need support: following this tutorial : jrgsystems.com/posts/2022-08-20-how…luetooth-headphones-on-freebsd-13-1

Title: JRG Systems - How I Configure Bluetooth Headphones on FreeBSD 13.1

this line : virtual_oss -T /dev/sndstat -S -a o,-4 -C 2 -c 2 -r 44100 -b 16 -s 1024 -R /dev/dsp0 -P /dev/bluetooth/WI-C200 -d dsp -t vdsp.ctl

return :virtual_oss: Could not open DSP device '/dev/dsp0': Operation not supported

sysctl hw.snd.default_unit=1

chapter 7 multimedia

joshbsd: you need to figure out what hw you have

intel all the way

<- never had intel :P

or maybe in the 90's

hehe

what can i say... I know

right now I have a threadripper :P

thanks for the reference in the handbook i'll check it

Realtek

not intel

is that it : RTS5249 PCI Express Card Reader

8 Series/C220 Series Chipset High Definition Audio Controller

?

vendor = 'Intel Corporation' device = '8 Series/C220 Series Chipset High Definition Audio Controller' class = multimedia subclass = HDA

hdacc0: <NVIDIA (0x0051) HDA CODEC> at cad 0 on hdac0

hdaa0: <NVIDIA (0x0051) Audio Function Group> at nid 1 on hdacc0

pcm0: <NVIDIA (0x0051) (HDMI/DP 8ch)> at nid 4 on hdaa0

pcm1: <NVIDIA (0x0051) (HDMI/DP 8ch)> at nid 6 on hdaa0

pcm2: <NVIDIA (0x0051) (HDMI/DP 8ch)> at nid 7 on hdaa0

hdacc1: <Realtek ALC280 HDA CODEC> at cad 0 on hdac1

hdaa1: <Realtek ALC280 Audio Function Group> at nid 1 on hdacc1

pcm3: <Realtek ALC280 (Analog 2.0+HP/2.0)> at nid 20,21 and 26 on hdaa1

joshbsd: pastebin please (bsd.to)

Title: dpaste

k

is the number 1 fort hdaa1? or should it be 3 for pcm3

?

3 it is and the the hw is realtek

Is there a filesystem that supports permissions and ownership (i.e. not FAT or exFAT) that folks recommend for portable drives?

any that is supported by the operating systems you need to use the device on

ghoti, I would guess that after FAT, ext2 is probably the most portable filesystem, and it supports unix perms.

Also, ext3 & ext4 can both me mounted as ext2, just without journaling, and other bells & whistles.

s/me/be

does this wonkity.com/~wblock/docs/html/ssd.html still need to be done for partitioning a freebsd ssd? Or normal installer should take care of it.

Title: Using a Solid State Drive with FreeBSD

Hi, I have seen that I can create tun0 interface with ifconfig, but now I want to configure it to act as a point to point tunnel, in Linux you do: "ip tunnel add tun0 mode ipip remote local "

what would you do in FreeBSD? Thanks

I guess TUN devices are not a big thing

is it ok to simply copy over my /usr /var directories which were in a single ufs freebsd partition over to their respective usr var folders on a new ssd, that are setup as filesystems?

tried to use dump but can't since /usr /var on the original drive aren't file systems

dump is giving: unknown file system

How come when I am following the all mighty handbook my commands do not work. When I log onto libera and before asking the question all of a sudden the command works?

adonis, probably not a good idea, since there's symlinks, hardlinks, etc.

CrtxReavr: yea I figured.. I had to do some fenagling but I managed to do a dump / restore -interactive to restore the folders

Title: Full System Backups using dump/restore in FreeBSD | Dan's Blog

interestingly I'm getting warnings like warning: cannot create hardlink ./usr/share/openssl/man/man3/o2i_SCT.3.gz -> ./usr/share/openssl/man/man3/i2o_SCT.3.gz: File exists

It's a warning. . . not an error.

I know, just wondering why they are showing

Look at the 'restore -u' option.

cool. Also, I interactively told restore to add usr, but I don't want the usr directory to show up in the target, I want the contents of usr to show. What did I do wrong?

I've used dump/restore only a handful of times over the years.

Google & manpages are your friend.

:)

I do see the -h option

I'll play with it a bit.

CrtxReavr: seems like there's no way to tell restore to ignore that top level folder and extract the contents, I'm doing a restore but then moving usr/* to . hopefully that’s ok

adonis, dump/restore is a volume level utility.

Well: bpa.st/KLSA

Title: View paste KLSA

dump is a filesystem (volume) utilty.

Restore can do filesystems or file level stuff.

So the real prob is that my original partition is a single ufs partition that contained /var /usr / for example. But my new disk has those as different partitions.

So if your desired source is a sub-directory of a filewsystem, then you need to find a different tool.

dump can't be done on the original disk /var /usr because those are all one partition. So I don't see what else to do but simply restore(8) those folders from the dump on to the /var /usr / file systems on the new disk.

Looks like you need to dig into cp(1).

still think restore(8) extraction should be better than that though.

CrtxReavr: thanks for the response, re filesystems. If I only plan to use this with FreeBSD, would UFS be "as good as" ext2? Or are there reasons not to use it on a portable drive or an SSD?

ghoti: UFS and ZFS would be better supported. IME the ext* support isn't all that great.

UFS2 is a great choice - very mature, also surprisingly portable.

ZFS has a lot of bells & whistles.

adonis: when copying unknown stuff like /usr and /var be careful of special files, as CrtxReavr said -- perhaps `pax -rwpe` would help. But filesystem flags could still get in your way. espescially in /var. That said, don't forget rsync.

I use ZFS for everyhing I can, but .. mobile drives?

Oh yeah. . . rsync is a great tool for local stuff too.

rsync is not available in single user mode for me

It is a port/package, yes.

:)

adonis: if it not available because /usr/local is not mounted, and it is mentioned in /etc/fstab, perhaps you can just `mount -a`.

Is there a way to get the ID of jail from inside the jail? sysctl-s don't have that info.

You could write a script in jail.conf of the host machine that writes this info to a file after startup. Not sure if it is there be default

dh, I think that would count as leakage. What do you need it for?

For jail to identify itself for outside systems .. but on a second thought, jail ID is not unique enough anyway

Give the jail a hostname and use that ?

But how would it be leakage?

What are you trying to do?

Jails with the same hostname are created and destroyed several times, but a script running inside the jail would need to register itself to outside system as a different system than the one before it that had the same hostname

But like I said - jail ID is not foolproof enough for that

Do they need unique names each time?

Could they just get a hostname from DHCP?

Or regeister it in DNS perhaps?

Too difficult, there's bunch of constraints I'm not going into right now. But generating large random number outside the jail and writing it into the file inside the jail is a good enough solution, thanks for the hint Erhard

OK. Glad it helped

For better random numbers use something like openssl to generate them (vs. rand(3) )

If it is critical

I did find this:

Title: register DNS entry with dhclient

Never actually registered in DNS myself. I always turn that off

But the ability of the host to write to files in the vm is pretty cool.

*vm == jail in this case

Beware of race conditions. Probbaly best to write the file before the jail starts rather than after

But still the leakage .. I know that I'm in jail by looking at sysctl-s, what would jail ID leak? Only actually useful value would be jail ID 1 - then I would know I'm in the first jail created after system reboot. All other values would indicate that either 1) I'm not the first 2) there may be other jails 3) this may still be the only jail that has been stopped and re-created?

And make sure (using perms) somebody cannot make a link to the file you are writing from within the vm such that you overwrite some other file.

What are you worried about leaking? I don't follow

21:08 < ghoti> dh, I think that would count as leakage. What do you need it for?

Can non-root users do anything with the jail ID ?

I mean, I am all in favor of limiting the info as much as possible, but not sure if that is super valuable info

The jail ID is only meaningful in the conext of the host

context even

Not from within the jails

True

IIRC there are ways to do IPC between jails. But that would open up more security issues.

Though might be safer than files depending on how you use them.

In my case, security is not a concern, everything that's running inside the jails is controlled by me anyway

Oh wait, I don't even need to generate random number outside the jail, I may as well do it inside - even better

Oh, then files seems like the simplest method if you can do basic scripting

ls

. ..

sorry folks, wrong window ^^

@jetchisel --- at least it wasn't your sudo password :)

hi, I am trying to configure PF, I would like to block everything except ports 22 and another one for example 10000. Which would be the config file? bpa.st/EWPA

Title: View paste EWPA

block on $external_if

pass in quick on $external_if proto tcp from any to ($external_if) port { 22, 10000 } keep state

pass out on $external_if keep state

where external_if is the name of external interface

you'd want to also allow icmp as a whole

do I have to define $external_if?

Title: View paste 6CYQ

how do I enable ICMP

?

pass in quick on $external_if inet proto icmp from any to any

just after the first block rule

Snaffu: Nope, sudo does not exist on this side! ^^

this one gives error: pass in quick on $external_if proto tcp from any to ($external_if) port $tcp_pass keep state

why icmp as a whole? you only need a few things from it (more than just echo/echo reply, but not much more) - cymru.com/Documents/icmp-messages.html

Title: ICMP Packet Filtering v1.2

nacelle, chill on the OMGTEHICMPPAKETZ nonsense.

when I enable PF I can not ping the local IP of a tun0 interface despite I ahve pass in quick on tun0 inet proto icmp from any to any

I do have all that right after block all

how do I forward all traffic arriving at a given IP in a host to a GW

?

(PF)

maybe it is just routing

how do I add an IP alias with ifconfig

?

Something like:

ifconfig ix0 192.168.2.70/24 alias

where ix0 is of course your interface

ifconfig em0 alias x.x.x.x netmask y.y.y.y

thanks

That works too

hrm. my snmp counter returned a negative (uint32 rollover). can i correct that in a shell script assuming it only rolled once?

How does a uint become negative? Something must be misinterpretting it.

... count the amount of collected rollovers

(ew)

lol

unsigned indeed :)

Erhard: its actually returned by snmpwalk

i'm pretty sure it only overflowed once, and was just trying to use the number in a shell script

i can't fix the snmpd returning the abnormally large value

wonder if its really a uint64

i don't think i can override the MIB.

basically, i'm querying hrStorageTable from a host with terabyte sized filesystems, which returns the # of 4k blocks used/total

I mean it is possible on the basis of a single rollover to determine mathmatically the real number

part of my concern was overflowing in my shell script too

beh think I would use perl to do it

that may be wiser

it will be INT_MAX_SIZE+flip(negative overflow value * 2)

its like ($x - 2^31) + 2^31

er i may have that backward

yeah should not take much hackery to get there

I'm subscribed to a number of FreeBSD mailing lists, and I'd like to change my address. Is there a way to make the change across the board, all at once, or do I have to do it to each list, one by one?

ghoti: one by one

Dang. I miss mailman.

Thanks.

unless you find an admin willing to sed regexp ;]

ghoti, one by one I had that pain recently, and for whatever reason -hackers will not accept my unsub request and keeps annoying me ;p

daemon, I'd email postmaster@.

For help unsubscribing, I mean.

Demosthenex: is it net-snmp or bsnmp?

I have installed FreeBSD on a couple of SSDs in a ZFS mirror for zroot. I have since added other SSDs in the box, and the FreeBSD installer did not use IDs for the SSDs when it did the installation, but used device names in fstab for swap (i.e. /dev/ada0p2). This doesn't work as the device names has changed. How do I locate the disk ID? Not UUID, but the ID.

Is it the ident in "geom list"?

morning

And if so, how do I use that in fstab?

hrm, looking at the HOST-RESOURCES-MIB it's "SYNTAX Integer32 (0..2147483647)", not uint32

morfn

koobs: you seen the freebsd-hackers@ email about python3?

meena: is it the one thats been going a while?

if so i havent been through it (but have seen it)

Title: proper python3 interpreter invocation

it's fresh

scrary first line

have you participated?

nope, I'm busy programming in python3

the broad answer to that thread is 'PEP394'

ive seen cederom on irc too no?

and arguing with ports developers that we should be following PEP-394

we should be

but the issue is nuanced

I thought about responding that I only have /usr/local/bin/python3.9 without really doing anything otherwise.

because theres multiple considerations and factors involved

koobs: i know, it's complicated

so

if anyones involved in that thread

re: "Hey! The issue is nuanced, lets have a chat about it on IRC and get to the bottom of whats possible'

irc: notification added for cederom

if i see them ill ping

Title: Python - FreeBSD Wiki

we're pretty obvious about how to get in touch with the team

i might write a /PEP-394 one day.

that page definitely needs a refresh

So no one is going to say that right now today in 13.1 that "#!/usr/bin/env python3.9" is needed? As it seems to be to me?

its not, you can (as a user) pkg install python3 to get the convenience symlink

if its a ports relevent question, thats not the correct answer

there was a discussion about this exact thing in #freebsd-python a few days ago

Okay. Then the answer is "#!/usr/bin/env python3" with python3 installed?

That has the advantage of being portable between FreeBSD and Debian/Devuan/Ubuntu/Mint/Trisquel anyway.

rwp meena bsd.to/Bja3/raw there you go

Title: Bja3

rwp: its more than that, its what pep394 says

the only pep394 thing we *dont* do is 'auto' include python3/python symlinks when installing a pythonXY

and thats the thing theres nuance and reasons for

checkout pastebin above

for all the gore

its really not that gory.

koobs: oh no… that's jrm poking at python because of me…

It is longer than a 30-second read. I am reading through it now.

meena: thats fine, jrm is sorted

i should sort myself, too… either into bed, or into the shower…

rwp: its really a 2 minute read that wraps the tldr; python3 is for end users, we provide those convenience ports, python/python3 in ports, hides many QA issues

which break user expectations of what points to where

thats really iy

I read all of that as detailed as I could. I'm not really a python person but I think there is not yet a satisfactory answer.

rwp: then the comms arent as clear as they can be, so feel free to ask questions so we can clarify