Hey, you have a new Greeting !!!

[Greetings.com]

--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.

Re: nfe0 problem (obsd 4.1)

[patrick keshishian]

On 6/24/07, Vijay Sankar [EMAIL PROTECTED] wrote:

On Sunday 24 June 2007 13:50, patrick keshishian wrote:
 Hi,

 I've been noticing some strange problems with the built-in nfe0
 interface on my desktop.  Actually I've seen it on two such
 computers, but the description below is for my current desktop PC.

 The PC is running `cvs up -dP -rOPENBSD_4_1' built. I'm including
 netstat, ifconfig output[1] and dmesg below[2].

 I've noticed that once in a while the nfe0 interface will stop
 sending and receiving data.  At this point I can not make it work
 again.  The only solution I have is to reboot the box.  I have
 installed a dc0 card in the box since.  The problem seemed
 intermittent and not reliably reproducible.  But I think I found
 a way to reproduce this problem on demand (at least for the time
 being).  I have an ssh session to another box, on which I run
 '/usr/bin/nm somelib.so'.  After a page or two of output the
 terminal hangs.  At this point nfe0 becomes unresponsive.

 I switch to the dc0 interface and the terminal finishes the output.
 Running the nm command while using the dc0 interface doesn't cause
 any problems.

I experienced similar problems last year and can empathize.

The following items improved my situation somewhat:

1) BIOS upgrade
2) Removing dual boot (I had both OpenBSD and Windows 2003 on one
machine. There were more errors if I did not power off after shutting
down Windows 2003 and just did a restart from within Windows. If I did
not unplug the machine after shutting down Windows, most of the time I
saw watchdog timeouts but if I powered off the host, and then powered
it back on, there were fewer errors)


Both boxes I have run solely OpenBSD.


One thing that I did notice was that after switching to the dc0
interface for a short while (5 min or so?), I could switch back
to the nfe0 and it would start responding again. Basically:

# /sbin/ifconfig dc0 delete
# /sbin/route delete default
# /sbin/ifconfig nfe0 inet IP netmask netmask up
# /sbin/route add default gateway

Therefore, a reboot isn't the only way to fix the problem (reset
the interface) as I had previously thought.  I am not sure exactly
what causes the interface to reset: idle time, no carrier, or
something completely random?


Either way, thanks for all the replies!




I experimented with different combinations and different switches
(10/100/1000, 10/100, and 10-Base-T). When all the hosts connected to a
10/100 switch were running at 100 MB/s then changing nfe0 from
autoselect to full-duplex using

ifconfig nfe0 media 100baseTX mediaopt full-duplex

seemed to eliminate nfe0 hangs as well as timeouts completely. I am not
sure whether this has any rational basis or is specific to some weird
situation in my network, but that has been my experience.

Vijay



 Interestingly enough, if I redirect the output of nm to a file
 and subsequently cat the file the nfe0 interface doesn't seem
 to exhibit the same problem.

 I am not sure how to diagnose this problem further.  I've enabled
 debug on the nfe0 interface (/sbin/ifconfig nfe0 debug), but don't
 see any output.

 Any and all suggestions are welcome.
 --patrick

Re: troubles with pkg_add -u

[Marc Espie]

On Mon, Jun 25, 2007 at 11:36:24AM +0300, Paul Irofti wrote:
 Since the Hackathon every time I update to the latest snapshots and run
 a pkg_add -iuv I get fatal errors with random package updates.
 
 I usually have to remove by hand (pkg_delete fails) and reinstall the
 given package.
 
 The errors I get are along the lines of:
 
 qt3-mt-3.7p5 (deleting): complete
 Undefined subroutine
 OpenBSD::PackingElement::FileBase::rename_file_to_temp calledRead
 [...]
 /usr/sbin/pkg_add: Deinstallation of qt3-mt-3.7p5 failed, partial
 installation recorded as partial-qt3-mt-3.7p5.1
 

And you haven't tried updating pkg_add itself since then ?

troubles with pkg_add -u

[Paul Irofti]

Since the Hackathon every time I update to the latest snapshots and run
a pkg_add -iuv I get fatal errors with random package updates.

I usually have to remove by hand (pkg_delete fails) and reinstall the
given package.

The errors I get are along the lines of:

qt3-mt-3.7p5 (deleting): complete
Undefined subroutine
OpenBSD::PackingElement::FileBase::rename_file_to_temp calledRead
[...]
/usr/sbin/pkg_add: Deinstallation of qt3-mt-3.7p5 failed, partial
installation recorded as partial-qt3-mt-3.7p5.1

And then I get two partial pkgs in /var/db/pkg:

$ cat /var/db/pkg/partial-qt3-mt-3.7p5
partial-qt3-mt-3.7p5.1/  partial-qt3-mt-3.7p5/

When I try to remove those I get:

$ sudo pkg_delete /var/db/pkg/partial-qt3-mt-3.7p5*
partial-qt3-mt-3.7p5.1: complete
   
Warning: couldn't read packing-list from installed package
partial-qt3-mt-3.7p5  
File /var/db/pkg/partial-qt3-mt-3.7p5/+CONTENTS does not exist
/usr/sbin/pkg_delete: Bad package

And I'm left with:
/var/db/pkg/partial-qt3-mt-3.7p5/+DESC

Which I usually have to rm by hand. Also I have the original qt package
still in the list which can't be upgraded and, if attempted, sends me
back to step 1.

This is not package specific. It happened with different packages before
I decided to write about it here.

Re: problems with kthread

[Artur Grabowski]

syl [EMAIL PROTECTED] writes:

 Hi everyone,
 
 I'm not sure if I'm at the right place to ask this question, but I
 might aswell try; I'm writing you this mail because there is one thing
 I can't understand in the openbsd kthread.
 
 Actually, it is those two functions from the kthread's man :
 kthread_create and kthread_create_deferred.. from man 9
 kthread_create creates a kernel thread and kthread_create_deferred
 adds a pointer to a function in a queue that will be then went through
 and each of it's elements will be launched in a seperate kthread.
 
 I wrote a simple syscall using the lkm and kthread_create;
 Here is the syscall :
 
 #include sys/param.h
 #include sys/kthread.h
 #include sys/types.h
 #include sys/malloc.h
 
 #define NB_THREAD   1
 
 voidtheHook(void *data)
 {
   uprintf(Goodbye threaded world\n);
   kthread_exit(0);
 }
 
 int mycall(struct proc *p, void *uap, int retval[])
 {
   int error;
   struct  proc *mypr;
 
   uprintf( I create a new thread for fun :)\n );
   kthread_create(theHook, NULL, mypr, bite!);
   return (0);
 }
 
 But it would not work : The thread was not launched.

Erm. How do you know it didn't work?

You're definitely using uprintf incorrectly since the kthread will not
have any tty, therefore it won't know where to print stuff. So if you're
depending on uprintf to know what happened, it won't do what you think
it will.

uprintf should be used very carefully.

 I therefor replaced kthread_create by kthread_create_deferred and it
 looked like this :

kthread_create_deferred is not for you.

//art

Re: LC_COLLATE and PostgreSQL

[Artur Litwinowicz]

Hi Ben,

   than You for answer. My PostgreSQL instance works fine. The  problem is

in OpenBSD unfortunately. PostgreSQL uses COLLATION support served by

operating system and default BSD has C and POSSIX COLLATION. I am looking

for solution for this problem. I need native support for polish language

with specific string sorts.



Regards,

Artur



On Sun, 24 Jun 2007 18:47:29 -0700, Ben Calvert [EMAIL PROTECTED]

wrote:

 On Jun 24, 2007, at 1:41 PM, bsd_news wrote:

 

 Hi

 I like OpenBSD very much but:

 I have not proper sorts in my PostgreSQL 8.1 database on my OpenBSD

 4.0

 server.

 I had set in /etc/profile the LC_COLLATE to pl_PL.ISO8859-2.

 The PostgreSQL cluster was created by command:

 initdb --locale=pl_PL.ISO8859-2 -E LATIN2 --lc-messages=C --lc-

 monetary=C

 --lc-numeric=C --lc-time=C -D /var/postgresql/data.



 I do not know is there possibility to fix this problem - maybe

 OpenBSD now

 support only C and POSIX collation ?

 

 If i understand you correctly, you're having trouble with how

 Postgresql colates, not OpenBSD.  you should consult the Postgresql

 docs, starting with

 

 http://www.postgresql.org/docs/8.1/static/charset.html#AEN22133

 

 



 Thanks for every help,

 best regards,

 Artur



 ps. sorry for my poor English



 

 Ben

Re: troubles with pkg_add -u

[Paul Irofti]

Forgot to mention that this repros on two i386 machines and an amd64.

howto set nfsbootdevname for nfsroot?

[Heinrich Rebehn]

Hi list,

I have successfully set up a client for diskless(8) booting.
However, this works only when booting from the first (onboard) nic.
When i use another nic, the kernel still tries to do revarp from the 
first nic, which fails.


sys/nfs/nfs_boot.c offers a possibility to override the default search:

/*
* Find a network interface.
*/
if (nfsbootdevname)
ifp = ifunit(nfsbootdevname);
else search loop
...

but where/how can i set nfsbootdevname?

The boot.conf(8) manpage talks about passing options to the kernel via 
set howto. Could i use that?


--

Heinrich Rebehn

University of Bremen
Physics / Electrical and Electronics Engineering
- Department of Telecommunications -

Phone : +49/421/218-4664
Fax   :-3341

Re: troubles with pkg_add -u

[Paul Irofti]

On Mon, Jun 25, 2007 at 11:08:48AM +0200, Marc Espie wrote:
 On Mon, Jun 25, 2007 at 11:36:24AM +0300, Paul Irofti wrote:
  Since the Hackathon every time I update to the latest snapshots and run
  a pkg_add -iuv I get fatal errors with random package updates.
  
  I usually have to remove by hand (pkg_delete fails) and reinstall the
  given package.
  
  The errors I get are along the lines of:
  
  qt3-mt-3.7p5 (deleting): complete
  Undefined subroutine
  OpenBSD::PackingElement::FileBase::rename_file_to_temp calledRead
  [...]
  /usr/sbin/pkg_add: Deinstallation of qt3-mt-3.7p5 failed, partial
  installation recorded as partial-qt3-mt-3.7p5.1
  
 
 And you haven't tried updating pkg_add itself since then ?
 

Well (as I said above) getting the latest snapshot before running 
pkg_add implies ``updating'' it. Right?

Re: howto set nfsbootdevname for nfsroot?

[Reyk Floeter]

hi!

On Mon, Jun 25, 2007 at 11:50:03AM +0200, Heinrich Rebehn wrote:
 I have successfully set up a client for diskless(8) booting.
 However, this works only when booting from the first (onboard) nic.
 When i use another nic, the kernel still tries to do revarp from the 
 first nic, which fails.
 
 sys/nfs/nfs_boot.c offers a possibility to override the default search:
 
 /*
 * Find a network interface.
 */
 if (nfsbootdevname)
 ifp = ifunit(nfsbootdevname);
 else search loop
 ...
 
 but where/how can i set nfsbootdevname?
 
 The boot.conf(8) manpage talks about passing options to the kernel via 
 set howto. Could i use that?
 

you cannot set the nfsbootdevname as a kernel option. it is filled in
by autoconf. for example, pxeboot passes the mac address of its boot
interface and autoconf looks up the matching network interface in

sys/arch/i386/i386/autoconf.c

---snip---
#if defined(NFSCLIENT)
if (bios_bootmac) {
extern char *nfsbootdevname;
struct ifnet *ifp;

mountroot = nfs_mountroot;

printf(PXE boot MAC address %s, ,
ether_sprintf(bios_bootmac-mac));

for (ifp = TAILQ_FIRST(ifnet); ifp != NULL;
ifp = TAILQ_NEXT(ifp, if_list)) {
if ((ifp-if_type == IFT_ETHER ||
ifp-if_type == IFT_FDDI) 
bcmp(bios_bootmac-mac,
((struct arpcom *)ifp)-ac_enaddr,
ETHER_ADDR_LEN) == 0)
break;
}
if (ifp) {
nfsbootdevname = ifp-if_xname;
printf(interface %s\n, nfsbootdevname);
} else
printf(no interface selected\n);
return;
}
#endif
---snap---

reyk

Re: LC_COLLATE and PostgreSQL

[Artur Litwinowicz]

Hi Philip,

   thank You match for answer and nice words :). 

I am starting be concern for my problem but my love for OpenBSD is

stronger then sort problems (data on my web are sorted not correctly) and I

do not want to change system on may server. 

Maybe in the nearest feature OpenBSD Developers change the COLLATION

support or someone know solution for this problem.



Best regards,

Artur



On Sun, 24 Jun 2007 21:07:56 -0600, Philip Guenther [EMAIL PROTECTED]

wrote:

 On 6/24/07, bsd_news [EMAIL PROTECTED] wrote:

 ...

 I have not proper sorts in my PostgreSQL 8.1 database on my OpenBSD 4.0

 server.



 I had set in /etc/profile the LC_COLLATE to pl_PL.ISO8859-2.

 ...

 I do not know is there possibility to fix this problem - maybe OpenBSD

 now

 support only C and POSIX collation ?

 

 Your guess is correct: OpenBSD only supports the default locale, C.

 To quote the source for the strcoll() function:

 

 int

 strcoll(const char *s1, const char *s2)

 {

 /* LC_COLLATE is unimplemented, hence always C */

 return (strcmp(s1, s2));

 }

 

 

 ps. sorry for my poor English

 

 Seemed fine to me: I had no problem understanding what you were doing

 and what wasn't working as you expected.  Indeed, you provided better

 information than some native speakers posting queries here.

 

 

 Philip Guenther

Re: howto set nfsbootdevname for nfsroot?

[Heinrich Rebehn]

Reyk Floeter wrote:

hi!

On Mon, Jun 25, 2007 at 11:50:03AM +0200, Heinrich Rebehn wrote:

I have successfully set up a client for diskless(8) booting.
However, this works only when booting from the first (onboard) nic.
When i use another nic, the kernel still tries to do revarp from the 
first nic, which fails.


sys/nfs/nfs_boot.c offers a possibility to override the default search:

/*
* Find a network interface.
*/
if (nfsbootdevname)
ifp = ifunit(nfsbootdevname);
else search loop
...

but where/how can i set nfsbootdevname?

The boot.conf(8) manpage talks about passing options to the kernel via 
set howto. Could i use that?




you cannot set the nfsbootdevname as a kernel option. it is filled in
by autoconf. for example, pxeboot passes the mac address of its boot
interface and autoconf looks up the matching network interface in

sys/arch/i386/i386/autoconf.c

---snip---
#if defined(NFSCLIENT)
if (bios_bootmac) {
extern char *nfsbootdevname;
struct ifnet *ifp;

mountroot = nfs_mountroot;


printf(PXE boot MAC address %s, ,
ether_sprintf(bios_bootmac-mac));

for (ifp = TAILQ_FIRST(ifnet); ifp != NULL;
ifp = TAILQ_NEXT(ifp, if_list)) {
if ((ifp-if_type == IFT_ETHER ||
ifp-if_type == IFT_FDDI) 
bcmp(bios_bootmac-mac,
((struct arpcom *)ifp)-ac_enaddr,
ETHER_ADDR_LEN) == 0)
break;
}
if (ifp) {
nfsbootdevname = ifp-if_xname;
printf(interface %s\n, nfsbootdevname);
} else
printf(no interface selected\n);
return;
}
#endif
---snap---

reyk


Hmm, at least in my case this does not seem to work.
I have not much C experience, but should nfsbootdevname not be declared 
extern in sys/nfs/nfs_boot.c as well?


--Heinrich

Re: howto set nfsbootdevname for nfsroot?

[Heinrich Rebehn]

Heinrich Rebehn wrote:
 Reyk Floeter wrote:
 hi!

 On Mon, Jun 25, 2007 at 11:50:03AM +0200, Heinrich Rebehn wrote:
 I have successfully set up a client for diskless(8) booting.
 However, this works only when booting from the first (onboard) nic.
 When i use another nic, the kernel still tries to do revarp from the 
 first nic, which fails.

 sys/nfs/nfs_boot.c offers a possibility to override the default search:

 /*
 * Find a network interface.
 */
 if (nfsbootdevname)
 ifp = ifunit(nfsbootdevname);
 else search loop
 ...

 but where/how can i set nfsbootdevname?

 The boot.conf(8) manpage talks about passing options to the kernel 
 via set howto. Could i use that?


 you cannot set the nfsbootdevname as a kernel option. it is filled in
 by autoconf. for example, pxeboot passes the mac address of its boot
 interface and autoconf looks up the matching network interface in

 sys/arch/i386/i386/autoconf.c

 ---snip---
 #if defined(NFSCLIENT)
 if (bios_bootmac) {
 extern char *nfsbootdevname;
 struct ifnet *ifp;
 mountroot = nfs_mountroot;

 printf(PXE boot MAC address %s, ,
 ether_sprintf(bios_bootmac-mac));

 for (ifp = TAILQ_FIRST(ifnet); ifp != NULL;
 ifp = TAILQ_NEXT(ifp, if_list)) {
 if ((ifp-if_type == IFT_ETHER ||
 ifp-if_type == IFT_FDDI) 
 bcmp(bios_bootmac-mac,
 ((struct arpcom *)ifp)-ac_enaddr,
 ETHER_ADDR_LEN) == 0)
 break;
 }
 if (ifp) {
 nfsbootdevname = ifp-if_xname;
 printf(interface %s\n, nfsbootdevname);
 } else
 printf(no interface selected\n);
 return;
 }
 #endif
 ---snap---

 reyk

 Hmm, at least in my case this does not seem to work.
 I have not much C experience, but should nfsbootdevname not be declared 
 extern in sys/nfs/nfs_boot.c as well?
 
I also do not see any output  from the printf's above. Maybe 
bios_bootmac is not true? NFSCLIENT *is* defined. Config is GENERIC with 
root on nfs swap on nfs.

I am attaching a dmesg from a successfull boot from the onboard nic.

--Heinrich
OpenBSD 4.1-stable (DISKLESS) #0: Fri Jun 22 10:41:43 CEST 2007
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/DISKLESS
cpu0: AMD Athlon(tm) 64 Processor 3000+ (AuthenticAMD 686-class, 512KB L2 
cache) 1.81 GHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,SSE3
cpu0: AMD erratum 89 present, BIOS upgrade may be required
real mem  = 536113152 (523548K)
avail mem = 481468416 (470184K)
using 4278 buffers containing 26931200 bytes (26300K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+ BIOS, date 11/03/05, BIOS32 rev. 0 @ 0xf0010, SMBIOS 
rev. 2.3 @ 0xf0530 (67 entries)
bios0: ASUSTeK Computer Inc. A8V
apm0 at bios0: Power Management spec V1.2
apm0: AC on, battery charge unknown
apm0: flags 30102 dobusy 0 doidle 1
pcibios0 at bios0: rev 2.1 @ 0xf/0x1
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xf5980/192 (10 entries)
pcibios0: PCI Interrupt Router at 000:17:0 (VIA VT8237 ISA rev 0x00)
pcibios0: PCI bus #1 is the last bus
bios0: ROM list: 0xc/0xb000 0xcb000/0x800 0xcb800/0x800 0xcc000/0x1000
acpi at mainbus0 not configured
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 VIA K8HTB Host rev 0x00
pchb1 at pci0 dev 0 function 1 VIA K8HTB Host rev 0x00
pchb2 at pci0 dev 0 function 2 VIA K8HTB Host rev 0x00
pchb3 at pci0 dev 0 function 3 VIA K8HTB Host rev 0x00
pchb4 at pci0 dev 0 function 4 VIA K8HTB Host rev 0x00
pchb5 at pci0 dev 0 function 7 VIA K8HTB Host rev 0x00
ppb0 at pci0 dev 1 function 0 VIA K8HTB AGP rev 0x00
pci1 at ppb0 bus 1
vga1 at pci1 dev 0 function 0 ATI Rage 128 Pro TF rev 0x00
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
skc0 at pci0 dev 10 function 0 Marvell Yukon 88E8001/8003/8010 rev 0x13, 
Yukon Lite (0x9): irq 10
sk0 at skc0 port A, address 00:13:d4:de:cf:88
eephy0 at sk0 phy 0: Marvell 88E1011 Gigabit PHY, rev. 5
xl0 at pci0 dev 12 function 0 3Com 3c905C 100Base-TX rev 0x78: irq 10, 
address 00:0a:5e:61:7a:2d
exphy0 at xl0 phy 24: 3Com internal media interface
xl1 at pci0 dev 14 function 0 3Com 3c905C 100Base-TX rev 0x78: irq 3, address 
00:0a:5e:61:7a:04
exphy1 at xl1 phy 24: 3Com internal media interface
pciide0 at pci0 dev 15 function 0 VIA VT6420 SATA rev 0x80: DMA
pciide0: using irq 10 for native-PCI interrupt
wd0 at pciide0 channel 1 drive 0: Maxtor 6V080E0
wd0: 16-sector PIO, LBA48, 76293MB, 15625 sectors
wd0(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 5
pciide1 at pci0 dev 15 function 1 VIA VT82C571 IDE rev 0x06: ATA133, 

Re: troubles with pkg_add -u

[Paul Irofti]

And here are the dmesgs before and after the latest snapshot update. 
OpenBSD 4.1-current (GENERIC) #1122: Wed Jun 20 22:10:55 MDT 2007
[EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/GENERIC
real mem = 1073016832 (1023MB)
avail mem = 1030762496 (983MB)
mainbus0 at root
bios0 at mainbus0: SMBIOS rev. 2.3 @ 0xf0730 (59 entries)
bios0: ASUSTeK Computer INC. P5VDC-MX
acpi at mainbus0 not configured
cpu0 at mainbus0: (uniprocessor)
cpu0: Intel(R) Pentium(R) 4 CPU 2.80GHz, 2793.47 MHz
cpu0: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,TM2,CNXT-ID,CX16,xTPR,NXE,LONG
cpu0: 1MB 64b/line 8-way L2 cache
pci0 at mainbus0 bus 0: configuration mode 1
pchb0 at pci0 dev 0 function 0 VIA CN700 Host rev 0x00
pchb1 at pci0 dev 0 function 1 VIA CN700 Host rev 0x00
pchb2 at pci0 dev 0 function 2 VIA CN700 Host rev 0x00
pchb3 at pci0 dev 0 function 3 VIA PT890 Host rev 0x00
pchb4 at pci0 dev 0 function 4 VIA CN700 Host rev 0x00
pchb5 at pci0 dev 0 function 7 VIA CN700 Host rev 0x00
ppb0 at pci0 dev 1 function 0 VIA VT8377 AGP rev 0x00
pci1 at ppb0 bus 1
vga1 at pci1 dev 0 function 0 NVIDIA GeForce FX 5200 rev 0xa1
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
pciide0 at pci0 dev 15 function 0 VIA VT8251 SATA rev 0x00: DMA
pciide0: using irq 10 for native-PCI interrupt
wd0 at pciide0 channel 0 drive 0: WDC WD800JD-00LSA0
wd0: 16-sector PIO, LBA48, 76319MB, 156301488 sectors
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5
pciide1 at pci0 dev 15 function 1 VIA VT82C571 IDE rev 0x07: DMA, channel 0 
configured to compatibility, channel 1 configured to compatibility
atapiscsi0 at pciide1 channel 0 drive 0
scsibus0 at atapiscsi0: 2 targets
cd0 at scsibus0 targ 0 lun 0: TOSHIBA, CD/DVDW SDR5472D, TU00 SCSI0 5/cdrom 
removable
cd0(pciide1:0:0): using PIO mode 4, DMA mode 2
pciide1: channel 1 disabled (no drives)
uhci0 at pci0 dev 16 function 0 VIA VT83C572 USB rev 0x90: irq 11
uhci1 at pci0 dev 16 function 1 VIA VT83C572 USB rev 0x90: irq 5
uhci2 at pci0 dev 16 function 2 VIA VT83C572 USB rev 0x90: irq 10
uhci3 at pci0 dev 16 function 3 VIA VT83C572 USB rev 0x90: irq 3
ehci0 at pci0 dev 16 function 4 VIA VT6202 USB rev 0x90: irq 5
usb0 at ehci0: USB revision 2.0
uhub0 at usb0: VIA EHCI root hub, rev 2.00/1.00, addr 1
viapm0 at pci0 dev 17 function 0 VIA VT8251 ISA rev 0x00
iic0 at viapm0
pchb6 at pci0 dev 17 function 7 VIA VT8251 VLINK rev 0x00
vr0 at pci0 dev 18 function 0 VIA RhineII-2 rev 0x7c: irq 11, address 
00:e0:12:34:56:78
rlphy0 at vr0 phy 1: RTL8201L 10/100 PHY, rev. 1
ppb1 at pci0 dev 19 function 0 VIA VT8251 PCIE rev 0x00
pci2 at ppb1 bus 2
ppb2 at pci2 dev 0 function 0 VIA VT8251 PCIE rev 0x00
pci3 at ppb2 bus 3
ppb3 at pci2 dev 0 function 1 VIA VT8251 PCIE rev 0x00
pci4 at ppb3 bus 4
ppb4 at pci0 dev 19 function 1 VIA VT8251 PCI rev 0x00
pci5 at ppb4 bus 5
cmpci0 at pci5 dev 9 function 0 C-Media Electronics CMI8738/C3DX Audio rev 
0x10: irq 5
audio0 at cmpci0
opl at cmpci0 not configured
mpu at cmpci0 not configured
usb1 at uhci0: USB revision 1.0
uhub1 at usb1: VIA UHCI root hub, rev 1.00/1.00, addr 1
usb2 at uhci1: USB revision 1.0
uhub2 at usb2: VIA UHCI root hub, rev 1.00/1.00, addr 1
usb3 at uhci2: USB revision 1.0
uhub3 at usb3: VIA UHCI root hub, rev 1.00/1.00, addr 1
usb4 at uhci3: USB revision 1.0
uhub4 at usb4: VIA UHCI root hub, rev 1.00/1.00, addr 1
isa0 at mainbus0
isadma0 at isa0
com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pmsi0 at pckbc0 (aux slot)
pckbc0: using irq 12 for aux slot
wsmouse0 at pmsi0 mux 0
pcppi0 at isa0 port 0x61
midi0 at pcppi0: PC speaker
spkr0 at pcppi0
lpt0 at isa0 port 0x378/4 irq 7
it2 at isa0 port 0xd00/8: IT87
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
fd0 at fdc0 drive 0: 1.44MB 80 cyl, 2 head, 18 sec
dkcsum: wd0 matches BIOS drive 0x80
root on wd0a swap on wd0b dump on wd0b
/dev/wd0k: file system not clean; please fsck(8)
OpenBSD 4.1-current (GENERIC) #1122: Wed Jun 20 22:10:55 MDT 2007
[EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/GENERIC
real mem = 1073016832 (1023MB)
avail mem = 1030762496 (983MB)
mainbus0 at root
bios0 at mainbus0: SMBIOS rev. 2.3 @ 0xf0730 (59 entries)
bios0: ASUSTeK Computer INC. P5VDC-MX
acpi at mainbus0 not configured
cpu0 at mainbus0: (uniprocessor)
cpu0: Intel(R) Pentium(R) 4 CPU 2.80GHz, 2793.47 MHz
cpu0: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,TM2,CNXT-ID,CX16,xTPR,NXE,LONG
cpu0: 1MB 64b/line 8-way L2 cache
pci0 at mainbus0 bus 0: configuration mode 1
pchb0 at pci0 dev 0 function 0 VIA CN700 Host rev 0x00
pchb1 at pci0 dev 0 function 1 VIA CN700 Host rev 0x00
pchb2 at pci0 dev 0 function 2 VIA CN700 Host rev 0x00
pchb3 at pci0 dev 0 

Re: cannot enable executable stack...

[Matthew Szudzik]

 I have successfully ported the relevant material from the NetBSD patches
 
  
 http://cvsweb.netbsd.org/bsdweb.cgi/src/sys/compat/linux/common/linux_misc.c.diff?r1=1.140r2=1.141
  
  
 http://cvsweb.netbsd.org/bsdweb.cgi/src/sys/compat/linux/common/linux_mmap.h.diff?r1=1.16r2=1.17
  
 http://cvsweb.netbsd.org/bsdweb.cgi/src/sys/compat/linux/arch/i386/syscalls.master.diff?r1=1.61r2=1.62
 
 to OpenBSD.  The OpenBSD patch is given at the end of this message.  Be 

There have been requests that I resubmit the patch as a unified 
diff, rather than a context diff.  The patch is given below.  Remember to 
run the make file at /usr/src/sys/compat/linux/ after applying the patch.


--- /usr/src/sys/compat/linux/linux_misc.c.orig Wed Feb 14 18:07:51 2007
+++ /usr/src/sys/compat/linux/linux_misc.c  Mon Jun 25 00:13:42 2007
@@ -718,6 +718,70 @@
 
 }
 
+int
+linux_sys_mprotect(p, v, retval)
+   struct proc *p;
+   void *v;
+   register_t *retval;
+{
+   struct linux_sys_mprotect_args /* {
+   syscallarg(const void *) start;
+   syscallarg(unsigned long) len;
+   syscallarg(int) prot;
+   } */ *uap = v;
+   struct vm_map_entry *entry;
+   struct vm_map *map;
+   vaddr_t end, start, len, stacklim;
+   int prot, grows;
+
+   start = (vaddr_t)SCARG(uap, start);
+   len = round_page(SCARG(uap, len));
+   prot = SCARG(uap, prot);
+   grows = prot  (LINUX_PROT_GROWSDOWN | LINUX_PROT_GROWSUP);
+   prot = ~grows;
+   end = start + len;
+
+   if (start  PAGE_MASK)
+   return EINVAL;
+   if (end  start)
+   return EINVAL;
+   if (end == start)
+   return 0;
+
+   if (prot  ~(PROT_READ | PROT_WRITE | PROT_EXEC))
+   return EINVAL;
+   if (grows == (LINUX_PROT_GROWSDOWN | LINUX_PROT_GROWSUP))
+   return EINVAL;
+
+   map = p-p_vmspace-vm_map;
+   vm_map_lock(map);
+   if (!uvm_map_lookup_entry(map, start, entry) || entry-start  start) {
+   vm_map_unlock(map);
+   return ENOMEM;
+   }
+
+   /*
+* Approximate the behaviour of PROT_GROWS{DOWN,UP}.
+*/
+
+   stacklim = (vaddr_t)p-p_limit-pl_rlimit[RLIMIT_STACK].rlim_cur;
+   if (grows  LINUX_PROT_GROWSDOWN) {
+   if (USRSTACK - stacklim = start  start  USRSTACK) {
+   start = USRSTACK - stacklim;
+   } else {
+   start = entry-start;
+   }
+   } else if (grows  LINUX_PROT_GROWSUP) {
+   if (USRSTACK = end  end  USRSTACK + stacklim) {
+   end = USRSTACK + stacklim;
+   } else {
+   end = entry-end;
+   }
+   }
+   vm_map_unlock(map);
+   return uvm_map_protect(map, start, end, prot, FALSE);
+}
+
 /*
  * This code is partly stolen from src/lib/libc/gen/times.c
  * XXX - CLK_TCK isn't declared in /sys, just in time.h, done here
--- /usr/src/sys/compat/linux/linux_mmap.h.orig Wed Apr 17 05:23:56 1996
+++ /usr/src/sys/compat/linux/linux_mmap.h  Mon Jun 25 00:13:42 2007
@@ -38,6 +38,8 @@
 #define LINUX_PROT_READ0x01
 #define LINUX_PROT_WRITE   0x02
 #define LINUX_PROT_EXEC0x04
+#define LINUX_PROT_GROWSDOWN   0x0100
+#define LINUX_PROT_GROWSUP 0x0200
 
 #define LINUX_MAP_SHARED   0x0001
 #define LINUX_MAP_PRIVATE  0x0002
--- /usr/src/sys/compat/linux/syscalls.master.orig  Wed Oct 27 13:23:38 2004
+++ /usr/src/sys/compat/linux/syscalls.master   Mon Jun 25 00:13:42 2007
@@ -223,7 +223,8 @@
 123STD { int linux_sys_modify_ldt(void); }
 #endif
 124STD { int linux_sys_adjtimex(void); }
-125NOARGS  { int sys_mprotect(caddr_t addr, int len, int prot); }
+125STD { int linux_sys_mprotect(const void *start, \
+   unsigned long len, int prot); }
 126STD { int linux_sys_sigprocmask(int how, \
linux_old_sigset_t *set, linux_old_sigset_t *oset); 
}
 127STD { int linux_sys_create_module(void); }

Re: ping: sendto: No route to host

[Jeff Santos]

OK...

I know I did not give enough information to allow people help.
So here are some more.

The firewall works fine running routed most of the time. It is
running 4.1-STABLE (below is a dmesg).

I see a lot of interrupts on both internal and external interfaces
sk0 and sk1. Something like 3600. This a bit odd (in my opinion)
since I have another firewall running 3.7 and routed in which the
total amount of interrupts is never above 500 (in the same place).

Now, this period of instability (in which not even ping works)
happens only once or twice a day. It lasts not longer than 10
minutes, and then everything start working again.

The other day, I noticed that the routed daemon was not running
although the RIP socket was still bound. I have a process that
periodically makes sure that the main processes are still
operational. I received this message:

ps: kvm_getproc2: Cannot allocate memory
routed: bind(rip_sock): Address already in use; giving up

from the cron daemon.

I need some ideas to help me to isolate the problem.

Thanks in advance.

Regards,

Jeff.


---
OpenBSD 4.1-stable (GENERIC) #1: Sat May 12 10:14:17 BRT 2007
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel(R) Pentium(R) 4 CPU 2.80GHz (GenuineIntel 686-class) 2.80 GHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS
H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,CNXT-ID,xTPR
real mem  = 501772288 (490012K)
avail mem = 450052096 (439504K)
using 4278 buffers containing 25210880 bytes (24620K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+ BIOS, date 02/17/06, BIOS32 rev. 0 @ 0xf9ed0,
SMBIOS rev. 2.3 @ 0xf (42 entries)
bios0: PCCHIPS P25G
apm0 at bios0: Power Management spec V1.2
apm0: AC on, battery charge unknown
apm0: flags 70102 dobusy 1 doidle 1
pcibios0 at bios0: rev 2.1 @ 0xf/0xce54
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfcdb0/160 (8 entries)
pcibios0: PCI Exclusive IRQs: 5 10 11
pcibios0: PCI Interrupt Router at 000:17:0 (VIA VT82C596A ISA rev 0x00)
pcibios0: PCI bus #1 is the last bus
bios0: ROM list: 0xc/0xe600
acpi at mainbus0 not configured
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 vendor VIA, unknown product 0x0296 rev 0x00
pchb1 at pci0 dev 0 function 1 vendor VIA, unknown product 0x1296 rev 0x00
pchb2 at pci0 dev 0 function 2 vendor VIA, unknown product 0x2296 rev 0x00
pchb3 at pci0 dev 0 function 3 vendor VIA, unknown product 0x3296 rev 0x00
pchb4 at pci0 dev 0 function 4 vendor VIA, unknown product 0x4296 rev 0x00
pchb5 at pci0 dev 0 function 7 vendor VIA, unknown product 0x7296 rev 0x00
ppb0 at pci0 dev 1 function 0 VIA VT8377 AGP rev 0x00
pci1 at ppb0 bus 1
vga1 at pci1 dev 0 function 0 VIA VT8378 VGA rev 0x01: aperture at
0xf400, size 0x1000
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
skc0 at pci0 dev 8 function 0 D-Link Systems DGE-530T A1 rev 0x11, Yukon
(0x1): irq 10
sk0 at skc0 port A, address 00:13:46:71:f7:c7
eephy0 at sk0 phy 0: Marvell 88E1011 Gigabit PHY, rev. 3
skc1 at pci0 dev 10 function 0 D-Link Systems DGE-530T A1 rev 0x11, Yukon
(0x1): irq 5
sk1 at skc1 port A, address 00:13:46:71:f3:4a
eephy1 at sk1 phy 0: Marvell 88E1011 Gigabit PHY, rev. 3
pciide0 at pci0 dev 15 function 0 VIA VT6420 SATA rev 0x80: DMA
pciide0: using irq 11 for native-PCI interrupt
pciide1 at pci0 dev 15 function 1 VIA VT82C571 IDE rev 0x06: ATA133, channel
0 configured to compatibility, channel 1 configured to compatibility
wd0 at pciide1 channel 0 drive 0: SAMSUNG SP0842N
wd0: 16-sector PIO, LBA48, 76319MB, 156301488 sectors
atapiscsi0 at pciide1 channel 0 drive 1
scsibus0 at atapiscsi0: 2 targets
cd0 at scsibus0 targ 0 lun 0: TSSTcorp, CDW/DVD SH-M522C, TS05 SCSI0 5/cdrom
removable
wd0(pciide1:0:0): using PIO mode 4, Ultra-DMA mode 2
cd0(pciide1:0:1): using PIO mode 4, Ultra-DMA mode 2
pciide1: channel 1 disabled (no drives)
uhci0 at pci0 dev 16 function 0 VIA VT83C572 USB rev 0x81: irq 10
usb0 at uhci0: USB revision 1.0
uhub0 at usb0
uhub0: VIA UHCI root hub, rev 1.00/1.00, addr 1
uhub0: 2 ports with 2 removable, self powered
uhci1 at pci0 dev 16 function 1 VIA VT83C572 USB rev 0x81: irq 10
usb1 at uhci1: USB revision 1.0
uhub1 at usb1
uhub1: VIA UHCI root hub, rev 1.00/1.00, addr 1
uhub1: 2 ports with 2 removable, self powered
uhci2 at pci0 dev 16 function 2 VIA VT83C572 USB rev 0x81: irq 11
usb2 at uhci2: USB revision 1.0
uhub2 at usb2
uhub2: VIA UHCI root hub, rev 1.00/1.00, addr 1
uhub2: 2 ports with 2 removable, self powered
uhci3 at pci0 dev 16 function 3 VIA VT83C572 USB rev 0x81: irq 11
usb3 at uhci3: USB revision 1.0
uhub3 at usb3
uhub3: VIA UHCI root hub, rev 1.00/1.00, addr 1
uhub3: 2 ports with 2 removable, self powered
ehci0 at pci0 dev 16 function 4 VIA VT6202 USB rev 0x86: irq 5
usb4 at ehci0: USB revision 2.0
uhub4 at usb4
uhub4: VIA EHCI root hub, rev 2.00/1.00, addr 1
uhub4: 8 ports 

RTHREADS and librthread

[Vortechz]

I hope there are people using/testing/developing rthreads out there who can
explain to me why
syscall getthrid fails with SIGSYS on my system, 4.1-release.

1. I have RTHREADS defined in my kernel. I have checked that the
rthread code is included at compile time, and I also tried this:

$ grep getthrid /bsd
Binary file /bsd matches

2. The code I'm trying to run: 
http://www.nabble.com/file/p11287569/rthread.tar rthread.tar 
It may be extremely stupid, but it compiles...

3. I compiled and installed librthread, and copied librthread.so.1.0 in
place of libpthread.so.7.0
My program is linked against libpthread:

$ ldd rthtest  
rthtest:
StartEnd  Type Open Ref GrpRef Name
  exe  10   0  rthtest
0bd7c000 2bd85000 rlib 01   0  /usr/lib/libpthread.so.7.0
0cde 2ce14000 rlib 01   0  /usr/lib/libc.so.40.3
00466000 00466000 rtld 01   0  /usr/libexec/ld.so

4. Output and info:

$ ./rthtest
Bad system call (core dumped) 

$ gdb ./rthtest rthtest.core   
GNU gdb 6.3
[...GPL...]
Core was generated by `rthtest'.
Program terminated with signal 12, Bad system call.
Reading symbols from /usr/lib/libpthread.so.7.0...done.
Loaded symbols for /usr/lib/libpthread.so.7.0
Symbols already loaded for /usr/lib/libpthread.so.7.0
Reading symbols from /usr/lib/libc.so.40.3...done.Loaded symbols for
/usr/lib/libc.so.40.3
Reading symbols from /usr/libexec/ld.so...done.
Loaded symbols for /usr/libexec/ld.so
#0  0x02a846a1 in getthrid () from /usr/lib/libc.so.40.3
(gdb) bt
#0  0x02a846a1 in getthrid () from /usr/lib/libc.so.40.3
#1  0x1c0006bb in funkythread (data=0x3c11) at rthreadtest.c:11
#2  0x0df40fcb in _thread_start ()
at /usr/src/lib/libpthread/uthread/uthread_create.c:244
#3  0x001f in ?? ()
#4  0x in ?? ()

Did I do something extremely wrong when I tried to switch to rthreads? Do I
need to recompile
lots of things?

Don't point me to using the regular libpthread, I have good reason to try
rthreads.

Alsodon't use this post to start a troll-inducing thread about
performance, scalability 
and/or personal opinions about threads and their usage. Reply with useful
information or shut up.

// Vortechz

-- 
View this message in context: 
http://www.nabble.com/RTHREADS-and-librthread-tf3976489.html#a11287569
Sent from the openbsd user - misc mailing list archive at Nabble.com.

Recommendations for zone management (web)tool for Bind?

[Matt]

Hello,

Although aware of the general aversion against web gui's on this list 
(which I understand) I still would like to be able to allow people to 
manage their own zonefile.

Allowing so from within a webpage seems the most logical step for me.
Looking at the many webbased clients outthere I am wondering if anybody 
here has succesfully and more importantly safely deployed something on 
OpenBSD?
I know PowerDNS / PowerAdmin is a widely used combo on many machines but 
I prefer to stick with OpenBSD's version of Bind and the chrooted httpd.


I fully understand the implications of writing to file or database 
through php/perl/cgi etc. but am I right in understanding that by 
manipulating ones own zonefile one can only break that particular zone 
and never the DNS operations on a box?


Any recommendations / alternative suggestions are very welcome.

Thanks
Matt

Re: Recommendations for zone management (web)tool for Bind?

[L. V. Lammert]

At 05:31 PM 6/25/2007 +0200, you wrote:

Hello,

Although aware of the general aversion against web gui's on this list 
(which I understand) I still would like to be able to allow people to 
manage their own zonefile.


Webmin will do what you wish, .. but it might take some scripting to manage 
permissions so the user will only see THEIR zone file.


Lee

xfce windows manager

[Alex Kwan]

Hello,

I wanted to use xfce for my systems' windows manager, which packages are
must required? (I have install the X base).

thanks!
Alex

isakmpd on OpenBSD 3.7 and OpenBSD 4.0

[catalin visinescu]

Hello,
   
  I see that OpenBSD 3.7 isakmpd and OpenBSD 4.0 isakmpd do not establish 
security associations. I get an INVALID-PAYLOAD-TYPE message. isakmpd 3.7 does 
not seem to understand payload RESERVED.
   
  Is there a way I can run isakmpd 4.0 downgraded or any other way to get the 
two of them to work together?
   
  Thank you,
./catalin

   
-
Ask a question on any topic and get answers from real people. Go to Yahoo! 
Answers. 

Re: xfce windows manager

[Almir Karic]

x11/xfce4

On 6/25/07, Alex Kwan [EMAIL PROTECTED] wrote:

Hello,

I wanted to use xfce for my systems' windows manager, which packages are
must required? (I have install the X base).

thanks!
Alex





--
almir

Re: Strange crashes started this morning

[andrew fresh]

On Fri, Jun 22, 2007 at 11:27:11PM -0400, Alex Feldman wrote:
 Hi Andrew
 
 You crash dump doesn't show that it crashed on san driver. I'm saying that
 this is not the problem with san driver but it doesn't show any driver
 related function in crash trace. 

I do not see that either.  However, I am not familier with the internals
of the OpenBSD kernel.  Theo is, and he seems to think it is a san
issue.  At this point I trust his judgment above yours.

My suggestion would be to provide the documentation that the OpenBSD
team is looking for so that they can prove one way or another where the
problems are and improve the code for everyone.



 For both Andrew and Richard: 
 1. If you can send me the crash trace that includes san driver function that
 will be helpful.

I expect that it would, unfortunatly, I cannot reproduce this problem on
command.  It only happened the one day so far and I have no idea what
caused it.

How about, while waiting for more information on this problem, you see
if you can do anything about a problem I can repeat.  It causes me no
end of trouble because it makes both routers DDB any time I soft boot
them.  That means I can't upgrade the version of OpenBSD on them
remotely.

This I attribute to the san stuff because it doesn't happen in any of
the other machines I am running OpenBSD on.  You may notice that the
trace for this one also doesn't reference any san driver calls. 

You can see it in bug number 5404:

http://cvs.openbsd.org/cgi-bin/query-pr-wrapper?full=yesnumbers=5404

In bug 4484, someone else seems to have had similar issues:

http://cvs.openbsd.org/cgi-bin/query-pr-wrapper?full=yesnumbers=4484

Who knows, getting the OpenBSD developers the documentation they need so
they can fix that issue will coincidently fix the one I am complaining
about now.


 2. Can you send me the configuration for ppp/Wanpipe and details instruction
 how to get this crash; I'll try to resolve this issue.

Here is the configuration on the interfaces that seemed to cause the
issue this last time.  They are they only lines I have that are
PROTO=ppp, the rest are HDLC (PROTO=cisco).

$ sudo sanconfig san2
ALEX2

Hardware configuration for san2:
AFT-A102   : SLOT=8 : BUS=0 : IRQ=10 : CPU=A : PORT=PRI

Interface configuration for san2:
MEDIA=T1
LCODE=B8ZS
FRAME=ESF
TECLOCK=Normal
LBO=0db
ACTIVE_CH=all
PROTO=ppp

$ sudo sanconfig san3
ALEX2

Hardware configuration for san3:
AFT-A102   : SLOT=8 : BUS=0 : IRQ=10 : CPU=B : PORT=PRI

Interface configuration for san3:
MEDIA=T1
LCODE=B8ZS
FRAME=ESF
TECLOCK=Normal
LBO=0db
ACTIVE_CH=all
PROTO=ppp


For the other, I will just quote what I wrote before.

 From: andrew fresh [mailto:[EMAIL PROTECTED]
  There are two resons I believe it is the Sangoma driver causing the
  problem.
  
  The first is the message from Theo that you can read in the archives
  here:
  
  http://marc.info/?l=openbsd-miscm=118246162917905w=2
  
  where he said I suggest you call [Sangoma].
  
  
  The second being the logs.  They are in the messages linked above, but
  just before the router locked up there were san messages in
  /var/log/messages and on the console there is san2: LCP keepalive
  timeout.


And this:
  I am not
  sure what triggers this problem and it has not happened again since the
  times mentioned in that email so it is fairly difficult to debug.


l8rZ,
-- 
andrew - ICQ# 253198 - Jabber: [EMAIL PROTECTED]

BOFH excuse of the day: Pentium FDIV bug

Re: xfce windows manager

[Nick Templeton]

Here are the packages (and their dependencies) that I install
to get a nice Xfce desktop:

xfce-utils
xfce4-session
xfce4-taskbar
xfdesktop
xfwm4

Nick


-Original Message-
From: [EMAIL PROTECTED] on behalf of Alex Kwan
Sent: Mon 6/25/2007 11:26 AM
To: OpenBSD general usage list
Subject: xfce windows manager

Hello,

I wanted to use xfce for my systems' windows manager, which packages are
must required? (I have install the X base).

thanks!
Alex

Re: 4.1 upgrade problem

[Arnaud Bergeron]

For the archives:

After a lot of head scratching, I discovered that symlinking /var/www
to somewhere else using an absolute path causes problems such as what
I was seeing during install.  It is normal since the root location
changes.  Use relative symlinks.

Re: difficulties mounting DVDs I burn with growisofs

[Joachim Schipper]

On Mon, Jun 25, 2007 at 11:48:14AM -0500, Craig Brozefsky wrote:
 I recently burned two DVDs with my new DVD burner and I am unable to
 mount them on my OpenBSD box using the same burner, tho my Linux
 laptop mounts them.  I am running OpenBSD 4.1 amd64.  Pleae let me
 know if there is any other information that would help, or things I
 could try to get more debugging info to developers.
 
 Here is the drive id:
 
   [EMAIL PROTECTED]:~$ sudo atactl cd0 identify
   Model: TSSTcorpCD/DVDW SH-S182D, Rev: SB01, Serial #: 
   Device type: ATAPI, fixed
   Cylinders: 0, heads: 0, sec/track: 0, total sectors: 0
   Device capabilities:
   IORDY operation
   IORDY disabling
   Device has enabled the following command sets/features:
 
 
 I burned them with growisofs.  One had -dvd-compat turned on, and the
 other did not.
 
   [EMAIL PROTECTED]:~$ sudo mount -t udf /dev/cd0c /mnt/cdrom 
   mount_udf: mount: Invalid argument
   [EMAIL PROTECTED]:~$ sudo mount -t cd9660 /dev/cd0c /mnt/cdrom 
   mount_cd9660: /dev/cd0c on /mnt/cdrom: Invalid argument
 
 Here is what shows up in dmesg:
 
   Jun 25 01:21:07 piracy /bsd: cd0(atapiscsi0:0:0): Check
   Condition (error 0x70) on opcode 0x28
   Jun 25 01:21:07 piracy /bsd: SENSE KEY: Illegal Request
   Jun 25 01:21:07 piracy /bsd:  ASC/ASCQ: Logical Block Address
   Out of Range

You are mounting the wrong device; try /dev/cd0a.

Joachim

-- 
TFMotD: atalk (4) - AppleTalk Protocol Family

telnetd ?

[stan]

Yes, I know it's a bad idea, but for reasons beyond my control, I need to
provide a telnet service on an OpeBSD 4.0 machine. Unfortunately there does
not seem to be a telnetd built by default.

How can I get this daemon built?

-- 
I'm sorry, no one here has any intentions of helping you with anything. 
I am the manager of all of Customer Service.

Re: carp + mysql replication: failover

[Jacob Yocom-Piatt]

Jacob Yocom-Piatt wrote:
have two machines that are carped and have mysql databases on them. 
one machine is the mysql master and the other a slave that replicates 
the master. this keeps things ready for what i've just experienced: 
mysql master machine goes down. now that a master failure has 
occurred, i am not certain of the best path for bringing the master 
back online so that it's synced with the slave.


to bring the master back online correctly i see the following as an 
obvious, but laborious, path: (1) restart master and increase advskew 
on the carp interface so the slave stays MASTER (2) edit config files 
and restart mysql on both machines so that the slave is now the master 
and vice versa for the original master (3) initiate slave replication 
onto the original master (4 - optional) decrease advskew on the 
original master machine so that it takes over (5 - optional)  restart 
mysql on both machines, swapping the master and slave configs. the 
optional steps are only if restoring the original master as master is 
desired.


if there is another way to do what i've described above that doesn't 
involve downtime for mysql or is more easily automated, please advise.




in case anybody else encounters a similar situation, a friendly bird 
whistled in my ear:


http://www.onlamp.com/pub/a/onlamp/2006/04/20/advanced-mysql-replication.html 




cheers,
jake

port knocking?

[John N. Brahy]

Hi Misc@,



I was wondering what the general census on port knocking in the OpenBSD
community is. I like the idea of hiding services but I don't like the
idea of relying on a piece of code that's not part of the OpenBSD core.
I know when it comes down to it, it's only hiding ports and not actually
securing anything.



I am assuming that it's not practiced in the OpenBSD world because there
are no port knocking ports.



Anyone not agree with that summation?



Thanks,



John



:: John Brahy

:: CTO/CIO
:: ad2, Inc.
:: http://www.ad2.com http://www.ad2.com/
::
:: 1990 E Grand Avenue
:: Suite 200
:: El Segundo CA 90245
::
:: t: 310-356-7500 main line
:: f: 310-356-7520

Re: telnetd ?

[Antti Harri]

On Mon, 25 Jun 2007, stan wrote:


Yes, I know it's a bad idea, but for reasons beyond my control, I need to
provide a telnet service on an OpeBSD 4.0 machine. Unfortunately there does
not seem to be a telnetd built by default.


Yes it was removed and you could've searched the archives:
http://openbsd.org/mail.html


How can I get this daemon built?


Get it from CVS and compile?

--
Antti Harri

Re: telnetd ?

[Will Maier]

On Mon, Jun 25, 2007 at 02:59:58PM -0400, stan wrote:
 Yes, I know it's a bad idea, but for reasons beyond my control, I
 need to provide a telnet service on an OpeBSD 4.0 machine.
 Unfortunately there does not seem to be a telnetd built by
 default.
 
 How can I get this daemon built?

Search the archives...

http://marc.info/?l=openbsd-miscw=2r=1s=telnetdq=b?

-- 

o--{ Will Maier }--o
| web:...http://www.lfod.us/ | [EMAIL PROTECTED] |
*--[ BSD Unix: Live Free or Die ]--*

Re: port knocking?

[Martin Schröder]

2007/6/25, John N. Brahy [EMAIL PROTECTED]:

I was wondering what the general census on port knocking in the OpenBSD
community is. I like the idea of hiding services but I don't


List archives exist.

Best
  Martin

Re: port knocking?

[Bret Lambert]

On Mon, 2007-06-25 at 10:48 -0700, John N. Brahy wrote:
 Hi Misc@,
 
 
 
 I was wondering what the general census on port knocking in the OpenBSD
 community is. I like the idea of hiding services but I don't like the
 idea of relying on a piece of code that's not part of the OpenBSD core.
 I know when it comes down to it, it's only hiding ports and not actually
 securing anything.
 
 
 
 I am assuming that it's not practiced in the OpenBSD world because there
 are no port knocking ports.
 
 
 
 Anyone not agree with that summation?
 

I can't speak for others, but I don't practice it because there are
better (and developer-supported) ways to keep people out. If you're
paranoid about hiding services, authpf is, in my opinion, superior to
any other solution that I've seen.

Re: difficulties mounting DVDs I burn with growisofs

[Craig Brozefsky]

Joachim Schipper [EMAIL PROTECTED] writes:

 You are mounting the wrong device; try /dev/cd0a.

Ah, I tried that earlier, this is what I get.:

  [EMAIL PROTECTED]:~/public_html/bbb$ sudo mount -t cd9660 /dev/cd0a /mnt/cdrom
  mount_cd9660: /dev/cd0a on /mnt/cdrom: Device not configured
  [EMAIL PROTECTED]:~/public_html/bbb$ sudo mount -t udf /dev/cd0a /mnt/cdrom
  mount_udf: open: Device not configured
  [EMAIL PROTECTED]:~/public_html/bbb$ 

Disklabel shows only one big partition:

  [EMAIL PROTECTED]:~$ sudo disklabel cd0
  # /dev/rcd0c:
  type: ATAPI
  disk: ATAPI CD-ROM
  label: fictitious
  flags:
  bytes/sector: 2048
  sectors/track: 100
  tracks/cylinder: 1
  sectors/cylinder: 100
  cylinders: 4001
  total sectors: 40
  rpm: 300
  interleave: 1
  trackskew: 0
  cylinderskew: 0
  headswitch: 0   # microseconds
  track-to-track seek: 0  # microseconds
  drivedata: 0 

  3 partitions:
  # sizeoffset  fstype [fsize bsize  cpg]
c:40 0  unused  0 0  # Cyl 0
  -  3999 


On a whim, I put in a totally blank disc, and disklabel gave the same
output.  So it would appear that the problem is that the hardware
and/or driver are not able to recognize the disk?

What can I do to help debug this?

-- 
Sincerely, Craig Brozefsky  [EMAIL PROTECTED]
what a klon  - neko   http://www.red-bean.com/~craig
Less matter, more form!   - Bruno Schulz
ignazz, I am truly korrupted by yore sinful tzourceware. -jb

Re: difficulties mounting DVDs I burn with growisofs

[Joachim Schipper]

On Mon, Jun 25, 2007 at 02:31:49PM -0500, Craig Brozefsky wrote:
 Joachim Schipper [EMAIL PROTECTED] writes:
 
  You are mounting the wrong device; try /dev/cd0a.
 
 Ah, I tried that earlier, this is what I get.:
 
   [EMAIL PROTECTED]:~/public_html/bbb$ sudo mount -t cd9660 /dev/cd0a 
 /mnt/cdrom
   mount_cd9660: /dev/cd0a on /mnt/cdrom: Device not configured
   [EMAIL PROTECTED]:~/public_html/bbb$ sudo mount -t udf /dev/cd0a /mnt/cdrom
   mount_udf: open: Device not configured
   [EMAIL PROTECTED]:~/public_html/bbb$ 
 
 Disklabel shows only one big partition:
 
   [EMAIL PROTECTED]:~$ sudo disklabel cd0
   # /dev/rcd0c:
   type: ATAPI
   disk: ATAPI CD-ROM
   label: fictitious
   flags:
   bytes/sector: 2048
   sectors/track: 100
   tracks/cylinder: 1
   sectors/cylinder: 100
   cylinders: 4001
   total sectors: 40
   rpm: 300
   interleave: 1
   trackskew: 0
   cylinderskew: 0
   headswitch: 0   # microseconds
   track-to-track seek: 0  # microseconds
   drivedata: 0 
 
   3 partitions:
   # sizeoffset  fstype [fsize bsize  cpg]
 c:40 0  unused  0 0  # Cyl 0
   -  3999 

It should be like this

# disklabel cd0
# /dev/rcd0c:
type: ATAPI
disk: MY_DISC
label:
flags:
bytes/sector: 2048
sectors/track: 100
tracks/cylinder: 1
sectors/cylinder: 100
cylinders: 2551
total sectors: 255030
rpm: 300
interleave: 1
trackskew: 0
cylinderskew: 0
headswitch: 0   # microseconds
track-to-track seek: 0  # microseconds
drivedata: 0

3 partitions:
# sizeoffset  fstype [fsize bsize  cpg]
  a:255030 0 ISO9660   # Cyl 0 -
2550*
  c:255030 0 ISO9660   # Cyl 0 -
2550*
# mount /dev/cd0a /mnt/cd/

 On a whim, I put in a totally blank disc, and disklabel gave the same
 output.  So it would appear that the problem is that the hardware
 and/or driver are not able to recognize the disk?
 
 What can I do to help debug this?

Start by putting in a disk that really should work - any factory-pressed
disk. If OpenBSD understands this, it means that the disk drive is not
completely unsupported or something stupid like that.

I presume you've already tried reading your disks on another machine.
The next step would be to read the disks on this same machine using
another OS.

Or waiting for someone with more cd9660 smarts than me to tell you why
this doesn't work - I seem to recall some recent work on supporting
multisession CDs, so the cd9660 might not be as complete as we'd like.

Joachim

Re: LC_COLLATE and PostgreSQL

[Joachim Schipper]

On Mon, Jun 25, 2007 at 11:50:10AM +0200, Artur Litwinowicz wrote:
 Hi Philip,
thank You match for answer and nice words :). 
 I am starting be concern for my problem but my love for OpenBSD is
 stronger then sort problems (data on my web are sorted not correctly) and I
 do not want to change system on may server. 
 Maybe in the nearest feature OpenBSD Developers change the COLLATION
 support or someone know solution for this problem.

Well, if you like to code, you might be able to port strcoll() and the
like from another BSD - like FreeBSD.

Joachim

-- 
PotD: x11/bbkeys - X keygrabber for blackbox

Re: difficulties mounting DVDs I burn with growisofs

[Craig Brozefsky]

Joachim Schipper [EMAIL PROTECTED] writes:

 Start by putting in a disk that really should work - any factory-pressed
 disk. If OpenBSD understands this, it means that the disk drive is not
 completely unsupported or something stupid like that.

Ok, I have read discs with this, tho it took a few tries to recognize
my 4.1 install discs.  Those were striaght up CDs.  I'll try a unch of
other DVD data disks I got.

 I presume you've already tried reading your disks on another machine.
 The next step would be to read the disks on this same machine using
 another OS.

Yah, so for the purpose of backing up crap to DVD, I'm set.

 Or waiting for someone with more cd9660 smarts than me to tell you why
 this doesn't work - I seem to recall some recent work on supporting
 multisession CDs, so the cd9660 might not be as complete as we'd like.

Linux recognized it as iso9660, and I'm not too clear on what the
relationship of UDF and cd9660 is.  Anyways, now that I had a reality
check and I'm not doing something totally luserly, I'll do some
reading and hopefully coding to fix it.

Thanx for the reality check.

-- 
Sincerely, Craig Brozefsky  [EMAIL PROTECTED]
what a klon  - neko   http://www.red-bean.com/~craig
Less matter, more form!   - Bruno Schulz
ignazz, I am truly korrupted by yore sinful tzourceware. -jb

authpf allows only one user from the same source ip; kicks off previous user

[Chris Youb]

When multiple users with the same source IP want access through the firewall
authpf grants access to the newly authenticating user and kicks off the
previous user.  Is there a way to turn off this behaviour so both users
maintain authpf tables?

Works:
1a. [EMAIL PROTECTED] - authpf - maintains logon
1b. [EMAIL PROTECTED] - authpf - logs on

Doesn't Work:
2a. [EMAIL PROTECTED] - authpf - gets kicked off
2b. [EMAIL PROTECTED] - authpf - logs on 


Real-life example:

Step #1 xuser authenticates from IP_1; xuser has access to firewall
firewall# pfctl -s Anchors -v
 authpf
 authpf/bfisher(25933)
 authpf/xuser(1308)
 authpf/rarthur(15647)
 authpf/schatterjee(31961)

Step #2 cyoub authenticates from IP_2; both xuser and cyoub have access to
firewall
firewall# pfctl -s Anchors -v
 authpf
 authpf/bfisher(25933)
 authpf/cyoub(2104)
 authpf/xuser(1308)
 authpf/rarthur(15647)
 authpf/schatterjee(31961)

Step #3 cyoub authenticates from IP_1; ONLY cyoub has access to firewall as
he was the last to login.  xuser is kicked off???
firewall# pfctl -s Anchors -v
 authpf
 authpf/bfisher(25933)
 authpf/cyoub(27921)
 authpf/rarthur(15647)
 authpf/schatterjee(31961)

firewall# pfctl -a authpf/cyoub(27921) -s rules
pass in quick on bge0 inet from 10.0.1.47 to 172.16.0.0/22 flags S/SA keep
state
pass in quick on bge0 inet from 10.0.1.47 to 172.16.4.0/22 flags S/SA keep
state
pass in quick on bge0 inet from 10.0.1.47 to 172.16.8.0/22 flags S/SA keep
state
pass in quick on bge0 inet from 10.0.1.47 to 172.16.12.0/22 flags S/SA keep
state
pass in quick on bge0 inet from 10.0.1.47 to 172.16.20.0/22 flags S/SA keep
state
pass in quick on bge0 inet from 10.0.1.47 to 172.16.20.0/22 flags S/SA keep
state
pass in quick on bge0 inet from 10.0.1.47 to 172.16.80.0/22 flags S/SA keep
state
pass in quick on bge0 inet from 10.0.1.47 to 172.16.48.0/22 flags S/SA keep
state
pass in quick on bge0 inet from 10.0.1.47 to 172.16.4.0/22 flags S/SA keep
state
pass in quick on bge0 inet from 10.0.1.47 to 172.16.28.0/22 flags S/SA keep
state
-- 
View this message in context: 
http://www.nabble.com/authpf-allows-only-one-user-from-the-same-source-ip--kicks-off-previous-user-tf3978999.html#a11295667
Sent from the openbsd user - misc mailing list archive at Nabble.com.

Re: authpf allows only one user from the same source ip; kicks off previous user

[Bob Beck]

Nope. That's how it is supposed to work. 

The point of authpf is for the user to say this IP
is me - if that IP could perhaps not be him, well, this
is not an application for authpf. I.E. if your users
are coming in from a NAT, you should rethink what you
are doing. 

-Bob


* Chris Youb [EMAIL PROTECTED] [2007-06-25 15:15]:
 When multiple users with the same source IP want access through the firewall
 authpf grants access to the newly authenticating user and kicks off the
 previous user.  Is there a way to turn off this behaviour so both users
 maintain authpf tables?
 
 Works:
 1a. [EMAIL PROTECTED] - authpf - maintains logon
 1b. [EMAIL PROTECTED] - authpf - logs on
 
 Doesn't Work:
 2a. [EMAIL PROTECTED] - authpf - gets kicked off
 2b. [EMAIL PROTECTED] - authpf - logs on 
 
 
 Real-life example:
 
 Step #1 xuser authenticates from IP_1; xuser has access to firewall
 firewall# pfctl -s Anchors -v
  authpf
  authpf/bfisher(25933)
  authpf/xuser(1308)
  authpf/rarthur(15647)
  authpf/schatterjee(31961)
 
 Step #2 cyoub authenticates from IP_2; both xuser and cyoub have access to
 firewall
 firewall# pfctl -s Anchors -v
  authpf
  authpf/bfisher(25933)
  authpf/cyoub(2104)
  authpf/xuser(1308)
  authpf/rarthur(15647)
  authpf/schatterjee(31961)
 
 Step #3 cyoub authenticates from IP_1; ONLY cyoub has access to firewall as
 he was the last to login.  xuser is kicked off???
 firewall# pfctl -s Anchors -v
  authpf
  authpf/bfisher(25933)
  authpf/cyoub(27921)
  authpf/rarthur(15647)
  authpf/schatterjee(31961)
 
 firewall# pfctl -a authpf/cyoub(27921) -s rules
 pass in quick on bge0 inet from 10.0.1.47 to 172.16.0.0/22 flags S/SA keep
 state
 pass in quick on bge0 inet from 10.0.1.47 to 172.16.4.0/22 flags S/SA keep
 state
 pass in quick on bge0 inet from 10.0.1.47 to 172.16.8.0/22 flags S/SA keep
 state
 pass in quick on bge0 inet from 10.0.1.47 to 172.16.12.0/22 flags S/SA keep
 state
 pass in quick on bge0 inet from 10.0.1.47 to 172.16.20.0/22 flags S/SA keep
 state
 pass in quick on bge0 inet from 10.0.1.47 to 172.16.20.0/22 flags S/SA keep
 state
 pass in quick on bge0 inet from 10.0.1.47 to 172.16.80.0/22 flags S/SA keep
 state
 pass in quick on bge0 inet from 10.0.1.47 to 172.16.48.0/22 flags S/SA keep
 state
 pass in quick on bge0 inet from 10.0.1.47 to 172.16.4.0/22 flags S/SA keep
 state
 pass in quick on bge0 inet from 10.0.1.47 to 172.16.28.0/22 flags S/SA keep
 state
 -- 
 View this message in context: 
 http://www.nabble.com/authpf-allows-only-one-user-from-the-same-source-ip--kicks-off-previous-user-tf3978999.html#a11295667
 Sent from the openbsd user - misc mailing list archive at Nabble.com.
 

-- 
#!/usr/bin/perl
if ((not 0  not 1) !=  (! 0  ! 1)) {
   print Larry and Tom must smoke some really primo stuff...\n; 
}

Re: RTHREADS and librthread

[Ted Unangst]

On 6/25/07, Vortechz [EMAIL PROTECTED] wrote:

I hope there are people using/testing/developing rthreads out there who can
explain to me why
syscall getthrid fails with SIGSYS on my system, 4.1-release.


it looks like you've done everything right.  SIGSYS means the kernel
doesn't support the syscall, so you should double check that.

Re: cannot enable executable stack...

[Ted Unangst]

On 6/25/07, Matthew Szudzik [EMAIL PROTECTED] wrote:

 I have successfully ported the relevant material from the NetBSD patches


thanks, good work.

Re: authpf allows only one user from the same source ip; kicks off previous user

[Chris Youb]

Bob Beck-2 wrote:
 
   The point of authpf is for the user to say this IP
 is me - if that IP could perhaps not be him, well, this
 is not an application for authpf. I.E. if your users
 are coming in from a NAT, you should rethink what you
 are doing. 
 
   -Bob
 

  I fully understand your reasoning.  Under normal circumstances users
authenticate from their desktop machines (which is a unique IP) and
therefore not a problem.  However, sometimes they are VNC'd into servers
(more CPU power) and want to access resources behind the internal
'firewall'.  This was fine until we came across multiple VNC sessions on the
same server.  I realize there would be a tiny loop-hole in that user A would
be able to access user B's authenticated resources and vice-versa but that
was a reasonable risk (these are all internal users).

  The only other option for users sharing resources on a single server was
to give each VNC session a unique IP.  And the only way I know how to do
that is via virtualization.  If there was one VNC session per user domain
this wouldn't be a problem.  However, that is bit of work.

  In short, I know the consequences of authenticating multiple users from
the same IP... is there an easy way to turn off this authpf feature? ;)

-- 
View this message in context: 
http://www.nabble.com/authpf-allows-only-one-user-from-the-same-source-ip--kicks-off-previous-user-tf3978999.html#a11297071
Sent from the openbsd user - misc mailing list archive at Nabble.com.

Re: authpf allows only one user from the same source ip; kicks off previous user

[Theo de Raadt]

   In short, I know the consequences of authenticating multiple users from
 the same IP... is there an easy way to turn off this authpf feature? ;)

You still don't understand.

It's not a feature.  It is a requirement.

If you don't like it, then you can't provide any of the functional
parts that authpf provides.  It's a requirement for rule addition and
rule deletion to KNOW where a session is from.

Otherwise, you might as well just use pf itself, without any logging in,
because your authpf logins really mean nothing.

Re: Boot by USB thumb for installation

[Graeme Neilson]

This is related and may be of interest to some ppl. I have posted some
modifications to the excellent LiveCD instructions by Andreas Bihlmaier to
create a Live USB (if you have a USB key thingie and you want to save space)

http://openbsd-wiki.org/index.php?title=LiveUSB

G


On 6/24/07, Alex Kwan [EMAIL PROTECTED] wrote:

 Hi!

 Because the laptop doesn't have a CD-ROM.
 can the OpenBSD boot by the USB thumb for installation?
 (the BIOS supported boot by USB hard disk).

 thanks!

Re: authpf allows only one user from the same source ip; kicks off previous user

[Bob Beck]

   I fully understand your reasoning.  Under normal circumstances users
 authenticate from their desktop machines (which is a unique IP) and
 therefore not a problem.  However, sometimes they are VNC'd into servers
 (more CPU power) and want to access resources behind the internal
 'firewall'.  This was fine until we came across multiple VNC sessions on the
 same server.  I realize there would be a tiny loop-hole in that user A would
 be able to access user B's authenticated resources and vice-versa but that
 was a reasonable risk (these are all internal users).
 
   The only other option for users sharing resources on a single server was
 to give each VNC session a unique IP.  And the only way I know how to do
 that is via virtualization.  If there was one VNC session per user domain
 this wouldn't be a problem.  However, that is bit of work.

Stop talking about VNC and talk about unix shell accounts 
and I've been exactly where you are - 15 years ago :)  it's the same
damn thing. I don't use authpf from shell hosts, or reccomend it's
use from them either. 

 
   In short, I know the consequences of authenticating multiple users from
 the same IP... is there an easy way to turn off this authpf feature? ;)

Nope. and there won't be. it's important. You should just allow
your VNC'ed host through the firewall and trust that it has adequate logging
and security to deal with user separation.. Can't do that.. hmm.. then
authpf is doing *nothing* for you. 

-Bob

Re: port knocking?

[RW]

On Mon, 25 Jun 2007 10:48:20 -0700, John N. Brahy wrote:

I was wondering what the general census on port knocking in the OpenBSD
community is. I like the idea of hiding services but I don't like the
idea of relying on a piece of code that's not part of the OpenBSD core.
I know when it comes down to it, it's only hiding ports and not actually
securing anything.

I am assuming that it's not practiced in the OpenBSD world because there
are no port knocking ports.

Anyone not agree with that summation?

Me. I'd guess that a better line would be that the reason there are no
port knocking ports is because OpenBSD developers think that port
knocking is a giant wank.

But that's just my guess and, if they do, I'd heartily agree.

Rod/
Me...a skeptic?  I trust you have proof.

C++ Book

[Danny]

Good Day,

My apologies if this question has been asked a million times before. I want to
know if there is a good book out there to learn C++ on UNIX/Linux. I have
browsed Amazon but almost all the books available there are either Windows based
or they have very bad reviews.

I have been doing LAN web applications with PHP/Javascript/MySQL/Perl for some
time now, but now I need to get C++ under my belt for a particular client.

The reason I post here on misc@openbsd.org is because you guys normally give a
clear and objective view. (And because you guys are more intelligent :) ).

Thank You

Danny

nat trouble accessing web

[Lawrence Horvath]

Im having some trouble accessing certain sites from my laptop going
through a obsd router doing nat

I have 2 tested configurations

Laptop---Cisco1721[doing nat]---internet  msn.com
and
Laptop---Cisco1721--(gre0)Openbsd[doing nat]---internet  msn.com

in the first setup, i have a local network behind a cisco1721, the
cisco does nat, and all works well

in the second setup, i have an internal network that spans via gre
from the cisco to an Openbsd router in colo which does the nat, this
is not working for me at all, when i try to go to msn.com, my browser
just sits there, i have tried this from 1 other computer as well


OpenBSD 4.0 GENERIC.MP#936 i386

# cat /etc/pf.conf.test
# Macros
# Tables
# Options
# Traffic Normalization(scrub)
# Queueing
# Translation(nat-binat-rdr)
# Packet Filtering

ext_if=tl0
tun_if=gre0

int_ip={ 10/8 192.168/16 }
natpool_ip=208.179.68.11
local_ip={ 10/8 192.168/16 208.179.68.8/29 208.179.25/24 }

set optimization high-latency
no nat on $ext_if from $local_ip to $local_ip
  nat on $ext_if from $int_ip to any - $natpool_ip


pass in all
pass out all





im using ospfd to route over the gre

with either situation, i can get good name resolution, and i can
telnet to the msn server on 0 and issue a get request successfully  i
can get to almost any other website in either config, google, yahoo,
etc, there are only a few i cant get to

if there is any other info requested, im happy to provide
thank you
lawrence

Re: RTHREADS and librthread

[Otto Moerbeek]

On Mon, 25 Jun 2007, Vortechz wrote:

 I hope there are people using/testing/developing rthreads out there who can
 explain to me why
 syscall getthrid fails with SIGSYS on my system, 4.1-release.
 
 1. I have RTHREADS defined in my kernel. I have checked that the
 rthread code is included at compile time, and I also tried this:
 
 $ grep getthrid /bsd
 Binary file /bsd matches
 
 2. The code I'm trying to run: 
 http://www.nabble.com/file/p11287569/rthread.tar rthread.tar 
 It may be extremely stupid, but it compiles...
 
 3. I compiled and installed librthread, and copied librthread.so.1.0 in
 place of libpthread.so.7.0
 My program is linked against libpthread:
 
 $ ldd rthtest 
  
 rthtest:
 StartEnd  Type Open Ref GrpRef Name
   exe  10   0  rthtest
 0bd7c000 2bd85000 rlib 01   0  /usr/lib/libpthread.so.7.0
 0cde 2ce14000 rlib 01   0  /usr/lib/libc.so.40.3
 00466000 00466000 rtld 01   0  /usr/libexec/ld.so
 
 4. Output and info:
 
 $ ./rthtest   
  
 Bad system call (core dumped) 
 
 $ gdb ./rthtest rthtest.core  
  
 GNU gdb 6.3
 [...GPL...]
 Core was generated by `rthtest'.
 Program terminated with signal 12, Bad system call.
 Reading symbols from /usr/lib/libpthread.so.7.0...done.
 Loaded symbols for /usr/lib/libpthread.so.7.0
 Symbols already loaded for /usr/lib/libpthread.so.7.0
 Reading symbols from /usr/lib/libc.so.40.3...done.Loaded symbols for
 /usr/lib/libc.so.40.3
 Reading symbols from /usr/libexec/ld.so...done.
 Loaded symbols for /usr/libexec/ld.so
 #0  0x02a846a1 in getthrid () from /usr/lib/libc.so.40.3
 (gdb) bt
 #0  0x02a846a1 in getthrid () from /usr/lib/libc.so.40.3
 #1  0x1c0006bb in funkythread (data=0x3c11) at rthreadtest.c:11
 #2  0x0df40fcb in _thread_start ()
 at /usr/src/lib/libpthread/uthread/uthread_create.c:244
 #3  0x001f in ?? ()
 #4  0x in ?? ()
 
 Did I do something extremely wrong when I tried to switch to rthreads? Do I
 need to recompile
 lots of things?

No, you do not need to recompile lots of things (no userland changes
are needed). I suspect you did not run make clean or something like
that before builing bsd.

After ading option RTHREADS, you should run config, and then make
clean, make depend and make in the kernel's compile dir.

-Otto


 
 Don't point me to using the regular libpthread, I have good reason to try
 rthreads.
 
 Alsodon't use this post to start a troll-inducing thread about
 performance, scalability 
 and/or personal opinions about threads and their usage. Reply with useful
 information or shut up.
 
 // Vortechz
 
 -- 
 View this message in context: 
 http://www.nabble.com/RTHREADS-and-librthread-tf3976489.html#a11287569
 Sent from the openbsd user - misc mailing list archive at Nabble.com.