--
Ed Ahlsen-Girard, Contractor (EITC)
AFSOC/A6OK
email: edward.ahlsen-girard@hurlburt.af.mil
850-884-2414
DSN: 579-2414

Re: Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)

[Ahlsen-Girard, Edward F CTR USAF AFSOC AFSOC/A6OK]

 On 2011-04-22 6:35:46, Philip Guenther guenther () gmail ! com wrote:
 
 On Thu, Apr 21, 2011 at 10:16 PM, Sunnz sun...@gmail.com wrote:
  forget about multi-license, it is isc license and it doesn't really
  make sense to make them like ms volume license.
 
  but how hard would it be to provide an option for people to specify a
  different price for buying the cd? then you can pay $1000 for a cd if
  you want.
 
 The tax laws of the country I live in are more than enough for me to
 willingly deal with, so I won't claim any expertise in the laws of
 other countries, but are the people making these suggestions cognizant
 of the various laws and regulations that tend to surround deductible
 business expense or whatever the nearest local equivalent is?  Do you
 *really* think a pick your own price item is actually fully
 deductible in the eyes of a random local tax authority?  Really?
 Enough to stake your own fortune and business on?  Do you know the
 laws of other countries enough that your conscience lets you make that
 recommendation to people living elsewhere?  If so, wow, what are you
 doing hanging out on this list instead of making big bucks in finance?
 
 
 If you want to make a contribution and having it be tax deductible is
 a significant concern or would result in an increase in the size of
 the donation, then contact the OpenBSD Foundation (and review your
 relevant tax laws and regulations).  The Foundation exists, in part,
 so that these issues and concerns don't become an undue burden on
 people.
 
 
 Philip Guenther
 

I'll bet that even though it can't be deducted, a check payable to Theo 
deRaadt c/o The Computer Shop, Calgary would be quite effective.

And we'll probably know if it wouldn't be before anyone has time to get 
stamps.

Ed Ahlsen-Girard

[demime 1.01d removed an attachment of type application/x-pkcs7-signature which 
had a name of smime.p7s]

Re: Upgrade i386 to amd64

[Ahlsen-Girard, Edward F CTR USAF AFSOC AFSOC/A6OK]

 On 2011-04-07 0:57:10 Amit Kulkarni amitkulz () gmail ! com wrote:

 Is this in the FAQ? Never thought I would read such a question.


I will be sure to put it in the IFAQ for 5.0.  Along with where is
the sea-urchin flavored frozen yogurt? and do these gloves make
my butt look big?



--
Ed Ahlsen-Girard

Re: is SHA256 file used or not ?

[Edward Martinez]

On 02/08/11 12:45, Mihai Popescu wrote:

OK, reading this, what to do next? If I will be concerned, i will
wait. But why I should be concerned ? If I'm not concerned, can I
install with wrong checksum? ...

I think you need this:

   http://psychcentral.com/therapy/

   http://www.mentalhelp.net/

--
Regards,
Edward

Re: .xsession never finishes

[Ahlsen-Girard, Edward F CTR USAF AFSOC AFSOC/A6OK]

Alexander Hall halex () openbsd ! org wrote at 2011-01-26 16:02:06

 On 01/26/11 14:39, Ed Ahlsen-Girard wrote:
  Recently .xsession began to take much longer to finish.  Upgrading
to
  the 25 Jan snapshot has not changed this.  I don't know how long it
  takes anymore, because I can't wait 5+ minutes every time I log in.
 
  The selected background color does display, and the xconsole log
  displays in the top left corner, but it never goes away and nothing
  else ever shows up.  The mouse pointer moves, but neither button
  accomplishes anything.  X can be run successfully from startx, but
  that's not preferred. My window manager is fvwm. dmesg, .xsession,
and
  rc.conf.local files are below.
 

 Start from the simplest .xsession possible and add stuff one at a
time.

 Also, not all those commands have to be 'd, and FwvmBacker sure has
no
 place there. :-)

 /Alexander



Will do.  I'm still concerned that this began to happen after a lengthy
period of good behavior by .xsession.  It's not like a recent change
broke it.

Ed Ahlsen-Girard

Re: Let's talk about HTTPS Everywhere

[Ahlsen-Girard, Edward F CTR USAF AFSOC AFSOC/A6OK]

Marco Peereboom slash () peereboom ! us wrote at:2011-01-19 13:27:31

 Why are you asking that question here?

 On Wed, Jan 19, 2011 at 03:29:23AM -0800, S Mathias wrote:
  Ok. It's a Firefox Add-on:
 
  https://www.eff.org/https-everywhere
 
  Questions:
 
  1) But: Why can't i find it on the offical Firefox Add-ons site?: \
  https://addons.mozilla.org/en-US/firefox/
  2) Did anyone audited the HTTPS Everywhere code?
 
  3) Can someone trust this Add-on? Is it safe to install/use?
 
  4) If it's so great why isn't it more prevalent?
 
  What's youre opinion? Or answer? :\
 
  Thanks!


My guess is he thinks this is where the smartest and most prudent people
are wrt IS security.

Ed Ahlsen-Girard
Not one of those people

Re: GigE Chipset

[Edward Martinez]

On 01/19/11 18:27, Korey Kaczor wrote:
 The netgear and linksys are realtek 8169 devices
   However, many of these  companies may sneak different chipset. the 
following link
 shows a picture form newegg of a linksys eg1032 with another 
chipset unless
  realtek uses different logos:

http://www.newegg.com/Product/ImageGallery.aspx?CurImage=33-124-120-03.JPGImage=33-124-120-04.JPG%2c33-124-120-03.JPG%2c33-124-120-02.JPG%2c33-124-120-01.JPG%2c33-124-120-05.jpgS7ImageFlag=0WaterMark=1Item=N82E16833124120Depa=0Description=LINKSYS%20EG1032%2010%2f%20100%2f%201000Mbps%20PCI%20Network%20Adapter
 

Re: sys.tar.gz in current

[Edward Martinez]

On 01/11/11 12:07, Orestes Leal R. wrote:

if sometimes
I can't read the faq it's because sometimes I do not have internet, 


  The FAQ can be download  from OpenBSD mirrors, it's located in the 
/pub/OpenBSD/doc directory available in text,pdf format. it is stated on 
top paragraph

  of the faq.
  http://www.openbsd.org/faq/index.html

  Regards
  Edward

Re: Shutdown option in gnome-session

[Edward Martinez]

On 01/09/11 18:49, dave shar wrote:

Hi,

I have installed kde3 and gnome2 on my box. I use kdm to load desktop
sessions. There is no shutdown option available in gnome-session. How
do I get shutdown  reboot options working in gnome-session.

Best,

Dave

Please pardon my typo, I am just a kid.




Hi
I have always shutdown OPenBSD,linux,solaris is   through the 
command line
here is some info to help you shutdown your system. really, to use 
openbsd or any unix like os  is through the cmd line.
I recommend reading the openbsd faq and some real unix books, not 
those learn unix in 10 days type books, but  text books type.


http://www.openbsd.org/cgi-bin/man.cgi?query=shutdownsektion=8
http://www.openbsd.org/faq/faq2.html

   Regards
Edward

Re: microsoft.com - NetBSD

[Ahlsen-Girard, Edward F CTR USAF AFSOC AFSOC/A6OK]

Ted Unangst ted.unangst () gmail ! com at 2010-12-30 21:21:53 wrote:

 On Thu, Dec 30, 2010 at 5:00 PM, Orestes Leal R.
 l...@cubacatering.avianet.cu wrote:
  Also, please fix your time.  It is one hour off and causing my mail
client
  to show your messages in the wrong order; meaning that I see
responses to
  your questions before the question.
 
 
  My time it's ok.

 Your email says:

 Date: Thu, 30 Dec 2010 16:00:11 -0600

 That's in the future.

 I think cuba is supposed to be -0500, but you're some sort of rogue
 nation, so who knows. :)

It's almost New Year, so the times are collapsing into one another.

Ed Ahlsen-Girard

Re: 4.6 box periodic 100% cpu on vmware

[Ahlsen-Girard, Edward F CTR USAF AFSOC AFSOC/A6OK]

Matthew Sullenberger sully () sadburger ! com wrote at 2010-12-21
18:22:48:

 I've been playing with OpenBSD for a little while now, and really love
it
 when I need to throw together a quick firewall, web server, dhcp
server,
 etc. I've got on firewall that I've been using for a little while now,
 OpenBSD 4.6, running on a VMWare ESXi box. It normally performs fine,
and it
 is doing some NAT and firewall functions with PF. I've pushed quite a
few
 packets through it and am impressed with the performance I am able to
get
 out of it.

 However, it seems like roughly every 2-3 weeks, I'll experience an
issue
 with it where it will stop responding. I can still ping the machine,
but it
 won't forward any packets, accept SSH connections, or respond to
basically
 anything. If I check on my VMWare host machine it is showing 100% cpu
 utilization, and I am unable to access the console directly through
VMWare.

 Performing a reset through VMWare fixes it and it runs fine again, for
a few
 weeks, until the same problem occurs. After resetting the box I check
out
 all the log files but I have never been able to see anything that even
 remotely seems relevant to what could have been happening.  I know of
no way
 to see what processes are running and eating up the cpu when this
occurs,
 since I can't get it to respond to anything. I am hoping someone may
be able
 to help point me in the right steps of where to begin troubleshooting
this--
 I am a fairly experienced Windows admin, but still pretty new to the
BSD
 world, but am trying my best to adopt it wherever possible!

 Thanks in advance!



I don't think you will find many here who will not recommend against
**ever**
running **any** firewall as a hosted application in the strongest terms.

It is probably the very worst application of all to run in a virtual
machine.
This is because the one machine that you leaving wholly exposed to
attack
is the ESXi host that the firewall is on: everything has to come through
it
to get to the firewall machine in the first place.

Which doesn't answer the initial question, but I will not be surprised
if
most of the devs think that this issue is more pressing than the initial
question.


--
Ed Ahlsen-Girard

Re: easy snapshot updates

[Ahlsen-Girard, Edward F CTR USAF AFSOC AFSOC/A6OK]

Please disregard my last.  The light came on while rushing for the door.

--
Ed Ahlsen-Girard
Ft. Walton Beach, FL

Re: Enough is enough!

[Ahlsen-Girard, Edward F CTR USAF AFSOC AFSOC/A6OK]

On Tue, Nov 02, 2010 at 05:55:36PM +0100, Alexander Schrijver wrote:
 On Tue, Nov 02, 2010 at 04:18:08AM -0400, bsdmas...@hushmail.com
wrote:
  FTP server down, amd64 snapshot packages way out of sync with
  latest libc bump... What the hell!
 
  If you guys don't get your sh*t together, I'm done.
 
  Yeah, you read that right.
 
  If this whole situation is not cleared in the next 24 hours, I'm
  switching to ArchLinux (www.archlinux.org).
 
  You've been warned.

 Your threat doesn't seem to be working.

 Maybe you should threaten with something worse, like Ubuntu.


Stop!  Or I shall say stop! again!



--
Ed Ahlsen-Girard

Re: How much disk space should be maintained for /usr/obj

[Ahlsen-Girard, Edward F CTR USAF AFSOC AFSOC/A6OK]

Subject:From:   Nick Holland nick () holland-consulting ! net
Date:   2010-08-06 15:49:46

 On 08/06/10 18:38, Aaron Lewis wrote:
  Hi,
   How much space should i put for a separated partition , mounted
on
  /usr/obj , is 4 GiB more or less ?
 
   Thanks

 4GB is significantly bigger than any platform I've seen needs.
 2GB is sufficient for just about everything now (that's from memory,
not
 actually looking in the last week or two).  However, odds are, you
have
 4GB to spare, so go ahead, use it.

 Nick;.

IIRC, 2GB was not sufficient when I tried to build Java on i386.


--
Ed Ahlsen-Girard, Contractor (EITC)
AFSOC/A6OK
email: edward.ahlsen-girard@hurlburt.af.mil
850-884-2414
DSN: 579-2414

Re: ABOUT PEOPLE WITH WHOM MATRIMONY IS PROHIBITED

[Ahlsen-Girard, Edward F CTR USAF AFSOC AFSOC/A6OK]

From:   S H sahservices () gmail ! com
Date:   2010-06-15 12:34:39

 And the relevance of this to the OpenBSD community is?

 On Tue, Jun 15, 2010 at 8:22 AM, Sam Singh
samsingh...@absamail.co.za
 wrote:
  1 : If a man commits adultery with a woman, then it is not
permissible for
  him to marry her mother or her daughters.
 
  2 : If a woman out of sexual passion and with evil intent commits
sexual
  intercourse with a man, then it is not permissible for the mother or
  daughters of that woman to merry that man. In the same way, the man
who
  committed sexual intercourse with a woman, because prohibited for
her
 mother
  and daughters.
 
  Download the attached article to read.

Important for those using promiscuous mode.

--
Ed Ahlsen-Girard

Re: confused about updating -current

[Ahlsen-Girard, Edward F CTR USAF AFSOC AFSOC/A6OK]

On 2010-04-27 23:01:30 Alastair Johnson wrote:

 if i install a system from install47.iso taken from the snapshots
folder on
 a mirror i end up with a -current system eg:

 OpenBSD 4.7-current (GENERIC) #636:

 the docs state that you cant go from -current to -stable so my
question is -
 what happens if i do update it?
 surely thats exactly what will happen once 4.7 is released.

 ie, if i do this:

 cd /usr ; cvs -qd anon...@anoncvs.server-somewhere:/cvs get
-rOPENBSD_4_7 -P
 src

 and then follow the instructions for rebuilding the kernel and
binaries.

 http://www.openbsd.org/stable.html


 will i just end up with a mess or a sligtly more uptodate -current

 what happens to my 4.7-current system after 4.7 is released. can i
still
 update it with bug fixes and security patches etc? surely it will
become a
 -stable system?

 many thanks

 alastair johnson

If you want a stable system right away, do a completely fresh install of
4.6, and follow the instructions for tracking stable.

If you don't mind waiting a few days, do a completely fresh install of
the 4.7 release (which, as Theo pointed out, is NOT -current) and track
stable from there.

If for whatever reason you cannot tolerate a fresh install, you *might*
be able to safely wait (wait means, run the system exactly as it is
today, don't try to update anything at all) until the 4.8 release comes
out (around November) and upgrade to that.  But I'm in no position to
say that that is safe.

The short answer is start again and install a release this time.

--
Ed Ahlsen-Girard, Contractor (EITC)
AFSOC/A6OK
email: edward.ahlsen-girard@hurlburt.af.mil
850-884-2414
DSN: 579-2414

Re: logging successful logins only

[Ahlsen-Girard, Edward F CTR USAF AFSOC AFSOC/A6OK]

 Robert C Wittig wrote (2010-04-13 9:53:03):

 Peter HEINER wrote:
  Hi all,
 
  I have a home router with 4.6/i386 installed on a 512 MB CF card.
  As both disk space and RAM are scarce, I want to minimize logging.
  As I don't usually have other machines running, remote logging is
not
  really a workable solution.
 
  I'm not that interested in seeing the nth failed SSH login attempt,
  but I would like to be able to monitor successful logins to the
router.
 


 I use PF rules to control who can log into ssh on my web/mail server.

 Since I'm the only one who has any business trying to log in via ssh,
 I'm the only one authorised to log in.

 The only unsuccessful logins showing up in my ssh log will be those
 times I type my own login incorrectly.


As I see accumulating failed login attempts I also block the addresses
and sometimes the ranges.  It's not likely they'll succeed with password
logins disabled, but why be the guy who finds out the hard way that it
really CAN be done?

--
Ed Ahlsen-Girard

Re: OT: marco@ misc@ behavior Re: whiteboard over the net

[Ahlsen-Girard, Edward F CTR USAF AFSOC AFSOC/A6OK]

 Marco Peereboom wrote:
  Oh hai!

 
 Marco does it for the lulz.
  You know you don't have to read what I write you know.  If it irritates
  you that is your problem, not mine.  Feel free to ignore this.
 
  On Tue, Mar 30, 2010 at 09:52:46PM -0500, Neal Hogan wrote:

  On Tue, Mar 30, 2010 at 6:34 PM, Marco Peereboom sl...@peereboom.us
wrote:
  
  oooh that looks perfect; let me try that.
 
  On Tue, Mar 30, 2010 at 06:27:13PM -0400, Ted Unangst wrote:

  On Tue, Mar 30, 2010 at 4:15 PM, Marco Peereboom sl...@peereboom.us
wrote:
  
  Drawing shit with the mouse. ?Not typing stuff with the keybored.

  webcanvas.com ?Just carve off a section as your territory, like
  http://webcanvas.com/100N600W#-228000,-3,0
  

  I understand that mr. peereboom (thinks he) is rather important to the
  obsd project . . . no doubt he (thinks) he is, but I was wondering if
  mr. peereboom ever thought about the silliness of top-posting (I'm
  sure he has and that's why he does it ;-).
 
  I've not been here that long, but it seems that his mailing list
  behavior is okay . . .?
 
  Other than his sarcasm, he has useful posts that are fucked up by his
  apparent need/desire to top post.
 
  Marco . . . can you please use accepted (i.e., rational) protocol from
  now on?  misc@ is not personal correspondence . . . many of us
  appreciate what goes on here and your top-posting is  . . . well . . .
  annoying (to say the least).


Damn it, people, when I want to have the top-posting debate I'll have it
with my brother.

--
Ed Ahlsen-Girard

[demime 1.01d removed an attachment of type application/x-pkcs7-signature which 
had a name of smime.p7s]

Re: RouterBOARD RB600A support

[Ahlsen-Girard, Edward F CTR USAF AFSOC AFSOC/A6OK]

On Tue, Mar 23, 2010 at 20:50:18, Otto Moerbeek wrote:

 If two things happen after another, it does not imply that the first
 caused the second.

   -Otto

Post hoc propter hoc is in fact a logical fallacy, but there's a reason
that it's so popular.

--
Ed Ahlsen-Girard, Contractor (EITC)
AFSOC/A6OK
email: edward.ahlsen-girard@hurlburt.af.mil
850-884-2414
DSN: 579-2414

Re: OT: vmware mind control (WAS: Re: Dell PE850 CERC SATA controller)

[Ahlsen-Girard, Edward F CTR USAF AFSOC AFSOC/A6OK]

On 3/8/2010 12:40 AM, Steve Shockley wrote:

  OpenBSD works well under ESX, I'd expect it to work well under ESXi too. 
(snip)

I can verify that it works great.  Upgrade from 4.3 to 4.4 required a 
manual change to the network driver, though - it quit matching the 
pseudo-hardware that VMware presented.

--
Ed Ahlsen-Girard, Contractor (EITC)
AFSOC/A6OK
email: edward.ahlsen-girard@hurlburt.af.mil
850-884-2414
DSN: 579-2414

[demime 1.01d removed an attachment of type application/x-pkcs7-signature which 
had a name of smime.p7s]

Re: Sendmail Locking Up System

[Ahlsen-Girard, Edward F CTR USAF AFSOC AFSOC/A6OK]

On Monday, Oct 05, 2009 at 1922, Joachim Schipper wrote:

On Mon, Oct 05, 2009 at 01:16:07PM -0400, Chris wrote:
 I just reinstalled 4.5.  I touched nothing [but] I installed mutt
 through pkg_add, then created a 1M empty file from /dev/null.
 
 I sent this email to myself thusly: mutt -a 1megfile m...@myaddress.c
 /dev/null
 
 (...) It spools, then I have about .5 - 1 second
 before then entire system locks up.

 (...) I am running this on a Xen virutal server (on Debian Lenny)..
 though I cannot see why this would make a difference, and there is 
 error output on Xen either...
 
 Is anyone else out there running a sendmail server on an AMD64
 platform with OBSD 4.5?  I would like to know if this is a problem
 with my setup, or with the release, at least.  (I doubt that is the
 case, but I don't have a free amd64 system to play with, and I would
 just like confirmation).

The OpenBSD stance on virtualization is pretty much don't, and this
issue is obviously not showing on real hardware (sendmail on amd64 is a
very common setup, after all).

That said, there are people who do run OpenBSD via Xen, so it is
possible.

One thing to note is that OpenBSD can only run as a guest with hardware
support (Intel VT/Vanderpool or AMD-V/Pacifica); so-called
paravirtualization doesn't work. If you do not have the required
hardware - and you can see whether or not you have it in the Xen logs -
you could use qemu. It's slower (although not *that* slow if you use
kqemu) but known to work.

I'm not sure if Xen uses the hardware support by default; you might want
to look into that, too.

Once the system appears superficially stable, try compiling /usr/src -
it's a good test of a large number of subsystems.

   Joachim


OpenBSD also runs as a guest on VMware Server and VMware Appliance.  
Upgrades can be tricky, however; the network interface needs to be 
properly specified from one version to the next.


--
Ed Ahlsen-Girard

[demime 1.01d removed an attachment of type application/x-pkcs7-signature which 
had a name of smime.p7s]

Re: Thunderbird performance

[Edward Ahlsen-Girard]

Nick Hogan wrote:

 Ed Ahlsen-Girard wrote:
  It seems to me that Thunderbird 2.0.0.23 performance on the 9/21
  snapshot is pretty bad.  What I see is a lag of minutes before
  downloaded messages actually display.  I have one account delivering to
  the Local folders.  Under the 9/17 snapshot the message download 
usually

  stopped before getting all the new messages.

 ?  Not entirely sure what you are saying, but sounds like something
 was not happy there, too.

This meant that T-Bird quit downloading when I knew (via webmail) that 
there were new messages remaining.



  Dmesg follows.  I don't
  know what other info would help, I will send if asked.
 
  OpenBSD 4.6-current (GENERIC) #178: Mon Sep 21 13:47:26 MDT 2009
  t...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC
  cpu0: Intel Pentium III (GenuineIntel 686-class, 512KB L2 cache) 
449 MHz

  cpu0:
  
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR,

  SSE
  real mem  = 268009472 (255MB)
  avail mem = 251285504 (239MB)

 Thunderbird on a 450MHz machine with 256M RAM?  OUCH.  You win a 
prize for

 patience already...

 My guess is something has just pushed you over the edge (you weren't ever
 far from it, I suspect), and you are now swapping and it wasn't before.
 top will give you a pretty good idea what is going on there if I'm 
right.


 Nick.

You're probably right; when I cleaned out the inbox (by about 50%) 
performance
picked way up.  It also may be related to this being configured to 
deliver to local folders, which I have not done before now.


In any case I intend to get 21st Century hardware soon.

Re: Thunderbird performance

[Edward Ahlsen-Girard]

Sorry, mixed up lists.  Disregard.

Re: slip cable

[Ahlsen-Girard, Edward F CTR USAF AFSOC AFSOC/A6OK]

 Past hissy-fits are not a predictor of future hissy-fits.
 Nick Holland(06 Dec 2005)


Speaking of hissy-fits, see LMCCONTROL(8) for HSSI.  Although that would
need the cards.


--
Ed Ahlsen-Girard, Contractor (EITC)
AFSOC/A6OK
email: edward.ahlsen-girard@hurlburt.af.mil
850-884-2414
DSN: 579-2414

[demime 1.01d removed an attachment of type application/x-pkcs7-signature which 
had a name of smime.p7s]

USB disklabel trouble

[Edward F. Ahlsen-Girard]

Ladies and Gentlemen:

I wanted to use a 4GB thumb drive to move a complete partition from one system 
to another, and needed to get a ffs volume on it.  It was originally fat32.

Ran disklabel -E, said to use the whole disk, no luck.  Tried fdisk, and now 
even less luck: both WXP and OpenBSD can tell there's a device there, but 
neither seems to know what to do with it.

Dmesg and the errors from both of today's attempts at disklabel are attached.

-- 
Edward F. Ahlsen-Girard [EMAIL PROTECTED]

[demime 1.01d removed an attachment of type application/octet-stream which had 
a name of dm.out]

Firefox 2.0.0.12

[Edward F. Ahlsen-Girard]

I tried Firefox 2.0.0.13 (Linux version) on my 4.2-stable
(GENERIC) #1: Mon Mar 31 07:33:53 CDT 2008 system.

Well, the Linux Firefox 2.0.0.13 on this system is teh suck, IMHO. 
But I can't tell from the FAQ where to get the 2.0.0.12
package coming for 4.3, or even if said package is out. 
Is 2.0.0.12 available as a package yet?

Remainder of dmesg for the interested:
cpu0: Intel Pentium III (GenuineIntel 686-class, 512KB L2 cache)
499 MHz
cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,
CMOV,PAT,PSE36,MMX,FXSR,SSE
real mem  = 335118336 (319MB)
avail mem = 316006400 (301MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 08/01/01, BIOS32 rev.
0 @ 0xffe90, SMBIOS rev. 2.2 @ 0xfb410 (64 entries)
bios0: vendor Dell Computer Corporation version A10 date 08/01/01
bios0: Dell Computer Corporation OptiPlex GX1 500Mbr+
apm0 at bios0: Power Management spec V1.2
apm0: AC on, battery charge unknown
apm0: flags 30102 dobusy 0 doidle 1
pcibios0 at bios0: rev 2.1 @ 0xf/0x1
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfc670/176 (9 entries)
pcibios0: PCI Interrupt Router at 000:07:0 (Intel 82371AB PIIX4 ISA
rev 0x00)
pcibios0: PCI bus #2 is the last bus
bios0: ROM list: 0xc/0xd000 0xd/0x8000
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 Intel 82443BX AGP rev 0x03
ppb0 at pci0 dev 1 function 0 Intel 82443BX AGP rev 0x03
pci1 at ppb0 bus 1
ATI Rage Pro rev 0x5c at pci1 dev 0 function 0 not configured
piixpcib0 at pci0 dev 7 function 0 Intel 82371AB PIIX4 ISA rev 0x02
pciide0 at pci0 dev 7 function 1 Intel 82371AB IDE rev 0x01: DMA,
channel 0 wired to compatibility, channel 1 wired to compatibility
wd0 at pciide0 channel 0 drive 0: Maxtor 91024D4
wd0: 16-sector PIO, LBA, 9765MB, 1728 sectors
wd1 at pciide0 channel 0 drive 1: WDC WD800JB-00JJC0
wd1: 16-sector PIO, LBA, 76319MB, 156301488 sectors
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2
wd1(pciide0:0:1): using PIO mode 4, Ultra-DMA mode 2
atapiscsi0 at pciide0 channel 1 drive 0
scsibus0 at atapiscsi0: 2 targets
cd0 at scsibus0 targ 0 lun 0: HITACHI, CDR-8430, 0024 SCSI0
5/cdrom removable
cd0(pciide0:1:0): using PIO mode 4, DMA mode 2
uhci0 at pci0 dev 7 function 2 Intel 82371AB USB rev 0x01: irq 11
piixpm0 at pci0 dev 7 function 3 Intel 82371AB Power rev 0x02:
SMBus disabled
vga1 at pci0 dev 14 function 0 ATI Radeon 9200 SE Sec rev 0x01
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
ppb1 at pci0 dev 15 function 0 DEC 21152 PCI-PCI rev 0x03
pci2 at ppb1 bus 2
ohci0 at pci2 dev 11 function 0 Acer Labs M5237 USB rev 0x03:
irq 9, version 1.0, legacy support
ehci0 at pci2 dev 11 function 3 Acer Labs M5239 USB2 rev 0x01:
irq 10
usb0 at ehci0: USB revision 2.0
uhub0 at usb0: Acer Labs EHCI root hub, rev 2.00/1.00, addr 1
usb1 at ohci0: USB revision 1.0
uhub1 at usb1: Acer Labs OHCI root hub, rev 1.00/1.00, addr 1
xl0 at pci0 dev 17 function 0 3Com 3c905B 100Base-TX rev 0x24:
irq 11, address 00:c0:4f:22:a7:b8
exphy0 at xl0 phy 24: 3Com internal media interface
isa0 at piixpcib0
isadma0 at isa0
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pmsi0 at pckbc0 (aux slot)
pckbc0: using irq 12 for aux slot
wsmouse0 at pmsi0 mux 0
pcppi0 at isa0 port 0x61
midi0 at pcppi0: PC speaker
spkr0 at pcppi0
lpt0 at isa0 port 0x378/4 irq 7
npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16
pccom0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
pccom1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
fd0 at fdc0 drive 0: 1.44MB 80 cyl, 2 head, 18 sec
isapnp0 at isa0 port 0x279: read port 0x203
wss1 at isapnp0 CS4236B, CSC, , WSS/SB port
0x534/4,0x388/4,0x220/16 irq 5 drq 1,0: CS4236/CS4236B (vers 0)
audio0 at wss1
joy0 at isapnp0 CS4236B, CSC000F, , Game port 0x3a0/8
CS4236B, CSC0010, , Ctrl at isapnp0 port 0xf00/8 not configured
CS4236B, CSC0003, , MPU at isapnp0 port 0x330/2 not configured
usb2 at uhci0: USB revision 1.0
uhub2 at usb2: Intel UHCI root hub, rev 1.00/1.00, addr 1
biomask ef45 netmask ef45 ttymask ffc7
pctr: 686-class user-level performance counters enabled
mtrr: Pentium Pro MTRR support
dkcsum: wd0 matches BIOS drive 0x80
dkcsum: wd1 matches BIOS drive 0x81
root on wd1a swap on wd1b dump on wd1b
cd0(atapiscsi0:0:0): Check Condition (error 0x70) on opcode 0x0
SENSE KEY: Not Ready
 ASC/ASCQ: Medium Not Present
cd0(atapiscsi0:0:0): Check Condition (error 0x70) on opcode 0x0
SENSE KEY: Not Ready
 ASC/ASCQ: Medium Not Present

[demime 1.01d removed an attachment of type APPLICATION/DEFANGED which had a 
name of eagirard.9008DEFANGED-vcf]

OfficeJet sharing with WinXP

[Edward F. Ahlsen-Girard]

Has anybody had success with network printing from 4.2 (i386) to an HP 
OfficeJet 5510v (or similar) attached to an XP Pro workstation?  I hope 
to avoid trying all combinations of printing systems.  I'm pushing 50 
and I might not live long enough to finish.

Re: Real men don't attack straw men

[Edward A. Gardner]

Along with Godwin's law, there must be some rule of flame fests that people 
forget

how it started or fail to note when they make ridiculous statements.


Example, how it started.  Some recent comments:


RMS made statements first.  RMS will pay for his lies.



Nobody here asked for or WANTS his endorsement. He started the
thread.



Again, Richard made foul and faulty comments about OpenBSD first.
Richard then came to the OpenBSD mailing lists looking for a fight.



The flame fest began with this thread:

http://marc.info/?t=11972568891r=1w=2

and specifically this message:

http://marc.info/?l=openbsd-miscm=119725673616073w=2


Mr. Stallman did not join in until 13 hours later, when he posted this message
starting the current thread:

http://marc.info/?l=openbsd-miscm=119730630513821w=2



Example, whether OpenBSD gives a shit.  Some recent comments:


Nobody here asked for or WANTS his endorsement. He started the
thread. We could give a shit about what he thinks. Now it's just


I highly doubt that many OpenBSD developers or users care whether or not 
RMS endorses OpenBSD. I know I don't.


OpenBSD does not, pardon the french, give a shit about RMS' seal of 
approval.


These statements disprove themselves -- if OpenBSD really didn't care, no 
one would be

posting such impassioned messages claiming no one cares.



It's said when the following is one of the more intelligent messages seen 
on misc the

past couple days:


Dearest Partner,


I am Mrs.Rose gomo, From Abidjan Cote'd'ivoire West Africa. I am a widow 
being that I lost my husband a couple of years ago. please can u help me 
invest in your country like Real Estate and Industrial Production??



I need an urgent answer please.


Mrs.Rose .

- Mrs Rose

4.4 not sending mail locally

[Edward Paul Wehrwein]

Hi All,

I've got a recent, default install of 4.4 that doesn't seem to be able to send
email locally. /var/log/maillog is full of the (somewhat sanitized, [[]]
indicates replaced text) message below:

Dec  2 13:34:47 melanie sm-mta[23205]: lAS6U6nI026028:
to=[EMAIL PROTECTED], delay=4+12:04:41, xdelay=00:00:00,
mailer=esmtp, pri=19565145, relay=[[domain.name.net]]., dsn=4.0.0,
stat=Deferred: Connection refused by [[domain.name.net]].


relevant lines from netstat -an
tcp00  127.0.0.1.587   *.*LISTEN
tcp00  127.0.0.1.25*.*LISTEN


relevant lines from ps ax
25550 ??  Is  0:41.32 sendmail: accepting connections (sendmail)


$ telnet 127.0.0.1 25
Trying 127.0.0.1...
Connected to 127.0.0.1.
Escape character is '^]'.
220 melanie.[[domain.name.net]] ESMTP Sendmail 8.14.1/8.14.1; Sun, 2 Dec 2007
13:54:08 -0500 (EST)

In addition to the telnet above, pf.conf has: set skip on lo. So i think it is
not a firewalling issue.


As far as I know, I haven't modified anything sendmail related. Certainly I have
not modified any sendmail configuration from default. I'm running the generic
kernel. I set up an alias in /etc/mail/aliases today, but this problem seems to
have been present since install. I know sendmail is running and it seems like it
should be accepting mail, can anyone suggest a next step? I want to be able to
receive the daily/weekly/etc mail, not to mention mail from cron jobs, etc.

TIA,
Paul

OpenBSD motherboard

[Edward McCarty]

I am currently looking for a well supported motherboard for use with a
Core 2 Duo processor. The only requirement is that it must have a
PCI-X 64bit slot for an LSI Megaraid 300-8x card.

I was thinking of using an Intel S3000AHLX because of their high build
quality, but was unsure how well it was supported by OpenBSD. Also, it
is listed as having an Intel 3000 chipset, which I was unable to find
information on compatibility with OpenBSD. It also has an ICH7R,
however that seems to be listed on the supported hardware page.

Does anyone have any suggestions on this or other motherboards that
have been successful with C2D  PCI-X?

Thanks,
Edward

Re: OpenBSD motherboard

[Edward McCarty]

Sorry for the double post - my email client was acting up and didn't
think it went through so I sent it through my friend's account.

On 12/28/06, Edward McCarty [EMAIL PROTECTED] wrote:

I am currently looking for a well supported motherboard for use with a
Core 2 Duo processor. The only requirement is that it must have a
PCI-X 64bit slot for an LSI Megaraid 300-8x card.

I was thinking of using an Intel S3000AHLX because of their high build
quality, but was unsure how well it was supported by OpenBSD. Also, it
is listed as having an Intel 3000 chipset, which I was unable to find
information on compatibility with OpenBSD. It also has an ICH7R,
however that seems to be listed on the supported hardware page.

Does anyone have any suggestions on this or other motherboards that
have been successful with C2D  PCI-X?

Thanks,
Edward

Re: Routing errors in dual pf/carp firewall setup (no route to host)

[Edward Aronyk]

On 11/9/06, Chad M Stewart [EMAIL PROTECTED] wrote:

Can you send the output of netstat -rn?  Maybe that'll help myself
and others a little more.

-Chad


Of course - sorry I forgot to do this in the first place. Looking at
this output it's clear I need to add some routes - but I don't know
what to add or where to add it. Also, the networks my CARP interfaces
sit on don't seem to be visible (carp0 is on a different subnet than
the fxp0 interfaces (the carpdevs) on the firewalls).

It seems clear that I need some sort of a default route so that
information to the internet is passed out via carp0 on fxp0 on each
server from the 1.2.3.102 CARP IP to the ISP's gateway at 1.2.3.101. I
also need routes to carry information out on fxp1 on each server to
the shared internal carp1 interface (5.6.7.249), and then to my router
at 5.6.7.250, so that it can route the traffic out to 5.6.7.0/26 and
5.6.7.64/27. I know that the router is not required, but I need it for
non-technical reasons (read: managers.)

What should I have in the /etc/mygate file? Should I have anything?
What routes do I need to add, and what file do I add them to so that
they persist when the router restarts?

I've included the original email I sent to misc@ after the output of
'netstat -rn', so that the addresses make sense.

Thanks for your help - it is greatly appreciated!

fw1: netstat -rn
**
Routing tables

Internet:
DestinationGatewayFlagsRefs  UseMtu  Interface
10.10.10/24link#1 UC  00  -   xl0
10.20.20/24link#2 UC  00  -   fxp0
127/8  127.0.0.1  UGRS00  33224   lo0
127.0.0.1  127.0.0.1  UH  10  33224   lo0
5.6.7.248/29 link#3 UC  00  -   fxp1
224/4  127.0.0.1  URS 00  33224   lo0

Internet6:
DestinationGateway
FlagsRefs  UseMtu  Interface
::/104 ::1UGRS
  00  -   lo0
::/96  ::1UGRS
  00  -   lo0
::1::1UH
 120  33224   lo0
::127.0.0.0/104::1UGRS
  00  -   lo0
::224.0.0.0/100::1UGRS
  00  -   lo0
::255.0.0.0/104::1UGRS
  00  -   lo0
:::0.0.0.0/96  ::1UGRS
  00  -   lo0
2002::/24  ::1UGRS
  00  -   lo0
2002:7f00::/24 ::1UGRS
  00  -   lo0
2002:e000::/20 ::1UGRS
  00  -   lo0
2002:ff00::/24 ::1UGRS
  00  -   lo0
fe80::/10  ::1UGRS
  00  -   lo0
fe80::%xl0/64  link#1 UC
  00  -   xl0
fe80::201:2ff:feed:c128%xl000:01:02:ed:c1:28  UHL
  00  -   lo0
fe80::%fxp0/64 link#2 UC
  00  -   fxp0
fe80::202:55ff:fefa:a298%fxp0  00:02:55:fa:a2:98  UHL
  00  -   lo0
fe80::%fxp1/64 link#3 UC
  00  -   fxp1
fe80::202:55ff:fefa:a299%fxp1  00:02:55:fa:a2:99  UHL
  00  -   lo0
fe80::%lo0/64  fe80::1%lo0U
  00  -   lo0
fe80::1%lo0link#7 UHL
  00  -   lo0
fec0::/10  ::1UGRS
  00  -   lo0
ff01::/32  ::1UC
  00  -   lo0
ff02::%xl0/32  link#1 UC
  00  -   xl0
ff02::%fxp0/32 link#2 UC
  00  -   fxp0
ff02::%fxp1/32 link#3 UC
  00  -   fxp1
ff02::%lo0/32  ::1UC
  00  -   lo0


fw2: netstat -rn
**
Routing tables

Internet:
DestinationGatewayFlagsRefs  UseMtu  Interface
10.10.10/24link#1 UC  00  -   xl0
10.20.20/24link#2 UC  00  -   fxp0
127/8  127.0.0.1  UGRS0

Routing errors in dual pf/carp firewall setup (no route to host)

[Edward Aronyk]

Good day all,

I have read all available documentation, but can not seem to find the
solution to my problem. If anyone has any advice, or can point me
towards a good resource, it would be appreciated. I am sorry if the
answer is obvious and I have missed it.

Where I work we have a small network (class C) which has always been
subnetted by our Cisco 2621 router. While I am not able to replace the
Cisco router for non-technical reasons, I am able to install a pair of
OpenBSD 4.0 boxes to act as redundant firewalls. The setup of carp,
pfsync and pf was simple enough thanks to the excellent documentation,
however I am encountering routing errors with my current setup, and
would appreciate some help.

Here's a brief diagram of my network.


***
** Internet  **
***
|
|
***
** ISP Router: 1.2.3.101 **
***
|
|
 ***
 ** carp0: 1.2.3.102  **---\
 ***   |
  ||
  ||
***  ***
** fw1   **   pfsync0** fw1   **
** fxp0: 10.20.20.100**   10.10.10.0/24  ** fxp0: 10.20.20.200**
** fxp1: 5.6.7.251   **--** fxp1: 5.6.7.252   **
** xl0: 10.10.10.100 **  ** xl0: 10.10.10.200 **
***  ***
  ||
  ||
 ***   |
 ** carp1: 5.6.7.249  **---/
 ***
|
|
*
** Local Router (2621) **
** External: 5.6.7.250 **
** Internal: 5.6.7.1/26**
** Internal: 5.6.7.64/27   **
*

Our ISP provides us with a our own class C network, 5.6.7.0/24 for the
purpose of this explaination. Our ISP routes our class C to us down a
/30 - we'll call it 1.2.3.100/30.

Our Cisco 2621's external interface was previously set to 1.2.3.102,
and it was able to route our class C, which was subnetted into two
chunks - 5.6.7.0/26 and 5.6.7.64/27. I partitioned a new chunk of the
class C for the internal IPs of the firewalls, 5.6.7.248/29.

I set all of this up, created a pair of 3 port vlans (one for each
carp interface) and powered it up. Everything seems to work, except
for I get routing errors - ie, no route to host. I can't even seem to
ping across the 10.10.10.0/24 network (which is just a simple
crossover cable between the firewalls).

Here is the output of all relevant configuration files. I am unsure
about what the contents of mygate should be. I'm also pretty sure I
need some route add statements, but I don't know what they should be
or where to put them.

Once again, if anyone can help it would be greatly appreciated. Thanks!

fw1: hostname.fxp0
**
inet 10.20.20.100 255.255.255.0 NONE

fw1: hostname.fxp1
**
inet 5.6.7.251 255.255.255.248 NONE

fw1: hostname.xl0
**
inet 10.10.10.100 255.255.255.0 NONE

fw1: hostname.pfsync0
**
up syncdev xl0

fw1: hostname.carp0
**
inet 1.2.3.102 255.255.255.252 vhid 1 carpdev fxp0 pass **

fw1: hostname.carp1
**
inet 5.6.7.249 255.255.255.248 vhid 2 carpdev fxp1 pass **

fw1: mygate
**
1.2.3.101

fw1: pf.conf
**
ExtIf = fxp0
IntIf = fxp1
SyncIf = xl0
pass on $SyncIf proto pfsync
pass out on $ExtIf proto carp keep state
pass out on $IntIf proto carp keep state
pass in all
pass out all

fw1: sysctl.conf
**
-- snip --
net.inet.ip.forwarding=1
-- snip --

fw1: rc.conf
**
-- snip --
pf=YES
pf_rules=/etc/pf.conf
-- snip --

fw2: hostname.fxp0
**
inet 10.20.20.200 255.255.255.0 NONE

fw2: hostname.fxp1
**
inet 5.6.7.252 255.255.255.248 NONE

fw2: hostname.xl0
**
inet 10.10.10.200 255.255.255.0 NONE

fw2: hostname.pfsync0
**
up syncdev xl0

fw2: hostname.carp0
**
inet 1.2.3.102 255.255.255.252 vhid 1 carpdev fxp0 pass **

fw2: hostname.carp1
**
inet 5.6.7.249 255.255.255.248 vhid 2 carpdev fxp1 pass **

fw2: mygate
**
1.2.3.101

fw2: pf.conf
**
ExtIf = fxp0
IntIf = fxp1
SyncIf = xl0
pass on $SyncIf proto pfsync
pass out on $ExtIf proto carp keep state
pass out on $IntIf proto carp keep state
pass in all
pass out all

fw2: sysctl.conf
**
-- snip --
net.inet.ip.forwarding=1
-- snip --

fw2: rc.conf

Re: Via C7 fully supported?

[Edward A. Gardner]

At 07:12 31-10-2006, Diana Eichert wrote:

On Tue, 31 Oct 2006, Tom Cosgrove wrote:

 Although they're not yet available, Wim is hoping to sell
 http://www.liantec.com/product/emboard/EMB-5740.htm soon.

 See http://www.kd85.com/liantec.html.

 Thanks

 Tom

look like a more interesting choice than the commell I'm looking at,
http://www.commell.com.tw/Product/SBC/LV-669.HTM

diana


The problem or unfortunate feature of both of these is that the only path 
between the NICs and memory is a single shared PCI.  The chipset specs say 
nothing about it other than it is PCI, implying it is 32-bit / 33 Mhz.  In 
other words, the 2 or 4 gigabit NICs share a roughly 100Mbyte/sec path to 
memory, perhaps slightly more.  A single NIC running half-duplex can 
saturate the available IO to memory bandwidth.


Admittedly the price of gigabit NICs has come down to where I'd rather see 
them than 100mbit NICs.  They have advantages even if unable to run at full 
speed.  But running multiple gigabit links full speed, these boards 
won't.  Sigh.


Ed Gardner

Re: OLPC

[Edward A. Gardner]

At 09:38 10-10-2006, Theo de Raadt wrote:

Some of you may have been following the OLPC discussion.  Here is
one place you can read more about it:

http://www.thejemreport.com/mambo/content/view/286/



Since Jim repeatedly mistates our views, I am making the controversial
move of publishing the entire email archive.

It is in a flat file at

http://www.theos.com/deraadt/jg


Fascinating.

In reading these it seemed obvious that the encumbered IP or microkernel 
that JG talks about is almost certainly ThreadX, produced by Express Logic 
(expresslogic.com or rtos.com).  I might mention that I have a lot of 
experience with embedded systems.  JG brags of having started in 1983.  I'd 
already been working for several years on embedded systems (the name hadn't 
been coined back then).


Today ThreadX is almost ubiquitous in devices of a certain size or 
complexity.  A recent press release claims over 300 million devices use 
it.  It is especially dominant in ARM based devices.  The business model is 
interesting.  In terms of code it is little more than a threading package, 
typically only a few KB.  Networking and USB stacks are also available, 
including them expands the code footprint.  The threading package is 
something that any competent coder could toss off in less than a 
week.  What you are really buying is a decent reference manual and that 
they've done the legwork to integrate support into every embedded software 
development platform and every SoC hardware debugging tool on the 
planet.  And just about every experienced embedded firmware engineer you 
interview has already used it.  They price it reasonably enough that you'd 
usually be stupid not to use it.


Pricing is a fixed fee per project.  Firmware for a chip is a 
project.  Significant enhancements or new versions are a project.  Bug 
fixes are not.  Source is always included.  No royalties.  A large company 
such as Marvel likely buys an unlimited use license that encompasses all 
projects started within a certain time frame.


Marvel should have used ThreadX for this project, it's the only thing out 
there that comes close to what's needed.  It's the only thing that matches 
JG's hints.  Main alternative would be a home brewed kernel, and JG says 
they didn't do that.  Assuming I'm right, it has the following implications:


1.  No restrictions whatsoever on binary firmware distribution, except what 
Marvel chooses to impose.  They could make the binary blob public domain 
and the ThreadX licenses I've seen wouldn't care.  This is one of ThreadX's 
biggest marketing points, prominently featured in their ads.


2.  No restrictions on documentation to write drivers, except what Marvel 
chooses to impose.  Drivers interface with Marvel's firmware, it has no 
relationship with ThreadX.


Note: the above two are what Theo and OpenBSD want.

3.  No restrictions on internal hardware documentation needed to write 
firmware, except what Marvel chooses to impose.  If Marvel decided to 
release documentation describing how to write ARM code to tweak the radio, 
the MAC, the USB interface, etc., they are free to do so.  I don't think 
OpenBSD cares about this, but I for one would love to play with it.


Note: #3 is what someone would need to write their own, from scratch, 
firmware to do mesh networking and release same under a GPL or BSD license.


4.  What Marvel cannot do (without major legal pain) is release their 
existing firmware source code to third parties.  The source code uses 
ThreadX, it is a derivative work of the ThreadX manual and code, it is 
encumbered by the ThreadX licensing restrictions.  Modifying the existing 
firmware for almost anything, especially including a feature such as mesh 
networking, is clearly a new project.  Whoever received the source code 
would have to purchase a suitable license for ThreadX and agree to abide by 
its terms.



Anyone may forward or cross-post this message anywhere they please, 
provided they don't alter the meaning by quoting excerpts out of context.




Edward A. Gardner   eag at ophidian dot com
Ophidian Designs719 593-8866
1262 Hofstead Terrace
Colorado Springs, CO  80907

Re: packages failure (was dsniff ports failure), remote package install is terrible

[Edward Ray]

This is quite clear. It can't install libiconv because it conflicts with
the partial- package it told you that it installed above.
Delete the partial- package, figure out what's really wrong (if anything),
and try again.

What is really wrong is that the pkg_add whateverpackage hangs in the
middle of the ftp download.  I usually wait 6-8 hours before cancelling it.
I am on a cable modem connection so there is no problem with speed; I
believe bandwidth constriction at the ftp.openbsd.org site is the problem.

I cannot pkg_add any other package until this download is complete.
Rather than waiting another 6-8 hours I cancel the download which causes the
partial... To be created pkg_delete does not always work in completely
removing the packages.  Later packages fail to install due to dependencies
on the package that failed.

This new method of installing packages sucks IMHO.  Ports is much better,
because at least it goes to sites which I can download packages from.  Is
their any way to get the packages other than CD (which has very little
packages) or ftp.openbsd.org (which has poor bandwidth)?


Edward Ray


-
This mail was scanned by BitDefender
For more informations please visit http://www.bitdefender.com


-

Re: packages failure (was dsniff ports failure)

[Edward Ray]

This is annoying.  Every time I try to build with packages I get an error
with libiconv-1.9.2p3  .  Unfortunately, this failure screws up every other
package I try to install



# export PKG_PATH=ftp://ftp.openbsd.org/pub/OpenBSD/3.9/packages/i386/

# pkg_add bash-3.1.1p0.tgz
Error from ftp://ftp.openbsd.org/pub/OpenBSD/3.9/packages/i386/:
Unknown command.
Not an ustar archive header
bash-3.1.1p0:libiconv-1.9.2p3: complete
Adjusting md5 for /usr/local/lib/libiconv.a from
044a57b2de335fa8b5c24f977e9dc0af to 4e50ca5fc370e7247ffddea2ac1bd5af
/usr/sbin/pkg_add: Installation of libiconv-1.9.2p3 failed , partial
installation recorded as partial-libiconv-1.9.2p3 # bash
ksh: bash: not found
# pkg_add amap-5.2.tgz
Error from ftp://ftp.openbsd.org/pub/OpenBSD/3.9/packages/i386/:
Unknown command.
amap-5.2:pcre-6.4p1: complete

amap-5.2: complete

# pkg_add nmap-3.95p0.tgz
Error from ftp://ftp.openbsd.org/pub/OpenBSD/3.9/packages/i386/:
Unknown command.
Can't install libiconv-1.9.2p3 because of conflicts
(partial-libiconv-1.9.2p3)
/usr/sbin/pkg_add: libiconv-1.9.2p3:Fatal error # pkg_add wget-1.10.2p0.tgz
Error from ftp://ftp.openbsd.org/pub/OpenBSD/3.9/packages/i386/:
Unknown command.
Can't install libiconv-1.9.2p3 because of conflicts
(partial-libiconv-1.9.2p3)
/usr/sbin/pkg_add: libiconv-1.9.2p3:Fatal error



My only choice appears to be rebuild, which I have done three times now.  If
someone could point me to the magic formula of package downloads, much
appreciated.  I am trying to build a box for pen testing, and will switch to
a Linux variant or FreeBSD if OpenBSDs ports and packages are screwed up.
It never used to be that difficult to build an OpenBSD pen test box, at
least with v3.6/v3.7/v3.8

Thanks in advance for any help.

Edward Ray

Dsniff ports failure

[Edward Ray]

I am running OpenBSD 3.9/i386 and am having trouble with ports, specifically
dsniff (and others including hydra, nmap, fragroute)

The error during make is in libnids, as shown below.  If more info is needed
to debug this issue, please let me know.

===  Building for libnids-1.20
cd src ; make  static
cc -c -O2 -pipe -D_BSD_SOURCE -W -Wall -DLIBNET_VER=0 -DHAVE_ICMPHDR=0
-DHAVE_TCP_STATES=0 -DHAVE_BSD_UDPHDR=1 -I.  -I/usr/local/include/libnet-1.0
-DLIBNET_BSDISH_OS -DLIBNET_LIL_ENDIAN checksum.c cc -c -O2 -pipe
-D_BSD_SOURCE -W -Wall -DLIBNET_VER=0 -DHAVE_ICMPHDR=0 -DHAVE_TCP_STATES=0
-DHAVE_BSD_UDPHDR=1 -I.  -I/usr/local/include/libnet-1.0 -DLIBNET_BSDISH_OS
-DLIBNET_LIL_ENDIAN ip_fragment.c cc -c -O2 -pipe -D_BSD_SOURCE -W -Wall
-DLIBNET_VER=0 -DHAVE_ICMPHDR=0 -DHAVE_TCP_STATES=0 -DHAVE_BSD_UDPHDR=1 -I.
-I/usr/local/include/libnet-1.0 -DLIBNET_BSDISH_OS -DLIBNET_LIL_ENDIAN
ip_options.c cc -c -O2 -pipe -D_BSD_SOURCE -W -Wall -DLIBNET_VER=0
-DHAVE_ICMPHDR=0 -DHAVE_TCP_STATES=0 -DHAVE_BSD_UDPHDR=1 -I.
-I/usr/local/include/libnet-1.0 -DLIBNET_BSDISH_OS -DLIBNET_LIL_ENDIAN
killtcp.c cc -c -O2 -pipe -D_BSD_SOURCE -W -Wall -DLIBNET_VER=0
-DHAVE_ICMPHDR=0 -DHAVE_TCP_STATES=0 -DHAVE_BSD_UDPHDR=1 -I.
-I/usr/local/include/libnet-1.0 -DLIBNET_BSDISH_OS -DLIBNET_LIL_ENDIAN
libnids.c cc -c -O2 -pipe -D_BSD_SOURCE -W -Wall -DLIBNET_VER=0
-DHAVE_ICMPHDR=0 -DHAVE_TCP_STATES=0 -DHAVE_BSD_UDPHDR=1 -I.
-I/usr/local/include/libnet-1.0 -DLIBNET_BSDISH_OS -DLIBNET_LIL_ENDIAN
scan.c cc -c -O2 -pipe -D_BSD_SOURCE -W -Wall -DLIBNET_VER=0
-DHAVE_ICMPHDR=0 -DHAVE_TCP_STATES=0 -DHAVE_BSD_UDPHDR=1 -I.
-I/usr/local/include/libnet-1.0 -DLIBNET_BSDISH_OS -DLIBNET_LIL_ENDIAN tcp.c
tcp.c: In function `get_ts':
tcp.c:137: internal compiler error: Segmentation fault Please submit a full
bug report, with preprocessed source if appropriate.
See URL:http://gcc.gnu.org/bugs.html for instructions.
*** Error code 1

Stop in /usr/ports/net/libnids/w-libnids-1.20/libnids-1.20/src.
*** Error code 1

Stop in /usr/ports/net/libnids/w-libnids-1.20/libnids-1.20 (line 10 of
Makefile).
*** Error code 1

Stop in /usr/ports/net/libnids (line 1924 of
/usr/ports/infrastructure/mk/bsd.port.mk).
*** Error code 1

Stop in /usr/ports/security/dsniff (line 1422 of
/usr/ports/infrastructure/mk/bsd.port.mk).

no disk found - HP ProLiant DL360 G4

[Edward Avent]

Hi,

I'm trying to install OpenBSD 3.9 -release onto a HP ProLiant DL360 G4 
server. I get a no disk found message after the Proceed with 
install? question.
The system has an Intel 6300ESB/82801FR SATA Controller and is running a 
single Maxtor SATA HDD. I think if I could set the controller to 
compatibility instead of native-pci it would work, unfortunately I'm 
not sure how to go about doing this as there are no BIOS options in 
relation to the controller.

Full dmesg is below.
-
OpenBSD 3.9 (RAMDISK_CD) #1025: Thu Mar  2 02:43:29 MST 2006
 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/RAMDISK_CD
cpu0: Intel(R) Xeon(TM) CPU 3.00GHz (GenuineIntel 686-class) 3 GHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,CNXT-ID

real mem  = 1073270784 (1048116K)
avail mem = 973778944 (950956K)
using 4278 buffers containing 53768192 bytes (52508K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+(00) BIOS, date 12/31/99, BIOS32 rev. 0 @ 0xf
pcibios0 at bios0: rev 2.1 @ 0xf/0x2000
pcibios0: PCI BIOS has 7 Interrupt Routing table entries
pcibios0: PCI Interrupt Router at 000:31:0 (Intel 6300ESB LPC rev 0x00)
pcibios0: PCI bus #7 is the last bus
bios0: ROM list: 0xc/0x8000 0xc8000/0x3600! 0xcb600/0x1600 
0xee000/0x2000!

cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 Intel E7520 MCH rev 0x0a
ppb0 at pci0 dev 2 function 0 Intel MCH PCIE rev 0x0a
pci1 at ppb0 bus 1
ppb1 at pci0 dev 4 function 0 Intel MCH PCIE rev 0x0a
pci2 at ppb1 bus 2
ppb2 at pci2 dev 0 function 0 Intel PCIE-PCIE rev 0x09
pci3 at ppb2 bus 3
ppb3 at pci2 dev 0 function 2 Intel PCIE-PCIE rev 0x09
pci4 at ppb3 bus 4
ppb4 at pci0 dev 6 function 0 Intel MCH PCIE rev 0x0a
pci5 at ppb4 bus 5
ppb5 at pci0 dev 28 function 0 Intel 6300ESB PCIX rev 0x02
pci6 at ppb5 bus 6
bge0 at pci6 dev 2 function 0 Broadcom BCM5704C rev 0x10, BCM5704 B0 
(0x2100): irq 5, address 00:11:85:c2:d0:bb

brgphy0 at bge0 phy 1: BCM5704 10/100/1000baseT PHY, rev. 0
bge1 at pci6 dev 2 function 1 Broadcom BCM5704C rev 0x10, BCM5704 B0 
(0x2100): irq 5, address 00:11:85:c2:d0:ba

brgphy1 at bge1 phy 1: BCM5704 10/100/1000baseT PHY, rev. 0
uhci0 at pci0 dev 29 function 0 Intel 6300ESB USB rev 0x02: irq 5
usb0 at uhci0: USB revision 1.0
uhub0 at usb0
uhub0: Intel UHCI root hub, rev 1.00/1.00, addr 1
uhub0: 2 ports with 2 removable, self powered
uhci1 at pci0 dev 29 function 1 Intel 5300ESB USB rev 0x02: irq 5
usb1 at uhci1: USB revision 1.0
uhub1 at usb1
uhub1: Intel UHCI root hub, rev 1.00/1.00, addr 1
uhub1: 2 ports with 2 removable, self powered
Intel 6300ESB WDT rev 0x02 at pci0 dev 29 function 4 not configured
Intel 6300ESB APIC rev 0x02 at pci0 dev 29 function 5 not configured
ehci0 at pci0 dev 29 function 7 Intel 6300ESB USB rev 0x02: irq 5
usb2 at ehci0: USB revision 2.0
uhub2 at usb2
uhub2: Intel EHCI root hub, rev 2.00/1.00, addr 1
uhub2: 4 ports with 4 removable, self powered
ppb6 at pci0 dev 30 function 0 Intel 82801BA AGP rev 0x0a
pci7 at ppb6 bus 7
vga1 at pci7 dev 3 function 0 ATI Rage XL rev 0x27
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
Compaq iLO rev 0x01 at pci7 dev 4 function 0 not configured
Compaq iLO rev 0x01 at pci7 dev 4 function 2 not configured
ichpcib0 at pci0 dev 31 function 0 Intel 6300ESB LPC rev 0x02
pciide0 at pci0 dev 31 function 1 Intel 6300ESB IDE rev 0x02: DMA, 
channel 0 configured to compatibility, channel 1 configured to compatibility

atapiscsi0 at pciide0 channel 0 drive 0
scsibus0 at atapiscsi0: 2 targets
cd0 at scsibus0 targ 0 lun 0: TEAC, DV-28E-N, C.6B SCSI0 5/cdrom removable
cd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2
pciide0: channel 1 disabled (no drives)
pciide1 at pci0 dev 31 function 2 Intel 6300ESB SATA rev 0x02: DMA, 
channel 0 configured to native-PCI, channel 1 configured to native-PCI

pciide1: couldn't map channel 0 cmd regs
pciide1: couldn't map channel 1 cmd regs
isa0 at ichpcib0
isadma0 at isa0
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
npx0 at isa0 port 0xf0/16: using exception 16
pccom0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
pccom1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
biomask ffe5 netmask ffe5 ttymask ffe7
rd0: fixed, 3800 blocks
uhub3 at uhub2 port 4
uhub3: Prolific Technology Inc. USB_HUB, rev 2.00/0.01, addr 2
uhub3: 1 port with 0 removable, bus powered, single transaction translator
umass0 at uhub3 port 1 configuration 1 interface 0
umass0: Prolific Technology Inc. USB_Storage, rev 2.00/0.01, addr 3
umass0: using SCSI over Bulk-Only
scsibus1 at umass0: 2 targets
sd0 at scsibus1 targ 1 lun 0: Prolific, UsbFlashDisk, PROL SCSI0 
0/direct fixed

sd0: drive offline
root on rd0a
rootdev=0x1100 rrootdev=0x2f00 rawdev=0x2f02

Any help is appreciated!

Thanks,
Edward Avent

Re: no disk found - HP ProLiant DL360 G4

[Edward Avent]

Hi,

I had some suggestions and was able to solve this issue by using the 
-current snapshot.


Thanks,
Edward

Edward Avent wrote:

Hi,

I'm trying to install OpenBSD 3.9 -release onto a HP ProLiant DL360 G4 
server. I get a no disk found message after the Proceed with 
install? question.
The system has an Intel 6300ESB/82801FR SATA Controller and is running 
a single Maxtor SATA HDD. I think if I could set the controller to 
compatibility instead of native-pci it would work, unfortunately 
I'm not sure how to go about doing this as there are no BIOS options 
in relation to the controller.

Any help is appreciated!

Thanks,
Edward Avent

Using OpenBGPD, some advice or words of wisdom

[Edward Ray]

I have been toying with the idea of using OpenBGPD because my PoS 3640 route
does not have enough RAM to support full routing tables.  I am still stuck
with the 3640 as the gateway for the 4-bonded-T1s coming into my network,
but I would like to put a OpenBSD machine between it and my hardware
firewall(s) so that I can get the full routing tables and eventually
multi-home with another ISP.

I have read the presentations by Henning Brauer at
http://www.openbgpd.org/papers.html; it seems pretty straightforward to set
up.  I would appreciate any advice or words of wisdom from those people who
use OpenBGPD.  I plan to use a PIII 1GHz or better with 1 GB of RAM; should
be enough for full routing tables and enough room for routing table
expansion as the Internet grows.


Thanks in advance

Edward Ray
CISSP, GCIA, GCIH, MCSE:Security, PE
Netsec Design, Inc.
http://www.netsecdesign.com