Re: Donation request for Network SMP development
How is this going ? /T On Fri, Mar 20, 2015 at 8:57 PM, Martin Pieuchot wrote: > If you've been following my contributions to OpenBSD's kernel, you > already know that in the past years I've been working on the Network > Stack [1] to make it more SMP friendly [2]. > > All the network hackers present at s2k15 agreed to volunteer me to work > on the next step: properly integrate the pseudo-drivers (carp(4), > vlan(4), trunk(4)...) in order to take ether_input() out of the kernel > lock. > > But since I no longer have the support of a company, I don't have the > correct toys to do this task. That's why I'm looking for the following > hardware, to build a crazy test & development CARP setup: > > - A small managed switch (8+ ports) preferably with a CLI interface > like HP Procurves 25xx. > > - Two small fanless MP amd64 machines with 3+ NIC and a serial console > like PC Engines APU or Lanner LEC. > > I'm based in Europe, please contact me if you can help out. > > Thanks, > Martin > > > [1] http://www.openbsd.org/papers/tamingdragons.pdf > [2] http://undeadly.org/cgi?action=article&sid=20150218085759
Re: [man ksh] missing keystroke for delete-char-forward
Look my dotfiles at https://github.com/teebsd/dotfiles Check the .kshrc_keys file. 2015-03-24 18:26 GMT-03:00 Jason McIntyre : > On Tue, Mar 24, 2015 at 06:29:50PM +0100, dam...@thiriet.web4me.fr wrote: >> Hello, >> >> >> man ksh lacks keystroke for delete-char-forward. >> Here is a diff I made with current man page >> (the dirty way: copied man page from the web, since >> I am using -release) >> >> --- man_ksh Tue Mar 24 13:11:50 2015 >> +++ man_ksh_corrige Tue Mar 24 18:06:05 2015 >> @@ -1916,7 +1916,7 @@ >> delete-char-backward: [n] ERASE, ^?, ^H >>Deletes n characters before the cursor. >> >> - delete-char-forward: [n] >> + delete-char-forward: [n] ^D >>Deletes n characters after the cursor. >> >> delete-word-backward: [n] ERASE, ^[^?, ^[^H, ^[h >> > > i've asked around, since i didn;t understand this either. it seems that > delete-char-forward is not bound by default. ^D is bound to > eot-or-delete, which correctly describes the behaviour (eot on empty > line, otherwise behave like delete-char-forward). > > jmc > >> I hope this is the good way to proceed, this is my first diff ever. >> Please note that there may be other keystrokes than ^D I am not >> aware of (delete-char-backword is bound to three keystrokes). >> >> >> Damien Thiriet > -- Antonio Feitosa (http://twitter.com/teebsd) #DevOps believer in Prototype Driven Development, #Security Consultant, #OpenBSD addicted, #ARM hobbyst and #Blues #Musician. #P2P is the real #cloudcomputing. Rio de Janeiro, Brazil · Github: https://github.com/TeeBSD Blog: http://teebsd.github.io/
support update
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1,SHA256 # Sorry, need to get the business name right # so the GST people don't fry me... 0 C Canada P Alberta T Edmonton Z T6A-2P7 O Duncan Campbell Consulting Engineer I Duncan Patton a Campbell A 10908-65a st. M campb...@neotext.ca U http://www.neotext.com/ # with trailing slash unless a specific resource B 780 466 0109 X 780 469 0930 N Open Systems Integration and Reverse-Engineering, Legacy Sytems, RealTime AI, Air Traffic Control, Remote Sensing, TestBed/Laboratory Development, Remote/Onsite Support, Wireless, RFID, Tracking/Mapping Systems, Barcoding, Inventory supply-line, SAP integration, C3I, Web Catalogs, Competitive Intelligence Search Engines, Risk Assessment&Reduction, Motorola, Intermec, Symbol devices. UNIX -- OpenBSD, FreeBSD, HPUX, Solaris/SunOS in Industrial Environments. And PCs:(Minix, Desqview, QNX) 30+ years experience, competence and integrity. secure(ish) contact point -- https://neotext.ca/cgi-bin/getxt # Thanks, # Dhu - -- Ne obliviscaris, vix ea nostra voco. iQEcBAEBAgAGBQJVEfdUAAoJEIAEMDKqK2pBnZQH/AnW2KBgFdHLqwMKzxDRTp4k cPj7tBZRp43g9Oo8RKnB3jjbbcNdzjmyplJjq3SpmdFcCsBU2HBdtUaFLPuxCQJe xs3lVv2Zfqr7RbAK0k//RO0V7etQGa9K2lOkzWPTi+VJFrkne69pnv6NbkgdLV9C 0JC5GHahr/+OgySQp9z3dZLV73q7i5aavatomWqZI0VxAPSAP7eJiZuBb5RKS4FU 8gN2INFti1Nx1L55OtDenIqTMMQ0w7eCtvsTjQZvepZlW7xsMwksxd8ccyDYf6KE B/l9fYbGV+gN8D6sVarQxpxFB77ZvK5GJ6qSkzo7L92Qn/8sjVO/wXQzR+p80uOI XgQBEQgABgUCVRH3VAAKCRCJjoDPNHWXPJSjAQDWfLi9Tq6XykNbuDtn78Nf8sXj nHD2NUw/W5vsEm2R6wD+PHwIz1fhDMTabimZdu8dOHr7RjZQ3EFggwNCbUxMv6E= =WAtj -END PGP SIGNATURE-
support update
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1,SHA256 # So, lets try this once again... 0 C Canada P Alberta T Edmonton Z T6A-2P7 O Neotext I Duncan Patton a Campbell A 10908-65a st. M campb...@neotext.ca U http://www.neotext.com/ # with trailing slash unless a specific resource B 780 466 0109 X 780 469 0930 N Open Systems Integration and Reverse-Engineering, Legacy Sytems, RealTime AI, Air Traffic Control, Remote Sensing, TestBed/Laboratory Development, Remote/Onsite Support, Wireless, RFID, Tracking/Mapping Systems, Barcoding, Inventory supply-line, SAP integration, C3I, Web Catalogs, Competitive Intelligence Search Engines, Risk Assessment&Reduction, Motorola, Intermec, Symbol devices. UNIX -- OpenBSD, FreeBSD, HPUX, Solaris/SunOS in Industrial Environments. And PCs:(Minix, Desqview, QNX) 30+ years experience, competence and integrity. secure(ish) contact point -- https://neotext.ca/cgi-bin/getxt # Thanks, # Dhu # -- # Ne obliviscaris, vix ea nostra voco. iQEcBAEBAgAGBQJVEfSRAAoJEIAEMDKqK2pB6dMH/jKv3j7uw1nSOJkZX3cK4fg2 RWGTQilUabrZMEW7LNnS601T3UCfdedFxWeGfiklZeHr2s4cjxq052lX1rRycxEo rEUpDhs8rJm7OFkAFBoxfhRrClwfm7AWrW+v/aFbOuz70flD0zlK4tkVeR1t6PJp FdKPR0dsWDNxMDH2COaXNrSSOUShqBjcHgQ+c/RWWm6P8AvCGtUMqXplLJr9/Pr4 d+ml0tea0r5R3fg5eILRBPOjK1q2IgxsFd2oCaWqf+YCGKi3pmNhEQRh779qF2eK A2v+yKQ4ggaJSF98mzfos+lzUZYbgonATh7eAAZXu1RGMtJq7TtCjjqqm4rscUCI XgQBEQgABgUCVRH0kQAKCRCJjoDPNHWXPP+dAQCQur6TY9PYibDUwr9Xu/gwq4e+ DYYY8FQ9A+F5hQm3XgEArW9RnO1MOBJ748MK9S+k+BrtrC6nvgPxde2D/J/23w0= =Dr2Q -END PGP SIGNATURE-
Re: ownclould client mirall crashes repeatedly
On Tue, Mar 24, 2015 at 04:20:49PM -0500, unix_li...@f-m.fm wrote: > Client mirall ran fine but I had to pause it. It would not cleanly stop > running. I am running this app in kde4. Pop-up window asked if I wanted > to terminate this application and I did so. Now, whenever I try to run > the application from the terminal I get the following: > owncloud > owncloud:/usr/lib/libstdc++.so.57.0: /usr/local/lib/libestdc++.so.16.0 : > WARNING: symbol(_ZN11__gnu_debug17_S_debug_messagesE) size mismatch, > relink your program > > > (process:24378): GLib-ERROR **: Creating pipes for GWakeup: Too many > open files That's a side effect of the libinotify kqueue backend. You need to bump your file descriptors limit. -- Antoine
Re: [man ksh] missing keystroke for delete-char-forward
On Tue, Mar 24, 2015 at 06:29:50PM +0100, dam...@thiriet.web4me.fr wrote: > Hello, > > > man ksh lacks keystroke for delete-char-forward. > Here is a diff I made with current man page > (the dirty way: copied man page from the web, since > I am using -release) > > --- man_ksh Tue Mar 24 13:11:50 2015 > +++ man_ksh_corrige Tue Mar 24 18:06:05 2015 > @@ -1916,7 +1916,7 @@ > delete-char-backward: [n] ERASE, ^?, ^H >Deletes n characters before the cursor. > > - delete-char-forward: [n] > + delete-char-forward: [n] ^D >Deletes n characters after the cursor. > > delete-word-backward: [n] ERASE, ^[^?, ^[^H, ^[h > i've asked around, since i didn;t understand this either. it seems that delete-char-forward is not bound by default. ^D is bound to eot-or-delete, which correctly describes the behaviour (eot on empty line, otherwise behave like delete-char-forward). jmc > I hope this is the good way to proceed, this is my first diff ever. > Please note that there may be other keystrokes than ^D I am not > aware of (delete-char-backword is bound to three keystrokes). > > > Damien Thiriet
ownclould client mirall crashes repeatedly
Client mirall ran fine but I had to pause it. It would not cleanly stop running. I am running this app in kde4. Pop-up window asked if I wanted to terminate this application and I did so. Now, whenever I try to run the application from the terminal I get the following: owncloud owncloud:/usr/lib/libstdc++.so.57.0: /usr/local/lib/libestdc++.so.16.0 : WARNING: symbol(_ZN11__gnu_debug17_S_debug_messagesE) size mismatch, relink your program (process:24378): GLib-ERROR **: Creating pipes for GWakeup: Too many open files Trace/BPT trap (core dumped) I am a new user but would be willing to give more information if someone wants to help me debug this problem. Thank you. -- Regards, Donald Cooley
Manux - all processes chrooted -> Can it be done on OpenBSD?
Hello, I recently seen an OS: http://www.manux.info/en/ "The userspace architecture is unlike any other, with all processes chrooted (yes, even /bin/true). And programs that can launch others require no access to their chroot for this;" Can this be done on OpenBSD too? Or the installer size would be much larger?
Re: The best way to renice cron on boot?
On 2015-03-22 Sun 17:54 PM |, Kevin Chadwick wrote: > So I could renice the processes cron runs but decided to renice the > whole of cron instead/as well. > /etc/login.conf? (guessing): ... .. . # # Override resource limits for certain daemons started by rc.d(8) # bgpd:\ :openfiles-cur=512:\ :tc=daemon: cron:\ :priority=15:\ :tc=daemon:
Re: mac mini -> virtualbox -> openbsd amd64?
2015-03-24 22:17 GMT+05:30 Jeremiah Ford : > On 2015-03-24 11:48, frantisek holop wrote: > >> has anybody tried running openbsd in virtualbox on a >> mac mini? is X11, etc feasable? >> >> -f >> > > Never on a macmini, but I have on imac and many others. If you are > seeking a virtual environment, I do not recommend using OpenBSD as the > guest. Aside from the obvious security concerns, You will end up with > frustrations such as mouse troubles and no ability to resize screen running > X env. > Is this the same reason as why XVFB can't change [virtual] screen resolution too? xvfb run with the -xrandr argument e.g. "Xvfb -screen 0 1600x1200x32 +extension RANDR" , and trying to change screen resolution using xrandr e.g. "xrandr -display :0 --size 1280x1024" and hooked in graphically with x11vnc. It seems that the XRANDR extension is magically absent because the xrandr tool terminates with error "RandR extension missing"?!
[man ksh] missing keystroke for delete-char-forward
Hello, man ksh lacks keystroke for delete-char-forward. Here is a diff I made with current man page (the dirty way: copied man page from the web, since I am using -release) --- man_ksh Tue Mar 24 13:11:50 2015 +++ man_ksh_corrige Tue Mar 24 18:06:05 2015 @@ -1916,7 +1916,7 @@ delete-char-backward: [n] ERASE, ^?, ^H Deletes n characters before the cursor. - delete-char-forward: [n] + delete-char-forward: [n] ^D Deletes n characters after the cursor. delete-word-backward: [n] ERASE, ^[^?, ^[^H, ^[h I hope this is the good way to proceed, this is my first diff ever. Please note that there may be other keystrokes than ^D I am not aware of (delete-char-backword is bound to three keystrokes). Damien Thiriet
Re: bug in rdomain together with kernel pppoe
hi Am 24.03.2015 um 08:20 schrieb Claudio Jeker: On Tue, Mar 24, 2015 at 05:41:11AM +0100, Holger Glaess wrote: hi i play a little bit with rdomain if add my pppoe device to rdomain 1 # cat /etc/hostname.pppoe0 rdomain 1 rtlabel netcologne inet6 autoconf inet 0.0.0.0 255.255.255.255 NONE \ pppoedev msk0 authproto pap \ authname 'foo@bar' authkey 'xyz' up dest 0.0.0.1 !/sbin/route -T 1 add default -ifp pppoe0 0.0.0.1 !/sbin/route -T 1 add -inet6 default -ifp pppoe0 ::0.0.0.1 the pf lines pass in on $lan_if from any to $myserver rtable 1 pass in on rdomain 1 proto tcp from to ($nc_pppoe:0) port 22 rdr-to 192.168.131.250 port 22 rtable 0 match out on $nc_pppoe nat-to ($nc_pppoe:0) so , all works fine but if i connect to the system by ssh and do , for example , an tcpdump -n- r /var/log/pflog the whole machine crash to an kernel panik. Please include the ddb output of show panic and tr so that we have an idea where to start looking. this are the last line on the monitor UHCI0-3 Host controller halted UHCI0-3 host controller proccess error uvm_fault(0xd0bb3f60, 0x0, 0, 1) ->e kernel:page fault trap,code=0 stopped at trap+0x21: movl 0x2c(%edx),%edi after enter "trace" trap (number -1) uvm_fault(0xd0bb3f60, 0x0, 0, 1) ->e kernel:page fault trap,code=0 faulted in DDB; continuing if you need more , output please let me know and how to generate. Holger this is reproducable and , looks like , just when you have an inbound connection ( rdr ) . the kernel-pppoe works well inside the rdomain he discover properly the ip4 and the ip6 address.
Re: mac mini -> virtualbox -> openbsd amd64?
On 2015-03-24 11:48, frantisek holop wrote: has anybody tried running openbsd in virtualbox on a mac mini? is X11, etc feasable? -f Never on a macmini, but I have on imac and many others. If you are seeking a virtual environment, I do not recommend using OpenBSD as the guest. Aside from the obvious security concerns, You will end up with frustrations such as mouse troubles and no ability to resize screen running X env. However, if you are determined for a virtual OpenBSD guest, use vmware fusion. Virtual box is good with Linux,Solaris,Illumos style guests. -JF
mac mini -> virtualbox -> openbsd amd64?
has anybody tried running openbsd in virtualbox on a mac mini? is X11, etc feasable? -f -- if "r" is reverse, how come "d" is forward?
relayd ssl forward proxy
Hi, I need to set-up a forward proxy using relayd with ssl. My /etc/relayd.conf: prefork 1 http protocol httpfilter {        return error        pass        match label "Prohibited!"        block url "social.network.example.com/"        # New configuration directives for SSL Interception        ssl ca key "/etc/ssl/private/ca.key" password "Pizda123"        ssl ca cert "/etc/ssl/ca.crt" } relay sslinspect {        listen on 127.0.0.1 port 3128 ssl        protocol httpfilter        forward with ssl to destination } The password is correct (btw, wouldn't be useful a password-less option?). And in my /etc/pf.conf I have: # Divert incoming HTTPS traffic to relayd pass in on $ext_if inet proto tcp to port 443 divert-to localhost port 3128 Certificate and key were generated using command (with above password): $ sudo openssl req -x509 -days 365 -newkey rsa:2048 -keyout /etc/ssl/private/ca.key -out /etc/ssl/ca.crt however when executing : $ sudo /usr/sbin/relayd -vv -d -f /etc/relayd.conf startup /etc/relayd.conf:39: cannot load certificates for relay sslinspect no actions, nothing to do hce exiting, pid 3636 ca exiting, pid 30905 pfe exiting, pid 31337 relay exiting, pid 11039 System: 5.6/amd64 Why the certificate cannot be loaded? Thanks, /Bogdan
Re: USB hdd not in dmesg
Hi. The patch was done. Here is the dmesg, after the device was unplugged/plugged. OpenBSD 5.7-current (GENERIC) #0: Tue Mar 24 08:48:05 SAST 2015 root@hendrik.voxtelecom.internal:/usr/src/sys/arch/amd64/compile/GENERIC real mem = 8471175168 (8078MB) avail mem = 8210534400 (7830MB) mpath0 at root scsibus0 at mpath0: 256 targets mainbus0 at root bios0 at mainbus0: SMBIOS rev. 2.7 @ 0xe6920 (79 entries) bios0: vendor Dell Inc. version "A07" date 05/17/2012 bios0: Dell Inc. Inspiron 5520 acpi0 at bios0: rev 2 acpi0: sleep states S0 S3 S4 S5 acpi0: tables DSDT FACP SLIC UEFI ASF! HPET APIC MCFG SSDT BOOT ASPT FPDT SSDT SSDT SSDT acpi0: wakeup devices P0P1(S0) EHC1(S0) XHC_(S0) RP01(S3) RP02(S0) PEG0(S4) PEGP(S4) PEGA(S4) PEG1(S4) PEG2(S4) PEG3(S4) LID0(S3) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpihpet0 at acpi0: 14318179 Hz acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: Intel(R) Core(TM) i7-3612QM CPU @ 2.10GHz, 2095.59 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX ,EST,TM2,SSSE3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,POPCNT,DEADLINE,AES,X SAVE,AVX,F16C,RDRAND,NXE,LONG,LAHF,PERF,ITSC,FSGSBASE,SMEP,ERMS cpu0: 256KB 64b/line 8-way L2 cache cpu0: smt 0, core 0, package 0 mtrr: Pentium Pro MTRR support, 10 var ranges, 88 fixed ranges cpu0: apic clock running at 99MHz cpu at mainbus0: not configured cpu at mainbus0: not configured cpu at mainbus0: not configured cpu at mainbus0: not configured cpu at mainbus0: not configured cpu at mainbus0: not configured cpu at mainbus0: not configured ioapic0 at mainbus0: apid 0 pa 0xfec0, version 20, 24 pins acpimcfg0 at acpi0 addr 0xe000, bus 0-255 acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus -1 (P0P1) acpiprt2 at acpi0: bus 7 (RP01) acpiprt3 at acpi0: bus 8 (RP02) acpiprt4 at acpi0: bus 1 (PEG0) acpiprt5 at acpi0: bus -1 (PEG1) acpiprt6 at acpi0: bus -1 (PEG2) acpiprt7 at acpi0: bus -1 (PEG3) acpiec0 at acpi0 acpicpu0 at acpi0: C2, C1, PSS acpipwrres0 at acpi0: FN00, resource for FAN0 acpipwrres1 at acpi0: FN01, resource for FAN1 acpipwrres2 at acpi0: FN02, resource for FAN2 acpipwrres3 at acpi0: FN03, resource for FAN3 acpipwrres4 at acpi0: FN04, resource for FAN4 acpitz0 at acpi0: critical temperature is 106 degC acpitz1 at acpi0: critical temperature is 106 degC acpibtn0 at acpi0: PWRB acpibat0 at acpi0: BAT1 model "PABAS0241231" serial 41167 type Li-Ion oem "Simplo" acpiac0 at acpi0: AC unit online acpibtn1 at acpi0: LID0 acpivideo0 at acpi0: VGA_ acpivout0 at acpivideo0: LCD_ acpivideo1 at acpi0: GFX0 acpivout1 at acpivideo1: DD02 ipmi: unknown register spacing ipmi at mainbus0 not configured cpu0: Enhanced SpeedStep 2095 MHz: speeds: 2101, 2100, 2000, 1900, 1800, 1700, 1600, 1500, 1400, 1300, 1200 MHz pci0 at mainbus0 bus 0 pchb0 at pci0 dev 0 function 0 "Intel Core 3G Host" rev 0x09 ppb0 at pci0 dev 1 function 0 "Intel Core 3G PCIE" rev 0x09: msi pci1 at ppb0 bus 1 1:0:0: mem address conflict 0xfffe/0x2 radeondrm0 at pci1 dev 0 function 0 "ATI Radeon HD 7670M" rev 0x00 drm1 at radeondrm0 radeondrm0: msi vga1 at pci0 dev 2 function 0 "Intel HD Graphics 4000" rev 0x09 intagp at vga1 not configured inteldrm0 at vga1 drm0 at inteldrm0 inteldrm0: 1920x1080 wsdisplay0 at vga1 mux 1: console (std, vt100 emulation) wsdisplay0: screen 1-5 added (std, vt100 emulation) xhci0 at pci0 dev 20 function 0 "Intel 7 Series xHCI" rev 0x04: msi usb0 at xhci0: USB revision 3.0 uhub0 at usb0 "Intel xHCI root hub" rev 3.00/1.00 addr 1 uhub0: 8 ports with 8 removable, self powered "Intel 7 Series MEI" rev 0x04 at pci0 dev 22 function 0 not configured ehci0 at pci0 dev 26 function 0 "Intel 7 Series USB" rev 0x04: apic 0 int 16 usb1 at ehci0: USB revision 2.0 uhub1 at usb1 "Intel EHCI root hub" rev 2.00/1.00 addr 1 uhub1: 2 ports with 2 removable, self powered azalia0 at pci0 dev 27 function 0 "Intel 7 Series HD Audio" rev 0x04: msi azalia0: codecs: Conexant/0x506e, Intel/0x2806, using Conexant/0x506e audio0 at azalia0 ppb1 at pci0 dev 28 function 0 "Intel 7 Series PCIE" rev 0xc4: msi pci2 at ppb1 bus 7 re0 at pci2 dev 0 function 0 "Realtek 8101E" rev 0x05: RTL8105E (0x4080), msi, address d4:be:d9:39:94:b3 rlphy0 at re0 phy 7: RTL8201E 10/100 PHY, rev. 2 ppb2 at pci0 dev 28 function 1 "Intel 7 Series PCIE" rev 0xc4: msi pci3 at ppb2 bus 8 iwn0 at pci3 dev 0 function 0 "Intel Centrino Wireless-N 2230" rev 0xc4: msi, MIMO 2T2R, BGN, address 68:5d:43:60:b9:63 ehci1 at pci0 dev 29 function 0 "Intel 7 Series USB" rev 0x04: apic 0 int 23 usb2 at ehci1: USB revision 2.0 uhub2 at usb2 "Intel EHCI root hub" rev 2.00/1.00 addr 1 uhub2: 2 ports with 2 removable, self powered pcib0 at pci0 dev 31 function 0 "Intel HM77 LPC" rev 0x04 ahci0 at pci0 dev 31 function 2 "Intel 7 Series AHCI" rev 0x04: msi, AHCI 1.3 ahci0: port 0: 6.0Gb/s ahci0: port 2: 1.5Gb/s scsibus1 at ahci0: 32 targets sd0 at scsibus1 t
Re: Software for time management & calendar
On 24/03/15 02:01, Stuart Henderson wrote: On 2015-03-22, Lampshade wrote: What software you use for this purposes? CalenGoo, and vi. I really love to use 'owncloud' for that, thanks to the package maintainer. See: https://github.com/reyk/httpd/wiki/Running-ownCloud-with-httpd-on-OpenBSD Bernd
Re: relayd crashes often
On Mon, Mar 23, 2015 at 11:54:41PM -0400, Yonas Yanfa wrote: > Hi, > > I'm running relayd/OpenBSD 5.6-stable on a KVM virtual machine. relayd > always crashes within a few hours of restarting it, but works properly > before that. I guess you are talking about reloading relayd (as in relayctl reload)... > When relayd stops working, sometimes the relayd process is up but `relayctl > show summary` says that /var/run/relayd.sock doesn't exist. Other times none > of the relayd processes are running. > I hit similar issues and came up with the following diff against -current. It may apply to 5.6 but did not test that at all. I'm not 100% sure about the ca.c change since OpenSSL is a black box. -- :wq Claudio Index: ca.c === RCS file: /cvs/src/usr.sbin/relayd/ca.c,v retrieving revision 1.12 diff -u -p -r1.12 ca.c --- ca.c22 Jan 2015 17:42:09 - 1.12 +++ ca.c23 Mar 2015 12:56:24 - @@ -417,11 +417,14 @@ rsae_keygen(RSA *rsa, int bits, BIGNUM * void ca_engine_init(struct relayd *x_env) { - ENGINE *e; + ENGINE *e = NULL; const char *errstr, *name; if (env == NULL) env = x_env; + + if (rsa_default != NULL) + return; if ((e = ENGINE_get_default_RSA()) == NULL) { if ((e = ENGINE_new()) == NULL) { Index: config.c === RCS file: /cvs/src/usr.sbin/relayd/config.c,v retrieving revision 1.24 diff -u -p -r1.24 config.c --- config.c22 Jan 2015 17:42:09 - 1.24 +++ config.c23 Mar 2015 13:12:19 - @@ -142,7 +142,7 @@ config_purge(struct relayd *env, u_int r if (what & CONFIG_TABLES && env->sc_tables != NULL) { while ((table = TAILQ_FIRST(env->sc_tables)) != NULL) - purge_table(env->sc_tables, table); + purge_table(env, env->sc_tables, table); env->sc_tablecount = 0; } if (what & CONFIG_RDRS && env->sc_rdrs != NULL) { Index: parse.y === RCS file: /cvs/src/usr.sbin/relayd/parse.y,v retrieving revision 1.203 diff -u -p -r1.203 parse.y --- parse.y 8 Feb 2015 04:50:32 - 1.203 +++ parse.y 23 Mar 2015 13:11:47 - @@ -531,12 +531,12 @@ rdroptsl : forwardmode TO tablespec inte if ($3->conf.check == CHECK_NOCHECK) { yyerror("table %s has no check", $3->conf.name); - purge_table(conf->sc_tables, $3); + purge_table(conf, conf->sc_tables, $3); YYERROR; } if (rdr->backup) { yyerror("only one backup table is allowed"); - purge_table(conf->sc_tables, $3); + purge_table(conf, conf->sc_tables, $3); YYERROR; } if (rdr->table) { @@ -1930,7 +1930,7 @@ routeoptsl: ROUTE address '/' NUMBER { if (router->rt_gwtable) { yyerror("router %s table already specified", router->rt_conf.name); - purge_table(conf->sc_tables, $3); + purge_table(conf, conf->sc_tables, $3); YYERROR; } router->rt_gwtable = $3; @@ -3091,7 +3091,7 @@ table_inherit(struct table *tb) goto fail; } if ((oldtb = table_findbyconf(conf, tb)) != NULL) { - purge_table(NULL, tb); + purge_table(conf, NULL, tb); return (oldtb); } @@ -3134,7 +3134,7 @@ table_inherit(struct table *tb) return (tb); fail: - purge_table(NULL, tb); + purge_table(conf, NULL, tb); return (NULL); } Index: relayd.c === RCS file: /cvs/src/usr.sbin/relayd/relayd.c,v retrieving revision 1.138 diff -u -p -r1.138 relayd.c --- relayd.c22 Jan 2015 17:42:09 - 1.138 +++ relayd.c23 Mar 2015 13:10:07 - @@ -546,12 +546,13 @@ parent_dispatch_ca(int fd, struct privse } void -purge_table(struct tablelist *head, struct table *table) +purge_table(struct relayd *conf, struct tablelist *head, struct table *table) { struct host *host; while ((host = TAILQ_FIRST(&table->hosts)) != NULL) { TAILQ_REMOVE(&table->hosts, host, entry); + TAILQ_REMOVE(&conf->sc_hosts, host, globalentry); if (event_initialized(&host->cte.ev)) { event_del(&host->cte.ev);
Re: bug in rdomain together with kernel pppoe
On Tue, Mar 24, 2015 at 05:41:11AM +0100, Holger Glaess wrote: > hi > > i play a little bit with rdomain > > if add my pppoe device to rdomain 1 > > # cat /etc/hostname.pppoe0 > rdomain 1 > rtlabel netcologne > inet6 autoconf > inet 0.0.0.0 255.255.255.255 NONE \ > pppoedev msk0 authproto pap \ > authname 'foo@bar' authkey 'xyz' up > dest 0.0.0.1 > !/sbin/route -T 1 add default -ifp pppoe0 0.0.0.1 > !/sbin/route -T 1 add -inet6 default -ifp pppoe0 ::0.0.0.1 > > > > the pf lines > > pass in on $lan_if from any to $myserver rtable 1 > pass in on rdomain 1 proto tcp from to ($nc_pppoe:0) port 22 > rdr-to 192.168.131.250 port 22 rtable 0 > match out on $nc_pppoe nat-to ($nc_pppoe:0) > > > > so , all works fine but if i connect to the system by ssh and do , for > example , an tcpdump -n- r /var/log/pflog > the whole machine crash to an kernel panik. Please include the ddb output of show panic and tr so that we have an idea where to start looking. > this is reproducable and , looks like , just when you have an inbound > connection ( rdr ) . > > > the kernel-pppoe works well inside the rdomain he discover properly the ip4 > and the ip6 address. > -- :wq Claudio