Re: how to submit bug report regarding pf queueing?

[Stuart Henderson]

On 2016-03-09, Mihai Popescu  wrote:
>> -
>> queue download on $if_int bandwidth 10M max 10M
>> queue ssh  parent download bandwidth 1M
>> queue web  parent download bandwidth 8M
>> queue bulk parent download bandwidth 1M default
>>
>> match to   port sshset queue ssh
>> match from port sshset queue ssh
>> match to   port { 80 443 } set queue web
>> match from port { 80 443 } set queue web
>> -
>
> Pardon me, but are you assigning by this both in and out ssh packets
> to the same ssh queue?

'set queue' uses a queue *name*. You can have queues on more than one
interface using the same name. This is useful because the queue name is
used on the state table entry; packets on any interface matching the
state will use a queue of that name if it exists on the outgoing
interface.

Understanding this is key to succesfully working with queues.

usb_interrupt_write: can't open /dev/ugen1.01 for bulk read: Device not configured

[Claus Assmann]

I have this USB ANT+ stick
"Dynastream Innovations ANT USBStick2" rev 2.00/1.00 addr 2
which works "ok" under OpenBSD 5.2 in conjunction with libusb-0.1.12
in Golden Cheetah on a Dell laptop.
Unfortunately that laptop hangs after 5-25 minutes of using this
(most likely a HW problem: the fan doesn't seem to run fast enough?),
so I installed OpenBSD 5.8 on a similar Dell laptop (D505).
However, I can't compile libusb-0.1.12 there (several conflicts with
/usr/include/dev/usb/usb.h), so I tried the packages
libusb-compat-0.1.5p0 and libusb1-1.0.9p9.
Even though the program recognizes the USB stick, it isn't able to actually
use it. It produces errors like this:

usb_set_altinterface Error:  could not set alt intf 0/0: Invalid argument
usb_interrupt_write Error writing [ -6 ]:  can't open /dev/ugen1.01 for bulk 
read: Device not configured
usb_interrupt_write Error writing [ -6 ]:  can't open /dev/ugen1.01 for bulk 
read: Device not configured
ANT device reset was not acknowledged !...try again

last 3 entries repeated severat times, then:

** CLOSING CHANNEL 0 **
usb_interrupt_write Error writing [ -6 ]:  can't open /dev/ugen1.01 for bulk 
read: Device not configured
usb_interrupt_write Error writing [ -6 ]:  can't open /dev/ugen1.01 for bulk 
read: Device not configured
lost info for channel 0
** OPENING CHANNEL 0 **
0 type= 1 device type= 120 freq= 57
usb_interrupt_write Error writing [ -6 ]:  can't open /dev/ugen1.01 for bulk 
read: Device not configured
usb_interrupt_write Error writing [ -6 ]:  can't open /dev/ugen1.01 for bulk 
read: Device not configured
0 assign channel type RX

and so on...

I have two more computers with OpenBSD, but both of them crash
when I insert any USB stick, so I'm basically out of HW for testing.

I could "downgrade" the OpenBSD 5.8 box to something older (on which
libusb-0.1.12 can be compiled?) but before I do that I would like
to know whether there are "better" approaches to resolve the problem.
For example, is this some known problem that might be fixed in a
recent(?) snapshot?

PS: dmesg for the system:
OpenBSD 5.8 (GENERIC) #1066: Sun Aug 16 02:33:00 MDT 2015
dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel(R) Pentium(R) M processor 1.60GHz ("GenuineIntel" 686-class) 1.60 
GHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,TM,PBE,EST,TM2,PERF
real mem  = 1071833088 (1022MB)
avail mem = 1038008320 (989MB)
mpath0 at root
scsibus0 at mpath0: 256 targets
mainbus0 at root
bios0 at mainbus0: date 01/28/05, BIOS32 rev. 0 @ 0xffe90, SMBIOS rev. 2.3 @ 
0xf8ce0 (61 entries)
bios0: vendor Dell Inc. version "A08" date 01/28/2005
bios0: Dell Inc. Latitude D505
acpi0 at bios0: rev 0
acpi0: sleep states S0 S1 S3 S4 S5
acpi0: tables DSDT FACP
acpi0: wakeup devices LID_(S3) PBTN(S4) PCI0(S3) USB0(S1) CH1_(S1) USB1(S1) 
USB2(S1) USB3(S1) MODM(S3) PCIE(S4)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 1 (PCIE)
acpicpu0 at acpi0
C1: unknown FFH vendor 8: !C3(100@185 io@0x816), !C3(250@85 io@0x815), 
!C2(500@1 io@0x814), C1(@1 halt!), PSS
acpitz0 at acpi0: critical temperature is 101 degC
acpiac0 at acpi0: AC unit online
acpibat0 at acpi0: BAT0 model "DELL Y13385" serial 88 type LION oem "Sanyo"
acpibat1 at acpi0: BAT1 not present
acpibtn0 at acpi0: LID_
acpibtn1 at acpi0: PBTN
acpibtn2 at acpi0: SBTN
acpidock0 at acpi0: GDCK not docked (0)
acpivideo0 at acpi0: VID_
acpivideo1 at acpi0: VID2
bios0: ROM list: 0xc/0xd800! 0xcd800/0x800 0xce000/0x800 0xce800/0x800 
0xcf000/0x800 0xcf800/0x800
cpu0 at mainbus0: (uniprocessor)
mtrr: Pentium Pro MTRR support, 8 var ranges, 88 fixed ranges
cpu0: Enhanced SpeedStep 1599 MHz: speeds: 1600, 1600, 1600, 1400, 1200, 1000, 
800, 600 MHz
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 "Intel 82855GM Host" rev 0x02
"Intel 82855GM Memory" rev 0x02 at pci0 dev 0 function 1 not configured
"Intel 82855GM Config" rev 0x02 at pci0 dev 0 function 3 not configured
vga1 at pci0 dev 2 function 0 "Intel 82855GM Video" rev 0x02
intagp0 at vga1
agp0 at intagp0: aperture at 0xf000, size 0x800
inteldrm0 at vga1
drm0 at inteldrm0
composite sync not supported
composite sync not supported
drm: fixme: max PWM is zero
wrong connector dpms state
active connector not linked to encoder
encoder->connectors_active not set
encoder not enabled
WARNING !encoder->base.crtc failed at 
../../../../dev/pci/drm/i915/intel_display.c:3887
inteldrm0: 1400x1050
wsdisplay0 at vga1 mux 1: console (std, vt100 emulation)
wsdisplay0: screen 1-5 added (std, vt100 emulation)
"Intel 82855GM Video" rev 0x02 at pci0 dev 2 function 1 not configured
uhci0 at pci0 dev 29 function 0 "Intel 82801DB USB" rev 0x01: irq 11
uhci1 at pci0 dev 29 function 1 "Intel 82801DB USB" rev 0x01: irq 11
uhci2 at pci0 dev 29 function 2 "Intel 82801DB USB" rev 0x01: irq 11
ehci0 at pci0 dev 29 function 7 "Intel 82801DB USB" rev 0x01: irq 11
usb0 at 

Re: /etc/hosts during install

[Robert Peichaer]

On Sat, Mar 12, 2016 at 05:49:32PM +0100, hans wrote:
> On Mar 12 16:36:37, rob...@peichaer.org wrote:
> > On Sat, Mar 12, 2016 at 04:57:04PM +0100, hans wrote:
> > > Has the attitude towards /etc/hosts changed again?
> > > After a fresh install of current/i386,
> > > 
> > >   127.0.0.1   localhost
> > >   ::1 localhost
> > >   192.168.22.4www.stare.cz www
> > > 
> > > The first two I would expect.
> > > The last one was assigned to me via DHCP during install;
> > > I am changing the network configuration now (to another,
> > > static IP address), and removing it from /etc/hosts;
> > > but it's easy to have a stale DHCP address
> > > assigned during install left in /etc/hosts.
> > > 
> > > I believe it was discussed on the list before,
> > > and the decision was not to do this.
> > > Has the rationale changed?
> > > 
> > >   Jan
> > 
> > You're probably referring to this commit from 2 years ago and since then
> > nothing changed with respect to adding static entries to /etc/hosts.
> > 
> >revision 1.682
> >date: 2013/07/21 22:06:51;  author: halex;  state: Exp;  lines: +1 -6;
> >stop adding static entries to /etc/hosts for dynamic ip addresses
> > 
> >"do it NOW" deraadt@
> 
> Yes, that's what I was referring to; thanks.
> 
> This is a fresh install, and I sure didn't put it there myself.
> How could this entry ended up in my /etc/hosts ?
> 
> The file /etc/hosts is in the Attic since Fri Sep 5 07:22:29 2014 
> http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/etc/Attic/hosts
> The remove message says
> 
>   Make the installer create the /etc/hosts template.
>   While here, re-add a missing 'echo' from install.sh.
> 
> Could it be where it got back?
> 
>   Jan

No, I don't think so. The corresponding change in install.sh from ajacoutot@
(rev. 1.258) just writes the two localhost entries to the hosts file instead
of using a static hosts template file containing these two localhost entries.

I just did a test install myself to verify the current installer behaviour.
Having one interface and using 'dhcp' to configure it results in the two
localhost lines and nothing more. I used the latest snapshot for that.

Re: Watchdog issue

[Stuart Henderson]

On 2016-03-11, Sjöholm Per-Olov  wrote:
> Hi
>
> Yes I after upgrade had a watchdog issue on the em driver and created a lot of
> patch diffs of this from cvs without getting rid of the issue. I also tried
> 5.8 and a lot of em diffs after 5.8. But this problem lead to the fact I
> reverted two firewalls to 5.4.
>
> Now… I could see at
> http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys/dev/pci/if_em.c (rev 1.315)
> that there was a statement of "there's a watchdog issue that will be worked on
> in tree after this change.”
>
> Now I can see 5.9 tagged (rev 1.330) in cvs but no info on any version after
> 1.315 about that this issue is fixed.
>
>
> Anyone that can give status? And if someone is working on it and need test
> help, please let me know...

See if_em.c r1.328, if_em.h r1.71

Re: /etc/hosts during install

[hans]

On Mar 12 17:25:45, rob...@peichaer.org wrote:
> On Sat, Mar 12, 2016 at 05:49:32PM +0100, hans wrote:
> > On Mar 12 16:36:37, rob...@peichaer.org wrote:
> > > On Sat, Mar 12, 2016 at 04:57:04PM +0100, hans wrote:
> > > > Has the attitude towards /etc/hosts changed again?
> > > > After a fresh install of current/i386,
> > > > 
> > > > 127.0.0.1   localhost
> > > > ::1 localhost
> > > > 192.168.22.4www.stare.cz www
> > > > 
> > > > The first two I would expect.
> > > > The last one was assigned to me via DHCP during install;
> > > > I am changing the network configuration now (to another,
> > > > static IP address), and removing it from /etc/hosts;
> > > > but it's easy to have a stale DHCP address
> > > > assigned during install left in /etc/hosts.
> > > > 
> > > > I believe it was discussed on the list before,
> > > > and the decision was not to do this.
> > > > Has the rationale changed?
> > > > 
> > > > Jan
> > > 
> > > You're probably referring to this commit from 2 years ago and since then
> > > nothing changed with respect to adding static entries to /etc/hosts.
> > > 
> > >revision 1.682
> > >date: 2013/07/21 22:06:51;  author: halex;  state: Exp;  lines: +1 -6;
> > >stop adding static entries to /etc/hosts for dynamic ip addresses
> > > 
> > >"do it NOW" deraadt@
> > 
> > Yes, that's what I was referring to; thanks.
> > 
> > This is a fresh install, and I sure didn't put it there myself.
> > How could this entry ended up in my /etc/hosts ?
> > 
> > The file /etc/hosts is in the Attic since Fri Sep 5 07:22:29 2014 
> > http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/etc/Attic/hosts
> > The remove message says
> > 
> > Make the installer create the /etc/hosts template.
> > While here, re-add a missing 'echo' from install.sh.
> > 
> > Could it be where it got back?
> > 
> > Jan
> 
> No, I don't think so. The corresponding change in install.sh from ajacoutot@
> (rev. 1.258) just writes the two localhost entries to the hosts file instead
> of using a static hosts template file containing these two localhost entries.
> 
> I just did a test install myself to verify the current installer behaviour.
> Having one interface and using 'dhcp' to configure it results in the two
> localhost lines and nothing more. I used the latest snapshot for that.

I am sorry - I was wrong in the original descripton.
The address and name was installed _manually_ during the install
(as opposed to dhcp).

Is it desirable to have it in /etc/hosts in that case?

Jan

Re: /etc/hosts during install

[hans]

On Mar 12 16:36:37, rob...@peichaer.org wrote:
> On Sat, Mar 12, 2016 at 04:57:04PM +0100, hans wrote:
> > Has the attitude towards /etc/hosts changed again?
> > After a fresh install of current/i386,
> > 
> > 127.0.0.1   localhost
> > ::1 localhost
> > 192.168.22.4www.stare.cz www
> > 
> > The first two I would expect.
> > The last one was assigned to me via DHCP during install;
> > I am changing the network configuration now (to another,
> > static IP address), and removing it from /etc/hosts;
> > but it's easy to have a stale DHCP address
> > assigned during install left in /etc/hosts.
> > 
> > I believe it was discussed on the list before,
> > and the decision was not to do this.
> > Has the rationale changed?
> > 
> > Jan
> 
> You're probably referring to this commit from 2 years ago and since then
> nothing changed with respect to adding static entries to /etc/hosts.
> 
>revision 1.682
>date: 2013/07/21 22:06:51;  author: halex;  state: Exp;  lines: +1 -6;
>stop adding static entries to /etc/hosts for dynamic ip addresses
> 
>"do it NOW" deraadt@

Yes, that's what I was referring to; thanks.

This is a fresh install, and I sure didn't put it there myself.
How could this entry ended up in my /etc/hosts ?

The file /etc/hosts is in the Attic since Fri Sep 5 07:22:29 2014 
http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/etc/Attic/hosts
The remove message says

Make the installer create the /etc/hosts template.
While here, re-add a missing 'echo' from install.sh.

Could it be where it got back?

Jan

Re: /etc/hosts during install

[Robert Peichaer]

On Sat, Mar 12, 2016 at 04:57:04PM +0100, hans wrote:
> Has the attitude towards /etc/hosts changed again?
> After a fresh install of current/i386,
> 
>   127.0.0.1   localhost
>   ::1 localhost
>   192.168.22.4www.stare.cz www
> 
> The first two I would expect.
> The last one was assigned to me via DHCP during install;
> I am changing the network configuration now (to another,
> static IP address), and removing it from /etc/hosts;
> but it's easy to have a stale DHCP address
> assigned during install left in /etc/hosts.
> 
> I believe it was discussed on the list before,
> and the decision was not to do this.
> Has the rationale changed?
> 
>   Jan

You're probably referring to this commit from 2 years ago and since then
nothing changed with respect to adding static entries to /etc/hosts.

   revision 1.682
   date: 2013/07/21 22:06:51;  author: halex;  state: Exp;  lines: +1 -6;
   stop adding static entries to /etc/hosts for dynamic ip addresses

   "do it NOW" deraadt@

Re: how to mount encription volume

[freeunix]

Thanks for good messages!

Example A: Create encryption volume and decryption by bioctl
bioctl -c C -l /dev/sd0a softraid0

Example B: Create encryption volume and decryption by vnconfig
vnconfig -ck vnd0 /dev/sd0a

almost I use

Example C:
dd if=/dev/urandom of=.vnode bs=512M count=1
vnconfig -ck vnd0 .vnode
newfs vnd0c
mount /dev/vnd0c /mnt
umount /mnt
vnconfig -u vnd0

softraid encryption needs bioctl.
bioctl needs device name with disklabel.

Example D:
dd if=/dev/urandom of=.vnode.bio bs=512M count=1
vnconfig -ck vnd0 .vnode.bio #actually no needs encrytion
echo -n "a d\n0\n512M\nRAID\np\nw\nq" | disklabel -E vnd0

bioctl -c C -l vnd0d softraid0 #softraid0: CRYPTO volume attache as sd2
newfs /dev/rsd2c #it will be make other disklabel on sd2
dd if=/dev/zero of=/dev/sd2c bs=32k
echo -n "a e\n0\n256M\n4.2BSD\np\nw\nq" | disklabel -E sd2
echo -n "a i\n\n\nMSDOS\np\nw\nq" | disklabel -E sd2
newfs sd2e
newfs_msdos -F 32 sd2i
mount /dev/sd2e /mnt
mount_msdos /dev/sd2i /mnt2
umount /mnt2
umount /mnt
bioctl -d sd2

vnconfig -u vnd0

The OpenBSD "Full disk encryption" is actually no need tinking as Air.

And Any people (like a Rookie) didn't know how to solve the problems.
Who forget or confuse it. Need good suggestion.

in this case, I could get a good sugguestion.

Re: Small FW boxes for CORP use (was: T40E APU?)

[Brandon Vincent]

On Sat, Mar 12, 2016 at 8:19 AM, Patrick Dohman
 wrote:
> Superfluous access to sensor data & watch guard timers etc...

It's pretty useful in high availability enterprise environments. There
is no other good way to collect some of that sensor data.

Brandon Vincent

Re: Small FW boxes for CORP use (was: T40E APU?)

[Patrick Dohman]

The super micro IPMI/BMC is pretty genius

Superfluous access to sensor data & watch guard timers etc...

> On Mar 12, 2016, at 7:34 AM, torsten  wrote:
>
>> -Original Message-
>> From: owner-m...@openbsd.org [mailto:owner-m...@openbsd.org] On Behalf Of
> Josh
>> Grosse
>> Sent: 12 March 2016 13:22
>> To: misc@openbsd.org
>> Subject: Re: Small FW boxes for CORP use (was: T40E APU?)
>>
>> On Sat, Mar 12, 2016 at 10:34:16AM +, Kapfhammer, Stefan wrote:
>>> But how would you feed the CAT female jack out of the original
>>> pcengines enclosure? There are no further mounting holes in it.
>>
>> I was thinking of the Alix, where enclosures are not included.
>
> I like standard 1u low power equipment and prefer supermicro for it's
> linux/BSD support,
> This is no advertising for ebay but I usually get stuff like this
>
http://www.ebay.co.uk/itm/Supermicro-1U-Server-Xeon-X3430-2-4Ghz-Quad-Core-8
>
GB-RAM-Low-Power-R210-DL120-/291687112072?hash=item43e9e81d88:g:034AAOSwcwhV
> ON9U
> then add a dual port NIC, usually HP Intel and off I go.
> The benefit is the KVM, integrated HDD's and flexibility. MY gateways are
> proxies, vpn and http servers with port forwarding to internal workstation
> and servers after authentication for vnc, sql and other

/etc/hosts during install

[hans]

Has the attitude towards /etc/hosts changed again?
After a fresh install of current/i386,

127.0.0.1   localhost
::1 localhost
192.168.22.4www.stare.cz www

The first two I would expect.
The last one was assigned to me via DHCP during install;
I am changing the network configuration now (to another,
static IP address), and removing it from /etc/hosts;
but it's easy to have a stale DHCP address
assigned during install left in /etc/hosts.

I believe it was discussed on the list before,
and the decision was not to do this.
Has the rationale changed?

Jan

Re: Small FW boxes for CORP use (was: T40E APU?)

[torsten]

> -Original Message-
> From: owner-m...@openbsd.org [mailto:owner-m...@openbsd.org] On Behalf Of
Josh
> Grosse
> Sent: 12 March 2016 13:22
> To: misc@openbsd.org
> Subject: Re: Small FW boxes for CORP use (was: T40E APU?)
> 
> On Sat, Mar 12, 2016 at 10:34:16AM +, Kapfhammer, Stefan wrote:
> > But how would you feed the CAT female jack out of the original
> > pcengines enclosure? There are no further mounting holes in it.
> 
> I was thinking of the Alix, where enclosures are not included.

I like standard 1u low power equipment and prefer supermicro for it's
linux/BSD support,
This is no advertising for ebay but I usually get stuff like this
http://www.ebay.co.uk/itm/Supermicro-1U-Server-Xeon-X3430-2-4Ghz-Quad-Core-8
GB-RAM-Low-Power-R210-DL120-/291687112072?hash=item43e9e81d88:g:034AAOSwcwhV
ON9U
then add a dual port NIC, usually HP Intel and off I go.
The benefit is the KVM, integrated HDD's and flexibility. MY gateways are
proxies, vpn and http servers with port forwarding to internal workstation
and servers after authentication for vnc, sql and other   

Re: how to mount encription volume

[dan mclaughlin]

On Sat, 12 Mar 2016 12:19:59 + freeu...@ruggedinbox.com wrote:
> hi, I use the bioctl encryption on boot volume.
> 
> example A:
> fdisk -iy sd0
> echo -n "a a\n64\n\nRAID\np\nw\nq\n\n" |disklabel -E sd0
> bioctl -c C -l /dev/sd0a softraid0
> 
> then, OpenBSD detect sd1 and I install the OpenBSD on sd1a.
> It's OK. X and any process are running on these drive[call A:].
> 
> 
> I have problem. I tried mount this dirve[A:] on other OpenBSD machine.
> (other OpenBSD machine uses drive wd0a[call B:])
> 
> but, I can't mount the encrytion volume[A:].
> 
> example B:
> vnconfig -ck vnd0 /dev/sd0a
> Encryption key:[any words]
> vnconfig -l
> vnd0: covering /dev/sd0a on wd0a, inode [any number]
> mount /dev/vnd0a /mnt
> mount_ffs: /dev/vnd0a on /mnt: Device not configured
> 
> any ideas?
> 

softraid and vnconfig are completely separate systems. if you want to mount
the softraid, you need to use the bioctl command you used above (it's not
just for creation, it also configures it). check out bioctl(8) (check under
EXAMPLES), and the archives at https://marc.info/?l=openbsd-misc=1=2
(search "softraid crypto").

Re: Small FW boxes for CORP use (was: T40E APU?)

[Josh Grosse]

On Sat, Mar 12, 2016 at 10:34:16AM +, Kapfhammer, Stefan wrote:
> But how would you feed the CAT female jack out of the original
> pcengines enclosure? There are no further mounting holes in it.

I was thinking of the Alix, where enclosures are not included.

Re: how to mount encription volume

[Robert]

On Sat, 12 Mar 2016 12:19:59 +
freeu...@ruggedinbox.com wrote:
> hi, I use the bioctl encryption on boot volume.
It's called "softraid crypto".

> example A:
> bioctl -c C -l /dev/sd0a softraid0

> example B:
> vnconfig -ck vnd0 /dev/sd0a
This is a "vnode pseudo disk device", in this case with crypto.
This is not softraid.

Those two mechanisms are not compatible.

On machine B: you also need to do the "bioctl" command. Then you get sd1 (or 
similar), and that you can mount.

regards,
Robert

how to mount encription volume

[freeunix]

hi, I use the bioctl encryption on boot volume.

example A:
fdisk -iy sd0
echo -n "a a\n64\n\nRAID\np\nw\nq\n\n" |disklabel -E sd0
bioctl -c C -l /dev/sd0a softraid0

then, OpenBSD detect sd1 and I install the OpenBSD on sd1a.
It's OK. X and any process are running on these drive[call A:].


I have problem. I tried mount this dirve[A:] on other OpenBSD machine.
(other OpenBSD machine uses drive wd0a[call B:])

but, I can't mount the encrytion volume[A:].

example B:
vnconfig -ck vnd0 /dev/sd0a
Encryption key:[any words]
vnconfig -l
vnd0: covering /dev/sd0a on wd0a, inode [any number]
mount /dev/vnd0a /mnt
mount_ffs: /dev/vnd0a on /mnt: Device not configured

any ideas?