Re: pflow on PE router

2021-06-03 Thread Chris Cappuccio
Stuart Henderson [s...@spacehopper.org] wrote:
> 
> Oh watch out with sloppy. Keep an eye on your state table size.

Really? Wouldn't sloppy keep the state table smaller if anything since it's 
tracking less specifically?

Anyways I use sloppy across four boxes that run in parallel with pfsync. There 
could easily be 10,000 devices behind it at any given time. I keep my state 
table limit at 1,000,000. It's around 300,000 during this lighter traffic 
period today. I had to do sloppy after moving to several boxes in parallel, I 
didn't notice sloppy making any significant difference?

Chris



Re: pflow on PE router

2021-06-01 Thread Chris Cappuccio
Denis Fondras [open...@ledeuns.net] wrote:
> 
> "sloppy" seems to fix the issue. I will do more tests this week before 
> declaring
> victory :)
> 

If that really works, then there could be a problem with PF sequence number 
tracking. Can you develop a specific sequence of events to reproduce the 
failures?



Re: pflow on PE router

2021-05-28 Thread Chris Cappuccio
Denis Fondras [open...@ledeuns.net] wrote:
> Hello,
> 
> I used OpenBSD as a PE router on my network. The router is connected to an 
> IX, a
> transit and multiple peers with OpenBGPd.
> 
> Earlier this week, I enabled pflow(4) to track traffic usage.
> Unfortunately enabling pf(4) on a edge router does not seems like a good idea.
> Some peers called in to tell they notice multiple problems (ranging from what
> seems MTU problem to cut in lengthy TCP sessions), deactivating pf(4)
> instantaneously fixed the problem on their side, reactivating pf($) and the
> problems are back.
> 
> I tried to push up the state table (I reached 300k states), to no avail.
> 
> Do you know what are the "right settings" to have pflow(4) enabled on PE 
> router
> ?

Pflow requires pf to be enabled to create states otherwise there is nothing to
export. You could use a different flow generator tool (there is at least one
in ports) that will watch the traffic over bpf and generate flow data.

You might try "set state-defaults pflow, sloppy", also in some scenarios you 
might need "set state-policy floating"

If "sloppy" fixes it, there may be some bugs to hunt.



Re: iwm0: fatal firmware error

2021-05-28 Thread Chris Cappuccio
Marco Scholz [t...@disroot.org] wrote:
> Hello.
> My laptop (Lenovo Thinkpad T495s AMD Ryzen) reports an iwm0 fatal
> firmware error. I'm running 6.9 #29.
> System gets quite hot, systat shows 40-50% interrupt while idling.
> Networking works fine.
> 
> Anybody else has this issue?
> 
> Regards, Marco.
> 
> ehci0 at pci3 dev 0 function 4 "Realtek RealManage USB" rev 0x0e: apic
> 33 int 15
> ehci0: pre-2.0 USB rev

It probably won't help your actual problem, but for EHCI support,
you'll need this patch I still have hanging around in my tree.

Index: ehci_pci.c
===
RCS file: /cvs/src/sys/dev/pci/ehci_pci.c,v
retrieving revision 1.31
diff -u -p -u -r1.31 ehci_pci.c
--- ehci_pci.c  2 May 2019 20:28:46 -   1.31
+++ ehci_pci.c  28 May 2021 22:03:49 -
@@ -186,9 +186,14 @@ ehci_pci_attach(struct device *parent, s
case PCI_USBREV_PRE_1_0:
case PCI_USBREV_1_0:
case PCI_USBREV_1_1:
-   sc->sc.sc_bus.usbrev = USBREV_UNKNOWN;
-   printf("%s: pre-2.0 USB rev\n", devname);
-   goto disestablish_ret;
+   /*
+* NOTE: some EHCI USB controllers have the wrong USB
+* revision number. It appears those controllers are
+* fully compliant so we just ignore this value.
+*/
+   printf("%s: pre-2.0 USB rev (ignored)\n", devname);
+   /* FALLTHROUGH */
case PCI_USBREV_2_0:
sc->sc.sc_bus.usbrev = USBREV_2_0;
break;



Re: poor ethernet network performance

2021-05-18 Thread Chris Cappuccio
Keegan Saunders [kee...@undefinedbehaviour.org] wrote:
> I'm noticing that my OpenBSD desktop with a Realtek 8168 ethernet controller
> (re(4) driver) is experiencing slow network speeds on OpenBSD 6.9 (not
> recent, has been an issue before)
> 

Why not include a dmesg? How do you expect anyone to troubleshoot this problem 
with zero data?



Re: Cultural underground legende Seymour Cray and his legacy

2021-04-22 Thread Chris Cappuccio
Balder Oddson [ola...@gmail.com] wrote:
> On Thu, Apr 22, 2021 at 10:24:32AM +0200, Marc Espie wrote:
> > Is this a new UMF experiment ?
> 
> Does it involve integrating this on a chip? Not sure if past successes
> are that great.
> 

Your postings are the result of recent secret MKULTRA experiments.



Re: 4k sector disk on APU2 problems

2021-03-01 Thread Chris Cappuccio
Raimo Niskanen [raimo+open...@erix.ericsson.se] wrote:
> 
> Much fumbling later it seems that when the disk is connected to the
> internal mSATA slot it is seen as a 512 bytes per sector disk.  I do not
> know what the BIOS thinks of it (factory SeaBIOS 1.10.something).  When I
> re-installed with the disk in the mSATA slot I got a bootable installation.
> Both fdisk and disklabel now says the disk has got 512 bytes per sector.
> (fdisk says nothing but for a 4k disk it should say it is a 4k disk)
> 

You have to install and boot as 4k or install and boot as 512. You can't
mix. Perhaps try and upgrade the bios to see if it changes, but ultimately,
you have to install and boot with the same setting.



Re: 6.9-BETA Installer crash

2021-02-22 Thread Chris Cappuccio
Chris Cappuccio [ch...@nmedia.net] wrote:
> Chris Zakelj [c.zak...@ieee.org] wrote:
> > 
> > Thanks!  Now for a mixed-bag result. 5.6 and 5.5 both panic. 5.4 boots
> > (dmesg attached), but doesn't actually see the 1TB array (installer says
> > "Available disks are: none."  I did get this curiosity after I escaped the
> > install shell and rebooted:
> > 
> 
> Looks like we have a problem with arc_marvell cards. I had one working
> but there may be different firmware, etc.
> 
> Areca sent a newer patch to openbsd-tech in the last year or so which you 
> should try:
> 
> From: ching Huang 
> Subject: [PATCH: sys/dev/pci/arc.c] update Areca Raid adapter driver arc.c 
> for support ARC-1203, ARC-1884
> 
> It's not clear if this changes the behavior on your card significantly.
> 

Oh and here is where he supports the ARC 1200 rev B:

http://openbsd-archive.7691.n7.nabble.com/PATCH-sys-dev-pci-arc-c-update-Areca-Raid-adapter-driver-arc-c-for-support-ARC-1203-ARC-1884-td394610.html

It looks like the newer patch on openbsd-tech includes this plus newer. 

Chris



Re: 6.9-BETA Installer crash

2021-02-22 Thread Chris Cappuccio
Chris Zakelj [c.zak...@ieee.org] wrote:
> 
> Thanks!  Now for a mixed-bag result. 5.6 and 5.5 both panic. 5.4 boots
> (dmesg attached), but doesn't actually see the 1TB array (installer says
> "Available disks are: none."  I did get this curiosity after I escaped the
> install shell and rebooted:
> 

Looks like we have a problem with arc_marvell cards. I had one working
but there may be different firmware, etc.

Areca sent a newer patch to openbsd-tech in the last year or so which you 
should try:

From: ching Huang 
Subject: [PATCH: sys/dev/pci/arc.c] update Areca Raid adapter driver arc.c for 
support ARC-1203, ARC-1884

It's not clear if this changes the behavior on your card significantly.

Chris



Re: 6.9-BETA Installer crash

2021-02-18 Thread Chris Cappuccio
Chris Zakelj [c.zak...@ieee.org] wrote:
> Thought I'd try using the Dell and ARC-1200 combination with 6.9-BETA I
> mentioned a couple months ago
> (https://marc.info/?l=openbsd-misc=158259981320518), but still no luck.
> Dmesg of both 6.9-BETA and verbose FreeBSD 12.1-RELEASE attached in case
> they might be useful. I've also gone backwards to 5.8-RELEASE on the off
> chance I could zero in on a change that broke things, but no luck there,
> either.

Can you please try booting different versions until you find one that works?

You said OpenBSD 5.8 does not boot either? Did you mean 6.8? And,
can you try OpenBSD 5.4 and 5.5 ?



Re: home printer

2021-02-09 Thread Chris Cappuccio
Marcus MERIGHI [mcmer-open...@tor.at] wrote:
> 
> I've been told, by a local xerox technician, to never print any ransom
> demand letter with a modern printer because any printout could be
> attributed to the serial number of the printer.
> 

I always email my ransom demand letters so that I can avoid the printer
ratting me out to the FBI.



Re: -current amd64 packages not updated? Impatient or broken?

2021-01-07 Thread Chris Cappuccio
Mihai Popescu [mih...@gmail.com] wrote:
> I was in the same situation, impatient to have a 2021 snapshot.
> 
> Warning: I am not sure you will not finish with a Frankenstein system. I am
> not so good with compiler-linker stuff.

For those trying to use the latest snap and the latest ports, try link
libc++.so.4.0 to libc++.so.5.0 and libc++abi.so.2.1 to libc++abi.so.3.0
for now. Frankenstein, indeed. You'll feel dirty just doing it.



Re: [SPAM] Re: APU4 hardware network interfaces tied together

2020-11-18 Thread Chris Cappuccio
Stuart Henderson [s...@spacehopper.org] wrote:
> 
> Do you have evidence to back this up? People were saying the same about
> PCEngines not being reliable compared to Soekris too. It all seems nonsense.
> Old rpi 1 and 2 machines are still running fine doing the job they were
> intended to do. I'm not claiming there's anything amazing about them but
> if they're capable of doing the job in the first place I don't see any
> real concern about hardware reliability.
> 

After some 100 APU units, both the realtek and intel based ethernet chip
versions, the only failure I've had is when one of the RTC batteries blew
up all over the board. And I've used the GPIO extensively. The boards are
very reliable in my experience. The Soekris reputation went south when
they used a buggy intel chip, which is really a problem with Intel and
not Soekris, but unfortunately that probably helped to end Soekris.



Re: sd0-n vs wd0-n

2020-10-30 Thread Chris Cappuccio
Amelia A Lewis [amyz...@talsever.com] wrote:
> 
> Can anyone suggest why a machine, with no activity but ssh logins and 
> then a syspatch of patches 2-3 on 6.8 would spontaneously start 
> considering the SATA disks in the machine (which were previously loaded 
> as sd0-sd2) as IDE (wd0-wd2)? This seems to have happened (it's the 
> lasting "scar" from my machine borkage, I guess). Seems a bit weird, 
> though.
> 

Perhaps the CMOS battery failed and the BIOS reverted to a default setting.



Re: VMM vulns?

2020-09-10 Thread Chris Cappuccio
Demi M. Obenour [demioben...@gmail.com] wrote:
> 
> Yikes!  Is https://openbsd.amsterdam affected?
> 

Unless they have a special version of vmm with bugfixes that don't exist
anywhere else, then yes, of course.



Re: Rsync is too slow

2020-07-30 Thread Chris Cappuccio
Chris Cappuccio [ch...@nmedia.net] wrote:
> 
> such as: cp -r /usr/bin /mnt/usr/bin
> or: tar cf - -C /usr/bin . | tar xpf - -C /mnt/usr/bin
> 

also the destination filesystem should be mounted with async (dangerous on
power loss) or softdep (not very dangerous on power loss) to avoid huge
amounts of metadata updates slowing your action.



Re: OpenBSD 6.7-current VM on vmd collectd timesync problem

2020-07-30 Thread Chris Cappuccio
Martin [martin...@protonmail.com] wrote:
> 
> VM using NTP protocol to fine tune clock from the OpenBSD 6.7-current host, 
> but collectd complain about clock skew in the past.
> 
> Any ideas?
> 

Does this happen with 6.6 or 6.7 as well? 6.7-current uses the TSC directly
to gather timestamps, but it should only do this if the TSC are "synchronized".



Re: Rsync is too slow

2020-07-30 Thread Chris Cappuccio
Rupert Gallagher [r...@protonmail.com] wrote:
> No, I am not using USB.

your dmesg didn't make it to the list because you are attaching a text file
and attachments are not allowed on misc.

please put it inline with the message.



Re: Rsync is too slow

2020-07-30 Thread Chris Cappuccio
Rupert Gallagher [r...@protonmail.com] wrote:
> No, I am not using USB.

rsync between disks should be very fast. you are going from the sata to the
nvme ? NetBSD or FreeBSD or somebody made some speed improvements to nvme
that we should review. i can't remember right now. anyways, 10GB/hour sounds
extremely slow for an nvme SSD, way way way too slow for anything I have
experienced in recent memory. 

it might be interesting to try using cp between filesystems, or tar

such as: cp -r /usr/bin /mnt/usr/bin
or: tar cf - -C /usr/bin . | tar xpf - -C /mnt/usr/bin

also what speeds are you getting on the destination filesystem?

dd count=1 bs=1G if=/dev/zero of=/mnt/test conv=fsync

might give you some rough idea of what 1G write costs.

here's 1G write on my Samsung 845DC Pro which is one of my all-time favorite
SATA SSDs for reliability

# dd count=1 bs=1G if=/dev/zero of=test conv=fsync 
1+0 records in
1+0 records out
1073741824 bytes transferred in 2.906 secs (369450372 bytes/sec)

here's the same for a Crucial M500

# dd count=1 bs=1G if=/dev/zero of=test conv=fsync
1+0 records in
1+0 records out
1073741824 bytes transferred in 4.356 secs (246484472 bytes/sec)

it's not clear to me how much the buffer cache affects this but i'm hoping
here that conv=fsync helps. in a wierd twist, tests like this with conv=fsync
run consistently faster than without, so my understanding isn't that great.



Re: Rsync is too slow

2020-07-30 Thread Chris Cappuccio
Rupert Gallagher [r...@protonmail.com] wrote:
> Latest obsd with new 4TB wd red ssd disk copying from 2TB seagate exos 
> returns 80GB in 8 hours with zero activity by other tasks. The server has 
> 12GB ecc ram cache. Copying 1.4 TB from a nas to the same exos took 2.5 hours 
> shy. Is there a problem with how obsd handles internal storage? Or a problem 
> with the default kernel sysconfig and staff defaults?

sounds like you are copying from SATA to USB ? first, send a dmesg so
people get a better idea. second, try -current. several improvements
have been made for USB to be faster. 



Re: Shell account service providers

2020-07-19 Thread Chris Cappuccio
Adrian Grigore [adrian.emil.grig...@gmail.com] wrote:
> https://tilde.institute/
> 

That's a cool project. Shell environments are the original social network.



Re: Shell account service providers

2020-07-18 Thread Chris Cappuccio
ibs...@ripsbusker.no.eu.org [ibs...@ripsbusker.no.eu.org] wrote:
> Aaron Mason writes:
> > What are you looking for in such a service?
> 
> Minimally, SSH login, 100GB disk space, and build tools
> 
> It's easy enough to find something like this, but it is usually bundled
> with other stuff and priced accordingly.
> 
> I'll mostly use it for nmh and mairix.

Why not just buy a cheap vhost?



Re: IPSec heavy traffic slows down all network traffic

2020-07-18 Thread Chris Cappuccio
jean-yves boisiaud [jean-yves.boisi...@alcor-consulting.fr] wrote:
> Last week, I upgraded a couple of firewalls using carp/pfsync and sasyncd
> from 6.0 to 6.7 (yes, big jump !).
> 
> I also applied all the 6.7 published patches.
> 
> When some heavy traffic takes one of the IPSec tunnel, I noticed that :
> - all network connections are slowed down
> - unused network bandwidth increase instead of decrease
> - idle CPU move towards 0, and spinning increase to take about 50% of the
> CPU
> 
> When I stop the IPSec traffic :
> - network connections increase immediatly
> - unused network bandwidth cecreases immediately
> - spinning CPU is low.
> 

This is basically a performance regression that could be due to the MP
work. You are seemingly running into contention that wasn't possible before.
The question is, where is this happening? I don't know if the dynamic tracer 
can help here. 



Re: Trinity desktop environment

2020-05-11 Thread Chris Cappuccio
i...@aulix.com [i...@aulix.com] wrote:
> Is it possible to run TDE by trinitydesktop.org  on OpenBSD?
> Or is it going to be possible in the future?

You'd have to ask Trinity.

Trinity doesn't maintain their own compatibility for BSDs as a priority,
so it's not a trivial effort for an outsider.

That being said, the port and patches for KDE 3.5 in /usr/ports/x11/kde 
might be a good start if you wanted to make the effort yourself.



Re: Having PF enabled breaks up rsync (and scp) over ssh connections

2020-03-03 Thread Chris Cappuccio
Jyri Hovila [Turvamies.fi] [jyri.hov...@turvamies.fi] wrote:
> Hello everyone!
> 
> Now here's a mysterious one -- I've been working on this for weeks and still 
> have no clue what's causing it.
> 
> "client_loop: send disconnect: Broken pipe
> 
> As soon as I disable pf entirely, the problem goes away.
> 
> Any ideas on how to debug this further?
> 

Figure out which exact part of your pf config is causing this. Try disabling
everything line-by-line. 



Re: What TERM fixes Emacs?

2020-02-25 Thread Chris Cappuccio
Emilia [emi...@sonic.net] wrote:
> Stuart, 
> 
> Apologies for breaking netiquette w/ sending images.
> 
> Could you please point me to what "pccon" is?  I found references to
> pccon in pcvt - but it is unclear to me how I can use pcvt either. 
> 

export TERM=pccon perhaps?



cwm window in all/no groups

2019-12-28 Thread Chris Cappuccio
I'm using windows groups with sticky.

unbind-key  all

bind-keyM-1   group-only-1
bind-keyM-2   group-only-2
...
sticky yes

Usually I can keep all my windows in whatever group they were opened in. On
occasion, I must be typing in some strange key combination and I end up
getting some or all of the windows on my current screen bound to no group.

I don't have any keys bound to 'window-stick' which seems like it would
do exactly this. I don't have any keys bound to group-only-0. When windows
start going into all/nogroup mode, it becomes very frustrating. I can't focus
into a nogroup xterm for typing unless I kill or move any windows which are
members of the current group. I can't move the nogroup windows either. I
can't close them using the meta key delete. These nogroup windows have
some very annoying properties, appropriate for xconsole perhaps.

Does this sound familiar to anyone? 

.cwmrc:

unbind-key  all

bind-keyM-1   group-only-1
bind-keyM-2   group-only-2
bind-keyM-3   group-only-3
bind-keyM-4   group-only-4
bind-keyM-5   group-only-5
bind-keyM-6   group-only-6
bind-keyM-7   group-only-7
bind-keyM-8   group-only-8
bind-keyM-9   group-only-9
bind-keyCM-q   window-delete
bind-keyCM-r   restart
bind-keyM-equal"mixerctl outputs.master=+10"
bind-keyM-jwindow-cycle-ingroup
bind-keyM-kwindow-rcycle-ingroup
bind-keyM-minus"mixerctl outputs.master=-10"
bind-keyM-twindow-maximize
bind-keySM-1   window-movetogroup-1
bind-keySM-2   window-movetogroup-2
bind-keySM-3   window-movetogroup-3
bind-keySM-4   window-movetogroup-4
bind-keySM-5   window-movetogroup-5
bind-keySM-6   window-movetogroup-6
bind-keySM-7   window-movetogroup-7
bind-keySM-8   window-movetogroup-8
bind-keySM-9   window-movetogroup-9

bind-keySM-Return   "xterm -e top"
bind-keyM-Return"xterm"

command firefoxfirefox
command sofficesoffice
command iridiumiridium
command xterm  xterm

borderwidth 1
color   activeborder   gray8
color   inactiveborder black
snapdist4
sticky  yes



Re: pfsync on VLAN - supported ?

2019-11-13 Thread Chris Cappuccio
Rachel Roch [rr...@tutanota.de] wrote:
> Hi,
> 
> Both the man page and FAQ (https://www.openbsd.org/faq/pf/carp.html) 
>  talk about "physical interface" in 
> relation to the syncdev parameter.
> 
> Does this mean Bad Things (TM) will happen if I try to use a dedicated vlan 
> interface for pfsync ?
> 

It's as secure as your ethernet network is. There is no privacy or
authentication with pfsync. I don't think that using a vlan is 
considered a big problem these days. I'm absolutely amazed at the
volume of data that pfsync generates. Since so many boxes come with extra
ports, using a vlan may be more complicated than directly connecting
the boxes together (unless you have more than two machines)



Re: OpenBSD and solid state disks

2019-11-08 Thread Chris Cappuccio
Raymond, David [david.raym...@nmt.edu] wrote:
> Thanks for the insight on SSDs -- sounds like there is not much of an
> issue with modern drives.
> 

If write endurance is a concern, you can buy higher grade SSDs that have
constant latency (at the expense of max speed) and a lot of extra flash.
I would avoid the TLC drives for servers and the QLC drives for everything,
if writes are heavy. 

My biggest problem with SSDs has been total failures. I run pairs of SSDs
in softraid RAID 1 for this reason. 



Re: fw_update long timeout, how to specify mirror

2019-10-22 Thread Chris Cappuccio
Tommy Nevtelen [to...@nevtelen.com] wrote:
> Hi!
> 
> I have some systems without access to the Internets and with internal
> mirrors for packages and fw_update packages. But when openbsd does a
> sysupgrade or a new install it runs fw_update against firmware.openbsd.org.
> The problem here is that it will hang until the timeout is reached.

If your case is like mine, you have a management network with zero internet
access. But you might also have a machine which can be setup to bridge the
gap, with a proxy.

The ftp client which does the actual file transfer honors the "http_proxy"
environment variable so you can do something like:

export http_proxy=http://my.proxy.server:1234/



Re: surprisingly good net speed with 2 REs

2019-10-22 Thread Chris Cappuccio
g...@oat.com [g...@oat.com] wrote:
> 
> Peaks at about 500mb/sec

tcpbench is a better test because it won't measure your disk i/o at the same
time

also, the realtek chip you mention has a hard limitation of around 500Mbps
on either transmit or receive, i'm not sure. this is according to luigi
rizzo's netmap testing on freebsd. try pairing it with a better chip
for testing. i'm able to get over 1Gbps single-TCP stream file xfer with
modern openbsd and fast machines and SSDs, but that's nothing notable
these days.



Re: txpower

2019-10-06 Thread Chris Cappuccio
Roderick [hru...@gmail.com] wrote:
> 
> It seems, it disappeared from ifconfig because only wi supported it.
> 

It would be nice if more people were working on the 802.11 stack. The man-
power here is very limited.

> Can I be sure that my WLAN is not sending stronger than the law allows?
> 

Unless you are using external high-gain antennas, this isn't possible.

Also, txpower on most 802.11 chips tends to be out of user control. It
will make automatic changes for various reasons.

Chris



Re: Impossible to remove a broken package on 6.5.

2019-09-06 Thread Chris Cappuccio
Angelo Rossi [angelo.rossi.home...@gmail.com] wrote:
> 
> # pkg_delete -v kicad
> Can't locate object method "updateset_with_new" via package
> "OpenBSD::PkgDelete::State" at /usr/libdata/perl5/OpenBSD/Dependencies.pm
> line 309.
> 

Your /usr/libdata/perl5/OpenBSD directory is corrupted, this should exist
in /usr/libdata/perl5/OpenBSD/PkgAdd.pm

Your upgrade seems to have failed



Re: Future of X.org?

2019-06-29 Thread Chris Cappuccio
Leonid Bobrov [mazoc...@disroot.org] wrote:
> On Fri, Jun 28, 2019 at 01:56:43PM -0400, Christopher Turkel wrote:
> 
> First, I'd like to blame Xenocara for this pain porting Wayland to
> OpenBSD (because building Mesa from ports would be an opportunity),
> right now to build Mesa with Wayland support we need to import
> Wayland in Xenocara and all its dependencies (including libxml) in base.
> 

Why not simply have a Wayland-appropriate Mesa option in the ports tree?

> Fifth, almost nobody in OpenBSD cares about Wayland and personally I
> don't see an opportunity in protocol which requires XML.
> 

Sounds like something that belongs in the ports tree

> The epoll() problem is solved at FreeBSD and NetBSD by using epoll-shim,
> it's epoll() emulation via kqueue(), DragonFly BSD still prefers not
> using epoll-shim and writting kqueue() code instead, but Peter Must
> (the current maintainer of Wayland in DragonFly) is going to use
> epoll-shim for libinput while still maintaining kqueue() code in
> reference Wayland library.

So basically, the problems are already mostly solved. That makes for lots
of options for someone who wants to port Wayland to OpenBSD.



Re: may an edgerouter or pair / queue porblem

2019-06-29 Thread Chris Cappuccio
ms [m...@it-infrastrukturen.org] wrote:
> What hardware (CPU, memory type, network cards) do you use in your
> configuration?
> 
> Myself I have faced network related performance issues on OpenBSD (v. 6.4).
> 
> Network card drivers are known "not to be very fast" in OpenBSD..
> 

OpenBSD 6.5-current has improved networking performance from 6.5-release
for various use cases. 

For diagnosing this particular problem, it would be interesting to know,
WHAT queueing configuration is being applied in pf? and WHAT is the 
resulting performance when it is applied? I didn't see clear answers
to those questions in the first email.



Re: umsm0: this device is not using CDC notify message in intr pipe. HP Compaq dc5750

2019-06-29 Thread Chris Cappuccio
Kihaguru Gathura [pqscr...@gmail.com] wrote:
> Hello,
> 
> Huawei E303 modem now detaches in OpenBSD 6.5 This works fine on
> OpenBSD 6.2 same machine.
> 

There's a remote chance that this is fixed in 6.5-current. Some USB work
has been going on. But if that doesn't work, you'll have to try more kernels
to figure out when this stopped working. Try 6.5-current first, then 6.4,
and then 6.3 to see which are broken. 



Re: Let's Encrypt ACMEv1 end-of-life

2019-06-03 Thread Chris Cappuccio
Diogo Pinela [dpin...@ipatimup.pt] wrote:
> 
> That's interesting, but it doesn't answer my question at all.

I don't know if Kristaps is planning on updating it. Nobody else has
mentioned it. Maybe it's a prime job for you to investigate?
The final RFC version, ACMEv2, is documented in RFC 8555:

https://www.rfc-editor.org/rfc/rfc8555.txt

Chris



Re: Lenovo w/ AMD Ryzen CPU

2019-05-28 Thread Chris Cappuccio
David Anthony [d...@silentsystems.org] wrote:
> All,
> 
> The Lenovo release of T*95 series laptops with AMD Ryzen CPU appears 
> imminent. 
> 
> Would these be poor choices for OpenBSD? Are there any anticipated 
> ???gotchas??? that I should be aware of? Any thoughts would be greatly 
> appreciated.
> 

Chances are it will work very well.

First, less flaws were identified with AMD's implementation of speculative
execution. That means that there are less mitigations to slow down the system.
Whether there are unidentified flaws, that's another issue..

Second, the amdgpu driver was just imported to OpenBSD 6.5-current. That
means you'll have graphics support. Combined with the recent improvements
to xhci and wi-fi driver improvments (well, mostly intel), support for modern
laptops has never been better.

Chris



Re: Double nat with pf ?

2019-05-09 Thread Chris Cappuccio
Mik J [mikyde...@yahoo.fr] wrote:
> Hello,
> Is it possible to nat both source and destination IP on the same openbsd pf 
> instance aka double nat ?
> If yes do someone has an example of it ?

are you trying to do "hairpin" NAT?

what are you trying to accomplish?



Re: Upgrade procedure (6.4 -> 6.5)

2019-05-02 Thread Chris Cappuccio
Ingo Schwarze [schwa...@usta.de] wrote:
> 
> It might be a good idea to do
> 
>   # rm -rf /usr/share/man/* /usr/X11R6/man/*
> 
> immediately before an upgrade.
> 

I go one step further, and rm -rf /usr/include /usr/share /usr/X11R6
before a new snapshot is applied. This is a bit overkill but it's easier
than trying to remember what subdirectories to include during any
given release transition.



Re: Down on em fibre doesn't kill Layer 1 ?

2019-04-23 Thread Chris Cappuccio
Rachel Roch [rr...@tutanota.de] wrote:
> 
> Would it be too much to ask to get this functionality implemented ?
> 

No as long as you are asking yourself... Or perhaps, if you are willing to
pay someone else!

> I was dealing with a carrier the other day and we were dealing with bringing 
> up two ports on their network.
> 
> The question came from the remote end "have you shutdown the port as its 
> still showing up on my side", and indeed on the OpenBSD side carrier state 
> was still "active".
> 

This is understandable.

I don't think it would be hard to control the phy to turn the link down. Some
drivers do it, some don't. The only thing that makes it hard is a lack of
documentation in some cases...

Chris



Re: OpenBSD httpd: PCI - DSS Compliance

2019-04-10 Thread Chris Cappuccio
Kihaguru Gathura [pqscr...@gmail.com] wrote:
> Hi,
> 
> The message below refers. Has httpd met the particular requirement
> 6.5.1 - 6.5.10 as shown? or is it a matter of further configuration.
> 
> "Requirement 6.5
> Fingerprinted versions of web software used on the website may contain
> publicly known vulnerabilities (cf. PCI DSS 6.5.1-6.5.10). Investigate
> as soon as possible.
> Misconfiguration or weakness"
> 

I have no idea what 6.5.1 - 6.5.10 of PCI DSS means because I don't even know
where to find what is says.

Your message suggests that there may or may not be a vulnerability, based on
version numbers or other information obtained by this compliance scanner.

Since nobody except you knows what software is running here, I'm not sure what
to tell you. I don't think httpd itself has any known vulnerabilities,
especially in a mostly default configuration. It's easy to introduce
vulnerabilities.

Chris



Re: compared filesystem performance, was Re: 10GBit network performance on OpenBSD 6.4

2019-04-09 Thread Chris Cappuccio
gwes [g...@oat.com] wrote:
> 
> That doesn't answer the question: if you say
> dd if=/dev/zero of=/dev/sda (linux) /dev/rsd0c (bsd) bs=64k count=100
> what transfer rate is reported
> 

totally agree, Anatoli could you please compare ?

> That number represents the maximum possible long-term filesystem
> performance on that drive.
> 

you mean non-filesystem?



Re: compared filesystem performance, was Re: 10GBit network performance on OpenBSD 6.4

2019-04-08 Thread Chris Cappuccio
gwes [g...@oat.com] wrote:
> 
> What is the rated transfer rate of the SSD you're using to test?
> SATA 3 wire speed is 6G/sec and realistically 500MB/sec raw rate
> is near the top.
> 
> Anything over that is an artefact probably from a cache somewhere.
> 

He's using NVMe with its own DRAM cache, which should perform higly. There
is a limiter somewhere, it seems.



Re: 10GBit network performance on OpenBSD 6.4

2019-04-08 Thread Chris Cappuccio
Anatoli [m...@anatoli.ws] wrote:
> 
> I've seen extremely slow HDD performance in OpenBSD, like 12x slower than on
> Linux, also no filesystem cache, so depending on your HDD with scp you may
> be hitting the max throughput for the FS, not the network.
> 

12x slower? That's insane. What are you talking about? USB HDD? USB Flash?
SATA? Driver? You should submit a bug report with lots of details.

Chris



Re: serial console images for installing on vmd based guests

2019-03-13 Thread Chris Cappuccio
Mike Larkin [mlar...@nested.page] wrote:
> 
> Still not sure I understand what you're after. Basically all Linux installers
> can do this, you just need to add console=ttyS0,115200 to the kernel command
> line. I don't think there are any installers that have this change already 
> made.
> 

I think I'm just too stupid to use Linux. I know grub-based boot loaders give
you that option, but then I went to try Alpine Linux, and from what I'm 
finding, I have to setup a config file put it back into the ISO. 



Re: serial console images for installing on vmd based guests

2019-03-13 Thread Chris Cappuccio
Mike Larkin [mlar...@nested.page] wrote:
> On Tue, Mar 12, 2019 at 05:37:04PM -0700, Chris Cappuccio wrote:
> > Is there any archive of serial console bootable images (w/virtio support)
> > for Linux or other OSes to boot under vmd?
> > 
> 
> You mean installer images? Like things you would install from? Tons.
> 
> If you're talking about pre-installed full OSes, it's unlikely.
> 

Yeah I'm just looking for an archive of installers that already have serial
support enabled. Anyone have links?



serial console images for installing on vmd based guests

2019-03-12 Thread Chris Cappuccio
Is there any archive of serial console bootable images (w/virtio support)
for Linux or other OSes to boot under vmd?



Re: 40G ixl nics

2019-02-04 Thread Chris Cappuccio
Tommy Nevtelen [to...@nevtelen.com] wrote:
> > 
> > Any ideas ?
> 
> Sorry, nope.
> 
> But I don't think that there is support for any Intel NICs above 10G.
> 

That's the whole point of ixl, to support these NICs. Tony, it's appropriate
to start with a full dmesg and a report to b...@openbsd.org. Make sure you
keep your kernel sources updated too, to get changes to the ixl driver as they
are made.



Re: I am sorry

2019-02-04 Thread Chris Cappuccio
Leonid Bobrov [mazoc...@disroot.org] wrote:
> Hi, dear OpenBSD community.
> 
> Please forgive me for drama I made earlier at mailing list and
> IRC channel. I am not a troll, I promise, I want to contribute to
> OpenBSD in any way I can, please give me a chance.
> 

This is the internet. Nobody remembers or cares.

> All this time I had a depression and recently I've visited a doctor
> and now I am taking tranquilizer and antidepressant pills and feel
> myself much better, tomorrow I am going to visit a doctor once more.
> 

Throw 'em away. Wear your flag proud. 

> I am sorry for all offending words I told you, I am sorry for yelling
> at you, I admit I was wrong. I was very desperate and anxious.

Recant your apology! Double down!!



Re: [SOLVED] Re: apu2 em0/dhclient problems

2019-01-31 Thread Chris Cappuccio
Edgar Pettijohn [ed...@pettijohn-web.com] wrote:
> 
> Don't know why it works, but em1 works. I guess I'll rewrite my config files.
> 

This shouldn't be an acceptable solution to you. Unless the port is physically
damaged, you should figure out what's going on. Tcpdump is a great start. 

Chris



Re: Performance impact of PF on APU2

2018-12-30 Thread Chris Cappuccio
Hrvoje Popovski [hrv...@srce.hr] wrote:
> if you're feeling brave enough and you can test/experiment
> with pf you can download openbsd kernel with experimental MP support
> from here http://kosjenka.srce.hr/~hrvoje/zaprocvat/smpfbsd
> 
> SHA256 (smpfbsd) =
> e95e94190a0e52de7690b3278cfab14985817089e7a53615cd2599420593b32c
> 
> this kernel is compiled with option WITH_PF_LOCK and NET_TASKQ=4
> 

Did you do "option NET_TASKQ=4"? Because there is no #ifdef NET_TASKQ,
so you have to edit /usr/src/sys/net/if.c directly if you didn't already.

Chris



Re: OpenBGPD - Adding Diversity to the Route Server Landscape (ripe.net)

2018-11-30 Thread Chris Cappuccio
Mike Hammett [openbsd-m...@ics-il.net] wrote:
> Why worry about HTTPS? What's to gain? 
> 
> Job's Twitter is very promising. 
> 

Aside from getting exploited by the latest OpenSSL bug (ok, LibreSSL has
done a great job lowering this probability!), the other big benefit is
that crappy providers and Wi-Fi hotspots can't inject notifications and 
advertising into HTTPS links, at least not the way things are setup today..



Re: Intel Celeron SoC support

2018-11-20 Thread Chris Cappuccio
Andrew Lemin [andrew.le...@gmail.com] wrote:
> Hi,
> 
> I am running an ASRock J4105B-ITX board and wanting to run OpenBSD on this.
> https://www.asrock.com/MB/Intel/J4105B-ITX/index.asp#BIOS
> 
> It boots up, and at the 'boot>' prompt I can use the keyboard find.
> 
> However after it boots up, the keyboard stops working, and no disks are
> found by the installer (used auto_install to send test commands).
> It appears that there is no chipset support, for the Intel Celeron J4105
> CPU from what I can work out.
> 
> To test that it was working fine and is just OpebBSD which is not working,
> I installed Linux and have included the dmesg below (from Linux).
> I cannot run a dmesg from the OpenBSD installer as I cannot use the
> keyboard etc.
> 

The ASRock J4205-ITX (Apollo Lake) works fine, so does the J3710-ITX (Braswell).

I use them both headless, but they work fine when I plug in a USB keyboard.

The J4105-ITX (Gemini Lake) is newer than either.

What kind of keyboard are you using? If it's not USB, plug in a USB keyboard.
Although it may not work at the boot> prompt, it will work once you are booted
up.

For fun, here are dmesg for the older versions of your board. They both work
with USB input devices. 

Braswell


OpenBSD 6.3-current (GENERIC.MP) #21: Fri Jun 29 17:32:47 PDT 2018
ch...@r8.nmedia.net:/usr/src/sys/arch/amd64/compile/GENERIC.MP
real mem = 8023584768 (7651MB)
avail mem = 7771283456 (7411MB)
mpath0 at root
scsibus0 at mpath0: 256 targets
mainbus0 at root
bios0 at mainbus0: SMBIOS rev. 2.8 @ 0xecec0 (18 entries)
bios0: vendor American Megatrends Inc. version "P1.30" date 03/30/2016
bios0: ASRock J3710-ITX
acpi0 at bios0: rev 2
acpi0: sleep states S0 S3 S4 S5
acpi0: tables DSDT FACP APIC FPDT FIDT AAFT MCFG HPET SSDT SSDT SSDT UEFI LPIT 
CSRT
acpi0: wakeup devices UAR1(S4) XHC1(S4) HDEF(S4) PXSX(S4) RP01(S4) PXSX(S4) 
RP02(S4) PXSX(S4) RP03(S4) PXSX(S4) RP04(S4) BRCM(S0) PWRB(S4)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: Intel(R) Pentium(R) CPU J3710 @ 1.60GHz, 1600.37 MHz
cpu0: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,MOVBE,POPCNT,DEADLINE,AES,RDRAND,NXE,RDTSCP,LONG,LAHF,3DNOWP,PERF,ITSC,SMEP,ERMS,SENSOR,ARAT,MELTDOWN
cpu0: 1MB 64b/line 16-way L2 cache
cpu0: smt 0, core 0, package 0
mtrr: Pentium Pro MTRR support, 8 var ranges, 88 fixed ranges
cpu0: apic clock running at 79MHz
cpu0: mwait min=64, max=64, C-substates=0.2.0.0.0.0.3.3, IBE
cpu1 at mainbus0: apid 2 (application processor)
cpu1: Intel(R) Pentium(R) CPU J3710 @ 1.60GHz, 1600.00 MHz
cpu1: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,MOVBE,POPCNT,DEADLINE,AES,RDRAND,NXE,RDTSCP,LONG,LAHF,3DNOWP,PERF,ITSC,SMEP,ERMS,SENSOR,ARAT,MELTDOWN
cpu1: 1MB 64b/line 16-way L2 cache
cpu1: smt 0, core 1, package 0
cpu2 at mainbus0: apid 4 (application processor)
cpu2: Intel(R) Pentium(R) CPU J3710 @ 1.60GHz, 1600.00 MHz
cpu2: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,MOVBE,POPCNT,DEADLINE,AES,RDRAND,NXE,RDTSCP,LONG,LAHF,3DNOWP,PERF,ITSC,SMEP,ERMS,SENSOR,ARAT,MELTDOWN
cpu2: 1MB 64b/line 16-way L2 cache
cpu2: smt 0, core 2, package 0
cpu3 at mainbus0: apid 6 (application processor)
cpu3: Intel(R) Pentium(R) CPU J3710 @ 1.60GHz, 1600.00 MHz
cpu3: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,MOVBE,POPCNT,DEADLINE,AES,RDRAND,NXE,RDTSCP,LONG,LAHF,3DNOWP,PERF,ITSC,SMEP,ERMS,SENSOR,ARAT,MELTDOWN
cpu3: 1MB 64b/line 16-way L2 cache
cpu3: smt 0, core 3, package 0
ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 115 pins
acpimcfg0 at acpi0 addr 0xe000, bus 0-255
acpihpet0 at acpi0: 14318179 Hz
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 1 (RP01)
acpiprt2 at acpi0: bus 2 (RP02)
acpiprt3 at acpi0: bus 3 (RP03)
acpiprt4 at acpi0: bus 4 (RP04)
acpiec0 at acpi0: not present
acpicpu0 at acpi0: C3(10@1000 mwait.1@0x64), C2(10@500 mwait.1@0x58), C1(1000@1 
mwait.1), PSS
acpicpu1 at acpi0: C3(10@1000 mwait.1@0x64), C2(10@500 mwait.1@0x58), C1(1000@1 
mwait.1), PSS
acpicpu2 at acpi0: C3(10@1000 mwait.1@0x64), C2(10@500 mwait.1@0x58), C1(1000@1 
mwait.1), PSS
acpicpu3 at acpi0: C3(10@1000 mwait.1@0x64), C2(10@500 mwait.1@0x58), C1(1000@1 
mwait.1), PSS
acpipwrres0 at acpi0: CLK0, resource for CAMD
acpipwrres1 at acpi0: CLK0, resource for CAM1
acpipwrres2 at acpi0: CLK1, resource for CAM2, CAM3
acpipwrres3 at acpi0: USBC, resource 

Re: DRM without X

2018-09-05 Thread Chris Cappuccio
tfrohw...@fastmail.com [tfrohw...@fastmail.com] wrote:
> 
> 
> On September 4, 2018 2:11:11 PM UTC, Maurice McCarthy  
> wrote:
> >On 03/09/2018, Thomas de Grivel  wrote:
> >
> >> Is there any way to use the DRM drivers without X11 ?
> >
> >Probably not. The X sets in base are an integral part of the whole
> >operating system. You install them whether or not you use X.
> 
> Well, there are other display servers like Wayland, or projects like Arcan 
> (https://github.com/letoram/arcan). Haven't heard of any of them running 
> outside X11 on OpenBSD though.

Your mention of Arcan led me to this article: 
https://arcan-fe.com/2018/04/25/towards-secure-system-graphics-arcan-and-openbsd/

which suggests Arcan can run on OpenBSD,with DRM, without X11.

:)

Chris



Re: NodeJS apps on Httpd?

2018-09-05 Thread Chris Cappuccio
Michael Joy [mich...@michaeljoy.eu] wrote:
> Does anyone have any experience of getting node apps running through httpd?
> Any opinions, instructions or warnings are welcome.

I think generally node apps will be run behind relayd, not httpd.



Re: resize /usr

2018-09-04 Thread Chris Cappuccio
Ken M [k...@mack-z.com] wrote:
> 
> $ df -h
> Filesystem SizeUsed   Avail Capacity  Mounted on
> /dev/sd0a 1005M245M710M26%/
> /dev/sd0h 62.9G   21.7G   38.1G36%/home
> /dev/sd0d  3.9G302K3.7G 0%/tmp
> /dev/sd0f 14.8G   11.6G2.5G82%/usr
> /dev/sd0g 19.7G1.1G   17.6G 6%/usr/ports
> /dev/sd0e 11.2G   56.1M   10.6G 1%/var
> 
> Above is my current disk setup, what I would like to do is shrink /usr/ports 
> to
> grow /usr.  
> 

Just move /usr/ports back to /usr and remount /dev/sd0g as /usr/local



Re: PCEngines APU4B4 doesn't boot AMD64 when PXE is activated in the bios

2018-08-29 Thread Chris Cappuccio
Chris Cappuccio [ch...@nmedia.net] wrote:
> This sounds exactly like what happens when you don't do this at the
> boot> prompt:
> 
> stty com0 115220

stty com0 115200 of course



Re: PCEngines APU4B4 doesn't boot AMD64 when PXE is activated in the bios

2018-08-29 Thread Chris Cappuccio
This sounds exactly like what happens when you don't do this at the
boot> prompt:

stty com0 115220
set tty com0

Arnaud BRAND [arnaud.brand--o...@tib.cc] wrote:
> Good evening list,
> 
> I recently bought a PCEngine APU4B4 https://www.pcengines.ch/apu4b4.htm
> AMD GX-412TC, 1 GHz quad Jaguar core / 64 bit and AES-NI / 4GB RAM
> 
> I had absolutely no problem booting and installing i386 OpenBSD 6.3 and
> snapshots over PXE.
> With the AMD64 version, it wouldn't boot, it crashed immeditely after the
> "entry point at 0x1000158" line and rebooted.
> 
> I found Neels' page (http://hofmeyr.de/OpenBSD%20on%20APU4/,  BTW thanks
> Neels) who had no problem installing AMD64 from USB.
> So I tried that, both with 6.3 and snapshot, but it ended the same.
> To be precise, the "8" at the end of the "entry point at" line never shows
> up.
> The reboot/reset occurs after the 5 character.
> 
> I was beginning to think that my APU was broken, but decided to try again,
> this time disabling the PXE capability in the bios.
> It worked immediately (like usual with OpenBSD).
> 
> So, long story short, AMD64 kernels won't boot on APU4B4 when PXE boot is
> enabled in the BIOS.
> 
> I don't know if there's anything to fix in OpenBSD as the embedded iPXE
> seems a bit buggy.
> I reckon this might be the cause of the problem.
> 
> For people who experience difficulties wiht PXE booting (i386), try the
> following :
> - break out to iPXE shell
> - run "dhcp" until iPXE picks up an address
> - and then resume PXE booting process by typing "autoboot"
> 
> 
> Arnaud



Re: ..Re AMDGPU Re: Plans to port the amdgpu(4) driver? (=to support Radeons made 2014/2015 and after.) Hardware/other donations needed?

2018-07-31 Thread Chris Cappuccio
> > Ignoring the parts of the shared
> > drm/ttm code that would have to be updated the latest
> > drivers/gpu/drm/amd in linux has over 1.5 million lines of code. Which
> > is multiple times larger than the complete OpenBSD kernel source...
> 

Despite everything you replied with, Jonathan's reply still accurately
details the overriding concern. 

The code base is so huge, not only is porting a herculean task, but who wants
this much code in their kernel to run the...video card?

As a matter of fact, the existing AMD code can be extended to support the newer
hardware without the huge import.

Realistically, neither porting amdgpu nor extending the existing code are going
to happen any time soon. There's no straightforward path to solve this problem.



Re: Poor browser performance in OpenBSD

2018-06-20 Thread Chris Cappuccio
Patrick Harper [paia...@fastmail.com] wrote:
> I beg to differ, on my setup at least, the full GMaps in Chromium runs silky 
> smooth as intended. This is a Cayman (radeon) graphics card driving a 4K 
> monitor through dual 1920x2160 signals (hooray xrandr). I've never tried 
> Intel graphics though.
> 

I notice some major slowdowns with the meltdown mitigation on Core 2 Duo
with inteldrm that make them almost unusable with modern browsers right now.
Not as bad on newer CPUs. 



Re: Upgrade 6.0 -> 6.1: ix mmba is not mem space

2018-05-29 Thread Chris Cappuccio
No magic expected here, but why not try 6.3? 6.1 is not supported anymore, and 
in any event, you need to include full dmesg so that others without DL360 Gen9 
have a chance at helping you.

Maxim Bourmistrov [m...@alumni.chalmers.se] wrote:
> Hey,
> While moving one of machines from 6.0 to 6.1, I found 6.1 not able to attach 
> ix-device.
> Machine is HP DL360 Gen9.
> 
> ix0 at pci5 dev 0 function 0 "Intel 82599" rev 0x01: mmba is not mem space
> ix1 at pci5 dev 0 function 1 "Intel 82599" rev 0x01: mmba is not mem space
> 
> Found this thread
> http://openbsd-archive.7691.n7.nabble.com/OpenBSD-6-1-ix-Intel-82598EB-issue-td317072.html
>  
> 
> 
> and as far as I can see, this diff is in tree, but not helping here :(
> 
> Any clues? 
> 
> 4:0:1: Intel 82599
>0x: Vendor ID: 8086 Product ID: 10fb
>0x0004: Command: 0147 Status: 0010
>0x0008: Class: 02 Subclass: 00 Interface: 00 Revision: 01
>0x000c: BIST: 00 Header Type: 80 Latency Timer: 00 Cache Line Size: 10
>0x0010: BAR mem 32bit addr: 0x92c0/0x0010
>0x0014: BAR empty ()
>0x0018: BAR io addr: 0x2000/0x0020
>0x001c: BAR mem 32bit addr: 0x92e0/0x4000
>0x0020: BAR empty ()
>0x0024: BAR empty ()
>0x0028: Cardbus CIS: 
>0x002c: Subsystem Vendor ID: 103c Product ID: 17d0
>0x0030: Expansion ROM Base Address: 
>0x0038: 
>0x003c: Interrupt Pin: 01 Line: ff Min Gnt: 00 Max Lat: 00
>0x0040: Capability 0x01: Power Management
>State: D0 PME# enabled
>0x0050: Capability 0x05: Message Signalled Interrupts (MSI)
>0x0070: Capability 0x11: Extended Message Signalled Interrupts (MSI-X)
>0x00a0: Capability 0x10: PCI Express
>Link Speed: 5.0 / 5.0 GT/s Link Width: x8 / x8
>0x0100: Enhanced Capability 0x01: Advanced Error Reporting
>0x0140: Enhanced Capability 0x03: Device Serial Number
>0x0150: Enhanced Capability 0x0e: Alternate Routing ID
>0x0160: Enhanced Capability 0x10: Single Root I/O Virtualization
>0x00e0: Capability 0x03: Vital Product Data (VPD)
> 
> Br
> 
> 



Re: Open source RISC-V 64bit w ECC RAM & PCIe this summer

2018-05-29 Thread Chris Cappuccio
Rupert Gallagher [r...@protonmail.com] wrote:
> Everybody loves the idea of an open-source CPU that can be uploaded to an 
> FPGA processor. Anybody from China who starts selling a mini-itx board and an 
> FPGA fast enough to run risc-v will turn the market on its head in 6--10 
> years, killing both Intel and AMD. ARM is fabless already...

FPGAs capable of doing anything big take lots of power and generate lots of 
heat. They are far from ideal as a platform base, but great for testing if your 
hardware can be described in VHDL or Verilog. The work to go from that to an 
ASIC is immense and will take significant backing, which makes the industry 
support for RISC-V rather interesting. Everyone wants royalty-free hardware in 
their little devices, I can't blame them.



Re: Meltdown workaround enabled?

2018-03-13 Thread Chris Cappuccio
Mike Larkin [mlar...@azathoth.net] wrote:
> 
> I'm not sure whether or not I believe what your machine is reporting, I was
> under the assumption that new hardware was needed to fix this. Shrug.
> 

There is a public PoC for meltdown and spectre on OpenBSD:

https://github.com/genua/meltdown

Here's what it looks like with the current meltdown work-around:

danka# ./meltdown -qv
CPU has RDTSCP
CPU has TSX
Access time: memory 401, cache 121 -> threshold 261
Using addr 0x818e4f30 for symbol '_version'.
?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ??
matched 0% (0 of 10 bytes)
System is not vulnerable to meltdown
53 70 65 63 69 ?? 6c 20 45 78 Speci?l Ex
matched 90% (9 of 10 bytes)
System is vulnerable to spectre

here's a 6.1 system with no patches:

meltdown# ./meltdown -qv
WARNING: CPU has no RDTSCP support!
CPU has no TSX support!
Access time: memory 347, cache 98 -> threshold 222
Using addr 0x816bc1a0 for symbol '_version'.
4f 70 65 6e 42 53 44 20 36 2e OpenBSD 6.
matched 100% (10 of 10 bytes)
System is vulnerable to meltdown
53 70 65 63 69 61 6c 20 45 78 Special Ex
matched 100% (10 of 10 bytes)
Segmentation fault (core dumped) 



Re: tor inside vmm, horribly slow?!

2018-02-13 Thread Chris Cappuccio
Oops, actually uipc_socket2.c



Re: tor inside vmm, horribly slow?!

2018-02-13 Thread Chris Cappuccio
Revert uipc_socket.c rev 1.90. Does tor work properly again?

Thomas Weinbrenner [m...@tweinbrenner.net] wrote:
> 
> 
> > Am 12.02.2018 um 00:38 schrieb Jiri B :
> > 
> > Hi,
> > 
> > has anybody tried to run tor inside vmm guest?
> > 
> > it's horrible slow, just doing 'tor-resolve $dnsname' takes
> > sometimes ages.
> 
> Perhaps this has nothing to do with vmm.
> 
> I am not a computer expert, just a normal user (so please don't ask me
> to difficult questions), but I run tor on my computer at home (so it's
> real hardware and no vmm).
> 
> Since upgrading OpenBSD from
> 
> | OpenBSD 6.2-current (GENERIC.MP) #399: Fri Feb  2 18:28:58 MST 2018
> |dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
> 
> to
> 
> | OpenBSD 6.2-current (GENERIC.MP) #4: Sat Feb 10 18:04:19 MST 2018
> |dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
> 
> my tor server also has problems.
> 
> 
> /var/log/daemon:
> | Feb 11 20:15:50 server Tor[54286]: Your system clock just jumped 115 
> seconds forward; assuming established circuits no longer work.
> | Feb 11 20:16:02 server Tor[54286]: Tor has successfully opened a circuit. 
> Looks like client functionality is working.
> | Feb 11 20:16:02 server Tor[54286]: Tor has successfully opened a circuit. 
> Looks like client functionality is working.
> | Feb 11 20:24:43 server Tor[54286]: Your system clock just jumped 299 
> seconds forward; assuming established circuits no longer work.
> | Feb 11 20:26:24 server Tor[54286]: tor_assertion_failed_: Bug: 
> src/or/channel.c:1503: channel_closed: Assertion CHANNEL_CONDEMNED(chan) 
> failed; aborting. (on Tor 0.3.2.9 9e8b762fcecfece6)
> | Feb 11 20:26:24 server Tor[54286]: Bug: Assertion CHANNEL_CONDEMNED(chan) 
> failed in channel_closed at src/or/channel.c:1503. (Stack trace not 
> available) (on Tor 0.3.2.9 9e8b762fcecfece6)
> 
> dmesg:
> 
> OpenBSD 6.2-current (GENERIC.MP) #4: Sat Feb 10 18:04:19 MST 2018
> dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
> real mem = 8351621120 (7964MB)
> avail mem = 8091496448 (7716MB)
> enter_shared_special_pages: entered idt page va 0x8001 pa 
> 0x1d5c000
> enter_shared_special_pages: entered kutext page va 0x81833000 pa 
> 0x1833000
> enter_shared_special_pages: entered kutext page va 0x81834000 pa 
> 0x1834000
> enter_shared_special_pages: entered kutext page va 0x81835000 pa 
> 0x1835000
> enter_shared_special_pages: entered kudata page va 0x81acb000 pa 
> 0x1acb000
> cpu_enter_pages: entered tss+gdt page at va 0x81aa2000 pa 0x1aa2000
> cpu_enter_pages: entered t.stack page at va 0x81aa3000 pa 0x1aa3000
> cpu_enter_pages: cif_tss.tss_rsp0 = 0x81aa33e0
> mpath0 at root
> scsibus0 at mpath0: 256 targets
> mainbus0 at root
> bios0 at mainbus0: SMBIOS rev. 2.8 @ 0xedc10 (87 entries)
> bios0: vendor LENOVO version "FBKTCQAUS" date 12/16/2017
> bios0: LENOVO ThinkServer TS140
> acpi0 at bios0: rev 2
> acpi0: sleep states S0 S5
> acpi0: tables DSDT FACP APIC FPDT FIDT TCPA DBGP LUFT SSDT SSDT MCFG
> HPET SSDT SSDT ASF! DMAR EINJ ERST HEST BERT BGRT
> acpi0: wakeup devices UAR1(S0) PXSX(S0) RP01(S0) PXSX(S0) PXSX(S0)
> PXSX(S0) RP04(S0) PXSX(S0) PXSX(S0) PXSX(S0) PXSX(S0) GLAN(S0)
> EHC1(S0) EHC2(S0) XHC_(S0) HDEF(S0) [...]
> acpitimer0 at acpi0: 3579545 Hz, 24 bits
> acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
> lapic_map: entered lapic page va 0x81aa6000 pa 0xfee0
> cpu0 at mainbus0: apid 0 (boot processor)
> cpu0: Intel(R) Xeon(R) CPU E3-1226 v3 @ 3.30GHz, 3492.47 MHz
> cpu0:
> FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,RDTSCP,LONG,LAHF,ABM,PERF,ITSC,FSGSBASE,BMI1,AVX2,SMEP,BMI2,ERMS,INVPCID,IBRS,IBPB,STIBP,SENSOR,ARAT,MELTDOWN
> cpu0: 256KB 64b/line 8-way L2 cache
> acpitimer0: recalibrated TSC frequency 3292379149 Hz
> cpu0: smt 0, core 0, package 0
> mtrr: Pentium Pro MTRR support, 10 var ranges, 88 fixed ranges
> cpu0: apic clock running at 99MHz
> cpu0: mwait min=64, max=64, C-substates=0.2.1.2.4, IBE
> cpu1 at mainbus0cpu_enter_pages: entered tss+gdt page at va
> 0x80002200 pa 0x10f184000
> cpu_enter_pages: entered t.stack page at va 0x800022001000 pa 0x10f185000
> cpu_enter_pages: cif_tss.tss_rsp0 = 0x8000220013e0
> : apid 2 (application processor)
> cpu1: Intel(R) Xeon(R) CPU E3-1226 v3 @ 3.30GHz, 3491.92 MHz
> cpu1:
> 

Re: Bad network performance on apu2c4

2017-11-04 Thread Chris Cappuccio
Rupert Gallagher [r...@protonmail.com] wrote:
> Look, I know what I am talking about. I have an apu that does what I said 
> using negligible cpu load. And there is nothing fancy with it.

I see. Sorry, until you said this, I was not convinced that you knew. Having
read these words, it's now apparent to me that you are an expert in this area
and I was terribly wrong to try and correct you.

Chris



Re: Bad network performance on apu2c4

2017-11-04 Thread Chris Cappuccio
Rupert Gallagher [r...@protonmail.com] wrote:
> 
> You seem to say that handling larger packets is a feature of having limited 
> CPU. I disagree.
> 

Rupert, I'm saying that a slower CPU can process less packets per second.

The important measurement is packets-per-second. The APU has plenty of
memory bandwidth to handle large volumes of data. For adequate CPU power,
you have to either lower the cost of processing (make software better/more
efficient) or you have to distribute the cost across the 4 cores of the APU2
(make software execution parallel).

> > The same traffic level, with 1500 byte packets generates 6 times more 
> > packets per second than that traffic level with 9000 bytes packets.
> 
> You divided 9000 by 1500 without mistakes. Congratulations.
> 

The point was clearly lost on you.

> > There is ongoing work to improve the network stack performance on boxes 
> > like the APU2 (which have 4 cores). You will see improvements. If you want 
> > it better today, you need a faster box. Chris
> 
> The apu2c4 is fast enough to saturate its Intel 1Gbits/sec link. It has three 
> of those. If you connect all three to the switch, you get 3Gbps shy. No need 
> for a faster box. You rather need a faster switch, class 7 S-FTP wires 
> (better than class 6), and 2.5Gbps lan cards for clients.

No, you don't need any of that. You have no idea what you are talking about.

The APU requires software crafted to evenly distribute PER-PACKET PROCESSING
cost across multiple cores. That is what is happening in OpenBSD today. It has
been happening for years, and it is getting closer to becoming a reality with
OpenBSD + APU2, as well as other chipsets/platforms. 

For a couple years now, we've had interrupts processed by one core, PF on
another, and other parts of the kernel on a third core. But to accelerate
packet processing alone, we need interrupts handled on multiple cores,
PF processing handled on multiple cores. This is hard work.

By the way, what I'm describing is the general-purpose OS approach towads
this problem. If you want to turn computer hardware into routers with little
other concern, the go-to platform is DPDK + VPP. It is something like an
order of magnitude faster than any general purpose OS (OpenBSD, Linux) at
packet pushing.

https://www.reddit.com/r/networking/comments/6upchy/can_a_bsd_system_replicate_the_performance_of/dlvdq2e/

Chris



Re: Cheap 2x NIC OpenBSD device

2017-11-03 Thread Chris Cappuccio
Sean Murphy [s.pat.mu...@gmail.com] wrote:
> You can install OpenBSD on it.  As noted in the thread by techay Ted
> Unangst has a good write up on the unit on his blog.
> 

A side note, OpenBSD 6.2-current will take better advantage of the multiple 
cores using the cnmac interface (or will soon) on this box than the 6.2 release.



Re: Bad network performance on apu2c4

2017-11-03 Thread Chris Cappuccio
Rupert Gallagher [r...@protonmail.com] wrote:
> Out of curiosity, I just tested an apu2c4 server with obsd 6.1, against a 
> windows 10 client on LAN with a 1Gbit CISCO switch in between and 9K MTU on 
> both sides, using iperf3 -P10. The result is a spectacular 950Mbits/sec.
> 

This is not a regression. The APU2 has limited CPU power and can handle larger 
packets much better than typically internet-routable 1500 byte packets. The 
same traffic level, with 1500 byte packets generates 6 times more packets per 
second than that traffic level with 9000 bytes packets. There is ongoing work 
to improve the network stack performance on boxes like the APU2 (which have 4 
cores). You will see improvements. If you want it better today, you need a 
faster box.

Chris



Re: Xen based VPS / OpenBSD 6.2 / OpenVPN 2.4.4 => Slow download speed after upgrade

2017-10-31 Thread Chris Cappuccio
You went from emulated Realtek ethernet to xnf. Can you try other network 
interfaces?

Berry Wendermouth [bayb...@riseup.net] wrote:
> Xen based VPS / OpenBSD 6.2 / OpenVPN 2.4.4 => Slow download speed after
> upgrade
> 
> 
> Dear OpenBSD Community,
> 
> we are operating an OpenVPN server on OpenBSD. A few days ago we
> upgraded to OpenBSD 6.2 
> and we are now seeing very slow speeds (<10KB/s) when trying to download
> via
> the VPN tunnel from the internet (WAN). We did not have this problem
> before.
> 
> >From the documented test cases below (Specifically case 2) it does not
> look like it is a VPN performance problem (e.g. mtu/encryption
> performance related).
> We can also exclude bandwidth trottleing by the VPS provider and the
> ISP.
> 
> * Did something essential change in `pf`? [4]
> * Or is the problem related to OpenBSD's Xen drivers?
> 
> Could someone help us track down the bottleneck?
> 
> Any help and hints are very much appreciated.
> 
> Thank you kindly
> 
> Berry
> 
> PS: for a better viewing experience you may compile this email body with
> `asciidoc` 
> 
> == Environment
> 
> === Server
> * OpenBSD 6.2 / amd64 (-release) + syspatch
> * OpenVPN 2.4.4
> * On Virtual Private Server / Xen version "4.9.0" by Xen Project [0]
> * Detected CPU: Intel(R) Xeon(R) CPU E5-2620
> * Detected network device: xnf0
> * Firewall configuration: /etc/pf.conf [1]
> * System Message Buffer [2]
> 
> === Clients
> * OpenBSD 6.2 with OpenVPN 2.4.4
> * GNU/Linux Gentoo with OpenVPN 2.4.4
> * LinesageOS 14.1 with OpenVPN for Android 0.6.73
> 
> == Detailed Problem Description / Test Results
> 
> Please note: the following documented tests used one and the same client
> / network connection:
> 
> * GNU/Linux Gentoo with OpenVPN 2.4.4
> * Connected to router via wifi on internet connection with max 50Mbit/s
> download
> 
> To rule out problems with the client local network settings tests with
> other client setups on other networks were also performed and showed
> identical
> results. For brevity they are not documented here.
> 
> === Case 1: Server <==> WAN (ok)
> * When on the server, downloading a file from WAN 
> * Scenario: downloaded 100MB file from
> http://fra36-speedtest-1.tele2.net/ with curl
> * Average Download Speed: ~ 10Mbit/s 
> * Testresult:
> 
> 
> $ curl http://fra36-speedtest-1.tele2.net/100MB.zip > /dev/null 
> % Total% Received % Xferd  Average Speed   TimeTime Time 
> Current
> Dload  Upload   Total   SpentLeft  Speed
> 100  100M  100  100M0 0  9309k  0  0:00:11  0:00:11 --:--:--
> 10.9M
> 
> 
> === Case 2: Client <= VPN => Server (ok)
> * When on the client, downloading a file from server via VPN tunnel
> * Scenario: standard download test with `iperf`
> * Average Download Speed: ~ 15Mbit/s
> * Testresult:
> 
> 
> # iperf -s  
> 
> 
> ---
> Server listening on TCP port 5001
> TCP window size: 16.0 KByte (default)
> ---
> [  4] local 10.8.0.1 port 5001 connected with 10.8.0.4 port 34998
> [ ID] Interval   Transfer Bandwidth
> [  4]  0.0-10.2 sec  18.5 MBytes  15.2 Mbits/sec
> 
> 
> # iperf -c 10.8.0.1
> ---
> Client connecting to 10.8.0.1, TCP port 5001
> TCP window size: 45.0 KByte (default)
> ---
> [  3] local 10.8.0.4 port 34998 connected with 10.8.0.1 port 5001
> [ ID] Interval   Transfer Bandwidth
> [  3]  0.0-10.0 sec  18.5 MBytes  15.5 Mbits/sec
> 
> 
> === Case 3a: Client <= VPN => Server <==> WAN (broken)
> * When on the client, downloading a file from WAN via VPN tunnel
> * Scenario: downloaded 100MB file from
> http://fra36-speedtest-1.tele2.net/ with curl
> * Average Download Speed: ~ 5KB/s
> * Testresult:
> 
> 
> curl http://fra36-speedtest-1.tele2.net/100MB.zip > /dev/null
> % Total% Received % Xferd  Average Speed   TimeTime Time 
> Current
> Dload  Upload   Total   SpentLeft  Speed
> 0  100M0  149k0 0   5102  0  5:42:32  0:00:30  5:42:02 
> 4933
> 
> 
> === Case 3b: Client <==> WAN (ok)
> * When on the client, downloading a file from WAN directly
> * Scenario: downloaded 100MB file from
> http://fra36-speedtest-1.tele2.net/ with curl
> * Average Download Speed: ~ 1100KB/s
> * Testresult:
> 
> 
> curl http://fra36-speedtest-1.tele2.net/100MB.zip > /dev/null
> % Total% Received % Xferd  Average Speed   TimeTime Time 
> Current
> Dload  Upload   Total   SpentLeft  Speed
> 100  100M  100  100M0 0  1113k  0  0:01:32  0:01:32 --:--:--
> 1196k
> 
> 
> == Previous working system
> Before the upgrade to OpenBSD 6.2 we had a working system with the
> following setup:
> 
> * OpenBSD 6.1 / i386
> * OpenVPN 2.4.1 
> * firewall settings were the same [8]
> 
> The fact that we had installed i386 instead 

Re: Trouble with VMM/VMD

2017-10-11 Thread Chris Cappuccio
A side note, you should turn on AHCI in your BIOS, not 'compatible' mode

pciide0: using apic 2 int 19 for native-PCI interrupt
wd0 at pciide0 channel 0 drive 0: 
wd0: 16-sector PIO, LBA48, 1907729MB, 3907029168 sectors
wd1 at pciide0 channel 0 drive 1: 
wd1: 16-sector PIO, LBA48, 244198MB, 500118192 sectors
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 6
wd1(pciide0:0:1): using PIO mode 4, Ultra-DMA mode 6
wd2 at pciide0 channel 1 drive 1: 
wd2: 16-sector PIO, LBA48, 1907729MB, 3907029168 sectors
wd2(pciide0:1:1): using PIO mode 4, Ultra-DMA mode 6


Roar Waagsb?? [kowalczyk13...@gmail.com] wrote:
> After a little tip I send this mail again without pastebin links.
> 
> Hi.
> 
> Architecture is: amd64
> 
> dmesg:
> 
> emulation)
> wsdisplay0: screen 1-5 added (std, vt100 emulation)
> xhci0 at pci0 dev 20 function 0 "Intel 7 Series xHCI" rev 0x04: msi
> usb0 at xhci0: USB revision 3.0
> uhub0 at usb0 configuration 1 interface 0 "Intel xHCI root hub" rev
> 3.00/1.00 addr 1
> "Intel 7 Series MEI" rev 0x04 at pci0 dev 22 function 0 not configured
> ehci0 at pci0 dev 26 function 0 "Intel 7 Series USB" rev 0x04: apic 2 int 23
> usb1 at ehci0: USB revision 2.0
> uhub1 at usb1 configuration 1 interface 0 "Intel EHCI root hub" rev
> 2.00/1.00 addr 1
> azalia0 at pci0 dev 27 function 0 "Intel 7 Series HD Audio" rev 0x04: msi
> azalia0: codecs: Realtek/0x0887, Intel/0x2806, using Realtek/0x0887
> audio0 at azalia0
> ppb1 at pci0 dev 28 function 0 "Intel 7 Series PCIE" rev 0xc4: msi
> pci2 at ppb1 bus 2
> ppb2 at pci0 dev 28 function 4 "Intel 7 Series PCIE" rev 0xc4: msi
> pci3 at ppb2 bus 3
> re0 at pci3 dev 0 function 0 "Realtek 8168" rev 0x09: RTL8168F/8111F
> (0x4800), msi, address 60:a4:4c:ad:8a:41
> rgephy0 at re0 phy 7: RTL8169S/8110S/8211 PHY, rev. 5
> ppb3 at pci0 dev 28 function 5 "Intel 82801BA Hub-to-PCI" rev 0xc4: msi
> pci4 at ppb3 bus 4
> ppb4 at pci4 dev 0 function 0 "ASMedia ASM1083/1085 PCIE-PCI" rev 0x03
> pci5 at ppb4 bus 5
> ehci1 at pci0 dev 29 function 0 "Intel 7 Series USB" rev 0x04: apic 2 int 23
> usb2 at ehci1: USB revision 2.0
> uhub2 at usb2 configuration 1 interface 0 "Intel EHCI root hub" rev
> 2.00/1.00 addr 1
> pcib0 at pci0 dev 31 function 0 "Intel H77 LPC" rev 0x04
> pciide0 at pci0 dev 31 function 2 "Intel 7 Series SATA" rev 0x04: DMA,
> channel 0 configured to native-PCI, channel 1 configured to native-PCI
> pciide0: using apic 2 int 19 for native-PCI interrupt
> wd0 at pciide0 channel 0 drive 0: 
> wd0: 16-sector PIO, LBA48, 1907729MB, 3907029168 sectors
> wd1 at pciide0 channel 0 drive 1: 
> wd1: 16-sector PIO, LBA48, 244198MB, 500118192 sectors
> wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 6
> wd1(pciide0:0:1): using PIO mode 4, Ultra-DMA mode 6
> wd2 at pciide0 channel 1 drive 1: 
> wd2: 16-sector PIO, LBA48, 1907729MB, 3907029168 sectors
> wd2(pciide0:1:1): using PIO mode 4, Ultra-DMA mode 6
> ichiic0 at pci0 dev 31 function 3 "Intel 7 Series SMBus" rev 0x04: apic 2 int 
> 18
> iic0 at ichiic0
> iic0: addr 0x20 01=00 02=00 03=00 04=00 05=00 06=00 07=f6 08=f6 09=f6
> 0a=f6 0b=22 0c=22 0d=88 0e=88 0f=00 10=00 11=98 12=fc 13=04 14=00
> 15=00 16=1c 17=66 18=00 19=00 1a=00 1b=00 1c=00 1d=22 1e=88 1f=02
> 20=00 21=00 22=05 23=59 24=00 25=00 26=55 27=09 28=bf 29=00 2a=f5
> 2b=00 2c=01 2d=d0 2e=a0 2f=18 30=00 31=00 32=00 33=68 3e=db 46=00
> 47=03 48=04 49=13 b2=20 b3=83 words 00=ff00 01= 02= 03=
> 04= 05= 06=00f6 07=f6f6
> spdmem0 at iic0 addr 0x50: 4GB DDR3 SDRAM PC3-10600
> spdmem1 at iic0 addr 0x51: 4GB DDR3 SDRAM PC3-10600
> spdmem2 at iic0 addr 0x52: 4GB DDR3 SDRAM PC3-10600
> spdmem3 at iic0 addr 0x53: 4GB DDR3 SDRAM PC3-10600
> pciide1 at pci0 dev 31 function 5 "Intel 7 Series SATA" rev 0x04: DMA,
> channel 0 wired to native-PCI, channel 1 wired to native-PCI
> pciide1: using apic 2 int 19 for native-PCI interrupt
> wd3 at pciide1 channel 0 drive 0: 
> wd3: 16-sector PIO, LBA48, 1907729MB, 3907029168 sectors
> wd3(pciide1:0:0): using PIO mode 4, Ultra-DMA mode 6
> isa0 at pcib0
> isadma0 at isa0
> com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
> pckbc0 at isa0 port 0x60/5 irq 1 irq 12
> pckbd0 at pckbc0 (kbd slot)
> wskbd0 at pckbd0: console keyboard, using wsdisplay0
> pcppi0 at isa0 port 0x61
> spkr0 at pcppi0
> vmm0 at mainbus0: VMX/EPT
> error: [drm:pid0:cpt_set_fifo_underrun_reporting] *ERROR* uncleared
> pch fifo underrun on pch transcoder A
> error: [drm:pid0:intel_pch_fifo_underrun_irq_handler] *ERROR* PCH
> transcoder A FIFO underrun
> uhidev0 at uhub0 port 3 configuration 1 interface 0 "Chicony HP Elite
> USB Keyboard" rev 1.10/1.21 addr 2
> uhidev0: iclass 3/1
> ukbd0 at uhidev0: 8 variable keys, 6 key codes
> wskbd1 at ukbd0 mux 1
> wskbd1: connecting to wsdisplay0
> uhidev1 at uhub0 port 3 configuration 1 interface 1 "Chicony HP Elite
> USB Keyboard" rev 1.10/1.21 addr 2
> uhidev1: iclass 3/0, 2 report ids
> uhid0 at uhidev1 reportid 1: input=1, output=0, feature=0
> uhid1 at uhidev1 reportid 2: input=2, output=0, feature=0

Re: Apollo Lake

2017-10-02 Thread Chris Cappuccio
The Asrock J3710 is supported with inteldrm and ethernet etc...

Predrag Punosevac [punoseva...@gmail.com] wrote:
> Hi Misc,
> 
> The motherboard on my desktop machine just died. I would like to go
> fanless embedded. Something like ASRock J3455-ITX. 
> 
> https://www.newegg.com/Product/Product.aspx?Item=N82E16813157728=1
> 
> However I am bit concern about Apollo Lake family of products. Can
> anyone post a dmesg? I am open for any suggestions.
> 
> Best,
> Predrag



Re: TCP Window Scaling

2017-09-14 Thread Chris Cappuccio
-w1M works for me
-
Andreas Kr??ger [a...@patientsky.com] wrote:
> I do manage to read the manual, but let me clarify this. I am not
> allowed to set a buffer larger than 256KB with iperf:
> 
> $ uname -a
> OpenBSD odn1-fw-odn1-01 6.0 GENERIC.MP#0 amd64
> 
> $ iperf -s -w 256KB
> 
> Server listening on TCP port 5001
> TCP window size:  256 KByte
> 
> 
> $ iperf -s -w 4MB
> 
> Server listening on TCP port 5001
> TCP window size: 16.0 KByte (WARNING: requested 4.00 MByte)
> 
> $
> 
> ANDREAS KR??GER
> CTO Hosting and Infrastructure
> 
> +45 51808863
> a...@patientsky.com
> 
> 
> 
> PatientSky AS
> Hovfaret 17 B, NO-0275 Oslo, Norway
> patientsky.com
> 
> 
> 
> 
> 2017-09-14 19:46 GMT+02:00 Chris Cappuccio <ch...@nmedia.net>:
> > ipsec tunnels don't use TCP
> >
> > iperf has the -w option
> >
> > Andreas Kr??ger [a...@patientsky.com] wrote:
> >> How would i set i for ipsec tunnels or iperf etc. then?
> >> ANDREAS KR??GER
> >> CTO Hosting and Infrastructure
> >>
> >> +45 51808863
> >> a...@patientsky.com
> >>
> >>
> >>
> >> PatientSky AS
> >> Hovfaret 17 B, NO-0275 Oslo, Norway
> >> patientsky.com
> >>
> >>
> >>
> >>
> >> 2017-09-14 13:10 GMT+02:00 Janne Johansson <icepic...@gmail.com>:
> >> >
> >> > 2017-09-14 13:08 GMT+02:00 Janne Johansson <icepic...@gmail.com>:
> >> >>
> >> >> Since 6.1 I think the max is 2M, and not 256k. Many programs will also
> >> >> allow you to bump limits using setsockopt.
> >> >>
> >> >>
> >> >
> >> > httpd.conf:
> >> > server "secret.site" {
> >> > tcp {
> >> > socket buffer 2097152
> >> > }
> >> >
> >> > rsyncd.conf:
> >> >  ...
> >> > socket options = SO_SNDBUF=2097152
> >> >
> >> >
> >> > --
> >> > May the most significant bit of your life be positive.



Re: TCP Window Scaling

2017-09-14 Thread Chris Cappuccio
ipsec tunnels don't use TCP

iperf has the -w option

Andreas Kr??ger [a...@patientsky.com] wrote:
> How would i set i for ipsec tunnels or iperf etc. then?
> ANDREAS KR??GER
> CTO Hosting and Infrastructure
> 
> +45 51808863
> a...@patientsky.com
> 
> 
> 
> PatientSky AS
> Hovfaret 17 B, NO-0275 Oslo, Norway
> patientsky.com
> 
> 
> 
> 
> 2017-09-14 13:10 GMT+02:00 Janne Johansson :
> >
> > 2017-09-14 13:08 GMT+02:00 Janne Johansson :
> >>
> >> Since 6.1 I think the max is 2M, and not 256k. Many programs will also
> >> allow you to bump limits using setsockopt.
> >>
> >>
> >
> > httpd.conf:
> > server "secret.site" {
> > tcp {
> > socket buffer 2097152
> > }
> >
> > rsyncd.conf:
> >  ...
> > socket options = SO_SNDBUF=2097152
> >
> >
> > --
> > May the most significant bit of your life be positive.



Re: Octeon/MIPS64 SMP Support

2017-09-14 Thread Chris Cappuccio
Once you get to OCTEON III class with -current, software FP emulation
is no longer at play. Ubiquiti Edgerouter 4, 6 and Infinity all fit this class.
4 to 16 cores. Not bad.

Martijn van Duren [openbsd+m...@list.imperialat.at] wrote:
> On 09/13/17 22:28, Dante F. B. Col?? wrote:
> > Hi
> > 
> > I'm think about get a Ubiquiti Edgerouter  box  and drop openbsd there. 
> > I read the instalation  file and was not clear to me  if the current 
> > MIPS/Octeon kernel implementation supports SMP or not , does it support ?
> > 
> > Regards
> > 
> > Dante F. B. Col??
> > 
> Yes it does, just don't forget to set numcores/coremask in the boot
> command.
> 
> Copyright (c) 1982, 1986, 1989, 1991, 1993
> The Regents of the University of California.  All rights reserved.
> Copyright (c) 1995-2017 OpenBSD. All rights reserved.  https://www.OpenBSD.org
> 
> OpenBSD 6.1 (GENERIC.MP) #0: Mon Apr  3 08:08:00 UTC 2017
> visa@octeon:/usr/src/sys/arch/octeon/compile/GENERIC.MP
> real mem = 2147483648 (2048MB)
> avail mem = 2113486848 (2015MB)
> warning: no entropy supplied by boot loader
> mainbus0 at root
> cpu0 at mainbus0: CN61xx CPU rev 0.1 800 MHz, Software FP emulation
> cpu0: cache L1-I 512KB D 8KB 64 way, L2 1024KB 8 way
> cpu1 at mainbus0: CN61xx CPU rev 0.1 800 MHz, Software FP emulation
> cpu1: cache L1-I 512KB D 8KB 64 way, L2 1024KB 8 way
> clock0 at mainbus0: int 5
> iobus0 at mainbus0
> octuctl0 at iobus0 base 0x118006f00 irq 56
> ehci0 at octuctl0
> usb0 at ehci0: USB revision 2.0
> uhub0 at usb0 configuration 1 interface 0 "Octeon EHCI root hub" rev 
> 2.00/1.00 addr 1
> ohci0 at octuctl0, version 1.0
> usb1 at ohci0: USB revision 1.0
> uhub1 at usb1 configuration 1 interface 0 "Octeon OHCI root hub" rev 
> 1.00/1.00 addr 1
> octrng0 at iobus0 base 0x14000 irq 0
> cn30xxgmx0 at iobus0 base 0x118000800
> cnmac0 at cn30xxgmx0: SGMII, address 24:a4:3c:06:a2:72
> ukphy0 at cnmac0 phy 4: Generic IEEE 802.3u media interface, rev. 3: OUI 
> 0x180361, model 0x0004
> cnmac1 at cn30xxgmx0: SGMII, address 24:a4:3c:06:a2:73
> ukphy1 at cnmac1 phy 5: Generic IEEE 802.3u media interface, rev. 3: OUI 
> 0x180361, model 0x0004
> cnmac2 at cn30xxgmx0: SGMII, address 24:a4:3c:06:a2:74
> ukphy2 at cnmac2 phy 6: Generic IEEE 802.3u media interface, rev. 3: OUI 
> 0x180361, model 0x0004
> cnmac3 at cn30xxgmx0: SGMII, address 24:a4:3c:06:a2:75
> ukphy3 at cnmac3 phy 7: Generic IEEE 802.3u media interface, rev. 3: OUI 
> 0x180361, model 0x0004
> cn30xxgmx1 at iobus0 base 0x118001000
> cnmac4 at cn30xxgmx1: SGMII, address 24:a4:3c:06:a2:76
> ukphy4 at cnmac4 phy 0: Generic IEEE 802.3u media interface, rev. 3: OUI 
> 0x180361, model 0x0004
> cnmac5 at cn30xxgmx1: SGMII, address 24:a4:3c:06:a2:77
> ukphy5 at cnmac5 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI 
> 0x180361, model 0x0004
> cnmac6 at cn30xxgmx1: SGMII, address 24:a4:3c:06:a2:78
> ukphy6 at cnmac6 phy 2: Generic IEEE 802.3u media interface, rev. 3: OUI 
> 0x180361, model 0x0004
> cnmac7 at cn30xxgmx1: SGMII, address 24:a4:3c:06:a2:79
> ukphy7 at cnmac7 phy 3: Generic IEEE 802.3u media interface, rev. 3: OUI 
> 0x180361, model 0x0004
> simplebus0 at iobus0: "soc"
> octmmc0 at simplebus0
> sdmmc0 at octmmc0: 8-bit, mmc high-speed
> uartbus0 at mainbus0
> com0 at uartbus0 base 0x118000800 irq 34: ns16550a, 64 byte fifo
> com0: console
> com1 at uartbus0 base 0x118000c00 irq 35: ns16550a, 64 byte fifo
> /dev/ksyms: Symbol table not valid.
> ural0 at uhub0 port 1 configuration 1 interface 0 "Cisco-Linksys Wireless-G 
> USB Network Adapter" rev 2.00/0.04 addr 2
> ural0: MAC/BBP RT2571 (rev 0x05), RF RT2526, address 00:14:bf:75:9a:45
> scsibus0 at sdmmc0: 2 targets, initiator 0
> sd0 at scsibus0 targ 1 lun 0:  SCSI2 0/direct removable
> sd0: 3776MB, 512 bytes/sector, 7733248 sectors
> vscsi0 at root
> scsibus1 at vscsi0: 256 targets
> softraid0 at root
> scsibus2 at softraid0: 256 targets
> boot device: sd0
> root on sd0a (5e15570835adc5f6.a) swap on sd0b dump on sd0b



Re: [PATCH] Off-by-one bug in httpd's config file port number checking

2017-08-18 Thread Chris Cappuccio
Kris Katterjohn [katterj...@gmail.com] wrote:
> Hello,
> 
> I think I've found an off-by-one bug in httpd: it cannot listen on port
> 65535 when the port is specified as a number (although it can listen on
> it if specified as the string "65535", or if an appropriate line is
> added to /etc/services and it's specified with that name).
> 
> $ uname -a
> OpenBSD Meryl 6.1 GENERIC.MP#19 amd64
> 
> $ cat /etc/httpd.conf
> server "default" {
>   listen on egress port 65535
> }
> 
> $ doas httpd -n
> /etc/httpd.conf:2: invalid port: 65535
> no actions, nothing to do
> 
> 
> The above is on 6.1, but it looks like the problem still exists in CVS.
> 
> Below is a patch (or the possible start of one).  It's untested as I
> cannot do a build and test it right now, but I think it's enough.  If
> not, I hope it's at least a little helpful.  Let me know if there is
> anything else I can do and I'll try to do it whenever I can.

This looks correct. Also, there's more:

httpd/parse.y:  if ($2 <= 0 || $2 >= (int)USHRT_MAX) {
ldapd/parse.y:  if ($2 <= 0 || $2 >= (int)USHRT_MAX) {
relayd/parse.y: if ($2 <= 0 || $2 >= (int)USHRT_MAX) {
smtpd/parse.y:  if ($2 <= 0 || $2 >= (int)USHRT_MAX) {
switchd/parse.y:if ($2 <= 0 || $2 >= (int)USHRT_MAX) {
ypldap/parse.y: if ($2 <= 0 || $2 >= (int)USHRT_MAX) {



Re: OpenBSD-based ISP

2017-08-17 Thread Chris Cappuccio
Juan Guillermo Narvaez [guille...@nrvz.net] wrote:
> # sysctl | grep ifq
> net.inet.ip.ifq.len=0
> net.inet.ip.ifq.maxlen=1024
> net.inet.ip.ifq.drops=46068291
> net.inet6.ip6.ifq.len=0
> net.inet6.ip6.ifq.maxlen=256
> net.inet6.ip6.ifq.drops=0
> 

The drops are high. You probably want a higher maxlen. I use 8192 on busy 
forwarding boxes.

> # cat sysctl.conf
> net.inet.ip.forwarding=1
> kern.bufcachepercent=90
> net.ip.ifq.maxlen=1024
> 

You want net.inet.ip.ifq.maxlen=8192 not 'net.ip.ifq.maxlen=1024'




Re: vmd and FreeBSD support

2017-07-25 Thread Chris Cappuccio
Tell it to use a serial console and not a VGA console

David Lowe [d.l...@openmailbox.org] wrote:
> Hello,
> a few weeks ago, I read something about vmm hosting FreeBSD. I tried the
> image
> found at 
> https://download.freebsd.org/ftp/releases/VM-IMAGES/11.0-RELEASE/amd64/Latest/
> but the boot process just restarts after this situation:
> 
> 
> 
>  +Welcome to FreeBSD---+ +o   .--` /y:`  +.
>  | |  yo`:.:o  `+-
>  |  1. Boot Multi User [Enter] |   y/   -/`   -o/
>  |  2. Boot Single User|  .-  ::/sy+:.
>  |  3. Escape to loader prompt |  / `--  /
>  |  4. Reboot  | `:  :`
>  | | `:  :`
>  |  Options:   |  /  /
>  |  5. Kernel: default/kernel (1 of 2) |  .--.
>  |  6. Configure Boot Options...   |   --  -.
>  | |`:`  `:`
>  | |  .-- `--.
>  | | .---..
>  +-+
> 
> 
> /boot/kernel/kernel text=0x14ed860 data=0x132538+0x4baa68
> syms=[0x8+0x159ee8+0x8
> +0x172d9c] 08 di= bp= sp=5df6 cs= ip=9336  f=0242
> Booting...
> |reeBSD/x86 bootstrap loader, Revision 1.1
> (r...@releng2.nyi.freebsd.org, Thu Sep 29 01:38:45 UTC 2016)
> Loading /boot/defaults/loader.conf
> /
> 
> 
> Does anyone know a workaround (or some hint how to convince FreeBSD to
> boot)?
> I also tried NetBSD but without luck.
> 
> Thanks!



Re: Gina/Adityha, followup on donation request re OpenPower devices Re: Interest in POWER platform?

2017-05-25 Thread Chris Cappuccio
Hi Mikael,

I can't tell, are you trolling these people?

Or, do you sincerely find these to be an effective set of techniques to 
convince other people of your beliefs?

This is a pro bono email.

Chris

Mikael [mikael.ml...@gmail.com] wrote:
> Hi IBM,
> 
> This email followup was mostly to reflect that a member of the general
> public has asked for the support that a donation of OpenPower devices would
> lead to.
> 
> Feel free to forward it to the person at your company who has the power to
> sign off on a donation e.g. your CEO.
> 
> This is a pro bono email.
> 
> I personally think Power9/Power8 support is a useful thing and if
> 10x2,850USD would have been less than say 0.2% of my wealth, I'd simply
> have taken this matter through a web shopping cart.
> 
> Have a good day.
> 
> Thanks!,
> Mikael More
> 
> 2017-05-25 13:52 GMT+08:00 Mikael :
> 
> > Hi Kai and IBM,
> >
> > Yes I did the attempts to contact IBM to get Power donations, as quoted by
> > axon below. A guy by the name Benjamin Herrenschmidt at IBM used the word
> > 'execrable' about me in PM, that was weird for a fund(hardware)raiser, and
> > sincerely quite disturbing to me.
> >
> > (My 'attitude' - after 8 months and 70 emails they delegated the matter
> > from their main office in the US, to Australia.)
> >
> > I think with respect to IBM donations, the relevant path would be to
> > enquire directly with their CEO Ginni Rommety, e.g.
> > https://www.ibm.com/ibm/ginni/ , also with reference to the massive
> > commercial value they have from OpenSSH. Anyone below does not have the
> > power to authorize donations.
> >
> > Gina and Adithya at IBM on copy for reference. If you can forward this to
> > your CEO would be great. Your cheapest multi-CPU Power9 or Power8 device
> > should be around 2000 USD production cost max, meaning this is a 20,000 USD
> > donation request, or for 20,000 / 80,000,000,000 = 0.000,025% of your
> > annual turnover, as a marketing and goodwill thing it couldn't be cheaper.
> >
> >
> > If you have 6 to 10 devices - just any, preferably multi-CPU - to donate,
> > please ship them over and we'll likely see support happen.
> >
> > If they need to be shopped, Tyan was selling them for 2850 USD a piece
> > recently, https://web.archive.org/web/20160118065359/http://
> > www.tyan.com/campaign/openpower/index.html . Maybe we're closer to Power9
> > now.
> >
> > I like Power as it's server-grade hardware that I personally deem
> > preferable to AMD64. IBM's attitude about my hardware-raiser initiative
> > last year was execrable though.
> >
> > This email is a response to suggest a next step. I think everyone involved
> > has been personally well-intended and there was a certain sense of friction
> > in the realization that noone involved in the emails at IBM had the
> > authority to sign off on a donation.
> >
> > People like you and me are free to shop and donate.
> >
> > Mikael
> >
> > 2017-05-25 1:57 GMT+08:00 Kai Wetlesen :
> >
> >> Hi all,
> >>
> >> What is the current community interest in getting OpenBSD running on the
> >> newer POWER processors? I have a number of POWER based systems at work
> >> which run various Linux flavors, but it would be nice to bring OpenBSD to
> >> these systems as we???re been trying it out in different spaces throughout
> >> our division. What would it take to get a POWER port up and kicking?
> >>
> >> Regards,
> >> Kai
> >>
> >
> > 2017-05-25 8:42 GMT+08:00 Ax0n :
> >
> >> In summary: There are 3 people who have been quite vocal about getting a
> >> POWER port recently. None of them are developers with the knowledge or
> >> resources to port it.
> >>
> >> Big thread from late last year:
> >> https://marc.info/?l=openbsd-misc=147680858507662=2
> >>
> >> A follow-up (late December 2016):
> >> https://marc.info/?l=openbsd-misc=148246956710299=2
> >>
> >> Search link with some scattered and often-unrelated results:
> >> https://marc.info/?l=openbsd-misc=2=1=IBM+POWER=b
> >>
> >
> > 2017-01-03 14:52 GMT+08:00 Benjamin Herrenschmidt :
> > ..
> >
> >> Right, and as I mentioned, we hope to have reasonably soon much more
> >> affordable machines available as well, which will make it easier for us
> >> to sponsor community projects with HW donations.
> >>
> >> Cheers,
> >> Ben.
> >>
> >
> >



Re: Interest in POWER platform?

2017-05-24 Thread Chris Cappuccio
Kai Wetlesen [kwetle...@mac.com] wrote:
> Hi all,
> 
> What is the current community interest in getting OpenBSD running on the 
> newer POWER processors? I have a number of POWER based systems at work which 
> run various Linux flavors, but it would be nice to bring OpenBSD to these 
> systems as we???re been trying it out in different spaces throughout our 
> division. What would it take to get a POWER port up and kicking?
> 

OpenBSD is moving ahead on armv7, arm64, and mips64 (loongson, octeon, sgi) as 
viable alternatives to i386/amd64. Other platforms are not well supported 
usually due to lack of available hardware and, therefore, developer interest.

If you want to make it happen, hardware is needed. At a minimum, you need 
capable machines in the hands of several interested developers. That's the bare 
minimum. A code base with basic driver support, like macppc, socppc or peagsus 
is a major kick-starter, too. But those are old enough that they may not be 
very helpful with a non-Apple 64-bit PPC machine.

Since there is little interest in this platform overall (from what I can tell), 
it would require a miracle for this to happen right now.

Chris



Re: Can not read NTPd timedelta from NMEA device by sysctl hw.sensors.nmea0

2016-12-06 Thread Chris Cappuccio
Mihai Popescu [mih...@gmail.com] wrote:
> | # ldattach -s 9600 nmea /dev/cuaU2
> 
> Did you try with /dev/cua00, /dev/cua01, ...
> 
> I think /dev/cuaXX means XX are numbers.

if he's using a USB adapter, cuaU2 could be correct, if he has two other
usb serial adapters plugged in at least



Re: network address in vm by kvm - default gw

2016-11-28 Thread Chris Cappuccio
Max Power [open...@cpnetserver.net] wrote:
> Hi guys,
> Forgive me, but I am not very expert of OpenBSD.
> Guide, about Virtual Host, show examples for all
> Operating System but not for OpenBSD. Stupid OVH!
> This is the FreeBSD 8.0 way:
> 
> Contents of the file : /etc/rc.conf
> ifconfig_em0="inet IP.FAIL.OVER netmask 255.255.255.255 broadcast
> IP.FAIL.OVER"
> static_routes="net1 net2"
> route_net1="-net GATEWAY_VM/32 IP.FAIL.OVER"
> route_net2="default GATEWAY_VM"
> 
> I can not understand how/where to set the last 2 line 'route_netX'
> Please, can someone show me how to do in OpenBSD 6.0 adm64...?
> 

route add -net GATEWAY_VM/32 IP.FAIL.OVER
route add default GATEWAY_VM



Broadcom Wifi Chip Datasheets

2016-11-15 Thread Chris Cappuccio
https://twitter.com/marcan42/status/798720961562361857

"Cypress bought Broadcom's WiFi business and apparently published all their 
formerly unobtainium datasheets":

http://www.cypress.com/search/all?f[0]=meta_type%3Atechnical_documents[1]=resource_meta_type%3A575[2]=field_related_products%3A110101



Re: Laptop Recommendations?

2016-11-15 Thread Chris Cappuccio
Mihai Popescu [mih...@gmail.com] wrote:
> Folks, pay attention, please! The OP asked about a laptop.
> Pansonic Thoughbook is not a laptop! It's a real desktop.
> 

I was talking about the Panasonic _Toughbook_ which is definitely a laptop. 
The CF-C1 and CF-19MK3/MK4/MK5 models are all very portable. The CF-19 is
a bit rugged. My CF-C1 fans, even on very high hour units, are all fine,
the CF-19 has no fans at all. There are lots of other models and they are 
all pretty cheap once you get to 2012 or earlier models. Panasonic makes more
parts in-house than any other manufacturer, and they seem to be pretty high
quality. The cheap used stuff is a great match for me.

Chris



Re: Laptop Recommendations?

2016-11-11 Thread Chris Cappuccio
harry666t [harry6...@gmail.com] wrote:
> On 11 November 2016 at 03:25, Brian  wrote:
> > Thinkpads are used often by folks wanting to get that penguin OS going also.
> 
> Typing this on a Thinkpad X200s, running 6.0, very very happy with it.

I consistently get junk when I buy old Thinkpads. Usually the problems are not 
major, but I started buying Panasonic Toughbook CF-C1A (1st gen intel) and 
CF-C1B (2nd gen intel) laptops which are equivalent to X200 and X220. I have 
several units on ebay now for $60 USD which have 14,000 hours (basically on 
since they were manufactured) and they look and act brand new. I also started 
getting CF-19 MK3 (Core 2 duo) and CF-19 MK4 (i5) for field use. They are 
basically rock-solid, even with 8000 hours. Not every single used one has been 
great, but most have been very, very good...



Re: LLVM license change

2016-09-27 Thread Chris Cappuccio
Ingo Schwarze [schwa...@usta.de] wrote:
> Hi Benjamin,
> 
> kbenjamin Coplon wrote on Mon, Sep 26, 2016 at 01:23:43PM -0400:
> 
> > What does the OpenBSD community think about the LLVM proposal to move
> > to the Apache license?
> > 
> > http://lists.llvm.org/pipermail/llvm-dev/2016-September/104778.html
> 
> If LLVM would move to the Apache 2 license, we would become unable
> to use versions released after that change, and would be stuck with
> version released before the change, just like we are stuck with
> pre-GPLv3 gcc now.  So it would be very bad for us.
> 
> See http://www.openbsd.org/policy.html :
> 
>   Apache
> The original Apache license was similar to the Berkeley license,
> but source code published under version 2 of the Apache license
> is subject to additional restrictions and cannot be included
> into OpenBSD.
> 
> In a nutshell, OpenBSD does not consider software released under
> Apache 2 to be free software.  At least not free enough for us.
> 

One major problem with the Apache 2.0 license is the fact that it
is not merely a software license, but extends out into contract law.
This has been a concern with many licenses, not just Apache.

If you use Apache 2.0 license code, you lose rights that you otherwise
retain under the MIT or BSD license.

Just review sections 3 and 4. The patent clause in section 3 is an issue.

https://www.apache.org/licenses/LICENSE-2.0.txt

Chris



Re: ARM64:s finally on the market, and flooding it. OpenBSD support?

2016-09-22 Thread Chris Cappuccio
Tinker [ti...@openmailbox.org] wrote:
> The market is finally being flooded with ARM64:s. And some of them are
> inexpensive.
> 
> I guess AllWinner A64/H64 will be the most ubiquitous one as the chip
> is/soon will be something like 5 USD.

The Allwinner 64-bit parts are supported under 32-bit mode on armv7.

Chris



Re: Routing 10-40 Mpps on OpenBSD

2016-09-11 Thread Chris Cappuccio
K K [kk...@outlook.com] wrote:

> I thought Intel, but I speak out of impressions, not backed by any facts.
> 

David Gwynne who is working on the Myricom driver recommends the intel card
if that helps

> What is the take of OpenBSD developers on this?
> Are they any plans?
> 

There's a lot of work going into multi-threading the stack right now.
If you read www.openbsd.org/papers/ and undeadly.org you can keep up
with some of the documented progress. 

I don't think anyone is using OpenBSD at 10Mpps on a box today, or if 
they are, that's the upper limit in a configuration without pf. I'd say
that 10Mpps - 40Mpps is a bit past the "typical small ISP".

> Many options seems available, but I have no idea how they could be
> integrated in OpenBSD. I now clearly nothing of proper software
> development.
> 
> - DPDK (now BSD licensed)
> - NETMAP/FW
> 

The general consensus goes against these types of tools at the
moment. I think people want to get the network stack right, first,
before making it hot-pluggable...

Chris



Re: Routing 10-40 Mpps on OpenBSD

2016-09-11 Thread Chris Cappuccio
K [k...@protonmail.com] wrote:
> All,
> 
> This message is a call for people who are interested to benchmark commodity
> hardware with the goal of pushing as much PPS as possible through OpenBSD.
> The initial target is to reach 10 Mpps at 64 bytes (or more precisely 84
> bytes with interpacket gap) and if the experiment proves to be successful,
> we would then aim at 40+ Mpps.
> 
> The ultimate goal of this experiment is to build and share with the
> community a recognized hardware configuration that provides a good ground
> for real-world traffic at a typical small ISP.
> 
> We couldn't find such information online. In our case, the final setup
> would be two routers, each with two 10 Gbps uplink to upstreams Internet
> providers and an OSPF and iBGP connection between them. The software
> stack would be based on OpenBSD, OpenBGPD and OpenOSPFD. There is no
> commercial idea around the finding of this experiment.
> 
> While our budget is not unlimited and privately funded (by individuals),
> we are open to hear what hardware specifications people on this list
> would be interested to see. At the moment, we aim for this:
> 
> CPUs: Intel Xeon CPU E5-2697v2, E5-2667v2, E5-2680v3, E5-2640v3
> Intel NICs: Intel 82599ES, X520, X540-{T1/T2/AT2}, 85595, 82598,
> AF/82598, AT/82598, EB/82599, EB/82599 EN
> Chelsio NIcs: Chelsio T540-CR (although not sure there is an OpenBSD driver)

I think Intel and Myricom are going to be the best-supported 10GbE on
OpenBSD at the moment.

The best performance today will be with a processor that packs a lot
of punch into a smaller number of cores. I'm using Xeon E5-1630 v3
right now. The E5-2xxx series tend to have more cores at lower clock
speeds. They make more sense on a regular server. 

There is a lot of ongoing work in this area, OpenBSD doesn't claim to
be the performance leader today. 

Chris



Re: OpenBSD 6.0 panic

2016-09-02 Thread Chris Cappuccio
Bastien Durel [bast...@durel.org] wrote:
> 
> There's a "Bad system call" in the networking start too, but I think
> it's not related (and I don't know what interface produces this
> message)
> 

This would be a program you compiled that you are calling from
hostname.if.



Re: Installer overwrites partition table

2016-08-24 Thread Chris Cappuccio
Bertram Scharpf [li...@bertram-scharpf.de] wrote:
> Calling me a troll and then using the word "Hundepimmel" in
> the same mail: Does this guy Eric Furman read what he
> writes? This is an obvious Dunning-Kruger. Being given
> offence by a community that doesn't throw out such a
> low-minded person is not really hurting me.
> 

If you look at the archives, you'll see that people tried.



Re: Support for Intel XL710 NIC

2016-08-17 Thread Chris Cappuccio
ML mail [mlnos...@yahoo.com] wrote:
> Hi,
> 
> Will OpenBSD 6.0 support the Intel XL710 network interface cards?
> 

I think someone was working on the Intel 40Gbps chipset but don't remember
who. In any event, the first releast that might include this code is
OpenBSD 6.1. The 6.0 release is already set.



Re: Output Errors on VLAN interfaces

2016-08-08 Thread Chris Cappuccio
Andy Lemin [a...@brandwatch.com] wrote:
> The underlying trunk does not report any Rx or Tx errors at all.
> 
> And the VLAN interfaces do not report any receive errors, only low rate
> transmit errors.
> 
> Also as a thought exercise, could anyone kindly explain/discuss how an
> output error might even occur or be valid?
> 

Look at /usr/src/sys/net/if_vlan.c, you'll find exactly two places where
if_oerrors increments. Logically, both are in the vlan_start() routine.
The first happens after vlan_inject fails. If vlan_inject returns a null
mbuf, that appears to be a failure within m_prepend(), probably from
failure to allocate memory for the new mbuf. Where's your dmesg? Are you
using a card that does hw tagging? (If so, this isn't the codepath you're
looking for.)

If the failure is the new if_enqueue, it seems like ifq_enqueue would be 
calling priq_enq which would be returning a failure if the queue is full.
Are you using hfsc?

Chris



Re: github

2016-08-08 Thread Chris Cappuccio
Karel Gardas [gard...@gmail.com] wrote:
> OpenBSD is using CVS solely, but for my own purposes I started to
> mirror src to github recently using cvs2gitdump tool. I do this since
> I find git log/git show more friendly than CVS provided tools... If
> you are interested see https://github.com/kgardas/openbsd-src --

Thank you. I personally find these git browsers to be convenient,
mostly because I can look at one entire commit in a click. So, this
depends on cvs2gitdump being accurately able to identify commits
that are part of the same action. For my regular diff browsing,
it's probably fine :)



Re: Kernel Panic

2016-08-01 Thread Chris Cappuccio
arrowscr...@mail.com [arrowscr...@mail.com] wrote:
> I login on root to restart the network and the system crashed.
> What I did:
> - Login with root on ttyC0
> - Tell dhcp that I wanted dns to localhost:
> 
> # echo "supersede domain-name-servers 127.0.0.1;" >> /etc/dhclient.conf
> 
> - Then restarted the net:
> 
> # sh /etc/netstart
> 

Can you reliably reproduce this?

> OpenBSD 5.9 (GENERIC) #1761: Fri Feb 26 01:15:04 MST 2016
> dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC

Can you reliably reproduce it with the latest snapshot?



Re: Network Interface "Intel I350 Fiber" 8 Port Module shows only 4 Ports

2016-07-24 Thread Chris Cappuccio
Marco Prause [marco-obsdm...@prause.eu] wrote:

> em1: flags=18802 mtu 1500
> lladdr 00:90:0b:4b:54:0f
> priority: 0
> media: Ethernet autoselect (none)
> status: no carrier
> supported media:
> media 1000baseSX mediaopt full-duplex
> media 1000baseSX
> media autoselect
> #
> 
> Having a look at the specification and em(4) I thought, it would be
> possible to connect e.g. 1000baseLX transceiver too.
> Does anybody know, if it is just because there's no 1000baseLX plugged
> in at the moment, or are there any limitations I should be aware of ?
> 

Yes it works fine. Perhaps you have an SX SFP installed at the moment?



Re: ratble and rdomain support on dhcpd and openvpn

2016-07-15 Thread Chris Cappuccio
Difan Zhao [difan.z...@pason.com] wrote:
> Hi Pierre, 
> 
> I just upgraded the soekris box to openbsd 5.9 however I am still having the 
> problem setting the rtable...
> 

This requires OpenBSD 6.0 which is not yet released. You can use snapshots at 
http//ftp.openbsd.org/pub/OpenBSD/snapshots/amd64/ to install the beta code.



Re: Chromium error on latest snapshot

2016-07-13 Thread Chris Cappuccio
Glenn Faustino [glenn.faust...@gmail.com] wrote:
> Hi misc,
> 
> I'm getting the following error when using chrome. it only display's an
> empty web page. Firefox and Xombrero works just fine.

The kernel's internal pledge checks were improved.

This resulted in more pledges necessary from chromium/iridium.

Rebuild the port or download new builds as they become available.



Re: ratble and rdomain support on dhcpd and openvpn

2016-07-12 Thread Chris Cappuccio
Difan Zhao [difan.z...@pason.com] wrote:
> Thanks Pierre! However the command does not work for me... Do I need to 
> upgrade my openbsd box? I am on 5.8 right now.
> 
> # rcctl set dhcpd rtable 200
> usage: rcctl [-df] action|get|getdef|ls|order|set
> [service | daemon [variable [arguments]] | daemons | lsarg]
> # rcctl get dhcpd
> dhcpd_class=daemon
> dhcpd_flags=vr1
> dhcpd_timeout=30
> dhcpd_user=root
> 
> If it works, does it mean that dhcpd will only operate on rtable 200? It will 
> be nice if it can run on both rtable 200 and the default rtable 0...
> 

I believe under -current, you'd just:

ln -s /etc/rc.d/dhcpd /etc/rc.d/dhcpd200

rcctl set dhcpd200 rtable 200
rcctl set dhcpd200 flags "-f /etc/dhcpd.conf.200"

and use dhcpd200 and /etc/dhcpd.conf.200 to start for rtable 200, use dhcpd and 
/etc/dhcpd.conf for rtable 0

Chris



  1   2   3   4   5   6   7   >