Re: sysupgrade with latest snapshot: The directory '/home/_sysupgrade/' does not exist.
Theo de Raadt wrote: > Your system is layed out strangely and sysupgrade cannot handle all > absurd layouts. And: > The correct proposal is: > > Install your machines in a normal way. > > It is not unreasonable. Hi, You are right, that is a reasonable requirement. This system was installed in a normal way. Later, a second disk was added. A smaller, faster storage device for the OS with a larger, not so fast device for data (including home) doesn't seem that absurd to me. Maybe a bit old school. That the device names changed, that the disk I added later became sd0, is (I assume) related to how OpenBSD probes/manages the hardware. That hasn't caused me any issues at all except for, perhaps, this one problem of confusing sysupgrade. But it looks as if I have a solution for that now, or as you suggest, I can do upgrades manually, so all good here. Thanks for the support. Cheers, Robb.
Encrypted notepad software suggestions
Hi there! I'm looking for some notepad with encryption of notes/files created. Simply Text File encryption is suitable too to hide some info from plain text files I have. Please advice. Martin
Re: sysupgrade with latest snapshot: The directory '/home/_sysupgrade/' does not exist.
On 2020-09-28, Greg Thomas wrote: > "Have sysupgrade just do the right thing. For example, there could be > a _sysupgrade user in the systems /etc/passwd, whose $HOME would > indicate the preferred location for sets" > > Holy fucking overkill. meh. It *is* a problem on some systems, especially if the disk layout was done pre-sysupgrade.
Re: sysupgrade with latest snapshot: The directory '/home/_sysupgrade/' does not exist.
Stuart Henderson wrote: > On 2020-09-28, Greg Thomas wrote: > > "Have sysupgrade just do the right thing. For example, there could be > > a _sysupgrade user in the systems /etc/passwd, whose $HOME would > > indicate the preferred location for sets" > > > > Holy fucking overkill. > > meh. It *is* a problem on some systems, especially if the disk layout > was done pre-sysupgrade. sysupgrade.sh was added 2019/04/25. it has the following tags: OPENBSD_6_8: 1.40.0.4 OPENBSD_6_8_BASE: 1.40 OPENBSD_6_7: 1.37.0.4 OPENBSD_6_7_BASE: 1.37 OPENBSD_6_6: 1.25.0.4 OPENBSD_6_6_BASE: 1.25 OPENBSD_6_5: 1.25.0.2 we only "support" the current release (6.7), the previous release (6.6). So, people have disk layouts which predate our "support" cycle. sysupgrade was not intended to deal with strange layouts. Many of us feel that sysupgrade should not bend over to deal with strange layouts. So we are at an impasse. The recommended solution is for people to stop making sysupgrade-incompatible layouts in the future, and to consider repairing their incompatible layouts from the past. if sysupgrade doesn't work, people have the old ways of doing things. doctor doctor it hurts when i layout my disk strangely...
Re: Encrypted notepad software suggestions
On 28/09/2020 11:40, Markus Wernig wrote: On 9/28/20 9:18 AM, Martin wrote: I'm looking for some notepad with encryption of notes/files created. Simply Text File encryption is suitable too to hide some info from plain text files I have. Depending on your definition of "notepad", vim (gvim) should have built-in encryption (:X command), at least it does on Linux. best /m If you're going to use this, make sure to actually set the algo you want to use, since it looks like the default is bad. https://vim.fandom.com/wiki/Encryption
Re: sysupgrade with latest snapshot: The directory '/home/_sysupgrade/' does not exist.
On Sun, 27 Sep 2020 23:27:34 +0200 li...@y42.org wrote: > I subsequently added a 2nd disk to provide more space, for my /home. /home can be mounted on another disk without a symlink to the OS disk. Edit /etc/fstab with the actual mount point of /home Likewise for many other directories on other partitions of other disks. Such as a large web server could be mounted as /var/www on another disk. Cheers, Craig.
Re: Encrypted notepad software suggestions
On 9/28/20 10:48 AM, Martin wrote: Hi there! I'm looking for some notepad with encryption of notes/files created. Simply Text File encryption is suitable too to hide some info from plain text files I have. Please advice. Martin Hi, You should try pass[1]. > Lightweight command line-based password manager. Uses gpg and git to > generate, securely store, synchronize and show stored passwords. It also can keep secured (multi-line) notes. It's available on OpenBSD ports under security/passwordstore. [1]: https://www.passwordstore.org/
Re: Encrypted notepad software suggestions
On 9/28/20 9:18 AM, Martin wrote: > I'm looking for some notepad with encryption of notes/files created. Simply > Text File encryption is suitable too to hide some info from plain text files > I have. Depending on your definition of "notepad", vim (gvim) should have built-in encryption (:X command), at least it does on Linux. best /m
Re: Encrypted notepad software suggestions
On 9/28/20 4:54 PM, William Orr wrote: > https://vim.fandom.com/wiki/Encryption That post is from 2001 (still valid, though). Vim from the current package defaults to blowfish2 as encryption algorithm. best /m
Re: Encrypted notepad software suggestions
> Simply Text File encryption is suitable too to hide some info from plain text > files I have. You can encrypt text files simply using tools in the base system. EXAMPLES Edit, encrypt, and erase: $ vi file.txt $ openssl aes-256-cbc -a -iter 10 -in file.txt -out file.txt.enc $ rm -P file.txt Restore, and edit: $ openssl aes-256-cbc -d -a -iter 10 -in file.txt.enc -out file.txt $ vi file.txt SEE ALSO openssl(1), rm(1)
Re: Issues with TP-Link UE300
Hi, This seems to work much better! Transferring files via NFS, I could sustain from 118 to 148Mbps. Kernel says: ure0 at uhub0 port 15 configuration 1 interface 0 "TP-LINK USB 10/100/1000 LAN" rev 3.00/30.00 addr 5 ure0: RTL8153 (0x5c20), address d0:37:45:xx:xx:xx rgephy0 at ure0 phy 0: RTL8251 PHY, rev. 0 ifconfig says: ure0: flags=808843 mtu 1500 usbdev says: addr 05: 2357:0601 TP-LINK, USB 10/100/1000 LAN super speed, power 64 mA, config 1, rev 30.00, iSerial 0100 driver: ure0 iperf3 says: [ 5] 0.00-10.00 sec 618 MBytes 518 Mbits/sec sender [ 5] 0.00-10.13 sec 618 MBytes 512 Mbits/sec receiver Thank you very much. On Mon, Sep 28, 2020 at 10:30:16AM +0800, Kevin Lo wrote: > On Sun, Sep 27, 2020 at 11:43:13PM +0200, Joel Carnat wrote: > > > > Hi, > > > > I have plugged a TP-Link UE300 on my ThinkPad X260 running OpenBSD -snapshot > > and it seems I can't get more than 100Mbps. > > > > The dongle attaches and get an IP address. But the speed seems limited. > > Same behaviour when attached to the USB3 port of my APU4D4 (running 6.7). > > When plugged in a MacBook Pro (running macos), it gets Gbps speed. > > > > I have noticed that it gets attached to cdce0; > > I thought the RTL8153 chipset would give me an ure0 device. > > > > Is this expected? > > Is there something I can do to get Gbps out of this device? > > Please try this diff, thanks. > > Index: sys/dev/usb/if_ure.c > === > RCS file: /cvs/src/sys/dev/usb/if_ure.c,v > retrieving revision 1.18 > diff -u -p -u -p -r1.18 if_ure.c > --- sys/dev/usb/if_ure.c 4 Aug 2020 14:45:46 - 1.18 > +++ sys/dev/usb/if_ure.c 28 Sep 2020 02:24:40 - > @@ -76,7 +76,8 @@ const struct usb_devno ure_devs[] = { > { USB_VENDOR_LENOVO, USB_PRODUCT_LENOVO_DOCK_ETHERNET }, > { USB_VENDOR_REALTEK, USB_PRODUCT_REALTEK_RTL8152 }, > { USB_VENDOR_REALTEK, USB_PRODUCT_REALTEK_RTL8153 }, > - { USB_VENDOR_REALTEK, USB_PRODUCT_REALTEK_RTL8156 } > + { USB_VENDOR_REALTEK, USB_PRODUCT_REALTEK_RTL8156 }, > + { USB_VENDOR_TPLINK, USB_PRODUCT_TPLINK_UE300 } > }; > > int ure_match(struct device *, void *, void *); > Index: sys/dev/usb/usbdevs > === > RCS file: /cvs/src/sys/dev/usb/usbdevs,v > retrieving revision 1.720 > diff -u -p -u -p -r1.720 usbdevs > --- sys/dev/usb/usbdevs 3 Aug 2020 14:25:44 - 1.720 > +++ sys/dev/usb/usbdevs 28 Sep 2020 02:24:40 - > @@ -4317,6 +4317,7 @@ product TPLINK RTL8192EU0x0107 RTL8192E > product TPLINK RTL8192EU_2 0x0108 RTL8192EU > product TPLINK RTL8192EU_3 0x0109 RTL8192EU > product TPLINK RTL8188EUS0x010c RTL8188EUS > +product TPLINK UE300 0x0601 UE300 Ethernet > > /* Trek Technology products */ > product TREK THUMBDRIVE 0x ThumbDrive > Index: sys/dev/usb/usbdevs.h > === > RCS file: /cvs/src/sys/dev/usb/usbdevs.h,v > retrieving revision 1.732 > diff -u -p -u -p -r1.732 usbdevs.h > --- sys/dev/usb/usbdevs.h 3 Aug 2020 14:25:56 - 1.732 > +++ sys/dev/usb/usbdevs.h 28 Sep 2020 02:24:40 - > @@ -1,4 +1,4 @@ > -/* $OpenBSD: usbdevs.h,v 1.732 2020/08/03 14:25:56 deraadt Exp $ */ > +/* $OpenBSD$ */ > > /* > * THIS FILE IS AUTOMATICALLY GENERATED. DO NOT EDIT. > @@ -4324,6 +4324,7 @@ > #define USB_PRODUCT_TPLINK_RTL8192EU_2 0x0108 /* RTL8192EU */ > #define USB_PRODUCT_TPLINK_RTL8192EU_3 0x0109 /* RTL8192EU */ > #define USB_PRODUCT_TPLINK_RTL8188EUS 0x010c /* RTL8188EUS */ > +#define USB_PRODUCT_TPLINK_UE3000x0601 /* UE300 > Ethernet */ > > /* Trek Technology products */ > #define USB_PRODUCT_TREK_THUMBDRIVE 0x /* ThumbDrive */ > Index: sys/dev/usb/usbdevs_data.h > === > RCS file: /cvs/src/sys/dev/usb/usbdevs_data.h,v > retrieving revision 1.726 > diff -u -p -u -p -r1.726 usbdevs_data.h > --- sys/dev/usb/usbdevs_data.h3 Aug 2020 14:25:56 - 1.726 > +++ sys/dev/usb/usbdevs_data.h28 Sep 2020 02:24:40 - > @@ -1,4 +1,4 @@ > -/* $OpenBSD: usbdevs_data.h,v 1.726 2020/08/03 14:25:56 deraadt Exp $ > */ > +/* $OpenBSD$ */ > > /* > * THIS FILE IS AUTOMATICALLY GENERATED. DO NOT EDIT. > @@ -11068,6 +11068,10 @@ const struct usb_known_product usb_known > { > USB_VENDOR_TPLINK, USB_PRODUCT_TPLINK_RTL8188EUS, > "RTL8188EUS", > + }, > + { > + USB_VENDOR_TPLINK, USB_PRODUCT_TPLINK_UE300, > + "UE300 Ethernet", > }, > { > USB_VENDOR_TREK, USB_PRODUCT_TREK_THUMBDRIVE, >
Re: sysupgrade with latest snapshot: The directory '/home/_sysupgrade/' does not exist.
On Sep 28 14:16, Stuart Henderson wrote: > On 2020-09-28, Greg Thomas wrote: > > "Have sysupgrade just do the right thing. For example, there could be > > a _sysupgrade user in the systems /etc/passwd, whose $HOME would > > indicate the preferred location for sets" > > > > Holy fucking overkill. > > meh. It *is* a problem on some systems, especially if the disk layout > was done pre-sysupgrade. Following the "Automatic Disk Allocation" in disklabel(8) has saved me from complications when it comes time for each new version of OpenBSD. Prior to each new release, I determine if I am changing my layout by monitoring the following file: https://cvsweb.openbsd.org/src/sbin/disklabel/editor.c
A few questions regarding WG(4)
Dear reader, i tested 6.8-beta and WG After going for behind NAT to behind NAT experiment , i went for two 'clients' behind a NAT to an openBSD device with a public IP called here 'Server' First of all , a minor detail, unless I thought wgport was not optional because the ifconfig output will not tell you the 'random port' chosen. So you cannot configure wgpeer after, unless you up the interface (1) 'Server' # ifconfig wg1 wg1: flags=80c3 mtu 1420 index 5 priority 0 llprio 3 wgport wgpubkey XdbTdbNzEASSXvgwAHrBuuBNHpeDtS0CGH3KsT7TxzY= wgpeer XxILKSdZ3JJr7fhAqzVNhNE4wbxJGfFlb4EYijqnU1k= wgendpoint XX tx: 13988, rx: 11164 last handshake: 135 seconds ago wgaip 192.168.5.1/24 wgpeer Xo6rmtAMkXhGIJOtulLhzCialGdzoPhDSHou+LWWfz8= wgendpoint XX tx: 10164, rx: 5992 last handshake: 9 seconds ago wgaip 192.168.0.0/16 groups: wg inet 192.168.5.1 netmask 0x broadcast 192.168.255.255 the wgaip filter is a bit confusing to me because i MAY want to allow 192.168.5.1 on both but not having overlapping subnet , or maybe it's dedicated to routing. The man page of WG(4) or the faq could have a more fancy example to illustrate correct use of wgaip The main question is related to the fact that I was unable to ping the peers from the 'server' until I pinged 192.168.5.1 from the two 'clients'. # ping 192.168.6.1 PING 192.168.6.1 (192.168.6.1): 56 data bytes ^C --- 192.168.6.1 ping statistics --- 5 packets transmitted, 0 packets received, 100.0% packet loss ## ping 192.168.5.1 or remote device here # ping 192.168.6.1 PING 192.168.6.1 (192.168.6.1): 56 data bytes 64 bytes from 192.168.6.1: icmp_seq=0 ttl=255 time=12.564 ms 64 bytes from 192.168.6.1: icmp_seq=1 ttl=255 time=16.005 ms Is this expected and/or due to the fact 192.168.6.1 is behind a NAT ? Best ( one client is i386 the other amd64 , 6.8 beta is working so far !) (1) # ifconfig wg2 create wgkey `openssl rand -base64 32` # ifconfig wg2 wg2: flags=8082 mtu 1420 index 6 priority 0 llprio 3 wgpubkey iKbEvJvgyyzcdRcefgXaC7BWkmfUTREtL5BWvFeKdHo= groups: wg vps105766# ifconfig wg2 up vps105766# ifconfig wg2 wg2: flags=80c3 mtu 1420 index 6 priority 0 llprio 3 wgport 16326 wgpubkey iKbEvJvgyyzcdRcefgXaC7BWkmfUTREtL5BWvFeKdHo= groups: wg man ``` wgport port Set the UDP port that the tunnel operates on. The interface will bind to INADDR_ANY and IN6ADDR_ANY_INIT. If no port is configured, one will be chosen automatically. ``` to ``` wgport port Set the UDP port that the tunnel operates on. The interface will bind to INADDR_ANY and IN6ADDR_ANY_INIT. If no port is configured, one will be chosen automatically when the interface is up. ``` ? -- -- - Knowing is not enough; we must apply. Willing is not enough; we must do
Re: Issues with TP-Link UE300
On Tue, Sep 29, 2020 at 12:08:42AM +0200, Joel Carnat wrote: > > Hi, Hi Joel, > This seems to work much better! > Transferring files via NFS, I could sustain from 118 to 148Mbps. > > Kernel says: > ure0 at uhub0 port 15 configuration 1 interface 0 "TP-LINK USB 10/100/1000 > LAN" rev 3.00/30.00 addr 5 > ure0: RTL8153 (0x5c20), address d0:37:45:xx:xx:xx > rgephy0 at ure0 phy 0: RTL8251 PHY, rev. 0 > > ifconfig says: > ure0: flags=808843 mtu 1500 > > usbdev says: > addr 05: 2357:0601 TP-LINK, USB 10/100/1000 LAN > super speed, power 64 mA, config 1, rev 30.00, iSerial 0100 > driver: ure0 > > iperf3 says: > [ 5] 0.00-10.00 sec 618 MBytes 518 Mbits/sec sender > [ 5] 0.00-10.13 sec 618 MBytes 512 Mbits/sec receiver > > Thank you very much. Thanks for testing. I just committed this patch.