00:17:28 I'm installing nginx and rtmp server i do make config for and select rtmp module, when I start nginx (Cannot open "/usr/local/libexec/nginx/ngx_rtmp_module.so) I look in the directory and its not there, any idea? 00:24:54 Package or port? 00:27:40 Looks like compilied|installed the port per "make config" 00:29:58 sn00p, Check the build log of "nginx" if some error about "rtmp" was printed 00:32:22 has protonvpn-cli been removed from the ports? 00:33:01 removed in june: https://cgit.freebsd.org/ports/commit/?id=2fb224a12bba79baeabc41519ab19ab876baec32 00:33:02 Title: ports - FreeBSD ports tree 00:33:06 "REASON: Has expired: This version is deprecated and unsupported upstream. The port needs an update, which would require a fair amount of effort. Use OpenVPN or Wireguard with configuration files provided by ProtonVPN instead." 00:35:02 I see 00:35:57 koobs: I have openvpn configs extracted from another provider but cant seem to connect to them using openvpn --config vpnfile.ovpn 00:55:19 can anyone help with connecting to openvpn as client? 00:55:37 I've tried everything in the past several days 00:57:13 woland: May want to try #OpenVPn first, unless its isolated to be a ports/package/freebsd issue 00:57:30 You'll want to pastebin your configuration (sanitized) and connecitons logs 00:58:37 any specific cmds outputs that I must pipe to a pastebin before hand? 00:58:52 I'll try openvpn irc too 01:01:17 woland, You can send text data to termbin.com via "nc": nc termbin.com 9999 /file ; or, sh ; command 2>&1 | nc termbin.com 9999 -- after sending to termbin, you would see an URL printed 01:02:30 woland, Sorry make the nc-file command to be: nc termbin.com 9999 < /file 01:03:52 parv: can I use ix.io ? 01:05:04 woland, I don't know what ix is, does, or behaves. If you or anyone else prefers, don't let me hold you back 01:06:07 parv: thanks for the tip. I'll try my luck in #openvpn 01:06:20 this is giving me such pain tbh 01:08:12 woland: try wireguard or others? (tinc, govpn, tailscale, etc) 01:09:38 koobs: I'll look into it right now 01:16:26 is the networkmgr the same as networkmanager on linux? 01:16:33 link? 01:17:19 https://www.freshports.org/net-mgmt/networkmgr/ 01:17:20 Title: FreshPorts -- net-mgmt/networkmgr: FreeBSD/GhostBSD network connection manager 01:17:34 Sounce is: WWW: https://github.com/GhostBSD/networkmgr 01:17:35 Title: GitHub - ghostbsd/networkmgr: NetworkMgr is a Python GTK3 network manager for FreeBSD, GhostBSD, TrueOS and DragonFlyBSD 01:17:43 "NetworkMgr is an open source, Network Manager based on the look of the Linux 01:17:45 Network Manager user interface. " 01:18:54 hmm should be close enough then underhood 01:19:25 completely different underhood (it has to be, linux/freebsd network commands different) 01:19:33 but "based on the look" of the linux networkmgr 01:19:39 so UI wise, probably similar 01:20:32 as much as I hate randomly installing pkgs, I'll give this a shot 01:44:04 * woland gives up 01:55:58 networkmgr is not the linux networkmanager. 01:56:00 not even close. 01:56:28 and the linux NetworkManager (which is really libnm et al) will not get ported here. 01:57:53 even though most desktop tooling clamors for NetworkManager in some manner, our network stack is simply too different from what NetworkManager expects that the work needed to make it all work isn't worth it 01:58:29 I wonder if ip is port-able. 01:58:56 iptools2, doubtful 01:59:07 as is iw 02:00:21 s/iptools2/iproute2/ 02:01:26 furthermore, iproute2 is GPLv2 02:06:17 frontend design portable :) 02:06:31 vishwin: yes thats understandable. However I cant understand why a simple matter of connecting to a vpn should require any more than installing the pkg and enabling the service. So far I've really enjoyed FreeBSD in the two weeks that I've been using it, but this vpn situation is such a headache for me now 02:07:00 woland: its a matter of ease of configuration of the software rather than the unerlying os 02:07:19 wireguard was specifically deisnged to be as zero friction as possible (compared to say openvpn) intentionally 02:07:21 for example 02:08:20 koobs: That may be but I've never had this issue on Arch for instance 02:08:29 this of course is different than tools provided by os's for os functionality, and these should be levelled up as far as possible with respect to UX 02:08:59 Speaking of doing things that hard way... I have a 128G UFS root install. I wanna move that to zfs. I have two 500G SSDs ready to go. Just perform an auto zoot on zfs install and copy files? Or is a slicker way to do it? 02:09:05 woland: the part that does overlap, is the extent to which a package might provide good defaults for use, and any additional extras to make things easier (startup scripts etc) 02:09:16 what bothers me most is that all the articles about setting up opnvpn are about setting up a server 02:09:29 woland: if you can identify what about an arch vs freebsd openvpn setup is different, we can certainly look to improve things if there's a delta 02:10:03 and not withstanding, openvpn has been known for quite a while to not exactly be trivial to setup 02:10:18 koobs: sure, I can get into it in the morning, or maybe even copy my arch defaults 02:10:19 I'd say there's almost zero config differences with freebsd openvpn (as a client) and Fedora. 02:10:30 all else (including configs) being identical, the only delta is really tun/tap/route setup, which openvpn mostly handles 02:10:50 since it abstracts over those devices 02:10:57 and supports many OS's directly 02:11:26 bottom line; with specific issues/problems known, its muych easier to conclude if and where improvements can be made on particular OS's 02:12:02 and we always look forward to those discussions 02:12:27 koobs: I'll make sure to keep you posted should I find the issue or the solution 02:12:57 we can also help with things if you have errors/etc or with more details of the issue youre experiencing 02:13:01 difficult to help without that detail 02:17:20 service openvpn start returns => http://ix.io/49Qc 02:18:42 openvpn --config de.ovpn returns => http://ix.io/49Qd 02:18:56 what user are you running openvpn start with ? 02:19:10 and there will likely be more information in the openvpn.log 02:19:24 privilledged user 02:19:26 with doas 02:20:52 with root it returns another error, /usr/local/etc/rc.d/openvpn: warning failed to start openvpn 02:21:04 my bad, arrow upped the wrong cmd 02:22:31 http://ix.io/49Qf is the contents of /usr/local/etc/rc.d/openvpn 02:31:50 so why does `service -e` dump warnings into /var/log/messages? like "/usr/sbin/service: WARNING: $ is not set properly - see rc.conf(5)." 02:55:10 Here "*.notice", among others, go to "/var/log/messages" 03:07:11 * woland wanders to bed 03:17:34 ya but what's the warning for? what isn't set properly? 03:17:46 that's in a fresh install meaning the OS is shipping with warnings 03:28:23 openvpn or sndiod isn't in base 03:28:48 so it's not "fresh" 03:30:24 and the warning is telling you what isn't set 03:34:52 '$' tho? 03:34:56 how can i debug that 04:44:52 Hello, my fellow BSD users. I have a question. What 'modern hardware' do people talk about when it comes to say, 'FreeBSD has problem with modern hardware' in comparison? What kind of hardware? What part? 04:53:55 Is there some magical feature that Linux enhances its hardwares while I and FreeBSD miss it out? 04:54:58 i think amd is still rougher than intel? not sure if that's still true 04:55:51 the magical feature is more hw drivers so more hw support is a fact 04:56:21 mictty: The magical feature is money, yes. 04:57:40 money or popularity amongst devs 04:58:19 it's just not as popular an open source project as linux is so it's a crude measure but it's less monkeys coding less lines 04:58:31 as a monkey =) 04:59:14 hey when i nmap freebsd with pf some tcp ports show up as "filtered unknown" but i dont have that port in my pf config at all and the default is to drop so i wonder why THAT port shows up? 05:00:37 it's a few, 72794 is one 05:01:23 and 7663 rome wtf? 05:03:12 how can i ask pf for whatever rules it has on 7663 port? 05:04:58 `pfctl -s rules` will show all active rules, but there should be more granular options described in the man page 05:05:21 ya i know that 1 05:05:27 but it shows names for ports lol 05:05:41 and it dont take -sn to show in number form like netstat -rn does 05:05:44 the n 05:10:47 I have one BSD machine since 2021. In the build all parts were, I believe, released at oldest in 2019, except the graphics because I don't need a desktop environment. I tried to be as modern and experimental as I could. My machine has never had Windows nor Linux in her entire life. 05:11:56 CPU: AMD Ryzen 7 5800X 8-Core Processor (3793.07-MHz K8-class CPU) 05:11:56 FreeBSD/SMP: Multiprocessor System Detected: 16 CPUs 05:11:57 cpu0: on acpi0 05:14:11 I felt the 'modern hardware' problem can be misleading to the audience 05:46:24 what image pastebin do you use? let me paste somethin 05:47:25 mictty: modern CPUs will "work" for the most part provided they don't present anything too different than what came before, that is largely going to be dependent on the motherboard as well. But it's all of the things which need to talk to all the other hardware [drivers basically, as others have said]. 05:47:49 you had a 5800X, but did all the thermal sensors work on it? 05:47:52 what about storage? 05:48:20 network [particularly wifi] drivers can be problematic, as can things like bluetooth, audio..... 05:49:24 putting together a bare rig which operates from a terminal is well and good, but when people make comparisons to linux, they almost always are referring to something with a GUI, and/or runs on a laptop 05:51:45 I definitely would like more people trying out freebsd, but being anything but honest with them about what to expect is only going to people off if they are expecting parity with linux 05:52:46 edenist: do people usually provide thee benchmark along with their hardware to claim 'work fine'? How do i test such thermal operations? Audio/Bluetooth is actually a good point. I have never thought about it. 05:53:30 mobo is asus-x570i 05:54:12 I'm unsure for the zen cpus, but for example on my bulldozer opterons cpu thermals are provided amdtemp.ko 05:55:13 edenist: wifi works, but given your context, I have no confidance since I did not measure the performance. 05:55:18 I just checked the man page and apparently it supports up to family 17h, which is zen2 05:55:38 but does fbsd have temp sensor integrated into fan controllers? like if temp gets too high for laptop it'll automatically turn fans up, cpus down as last resort, stuff like that 05:56:52 polyex: most of that is handled by bios/motherboard firmwares, with overrides provided through a driver if wanted. For example the acpi_ibm.ko provides puttinng the fans into manual mode 05:57:12 but that's just for thinkpads 05:57:31 how can we see if we're currently set to auto or if somehow i turned manual on and it's now kinda unsafe? 05:58:18 mictty: you are right about CPU performance though. Especially with the way AMD does boost mode, it doesn't really expose it to the OS, so you need to use something like hwbmc to check it is running 05:58:33 polyex: you will need a driver specific to your hardware 05:58:48 I don't think there are any loaded by default [that I know of] 05:59:25 so OS doesn't use all hw available to prevent allowing user to damage hw 06:01:06 I can't think of any hardware which can damage itself in it's default state. Any CPU made in the last decade or two or so will throttle itself once it hits Tcrit 06:02:08 what about battery damage from getting to hot because it was ran with lid down? laptop 06:02:32 but any OS needs to have the thermal drivers added before it can do anything, windows, linux or whatever.... 06:02:55 that should be handled by the device firmware anyway 06:03:14 it isn't the job of an OS to prevent critical overheating of hardware 06:03:26 ahh 06:08:47 polyex: For example, my CPU just turned off itself when it was overheated(before bios update) and, like edenist said, it is done at the bios layer, you do this without OS installed. 06:13:59 ya but i seen batteries start to bulge so wtf that mean? 06:16:02 polyex: I have no good knowledge in laptops. 06:28:54 edenist: should one benchmark storage on two different OSs with the hardware to compare? 06:29:38 * with the same hardware 06:30:43 polyex: there are different ways batteries bulge, but again this isn't something that using another OS is going to solve. Laptops are always going to generate heat, it's up to the firmware to manage that. If you want to prolong the life of a battery then I guess you could run fans on max and CPU on lowest performance profile, and not keep it plugged in 24/7? 06:31:31 mictty: maybe check out some of the phoronix test suite benchmarks if you are curious? There are tests for CPU, mem, i/o etc... 06:31:48 ya 06:44:38 I'll go take a look hwpmc 07:09:51 polyex: lithium batteries are really picky, mustn't be to hot, absolutely not too cold, not kept at 100%, never run to 0%, etc, etc. Most end up like https://www.reddit.com/r/spicypillows/ 07:09:52 Title: spicypillows 09:09:58 do I need to reboot after I do a pkg update and upgrade? 09:13:17 sn00p, perhaps only if you had installed/update a kernel module which can be used _cleanly_ only after a reboot 09:13:54 s/update/&d/ 09:17:46 sn00p: pkg upgrade updates the index, you do not really need to pkg update beforehand; if you see that anything you run as daemons/services has been updated, you can restart just those services, no system reboot necessary 09:18:02 I ok thanks 09:18:10 if a kernel module was updated, it is often possible to stop all services using that module, unload it 09:18:14 and load the updated version 09:20:19 also I just installed qemu, and I get qemu command not found 09:20:59 You may need to rehash the $PATH. zsh has "rehash" command 09:21:17 still commnd not found 09:22:26 In that case, check what files were installed via "pkg-info" : pkg info -l -x qemu # Will list files for all packages with "qemu" in its name 09:24:06 cant find the executable 09:29:42 emulators/qemu/pkg-plist* list various "bin.*/qemu\b" lines, perhaps one of those🤷‍♂️ 09:42:32 any sanoid user? 10:28:35 mage: please just ask your question, instead of asking for people; it's entirely possible someone knows the answer to your question but don't have the time to have a whole conversation about it. 10:43:46 I want to backup production servers on multiple boxes, I'd like to keep only a few snapshots on the production machines but a lot on the backup machines (I snapshot every 15 min). I don't care about keeping monthly snapshots on the production machines so I have monthly=0 but the downside is that no monthly snapshots are created .. but I want monthly snapshots of the servers stored on the backup machines 10:43:55 any idea how to manage this? 10:56:15 I want to learn more about building a freebsd nas, 16-32 TB. Suggestions on where to look/read? 10:57:04 What's so complicated about it? 10:57:07 What do you need? 10:57:18 NAS could mean just a ssh-in box and use scp(1) 10:57:22 Define what you mean by NAS 10:57:28 What for of NAS? 10:57:36 Do you need low power usage? 10:57:40 Will it run on battery? 10:57:50 Would you expand in the future? 10:58:26 Can you please write out your sentences in one line, instead of this stream-of-conciousness writing where you press enter every 5-8 words? 10:58:48 not really - that's how I type. Why is this a problem to you? 10:59:04 I also think that this form of texting is also more readable 10:59:11 So to each their own, I guess. 11:01:33 this is IRC, not whatsapp 11:01:38 *lol 11:02:02 I know, what about it? 11:02:19 Everyone has been fine the way I type but you 2 11:03:07 are they fine with it or not bothered enough to say anything? 11:03:11 or just asleep 11:03:37 Just not bothered like you 2 11:03:54 No need to make out an elephant out of a fly 11:03:55 hello, new here, whats going on 11:04:12 If you got nothing to say - say nothing, instead of "please type the way I want :))" 11:04:17 s/2/too/g 11:04:22 or two 11:04:29 Hi. A few normies trying to command how I type messages 11:04:37 s/command/control 11:05:03 Someone asked about a FreeBSD NAS box above 11:05:38 thats how you do unbother: /ignore PredatorONormies 11:06:03 Even better, yes. If you cannot cope with someone being out of your absolute control - there's /ignore ;) 11:06:25 good idea 11:07:47 I agree 11:10:16 i'm always had a question, how to search for man page which name is not well known 11:10:50 like list all available man pages by wildcard or keyword 11:12:09 nerozero: there is apropos 11:14:27 megaTherion, tnx 11:33:00 PredatorONormies: because you're not the only person chatting, and if there's even one more conversation going on and anyone else types like that, it becomes increasingly difficult to follow conversations. 11:35:24 I disagree, like I said - it's way more readable, in my opinion. 11:35:57 Because I typed in the past a lot of text, and even I got lost in my own words 11:36:00 I know what I'm talking about. 11:36:06 I think. 11:39:44 It isn't really up for debate. 11:41:35 It is - it's my speech that you are trying to control. 11:41:49 If you don't like it - you got optins: /ignore, ban/kick/mute. 11:41:59 I shall NOT be subject to your manipulation and control 12:08:46 nerozero: also whatis, which takes keyword (and apropos takes wildcard) 12:09:24 youhow !!!! yuripv Thanks ! 12:51:08 lang/zig is statically compiled 12:51:15 next update requires devel/icu as well 12:51:34 I've added that to BUILD_DEPENDS and port seems to run just fine (tm) 13:00:10 is there any way to tell if that's correct? 13:02:19 mage: the feature you're looking for is called bookmarks, I'm sure sanoid will support it somewhere. 13:02:28 mage: TLDR the source side does snapshots, replicates them (for backup offsite), then prunes them & just leaves bookmarks of them, which take up no space. 14:04:49 Hello, I would know how to use port un pkg without conflict. I use pkg for most of my packages, but some of my packages must be installed via port (for configuration purposes). When I run pkg upgrade, it currently replaces my port installed packages. 14:05:41 Any other iSCSI users out there? I'm getting 'icl_soft_conn_new_pdu: failed to allocate soft PDU' on my target server since 13.1. 14:07:03 gearnode: look into poudriere or synth for maintaining a private repo with the options you want. 14:07:55 (I prefer synth for mixing mostly-vanilla -- leveraging pre-built -- with a few packages where I needed non-standard.) 14:08:36 eborisch: thanks it was my next step but I will love having a way to pin package. Like this pkg can ignore them. 14:09:31 On the initiator side, I'm getting 'UNIT ATTENTION asc:29,7 (I_T nexus loss occurred)'; it retries without further issues, but disconcerting. 14:32:37 * V_PauAmma_V notes offhandedly that people 1going "muh frea speach!" often object to others directing their own speech back at them. 14:33:58 hi, is there a process for a mail to be validated on freebsd-bugs⊙Fo mailling list, I post something but I don't see it in the archive. 14:38:33 gearnode: you can just use pkg lock 14:46:37 You probably need to subscribe. https://lists.freebsd.org/subscription/freebsd-bugs . (But are you sure you need to post directly instead of filing a Bugzilla ticket?) 14:46:39 Title: FreeBSD Mailing lists: subscription for freebsd-bugs 14:49:36 souji: Oh thanks ! 15:02:34 I fact I made a mistake in my mail adress to ... 15:02:37 it's ok now 15:02:49 https://lists.freebsd.org/archives/freebsd-bugs/2022-September/008131.html 15:02:50 Title: FreeBSD 13.1 : ZFS NFS : .zfs/snapshot : Stale file handle : with zfs destroy snapshot process in Uninterruptible sleep 18:07:11 I changed password using `passwd` but /etc/passwd still doesn't have any password 18:07:15 where is the password stored? 18:08:57 found it 18:10:33 I'm getting "Ports Collection support for your FreeBSD version has ended" when running poudriere bulk… but I'm on 13.0 which is marked as supported production release on freebsd.org – what's up with that? 18:15:31 to clarify, I'm getting that in the poudriere log for ccache which failed sanity checks with this message. 18:17:53 according to https://www.freebsd.org/security/#sup only 13.1 is supported 18:17:55 Title: FreeBSD Security Information | The FreeBSD Project 18:18:57 pfrrrbbblllffft :F 18:19:27 thanks for the heads up i guess – look like i'll be upgrading my infra… 18:49:56 vi: No terminal database found 18:50:04 is a problem I've been having for many years on freebsd 18:50:14 I can't use any terminal apps until I manually `export TERM=xterm` 18:50:24 can I get that database from pkg somehow? 18:50:57 currently on freebsd 12.3 18:53:53 Is you termcap broken? 18:55:02 I don't know, it's a fresh freebsd jail 18:55:22 on linux it would be terminfo, and I'd get it on debian using `apt-get install ncurses-term` 18:55:34 I don't know Linux, sorry. 18:55:51 and the value of $TERM is tmux-256color, from openbsd 18:56:14 tmux-256color is in /etc/termcap 18:56:39 `grep tmux-256color /etc/termcap` doesn't return anything 18:57:51 Oh, maybe it got added in 13 or 14 then. 18:58:19 maybe, I'm on 12.3 and can't upgrade because it's a jail 18:59:22 https://cgit.freebsd.org/src/commit/share/termcap/termcap?id=4e04e8bd78408f4a6e99e68cbeb7ef88b0ecae68 not exactly new 18:59:23 Title: src - FreeBSD source tree 19:00:51 https://cgit.freebsd.org/src/tree/share/termcap/termcap?h=releng%2F13.1#n2797 it's in 13.1 so if you can upgrade that'll solve things 19:00:51 well, I don't know why it didn't make it to 12.3, which was released 2021 19:00:52 Title: termcap « termcap « share - src - FreeBSD source tree 19:01:00 Neither do I. 19:01:21 but thanks, looks like I'll get support automatically once the system outside the jail gets upgraded 19:01:33 yuripv might remember, then again they might not. 19:01:57 In either case, it's a little late for 12.3. 19:02:34 They might also not be around their computer right now, so it could take a while :) 19:02:45 12.4 might be out in a few months 19:27:31 debdrup: ps -p $(ps -p $$ -o ppid=) o args= 19:27:35 try this 19:37:25 woland: i'll check it when will be at home, thanks 19:37:31 xx: i had this in my ~/.tmux.conf before 13 `set-option -g default-terminal "screen-256color"` 19:54:36 ridcully: yes that would work 21:10:00 i wanna test that my server doesn't allow password ssh because it seems to. is 'ssh -o PubkeyAuthentication=no -o PreferredAuthentications=password host' enough to force ssh to ONLY try pw login? 21:26:35 polyex: just the '-o PubkeyAuthentication=no' should be enough if everything is set to defaults/unset in ~/.ssh/config otherwise. You likely want it to consider both password or KbdInteractive authentications. (Which it will, by default.) 21:29:13 But really you can ssh -v into the host and look for the 'Authentications that can continue' messages to see what types of authentications the server and client agree on. 21:31:23 k on my server auths that can continue are publickey and keyboard-interactive 21:36:45 If you're going through PAM, that's keyboard-interactive, and may still act like what most people might assume would be called "password" - with the user (potentially) able to log in with just a password, depending on PAM configuration. 21:37:00 polyex: ^ 21:37:45 ya i think that's what's happening to me 21:38:05 so when ppl say disable ssh pw login, are they talking about password+kb-interactive, or literally just password? 21:42:46 Either configuring PAM to require more than just a password (it can add things like google authenticator in addition to a password), or disabling both PasswordAuthentication and KbdInteractiveAuthentication (leaving Pubkey) 21:44:20 There's also a special option just for the root user: PermitRootLogin=prohibit-password (in /etc/ssh/sshd_config), although UsePAM + KbdInteractive overrides this (see man sshd_config). 21:44:47 ok ill disable KbdInteractiveAuth too 21:45:57 Yep; if you've got shared keys set up, disabling both KbdInt. and Password is the way to say "only keys". 21:46:45 ya i have keys only. no certs yet tho. keys seem like happy medium 21:46:49 opinion? 21:50:58 Keys are popular. For an extra level of security, you can keep them encrypted on disk and load them into an agent for re-use during a session; you can also set options in ~/.ssh/authorized_keys if, for example, you only want to allow the key from certain hosts. 21:51:50 if i have a pw set on my key does that mean it's encrypted? 21:53:30 yes. 21:53:47 i do that 21:56:54 It provides some level of "if someone gets a copy of the key, it isn't immediately useful", but I still wouldn't post it up for the world to see... 21:58:31 You can also load it into ssh-agent (memory-resident SSH key cache) if you find yourself typing the passphrase over and over, so there's hardly any reason to _not_ encrypt your private key. 22:03:31 do you keep UsePAM yes if you set PasswordAuth no and KbdInteractiveAuth no? 22:03:45 config file says to do that if you want to keep session checks 22:06:39 but upside of UsePAM no, is we can run sshd as nonroot user 22:18:51 y/n/n to PAM / PasswordAuth / KbdInteractive lets you still do the session management things PAM can do (if you use them) as I recall. If you're not intentionally using PAM, you can likely set UsePAM to no. 22:19:19 As always with sshd configs, make sure your intended authentication method continues to work after changing / reloading configuration. 22:49:03 cam status ata server error means a faulty harddrive yes? 22:57:34 woland: not necessarily, cabling, controller, but often device fault 22:58:02 megaTherion: same laptop with another sdd gave no error during install 22:58:14 I guess it has to be the old HDD 23:24:16 how can i find out what pam account and session checks even are to see if i'd still want them? 23:24:54 i guess i can try UsePAM no and see if i lose anything i need 23:25:22 will i still get log messages somewhere for vailed ssh login attempts if UsePAM is no and the only allowed auth method is publickey? 23:25:37 failed*