01:35:20 <_xor> meena: Nope, will look in a bit.
01:37:03 <_xor> What's API call to get the cpu busy time for a process in FreeBSD? (i.e. Linux equivalent of busy value of a pid in procfs)
01:38:21 <_xor> Oh, getrusage apparently.
02:21:30 <BaloneyGeek> mason: I was looking at the JailsEpair wiki page which I believe was written by you? https://wiki.freebsd.org/MasonLoringBliss/JailsEpair
02:21:31 <VimDiesel> Title: MasonLoringBliss/JailsEpair - FreeBSD Wiki
02:22:13 <BaloneyGeek> It appears the Bugzilla entry linked to in the page about the racy networking in Jails (https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=237656) is now fixed
02:22:15 <VimDiesel> Title: Invalid Bug ID
02:22:54 <BaloneyGeek> Very funny VimDiesel, the title is `"Freed UMA keg (rtentry) was not empty (18 items). Lost 1 pages of memory." seen when running sys/netipsec tests`
02:23:42 <BaloneyGeek> Anyway, my question was - does this mean we can now do away with the exec.prestop hack and remove the vnet line completely?
02:28:15 <mason> BaloneyGeek: Yeah, I need to check that. I haven't vetted it and I wanted to verify before changing it, since the workaround doesn't actually hurt anything. Has it been pulled down to 13.1?
02:29:19 <BaloneyGeek> mason: I have no idea how to check, sorry. I'm still extremely new to the FreeBSD world
02:30:02 <mason> BaloneyGeek: No worries. I'll chase it down soon as I get a chance.
02:30:41 <BaloneyGeek> I assume the githash mentioned would just be cherry-picked to something like a 13.1 branch?
02:32:28 <mason> BaloneyGeek: https://docs.freebsd.org/en/books/handbook/glossary/#mfh-glossary or MFS, unsure where the code has gone. I kind of assumed it was just in current but I haven't actually looked yet.
02:32:29 <VimDiesel> Title: FreeBSD Glossary | FreeBSD Documentation Portal
02:37:47 <BaloneyGeek> mason: The commit itself was pushed in March 2021, and has a "MFC after: 3 days" line in the commit message, but searching freebsd-src on Github doesn't seem to yield any other commits with the same commit title
02:39:47 <BaloneyGeek> I've been scouring the internet for days on how to do VNET jails properly and your guide has the simplest setup I could find without a dependency on `jib`, so I'd really like to base my setup off it :-)
02:39:56 <mason> BaloneyGeek: nice nice
02:40:33 <mason> BaloneyGeek: So, with that in mind, you can ignore the noted glitch and just not bother setting up a sacrificial lamb at boot if it's been fixed. The ill effect I wanted to avoid was networking pausing briefly.
02:43:23 <BaloneyGeek> Oh it's that bug? I thought the fix to that was to assign a MAC address to each epair b interface manually?
02:43:45 <BaloneyGeek> What I'm trying to understand is the need for this line: `exec.prestop += "/sbin/ifconfig epair${ep}b -vnet ${name}";`
02:44:49 <mason> BaloneyGeek: Oh, that. IIRC that was from a bug that was fixed where interfaces not removed from the jail side would lead to the system freezing.
02:45:33 <BaloneyGeek> My brain is a little short-circuited by now, but does this mean at some point, under the hood, there's a named VNET being created with the name of my jail?
02:45:57 <mason> BaloneyGeek: I'll be happy to revamp it all to eliminate workarounds for random bugs I've hit if they're gone. Plus side, the workarounds are safe even with the bugs fixed.
02:46:10 <mason> BaloneyGeek: Not with the name.
02:46:25 <BaloneyGeek> I can do you one better, since I'm setting this up myself
02:46:52 <mason> BaloneyGeek: Here, for instance, I have an epair101a on the outside, and an epair101b on the inside that's the primary NIC for the jail.
02:46:57 <mason> cool
02:46:59 <BaloneyGeek> If you can tell me a reliable way to reproduce this, I can test this and report back, possibly with an updated config :-D
02:47:33 <BaloneyGeek> (the freeze when we yank interfaces from underneath the jail)
02:48:08 <mason> BaloneyGeek: Sure. I think the crash if the epair was left to be cleaned up has probably gone away. To test that, just don't include the -vnet line.
02:48:40 <mason> BaloneyGeek: Other way around. If you let FreeBSD clean up the jail and vnet itself it'd freeze. The way around that was removing the vnet first.
02:48:54 <mason> THEN tearing down the jail, hence the prestop removal.
02:49:49 <BaloneyGeek> So can I also just change the line `exec.prestop = "/usr/sbin/jexec ${name} /bin/sh /etc/rc.shutdown";` to `exec.stop = "/bin/sh /etc/rc.shutdown";` then?
02:50:40 <BaloneyGeek> mason: Ah so doing things the "normal way" used to pretty reliably lead to a system freeze if I understand correctly
02:52:11 <mason> Yes. Hence the added bits. That said, a goal I left lingering was having the system bring up the NIC itself, potentially using DHCP, and I've struggled to get that to work reliably.
02:52:28 <mason> I'm setting up a new bhyve and jail host and plan to explore it again this week.
02:52:42 <mason> Was hoping for this weekend but we had a more-than-day-long power outage.
02:53:58 <BaloneyGeek> I cannot test DHCP for the reason of "my server host won't let me", but I'd like to test setting up the IP using the usual rc.conf way
02:54:17 <BaloneyGeek> Especially since I actually need a proper IPv6 setup
02:54:31 <mason> BaloneyGeek: That said, pulling out my historical cruft will be a nice way to explore and learn. It shoudn't hurt anything leaving it, so you should be able to start from what's there as a baseline.
02:55:11 <mason> Ah, I've not ever added IPv6 into the mix. If you find anything interesting to include I'd be happy to do so, and if you collaborate on it we'll want to move it out of my namespace.
02:55:32 <mason> Sorry, also, I'm a bit distracted with a couple other things I'm doing concurrently.
02:55:37 <BaloneyGeek> Right, I should be able to report back in a couple of days, either here or via your email in the wiki page
02:55:56 <BaloneyGeek> mason: No worries, I'm going to bed now anyway. It's 4AM CET
02:56:25 <BaloneyGeek> Thanks for the clarifications. Let's see how things go in the next few days :-)
02:56:27 <mason> Good night! Ping me here as needed and I'll try to repond.
02:57:05 <mason> respond*
06:38:33 <jafarlihi> tmpfs is a KLD module, right? Why does sys/fs/tmpfs contain no DECLARE_MODULE or moduledata_t?
08:00:26 <Edge-> Besides driver support, if a person *must* use Linux, I can't fathom *why* they would choose it over FreeBSD!  Bill Joy and Kirk McKusick and others worked very hard on it since 1977.  I know why Linux got its market share, and I'm no noob, but Linux is a glued-together piece of garbage when you compare it to BSD: a complete OS out of the box.  And let's talk PF Sense vs IPtables!  There's prewritten rules, it's a config file! it's not modular, designed not
08:00:26 <Edge-> to be as capable to break.  And all the distro's of Linux and the hardening and the difference in patch release times. WHY?
08:54:30 <meena> Edge-: there's very little point in discussing why a technology has "won". it's always a very complex process
09:30:45 <Edge-> meena: That's YOUR opinion, and you have NO RIGHT in telling someone what to discuss.   So I'm finished talking to you.
09:43:18 <mictty> Edge: we are in hunger of driver supports. That's right.
09:45:03 <mictty> Edge: that may be in terms of expansion of user pool(desktop). In another case, it may not be a deal breaker.
09:48:18 <Edge-> mictty: I know all of this, with lack of vendor-provided driver support that Linux gets due to known reasons of lawsuit... that FreeBSD does not get and its team have to hack drivers.
11:47:03 <jafarlihi> Can someone please tell me what's the difference between KLD module and static kernel module? Like what makes a module static kernel module? How is it defined? They are both built with ".include <bsd.kmod.mk>" but only difference I can see is that one has DECLARE_MODULE and other doesn't.
11:59:31 <debdrup> jafarlihi: I _think_ it's whether something can be loaded at runtime, or whether it has to be loaded with the kernel by the boot loader.
12:00:10 <debdrup> And, more importantly, I suppose - you can unload them if you don't need them.
12:50:39 <Macer> i know i check in on this every now and then but i was curious if smb_mountfs has evolved beyond smb1
13:01:27 <debdrup> Macer: if it ever does, I can't imagine it won't be published far and wide, so there's no real point in checking every now and then, as there's nobody working on it
13:30:24 <meena> wasn't smb* slated for removal, because it doesn't work beyond smb 1, and because no one is working on it, and because there's more functional alternatives in ports
14:45:56 <daemon> is it possible to generate more than one matching public key from a single private key file (ed25519)
15:01:09 <meena> daemon: what do you mean?
15:03:07 <daemon> meena, is it possible to generate more than one pubkey for a private key, say for instance if you did a ssh-keygen -t ed25519
15:03:12 <daemon> you would get an accompanying pubkey
15:03:28 <daemon> but is there anyway to generate additional pubkeys that have a different hash
15:03:35 <daemon> or are they all 1 ub per private key
15:03:48 <daemon> 1 pub per private key*
15:08:09 <_xor> Heh, I would hope the answer to that is a definitive "no"
15:09:19 <daemon> yeah me to but got to wonder :)
17:42:10 <antranigv> here's a stupid question from a person who works in InfoSec: what's the difference between Security Advisories and Errata Notices?
17:44:32 <debdrup> errata notices are fixes for things that are obviously broken (ie. doesn't work at all, or doesn't do what the documentation says), while security announcements are for actual security related things
17:57:44 <V_PauAmma_V> Per email discussion, E in EN actually stands for "Engineering".
17:58:30 <debdrup> https://www.freebsd.org/security/notices/ they're errata notices
17:58:31 <VimDiesel> Title: FreeBSD Errata Notices | The FreeBSD Project
18:00:30 <debdrup> an erratum is a correction - in the original meaning, to a text, but more broadly it can be applied to anything that's considered corrected by being updated by something published after the fact, i think
18:01:31 <V_PauAmma_V> I thought that's what they were as well, but who am I to contradict imp?
18:01:58 <debdrup> then imp has a lot of websites to correct :3
18:02:54 * V_PauAmma_V turns on the SEP field generator. :-)
18:03:10 * debdrup tilts his head at the purple mountain
18:16:47 * mictty doesn't get it
18:53:16 <V_PauAmma_V> Hitchhiker's Guide to the Galaxy reference. (_Life, the Universe, and Everything_ specifically.)
19:02:44 <CrtxReavr> Read all those books. . . not sure I remember a 'SEP field generator'
19:07:25 <rwp> Me too.  But I still had to look it up.  A "Somebody Else's Problem" field. The Bistromath ship was covered in an SEP field.  Think cloaking device.
19:09:14 <CrtxReavr> Those were hands down the funniest books I ever read.
19:09:23 <CrtxReavr> Constant strange look generators.
19:10:42 <CrtxReavr> Apparently novels are not supposed to induce hysterical laughter in public places.
19:50:19 <mictty> hmm
23:22:07 <Macer> meena: oh is there?
23:22:17 <Macer> i'm guessing it's all been relegated to fuse maybe?
23:35:48 <meena> Macer: I don't remember the details
23:59:52 <meena> https://wiki.freebsd.org/DeprecationPlan#FreeBSD_14
23:59:53 <VimDiesel> Title: DeprecationPlan - FreeBSD Wiki