Re: Interest in POWER platform?

[Chris Cappuccio]

Kai Wetlesen [kwetle...@mac.com] wrote:
> Hi all,
> 
> What is the current community interest in getting OpenBSD running on the 
> newer POWER processors? I have a number of POWER based systems at work which 
> run various Linux flavors, but it would be nice to bring OpenBSD to these 
> systems as we???re been trying it out in different spaces throughout our 
> division. What would it take to get a POWER port up and kicking?
> 

OpenBSD is moving ahead on armv7, arm64, and mips64 (loongson, octeon, sgi) as 
viable alternatives to i386/amd64. Other platforms are not well supported 
usually due to lack of available hardware and, therefore, developer interest.

If you want to make it happen, hardware is needed. At a minimum, you need 
capable machines in the hands of several interested developers. That's the bare 
minimum. A code base with basic driver support, like macppc, socppc or peagsus 
is a major kick-starter, too. But those are old enough that they may not be 
very helpful with a non-Apple 64-bit PPC machine.

Since there is little interest in this platform overall (from what I can tell), 
it would require a miracle for this to happen right now.

Chris

Re: Gina/Adityha, followup on donation request re OpenPower devices Re: Interest in POWER platform?

[Chris Cappuccio]

Hi Mikael,

I can't tell, are you trolling these people?

Or, do you sincerely find these to be an effective set of techniques to 
convince other people of your beliefs?

This is a pro bono email.

Chris

Mikael [mikael.ml...@gmail.com] wrote:
> Hi IBM,
> 
> This email followup was mostly to reflect that a member of the general
> public has asked for the support that a donation of OpenPower devices would
> lead to.
> 
> Feel free to forward it to the person at your company who has the power to
> sign off on a donation e.g. your CEO.
> 
> This is a pro bono email.
> 
> I personally think Power9/Power8 support is a useful thing and if
> 10x2,850USD would have been less than say 0.2% of my wealth, I'd simply
> have taken this matter through a web shopping cart.
> 
> Have a good day.
> 
> Thanks!,
> Mikael More
> 
> 2017-05-25 13:52 GMT+08:00 Mikael :
> 
> > Hi Kai and IBM,
> >
> > Yes I did the attempts to contact IBM to get Power donations, as quoted by
> > axon below. A guy by the name Benjamin Herrenschmidt at IBM used the word
> > 'execrable' about me in PM, that was weird for a fund(hardware)raiser, and
> > sincerely quite disturbing to me.
> >
> > (My 'attitude' - after 8 months and 70 emails they delegated the matter
> > from their main office in the US, to Australia.)
> >
> > I think with respect to IBM donations, the relevant path would be to
> > enquire directly with their CEO Ginni Rommety, e.g.
> > https://www.ibm.com/ibm/ginni/ , also with reference to the massive
> > commercial value they have from OpenSSH. Anyone below does not have the
> > power to authorize donations.
> >
> > Gina and Adithya at IBM on copy for reference. If you can forward this to
> > your CEO would be great. Your cheapest multi-CPU Power9 or Power8 device
> > should be around 2000 USD production cost max, meaning this is a 20,000 USD
> > donation request, or for 20,000 / 80,000,000,000 = 0.000,025% of your
> > annual turnover, as a marketing and goodwill thing it couldn't be cheaper.
> >
> >
> > If you have 6 to 10 devices - just any, preferably multi-CPU - to donate,
> > please ship them over and we'll likely see support happen.
> >
> > If they need to be shopped, Tyan was selling them for 2850 USD a piece
> > recently, https://web.archive.org/web/20160118065359/http://
> > www.tyan.com/campaign/openpower/index.html . Maybe we're closer to Power9
> > now.
> >
> > I like Power as it's server-grade hardware that I personally deem
> > preferable to AMD64. IBM's attitude about my hardware-raiser initiative
> > last year was execrable though.
> >
> > This email is a response to suggest a next step. I think everyone involved
> > has been personally well-intended and there was a certain sense of friction
> > in the realization that noone involved in the emails at IBM had the
> > authority to sign off on a donation.
> >
> > People like you and me are free to shop and donate.
> >
> > Mikael
> >
> > 2017-05-25 1:57 GMT+08:00 Kai Wetlesen :
> >
> >> Hi all,
> >>
> >> What is the current community interest in getting OpenBSD running on the
> >> newer POWER processors? I have a number of POWER based systems at work
> >> which run various Linux flavors, but it would be nice to bring OpenBSD to
> >> these systems as we???re been trying it out in different spaces throughout
> >> our division. What would it take to get a POWER port up and kicking?
> >>
> >> Regards,
> >> Kai
> >>
> >
> > 2017-05-25 8:42 GMT+08:00 Ax0n :
> >
> >> In summary: There are 3 people who have been quite vocal about getting a
> >> POWER port recently. None of them are developers with the knowledge or
> >> resources to port it.
> >>
> >> Big thread from late last year:
> >> https://marc.info/?l=openbsd-misc&m=147680858507662&w=2
> >>
> >> A follow-up (late December 2016):
> >> https://marc.info/?l=openbsd-misc&m=148246956710299&w=2
> >>
> >> Search link with some scattered and often-unrelated results:
> >> https://marc.info/?l=openbsd-misc&w=2&r=1&s=IBM+POWER&q=b
> >>
> >
> > 2017-01-03 14:52 GMT+08:00 Benjamin Herrenschmidt :
> > ..
> >
> >> Right, and as I mentioned, we hope to have reasonably soon much more
> >> affordable machines available as well, which will make it easier for us
> >> to sponsor community projects with HW donations.
> >>
> >> Cheers,
> >> Ben.
> >>
> >
> >

Re: vmd and FreeBSD support

[Chris Cappuccio]

Tell it to use a serial console and not a VGA console

David Lowe [d.l...@openmailbox.org] wrote:
> Hello,
> a few weeks ago, I read something about vmm hosting FreeBSD. I tried the
> image
> found at 
> https://download.freebsd.org/ftp/releases/VM-IMAGES/11.0-RELEASE/amd64/Latest/
> but the boot process just restarts after this situation:
> 
> 
> 
>  +Welcome to FreeBSD---+ +o   .--` /y:`  +.
>  | |  yo`:.:o  `+-
>  |  1. Boot Multi User [Enter] |   y/   -/`   -o/
>  |  2. Boot Single User|  .-  ::/sy+:.
>  |  3. Escape to loader prompt |  / `--  /
>  |  4. Reboot  | `:  :`
>  | | `:  :`
>  |  Options:   |  /  /
>  |  5. Kernel: default/kernel (1 of 2) |  .--.
>  |  6. Configure Boot Options...   |   --  -.
>  | |`:`  `:`
>  | |  .-- `--.
>  | | .---..
>  +-+
> 
> 
> /boot/kernel/kernel text=0x14ed860 data=0x132538+0x4baa68
> syms=[0x8+0x159ee8+0x8
> +0x172d9c] 08 di= bp= sp=5df6 cs= ip=9336  f=0242
> Booting...
> |reeBSD/x86 bootstrap loader, Revision 1.1
> (r...@releng2.nyi.freebsd.org, Thu Sep 29 01:38:45 UTC 2016)
> Loading /boot/defaults/loader.conf
> /
> 
> 
> Does anyone know a workaround (or some hint how to convince FreeBSD to
> boot)?
> I also tried NetBSD but without luck.
> 
> Thanks!

Re: OpenBSD-based ISP

[Chris Cappuccio]

Juan Guillermo Narvaez [guille...@nrvz.net] wrote:
> # sysctl | grep ifq
> net.inet.ip.ifq.len=0
> net.inet.ip.ifq.maxlen=1024
> net.inet.ip.ifq.drops=46068291
> net.inet6.ip6.ifq.len=0
> net.inet6.ip6.ifq.maxlen=256
> net.inet6.ip6.ifq.drops=0
> 

The drops are high. You probably want a higher maxlen. I use 8192 on busy 
forwarding boxes.

> # cat sysctl.conf
> net.inet.ip.forwarding=1
> kern.bufcachepercent=90
> net.ip.ifq.maxlen=1024
> 

You want net.inet.ip.ifq.maxlen=8192 not 'net.ip.ifq.maxlen=1024'

Re: [PATCH] Off-by-one bug in httpd's config file port number checking

[Chris Cappuccio]

Kris Katterjohn [katterj...@gmail.com] wrote:
> Hello,
> 
> I think I've found an off-by-one bug in httpd: it cannot listen on port
> 65535 when the port is specified as a number (although it can listen on
> it if specified as the string "65535", or if an appropriate line is
> added to /etc/services and it's specified with that name).
> 
> $ uname -a
> OpenBSD Meryl 6.1 GENERIC.MP#19 amd64
> 
> $ cat /etc/httpd.conf
> server "default" {
>   listen on egress port 65535
> }
> 
> $ doas httpd -n
> /etc/httpd.conf:2: invalid port: 65535
> no actions, nothing to do
> 
> 
> The above is on 6.1, but it looks like the problem still exists in CVS.
> 
> Below is a patch (or the possible start of one).  It's untested as I
> cannot do a build and test it right now, but I think it's enough.  If
> not, I hope it's at least a little helpful.  Let me know if there is
> anything else I can do and I'll try to do it whenever I can.

This looks correct. Also, there's more:

httpd/parse.y:  if ($2 <= 0 || $2 >= (int)USHRT_MAX) {
ldapd/parse.y:  if ($2 <= 0 || $2 >= (int)USHRT_MAX) {
relayd/parse.y: if ($2 <= 0 || $2 >= (int)USHRT_MAX) {
smtpd/parse.y:  if ($2 <= 0 || $2 >= (int)USHRT_MAX) {
switchd/parse.y:if ($2 <= 0 || $2 >= (int)USHRT_MAX) {
ypldap/parse.y: if ($2 <= 0 || $2 >= (int)USHRT_MAX) {

Re: Octeon/MIPS64 SMP Support

[Chris Cappuccio]

Once you get to OCTEON III class with -current, software FP emulation
is no longer at play. Ubiquiti Edgerouter 4, 6 and Infinity all fit this class.
4 to 16 cores. Not bad.

Martijn van Duren [openbsd+m...@list.imperialat.at] wrote:
> On 09/13/17 22:28, Dante F. B. Col?? wrote:
> > Hi
> > 
> > I'm think about get a Ubiquiti Edgerouter  box  and drop openbsd there. 
> > I read the instalation  file and was not clear to me  if the current 
> > MIPS/Octeon kernel implementation supports SMP or not , does it support ?
> > 
> > Regards
> > 
> > Dante F. B. Col??
> > 
> Yes it does, just don't forget to set numcores/coremask in the boot
> command.
> 
> Copyright (c) 1982, 1986, 1989, 1991, 1993
> The Regents of the University of California.  All rights reserved.
> Copyright (c) 1995-2017 OpenBSD. All rights reserved.  https://www.OpenBSD.org
> 
> OpenBSD 6.1 (GENERIC.MP) #0: Mon Apr  3 08:08:00 UTC 2017
> visa@octeon:/usr/src/sys/arch/octeon/compile/GENERIC.MP
> real mem = 2147483648 (2048MB)
> avail mem = 2113486848 (2015MB)
> warning: no entropy supplied by boot loader
> mainbus0 at root
> cpu0 at mainbus0: CN61xx CPU rev 0.1 800 MHz, Software FP emulation
> cpu0: cache L1-I 512KB D 8KB 64 way, L2 1024KB 8 way
> cpu1 at mainbus0: CN61xx CPU rev 0.1 800 MHz, Software FP emulation
> cpu1: cache L1-I 512KB D 8KB 64 way, L2 1024KB 8 way
> clock0 at mainbus0: int 5
> iobus0 at mainbus0
> octuctl0 at iobus0 base 0x118006f00 irq 56
> ehci0 at octuctl0
> usb0 at ehci0: USB revision 2.0
> uhub0 at usb0 configuration 1 interface 0 "Octeon EHCI root hub" rev 
> 2.00/1.00 addr 1
> ohci0 at octuctl0, version 1.0
> usb1 at ohci0: USB revision 1.0
> uhub1 at usb1 configuration 1 interface 0 "Octeon OHCI root hub" rev 
> 1.00/1.00 addr 1
> octrng0 at iobus0 base 0x14000 irq 0
> cn30xxgmx0 at iobus0 base 0x118000800
> cnmac0 at cn30xxgmx0: SGMII, address 24:a4:3c:06:a2:72
> ukphy0 at cnmac0 phy 4: Generic IEEE 802.3u media interface, rev. 3: OUI 
> 0x180361, model 0x0004
> cnmac1 at cn30xxgmx0: SGMII, address 24:a4:3c:06:a2:73
> ukphy1 at cnmac1 phy 5: Generic IEEE 802.3u media interface, rev. 3: OUI 
> 0x180361, model 0x0004
> cnmac2 at cn30xxgmx0: SGMII, address 24:a4:3c:06:a2:74
> ukphy2 at cnmac2 phy 6: Generic IEEE 802.3u media interface, rev. 3: OUI 
> 0x180361, model 0x0004
> cnmac3 at cn30xxgmx0: SGMII, address 24:a4:3c:06:a2:75
> ukphy3 at cnmac3 phy 7: Generic IEEE 802.3u media interface, rev. 3: OUI 
> 0x180361, model 0x0004
> cn30xxgmx1 at iobus0 base 0x118001000
> cnmac4 at cn30xxgmx1: SGMII, address 24:a4:3c:06:a2:76
> ukphy4 at cnmac4 phy 0: Generic IEEE 802.3u media interface, rev. 3: OUI 
> 0x180361, model 0x0004
> cnmac5 at cn30xxgmx1: SGMII, address 24:a4:3c:06:a2:77
> ukphy5 at cnmac5 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI 
> 0x180361, model 0x0004
> cnmac6 at cn30xxgmx1: SGMII, address 24:a4:3c:06:a2:78
> ukphy6 at cnmac6 phy 2: Generic IEEE 802.3u media interface, rev. 3: OUI 
> 0x180361, model 0x0004
> cnmac7 at cn30xxgmx1: SGMII, address 24:a4:3c:06:a2:79
> ukphy7 at cnmac7 phy 3: Generic IEEE 802.3u media interface, rev. 3: OUI 
> 0x180361, model 0x0004
> simplebus0 at iobus0: "soc"
> octmmc0 at simplebus0
> sdmmc0 at octmmc0: 8-bit, mmc high-speed
> uartbus0 at mainbus0
> com0 at uartbus0 base 0x118000800 irq 34: ns16550a, 64 byte fifo
> com0: console
> com1 at uartbus0 base 0x118000c00 irq 35: ns16550a, 64 byte fifo
> /dev/ksyms: Symbol table not valid.
> ural0 at uhub0 port 1 configuration 1 interface 0 "Cisco-Linksys Wireless-G 
> USB Network Adapter" rev 2.00/0.04 addr 2
> ural0: MAC/BBP RT2571 (rev 0x05), RF RT2526, address 00:14:bf:75:9a:45
> scsibus0 at sdmmc0: 2 targets, initiator 0
> sd0 at scsibus0 targ 1 lun 0:  SCSI2 0/direct removable
> sd0: 3776MB, 512 bytes/sector, 7733248 sectors
> vscsi0 at root
> scsibus1 at vscsi0: 256 targets
> softraid0 at root
> scsibus2 at softraid0: 256 targets
> boot device: sd0
> root on sd0a (5e15570835adc5f6.a) swap on sd0b dump on sd0b

Re: TCP Window Scaling

[Chris Cappuccio]

ipsec tunnels don't use TCP

iperf has the -w option

Andreas Kr??ger [a...@patientsky.com] wrote:
> How would i set i for ipsec tunnels or iperf etc. then?
> ANDREAS KR??GER
> CTO Hosting and Infrastructure
> 
> +45 51808863
> a...@patientsky.com
> 
> 
> 
> PatientSky AS
> Hovfaret 17 B, NO-0275 Oslo, Norway
> patientsky.com
> 
> 
> 
> 
> 2017-09-14 13:10 GMT+02:00 Janne Johansson :
> >
> > 2017-09-14 13:08 GMT+02:00 Janne Johansson :
> >>
> >> Since 6.1 I think the max is 2M, and not 256k. Many programs will also
> >> allow you to bump limits using setsockopt.
> >>
> >>
> >
> > httpd.conf:
> > server "secret.site" {
> > tcp {
> > socket buffer 2097152
> > }
> >
> > rsyncd.conf:
> >  ...
> > socket options = SO_SNDBUF=2097152
> >
> >
> > --
> > May the most significant bit of your life be positive.

Re: TCP Window Scaling

[Chris Cappuccio]

-w1M works for me
-
Andreas Kr??ger [a...@patientsky.com] wrote:
> I do manage to read the manual, but let me clarify this. I am not
> allowed to set a buffer larger than 256KB with iperf:
> 
> $ uname -a
> OpenBSD odn1-fw-odn1-01 6.0 GENERIC.MP#0 amd64
> 
> $ iperf -s -w 256KB
> 
> Server listening on TCP port 5001
> TCP window size:  256 KByte
> 
> 
> $ iperf -s -w 4MB
> 
> Server listening on TCP port 5001
> TCP window size: 16.0 KByte (WARNING: requested 4.00 MByte)
> 
> $
> 
> ANDREAS KR??GER
> CTO Hosting and Infrastructure
> 
> +45 51808863
> a...@patientsky.com
> 
> 
> 
> PatientSky AS
> Hovfaret 17 B, NO-0275 Oslo, Norway
> patientsky.com
> 
> 
> 
> 
> 2017-09-14 19:46 GMT+02:00 Chris Cappuccio :
> > ipsec tunnels don't use TCP
> >
> > iperf has the -w option
> >
> > Andreas Kr??ger [a...@patientsky.com] wrote:
> >> How would i set i for ipsec tunnels or iperf etc. then?
> >> ANDREAS KR??GER
> >> CTO Hosting and Infrastructure
> >>
> >> +45 51808863
> >> a...@patientsky.com
> >>
> >>
> >>
> >> PatientSky AS
> >> Hovfaret 17 B, NO-0275 Oslo, Norway
> >> patientsky.com
> >>
> >>
> >>
> >>
> >> 2017-09-14 13:10 GMT+02:00 Janne Johansson :
> >> >
> >> > 2017-09-14 13:08 GMT+02:00 Janne Johansson :
> >> >>
> >> >> Since 6.1 I think the max is 2M, and not 256k. Many programs will also
> >> >> allow you to bump limits using setsockopt.
> >> >>
> >> >>
> >> >
> >> > httpd.conf:
> >> > server "secret.site" {
> >> > tcp {
> >> > socket buffer 2097152
> >> > }
> >> >
> >> > rsyncd.conf:
> >> >  ...
> >> > socket options = SO_SNDBUF=2097152
> >> >
> >> >
> >> > --
> >> > May the most significant bit of your life be positive.

Re: Apollo Lake

[Chris Cappuccio]

The Asrock J3710 is supported with inteldrm and ethernet etc...

Predrag Punosevac [punoseva...@gmail.com] wrote:
> Hi Misc,
> 
> The motherboard on my desktop machine just died. I would like to go
> fanless embedded. Something like ASRock J3455-ITX. 
> 
> https://www.newegg.com/Product/Product.aspx?Item=N82E16813157728&ignorebbr=1
> 
> However I am bit concern about Apollo Lake family of products. Can
> anyone post a dmesg? I am open for any suggestions.
> 
> Best,
> Predrag

Re: Trouble with VMM/VMD

[Chris Cappuccio]

A side note, you should turn on AHCI in your BIOS, not 'compatible' mode

pciide0: using apic 2 int 19 for native-PCI interrupt
wd0 at pciide0 channel 0 drive 0: 
wd0: 16-sector PIO, LBA48, 1907729MB, 3907029168 sectors
wd1 at pciide0 channel 0 drive 1: 
wd1: 16-sector PIO, LBA48, 244198MB, 500118192 sectors
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 6
wd1(pciide0:0:1): using PIO mode 4, Ultra-DMA mode 6
wd2 at pciide0 channel 1 drive 1: 
wd2: 16-sector PIO, LBA48, 1907729MB, 3907029168 sectors
wd2(pciide0:1:1): using PIO mode 4, Ultra-DMA mode 6


Roar Waagsb?? [kowalczyk13...@gmail.com] wrote:
> After a little tip I send this mail again without pastebin links.
> 
> Hi.
> 
> Architecture is: amd64
> 
> dmesg:
> 
> emulation)
> wsdisplay0: screen 1-5 added (std, vt100 emulation)
> xhci0 at pci0 dev 20 function 0 "Intel 7 Series xHCI" rev 0x04: msi
> usb0 at xhci0: USB revision 3.0
> uhub0 at usb0 configuration 1 interface 0 "Intel xHCI root hub" rev
> 3.00/1.00 addr 1
> "Intel 7 Series MEI" rev 0x04 at pci0 dev 22 function 0 not configured
> ehci0 at pci0 dev 26 function 0 "Intel 7 Series USB" rev 0x04: apic 2 int 23
> usb1 at ehci0: USB revision 2.0
> uhub1 at usb1 configuration 1 interface 0 "Intel EHCI root hub" rev
> 2.00/1.00 addr 1
> azalia0 at pci0 dev 27 function 0 "Intel 7 Series HD Audio" rev 0x04: msi
> azalia0: codecs: Realtek/0x0887, Intel/0x2806, using Realtek/0x0887
> audio0 at azalia0
> ppb1 at pci0 dev 28 function 0 "Intel 7 Series PCIE" rev 0xc4: msi
> pci2 at ppb1 bus 2
> ppb2 at pci0 dev 28 function 4 "Intel 7 Series PCIE" rev 0xc4: msi
> pci3 at ppb2 bus 3
> re0 at pci3 dev 0 function 0 "Realtek 8168" rev 0x09: RTL8168F/8111F
> (0x4800), msi, address 60:a4:4c:ad:8a:41
> rgephy0 at re0 phy 7: RTL8169S/8110S/8211 PHY, rev. 5
> ppb3 at pci0 dev 28 function 5 "Intel 82801BA Hub-to-PCI" rev 0xc4: msi
> pci4 at ppb3 bus 4
> ppb4 at pci4 dev 0 function 0 "ASMedia ASM1083/1085 PCIE-PCI" rev 0x03
> pci5 at ppb4 bus 5
> ehci1 at pci0 dev 29 function 0 "Intel 7 Series USB" rev 0x04: apic 2 int 23
> usb2 at ehci1: USB revision 2.0
> uhub2 at usb2 configuration 1 interface 0 "Intel EHCI root hub" rev
> 2.00/1.00 addr 1
> pcib0 at pci0 dev 31 function 0 "Intel H77 LPC" rev 0x04
> pciide0 at pci0 dev 31 function 2 "Intel 7 Series SATA" rev 0x04: DMA,
> channel 0 configured to native-PCI, channel 1 configured to native-PCI
> pciide0: using apic 2 int 19 for native-PCI interrupt
> wd0 at pciide0 channel 0 drive 0: 
> wd0: 16-sector PIO, LBA48, 1907729MB, 3907029168 sectors
> wd1 at pciide0 channel 0 drive 1: 
> wd1: 16-sector PIO, LBA48, 244198MB, 500118192 sectors
> wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 6
> wd1(pciide0:0:1): using PIO mode 4, Ultra-DMA mode 6
> wd2 at pciide0 channel 1 drive 1: 
> wd2: 16-sector PIO, LBA48, 1907729MB, 3907029168 sectors
> wd2(pciide0:1:1): using PIO mode 4, Ultra-DMA mode 6
> ichiic0 at pci0 dev 31 function 3 "Intel 7 Series SMBus" rev 0x04: apic 2 int 
> 18
> iic0 at ichiic0
> iic0: addr 0x20 01=00 02=00 03=00 04=00 05=00 06=00 07=f6 08=f6 09=f6
> 0a=f6 0b=22 0c=22 0d=88 0e=88 0f=00 10=00 11=98 12=fc 13=04 14=00
> 15=00 16=1c 17=66 18=00 19=00 1a=00 1b=00 1c=00 1d=22 1e=88 1f=02
> 20=00 21=00 22=05 23=59 24=00 25=00 26=55 27=09 28=bf 29=00 2a=f5
> 2b=00 2c=01 2d=d0 2e=a0 2f=18 30=00 31=00 32=00 33=68 3e=db 46=00
> 47=03 48=04 49=13 b2=20 b3=83 words 00=ff00 01= 02= 03=
> 04= 05= 06=00f6 07=f6f6
> spdmem0 at iic0 addr 0x50: 4GB DDR3 SDRAM PC3-10600
> spdmem1 at iic0 addr 0x51: 4GB DDR3 SDRAM PC3-10600
> spdmem2 at iic0 addr 0x52: 4GB DDR3 SDRAM PC3-10600
> spdmem3 at iic0 addr 0x53: 4GB DDR3 SDRAM PC3-10600
> pciide1 at pci0 dev 31 function 5 "Intel 7 Series SATA" rev 0x04: DMA,
> channel 0 wired to native-PCI, channel 1 wired to native-PCI
> pciide1: using apic 2 int 19 for native-PCI interrupt
> wd3 at pciide1 channel 0 drive 0: 
> wd3: 16-sector PIO, LBA48, 1907729MB, 3907029168 sectors
> wd3(pciide1:0:0): using PIO mode 4, Ultra-DMA mode 6
> isa0 at pcib0
> isadma0 at isa0
> com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
> pckbc0 at isa0 port 0x60/5 irq 1 irq 12
> pckbd0 at pckbc0 (kbd slot)
> wskbd0 at pckbd0: console keyboard, using wsdisplay0
> pcppi0 at isa0 port 0x61
> spkr0 at pcppi0
> vmm0 at mainbus0: VMX/EPT
> error: [drm:pid0:cpt_set_fifo_underrun_reporting] *ERROR* uncleared
> pch fifo underrun on pch transcoder A
> error: [drm:pid0:intel_pch_fifo_underrun_irq_handler] *ERROR* PCH
> transcoder A FIFO underrun
> uhidev0 at uhub0 port 3 configuration 1 interface 0 "Chicony HP Elite
> USB Keyboard" rev 1.10/1.21 addr 2
> uhidev0: iclass 3/1
> ukbd0 at uhidev0: 8 variable keys, 6 key codes
> wskbd1 at ukbd0 mux 1
> wskbd1: connecting to wsdisplay0
> uhidev1 at uhub0 port 3 configuration 1 interface 1 "Chicony HP Elite
> USB Keyboard" rev 1.10/1.21 addr 2
> uhidev1: iclass 3/0, 2 report ids
> uhid0 at uhidev1 reportid 1: input=1, output=0, feature=0
> uhid1 at uhidev1 reportid 2: input=2, output=0, feature=0

Re: Open source RISC-V 64bit w ECC RAM & PCIe this summer

[Chris Cappuccio]

Rupert Gallagher [r...@protonmail.com] wrote:
> Everybody loves the idea of an open-source CPU that can be uploaded to an 
> FPGA processor. Anybody from China who starts selling a mini-itx board and an 
> FPGA fast enough to run risc-v will turn the market on its head in 6--10 
> years, killing both Intel and AMD. ARM is fabless already...

FPGAs capable of doing anything big take lots of power and generate lots of 
heat. They are far from ideal as a platform base, but great for testing if your 
hardware can be described in VHDL or Verilog. The work to go from that to an 
ASIC is immense and will take significant backing, which makes the industry 
support for RISC-V rather interesting. Everyone wants royalty-free hardware in 
their little devices, I can't blame them.

Re: Upgrade 6.0 -> 6.1: ix mmba is not mem space

[Chris Cappuccio]

No magic expected here, but why not try 6.3? 6.1 is not supported anymore, and 
in any event, you need to include full dmesg so that others without DL360 Gen9 
have a chance at helping you.

Maxim Bourmistrov [m...@alumni.chalmers.se] wrote:
> Hey,
> While moving one of machines from 6.0 to 6.1, I found 6.1 not able to attach 
> ix-device.
> Machine is HP DL360 Gen9.
> 
> ix0 at pci5 dev 0 function 0 "Intel 82599" rev 0x01: mmba is not mem space
> ix1 at pci5 dev 0 function 1 "Intel 82599" rev 0x01: mmba is not mem space
> 
> Found this thread
> http://openbsd-archive.7691.n7.nabble.com/OpenBSD-6-1-ix-Intel-82598EB-issue-td317072.html
>  
> 
> 
> and as far as I can see, this diff is in tree, but not helping here :(
> 
> Any clues? 
> 
> 4:0:1: Intel 82599
>0x: Vendor ID: 8086 Product ID: 10fb
>0x0004: Command: 0147 Status: 0010
>0x0008: Class: 02 Subclass: 00 Interface: 00 Revision: 01
>0x000c: BIST: 00 Header Type: 80 Latency Timer: 00 Cache Line Size: 10
>0x0010: BAR mem 32bit addr: 0x92c0/0x0010
>0x0014: BAR empty ()
>0x0018: BAR io addr: 0x2000/0x0020
>0x001c: BAR mem 32bit addr: 0x92e0/0x4000
>0x0020: BAR empty ()
>0x0024: BAR empty ()
>0x0028: Cardbus CIS: 
>0x002c: Subsystem Vendor ID: 103c Product ID: 17d0
>0x0030: Expansion ROM Base Address: 
>0x0038: 
>0x003c: Interrupt Pin: 01 Line: ff Min Gnt: 00 Max Lat: 00
>0x0040: Capability 0x01: Power Management
>State: D0 PME# enabled
>0x0050: Capability 0x05: Message Signalled Interrupts (MSI)
>0x0070: Capability 0x11: Extended Message Signalled Interrupts (MSI-X)
>0x00a0: Capability 0x10: PCI Express
>Link Speed: 5.0 / 5.0 GT/s Link Width: x8 / x8
>0x0100: Enhanced Capability 0x01: Advanced Error Reporting
>0x0140: Enhanced Capability 0x03: Device Serial Number
>0x0150: Enhanced Capability 0x0e: Alternate Routing ID
>0x0160: Enhanced Capability 0x10: Single Root I/O Virtualization
>0x00e0: Capability 0x03: Vital Product Data (VPD)
> 
> Br
> 
> 

Re: Poor browser performance in OpenBSD

[Chris Cappuccio]

Patrick Harper [paia...@fastmail.com] wrote:
> I beg to differ, on my setup at least, the full GMaps in Chromium runs silky 
> smooth as intended. This is a Cayman (radeon) graphics card driving a 4K 
> monitor through dual 1920x2160 signals (hooray xrandr). I've never tried 
> Intel graphics though.
> 

I notice some major slowdowns with the meltdown mitigation on Core 2 Duo
with inteldrm that make them almost unusable with modern browsers right now.
Not as bad on newer CPUs. 

Re: ..Re AMDGPU Re: Plans to port the amdgpu(4) driver? (=to support Radeons made 2014/2015 and after.) Hardware/other donations needed?

[Chris Cappuccio]

> > Ignoring the parts of the shared
> > drm/ttm code that would have to be updated the latest
> > drivers/gpu/drm/amd in linux has over 1.5 million lines of code. Which
> > is multiple times larger than the complete OpenBSD kernel source...
> 

Despite everything you replied with, Jonathan's reply still accurately
details the overriding concern. 

The code base is so huge, not only is porting a herculean task, but who wants
this much code in their kernel to run the...video card?

As a matter of fact, the existing AMD code can be extended to support the newer
hardware without the huge import.

Realistically, neither porting amdgpu nor extending the existing code are going
to happen any time soon. There's no straightforward path to solve this problem.

Re: PCEngines APU4B4 doesn't boot AMD64 when PXE is activated in the bios

[Chris Cappuccio]

This sounds exactly like what happens when you don't do this at the
boot> prompt:

stty com0 115220
set tty com0

Arnaud BRAND [arnaud.brand--o...@tib.cc] wrote:
> Good evening list,
> 
> I recently bought a PCEngine APU4B4 https://www.pcengines.ch/apu4b4.htm
> AMD GX-412TC, 1 GHz quad Jaguar core / 64 bit and AES-NI / 4GB RAM
> 
> I had absolutely no problem booting and installing i386 OpenBSD 6.3 and
> snapshots over PXE.
> With the AMD64 version, it wouldn't boot, it crashed immeditely after the
> "entry point at 0x1000158" line and rebooted.
> 
> I found Neels' page (http://hofmeyr.de/OpenBSD%20on%20APU4/,  BTW thanks
> Neels) who had no problem installing AMD64 from USB.
> So I tried that, both with 6.3 and snapshot, but it ended the same.
> To be precise, the "8" at the end of the "entry point at" line never shows
> up.
> The reboot/reset occurs after the 5 character.
> 
> I was beginning to think that my APU was broken, but decided to try again,
> this time disabling the PXE capability in the bios.
> It worked immediately (like usual with OpenBSD).
> 
> So, long story short, AMD64 kernels won't boot on APU4B4 when PXE boot is
> enabled in the BIOS.
> 
> I don't know if there's anything to fix in OpenBSD as the embedded iPXE
> seems a bit buggy.
> I reckon this might be the cause of the problem.
> 
> For people who experience difficulties wiht PXE booting (i386), try the
> following :
> - break out to iPXE shell
> - run "dhcp" until iPXE picks up an address
> - and then resume PXE booting process by typing "autoboot"
> 
> 
> Arnaud

Re: PCEngines APU4B4 doesn't boot AMD64 when PXE is activated in the bios

[Chris Cappuccio]

Chris Cappuccio [ch...@nmedia.net] wrote:
> This sounds exactly like what happens when you don't do this at the
> boot> prompt:
> 
> stty com0 115220

stty com0 115200 of course

Re: resize /usr

[Chris Cappuccio]

Ken M [k...@mack-z.com] wrote:
> 
> $ df -h
> Filesystem SizeUsed   Avail Capacity  Mounted on
> /dev/sd0a 1005M245M710M26%/
> /dev/sd0h 62.9G   21.7G   38.1G36%/home
> /dev/sd0d  3.9G302K3.7G 0%/tmp
> /dev/sd0f 14.8G   11.6G2.5G82%/usr
> /dev/sd0g 19.7G1.1G   17.6G 6%/usr/ports
> /dev/sd0e 11.2G   56.1M   10.6G 1%/var
> 
> Above is my current disk setup, what I would like to do is shrink /usr/ports 
> to
> grow /usr.  
> 

Just move /usr/ports back to /usr and remount /dev/sd0g as /usr/local

Re: NodeJS apps on Httpd?

[Chris Cappuccio]

Michael Joy [mich...@michaeljoy.eu] wrote:
> Does anyone have any experience of getting node apps running through httpd?
> Any opinions, instructions or warnings are welcome.

I think generally node apps will be run behind relayd, not httpd.

Re: DRM without X

[Chris Cappuccio]

tfrohw...@fastmail.com [tfrohw...@fastmail.com] wrote:
> 
> 
> On September 4, 2018 2:11:11 PM UTC, Maurice McCarthy  
> wrote:
> >On 03/09/2018, Thomas de Grivel  wrote:
> >
> >> Is there any way to use the DRM drivers without X11 ?
> >
> >Probably not. The X sets in base are an integral part of the whole
> >operating system. You install them whether or not you use X.
> 
> Well, there are other display servers like Wayland, or projects like Arcan 
> (https://github.com/letoram/arcan). Haven't heard of any of them running 
> outside X11 on OpenBSD though.

Your mention of Arcan led me to this article: 
https://arcan-fe.com/2018/04/25/towards-secure-system-graphics-arcan-and-openbsd/

which suggests Arcan can run on OpenBSD,with DRM, without X11.

:)

Chris

Re: Intel Celeron SoC support

[Chris Cappuccio]

Andrew Lemin [andrew.le...@gmail.com] wrote:
> Hi,
> 
> I am running an ASRock J4105B-ITX board and wanting to run OpenBSD on this.
> https://www.asrock.com/MB/Intel/J4105B-ITX/index.asp#BIOS
> 
> It boots up, and at the 'boot>' prompt I can use the keyboard find.
> 
> However after it boots up, the keyboard stops working, and no disks are
> found by the installer (used auto_install to send test commands).
> It appears that there is no chipset support, for the Intel Celeron J4105
> CPU from what I can work out.
> 
> To test that it was working fine and is just OpebBSD which is not working,
> I installed Linux and have included the dmesg below (from Linux).
> I cannot run a dmesg from the OpenBSD installer as I cannot use the
> keyboard etc.
> 

The ASRock J4205-ITX (Apollo Lake) works fine, so does the J3710-ITX (Braswell).

I use them both headless, but they work fine when I plug in a USB keyboard.

The J4105-ITX (Gemini Lake) is newer than either.

What kind of keyboard are you using? If it's not USB, plug in a USB keyboard.
Although it may not work at the boot> prompt, it will work once you are booted
up.

For fun, here are dmesg for the older versions of your board. They both work
with USB input devices. 

Braswell


OpenBSD 6.3-current (GENERIC.MP) #21: Fri Jun 29 17:32:47 PDT 2018
ch...@r8.nmedia.net:/usr/src/sys/arch/amd64/compile/GENERIC.MP
real mem = 8023584768 (7651MB)
avail mem = 7771283456 (7411MB)
mpath0 at root
scsibus0 at mpath0: 256 targets
mainbus0 at root
bios0 at mainbus0: SMBIOS rev. 2.8 @ 0xecec0 (18 entries)
bios0: vendor American Megatrends Inc. version "P1.30" date 03/30/2016
bios0: ASRock J3710-ITX
acpi0 at bios0: rev 2
acpi0: sleep states S0 S3 S4 S5
acpi0: tables DSDT FACP APIC FPDT FIDT AAFT MCFG HPET SSDT SSDT SSDT UEFI LPIT 
CSRT
acpi0: wakeup devices UAR1(S4) XHC1(S4) HDEF(S4) PXSX(S4) RP01(S4) PXSX(S4) 
RP02(S4) PXSX(S4) RP03(S4) PXSX(S4) RP04(S4) BRCM(S0) PWRB(S4)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: Intel(R) Pentium(R) CPU J3710 @ 1.60GHz, 1600.37 MHz
cpu0: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,MOVBE,POPCNT,DEADLINE,AES,RDRAND,NXE,RDTSCP,LONG,LAHF,3DNOWP,PERF,ITSC,SMEP,ERMS,SENSOR,ARAT,MELTDOWN
cpu0: 1MB 64b/line 16-way L2 cache
cpu0: smt 0, core 0, package 0
mtrr: Pentium Pro MTRR support, 8 var ranges, 88 fixed ranges
cpu0: apic clock running at 79MHz
cpu0: mwait min=64, max=64, C-substates=0.2.0.0.0.0.3.3, IBE
cpu1 at mainbus0: apid 2 (application processor)
cpu1: Intel(R) Pentium(R) CPU J3710 @ 1.60GHz, 1600.00 MHz
cpu1: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,MOVBE,POPCNT,DEADLINE,AES,RDRAND,NXE,RDTSCP,LONG,LAHF,3DNOWP,PERF,ITSC,SMEP,ERMS,SENSOR,ARAT,MELTDOWN
cpu1: 1MB 64b/line 16-way L2 cache
cpu1: smt 0, core 1, package 0
cpu2 at mainbus0: apid 4 (application processor)
cpu2: Intel(R) Pentium(R) CPU J3710 @ 1.60GHz, 1600.00 MHz
cpu2: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,MOVBE,POPCNT,DEADLINE,AES,RDRAND,NXE,RDTSCP,LONG,LAHF,3DNOWP,PERF,ITSC,SMEP,ERMS,SENSOR,ARAT,MELTDOWN
cpu2: 1MB 64b/line 16-way L2 cache
cpu2: smt 0, core 2, package 0
cpu3 at mainbus0: apid 6 (application processor)
cpu3: Intel(R) Pentium(R) CPU J3710 @ 1.60GHz, 1600.00 MHz
cpu3: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,MOVBE,POPCNT,DEADLINE,AES,RDRAND,NXE,RDTSCP,LONG,LAHF,3DNOWP,PERF,ITSC,SMEP,ERMS,SENSOR,ARAT,MELTDOWN
cpu3: 1MB 64b/line 16-way L2 cache
cpu3: smt 0, core 3, package 0
ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 115 pins
acpimcfg0 at acpi0 addr 0xe000, bus 0-255
acpihpet0 at acpi0: 14318179 Hz
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 1 (RP01)
acpiprt2 at acpi0: bus 2 (RP02)
acpiprt3 at acpi0: bus 3 (RP03)
acpiprt4 at acpi0: bus 4 (RP04)
acpiec0 at acpi0: not present
acpicpu0 at acpi0: C3(10@1000 mwait.1@0x64), C2(10@500 mwait.1@0x58), C1(1000@1 
mwait.1), PSS
acpicpu1 at acpi0: C3(10@1000 mwait.1@0x64), C2(10@500 mwait.1@0x58), C1(1000@1 
mwait.1), PSS
acpicpu2 at acpi0: C3(10@1000 mwait.1@0x64), C2(10@500 mwait.1@0x58), C1(1000@1 
mwait.1), PSS
acpicpu3 at acpi0: C3(10@1000 mwait.1@0x64), C2(10@500 mwait.1@0x58), C1(1000@1 
mwait.1), PSS
acpipwrres0 at acpi0: CLK0, resource for CAMD
acpipwrres1 at acpi0: CLK0, resource for CAM1
acpipwrres2 at acpi0: CLK1, resource for CAM2, CAM3
acpipwrres3 at acpi0: USBC, resource 

Re: Trinity desktop environment

[Chris Cappuccio]

i...@aulix.com [i...@aulix.com] wrote:
> Is it possible to run TDE by trinitydesktop.org  on OpenBSD?
> Or is it going to be possible in the future?

You'd have to ask Trinity.

Trinity doesn't maintain their own compatibility for BSDs as a priority,
so it's not a trivial effort for an outsider.

That being said, the port and patches for KDE 3.5 in /usr/ports/x11/kde 
might be a good start if you wanted to make the effort yourself.

Re: IPSec heavy traffic slows down all network traffic

[Chris Cappuccio]

jean-yves boisiaud [jean-yves.boisi...@alcor-consulting.fr] wrote:
> Last week, I upgraded a couple of firewalls using carp/pfsync and sasyncd
> from 6.0 to 6.7 (yes, big jump !).
> 
> I also applied all the 6.7 published patches.
> 
> When some heavy traffic takes one of the IPSec tunnel, I noticed that :
> - all network connections are slowed down
> - unused network bandwidth increase instead of decrease
> - idle CPU move towards 0, and spinning increase to take about 50% of the
> CPU
> 
> When I stop the IPSec traffic :
> - network connections increase immediatly
> - unused network bandwidth cecreases immediately
> - spinning CPU is low.
> 

This is basically a performance regression that could be due to the MP
work. You are seemingly running into contention that wasn't possible before.
The question is, where is this happening? I don't know if the dynamic tracer 
can help here. 

Re: Shell account service providers

[Chris Cappuccio]

ibs...@ripsbusker.no.eu.org [ibs...@ripsbusker.no.eu.org] wrote:
> Aaron Mason writes:
> > What are you looking for in such a service?
> 
> Minimally, SSH login, 100GB disk space, and build tools
> 
> It's easy enough to find something like this, but it is usually bundled
> with other stuff and priced accordingly.
> 
> I'll mostly use it for nmh and mairix.

Why not just buy a cheap vhost?

Re: Shell account service providers

[Chris Cappuccio]

Adrian Grigore [adrian.emil.grig...@gmail.com] wrote:
> https://tilde.institute/
> 

That's a cool project. Shell environments are the original social network.

Re: Rsync is too slow

[Chris Cappuccio]

Rupert Gallagher [r...@protonmail.com] wrote:
> Latest obsd with new 4TB wd red ssd disk copying from 2TB seagate exos 
> returns 80GB in 8 hours with zero activity by other tasks. The server has 
> 12GB ecc ram cache. Copying 1.4 TB from a nas to the same exos took 2.5 hours 
> shy. Is there a problem with how obsd handles internal storage? Or a problem 
> with the default kernel sysconfig and staff defaults?

sounds like you are copying from SATA to USB ? first, send a dmesg so
people get a better idea. second, try -current. several improvements
have been made for USB to be faster. 

Re: Rsync is too slow

[Chris Cappuccio]

Rupert Gallagher [r...@protonmail.com] wrote:
> No, I am not using USB.

rsync between disks should be very fast. you are going from the sata to the
nvme ? NetBSD or FreeBSD or somebody made some speed improvements to nvme
that we should review. i can't remember right now. anyways, 10GB/hour sounds
extremely slow for an nvme SSD, way way way too slow for anything I have
experienced in recent memory. 

it might be interesting to try using cp between filesystems, or tar

such as: cp -r /usr/bin /mnt/usr/bin
or: tar cf - -C /usr/bin . | tar xpf - -C /mnt/usr/bin

also what speeds are you getting on the destination filesystem?

dd count=1 bs=1G if=/dev/zero of=/mnt/test conv=fsync

might give you some rough idea of what 1G write costs.

here's 1G write on my Samsung 845DC Pro which is one of my all-time favorite
SATA SSDs for reliability

# dd count=1 bs=1G if=/dev/zero of=test conv=fsync 
1+0 records in
1+0 records out
1073741824 bytes transferred in 2.906 secs (369450372 bytes/sec)

here's the same for a Crucial M500

# dd count=1 bs=1G if=/dev/zero of=test conv=fsync
1+0 records in
1+0 records out
1073741824 bytes transferred in 4.356 secs (246484472 bytes/sec)

it's not clear to me how much the buffer cache affects this but i'm hoping
here that conv=fsync helps. in a wierd twist, tests like this with conv=fsync
run consistently faster than without, so my understanding isn't that great.

Re: Rsync is too slow

[Chris Cappuccio]

Rupert Gallagher [r...@protonmail.com] wrote:
> No, I am not using USB.

your dmesg didn't make it to the list because you are attaching a text file
and attachments are not allowed on misc.

please put it inline with the message.

Re: OpenBSD 6.7-current VM on vmd collectd timesync problem

[Chris Cappuccio]

Martin [martin...@protonmail.com] wrote:
> 
> VM using NTP protocol to fine tune clock from the OpenBSD 6.7-current host, 
> but collectd complain about clock skew in the past.
> 
> Any ideas?
> 

Does this happen with 6.6 or 6.7 as well? 6.7-current uses the TSC directly
to gather timestamps, but it should only do this if the TSC are "synchronized".

Re: Rsync is too slow

[Chris Cappuccio]

Chris Cappuccio [ch...@nmedia.net] wrote:
> 
> such as: cp -r /usr/bin /mnt/usr/bin
> or: tar cf - -C /usr/bin . | tar xpf - -C /mnt/usr/bin
> 

also the destination filesystem should be mounted with async (dangerous on
power loss) or softdep (not very dangerous on power loss) to avoid huge
amounts of metadata updates slowing your action.

Re: VMM vulns?

[Chris Cappuccio]

Demi M. Obenour [demioben...@gmail.com] wrote:
> 
> Yikes!  Is https://openbsd.amsterdam affected?
> 

Unless they have a special version of vmm with bugfixes that don't exist
anywhere else, then yes, of course.

Re: Impossible to remove a broken package on 6.5.

[Chris Cappuccio]

Angelo Rossi [angelo.rossi.home...@gmail.com] wrote:
> 
> # pkg_delete -v kicad
> Can't locate object method "updateset_with_new" via package
> "OpenBSD::PkgDelete::State" at /usr/libdata/perl5/OpenBSD/Dependencies.pm
> line 309.
> 

Your /usr/libdata/perl5/OpenBSD directory is corrupted, this should exist
in /usr/libdata/perl5/OpenBSD/PkgAdd.pm

Your upgrade seems to have failed

Re: txpower

[Chris Cappuccio]

Roderick [hru...@gmail.com] wrote:
> 
> It seems, it disappeared from ifconfig because only wi supported it.
> 

It would be nice if more people were working on the 802.11 stack. The man-
power here is very limited.

> Can I be sure that my WLAN is not sending stronger than the law allows?
> 

Unless you are using external high-gain antennas, this isn't possible.

Also, txpower on most 802.11 chips tends to be out of user control. It
will make automatic changes for various reasons.

Chris

Re: surprisingly good net speed with 2 REs

[Chris Cappuccio]

g...@oat.com [g...@oat.com] wrote:
> 
> Peaks at about 500mb/sec

tcpbench is a better test because it won't measure your disk i/o at the same
time

also, the realtek chip you mention has a hard limitation of around 500Mbps
on either transmit or receive, i'm not sure. this is according to luigi
rizzo's netmap testing on freebsd. try pairing it with a better chip
for testing. i'm able to get over 1Gbps single-TCP stream file xfer with
modern openbsd and fast machines and SSDs, but that's nothing notable
these days.

Re: fw_update long timeout, how to specify mirror

[Chris Cappuccio]

Tommy Nevtelen [to...@nevtelen.com] wrote:
> Hi!
> 
> I have some systems without access to the Internets and with internal
> mirrors for packages and fw_update packages. But when openbsd does a
> sysupgrade or a new install it runs fw_update against firmware.openbsd.org.
> The problem here is that it will hang until the timeout is reached.

If your case is like mine, you have a management network with zero internet
access. But you might also have a machine which can be setup to bridge the
gap, with a proxy.

The ftp client which does the actual file transfer honors the "http_proxy"
environment variable so you can do something like:

export http_proxy=http://my.proxy.server:1234/

Re: OpenBSD and solid state disks

[Chris Cappuccio]

Raymond, David [david.raym...@nmt.edu] wrote:
> Thanks for the insight on SSDs -- sounds like there is not much of an
> issue with modern drives.
> 

If write endurance is a concern, you can buy higher grade SSDs that have
constant latency (at the expense of max speed) and a lot of extra flash.
I would avoid the TLC drives for servers and the QLC drives for everything,
if writes are heavy. 

My biggest problem with SSDs has been total failures. I run pairs of SSDs
in softraid RAID 1 for this reason. 

Re: pfsync on VLAN - supported ?

[Chris Cappuccio]

Rachel Roch [rr...@tutanota.de] wrote:
> Hi,
> 
> Both the man page and FAQ (https://www.openbsd.org/faq/pf/carp.html) 
>  talk about "physical interface" in 
> relation to the syncdev parameter.
> 
> Does this mean Bad Things (TM) will happen if I try to use a dedicated vlan 
> interface for pfsync ?
> 

It's as secure as your ethernet network is. There is no privacy or
authentication with pfsync. I don't think that using a vlan is 
considered a big problem these days. I'm absolutely amazed at the
volume of data that pfsync generates. Since so many boxes come with extra
ports, using a vlan may be more complicated than directly connecting
the boxes together (unless you have more than two machines)

cwm window in all/no groups

[Chris Cappuccio]

I'm using windows groups with sticky.

unbind-key  all

bind-keyM-1   group-only-1
bind-keyM-2   group-only-2
...
sticky yes

Usually I can keep all my windows in whatever group they were opened in. On
occasion, I must be typing in some strange key combination and I end up
getting some or all of the windows on my current screen bound to no group.

I don't have any keys bound to 'window-stick' which seems like it would
do exactly this. I don't have any keys bound to group-only-0. When windows
start going into all/nogroup mode, it becomes very frustrating. I can't focus
into a nogroup xterm for typing unless I kill or move any windows which are
members of the current group. I can't move the nogroup windows either. I
can't close them using the meta key delete. These nogroup windows have
some very annoying properties, appropriate for xconsole perhaps.

Does this sound familiar to anyone? 

.cwmrc:

unbind-key  all

bind-keyM-1   group-only-1
bind-keyM-2   group-only-2
bind-keyM-3   group-only-3
bind-keyM-4   group-only-4
bind-keyM-5   group-only-5
bind-keyM-6   group-only-6
bind-keyM-7   group-only-7
bind-keyM-8   group-only-8
bind-keyM-9   group-only-9
bind-keyCM-q   window-delete
bind-keyCM-r   restart
bind-keyM-equal"mixerctl outputs.master=+10"
bind-keyM-jwindow-cycle-ingroup
bind-keyM-kwindow-rcycle-ingroup
bind-keyM-minus"mixerctl outputs.master=-10"
bind-keyM-twindow-maximize
bind-keySM-1   window-movetogroup-1
bind-keySM-2   window-movetogroup-2
bind-keySM-3   window-movetogroup-3
bind-keySM-4   window-movetogroup-4
bind-keySM-5   window-movetogroup-5
bind-keySM-6   window-movetogroup-6
bind-keySM-7   window-movetogroup-7
bind-keySM-8   window-movetogroup-8
bind-keySM-9   window-movetogroup-9

bind-keySM-Return   "xterm -e top"
bind-keyM-Return"xterm"

command firefoxfirefox
command sofficesoffice
command iridiumiridium
command xterm  xterm

borderwidth 1
color   activeborder   gray8
color   inactiveborder black
snapdist4
sticky  yes

Re: What TERM fixes Emacs?

[Chris Cappuccio]

Emilia [emi...@sonic.net] wrote:
> Stuart, 
> 
> Apologies for breaking netiquette w/ sending images.
> 
> Could you please point me to what "pccon" is?  I found references to
> pccon in pcvt - but it is unclear to me how I can use pcvt either. 
> 

export TERM=pccon perhaps?

Re: Having PF enabled breaks up rsync (and scp) over ssh connections

[Chris Cappuccio]

Jyri Hovila [Turvamies.fi] [jyri.hov...@turvamies.fi] wrote:
> Hello everyone!
> 
> Now here's a mysterious one -- I've been working on this for weeks and still 
> have no clue what's causing it.
> 
> "client_loop: send disconnect: Broken pipe
> 
> As soon as I disable pf entirely, the problem goes away.
> 
> Any ideas on how to debug this further?
> 

Figure out which exact part of your pf config is causing this. Try disabling
everything line-by-line. 

Re: 10Gb single mode fibre adapters

[Chris Cappuccio]

James A. Peltier [jpelt...@sfu.ca] wrote:
> Hi Misc,
> 
> I'm looking to get some insight into those that have 10Gb single mode fibre 
> adaptors in their OpenBSD machines and if they're being used in bridging 
> mode?  I've got a user who is asking what the current state of 10Gb is on 
> OpenBSD given all the MP work that's been done.  There will be 70 or so 
> VLANs, some traffic shaping, and packet filter taking place on this device 
> and so choosing the appropriate hardware is rather important.  Any input from 
> heavy bridging/VLAN use is even more important.  Thanks.
> 

I've tested the Xeon CPU E5-1630v3 (3.70GHz, 4 core), myricom myx,
intel ix and emulex oce cards, and the results under 5.8-current
are great. OpenBSD 5.8 is not bad either. Under 5.8-current, a
small routing table of 500 or so routes and option ART, plus PF
NAT enabled and 1.4Gbps/200kpps of load, vlans, the average load
is 11%, which transates to load of 30-40% on two cores and almost
none on two (or sometimes evenly loads across three cores, out of
nowhere). The network stack is undergoing big changes so this keeps
improving.

The oce card/driver gives me .06ms round-trip ping times across a 
cisco 5020 whereas ix and myx are currently at .2ms-.3ms rtt on 
the same switch. I'm not sure why, but it's fascinating. 

Chris

Re: 10Gb single mode fibre adapters

[Chris Cappuccio]

James A. Peltier [jpelt...@sfu.ca] wrote:
> 
> I'm looking at the Dell R220 which lists the Emulex OneConnect OCe14102-UX-D 
> 2-port PCIe 10GbE CNA or Intel X520 DP 10Gb DA/SFP+ Server Adapter.  The OCE 
> driver doesn't list the 14102 as a listed device that is supported, but ix 
> does list the X520-DA2.  Is it safe to assume that the DA and DA-2 are the 
> same or similar chipsets and will work?  I'd likely be running 5.8-CURRENT on 
> this box.
> 

I don't know about the 14102, but it's likely that DA-2 may already be
supported under a current device ID, or may be simple to add to if_ix

Chris

Re: httpd and Server Side Includes

[Chris Cappuccio]

worik [r...@worik.org] wrote:
> > 
> > I wouldn't hold my breath. I'm fairly certain that we won't implement
> > it.
> 
> Why is that?
> 

Because Server Side Includes are basically a custom Apache scripting
language. Most people use a different scripting language, even with Apache,
not SSI. httpd can already talk to other language launchers through fcgi,
such as php with php-fpm. 

I think SSI is a textbook example of features that won't ever be included
in httpd. It's the broken, rusty area underneath the faucet of your kitchen
sink.

> What are the sorts of jobs that httpd is the right tool for?  Is it only
> serving static HTML?
> 

Actually many people use it for dynamic content. Reyk Floeter, the author,
even wrote up a guide for running owncloud under httpd. Search google for it.

> I have seen some reference to "slow CGI" but my needs and research have
> not gone there.  Does httpd support CGI?
> 

httpd supports the "Fast CGI" interface to talk to external launchers.
Programs that use Fast CGI or fcgi are typically designed to serve demanding
environments which may require hundreds of pre-launched scripts, ready to
start running as soon as a connection comes in. Or, a hundred.

One such program that supports the httpd fcgi interface is "slowcgi". This
is a simple fcgi interface that launches a regular CGI upon each request,
without the capability to pre-launch anything. It's fine for CGI programs
which worked under Apache.

Re: Asterisk + MariaDB + ODBC newbie questions

[Chris Cappuccio]

Stuart Henderson [s...@spacehopper.org] wrote:
> On 2015-10-14, Ivo Chutkin  wrote:
> > Hello all,
> > I want to use Asterisk with MariaDB CDR backend.
> > I have working Asterisk.
> > I have working MariaDB.
> > As far as I understand, since Asterisk 11 I must use ODBC connector to 
> > MariaDB.
> > Unfortunately I cannot find any practical info concerning OpenBSD, 
> > Asterisk, ODBC and MariaDB.
> > I tried iodbc package but I cannot find mysql drivers.
> 
> The iodbc package just contains the ODBC library, it doesn't come with
> any database drivers itself. AFAIK at the moment the only drivers we have
> are sybase/sql server (in the "freetds" package), postgresql (the
> "postgresql-odbc" package) and access ("mdbtools").
> 
> I think you need either "MariaDB Connector/ODBC" or "MySQL Connector/ODBC"
> but these aren't in ports/packages yet.

In my experience asterisk is more reliable with text cdr logging. Creating
a script to import CSV into the mysql cli tool is trivial. 

Re: how to partition routing namespace

[Chris Cappuccio]

Geoff Steckel [g...@oat.com] wrote:
> 
> I'm using sixxx.net as an IPv6 tunnel gateway.
> They gave me 2001:::0111::0002 as my tunnel endpoint and
> 2001:::0111::1 as their end and router address.
> They gave me 2001:::8111::/64 for my address space.
> Note that the tunnel endpoint addresses are globally routeable.
> 
> The desired behavior is to partition the network space
> inside the machine into the gateway section and the
> rest of the machine >> as if they were connected by
> a pair of interfaces and a cable << where the interfaces
> had addresses in 2001...8111 so that locally generated
> packets would go out with that source address.
> 

If the tunnel endpoint x:0111::0002 is globally routeable, why do you
care about the machine's own traffic not appearing from that address?

None the less, if you must have traffic appear from x:8111::/64, 
can't you just use that on your gif interface? As gif is a point-to-
point interface, there is no need for both participants to be within the
same subnet. Of course, if you do this, you can't then apply the
x:8111::/64 address to your ethernet interface facing your LAN,
which is where it was meant to go, and why it all works this way
anyways.

If you really must have both x:8111::/64 on the LAN and on the gif
interface, you could specify a /128 address for the gif interface
and only use one of your x:8111::/64 addresses away from your LAN
interface.

Thre is no ARP so even if the remote router knows your gif interface
as x:0111::0002 and routes to it, you can still use whatever address
you want. But I don't really understand why you would want to do this,
unless this tunnel router is the only machine you care to IPv6 on.

Chris

Re: how to partition routing namespace

[Chris Cappuccio]

Geoff Steckel [g...@oat.com] wrote:
> 
> On reading the latest if_bridge.c it looks like it will cross routing
> domains. No domain information is passed with the packet.
> A lot of it got rewritten between 5.7 and 5.8
> 

What does bridge have to do with it?

I thought you wanted to terminate a tunnel on a router.

Re: It was twenty years ago you see...

[Chris Cappuccio]

Theo de Raadt [dera...@openbsd.org] wrote:
> 
> The first developments were improvements to 32-bit sparc.
> 

I bought a Sun 4/110 over Usenet, ran the venerable SunOS 4.1.3, and later
NetBSD. When I was 16, and a bit before Chuck and Theo setup anoncvs, or there
was even an OpenBSD web site, Theo started putting his first "OpenBSD" sparc
kernels on ftp.theos.com. I ran it with my NetBSD userland. The improvements
to the sun 4/110 "sw" driver was dramatic, the disk went from 100KB/sec to
1.1MB/sec with DMA support.

Now I had a modern system that would compile and operate current software on
the internet without retrofit work (even in 1995, SunOS 4.1.3 was dated
compared to NetBSD) and the disk was back to SunOS speeds! This was so cool.

And here it's still going, 20 years later! I didn't even know what 20
years was...

Re: Suggested 1000BASE-LX adapter

[Chris Cappuccio]

Federico Giannici [giann...@neomedia.it] wrote:
> I have to install in an OpenBSD 5.8 amd64 a PCI-E ethernet card supporting
> 1000BASE-LX (i.e. 1Gbps with Single Mode Fiber).
> 
> Usually we use Intel cards (em driver) but I found that the only Intel LX
> card has a PCI-X bus!
> 
> What reliable LX NIC with PCI-E do you suggest?
> 

If you have trouble finding SFP versions of em cards, you can always try
SFP+ versions of ix cards. They work with 1Gbps SFP and are readily available
from several vendors.

Chris

Re: Suggested 1000BASE-LX adapter

[Chris Cappuccio]

Federico Giannici [giann...@neomedia.it] wrote:
> 
> We do have an ix card, the Intel X520-LR1.
> I read that it is supposed to work as 1000BASE-LX too but we were not able
> to make it work! It never gives the link.
> 
> If we try to set 1000BASE-LX as media type it gives error.
> 
> isengard:/home/giannici> ifconfig ix2 media
> ix2: flags=8802 mtu 1500
> lladdr 00:1b:21:91:5f:20
> priority: 0
> media: Ethernet autoselect
> status: no carrier
> supported media:
> media 10GbaseLR mediaopt full-duplex
> media autoselect
> 
> Are you sure that it is supposed to work as 1000BASE-LX with OpenBSD 5.8?
> 

I've used it with various SuperMicro ix cards. Nothing quite as new as the X520.

Have you tried 'ifconfig up' ?

Re: Suggested 1000BASE-LX adapter

[Chris Cappuccio]

Federico Giannici [giann...@neomedia.it] wrote:
> On 10/27/15 16:17, Chris Cappuccio wrote:
> >Federico Giannici [giann...@neomedia.it] wrote:
> >>
> >>We do have an ix card, the Intel X520-LR1.
> >>I read that it is supposed to work as 1000BASE-LX too but we were not able
> >>to make it work! It never gives the link.
> >>
> >>If we try to set 1000BASE-LX as media type it gives error.
> >>
> >>isengard:/home/giannici> ifconfig ix2 media
> >>ix2: flags=8802 mtu 1500
> >> lladdr 00:1b:21:91:5f:20
> >> priority: 0
> >> media: Ethernet autoselect
> >> status: no carrier
> >> supported media:
> >> media 10GbaseLR mediaopt full-duplex
> >> media autoselect
> >>
> >>Are you sure that it is supposed to work as 1000BASE-LX with OpenBSD 5.8?
> >>
> >
> >I've used it with various SuperMicro ix cards. Nothing quite as new as the 
> >X520.
> >
> >Have you tried 'ifconfig up' ?
> 
> Yes, nothing changes...

Well this doesn't bode well for my original idea :)

These SuperMicro single and dual port work with Cisco LX/LH SFPs:

ix0 at pci2 dev 0 function 0 "Intel 82599" rev 0x01: msi, address 
6c:b3:11:3b:43:4b
ix1 at pci2 dev 0 function 1 "Intel 82599" rev 0x01: msi, address 
6c:b3:11:3b:43:4d

ix0 at pci1 dev 0 function 0 "Intel 82599EN" rev 0x01: msi, address 
00:25:90:e1:c2:dd

Chris

Re: Anyone experienced with 4G/LTE modems?

[Chris Cappuccio]

Alan Corey [alan01...@gmail.com] wrote:
> 
> I have used USB tethering from a phone to an OpenBSD machine and
> bridged that to a WiFi card set up as an AP.  I'm not impressed with
> the reliability of WiFi after using it a few months.  It's convenient
> when it works but I'd rather run wires then maybe hang WiFi APs off
> them, like one at each end of the house.
> 

The net80211 infrastructure and related drivers need help. Apply within.

Re: Firefox Worked Slowly...

[Chris Cappuccio]

Nick Holland [n...@holland-consulting.net] wrote:
> 
> get a faster processor and more memory.
> I don't care what you have...you need a faster processor and more memory
> for modern browsers.
> 
> When the browser claims it is 10% faster than before, that's on a
> processor that's twice as fast.  That's a cynical exaggeration, but not
> as big an exaggeration as I wish it was.
> 

Well JIT was disabled on Firefox, but even before that happened,
something has made firefox glacially slow on all of my workstations.

> I'm really stunned at how much processor memory the modern browser
> leaks, considering we once used browsers on 486s with 16M RAM.
> 

Probably Moasic, Netscape would have been too slow with Javascript
support to do anything useful...Kind of like firefox today (and
thousands of MHz later)

Chris

Re: how to transfer the image of qemu to real machine

[Chris Cappuccio]

Tuyosi Takesima [nakajin.fu...@gmail.com] wrote:

> 1)on linux machine , i boot openbsd by kvm and follow current .
>   and so the qcow2 image of OpenBSD-current.img was made .
>   and then i copy OpenBSD-current.img to ext2 area .

You are creating the filesystem layout under linux and then putting the
result into openbsd to run installboot? I'm not sure how well that is going
to work. How are you creating device nodes? Kernels? binaries?

> 3)rewite /MNT/et/fstab
>   /dev/sd1a / ffs rw 1 1

At a minimum this needs to be sd0a as this disk will become sd0 when you
move it to the destination system. This is an uphill battle.

Re: 5.8-release building mutt from ports fails

[Chris Cappuccio]

Tati Chevron [chev...@swabsit.com] wrote:
> Hi,
> 
> On a freshly installed 5.8-release, I am unable to build mutt from source 
> using the ports tree.
> 
> I've never had any difficulty building the mutt port since at least 
> 5.0-release.
>
> systrace: deny user: root, prog: /bin/cp, pid: 24101(0)[7002], policy:
> /usr/bin/env, filters: 248, syscall: native-chflagsat(107), filename: 
> /usr/ports/pobj/db-4.6.21-no_java-bootstrap-no_tcl/fake-amd64-no_java-bootstrap-no_tcl/usr/local/share/doc/db4/articles/inmemory,
> flags: cp: chflags: 
> /usr/ports/pobj/db-4.6.21-no_java-bootstrap-no_tcl/fake-amd64-no_java-bootstrap-no_tcl/usr/local/share/doc/db4/articles/inmemory:
> Operation not permitted

Unfortunately you'll have to turn off systrace to build this port. Are you
using any custom systrace rules?

Re: state of SSD by OpenBSD / relatime

[Chris Cappuccio]

Nick Holland [n...@holland-consulting.net] wrote:
> 
> (noatime is a huge performance gain.  atime is a feature looking for a
> need, I suspect).
> 

Someone had a relatime patch. Where did that go???!!

Re: Multiple interfaces match the same subnet

[Chris Cappuccio]

bluesun08 [nans_na...@yahoo.de] wrote:
> Hi,
> 
> my setup:
> 
> */etc/hostname.re0*
> up
> 
> */etc/hostname.vlan100*
> inet 192.168.100.184 255.255.255.0 192.168.100.255 vlandev re0 description
> VLAN1-Net1
> 

You don't need to specify the broadcast address. The kernel is smart
enough to figure it out by itself!

> */etc/hostname.bridge0*
> add vlan100
> add athn0
> up
> 

Since you are bridging vlan100 with athn0, there is no need to put
an IP address on athn0. This might result in multipath routing, but in
any event, it's not going to do what you expect.

> Nov 27 01:31:27 openbsd dhcpd[31924]: Multiple interfaces match the same
> subnet: athn0 vlan100
> Nov 27 01:31:27 openbsd dhcpd[31924]: Multiple interfaces match the same
> shared network: athn0 vlan100
> 

So, get rid of the IP on one of either athn0 or vlan100.

Re: Any news on Fletcher checksums (=ZFS-style checksums) in softraid? (+better phrasing)

[Chris Cappuccio]

Tinker [ti...@openmailbox.org] wrote:
> Hi!
> 
> I heard someone was working with implementing Fletcher checksums in
> softraid.
> 
> Do you know any updates on this?
> 

Karel Gardas was working on an implementation of RAID1C for softraid

Last I remember, it needs to be pulled out into smaller pieces

Re: serious watchdog timeout issues with em driver

[Chris Cappuccio]

Kapetanakis Giannis [bil...@edu.physics.uoc.gr] wrote:
> On 20/11/15 15:12, Martin Pieuchot wrote:
> >I just committed a revert to 1.305 keeping the API changes needed for
> >the driver to build.
> >
> >This should bring your stability back, please let us know if that's not
> >the case.
> >
> >I'm sorry for your troubles.
> 
> Hi,
> 
> I've upgraded yesterday to Dec 6 snapshot and today I got my first
> em0: watchdog timeout -- resetting
> 
> em0 at pci1 dev 10 function 0 "Intel 82541EI" rev 0x00: apic 2 int 22, 
> address 00:30:48:72:28:58
> em1 at pci1 dev 11 function 0 "Intel 82541EI" rev 0x00: apic 2 int 23, 
> address 00:30:48:72:28:59

Can you try to pinpoint when it started?

Re: APU-2: Changing Installer Image

[Chris Cappuccio]

Kapfhammer, Stefan [sk...@skapf.de] wrote:
> Hello,
> 
> I want to install OpenBSD 5.8 on an APU-2 board with a mSATA SSD installed.
> 
> I have to redirect the output to serial console with a change in 
> /etc/boot.conf (2 lines)
> 
> How do I write the change to a USB-Stick, so that the installer boots from 
> the APU? Or is there a better way to install the APU?
> 

You'll have to edit /etc/boot.conf on the USB stick:

stty com0 115200
set tty com0

Re: Problem with SSD on Marvell 88SE9230 (Supermicro X9SBAA)

[Chris Cappuccio]

Christoph Viethen [open...@aixplosive.net] wrote:
> Hello,
> 
> on my little X9SBAA mainboard, I'm faced with a strange phenomenon. I've got
> two SATA drives at hand, one SSD, the other a regular mechanical harddisk.
> As long as I connect the SSD to a PCI card (with VIA VT6421 chipset), I can
> nicely boot from it (or use it in any other way, for that matter).
> 
> But as soon as the SSD is connected to any of the on-board SATA ports (which
> are wired to the 88SE9230), I'm getting error messages during bootup of
> OpenBSD:
> 
> "ahci0: failed to stop port, cannot softreset"
> 

A variation of this problem (evident on Intel chipsets and various SSDs) was
solved for some cases here:

http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys/dev/ic/ahci.c.diff?r1=1.13&r2=1.14

That was based on Dragonfly's commit:

http://gitweb.dragonflybsd.org/dragonfly.git/commitdiff/f2dba7003b2add226b3999a41a99fd278cc5a26f

(which is a port of the OpenBSD ahci driver)

Perhaps this is a long shot, but maybe your combination of controller and SSD
require more time to sort out thier business. You could try editing
/usr/src/sys/dev/ic/ahci.c to achieve this,

change this is around line 1443:

if (retries == 0) {
retries = 1;
goto retry;
}

to:

if (retries <= 5) {
retries++;
goto retry;
}

Compile a new kernel, see if it helps?

Re: wle200nx WiFi card on apu2b4 - no link

[Chris Cappuccio]

Mihai Popescu [mih...@gmail.com] wrote:
> > -> athn0 at pci4 dev 0 function 0 "Atheros AR9281" rev 0x01: apic 4 int 
> > 16
> > -> athn0: AR9280 rev 2 (2T2R), ROM rev 22, address 
> 
> AR9281 and AR9280 are two different chips as they are listed in the man page.
> Why does your dmesg report 2 chips?

One is based on the PCI device ID, one is based on the internal card
identifier used by the driver. You'll have to examine the driver to understand
what implication this has. The ath and athn drivers are both finicky and require
specific combinations of settings, set in a particular order, to work properly.

Re: anyone using msk(4) NICs?

[Chris Cappuccio]

Devin Reade [g...@gno.org] wrote:
> I reported a problem on the bugs@ list in that I have a machine that
> panics if the msk(4) interface is used, but works fine with an em(4)
> interface.
> 
> There is a possibility that I have bad hardware as I've been able to
> replicate this on 5.9 beta, 5.8 release, and now 5.7 release.  I find
> it unlikely that msk(4) has been broken that long.
> 

It's possible you have an unsupported variant. It's also possible that
the driver has been broke, it's not an incredibly popular one (i've
only seen it on crappy netbooks myself)

I wouldn't just assume the problem is hardware. In fact, you should
provide a dmesg, trace, etc.

http://www.openbsd.org/report.html

Re: convert rsa public key to hex

[Chris Cappuccio]

http://www.cisco.com/c/en/us/support/docs/security/vpn-client/116039-pki-data-formats-00.html

Marko Cupa?? [marko.cu...@mimar.rs] wrote:
> Hi,
> 
> I'm trying to set up ipsec-protected gre tunnel from OpenBSD to Cisco,
> and - not only thanks to all the useful advices I got in my earlier
> thread https://marc.info/?l=openbsd-misc&m=145043287011537&w=2, but
> also 10x to http://bsdsupport.org/setting-up-ipsec-over-gre-on-openbsd/
> - I've so far managed to successfully establish non-protected gre
> tunnel. Also OSPF works through it!
> 
> I want to dive further into ipsec and rsa keys (which BTW I have
> successfully configured numerous times in OpenBSD - OpenBSD and
> Cisco - Cisco setups, but never in a OpenBSD - Cisco setup), but I've
> stumbled upon an obstacle I haven't encountered before: Cisco asks for
> public keys in hex number format, similar to:
> 
> 30819F30 0D06092A 864886F7 0D010101 05000381 8D003081 89028181 00B2GD66
> 569171F2 0BCEAE31 5DCDD33A AA3E908C C93A46ED 267AA65A 70150BEC F0BAF97C
> 3348DDAB 7FB26194 739D3BB2 4114F5BC 87A1F8BD 67DD656C 34540314 0EAD1301
> 40A4FB2C B37438F3 F37F8182 C0C0286C 1200F3A0 73E2D021 D9CAFE2C 547CABCF
> 43ED95EE 12C9B4C0 633DA4C4 D7FAF832 31F7AFEA C88DCDCB BBB735D9 CB020301
> 0001
> 
> ... while OpenBSD's local.pub is similar to:
> 
> -BEGIN PUBLIC KEY-
> MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ9AMIIBCgKCAQEAtBdefJzPO8VhBUx28wLV
> xLk0DeLDTIDU6m+v7DCC1dge3NLK2i+G5wkqUvlOK/vmPkKRydOzioViUiwhoP1q
> q6oHE8aQvVCbD7R6lMibx+4Rcejwc3pBzx5K1ibCqj9zhkrVI1SD5PIMAyBF/WxG
> rR47c+cXZwwUFspXBddqODaJcH9pFKW1gUhMo58j8MVw2HYyMdQo7nbx5TKybUWd
> 9+skXFiTqWumZGqV2OsKqVKsWmbq6jojUwpobRgEXqj0ndHKsGK39YP/XqAx8nYm
> pAkaDvFmCE4ntoVHoG/nfKtgpryPEb1nQ3e1t97WgoJUOw3iqutji3XQ+/tDfvWq
> HQIDAQAB
> -END PUBLIC KEY-
> 
> Any idea on how to convert OpenBSD's /etc/isakmpd/local.pub to hex
> number format?
> 
> Thank you in advance,
> --
> Before enlightenment - chop wood, draw water.
> After  enlightenment - chop wood, draw water.
> 
> Marko Cupa??
> https://www.mimar.rs/

Re: installer amd64 Get/Verify bsd 'Illegal instruction'

[Chris Cappuccio]

Marcus MERIGHI [mcmer-open...@tor.at] wrote:
> 
> The machine once had OpenBSD loaded and worked, it's a Shuttle DS47,
> dmesg is in the archives. 
> 

If you have the problem again, please submit to bugs and include your
dmesg, don't ask people to fish for it.

Re: VAX - are we dropping support in 5.9?

[Chris Cappuccio]

Adam Thompson [athom...@athompso.net] wrote:
> On 16-01-23 08:34 PM, Ted Unangst wrote:
> >I will add that one of the reasons we have support for all these museum
> >pieces is that people can build their very own museum and run something
> >interesting on it. But running on emulators doesn't really satisfy that
> >goal. If there are, in fact, no museum pieces left in the world, we no
> >longer need to supply an OS to run on them.
> 
> Huh.  Previous discussions had led me to believe that the OpenBSD project's
> rationale for supporting all these various architectures was that it
> ultimately resulted in much-higher-quality code because platforms like VAX
> and SPARC64 acted as canaries for suboptimal coding practices?  (Endian
> issues, stack issues, framing issues, alignment issues, etc., etc., etc.)
> 

These are wonderful reasons, but OpenBSD requires real hardware to run on,
emulators are secondary. There was just _one_ guy who was dedicated to
maintaining development hardware, and even the GCC compiler, for OpenBSD/vax,
and he's no longer dedicated to it. That leaves zero guys and gals left to
maintain it. I don't see anyone stepping up here, only a few people who
would like someone to maintain it for them!

> Besides, I thought the run-on-everything-and-anything (including the
> verging-on-absurd) was NetBSD's thing, not OpenBSD's?  See
> http://netbsd.org/ports/, make your own opinions on which platforms verge on
> the absurd...
> 

NetBSD doesn't actually run on many of these older platforms, hasn't been
tested on real hardware, only emulators. That has been the case for years.
It's not maintained.

If OpenBSD provides a release for a particular architecture, it was actually
booted and compiled on a real machine...and will work on your similar machine.


Chris

Re: [OpenBGPD] Problem with many (fast connecting) Peers

[Chris Cappuccio]

Daniel Seidenst?cker [d.seidenstuec...@googlemail.com] wrote:
> Dear OpenBGPD Community,
> 
> 
> 
> in order of measuring the performance of OpenBGPD I need to connect it with
> a huge amount of peers (realized by ExaBGP). OpenBGPD 5.8 works well with
> 100 Peers but if I increase that number to 250 I got every try the same
> error (debug mode):
> 
> 
> 
> handle_pollfd: imsg_read error: Resource temporarily unavailable
> 
> 

I don't think increasing the file limits is the right answer. There's
a bug here. This is EAGAIN.

bgpd should handle EAGAIN internally, not segfault. It's to be expected.
There is another bug that needs to be found. I'll stare at it some more
if someone else who knows really this stuff doesn't do it first...

Chris

Re: [OpenBGPD] Problem with many (fast connecting) Peers

[Chris Cappuccio]

Peter Hessler [phess...@openbsd.org] wrote:
> Good news: this is already fixed in -current (and the upcoming 5.9
> release).
> 
> Bad news: this requires changes to libutil, so it isn't trivial to
> backport to 5.8.
> 
> Upgrading to a snapshot newer than Nov 28 should fix your problem.
> 
> I can now connect with 1000 exabgp sessions at once.  Not all succeed on
> the first connection, but they eventually all connect without crashing
> the server instance.
> 
> (BTW, ExaBGP runs into problems when you try to have more than 2000
> sessions.  Just run more ExaBGP's then.)
> 

Oh, even better!!

Re: Trying to newfs an old 128 compactflash

[Chris Cappuccio]

Monah Baki [monahb...@gmail.com] wrote:
> # newfs /dev/rsd0a
> /dev/rsd0a: 123.0MB in 251840 sectors of 512 bytes
> 4 cylinder groups of 30.74MB, 3935 blocks, 7872 inodes each
> newfs: wtfs: write error on block 16: Input/output error
> 
> Same error. I never seen this error before and I've used newfs before.
> 

you're writing a disklabel from another size image to a flash that is probably 
smaller. try:
dd if=/dev/zero of=/dev/rsd0c bs=1m count=1
fdisk -i sd0
disklabel -E sd0



> On Sat, Jan 30, 2016 at 8:10 PM, Edgar Pettijohn
>  wrote:
> > On 01/30/16 18:15, Monah Baki wrote:
> >>
> >> Hi all,
> >>
> >> Trying to newfs an old 128MB flashcard on my OpenBSD 5.7, so I can
> >> install OpenBSd on it to run on a Soekris.
> >>
> >> # dmesg | grep sd0
> >> sd0 at scsibus5 targ 1 lun 0:  SCSI4
> >> 0/direct removable serial.0bda0309201209010309
> >> sd0: 123MB, 512 bytes/sector, 251904 sectors
> >>
> >> # disklabel sd0
> >> # /dev/rsd0c:
> >> type: SCSI
> >> disk: vnd-a43c9e59
> >> label:
> >> duid: 770fe5cc30020c20
> >> flags:
> >> bytes/sector: 512
> >> sectors/track: 63
> >> tracks/cylinder: 255
> >> sectors/cylinder: 16065
> >> cylinders: 15
> >> total sectors: 251904
> >> boundstart: 0
> >> boundend: 0
> >> drivedata: 0
> >
> >
> > http://marc.info/?l=openbsd-misc&m=105156642420865&w=2
> > The math doesn't add up.
> >
> >> 3 partitions:
> >> #size   offset  fstype [fsize bsize  cpg]
> >>a:   251840   64  4.2BSD   1024  81920
> >>c:   2519040  unused
> >>
> >>
> >> # fdisk sd0
> >> Disk: sd0   geometry: 15/255/63 [251904 Sectors]
> >> Offset: 0   Signature: 0xAA55
> >>  Starting Ending LBA Info:
> >>   #: id  C   H   S -  C   H   S [   start:size ]
> >>
> >> ---
> >>   0: 00  0   0   0 -  0   0   0 [   0:   0 ]
> >> unused
> >>   1: 00  0   0   0 -  0   0   0 [   0:   0 ]
> >> unused
> >>   2: 00  0   0   0 -  0   0   0 [   0:   0 ]
> >> unused
> >> *3: A6  0   1   2 - 14 254  63 [  64:  240911 ]
> >> OpenBSD
> >>
> >>
> >> # newfs -S 512 /dev/rsd0a
> >> /dev/rsd0a: 123.0MB in 251840 sectors of 512 bytes
> >> 4 cylinder groups of 30.74MB, 3935 blocks, 7872 inodes each
> >> newfs: wtfs: write error on block 16: Input/output error
> >
> > Have you tried:
> > #newfs /dev/rsd0a
> >
> > I've done a few flashcards and never had to use anything but the default.
> >
> >
> >>
> >> I tried 3 other 128MB flashcards, and a 32MB too, same results.
> >>
> >> Any help will be highly appreciated, and if you need any additional info
> >> too.
> >>
> >>
> >>
> >> Thanks
> >> Monah

Re: 64 Queue Size, ARC routing, MP Networking, OpenBSD 5.9

[Chris Cappuccio]

Andy Lemin [a...@brandwatch.com] wrote:
> 
> >ART not ARC. It's not enabled by default, you'll need to build
> a new kernel to use it.
> 
> Any clues how to enable "ART" when building? ;)
> 

Put "option ART" in your kernel config, that's it. It seems to work in various
corner cases but won't be enabled by default until after 5.9 because "seems"
isn't good enough at this stage.

Chris

Re: NVM Express (NVMe) support status

[Chris Cappuccio]

Evgeniy Sudyr [eject.in...@gmail.com] wrote:
> Hi all,
> 
> I'm looking status of NVM Express support in -current (got Intel 750
> consumer device
> https://www-ssl.intel.com/content/www/us/en/solid-state-drives/solid-state-drives-750-series.html
> for home desktop, but it looks like all devices are using the same
> Specification).
> 
> I found 2 commits of nvme_pci.c from @dlg there:
> 
> http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys/dev/pci/nvme_pci.c
> 
> But commit message sounds work is abandoned, because of problems faced.
> 

If it was abandoned, it would be in the Attic.

Lack of progress is a matter of time and hardware access to developers.

> It will be great to get this "awesome fast" storage support in next
> OpenBSD release(s).
> 
> Anybody aware of any plans on this?
> 

Feel free to submit a patch improving it.

Re: Kernel panic during installation

[Chris Cappuccio]

Donald Allen [donaldcal...@gmail.com] wrote:
> On Feb 12, 2016 05:08, "Stefan Sperling"  wrote:
> >
> > On Thu, Feb 11, 2016 at 08:42:21PM -0500, Donald Allen wrote:
> > > When attempting to install the 2/8 snapshot on my Thinkpad x-250, I
> chose
> > > to configure the wireless network interface (iwm). This resulted in the
> > > following:
> > >
> > > iwm0: could not read firmware iwm-7265-9 (error 2)
> > > panic: attempt to execute user address 0x0 in supervisor mode
> >
> > Do you have a trace from ddb please?
> 
> There was no entry to ddb. There was one additional message after the above:
> 
> syncing disks... done
> 
> and that was all she wrote. (I took a photo of the screen.)
> 
> If you have a suggestion for how to get the trace, I will certainly try to
> help. Or maybe build a kernel with some additional printfs to try to
> isolate where this is happening?

sysctl ddb.panic=1 ??

Re: fsck_ffs mystic

[Chris Cappuccio]

lilit-aibolit [lilit-aibo...@mail.ru] wrote:
> Thank you. This is definitely the case then.
> I didn't know that fsck could produce fake errors while running on mounted
> fs.

fsck requires exclusive control of the underlying disk partition. When
the partition is mounted, the kernel shares control. fsck + the kernel
is not yet designed to work properly. In the future we might have some
background fsck support for ffs (if someone works on it!!)

Re: Is true that the BSD developers were inspired to make their code free software by the example of the GNU Project, and explicit appeals from GNU activists helped persuade them?

[Chris Cappuccio]

Yes
The great example of Richard Stallman set the University of California Berkeley 
on their righteous way to make AT&T Unix System V free for all!!!

I'm glad this history is finally being discovered and talked about on the 
OpenBSD mailing lists.

It's very important that everyone sees the true greatness of Richard Stallman 
and the GNU project, without which, we would not have GNU Hurd.

Jorge Luis [jorgeluiscorreioeletron...@gmail.com] wrote:
> It is written in article 'Linux and the GNU System' posted in GNU Operating
> System:
> 
> "People sometimes ask whether BSD too is a version of GNU, like GNU/Linux.
> The BSD developers were inspired to make their code free software by the
> example of the GNU Project, and explicit appeals from GNU activists helped
> persuade them, but the code had little overlap with GNU. BSD systems today
> use some GNU programs, just as the GNU system and its variants use some BSD
> programs; however, taken as wholes, they are two different systems that
> evolved separately. The BSD developers did not write a kernel and add it to
> the GNU system, and a name like GNU/BSD would not fit the situation.(5)"
> 
> Is true that the BSD developers were inspired to make their code free
> software by the example of the GNU Project, and explicit appeals from GNU
> activists helped persuade them?
> 
> If no, what is the true story of BSD developers?
> 
> 
> 
> --
> View this message in context: 
> http://openbsd-archive.7691.n7.nabble.com/Is-true-that-the-BSD-developers-were-inspired-to-make-their-code-free-software-by-the-example-of-the-tp289840.html
> Sent from the openbsd user - misc mailing list archive at Nabble.com.

Re: Is true that the BSD developers were inspired to make their code free software by the example of the GNU Project, and explicit appeals from GNU activists helped persuade them?

[Chris Cappuccio]

Karel Gardas [gard...@gmail.com] wrote:
> On Tue, Feb 16, 2016 at 6:26 PM, Chris Cappuccio  wrote:
> >
> > It's very important that everyone sees the true greatness of Richard 
> > Stallman and the GNU project, without which, we would not have GNU Hurd.
> 
> or without which we would not be able to compile our OS? Let's stay
> honest OpenBSD still depends on GNU while using binutils/gcc in the
> tree. Perl probably too I would guess. Don't know if there is more
> GPLed code in the tree...
> 

More popular platforms could be moved to non-GNU tools, such as llvm,
elftoolchain, lld

Perl is not GNU licensed, but the Artistic license is unique enough
that it is kept in /usr/src/gnu

Re: Will Softraid RAID1 read from the fastest mirror/-s / supports user-specified device read priority order, nowadays? Takes broken disk out of use?

[Chris Cappuccio]

li...@wrant.com [li...@wrant.com] wrote:
> 
> Plan for your use case, and consult the man page and respective source
> code on implementation details.  And flash storage disks are still
> unreliable compared to spinning hard drives.

Although I was a long proponent of read-only flash use, I've found the
Samsung 845DC Pro and Samsung SM863 to be very durable in heavy write
environments (heavily written-to monitoring database, mail server).

Re: current status of octeon support

[Chris Cappuccio]

Holger Glaess [gla...@glaessixs.de] wrote:
> hi
> 
> can some tell me what the status is for 5.9 octeon port ?
> 
> is the usb port stable enough to handle an harddisk ?

Yes although there may be more speed optimization possible

Re: current status of octeon support

[Chris Cappuccio]

Holger Glaess [gla...@glaessixs.de] wrote:
> > Holger Glaess [gla...@glaessixs.de] wrote:
> >> hi
> >>
> >> can some tell me what the status is for 5.9 octeon port ?
> >>
> >> is the usb port stable enough to handle an harddisk ?
> >
> > Yes although there may be more speed optimization possible
> >
> >
> hi
> 
> what about the hardware acceleration functions of
> an Edgerouter Lite/POE ?
> 

Nobody is working on that at the moment.

Re: Industrial use of line printers, does/would your company/organization use them with our lpd?

[Chris Cappuccio]

gwes [g...@oat.com] wrote:
> 
> I just created and will submit to ports a version
> of ghostscript which doesn't pull in cups - it
> turns out the configuration has a switch for that case.
> 

aren't there plenty of simple pre-processor scripts that people
are using with lp to turn whatever into some output for simple
dumb printers? CUPS is so annoying and stupid, it's not even
funny

christopher

Re: LibertyBSD, recently forked from OpenBSD, has been deblobbed as much as its creator could see?

[Chris Cappuccio]

Jorge Luis [jorgeluiscorreioeletron...@gmail.com] wrote:
> 
> Is true that in LibertyBSD, you can get all of the benefits of OpenBSD,
> while being sure that there are no non-free blobs lurking in the depths of
> your system?
> 

Yes, in fact the OpenBSD developers are so enthusiastic about this idea, 
many have abandoned OpenBSD development in favor of the LibertyBSD
idea. It's quite astounding!

Re: Xen based VPS / OpenBSD 6.2 / OpenVPN 2.4.4 => Slow download speed after upgrade

[Chris Cappuccio]

You went from emulated Realtek ethernet to xnf. Can you try other network 
interfaces?

Berry Wendermouth [bayb...@riseup.net] wrote:
> Xen based VPS / OpenBSD 6.2 / OpenVPN 2.4.4 => Slow download speed after
> upgrade
> 
> 
> Dear OpenBSD Community,
> 
> we are operating an OpenVPN server on OpenBSD. A few days ago we
> upgraded to OpenBSD 6.2 
> and we are now seeing very slow speeds (<10KB/s) when trying to download
> via
> the VPN tunnel from the internet (WAN). We did not have this problem
> before.
> 
> >From the documented test cases below (Specifically case 2) it does not
> look like it is a VPN performance problem (e.g. mtu/encryption
> performance related).
> We can also exclude bandwidth trottleing by the VPS provider and the
> ISP.
> 
> * Did something essential change in `pf`? [4]
> * Or is the problem related to OpenBSD's Xen drivers?
> 
> Could someone help us track down the bottleneck?
> 
> Any help and hints are very much appreciated.
> 
> Thank you kindly
> 
> Berry
> 
> PS: for a better viewing experience you may compile this email body with
> `asciidoc` 
> 
> == Environment
> 
> === Server
> * OpenBSD 6.2 / amd64 (-release) + syspatch
> * OpenVPN 2.4.4
> * On Virtual Private Server / Xen version "4.9.0" by Xen Project [0]
> * Detected CPU: Intel(R) Xeon(R) CPU E5-2620
> * Detected network device: xnf0
> * Firewall configuration: /etc/pf.conf [1]
> * System Message Buffer [2]
> 
> === Clients
> * OpenBSD 6.2 with OpenVPN 2.4.4
> * GNU/Linux Gentoo with OpenVPN 2.4.4
> * LinesageOS 14.1 with OpenVPN for Android 0.6.73
> 
> == Detailed Problem Description / Test Results
> 
> Please note: the following documented tests used one and the same client
> / network connection:
> 
> * GNU/Linux Gentoo with OpenVPN 2.4.4
> * Connected to router via wifi on internet connection with max 50Mbit/s
> download
> 
> To rule out problems with the client local network settings tests with
> other client setups on other networks were also performed and showed
> identical
> results. For brevity they are not documented here.
> 
> === Case 1: Server <==> WAN (ok)
> * When on the server, downloading a file from WAN 
> * Scenario: downloaded 100MB file from
> http://fra36-speedtest-1.tele2.net/ with curl
> * Average Download Speed: ~ 10Mbit/s 
> * Testresult:
> 
> 
> $ curl http://fra36-speedtest-1.tele2.net/100MB.zip > /dev/null 
> % Total% Received % Xferd  Average Speed   TimeTime Time 
> Current
> Dload  Upload   Total   SpentLeft  Speed
> 100  100M  100  100M0 0  9309k  0  0:00:11  0:00:11 --:--:--
> 10.9M
> 
> 
> === Case 2: Client <= VPN => Server (ok)
> * When on the client, downloading a file from server via VPN tunnel
> * Scenario: standard download test with `iperf`
> * Average Download Speed: ~ 15Mbit/s
> * Testresult:
> 
> 
> # iperf -s  
> 
> 
> ---
> Server listening on TCP port 5001
> TCP window size: 16.0 KByte (default)
> ---
> [  4] local 10.8.0.1 port 5001 connected with 10.8.0.4 port 34998
> [ ID] Interval   Transfer Bandwidth
> [  4]  0.0-10.2 sec  18.5 MBytes  15.2 Mbits/sec
> 
> 
> # iperf -c 10.8.0.1
> ---
> Client connecting to 10.8.0.1, TCP port 5001
> TCP window size: 45.0 KByte (default)
> ---
> [  3] local 10.8.0.4 port 34998 connected with 10.8.0.1 port 5001
> [ ID] Interval   Transfer Bandwidth
> [  3]  0.0-10.0 sec  18.5 MBytes  15.5 Mbits/sec
> 
> 
> === Case 3a: Client <= VPN => Server <==> WAN (broken)
> * When on the client, downloading a file from WAN via VPN tunnel
> * Scenario: downloaded 100MB file from
> http://fra36-speedtest-1.tele2.net/ with curl
> * Average Download Speed: ~ 5KB/s
> * Testresult:
> 
> 
> curl http://fra36-speedtest-1.tele2.net/100MB.zip > /dev/null
> % Total% Received % Xferd  Average Speed   TimeTime Time 
> Current
> Dload  Upload   Total   SpentLeft  Speed
> 0  100M0  149k0 0   5102  0  5:42:32  0:00:30  5:42:02 
> 4933
> 
> 
> === Case 3b: Client <==> WAN (ok)
> * When on the client, downloading a file from WAN directly
> * Scenario: downloaded 100MB file from
> http://fra36-speedtest-1.tele2.net/ with curl
> * Average Download Speed: ~ 1100KB/s
> * Testresult:
> 
> 
> curl http://fra36-speedtest-1.tele2.net/100MB.zip > /dev/null
> % Total% Received % Xferd  Average Speed   TimeTime Time 
> Current
> Dload  Upload   Total   SpentLeft  Speed
> 100  100M  100  100M0 0  1113k  0  0:01:32  0:01:32 --:--:--
> 1196k
> 
> 
> == Previous working system
> Before the upgrade to OpenBSD 6.2 we had a working system with the
> following setup:
> 
> * OpenBSD 6.1 / i386
> * OpenVPN 2.4.1 
> * firewall settings were the same [8]
> 
> The fact that we had installed i386 instead o

Re: Bad network performance on apu2c4

[Chris Cappuccio]

Rupert Gallagher [r...@protonmail.com] wrote:
> Out of curiosity, I just tested an apu2c4 server with obsd 6.1, against a 
> windows 10 client on LAN with a 1Gbit CISCO switch in between and 9K MTU on 
> both sides, using iperf3 -P10. The result is a spectacular 950Mbits/sec.
> 

This is not a regression. The APU2 has limited CPU power and can handle larger 
packets much better than typically internet-routable 1500 byte packets. The 
same traffic level, with 1500 byte packets generates 6 times more packets per 
second than that traffic level with 9000 bytes packets. There is ongoing work 
to improve the network stack performance on boxes like the APU2 (which have 4 
cores). You will see improvements. If you want it better today, you need a 
faster box.

Chris

Re: Cheap 2x NIC OpenBSD device

[Chris Cappuccio]

Sean Murphy [s.pat.mu...@gmail.com] wrote:
> You can install OpenBSD on it.  As noted in the thread by techay Ted
> Unangst has a good write up on the unit on his blog.
> 

A side note, OpenBSD 6.2-current will take better advantage of the multiple 
cores using the cnmac interface (or will soon) on this box than the 6.2 release.

Re: Bad network performance on apu2c4

[Chris Cappuccio]

Rupert Gallagher [r...@protonmail.com] wrote:
> 
> You seem to say that handling larger packets is a feature of having limited 
> CPU. I disagree.
> 

Rupert, I'm saying that a slower CPU can process less packets per second.

The important measurement is packets-per-second. The APU has plenty of
memory bandwidth to handle large volumes of data. For adequate CPU power,
you have to either lower the cost of processing (make software better/more
efficient) or you have to distribute the cost across the 4 cores of the APU2
(make software execution parallel).

> > The same traffic level, with 1500 byte packets generates 6 times more 
> > packets per second than that traffic level with 9000 bytes packets.
> 
> You divided 9000 by 1500 without mistakes. Congratulations.
> 

The point was clearly lost on you.

> > There is ongoing work to improve the network stack performance on boxes 
> > like the APU2 (which have 4 cores). You will see improvements. If you want 
> > it better today, you need a faster box. Chris
> 
> The apu2c4 is fast enough to saturate its Intel 1Gbits/sec link. It has three 
> of those. If you connect all three to the switch, you get 3Gbps shy. No need 
> for a faster box. You rather need a faster switch, class 7 S-FTP wires 
> (better than class 6), and 2.5Gbps lan cards for clients.

No, you don't need any of that. You have no idea what you are talking about.

The APU requires software crafted to evenly distribute PER-PACKET PROCESSING
cost across multiple cores. That is what is happening in OpenBSD today. It has
been happening for years, and it is getting closer to becoming a reality with
OpenBSD + APU2, as well as other chipsets/platforms. 

For a couple years now, we've had interrupts processed by one core, PF on
another, and other parts of the kernel on a third core. But to accelerate
packet processing alone, we need interrupts handled on multiple cores,
PF processing handled on multiple cores. This is hard work.

By the way, what I'm describing is the general-purpose OS approach towads
this problem. If you want to turn computer hardware into routers with little
other concern, the go-to platform is DPDK + VPP. It is something like an
order of magnitude faster than any general purpose OS (OpenBSD, Linux) at
packet pushing.

https://www.reddit.com/r/networking/comments/6upchy/can_a_bsd_system_replicate_the_performance_of/dlvdq2e/

Chris

Re: Bad network performance on apu2c4

[Chris Cappuccio]

Rupert Gallagher [r...@protonmail.com] wrote:
> Look, I know what I am talking about. I have an apu that does what I said 
> using negligible cpu load. And there is nothing fancy with it.

I see. Sorry, until you said this, I was not convinced that you knew. Having
read these words, it's now apparent to me that you are an expert in this area
and I was terribly wrong to try and correct you.

Chris

Re: tor inside vmm, horribly slow?!

[Chris Cappuccio]

Revert uipc_socket.c rev 1.90. Does tor work properly again?

Thomas Weinbrenner [m...@tweinbrenner.net] wrote:
> 
> 
> > Am 12.02.2018 um 00:38 schrieb Jiri B :
> > 
> > Hi,
> > 
> > has anybody tried to run tor inside vmm guest?
> > 
> > it's horrible slow, just doing 'tor-resolve $dnsname' takes
> > sometimes ages.
> 
> Perhaps this has nothing to do with vmm.
> 
> I am not a computer expert, just a normal user (so please don't ask me
> to difficult questions), but I run tor on my computer at home (so it's
> real hardware and no vmm).
> 
> Since upgrading OpenBSD from
> 
> | OpenBSD 6.2-current (GENERIC.MP) #399: Fri Feb  2 18:28:58 MST 2018
> |dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
> 
> to
> 
> | OpenBSD 6.2-current (GENERIC.MP) #4: Sat Feb 10 18:04:19 MST 2018
> |dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
> 
> my tor server also has problems.
> 
> 
> /var/log/daemon:
> | Feb 11 20:15:50 server Tor[54286]: Your system clock just jumped 115 
> seconds forward; assuming established circuits no longer work.
> | Feb 11 20:16:02 server Tor[54286]: Tor has successfully opened a circuit. 
> Looks like client functionality is working.
> | Feb 11 20:16:02 server Tor[54286]: Tor has successfully opened a circuit. 
> Looks like client functionality is working.
> | Feb 11 20:24:43 server Tor[54286]: Your system clock just jumped 299 
> seconds forward; assuming established circuits no longer work.
> | Feb 11 20:26:24 server Tor[54286]: tor_assertion_failed_: Bug: 
> src/or/channel.c:1503: channel_closed: Assertion CHANNEL_CONDEMNED(chan) 
> failed; aborting. (on Tor 0.3.2.9 9e8b762fcecfece6)
> | Feb 11 20:26:24 server Tor[54286]: Bug: Assertion CHANNEL_CONDEMNED(chan) 
> failed in channel_closed at src/or/channel.c:1503. (Stack trace not 
> available) (on Tor 0.3.2.9 9e8b762fcecfece6)
> 
> dmesg:
> 
> OpenBSD 6.2-current (GENERIC.MP) #4: Sat Feb 10 18:04:19 MST 2018
> dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
> real mem = 8351621120 (7964MB)
> avail mem = 8091496448 (7716MB)
> enter_shared_special_pages: entered idt page va 0x8001 pa 
> 0x1d5c000
> enter_shared_special_pages: entered kutext page va 0x81833000 pa 
> 0x1833000
> enter_shared_special_pages: entered kutext page va 0x81834000 pa 
> 0x1834000
> enter_shared_special_pages: entered kutext page va 0x81835000 pa 
> 0x1835000
> enter_shared_special_pages: entered kudata page va 0x81acb000 pa 
> 0x1acb000
> cpu_enter_pages: entered tss+gdt page at va 0x81aa2000 pa 0x1aa2000
> cpu_enter_pages: entered t.stack page at va 0x81aa3000 pa 0x1aa3000
> cpu_enter_pages: cif_tss.tss_rsp0 = 0x81aa33e0
> mpath0 at root
> scsibus0 at mpath0: 256 targets
> mainbus0 at root
> bios0 at mainbus0: SMBIOS rev. 2.8 @ 0xedc10 (87 entries)
> bios0: vendor LENOVO version "FBKTCQAUS" date 12/16/2017
> bios0: LENOVO ThinkServer TS140
> acpi0 at bios0: rev 2
> acpi0: sleep states S0 S5
> acpi0: tables DSDT FACP APIC FPDT FIDT TCPA DBGP LUFT SSDT SSDT MCFG
> HPET SSDT SSDT ASF! DMAR EINJ ERST HEST BERT BGRT
> acpi0: wakeup devices UAR1(S0) PXSX(S0) RP01(S0) PXSX(S0) PXSX(S0)
> PXSX(S0) RP04(S0) PXSX(S0) PXSX(S0) PXSX(S0) PXSX(S0) GLAN(S0)
> EHC1(S0) EHC2(S0) XHC_(S0) HDEF(S0) [...]
> acpitimer0 at acpi0: 3579545 Hz, 24 bits
> acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
> lapic_map: entered lapic page va 0x81aa6000 pa 0xfee0
> cpu0 at mainbus0: apid 0 (boot processor)
> cpu0: Intel(R) Xeon(R) CPU E3-1226 v3 @ 3.30GHz, 3492.47 MHz
> cpu0:
> FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,RDTSCP,LONG,LAHF,ABM,PERF,ITSC,FSGSBASE,BMI1,AVX2,SMEP,BMI2,ERMS,INVPCID,IBRS,IBPB,STIBP,SENSOR,ARAT,MELTDOWN
> cpu0: 256KB 64b/line 8-way L2 cache
> acpitimer0: recalibrated TSC frequency 3292379149 Hz
> cpu0: smt 0, core 0, package 0
> mtrr: Pentium Pro MTRR support, 10 var ranges, 88 fixed ranges
> cpu0: apic clock running at 99MHz
> cpu0: mwait min=64, max=64, C-substates=0.2.1.2.4, IBE
> cpu1 at mainbus0cpu_enter_pages: entered tss+gdt page at va
> 0x80002200 pa 0x10f184000
> cpu_enter_pages: entered t.stack page at va 0x800022001000 pa 0x10f185000
> cpu_enter_pages: cif_tss.tss_rsp0 = 0x8000220013e0
> : apid 2 (application processor)
> cpu1: Intel(R) Xeon(R) CPU E3-1226 v3 @ 3.30GHz, 3491.92 MHz
> cpu1:
> FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,RDTSCP,LONG,LAHF,ABM,PERF,ITSC,FSGSBASE,BMI1,AVX2,SMEP,BMI2,ERMS,INVPCID,IBRS,IBPB,STIBP,SEN

Re: tor inside vmm, horribly slow?!

[Chris Cappuccio]

Oops, actually uipc_socket2.c

Re: Meltdown workaround enabled?

[Chris Cappuccio]

Mike Larkin [mlar...@azathoth.net] wrote:
> 
> I'm not sure whether or not I believe what your machine is reporting, I was
> under the assumption that new hardware was needed to fix this. Shrug.
> 

There is a public PoC for meltdown and spectre on OpenBSD:

https://github.com/genua/meltdown

Here's what it looks like with the current meltdown work-around:

danka# ./meltdown -qv
CPU has RDTSCP
CPU has TSX
Access time: memory 401, cache 121 -> threshold 261
Using addr 0x818e4f30 for symbol '_version'.
?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ??
matched 0% (0 of 10 bytes)
System is not vulnerable to meltdown
53 70 65 63 69 ?? 6c 20 45 78 Speci?l Ex
matched 90% (9 of 10 bytes)
System is vulnerable to spectre

here's a 6.1 system with no patches:

meltdown# ./meltdown -qv
WARNING: CPU has no RDTSCP support!
CPU has no TSX support!
Access time: memory 347, cache 98 -> threshold 222
Using addr 0x816bc1a0 for symbol '_version'.
4f 70 65 6e 42 53 44 20 36 2e OpenBSD 6.
matched 100% (10 of 10 bytes)
System is vulnerable to meltdown
53 70 65 63 69 61 6c 20 45 78 Special Ex
matched 100% (10 of 10 bytes)
Segmentation fault (core dumped) 

Re: sd0-n vs wd0-n

[Chris Cappuccio]

Amelia A Lewis [amyz...@talsever.com] wrote:
> 
> Can anyone suggest why a machine, with no activity but ssh logins and 
> then a syspatch of patches 2-3 on 6.8 would spontaneously start 
> considering the SATA disks in the machine (which were previously loaded 
> as sd0-sd2) as IDE (wd0-wd2)? This seems to have happened (it's the 
> lasting "scar" from my machine borkage, I guess). Seems a bit weird, 
> though.
> 

Perhaps the CMOS battery failed and the BIOS reverted to a default setting.

Re: [SPAM] Re: APU4 hardware network interfaces tied together

[Chris Cappuccio]

Stuart Henderson [s...@spacehopper.org] wrote:
> 
> Do you have evidence to back this up? People were saying the same about
> PCEngines not being reliable compared to Soekris too. It all seems nonsense.
> Old rpi 1 and 2 machines are still running fine doing the job they were
> intended to do. I'm not claiming there's anything amazing about them but
> if they're capable of doing the job in the first place I don't see any
> real concern about hardware reliability.
> 

After some 100 APU units, both the realtek and intel based ethernet chip
versions, the only failure I've had is when one of the RTC batteries blew
up all over the board. And I've used the GPIO extensively. The boards are
very reliable in my experience. The Soekris reputation went south when
they used a buggy intel chip, which is really a problem with Intel and
not Soekris, but unfortunately that probably helped to end Soekris.

Re: -current amd64 packages not updated? Impatient or broken?

[Chris Cappuccio]

Mihai Popescu [mih...@gmail.com] wrote:
> I was in the same situation, impatient to have a 2021 snapshot.
> 
> Warning: I am not sure you will not finish with a Frankenstein system. I am
> not so good with compiler-linker stuff.

For those trying to use the latest snap and the latest ports, try link
libc++.so.4.0 to libc++.so.5.0 and libc++abi.so.2.1 to libc++abi.so.3.0
for now. Frankenstein, indeed. You'll feel dirty just doing it.

Re: home printer

[Chris Cappuccio]

Marcus MERIGHI [mcmer-open...@tor.at] wrote:
> 
> I've been told, by a local xerox technician, to never print any ransom
> demand letter with a modern printer because any printout could be
> attributed to the serial number of the printer.
> 

I always email my ransom demand letters so that I can avoid the printer
ratting me out to the FBI.

Re: 6.9-BETA Installer crash

[Chris Cappuccio]

Chris Zakelj [c.zak...@ieee.org] wrote:
> Thought I'd try using the Dell and ARC-1200 combination with 6.9-BETA I
> mentioned a couple months ago
> (https://marc.info/?l=openbsd-misc&m=158259981320518), but still no luck.
> Dmesg of both 6.9-BETA and verbose FreeBSD 12.1-RELEASE attached in case
> they might be useful. I've also gone backwards to 5.8-RELEASE on the off
> chance I could zero in on a change that broke things, but no luck there,
> either.

Can you please try booting different versions until you find one that works?

You said OpenBSD 5.8 does not boot either? Did you mean 6.8? And,
can you try OpenBSD 5.4 and 5.5 ?

Re: 6.9-BETA Installer crash

[Chris Cappuccio]

Chris Zakelj [c.zak...@ieee.org] wrote:
> 
> Thanks!  Now for a mixed-bag result. 5.6 and 5.5 both panic. 5.4 boots
> (dmesg attached), but doesn't actually see the 1TB array (installer says
> "Available disks are: none."  I did get this curiosity after I escaped the
> install shell and rebooted:
> 

Looks like we have a problem with arc_marvell cards. I had one working
but there may be different firmware, etc.

Areca sent a newer patch to openbsd-tech in the last year or so which you 
should try:

From: ching Huang 
Subject: [PATCH: sys/dev/pci/arc.c] update Areca Raid adapter driver arc.c for 
support ARC-1203, ARC-1884

It's not clear if this changes the behavior on your card significantly.

Chris

Re: 6.9-BETA Installer crash

[Chris Cappuccio]

Chris Cappuccio [ch...@nmedia.net] wrote:
> Chris Zakelj [c.zak...@ieee.org] wrote:
> > 
> > Thanks!  Now for a mixed-bag result. 5.6 and 5.5 both panic. 5.4 boots
> > (dmesg attached), but doesn't actually see the 1TB array (installer says
> > "Available disks are: none."  I did get this curiosity after I escaped the
> > install shell and rebooted:
> > 
> 
> Looks like we have a problem with arc_marvell cards. I had one working
> but there may be different firmware, etc.
> 
> Areca sent a newer patch to openbsd-tech in the last year or so which you 
> should try:
> 
> From: ching Huang 
> Subject: [PATCH: sys/dev/pci/arc.c] update Areca Raid adapter driver arc.c 
> for support ARC-1203, ARC-1884
> 
> It's not clear if this changes the behavior on your card significantly.
> 

Oh and here is where he supports the ARC 1200 rev B:

http://openbsd-archive.7691.n7.nabble.com/PATCH-sys-dev-pci-arc-c-update-Areca-Raid-adapter-driver-arc-c-for-support-ARC-1203-ARC-1884-td394610.html

It looks like the newer patch on openbsd-tech includes this plus newer. 

Chris

Re: 4k sector disk on APU2 problems

[Chris Cappuccio]

Raimo Niskanen [raimo+open...@erix.ericsson.se] wrote:
> 
> Much fumbling later it seems that when the disk is connected to the
> internal mSATA slot it is seen as a 512 bytes per sector disk.  I do not
> know what the BIOS thinks of it (factory SeaBIOS 1.10.something).  When I
> re-installed with the disk in the mSATA slot I got a bootable installation.
> Both fdisk and disklabel now says the disk has got 512 bytes per sector.
> (fdisk says nothing but for a 4k disk it should say it is a 4k disk)
> 

You have to install and boot as 4k or install and boot as 512. You can't
mix. Perhaps try and upgrade the bios to see if it changes, but ultimately,
you have to install and boot with the same setting.

Re: Cultural underground legende Seymour Cray and his legacy

[Chris Cappuccio]

Balder Oddson [ola...@gmail.com] wrote:
> On Thu, Apr 22, 2021 at 10:24:32AM +0200, Marc Espie wrote:
> > Is this a new UMF experiment ?
> 
> Does it involve integrating this on a chip? Not sure if past successes
> are that great.
> 

Your postings are the result of recent secret MKULTRA experiments.

Re: poor ethernet network performance

[Chris Cappuccio]

Keegan Saunders [kee...@undefinedbehaviour.org] wrote:
> I'm noticing that my OpenBSD desktop with a Realtek 8168 ethernet controller
> (re(4) driver) is experiencing slow network speeds on OpenBSD 6.9 (not
> recent, has been an issue before)
> 

Why not include a dmesg? How do you expect anyone to troubleshoot this problem 
with zero data?

Re: iwm0: fatal firmware error

[Chris Cappuccio]

Marco Scholz [t...@disroot.org] wrote:
> Hello.
> My laptop (Lenovo Thinkpad T495s AMD Ryzen) reports an iwm0 fatal
> firmware error. I'm running 6.9 #29.
> System gets quite hot, systat shows 40-50% interrupt while idling.
> Networking works fine.
> 
> Anybody else has this issue?
> 
> Regards, Marco.
> 
> ehci0 at pci3 dev 0 function 4 "Realtek RealManage USB" rev 0x0e: apic
> 33 int 15
> ehci0: pre-2.0 USB rev

It probably won't help your actual problem, but for EHCI support,
you'll need this patch I still have hanging around in my tree.

Index: ehci_pci.c
===
RCS file: /cvs/src/sys/dev/pci/ehci_pci.c,v
retrieving revision 1.31
diff -u -p -u -r1.31 ehci_pci.c
--- ehci_pci.c  2 May 2019 20:28:46 -   1.31
+++ ehci_pci.c  28 May 2021 22:03:49 -
@@ -186,9 +186,14 @@ ehci_pci_attach(struct device *parent, s
case PCI_USBREV_PRE_1_0:
case PCI_USBREV_1_0:
case PCI_USBREV_1_1:
-   sc->sc.sc_bus.usbrev = USBREV_UNKNOWN;
-   printf("%s: pre-2.0 USB rev\n", devname);
-   goto disestablish_ret;
+   /*
+* NOTE: some EHCI USB controllers have the wrong USB
+* revision number. It appears those controllers are
+* fully compliant so we just ignore this value.
+*/
+   printf("%s: pre-2.0 USB rev (ignored)\n", devname);
+   /* FALLTHROUGH */
case PCI_USBREV_2_0:
sc->sc.sc_bus.usbrev = USBREV_2_0;
break;

Re: pflow on PE router

[Chris Cappuccio]

Denis Fondras [open...@ledeuns.net] wrote:
> Hello,
> 
> I used OpenBSD as a PE router on my network. The router is connected to an 
> IX, a
> transit and multiple peers with OpenBGPd.
> 
> Earlier this week, I enabled pflow(4) to track traffic usage.
> Unfortunately enabling pf(4) on a edge router does not seems like a good idea.
> Some peers called in to tell they notice multiple problems (ranging from what
> seems MTU problem to cut in lengthy TCP sessions), deactivating pf(4)
> instantaneously fixed the problem on their side, reactivating pf($) and the
> problems are back.
> 
> I tried to push up the state table (I reached 300k states), to no avail.
> 
> Do you know what are the "right settings" to have pflow(4) enabled on PE 
> router
> ?

Pflow requires pf to be enabled to create states otherwise there is nothing to
export. You could use a different flow generator tool (there is at least one
in ports) that will watch the traffic over bpf and generate flow data.

You might try "set state-defaults pflow, sloppy", also in some scenarios you 
might need "set state-policy floating"

If "sloppy" fixes it, there may be some bugs to hunt.

Re: pflow on PE router

[Chris Cappuccio]

Denis Fondras [open...@ledeuns.net] wrote:
> 
> "sloppy" seems to fix the issue. I will do more tests this week before 
> declaring
> victory :)
> 

If that really works, then there could be a problem with PF sequence number 
tracking. Can you develop a specific sequence of events to reproduce the 
failures?

Re: pflow on PE router

[Chris Cappuccio]

Stuart Henderson [s...@spacehopper.org] wrote:
> 
> Oh watch out with sloppy. Keep an eye on your state table size.

Really? Wouldn't sloppy keep the state table smaller if anything since it's 
tracking less specifically?

Anyways I use sloppy across four boxes that run in parallel with pfsync. There 
could easily be 10,000 devices behind it at any given time. I keep my state 
table limit at 1,000,000. It's around 300,000 during this lighter traffic 
period today. I had to do sloppy after moving to several boxes in parallel, I 
didn't notice sloppy making any significant difference?

Chris