Re: [gentoo-user] Re: Expect a ~15% average slowdown if you use an Intel processor

> > The settings relevant to Spectre are: > CONFIG_BPF_JIT - this being set to y is enough to make Intel > processors vulnerable to variant 1/2. This being set to y is > necessary, but not sufficient, for making AMD vulnerable to variant 1. > net.core.bpf_jit_enable - this being set to 1 along

Re: [gentoo-user] Re: Expect a ~15% average slowdown if you use an Intel processor

On Fri, Jan 5, 2018 at 8:39 AM, Nikos Chantziaras wrote: > On 04/01/18 18:18, Rich Freeman wrote: > >> For variant 1 the only known vulnerability is BPF which probably >> next to nobody uses >> > > I had to enable various BPF settings in the kernel because systemd > wouldn't

[gentoo-user] Re: Spectre and Meltdown summary

Browser stuff I'm guessing this relates to Variant1; @hackerfantastic "Blackhats will be weaponizing spectre to steal session cookies from additional websites opened in the browser, especially financial sites. Enable site isolation in Chrome now.

[gentoo-user] Spectre and Meltdown summary

No guarantees on accuracy... Meltdown CVE-2017-5754 (Variant3) - userspace reads kernel memory. Intel vulnerable, AMD not vulnerable. Issue is mitigated with KPTI (in kernel 4.14.11, Security Options -> Remove the kernel mapping in user mode (CONFIG_PAGE_TABLE_ISOLATION), on by default for all

Re: [gentoo-user] Expect a ~15% average slowdown if you use an Intel processor

> > Project Zero (Google) found it; > https://googleprojectzero.blogspot.com.au/2018/01/ > reading-privileged-memory-with-side.html > > Phoronix has done some benchmarks on the impact of the kernel based > workaround ([Kernel] Page Table Isolation (PSI) nee Kaiser) >

Re: [gentoo-user] Expect a ~15% average slowdown if you use an Intel processor

On Thu, Jan 4, 2018 at 2:15 PM, P Levine wrote: > I'm not sure if it's been mentioned here before but there apparently is a > bug affecting all Intel CPUs manufactured in the last 10 years or so, in > which protected kernel memory is leaked to userspace. It can't be

Re: [gentoo-user] Re: old kernels are installed during the upgrade

> > And on that note I see that upstream just released 4.14.11 containing > what is widely speculated as a fix for an Intel CPU security > vulnerability. I noticed that it doesn't disable the > performance-impacting setting on AMD CPUs. Though, right now only AMD > could say whether this is

Re: [gentoo-user] [OT?]: In search of a program to do different b/w dithering methods

> > I am looking for a command line tool... > I want to do 'mass dithering' and want neither a gui nor a > heavy program like The Gimp. > > I checked pbmplus and found no useful part for that porpuse... > Does this do what you want? Its installed by default with imagemagick

Re: [gentoo-user] Troubleshooting mounting local filesystems

> > > Can you cut and paste the terminal session of the post boot fixes? > > What are you asking for here? > Just fishing for more info because I cant think of any circumstance that would cause the issue you're seeing. If it were me i'd force an fsck on next reboot, then reboot. I just had a

[gentoo-user] vmware + ext4 issue

When i run a vmware workstation windows 10 guest on an ext4 nvme drive, I get a kernel crash. The same guest seems stable on an ext4 filesystem on a spinning disk. Should i report this to kernel devs, and if so, how? Dec 31 17:20:39 sysname kernel: [ cut here ] Dec 31

Re: [gentoo-user] Troubleshooting mounting local filesystems

On Sun, Dec 31, 2017 at 2:22 PM, Daniel Frey wrote: > Some background: > > A little while back I had a drive drop out of my hardware RAID. I don't > think this has anything to do with the problem I'm having, but I thought I > should mention it. The RAID health is fine and I

Re: [gentoo-user] segfault in gedit / glib

* Install gdb if it isn't already installed > > * Make sure a core file is presend in coredumpd, coredumpctl should > show; if not, have it crash again so it's fresh and saved in there > > * coredumpctl gdb gedit > > * bt full > > Post output of that "bt full" > > (gdb) bt full #0

Re: [gentoo-user] segfault in gedit / glib

> > The segfault message would exist in the dmesg/journalctl. Please open a > user shell in Gnome and type "gedit ",​ substituting a text file for > . Press enter. Does this segfault and if so is there anything else > printed? > ​ ​ > The journalctl message is; Dec 29 12:17:32 phat kernel:

Re: [gentoo-user] segfault in gedit / glib

On Fri, Dec 29, 2017 at 4:59 PM, P Levine <plevine...@gmail.com> wrote: > On Thu, Dec 28, 2017 at 9:01 PM, Adam Carter <adamcart...@gmail.com> > wrote: > >> System is ~amd64. If i try to open a text file in gnome via double click, >> i get; >> $ journalctl

[gentoo-user] segfault in gedit / glib

System is ~amd64. If i try to open a text file in gnome via double click, i get; $ journalctl -b | grep segf Dec 29 12:17:32 phat kernel: gedit[1177]: segfault at 7f7c0d36e880 ip 7f7c2550ba74 sp 7fff66834850 error 4 in libglib-2.0.so.0.5200.3[7f7c254c+114000] The following work; Open

Re: [gentoo-user] How to harden a system

> > Lastly, this in /etc/sysctl.conf. SYN cookies is kernel option. The fin > timeout cut was to clear out tens of thousands of TIME_WAIT sessions. > net.ipv4.tcp_fin_timeout = 20 > net.ipv4.tcp_syncookies = 1 > Oh I just noticed that vtv is now default enabled for gcc, so you could try;

Re: [gentoo-user] after finally doing my emerge -e world successfully, my regular world update fails

> > Ok, thanks. The system profile warning below had me worried, but from what > you're said it appears that the warning is generated on an unsophisticated > check, and in this case is a false positive. > > # emerge -pv --depclean sys-apps/openrc net-misc/netifrc sys-apps/sysvinit > > FYI the

Re: [gentoo-user] Radeon RV730 blobs changed

On Thu, Dec 21, 2017 at 7:20 AM, Mick wrote: > On Wednesday, 20 December 2017 19:55:40 GMT Mick wrote: > > On Wednesday, 20 December 2017 18:31:03 GMT Mike Gilbert wrote: > > > On Wed, Dec 20, 2017 at 12:39 PM, Mick > wrote: > > > > [

Re: [gentoo-user] 'firmware_install' won't on 4.14.7-gentoo

> > Comparing firmware between kernels 4.12.12 and 4.14.7 I see: > > $ ls -l /usr/src/linux-4.12.12-gentoo/firmware/radeon/RV730* > -rw-r--r-- 1 root root 5440 Dec 7 09:02 /usr/src/linux-4.12.12-gentoo/ > firmware/radeon/RV730_me.bin > -rw-r--r-- 1 root root 454 Dec 7 09:02

Re: [gentoo-user] How to harden a system

On Sun, Dec 24, 2017 at 1:09 AM, Peter Humphrey wrote: > Hello list, > > Now that grsecurity is off-limits, I'm left wondering how to go about > hardening a no-multilib box that will be exposed to the Big Bad World. > > To start with, it's not obvious which profile to use:

Re: [gentoo-user] after finally doing my emerge -e world successfully, my regular world update fails

On Sun, Dec 24, 2017 at 7:04 AM, Neil Bothwick <n...@digimed.co.uk> wrote: > On Sat, 23 Dec 2017 11:32:16 +1100, Adam Carter wrote: > > > But virtual/service-manager is using openrc. How do i point this to > > systemd? > > By having systemd installed. A virt

Re: [gentoo-user] after finally doing my emerge -e world successfully, my regular world update fails

> > sys-apps/openrc is probably in your world file. Either remove it, or > disable the "sysv-utils" USE flag on sys-apps/systemd. > > I'd like to trying going the other way. so i'll first; quickpkg sys-apps/openrc net-misc/netifrc sys-apps/sysvinit But virtual/service-manager is using openrc. How

Re: [gentoo-user] Choice of TLD for internal network

On Wed, Dec 20, 2017 at 7:31 AM, Neil Bothwick wrote: > On Tue, 19 Dec 2017 17:00:33 +, Peter Humphrey wrote: > > > * [OT]What's the difference between intervention and > > interference? None that I can see. One is just more Politically Crass - > > oops! Correct -

Re: [gentoo-user] How to resume 'emerge -e @world' after grub fails?

On Tue, Dec 19, 2017 at 8:15 PM, Neil Bothwick <n...@digimed.co.uk> wrote: > On Tue, 19 Dec 2017 16:51:27 +1100, Adam Carter wrote: > > > When i depclean i use -av --depclean --exclude gcc --exclude > > gentoo-sources, since i like keep 2 gcc's around and I look af

Re: [gentoo-user] No Sound After Reboot, or, More Troubles with Firmware?

On Tue, Dec 19, 2017 at 2:18 PM, Hunter Jozwiak wrote: > Hello again, > > While fixing my wifi card issues, I came across yet another issue. I > set the snd-hda-intel PCH as my default soundcard, but I have no sound > whatsoever, which renders the system pretty much

Re: [gentoo-user] How to resume 'emerge -e @world' after grub fails?

> > Hm. > > # wc -l /var/lib/portage/world > 1140 /var/lib/portage/world > > Am I doing something wrong? If you're emerging dependencies without -1, then yes, otherwise, no. > Looking it over, it looks right though. > And --depclean is hopelessly overeager here. > What makes you think that?

Re: [gentoo-user] Choice of TLD for internal network

On Tue, Dec 19, 2017 at 11:10 AM, Peter Humphrey <pe...@prh.myzen.co.uk> wrote: > On Monday, 18 December 2017 09:49:41 GMT Adam Carter wrote: > > On Mon, Dec 18, 2017 at 1:05 PM, Peter Humphrey <pe...@prh.myzen.co.uk> > > wrote: > > > I've been running Linux sy

Re: [gentoo-user] Loading a Firmware Module By hand?

That particular firmware does not exist. I am trying to figure how far > back I need to rollback the kernel. Sabayon's live ISO is using > 4.13.0, but that is no longer in the tree. Not sure if I need to go > back to the 4.12 ebuilds, or if 4.13.5 will suit my needs; perhaps > there is a bit of

Re: [gentoo-user] How to resume 'emerge -e @world' after grub fails?

> > I have to confess, I set most of this as defaults in make.conf. The > most often commands I use, eix-sync and emerge -uaDN world. Everything > else is in make.conf. Listy for those who may be curious. > > EMERGE_DEFAULT_OPTS="--with-bdeps y --backtrack=100 --keep-going -v -j5 >

Re: [gentoo-user] Choice of TLD for internal network

On Mon, Dec 18, 2017 at 1:05 PM, Peter Humphrey wrote: > Hello list, > > I've been running Linux systems since 1994, calling my private LAN mynet > (bowdlerised). Now I come to install neth server on one machine, it insists > that I tell it a domain name with at least two

[gentoo-user] distcc user contexts

Watching top, i notice some gcc instances run under the portage user and others under the distcc user - is that normal? The gentoo distcc wiki page states "If compilations should also occur on the local machine, put localhost in the hosts list. Conversely if the local machine is not to be used to

Re: [gentoo-user] CFLAGs change but no filter/strip/replace in ebuild

> > I would strongly advise against that, just on principle. > > yasm is an assembler, and as such it's right at the bottom of the stack. > It's not unreasonable for such a package to use different FLAGS etc as > it's not a userland app. It's an app that builds things you use to build > a

Re: [gentoo-user] CFLAGs change but no filter/strip/replace in ebuild

On Sat, Dec 9, 2017 at 8:10 PM, Alan McKinnon <alan.mckin...@gmail.com> wrote: > On 09/12/2017 11:10, Adam Carter wrote: > > # grep -ic flags yasm-1.3.0.ebuild > > 0 > > > > However, emerge --info yasm shows me that only -march -O2 -pipe make it > >

[gentoo-user] CFLAGs change but no filter/strip/replace in ebuild

# grep -ic flags yasm-1.3.0.ebuild 0 However, emerge --info yasm shows me that only -march -O2 -pipe make it through. Where is the code that strips the others?

Re: [gentoo-user] Re: emerge --info

On Wed, Dec 6, 2017 at 11:42 PM, Martin Vaeth <mar...@mvath.de> wrote: > Adam Carter <adamcart...@gmail.com> wrote: > > so why have it if you force it off? > > One thing is the ebuild and the other is the profile: > It might be different in a different profi

Re: [gentoo-user] emerge --info

On Thu, Dec 7, 2017 at 2:36 AM, Alan McKinnon <alan.mckin...@gmail.com> wrote: > On 06/12/2017 04:31, Adam Carter wrote: > > Does the output reflect; > > 1. What will be used for the next build > > 2. What was used on the last successful build > > 3. What w

Re: [gentoo-user] emerge --info

Can you see if this helps get you what you want? > > emerge --info firefox > > Yeah that's what i'm talking about. The custom-cflags is forced unset on the second (filtered) output of USE, so why have it if you force it off? Perhaps there's other factors that affect if it gets allowed through or

Re: [gentoo-user] emerge --info

> Firefox is very finicky about CFLAGS. That's the only reason we have > USE=custom-cflags in the first place; otherwise, we always try to > respect them. > > custom-cflags is currently filtered out according to the before and after USE definition from emerge --info What is the logic of that?

[gentoo-user] emerge --info

Does the output reflect; 1. What will be used for the next build 2. What was used on the last successful build 3. What was used on the last build attempt If its 1 or 3, then USE=custom-cflags does not work on firefox...

Re: [gentoo-user] Re: Will profile 17.0 break 3rd party binaries?

> > Good question. I've been using a pie-enabled gcc 7.2 for months before > > the 17.0 profile switch and both acroread and skype (the new one) > > still work, so chances are your stuff will too. > > Years ago when I used acroread I found it quite irritating that it came > with its own bundled

[gentoo-user] Profile 17 and -fPIC

Possibly due to messing around with hardened in the past, i'm finding that many packages are reporting that they need -fPIC now that i'm on 17.0 (and gcc 7.2 FWIW). I've added it to CFLAGs, as manually adding to each failed package via package.env was getting non-trivial. >From the GCC man page

Re: [gentoo-user] Emerge does want to tell me...what?

On Sun, Dec 3, 2017 at 3:43 PM, wrote: > Hi, > > I started emerge -e @world > > and it stops with this message: > > The following mask changes are necessary to proceed: > (see "package.unmask" in the portage(5) man page for more details) > # required by @selected > # required

Re: [gentoo-user] New profile 17: How urgent is the rebuild of world technically?

> How can I check, whether a binary is "PIE"-conform ("pie-conform" is > a freaky funny language hack :) ;) ) ? > emerge hardening-check # hardening-check /usr/bin/cpuid2cpuflags /usr/bin/cpuid2cpuflags: Position Independent Executable: yes Stack protected: yes Fortify Source functions: yes

Re: [gentoo-user] New profile 17: How urgent is the rebuild of world technically?

On Sun, Dec 3, 2017 at 1:30 PM, Michael Orlitzky wrote: > On 12/02/2017 09:15 PM, tu...@posteo.de wrote: > > Hi, > > > > the instruction of the news item about the swicth to profile 17 says > > that one needs to rebuild @world. > > > > Is this technically needed? > > Yes, unless

Re: [gentoo-user] Re: grub-0.97-r16 and profile 17.0 change

> * Select the new profile with eselect > * Re-emerge, in this sequence, gcc, binutils, and glibc > emerge -1 sys-devel/gcc:6.4.0 > emerge -1 sys-devel/binutils > emerge -1 sys-libs/glibc > * Rebuild your entire system > emerge -e @world > Would emerge -e --exclude gcc --exclude

[gentoo-user] Re: FYI bcache broken in 4.14.0

On Fri, Nov 24, 2017 at 11:11 AM, Adam Carter <adamcart...@gmail.com> wrote: > Earlier versions ok and 4.14.1 has the fix > > https://www.theregister.co.uk/2017/11/22/linux_4_14_bcache_ > bug_destroys_data/ > Correction - the fix is in 4.14.2

[gentoo-user] FYI bcache broken in 4.14.0

Earlier versions ok and 4.14.1 has the fix https://www.theregister.co.uk/2017/11/22/linux_4_14_bcache_bug_destroys_data/

[gentoo-user] Intel ucode updates for ME issues?

I notice that an update for sys-firmware/intel-microcode just come through on ~amd64, does that address the ME issues? http://www.zdnet.com/article/intel-weve-found-severe-bugs-in-secretive-management-engine-affecting-millions/ Or will my NUC need a firmware update?

Re: [gentoo-user] Problems copmiling firefox 57.0 (linking phase)

> > thread '' panicked at 'Unable to find libclang: "the > `libclang` shared library could not be opened: > /usr/lib64/llvm/5/lib64/libclang.so.5.0"', src/libcore/result.rs:860 > stack backtrace: > > Short of the file missing, no idea what could be the root cause. > > Given this, you may as well

Re: [gentoo-user] Linux USB security holes.

On Wed, Nov 8, 2017 at 4:08 PM, Dale wrote: > Howdy, > > I ran up on this link. Is there any truth to it and should any of us > Gentooers be worried about it? > Its sensible to think of anything that's been assigned a CVE number as real. > >

Re: [gentoo-user] [OT] Extracting printer settings from a gcode file?

> > Would be nice, if it could be possible to extract them from the gcode > example > files in a way, that made it possible to feed them back into the slicer > software manually (not expecting to get a config file ready to be read > directly > with that certain slicer software I want to use...) >

Re: [gentoo-user] Python 3.5

> On my amd64 arch machine I; > emerged python 3.5 > eselected python 3.5 > edited make.conf to set PYTHON_TARGETS to "python2_7 python3_5" > running emerge -pv --depclean =python-3.4.5 to see what needs to be rebuilt > Then tryed to rebuild those packages to allow removal of 3.4, however, it >

Re: [gentoo-user] Python 3.5

On Sun, Oct 29, 2017 at 12:17 PM, Philip Webb wrote: > Python 3.5 has become stable : what are the pro/cons of updating to it ? > I have in make.conf : > > USE_PYTHON="2.7 3.4" > PYTHON_TARGETS="python2_7 python3_4" > PYTHON_SINGLE_TARGET="python3_4" > > Is it

Re: [gentoo-user] Re: systemd fails to mount nfs4 mounts

> I'm still having this issue, anyone have any ideas? I can see that > NetworkManager-Wait-Online finishes, and that the mounting starts > immediately after, but I don't think the network is quite up yet, resulting > an all nfs mounts to timeout. > > The computer is using a static IP, so it

Re: [gentoo-user] [OT] Being Facebook member: How to anon?

*Run a dedicated browser in a dedicated user account. This should isolate any tracking cookies from going into your main account.* Agree. Also setup a new email account to dedicate to the FB account. Don't install What'sApp (if you use FB on your phone/tablet), because;

[gentoo-user] FYI NFS file / directory confusion on 4.13.7

I have /usr/portage/distfiles nfs shared, and emerge has broken because of this; >>> Emerging (1 of 3) net-wireless/wpa_supplicant-2.6-r3::gentoo * Fetching files in the background. * To view fetch progress, run in another terminal: * tail -f /var/log/emerge-fetch.log bash:

Re: [gentoo-user] distributed emerge

> > Distcc seems to work for some people, but other setups have lots of > issues with it. > Just works for me, all the time. I use the same gcc, bintutils etc versions on all hosts and use the same USE flags for those packages. I dont use -march=native of course. OP will also need to take extra

Re: [gentoo-user] What do you think about Firefox 57?

On Thu, Sep 7, 2017 at 10:26 PM, Danny YUE wrote: > Hi all, > > I have been using FoxyProxy in Firefox for a really long time, until > today I found its new version really sucks. > > Then I read the comment from author who declared that the old version > can *only* be used

Re: [gentoo-user] electron and sslv3

On Sat, Sep 2, 2017 at 6:26 AM, Damo Brisbane wrote: > Hello, > > I am having troubles installing dev-util/electron, related to linking in > "ssl3" in the final step of the ebuild, from build log: > >

Re: [gentoo-user] Is my SSD dying?

On Fri, Sep 1, 2017 at 7:46 PM, Peter Humphrey wrote: > Hello list, > > For the last week or two my NVMe SSD isn't being detected on startup. I get > this error on manual invocation: > > # smartctl -a /dev/nvme0n1 > smartctl 6.4 2015-06-04 r4109

Re: [gentoo-user] Failed to load driver: Nouveau

> > yes, here is the eselect > When i have X problems i can resolve i run emerge -av @x11-module-rebuild xorg-server mesa but its generally an act of desperation after running out of intelligent options.

Re: [gentoo-user] Failed to load driver: Nouveau

> > There is an error in my system, it print as follow when I run the command > `glxinfo | grep AGP` > >> iceamber@localhost:~ $ glxinfo | grep AGP >> >> nvc0_screen_create:944 - Error allocating PGRAPH context for 3D: -22 >> >> libGL error: failed to create dri screen >> >> libGL error: failed to

[gentoo-user] Ryzen seg fault issue fixed

FYI, you should be able to return your CPU for a fixed one now. http://www.phoronix.com/scan.php?page=article=new-ryzen-fixed=1

Re: [gentoo-user] Restart agetty after update @world?

Logout and login again?

Re: [gentoo-user] Can't emerge --sync

On Sat, Jul 15, 2017 at 8:00 PM, Peter Humphrey wrote: > Hello list, > > Today I get this: > > # emerge --sync > >>> Syncing repository 'gentoo' into '/usr/portage'... > /usr/bin/git pull > remote: Counting objects: 25, done. > remote: Compressing objects: 100% (9/9),

Re: [gentoo-user] Stack Clash and -fstack-check

Hmm, emerge --info from before and after (with added -fstack-check) looks dodgy # tail bind.info = Package Settings =

Re: [gentoo-user] Stack Clash and -fstack-check

On Tue, Jun 20, 2017 at 4:01 PM, Rasmus Thomsen < rasmus.thom...@protonmail.com> wrote: > Hi, > > -fstack-check seems to be kind of broken on gcc right now: > > https://gcc.gnu.org/bugzilla/show_bug.cgi?id=68065 > https://gcc.gnu.org/bugzilla/show_bug.cgi?id=66479 > Ok, i'll quickpkg first just

Re: [gentoo-user] Radeon driver not happy

On Sun, Jun 18, 2017 at 2:00 AM, Mick wrote: > Since the last radeon/xorg/mesa update things have been rather ropey on two > different boxen If you're changed kernels since you last rebuilt xorg-server (shown in the top of the Xorg.0.log file) then there's a very

[gentoo-user] Stack Clash and -fstack-check

Given; https://www.theregister.co.uk/2017/06/20/stack_clash_linux_local_root_holes/ would it make sense to add -fstack-check to CFLAGS and rebuild everything, starting with packages that install suid root binary(ies)?

[gentoo-user] nscd not caching hostnames

I am told some systems at work are running nscd, so i wanted to get familiar with it on my workstation. I added the nscd use flag and rebuilt glibc, and i now have it running. In nsswitch.conf have tried both; hosts: files dns hosts: cache files dns And neither activate the caching.

Re: [gentoo-user] Setting up shorewall

> > I have two questions: > > > > 1. Is it feasible to have both Ethernets connect, directly or indirectly, > to the same DSL modem/router? (Adam seemed to imply that he operates this > way). The device is a Billion Bipac 8900AX R2, which can segregate LAN > ports, but a

Re: [gentoo-user] Which update broke VMWare?

I just confirmed i need both +bundled-libs and unset VMWARE_USE_SHIPPED_LIBS to get it to work.

Re: [gentoo-user] Which update broke VMWare?

> > There's two hacks i use to make workstation run on ~amd64; > cp /lib64/libz.so.1 to /opt/vmware/lib/vmware/lib/libz.so.1/ > > And > unset VMWARE_USE_SHIPPED_LIBS && vmware & > > I am under the impression that i needed +bundled-libs with the unset > VMWARE_USE_SHIPPED_LIBS.but that seems

Re: [gentoo-user] Which update broke VMWare?

On Thu, May 25, 2017 at 4:52 AM, Nikos Chantziaras wrote: > VMWare Workstation stopped working on ~amd64. And I don't know which of > the updated packages broke it. Before I start reverting all emerges I made > in the last 20 days or so (it's a BIG list according to qlop), has

Re: [gentoo-user] Re: Issues with AMD_IOMMU

On Mon, May 22, 2017 at 7:15 PM, taii...@gmx.com wrote: > Worse, ideally you wouldn't be using SWIOTLB but I don't know how to > disable this without re-compiling the kernel. > Can you point to some definitive documentation on this? When i read

Re: [gentoo-user] Re: Issues with AMD_IOMMU

> > [0.991863] iommu: Adding device :06:00.0 to group 12 > > [0.991982] iommu: Adding device :07:04.0 to group 12 > > [1.063849] AMD-Vi: Found IOMMU at :00:00.2 cap 0x40 > > [1.063962] AMD-Vi: Interrupt remapping enabled > > [1.064145] AMD-Vi: Lazy IO/TLB flushing

Re: [gentoo-user] Re: Sudden auto-unmount of an encfs-partition ... why?

It happens again. > > Linux kernel 4.11.0 (fetched from ftp.kernel.org mirror) > > dmesg: > [ 3879.147626] encfs[4099]: segfault at 0 ip 0044ca52 sp > 7fb17d8d2990 error 4 in encfs[40+95000] > > Nothing more than this in the dmesg, though. > Ok so its crashed. Have you tried

Re: [gentoo-user] Re: Issues with AMD_IOMMU

On Wed, May 17, 2017 at 12:25 AM, Corbin Bird <corbinb...@charter.net> wrote: > On 05/16/2017 01:34 AM, Adam Carter wrote: > > Answer #1 : > > > > > > Asrock, Extreme6, 990FX, UEFI, AMD FX-9590 > > Gigabyte, GA-MA790FX-UD5P, 790FX, BIOS, AM

Re: [gentoo-user] Re: Issues with AMD_IOMMU

Answer #1 : > > Asrock, Extreme6, 990FX, UEFI, AMD FX-9590 > Gigabyte, GA-MA790FX-UD5P, 790FX, BIOS, AMD PhenomII x4 980 > > Hi Corbin, I noticed i didnt have x2apic enabled on my 990FX / FX-8350 system, so i've rebuilt/rebooted etc, but; # zgrep X2APIC /proc/config.gz CONFIG_X86_X2APIC=y #

Re: [gentoo-user] Issues with AMD_IOMMU

On a Phenom II?Yeah, I just retired mine a month ago. On that > system, the IOMMU hardware was kinda a legacy orphan thingy, I had to go > through all kinds of gyrations on the kernel command line in order to > initialize it correctly. I think I had it off in the bios, then enabled > it using

Re: [gentoo-user] Issues with AMD_IOMMU

I've added iommu=pt to my kernel command line, and now have; [1.240242] AMD-Vi: Found IOMMU at :00:00.2 cap 0x40 I was looking at IOMMU in the hope that my Win10 vmware guest would be more stable. No change, however. > APU? > I was under the impression that those CPU's used a different

Re: [gentoo-user] gcc 6 PIE use flag

> > the Gentoo dev list. I'd normally just link to a mail archive, but it's >> too new to have been archived yet. Here's a copy of the proposed news >> item. Note the example error message about relocation against .rodata >> >>

Re: [gentoo-user] Re: replacement for ftp?

> > These certificates are a very stupid thing. They are utterly > > complicated, you have to self-sign them which produces warnings, and > > they require to have the host name within them as if the host wasn't > > known by several different names. > > Use LetsEncrypt then, you can add any number

[gentoo-user] Issues with AMD_IOMMU

Tried kernels 4.10.13 and 4.11, with CONFIG_GART_IOMMU=y CONFIG_IOMMU_HELPER=y CONFIG_IOMMU_API=y CONFIG_IOMMU_SUPPORT=y CONFIG_IOMMU_IOVA=y CONFIG_AMD_IOMMU=y CONFIG_AMD_IOMMU_V2=m Chipset is 990FX, and AFAICT the V2 is for the APU (bdver3 and 4 vintage). When I enable the IOMMU in the BIOS I

[gentoo-user] Risks of making traceroute suid root

I want to allow some fairly well trusted users the ablilty to do traces with icmp. I can give them sudo, but how high is the risk of making traceroute suid root? AFAIK making text editors or anything that has an ability to run shell commands suid root is effectively giving them root access, but

Re: [gentoo-user] gcc 6 PIE use flag

It's a feature, not a bug. There's a news item being worked on in > the Gentoo dev list. I'd normally just link to a mail archive, but it's > too new to have been archived yet. Here's a copy of the proposed news > item. Note the example error message about relocation against .rodata > >

Re: [gentoo-user] gcc 6 PIE use flag

I'm not so sure. Whether -fPIC is required or not depends on too > many factors and adding it when not needed will bring harm. > > Are you using hardened? > Yes, its on. I haven't hit the error again so it doesnt appear to be too much of an issue.

Re: [gentoo-user] gcc 6 PIE use flag

Shared objects often need -fPIC for proper relocations when > linking, just add it when you're told to. It allows COW strategy > for DLOs but at the cost of extra CPU register and some slowdown. > > Shouldn't this be in the ebuilds? eg. if gcc:6[pie]; then CFLAGS=${CFLAGS} -fPIC

[gentoo-user] gcc 6 PIE use flag

Since an update to the default USE flags on gcc 6 turned on PIE and SSP, i'm getting these errors; /usr/lib/gcc/x86_64-pc-linux-gnu/6.3.0/../../../../x86_64-pc-linux-gnu/bin/ld: atof-generic.o: relocation R_X86_64_32 against `.rodata' can not be used when making a shared object; recompile with

Re: [gentoo-user] How to trim logs?

Read 'man 3 syslog' and search for facility. As an alternative you could disable CONFIG_USB_ANNOUNCE_NEW_DEVICES and use 'dmesg | tail' to check the disk device allocation.

Re: [gentoo-user] scanning using the sheet feeder (HP 8600 + xsane)

> > Anyway it now works! The only problem is that the max resolution for > multipage using the ADT is 300 dpi. Using the flatbed you can go much > higher. > Ok that's good to know. (I have an 8620).

Re: [gentoo-user] scanning using the sheet feeder (HP 8600 + xsane)

> > I received many helpful replies, each of which recommend a tool other > than sane. Is the point that sane can't use the document feeder or just > that you prefer (or simply have used) other tools. > > $ qfile /usr/bin/scanimage media-gfx/sane-backends (/usr/bin/scanimage) And xsane depends

Re: [gentoo-user] scanning using the sheet feeder (HP 8600 + xsane)

> > ... except I can't figure out how to use the sheet feeder for multipage > scanning. > > I can select multipage and can the scan each page singly and hit > "save multipage file". This works. But I can't put say 10 pages in the > feeder, hit something, get coffee, and find a 10 page document

Re: [gentoo-user] GCC 5.4.0

> I went back to GCC 4.9.3 & the pkg merged without any problem. > > What are other users' experiences using GCC 5.4.0 ? > ~amd64 users have been using it for ages, with no problems. I have one system that seems to need me to run ldconfig when i update gcc, but the others are fine.

Re: [gentoo-user] broadwell for kaby lake?

> > Thanks. I suppose it's just a gcc thing, then. I just emerged > gcc-5.4.0 and the output is the same, though. > My skylake comes up as broadwell too, with gcc 5.4 Looks like gcc 6 has a skylake arch, but not a kabylake.

Re: [gentoo-user] Re: [OT] busybox fsck vs. fsck.ext4 ... experiences?

Interesting that it includes fsck (any by the looks of https://busybox.net/BusyBox.html, also fsck.minix) but none of the other fsck's. The choice of mkfs is a different set, with mkfs.ext2, mkfs.minix, mkfs.reiser, mkfs.vfat included.

Re: [gentoo-user] Re: [OT] busybox fsck vs. fsck.ext4 ... experiences?

Wikipedia says "*BusyBox* is software that provides several stripped-down Unix tools in a single executable file ." Its also statically linked, so you dont need any libraries; $ file /bin/busybox

Re: [gentoo-user] Setting up shorewall

On Thu, Mar 30, 2017 at 2:59 AM, Peter Humphrey wrote: > Hello list, > > I've been using shorewall happily for many years, but now I have a LAN > setup > that the docs seem not to cover. The new web-server box I mentioned > recently > has two Ethernet ports, which I want

Re: [gentoo-user] [OT] router woes

On Wed, Mar 29, 2017 at 7:19 AM, Jorge Almeida wrote: > I have net by cable with nominal speed 200Mbps. The ISP provides a > modem/router Netgear (from Numericable). I disabled the WiFi and I > have 2 computers connected via ethernet to the router. The speed is > about

Re: [gentoo-user] Re: [OT] Redirecting traffic for a TCP port to another gateway

> > schrieb Dan Johansson : >> >>> >>> Is it possible, using iptables or something equivalent, to redirect >>> traffic to some specific TCP ports to another gateway than the >>> default-gateway? >>> >> The general term for that is "policy routing". If you're doing it to hack

<    1   2   3   4   5   6   7   8   9   10   >