Re: relayd, rsae_send_imsg: privenc poll timeout

[Allan Streib]

On Tue, Sep 14, 2021, at 5:09 PM, Allan Streib wrote:
> Seen a few of these in my logs (OpenBSD 6.9 release amd64)
> 
> Sep 14 02:12:05  relayd[78491]: rsae_send_imsg: privenc poll timeout, 
> keyop #946
> Sep 14 02:12:06  relayd[78491]: relay_dispatch_ca: privenc result 
> after timeout
> 
> The number after "keyop" varies.

Seeing a few more of these, the system is lightly loaded but it's a hosted KVM 
"slice"
so perhaps the host system is oversubscribed?

The browser (Firefox 88) gives the message:

Secure Connection Failed

An error occurred during a connection to www..com. Peer reports it
experienced an internal error.

Error code: SSL_ERROR_INTERNAL_ERROR_ALERT

The page you are trying to view cannot be shown because the authenticity of
the received data could not be verified.  Please contact the website owners
to inform them of this problem.

I thought about trying to increase RELAY_TLS_PRIV_TIMEOUT but it looks like 
that value has been unchanged for years so maybe not a good idea?

Allan

Re: Swap disklabel partition location?

[Stuart Henderson]

On 2021-09-15, Paul Pace  wrote:
> I am wondering if there is some requirement to have the swap disklabel 
> partition always as partition b? I have a VPS where I might prefer to 
> put swap at the end so when the VPS RAM and storage is increased, I can 
> increase swap size, as needed, but I can't figure out why this might be 
> a bad idea.

If you increase RAM, there's likely less need for swap space, not more.