Re: GOST was removed
On Wed, Apr 16, 2014 at 10:15 AM, Артур Истомин art.is...@yandex.ru wrote: On Tue, Apr 15, 2014 at 03:34:36PM -0600, Theo de Raadt wrote: Log message: Remove the GOST engine: It is not compiled or used and depends on the dynamic engine feature that is not enabled in our build. People who need it can still pull it out of the Attic; if it is to have a Russian engine just because it's a Russian engine. -- This hash function is a formal requirement in all public institutions in Russia. Removing it, the work of people using OpenBSD in these institutions is greatly complicated by its return. First off, this library primary function is to supply two major components for use by people: SSL protocol raw symmetric assymetric crypto functions Meeting the requirements of public institutions is pretty low on the list right about now. Quite frankly, I do not want my own government using OpenSSL for anything. As it is now, it is not suitable. This is a political decision, or indeed it is necessary for the cleaning OpenSSL? Do not throw out the child along with the bath. Dynamic loading of crypto libraries into a framework is not acceptable. Furthermore, if you dig just a bit deeper, you will quickly realize that this code has not worked in our tree before. It was not enabled. It did not work. In the interests of full disclosure, do you work for the government or sell to the government? I'm not sure what it means to work for the government in terms of the English language. I am now in the process of transfer to the IT-department of city hall of small town in the geographical center of Russia. In the area of my responsibility will be the network infrastructure of city hall. This is work for the government? I assumed that, for establishment GOST, it is enough to recompile OpenSSL in source tree and install it. Situation worsens in that it is the only implementation of GOST, so that there are no alternatives for unix and unix-like systems. Yet your words as the words of Bob and Reyk, given your competence in this area, sound convincing. If it makes the system more secure, it is a sensible move. I am glad that there is no politics. Well mostly no politics here in a sense you thought initially (and not everyone behind your borders think that * we can see in our media is true). OpenBSD is just trying to fix crap created by outside company http://undeadly.org/cgi?action=articlesid=20140415093252mode=expandedcount=8and well on the way things are removed which doesn't make any sense or were used in the past or are supposed to not be used. From this point of view it's maybe better to try to convince local authority where you will be doing some work in IT area to use something really newer and better. I know it can be nearly impossible, but it is worth of the try. Of course don''t know how much is GOST used in Russia and why (historical reasons, whatever).
Re: openbsd-current: cannot suspend -return from zzz-
On Mon, Apr 14, 2014 at 11:25 AM, Abel Abraham Camarillo Ojeda acam...@verlet.org wrote: I'm now using lastest BIOS: bios0: vendor American Megatrends Inc. version 1605 date 10/25/2012 exactly same behavior in all tests. These days machine without AHCI/ACPI is pretty useless so if you will disable it it may not panic, but will be pretty useless in many regards. You can try to collect details about ACPI on that particular machine with acpidump and either provide it directly to developer which is interested in that or post link to those outputs saved on some external service here in misc On Sun, Apr 13, 2014 at 11:21 PM, Tomas Bodzar tomas.bod...@gmail.com wrote: On Sun, Apr 13, 2014 at 3:00 PM, Abel Abraham Camarillo Ojeda acam...@verlet.org wrote: On Tue, Apr 8, 2014 at 9:44 PM, Abel Abraham Camarillo Ojeda acam...@verlet.org wrote: well, I didn't mentioned it I already tried that -disable radeondrm- with -current, didn't work, will try again to provide log file... As soon as I can get home ... On Tue, Apr 8, 2014 at 5:46 PM, Mike Larkin mlar...@azathoth.net wrote: On Tue, Apr 08, 2014 at 05:30:59PM -0500, Abel Abraham Camarillo Ojeda wrote: will provide dmesg from 5.3, 'zzz' works in 5.3 -with or without serial console- 'zzz' dont works in 5.4 -with or without serial console- zzz dont works in 5.5~ with or without serial console zzz dont works in -current with or without serial console I was trying to build some kernels between 5.3 and 5.4 to see when this machine breaks, had no time to do it though... Thanks, this information is helpful. Can you try one test with disabled radeondrm? config -ef /bsd disable radeondrm quit -ml I still haven't got time to test 5.3 again - some of my disks died-, but when I push the power button in my desktop and have a serial console I can get a ddb prompt if I previously set ddb.console=1, now I inline -and attach- ddb's dmesg, ps and trace post -failed- resume. Disabling radeondrm* shows no changes -with radeondrm0 enabled I just don't get any output in screen (with or without serial console) after resuming (press power button in case)-. In current as april 3: The problems evidences in ddb's dmesg -but not in serial console directly-: ahci0: device on port 1 didn't come ready, TFD: 0x150 Any ideas how to further debug? Did you already tried with different BIOS? Because you have version 0901 on your motherboard, but there are others available... M5A97 BIOS 1102 1.Improve system stability. 2.Enhance compatibility with some USB devices. 3.Patch system hanged when use AM3 1090T or 1100T CPU. M5A97 BIOS 1208 Improve system stability. M5A97 BIOS 1503 1.Improve system stability. 2.Enhance compatibility with some USB devices. M5A97 BIOS 1605 Improve system stability. Thanks. (gmail will surely mangle the next text, see attached file for verbatim:) Script started on Sun Apr 13 07:34:05 2014 # cu -l cua01 Connected OpenBSD/amd64 BOOT 3.28 boot /bsd.sp -s \|/-\|/booting sr0a:/bsd.sp: -\|/-7690684\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|+2116940/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/+1096160-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|+0+612448 [100+554640/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-+368743\|/-\|/-\|/-\|/-\|/-\|/]=0xfde300 entry point at 0x10001e0 [7205c766, 3404, 24448b12, 4ca0a304] [ using 924320 bytes of bsd ELF symbol table ] Copyright (c) 1982, 1986, 1989, 1991, 1993 The Regents of the University of California. All rights reserved. Copyright (c) 1995-2014 OpenBSD. All rights reserved. http://www.OpenBSD.org OpenBSD 5.5-current (GENERIC) #47: Thu Apr 3 16:28:31 MDT 2014 dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC real mem = 17124126720 (16330MB) avail mem = 16659578880 (15887MB) mpath0 at root scsibus0 at mpath0: 256 targets mainbus0 at root bios0 at mainbus0: SMBIOS rev. 2.7 @ 0xeed90 (55 entries) bios0: vendor American Megatrends Inc. version 0901 date 11/24/2011 bios0: ASUSTeK COMPUTER INC. M5A97 acpi0 at bios0: rev 2 acpi0: sleep states S0 S1 S3 S4 S5 acpi0: tables DSDT FACP APIC MCFG HPET IVRS SSDT acpi0: wakeup devices SBAZ(S4) PS2K(S3) PS2M(S3) UAR1(S4) P0PC(S4) UHC1(S4) UHC2(S4) USB3(S4) UHC4(S4) USB5(S4
Re: openbsd-current: cannot suspend -return from zzz-
On Sun, Apr 13, 2014 at 3:00 PM, Abel Abraham Camarillo Ojeda acam...@verlet.org wrote: On Tue, Apr 8, 2014 at 9:44 PM, Abel Abraham Camarillo Ojeda acam...@verlet.org wrote: well, I didn't mentioned it I already tried that -disable radeondrm- with -current, didn't work, will try again to provide log file... As soon as I can get home ... On Tue, Apr 8, 2014 at 5:46 PM, Mike Larkin mlar...@azathoth.net wrote: On Tue, Apr 08, 2014 at 05:30:59PM -0500, Abel Abraham Camarillo Ojeda wrote: will provide dmesg from 5.3, 'zzz' works in 5.3 -with or without serial console- 'zzz' dont works in 5.4 -with or without serial console- zzz dont works in 5.5~ with or without serial console zzz dont works in -current with or without serial console I was trying to build some kernels between 5.3 and 5.4 to see when this machine breaks, had no time to do it though... Thanks, this information is helpful. Can you try one test with disabled radeondrm? config -ef /bsd disable radeondrm quit -ml I still haven't got time to test 5.3 again - some of my disks died-, but when I push the power button in my desktop and have a serial console I can get a ddb prompt if I previously set ddb.console=1, now I inline -and attach- ddb's dmesg, ps and trace post -failed- resume. Disabling radeondrm* shows no changes -with radeondrm0 enabled I just don't get any output in screen (with or without serial console) after resuming (press power button in case)-. In current as april 3: The problems evidences in ddb's dmesg -but not in serial console directly-: ahci0: device on port 1 didn't come ready, TFD: 0x150 Any ideas how to further debug? Did you already tried with different BIOS? Because you have version 0901 on your motherboard, but there are others available... M5A97 BIOS 1102 1.Improve system stability. 2.Enhance compatibility with some USB devices. 3.Patch system hanged when use AM3 1090T or 1100T CPU. M5A97 BIOS 1208 Improve system stability. M5A97 BIOS 1503 1.Improve system stability. 2.Enhance compatibility with some USB devices. M5A97 BIOS 1605 Improve system stability. Thanks. (gmail will surely mangle the next text, see attached file for verbatim:) Script started on Sun Apr 13 07:34:05 2014 # cu -l cua01 Connected OpenBSD/amd64 BOOT 3.28 boot /bsd.sp -s \|/-\|/booting sr0a:/bsd.sp: -\|/-7690684\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|+2116940/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/+1096160-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|+0+612448 [100+554640/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-+368743\|/-\|/-\|/-\|/-\|/-\|/]=0xfde300 entry point at 0x10001e0 [7205c766, 3404, 24448b12, 4ca0a304] [ using 924320 bytes of bsd ELF symbol table ] Copyright (c) 1982, 1986, 1989, 1991, 1993 The Regents of the University of California. All rights reserved. Copyright (c) 1995-2014 OpenBSD. All rights reserved. http://www.OpenBSD.org OpenBSD 5.5-current (GENERIC) #47: Thu Apr 3 16:28:31 MDT 2014 dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC real mem = 17124126720 (16330MB) avail mem = 16659578880 (15887MB) mpath0 at root scsibus0 at mpath0: 256 targets mainbus0 at root bios0 at mainbus0: SMBIOS rev. 2.7 @ 0xeed90 (55 entries) bios0: vendor American Megatrends Inc. version 0901 date 11/24/2011 bios0: ASUSTeK COMPUTER INC. M5A97 acpi0 at bios0: rev 2 acpi0: sleep states S0 S1 S3 S4 S5 acpi0: tables DSDT FACP APIC MCFG HPET IVRS SSDT acpi0: wakeup devices SBAZ(S4) PS2K(S3) PS2M(S3) UAR1(S4) P0PC(S4) UHC1(S4) UHC2(S4) USB3(S4) UHC4(S4) USB5(S4) UHC6(S4) UHC7(S4) PE20(S4) PE21(S4) PE22(S4) PE23(S4) [...] acpitimer0 at acpi0: 3579545 Hz, 32 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: AMD Phenom(tm) II X4 955 Processor, 3211.07 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,HTT,SSE3,MWAIT,CX16,POPCNT,NXE,MMXX,FFXSR,LONG,3DNOW2,3DNOW,LAHF,CMPLEG,SVM,EAPICSP,AMCR8,ABM,SSE4A,MASSE,3DNOWP,OSVW,IBS,SKINIT,NODEID,ITSC cpu0: 64KB 64b/line 2-way I-cache, 64KB 64b/line 2-way D-cache, 512KB 64b/line 16-way L2 cache, 6MB 64b/line 48-way L3 cache cpu0: ITLB 32 4KB entries fully associative, 16 4MB entries fully associative cpu0: DTLB 48 4KB entries fully associative, 48 4MB entries fully associative cpu0: AMD erratum 721 detected and fixed cpu0:
Re: upstream vendors and why they can be really harmful
On Fri, Nov 23, 2012 at 5:11 AM, Marc Espie es...@nerim.net wrote: On Thu, Nov 22, 2012 at 01:27:46PM -0430, Andres Perera wrote: why would the runtime be attractive for rop? what configuration vm needs syscalls that would be attractive to an attacker that can change the address of a jump? does the runtime really need to open sockets, or spawn processes? (i'm not even talking about languages) [...] i'm completely serious. i can use a js vm and write a trivial systrace sandbox like ssh's which only allows read() you're only talking about one small aspect of security. Just because your javascript apps cannot interact with your OS doesn't make them secure. They also have to be reliable, not trample on each other memory, so that you get predictable behavior and only have to worry about logic errors in each app. People are *relying* on javascript to do real work. If you're depositing documents on servers. If you're using gmail. If you're using any kind of web app, basically. Every day, people say that high-level languages like java or js are more secure. They are missing the point. Just because they don't have buffer overflows doesn't protect them from sloppy developer errors. Just the opposite, actually: being stupid is no longer a barrier to writing production code, and you end up with idiots writing code, instead of being stopped right away by C's nastiness. Guys are not probably reading you enough. See http://lists.gnu.org/archive/html/gnu-system-discuss/2012-11/msg0.html and https://news.ycombinator.com/item?id=4821488 :-)
Re: em(4): enable TCP/UDP checksum offload
Hi, somewhat strange results here $ ifconfig em0 hwfeatures em0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 hwfeatures=36CSUM_TCPv4,CSUM_UDPv4,VLAN_MTU,VLAN_HWTAGGING lladdr XX:XX:XX:XX:XX:XX priority: 0 groups: egress media: Ethernet autoselect (100baseTX full-duplex,rxpause,txpause) status: active inet X.X.X.X netmask 0xff00 broadcast X.X.X.X $ Intel Q45 KT rev 0x03 at pci0 dev 3 function 3 not configured em0 at pci0 dev 25 function 0 Intel ICH10 D BM LM rev 0x02: msi, address X:X:X:X:X:X I can ping gateway, I can ping various servers on Internet via IP or DNS name, Apache from base running under chroot with HTTP and HTTPS and blogsum provided via HTTP. I can ssh login to that machine, I can view blogsum from remote machines, but localy on server xombrero or lynx is not able to display ANY web page, not even from local Apache. On Wed, Nov 7, 2012 at 8:50 AM, mxb m...@alumni.chalmers.se wrote: In my case, it is a CARP backup(master will be upgraded soon) rolling ospf on top of gre on top of ipsec, running npppd, and daily NAT/RDR for about 100 clients. On 6 nov 2012, at 21:31, Stuart Henderson s...@spacehopper.org wrote: For people who are testing checksum-offload-enabling diffs, it would help if you could say what sort of things have tested. Things like fragments/NFS are far more likely to exercise bugs in the hardware than standard web browsing.
Re: em(4): enable TCP/UDP checksum offload
On Wed, Nov 7, 2012 at 12:32 PM, Tomas Bodzar tomas.bod...@gmail.com wrote: Hi, somewhat strange results here $ ifconfig em0 hwfeatures em0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 hwfeatures=36CSUM_TCPv4,CSUM_UDPv4,VLAN_MTU,VLAN_HWTAGGING lladdr XX:XX:XX:XX:XX:XX priority: 0 groups: egress media: Ethernet autoselect (100baseTX full-duplex,rxpause,txpause) status: active inet X.X.X.X netmask 0xff00 broadcast X.X.X.X $ Intel Q45 KT rev 0x03 at pci0 dev 3 function 3 not configured em0 at pci0 dev 25 function 0 Intel ICH10 D BM LM rev 0x02: msi, address X:X:X:X:X:X I can ping gateway, I can ping various servers on Internet via IP or DNS name, Apache from base running under chroot with HTTP and HTTPS and blogsum provided via HTTP. I can ssh login to that machine, I can view blogsum from remote machines, but localy on server xombrero or lynx is not able to display ANY web page, not even from local Apache. On VMware Player 5 it seems to be fine including SSH, cvs, webbrowsing, pf for desktop use, remote X $ ifconfig em0 hwfeatures em0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 hwfeatures=36CSUM_TCPv4,CSUM_UDPv4,VLAN_MTU,VLAN_HWTAGGING lladdr X:X:X:X:X:X priority: 0 groups: egress media: Ethernet autoselect (1000baseT full-duplex,master) status: active inet X.X.X.X netmask 0xff00 broadcast X.X.X.X $ em0 at pci2 dev 0 function 0 Intel PRO/1000MT (82545EM) rev 0x01: apic 1 int 18, address X:X:X:X:X:X On Wed, Nov 7, 2012 at 8:50 AM, mxb m...@alumni.chalmers.se wrote: In my case, it is a CARP backup(master will be upgraded soon) rolling ospf on top of gre on top of ipsec, running npppd, and daily NAT/RDR for about 100 clients. On 6 nov 2012, at 21:31, Stuart Henderson s...@spacehopper.org wrote: For people who are testing checksum-offload-enabling diffs, it would help if you could say what sort of things have tested. Things like fragments/NFS are far more likely to exercise bugs in the hardware than standard web browsing.
Re: upstream vendors and why they can be really harmful
On Wed, Nov 7, 2012 at 9:40 PM, William Ahern will...@25thandclement.com wrote: On Tue, Nov 06, 2012 at 06:24:58PM -0200, Daniel Bolgheroni wrote: On Tue, Nov 06, 2012 at 01:38:32PM +0100, Marc Espie wrote: It's also quickly turning Posix and Unix into a travesty: either you have the linux goodies, or you don't. And if you don't, you can forget anything modern... This IS the main problem. The BSDs definitely need to find a way to join the inner circle at the Open Group. Or maybe there are already BSD developers there. It's hard to know as an outsider because the process is so opaque. Here you can read what Linux devs think about Dfly for example https://plus.google.com/101384639386588513837/posts/Dkb8iixE4eP
Re: upstream vendors and why they can be really harmful
On Tue, Nov 6, 2012 at 1:43 PM, Antoine Jacoutot ajacou...@bsdfrog.org wrote: On Tue, Nov 06, 2012 at 01:38:32PM +0100, Marc Espie wrote: Basically, we have a pattern, mostly observed with kde (and a bit with gnome) which is really harmful for us. Those vendors say we're not in the distribution business, distribution problems will be handled by OS vendors. We can break compatibility to advance, and not think about it, this is not a problem. This is a mindset we need to fight, and this has to be a grass-roots movement. The main effect of THAT attitude is to *HURT* the opensource community, big time. It's as harmful as the patent portfolio of big business. Basically, it precludes smaller players from playing on a level field. As soon as you're different enough (and that's mostly NOT linux these days), you can't keep up. Those distribution problems are LARGE. They occupy a few people in our team FULLTIME with respect to gnome, they're the reason we still DON'T have a full kde4 in our tree (hopefully to be addressed shortly), and they're the reason why sometimes we do drop old stuff (like killing gtk+1, and people really wanting to kill some gtk2/qt3 stuff). It takes a lot of manpower to address complex distribution issues. If you don't have tens of people, it becomes more and more of a losing battle, actually... It's also quickly turning Posix and Unix into a travesty: either you have the linux goodies, or you don't. And if you don't, you can forget anything modern... in some cases, you even have some people, who are PAID by some vendors, agressively pushing GRATUITOUS, non compatible changes. I won't say names, but you guys can fill the blanks in. I'm pretty sure there's a lot of good intention behind the progress in recent desktops. But this is turning the field of OS distributions into a wasteland. Either you're a modern linux with pulseaudio and pam and systemd, or you're dying. So much for the pionneer spirit of opensource, where you were free to innovate and do cool things, and more or less have interesting software able to run on your machine... One could answer you that the BSD community is not involved enough with upstream. 99% of the development is done on Linux by developers using Linux -- if you want that to change, some !linux people should get involved in outside projects... I'm not saying I agree nor disagree with that statement, I'm just being the devil's advocate. -- Antoine I was reading your post to Gnome mailing list and answers from devs and it's hard to find proper words on their clever answers. They are probably not much aware about your work in M:tier with Gnome, do they? They don't simply care about downstream and they already decided (most of them). Do you have some escape plan for that like some BSD licensed window manager as you are tweaking on Gnome desktop for OpenBSD anyway like WiFi GUI app? I think (can be completely out of course) that there may be pretty good interest in BSD community for some desktop like you are doing for implementation at homes, jobs and so on which is not so different from what people know from other platforms. Not like getting over 1% of Linux market share, but simply, clean and stable desktop for corporate world which can help with more attraction.
Re: Dell Latitude E6420 issues - not working...
On Tue, Aug 14, 2012 at 4:24 PM, Jiri B ji...@devio.us wrote: Hi all, I have in my hands Dell Latitude E6420 so I tried to boot OpenBSD snapshot and booting got stucked on these lines... (I retyped from a photos I made.) The last line was one with 'scsibus1 at umass0' below, then I touched a key and console was full of pbkbcintr lines... I had exactly same model and issues even in 5.0 or 5.1. Can't remember exactly now (maybe it's in misc@ as well), but some option in BIOS changed that behavior. Was quite hard to do eg. upgrades via bsd.rd How can I help to troubleshoot this? jirib ... uhidev1 at uhub5 port 1 configuration 1 in rev 2.00/54.00 addr 3 uhidev1: iclass 3/1 uhid at uhidev1 not configured uhidev2 at uhub5 port 2 configuration 1 in dio 400 DSP rev 2.00/1.32 addr 4 uhidev2: iclass 3/0, 9 report ids uhid at uhidev2 reportid 1 not configured uhid at uhidev2 reportid 2 not configured uhid at uhidev2 reportid 8 not configured uhid at uhidev2 reportid 9 not configured Plantronics Plantronics .Audio 180 DSP re nfiguration 1 not configured umass0 at uhub5 port 6 configuration 3 inter ddr 5 umass0: using SCSI over Bulk-Only scsibus1 at umass0: 2 targets, initiator 0 _ pckbcintr: no eki for slot 1 pckbcintr: no dev for slot 1 pckbcintr: no dev for slot 1 pckbcintr: no dev for slot 1 pckbcintr: no dev for slot 1 pckbcintr: no dev for slot 1 pckbcintr: no dev for slot 1 pckbcintr: no dev for slot 1 pckbcintr: no dev for slot 1 pckbcintr: no dev for slot 1 pckbcintr: no dev for slot 1 pckbcintr: no dev for slot 1 pckbcintr: no dev for slot 1
Re: Sandy Bridge problems
On Fri, Feb 17, 2012 at 12:23 AM, Rod Whitworth glis...@witworx.com wrote: On Thu, 16 Feb 2012 10:43:28 -0800, Mike Larkin wrote: Intel drivers later than 2.10 are KMS only, which OpenBSD does not support. The version in tree, based from CVS logs, is 2.9.1 with various backports added from later versions, and some one-off work done to support the later Intel chips in UMS. Thanks for the explanation. I guess that, for at least some time, I'm going to be able to experience the sort of environment that users of archs that don't support virtual consoles live with. One difference being that I will have to sudo reboot to get to a console or sudo halt -p when I want a shutdown. I did some reading about UMS vs KMS and noted a Phoronix page showing that for many of their benchmarks ran faster in UMS. Not that it will help us if we can't get UMS drivers for many GPUs. Or maybe some *BSD dev will write a UMS driver, but don't hold your breath 8-) One intriguing thing I spotted was a statement that KMS allowed running X without root privs. There is some tension there I expect. Finally, having wasted a bunch of money (by my standards) getting a machine that avoided broadcom wi-fi and nvidia graphics and had a supported 10/100/1000 NIC (alc), I'd love to know what I should look for in graphics in future in laptop land. It looks more and more that pencil and paper will be only open(non Lin/Win only) solution :D Thanks again, Rod/ *** NOTE *** Please DO NOT CC me. I am subscribed to the list. Mail to the sender address that does not originate at the list server is tarpitted. The reply-to: address is provided for those who feel compelled to reply off list. Thankyou. Rod/ --- This life is not the real thing. It is not even in Beta. If it was, then OpenBSD would already have a man page for it.
Re: Improved Build Process
Ugh sorry that I don't read it till end, but even first part looks ugly for me. No, I'm not a programmer, I'm just fuc. newbie in programming because first years I focused on learning and using all types of systems so that I can be good sysadmin (maybe) later. I end with my discoveries on OpenBSD because it's clean, intelligent, stable, secure, has well documentation and its developers really know what they are doing and why they are doing it so. From time of start with OpenBSD I just cry when I use some other systems because they aren't so good even if they are better for some use. OpenBSD has very good filesystem hierarchy http://www.openbsd.org/cgi-bin/man.cgi?query=hierapropos=0sektion=0manpath =OpenBSD+Currentarch=i386format=html , not something like mmm this can be here in /usr/bin, this will be in /usr/local/bin. this will be in /opt, this will be here and here and here and here and ou I'm a developer so place something here (eg. directly to /) just because I'm developer and I want to reinvent wheel like on other systems. Eg. I like OpenSolaris too, but its hierarchy is quite crazy for me in some cases http://docs.sun.com/app/docs/doc/819-2252/filesystem-5?l=ena=view it's because of mix of System V and BSD and some other additions sometimes to find something is like adventure game :-) Reagarding CVS... OpenBSD use it's own AnonCVS and I think that it works well for its purpose. You can read in-deep info here http://www.openbsd.org/papers/anoncvs-paper.ps , quite old, but I read it last week and it was very descriptive and useful for me. Style of kernel is described well here http://www.openbsd.org/cgi-bin/man.cgi?query=styleapropos=0sektion=0manpat h=OpenBSD+Currentarch=i386format=html There are manuals how to build ISO either for CD-ROM or USB flash disk so you don't need something special. Just read FAQ and if you want you can make shell scripts for those purposes or write some app with language which is in base and if it will be ok maybe it will end in base system. Eg. http://www.openbsd.org/faq/faq14.html#flashmemLive So in short there are good tools available right now and system is prepared too. In fact it's quite boring in production because it just works and works and works and works so you don't need to fight fight it like with other systems (of course that bugs are even in OpenBSD, but main source of bugs with OpenBSD is between keyboard and chair). Maybe you have good idea in some points, but it's not good idea to have too much multiple tools on one task. I tested DragonflyBSD right now and they have 5(!) tools for packgae installation anyway no one from them was able to install Xorg correctly (maybe problem of VM). I don't think that this mess will help somehow to sysadmin, developer or user. On Sat, Dec 26, 2009 at 9:48 PM, David Shuman d.shu...@att.net wrote: I am somewhat new to OpenBSD but not systems and/or systems programming as a whole. B Please excuse any errors I may have made in my observations and desires. B Please also feel free to pick and choose between the aspects of this that appear to be valuable. B (I can provide my versions of the scripts indicated below if that is of assistance however many of these may be obvious in their content to experienced OpenBSD people that follow this group. These scripts may be missing some desirable error checking code) Security is one of the stated objectives of OpenBSD yet the current build process appears to be difficult to secure largely because the build directories are numerous and mixed in with directories for general machine operation. (also difficult to backup/restore if the user desires to maintain multiple machine configurations using this process. B While the content of these directories is publicly available, the specific contents for each configuration is NOT as are the security requirements to protect the contents for EACH SPECIFIC configuration. B The directories for many of the operations appear to be hard coded in some of the make scripts to specific directories. B I even experienced indications that the directory /CVS seems to be assumed to be a repository that can not be used for checkout, in my various attempts to do this with the existing code base. My suggestion for improvement and simplification include maintaining a completely separate directory structure(s) for the build process from normal machine operation. See below for hierarchy and description: /bld B B B B B B B B B B B root directory for build operation B B B B B B B B B B B B B B B B B (no data this directory/mount only other B B B B B B B B B B B B B B B B B directories except for the B B B B B B B B B B B B B B B B B B B B shell scripts and logs) /bld/sh B B B B B B B B shell scripts to complete various build processes B B B B B B B B B B B B B B B (see list below) /bld/sh/log B B B B B B location to store logs from
