lvdd | 29 May 13:31 2016
Picon

browser trouble with latest snapshot

Hi,

I am having trouble with chromium, firefox and otter-browser since the
upgrade to the latest amd64 snapshot (28th).

Chromium shows me an "Aw Snap" right from the start and for everything
(even the settings page) so it is currently completely unusable. This
also happens with a new user and fresh profile. The console shows the
following messages:

chromium-50.0.2661.102 (installed)

$chrome                                                                                              
[66535:432215264:0529/130552:ERROR:process_posix.cc(195)] Not
implemented reached in bool (anonymous
namespace)::WaitForExitWithTimeoutImpl(base::ProcessHandle, int *,
base::TimeDelta)
[66535:1613461560:0529/130552:ERROR:linux_util.cc(122)] Not implemented
reached in std::string base::GetLinuxDistro()
Received signal 11 SEGV_MAPERR 000000000010
[end of stack trace]
[66535:-65538504:0529/130552:ERROR:process_posix.cc(195)] Not
implemented reached in bool (anonymous
namespace)::WaitForExitWithTimeoutImpl(base::ProcessHandle, int *,
base::TimeDelta)
[66535:-65538504:0529/130601:ERROR:network_interfaces_posix.cc(63)] Not
implemented reached in bool net::GetNetworkList(NetworkInterfaceList *,
int)

Firefox starts up and is usable but crashes hard and leaves a
(Continue reading)

ares | 28 May 21:13 2016
Picon

hidden services stopped working

After a snapshot update on the 26th for amd64 I have lost the ability to
connect to hidden services. I have pf rules to transparently proxy all
connections taken from the wiki  <at>  https://trac.torproject.org/projects/
tor/wiki/doc/TransparentProxy#BSDPF. With the exception of using
divert-to rules istead of the rdr-to rules everything else is exactly
the same. It all worked fine up to the recent update. After a few days
and a few snapshot versions I can't seem to troubleshoot what's changed
or where it's failing. No errors or blocks in syslog or pflog repectively.
Clearnet works fine and is all routed through tor and using tor-resolve
on hidden services resolves the address just fine but trying to connect
through irc or web browser to hidden services fails after timeout. Any
help would be greatly appreciated. Attached a ktrace of lynx trying to
connect to the duckduckgo hidden service. Thanks in advance guys!
P.S. Triple checked pf rules and entire tor config, system time, and
virtual address allocation
 69410 ktrace   RET   ktrace 0
 69410 ktrace   CALL  execve(0x7f7ffffc32a0,0x7f7ffffc3820,0x7f7ffffc3840)
 69410 ktrace   NAMI  "/home/amnesia/bin/lynx"
 69410 ktrace   RET   execve -1 errno 2 No such file or directory
 69410 ktrace   CALL  execve(0x7f7ffffc32a0,0x7f7ffffc3820,0x7f7ffffc3840)
 69410 ktrace   NAMI  "/bin/lynx"
 69410 ktrace   RET   execve -1 errno 2 No such file or directory
 69410 ktrace   CALL  execve(0x7f7ffffc32a0,0x7f7ffffc3820,0x7f7ffffc3840)
 69410 ktrace   NAMI  "/sbin/lynx"
 69410 ktrace   RET   execve -1 errno 2 No such file or directory
 69410 ktrace   CALL  execve(0x7f7ffffc32a0,0x7f7ffffc3820,0x7f7ffffc3840)
 69410 ktrace   NAMI  "/usr/bin/lynx"
 69410 ktrace   RET   execve -1 errno 2 No such file or directory
 69410 ktrace   CALL  execve(0x7f7ffffc32a0,0x7f7ffffc3820,0x7f7ffffc3840)
 69410 ktrace   NAMI  "/usr/sbin/lynx"
(Continue reading)

frantisek holop | 28 May 22:06 2016

"Cleared:" in pfctl interface statistics

what is the purpose of the Cleared line of the
interface statistics?  if i read pfctl(8) correctly,
only tables can have their statistics cleared/zeroed
(the table command is "zero", and not "clear", perhaps
because the latter could evoke "removing all elements
of the table", although in other parts of the manpage
"flush" is used for this kind of operation)

# pfctl -vvsI -i re0
re0
        Cleared:     Thu Jan  1 01:00:01 1970
        References:  [ States:  0                  Rules: 1                  ]
        In4/Pass:    [ Packets: 59988900           Bytes: 74459951479        ]
        In4/Block:   [ Packets: 13991              Bytes: 1645774            ]
        Out4/Pass:   [ Packets: 39058098           Bytes: 5850353660         ]
        Out4/Block:  [ Packets: 3167               Bytes: 467994             ]
        In6/Pass:    [ Packets: 18                 Bytes: 1152               ]
        In6/Block:   [ Packets: 0                  Bytes: 0                  ]
        Out6/Pass:   [ Packets: 0                  Bytes: 0                  ]
        Out6/Block:  [ Packets: 0                  Bytes: 0                  ]
# pfctl -F info
pf: statistics cleared
# pfctl -vvsI -i re0
re0
        Cleared:     Thu Jan  1 01:00:01 1970
        References:  [ States:  0                  Rules: 1                  ]
        In4/Pass:    [ Packets: 60374772           Bytes: 74945788280        ]
        In4/Block:   [ Packets: 14028              Bytes: 1647622            ]
        Out4/Pass:   [ Packets: 39392791           Bytes: 6029106115         ]
        Out4/Block:  [ Packets: 3185               Bytes: 468786             ]
(Continue reading)

Robert Campbell | 28 May 18:15 2016
Gravatar

CRYPTO volume created, but appears as full

I followed the steps in the FAQ for setting up full disk encryption.
Everything goes according to plan until I attempt to write zeros to the
first megabyte of the new pseudo-device; as you can see below, dd informs
me that the file system is full, that there is no space left on the device.
Interestingly, the last line of dmesg is also "uid 0 on /: file system
full". I've retried this with 5.9 and -current, but the outcome is the
same. I've also tried rebooting after disklabel and bioctl. I have pasted
below the relevant sequence, followed by the full dmesg.

# dd if=/dev/random of=/dev/rsd0c bs=1m
dd: /dev/rsd0c: short write on character device
dd: /dev/rsd0c: end of device
114474+0 records in
114473+1 records out
120034123776 bytes transferred in 3217.122 secs (37311023 bytes/sec)
# fdisk -iy sd0
Writing MBR at offset 0.
# disklabel -E sd0
Label editor (enter '?' for help at any prompt)
> a a
offset: [64]
size: [234436481] *
FS type: [4.2BSD] RAID
> w
> q
No label changes.
# bioctl -c C -l sd0a softraid0
New passphrase:
Re-type passphrase:
sd3 at scsibus3 targ 1 lun 0: <OPENBSD, SR CRYPTO, 006> SCSI2 0/direct fixed
(Continue reading)

Teng Zhang | 28 May 14:24 2016
Picon

the balance between OpenBSD and life

I can't adjust  the time for OpenBSD and my life appropriately. Could you
please share your experience with me about how you adjust your time between
OpenBSD and your life.
thanks for any reply.

Scott Vanderbilt | 27 May 20:04 2016

JDK and W^X violation

Hello.

I just upgraded an amd64 host from one snapshot (~20 April) to the 
latest (26 May).

Upon rebooting, a rapid succession of the following error messages start 
to appear:

    /bsd: java(81240): mprotect W^X violation

This is even after updating to the latest snapshot build of the JDK port 
(jdk-1.8.0.72v0).

The only Java app running on this host is an older version of 
apache-solr, v 4.8.1, I believe. Would upgrading solr to a more recent 
version clear this up?

Many thanks in advance.

OpenBSD 6.0-beta (GENERIC.MP) #2128: Thu May 26 23:46:33 MDT 2016
     deraadt <at> amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
real mem = 1020133376 (972MB)
avail mem = 984678400 (939MB)
mpath0 at root
scsibus0 at mpath0: 256 targets
mainbus0 at root
bios0 at mainbus0: SMBIOS rev. 2.4  <at>  0xf0100 (38 entries)
bios0: vendor Award Software International, Inc. version "F3" date 
04/09/2009
bios0: Gigabyte Technology Co., Ltd. G41M-ES2L
(Continue reading)

Martin Oppegaard | 27 May 18:09 2016
Picon

Suspend / hibernate does not work

Hi,

I can't get suspend or hibernate to work with this computer.  It has
encrypted root hdd and apmd is running (-A).  When I suspend the screen
goes into standby and the power LED starts blinking, but nothing spins
down (same amount of power is drawn from the UPS), and it will not
resume.  In this state if I press the restart button the CPU fan calms
down and less power is drawn from the UPS, but I have to hold the power
button to shut it down.

With hibernate, it restarts immediately.

Any tips?

Regards,

Martin Oppegaard

OpenBSD 5.9 (GENERIC.MP) #4: Thu May 19 08:22:39 CEST 2016
    jasper <at> stable-59-amd64.mtier.org:/binpatchng/work-binpatch59-amd64/src/sys/arch/amd64/compile/GENERIC.MP
real mem = 6416760832 (6119MB)
avail mem = 6218088448 (5930MB)
mpath0 at root
scsibus0 at mpath0: 256 targets
mainbus0 at root
bios0 at mainbus0: SMBIOS rev. 2.5  <at>  0xf0700 (81 entries)
bios0: vendor American Megatrends Inc. version "1202" date 12/22/2010
bios0: ASUSTeK Computer INC. P6T DELUXE V2
acpi0 at bios0: rev 0
acpi0: sleep states S0 S1 S3 S4 S5
(Continue reading)

Andy Lemin | 27 May 17:08 2016

5.9 is the best release yet, very excited for 6.0 - but worried some things will be missing that will ruin the fanfare

Not to say previous releases haven't been as great (they all are), but I
must say that 5.9 really does feel like a huge step towards a massive
milestone (well done), and 6.0 will hopefully be the release that kills the
GIANT lock for OpenBSD as a firewall. So really thank you..

For ourselves, the biggest anticlimax for OpenBSD 6.0 would be, still no
64bit support for the Queue size.. :(
OpenBSD can shift traffic at well above 4.2Gbps now, so it's such a shame
to be superficially limited to 4Gbps still :(

And a small, but "nice to have" would be; Bandwidth defined as percentages
of the parent queue.

Just wishing, nothing else ;)

Humbly yours, Andy.

Joe Nosay | 27 May 16:45 2016
Picon

Re: contributing to open source

You are human and I appreciate that. I had to see it.
My apologies, I mean you no disrespect.
I appreciate that you only quoted what was necessary.
Again, my apologies, Warren, you are considerate of others.

We do need some code of conduct on both sides here. I'm willing to talk
things through.
I'll accept my "banishment" for the mean time.
It should be that the other party involved also have to pay "restitution
and fees" for this debacle.
I need some software built on PowerPC 32 bit. Perhaps one could convince
Tyler and a few others to make the packages.
I would consider that an apology for his foolishness.
I also need ardour, mixx, ffmpeg, lamemp3, sox, OSS, and a few others built
for sound on PowerPC/POWER 32/64.

They only have experience on the AMD64/i386 architectures. A few more POWER
and ARM hackers could be used and would be appreciated.
Finding the audience for the hardware/software combination is much easier
than you think. I'll give you a working example.

You'll need an omnidirectional microphone and four unidirectional
microphones set up together. The design is to have a central/unified part
and the standard four channel - left bass, left treble, right bass, right
treble - input for stereo. Attach the microphone to an ARM device running
Audacity on Debian or NetBSD for input and have an - or two if possible -
XFi card attached to record the raw sound.
Next, you would play the sound through a card on a PowerPC 64 and 32 setup
with Ardour. There would be a card and the OS would be FreeBSD. The kernel
hertz would need to be about 5000 for a dedicated sound system. Quick
(Continue reading)

Andy Lemin | 27 May 16:21 2016

Possible SNMPD Bug - IF-MIB::ifInDiscards (and maybe ifOutDiscards) report the same value for every single interface :(

Hi list :)

We have noticed our monitoring systems are reporting and alerting the wrong
data for OpenBSD Interface Discards since adding all the OpenBSD firewalls
to our new Monitoring system.

And we have proven that it is SNMPD which is returning the same value for
every single interface with;

root <at> intermap:/opt/observium# snmpwalk -v2c -c <community> 10.10.4.3
IF-MIB::ifInDiscards
IF-MIB::ifInDiscards.1 = Counter32: 10837445
IF-MIB::ifInDiscards.2 = Counter32: 10837445
IF-MIB::ifInDiscards.3 = Counter32: 10837445
IF-MIB::ifInDiscards.4 = Counter32: 10837468
IF-MIB::ifInDiscards.5 = Counter32: 10837468
IF-MIB::ifInDiscards.6 = Counter32: 10837468
IF-MIB::ifInDiscards.7 = Counter32: 10837468
IF-MIB::ifInDiscards.8 = Counter32: 10837468
IF-MIB::ifInDiscards.9 = Counter32: 10837468
IF-MIB::ifInDiscards.10 = Counter32: 10837468
IF-MIB::ifInDiscards.11 = Counter32: 10837468
IF-MIB::ifInDiscards.12 = Counter32: 10837468
IF-MIB::ifInDiscards.13 = Counter32: 10837468
IF-MIB::ifInDiscards.14 = Counter32: 10837468
IF-MIB::ifInDiscards.15 = Counter32: 10837468
IF-MIB::ifInDiscards.16 = Counter32: 10837468
IF-MIB::ifInDiscards.17 = Counter32: 10837468
IF-MIB::ifInDiscards.18 = Counter32: 10837468
IF-MIB::ifInDiscards.19 = Counter32: 10837468
(Continue reading)

Luke Small | 27 May 08:10 2016
Picon

pledge and code profiling

Pledge does something odd, that I don't understand by reading the man page.
It trips the system-call: SYS_PROFIL (44) when it ends its run in
codeblocks IDE when profiling is enabled. Can I enable a pledge setting
that enables this to complete? Is there a security reason that pledge is
disabling profiling?


Gmane