01:56:58 <Freaky> voi kernel: pid 67592 (java), jid 1, uid 965, was killed: failed to reclaim memory
01:57:00 <Freaky> bah
01:58:58 <rtprio> thats's one i haven't see yet
01:59:28 <Freaky> doing a poudriere build and I ran out of memory and swap
02:00:06 <Freaky> unfortunately it killed a production service instead of, say, a compiler I didn't care about
02:03:41 <Freaky> could proctect(1) it, but be kind of nice to be able to invert that and mark processes as being first against the wall when resources are constrained
07:23:52 <meena> Freaky: if you don't memory constrain poudriere on a shared environment this is all kind of expected
10:23:22 <RhodiumToad> anyone know any good tools for recovering files from trashed UFS filesystems?
11:11:06 <yo9fah> Hi all
11:15:59 <angry_vincent> Hi.
11:22:46 <thedaemon> hello yo9fah. :)
11:23:35 <yo9fah> Thanks ... all...
11:33:57 <Letiute> My nvme is writing 7TB to 14TB in 24 hours. Reads are negligible. wriet speed in htop shows 200MiB/s on average. I couldn't have possible written that much TBs as the nvme is itself 1TB. Its 990 pro. Had a firmware problem. 200 -x 60 secs x  60 mins x 24 hrs / 1204 (get gb) = 16,875 GB =  16 Terabytes a day. So it looks like that the writes are
11:33:58 <Letiute> genuine? the OS is writing it. Bu twhere? my /tmp is in tmpfs. How can I be 100% sure and precise?
11:41:57 <dh> RhodiumToad: Depends on how trashed, I've recovered overwritten partitions using data I got with scan_ffs and using a lot of praying (read: cursing), smaller non-binary files with just with inspecting filesystem contents with strings utility and dd
12:42:38 <debdrup> RhodiumToad: is it "undelete" you're looking for, or something else?
12:44:46 <debdrup> sysutils/ffs2recover
12:45:10 <debdrup> I would only use it on an image that's been written to a separate disk using recoverdisk(1)
12:45:52 <debdrup> err, it's sysutils/ffs2recov
12:46:58 <debdrup> sysutils/sleuthkit might also be helpful, depending on what went wrong
12:48:11 <debdrup> oh right, there's also sysutils/magicrescue
13:21:32 <Freaky> meena: the issue is largely ALLOW_MAKE_JOBS_PACKAGES whacking up concurrency, do with being able to set those to build on their own
13:21:55 <Freaky> because they're long builds they tend to clump up
13:29:32 <Letiute> Anyone knows how to know "which files by path were most written in the last 10 minutes and how much in size in total per each file path"?
13:46:10 <Letiute> more info: https://pastebin.mozilla.org/0WCKDQkt
13:46:11 <VimDiesel> Title: Mozilla Community Pastebin/0WCKDQkt (Plain Code)
13:48:54 <meena> Letiute: sounds like something dtrace-toolkit might have a tool for
13:54:15 <Letiute> meena tried a lot but cant get exactly like this
14:45:19 <RhodiumToad> debdrup: not looking for an undelete; I have a filesystem that has been clobbered by some amount of random garbage
14:45:59 <RhodiumToad> the data is of low importance, so I don't want to spend hours pieceing it together, but getting my irc logs back would be nice
14:46:24 <RhodiumToad> already imaged the fs to a file
14:46:53 <RhodiumToad> thanks for the suggestions, I will investigate them as time permits
15:22:25 <Demosthenex> so anyone have a favorite lightweight acme/letsencrypt program?
15:22:37 <Demosthenex> certbot's a mess, i've been burned by it before.
15:22:56 <Demosthenex> i'd almost rather a client that can answer the http query with it's own temp webserver, i don't want unencrypted apache
15:29:38 <RhodiumToad> acme.sh
15:30:05 <RhodiumToad> I use it with dns-based challenge
15:30:41 <RhodiumToad> (no webserver needed, which is good because i don't use it for webserver certs)
15:31:41 <Demosthenex> i saw one that got absorbed into openbsd. i think it was removed from ports
15:31:45 <Demosthenex> sounded good
15:31:46 <Demosthenex> alas
15:32:37 <meena> more servers should implement something like mod_md………
15:33:01 <Demosthenex> oh! oh! they recommend installing by curl | sh on the main page.
15:33:15 <Demosthenex> sounds like that's not an option
15:33:44 <Demosthenex> if they're that bone headed about security on their install doc, the innards are likely crap
15:35:10 <RhodiumToad> the openbsd one was acme-client, I think; I used to use that one
15:35:31 <RhodiumToad> who recommends that? acme.sh? there's a port for it
15:35:43 <Demosthenex> there's a portable listed on the acme implementations page, but i don't see it
15:36:05 <RhodiumToad> the portable version of openbsd acme-client was discontinued
15:36:11 <Demosthenex> RhodiumToad: https://github.com/acmesh-official/acme.sh  "how to install"
15:36:12 <RhodiumToad> (I believe)
15:36:13 <VimDiesel> Title: GitHub - acmesh-official/acme.sh: A pure Unix shell script implementing ACME client protocol
15:36:29 <Demosthenex> curl|sh, an immediate red flag
15:38:17 <debdrup> or you can install from security/acme.sh
15:41:03 <mason> I think the notion is that the folks putting it together think curl | bash is Just Fine
15:41:28 <mason> s/notion/worry/
15:43:49 <debdrup> dvl: https://www.freshports.org/backend/news.php?flavor=new seems to give all new commits now, instead of previously giving new ports
15:43:51 <VimDiesel> Title: FreshPorts newsFreshPorts newssecurity/vuxml - 1.1_6misc/wthrr - 1.0.0security/vuxml - 1.1_6sysutils/javaservicewrapper - 3.5.53devel/maven - 3.8.8games/lander - 0.7.3games/sgt-puzzles - 20230313devel/osc - 1.0.1devel/py-sexpdata - 1.0.0cad/pcb-rnd - 3.0.6cad/librnd - 3.2.2_1devel/py-twilio - 7.17.0games/flightgear - 2020.3.18sysutils/cpu-x - 4.5.2security/tailscale - 1.38.2net/freerdp - 2.10.0devel/aws-c-http -  (6 more messages)
15:43:57 <debdrup> is that intended, or shouuld i file a bug report?
15:44:35 <dvl> Please report it.
15:52:25 <debdrup> mason: oh, I don't disagree, but at the same time, everyone involved in the conversation knows not to do that.
15:54:25 <mason> Say saying it for maximum clarity, for the record. :P
16:22:02 <mason> s/Say/Just/ because EINSUFFICIENTCOFFEE
16:23:53 <debdrup> Coffee IV?
16:24:59 <mason> It's probably the best answer.
16:38:55 <thorre> The IV part got me thingking of system VI :-)
16:43:45 <debdrup> thorre: that was the joke I was going for :)
16:44:14 <thorre> debdrup: we are showing our age :-)
16:46:15 * thorre is at a stage in his career where he has a literal Unix beard but only works with MS Office
16:47:51 <debdrup> When I went to the barber yesterday, I ended up asking to have my beard trimmed a bit because it's getting to the point that there's more white than dark brown.
16:48:11 <thorre> I can relate to that ;-)
16:48:40 <thorre> When I worked with SunOS 2.6 (before Solaris was a thing) I was clean shaven.
16:49:05 <debdrup> It was turning from unix beard into hobo beard, and while I'm sure that look can work on some, it's not for me.
16:49:59 <debdrup> It doesn't grow long enough to become a wizard beard, so I'd rather stick with the Richie classic of a unix beard but trimmed to look good.
16:50:32 <thorre> I visit the barber every 4 - 6 weeks as well. The hobo look is hard to pull off in a professional environment. I worked with a person that had a beard all the way to his belly button for a few years but that is just to much work to maintain
16:50:49 <debdrup> Kernighan has the same trimmed unix beard going.
16:51:11 <debdrup> thorre: that's more of a wizard beard at that point, at least if it's well-kept.
16:52:28 <thorre> For me, when the beard gets to a certain length it gets in the way of drinking beers and eating soup and at that point it needs to go.
16:52:42 <mason> Soup is an issue.
16:52:57 <debdrup> mason: yes, that's true.
16:53:15 <debdrup> thorre: for me that's mostly a case of the mustache needing a trim
16:53:48 <thorre> I have a short upper mustasche with long "whiskers"
16:54:26 <debdrup> I think maybe the barber trimmed my mustache a bit too much for my liking this time, but it'll grow out so meh.
16:54:28 <thorre> So Guinness is ok but soup is problematic
16:56:08 <thorre> debdrup: My barber and I had a conversaiotn about the length of my moustace at one point in time. The conversation ended with the barber saying: "So we do want the upper lip overgrown in order for your mouth not to look like a cats ass".
16:56:49 <thorre> Sometimes I get the impression that I have been visiting the same barber for a very long time and that our relationship may be a bit to personal.
16:57:02 <thorre> But in essence the barber was right ;-)
17:00:06 <thorre> Back OT
17:00:55 <thorre> Do we know if FreeBSD has any representation or presence at KubeCon in Amstersdam? I would like to meet up if any of us are there.
17:02:02 <debdrup> thorre: well, if you're going then yes? :P
17:02:26 <ElectricJozin> Where are the default make rules stored in freebsd
17:02:37 <ElectricJozin> the manual says /usr/share/make/make.rules
17:02:40 <debdrup> ElectricJozin: it depends, what rules are you looking for
17:02:50 <ElectricJozin> the default o: .c one
17:03:12 <debdrup> /usr/share/mk/ has the entirety of the make infrastructure in it
17:03:25 <thorre> debdrup: I'll be in Amsterdam from the 16th ot the 22nd of April.
17:03:41 <ElectricJozin> debdrup, Thats also a lot of files, where should I look?
17:03:51 <debdrup> ElectricJozin: you should use grep :3
17:04:14 <debdrup> (I don't remember, sorry)
17:04:52 <ElectricJozin> The problem with grep is that I want to search for: "%.o: %.c" like a normal person
17:04:59 <ElectricJozin> whats the equivalent bsd syntax
17:05:26 <debdrup> Is your favorite flavour of grep not in ports/packages?
17:05:38 <ElectricJozin> I mean grep
17:05:44 <ElectricJozin> I mean make
17:05:46 <ElectricJozin> bruh
17:06:00 <ElectricJozin> I havent used BSD makefiles before
17:06:15 <ElectricJozin> whats the syntax for a rule that compiles c into object code
17:06:40 <debdrup> If I remembered, I'd tell you - which is why I'm telling you to go look for it.
17:07:10 <thorre> After using neovim and telescope ff for a while if have grown fond of ripgrep
17:09:28 <jilles> elastic_dog, .c.o: rule, and the magic target .SUFFIXES also plays a role
17:10:05 <debdrup> jilles: they left.
17:40:22 <Demosthenex> wait, apache with mod_md can renew it's own certs? why use an external tool?
17:41:19 <meena> yuppp
17:41:37 <meena> you still need to restart tho, but, yeah
17:47:00 <Demosthenex> AND mod_md is included in the default apache24!
17:50:13 <meena> Demosthenex: thanks to me ;)
17:50:34 <meena> only took two years or so
17:50:51 <Demosthenex> you rock
17:51:16 <meena> yeah I do. i just wish i was more consistent in my rocking :D
17:52:10 <meena> what's not yet in the default set, and what mod_md also supports is mod_tls
17:52:48 <meena> which is a TLS module implemented in Rust (and then compiled to C?)
17:56:34 <meena> it's implemented in C, but links to rustls: https://github.com/apache/httpd/tree/trunk/modules/tls
17:56:35 <VimDiesel> Title: httpd/modules/tls at trunk · apache/httpd · GitHub
17:58:52 <meena> https://www.freshports.org/search.php?query=rustls&search=go&num=500&stype=name&method=match&deleted=excludedeleted&start=1&casesensitivity=caseinsensitive :(
17:58:57 <VimDiesel> Title: FreshPorts -- Search
18:01:50 <meena> I wonder how hard it would be to port it
18:56:10 <jarebear6expepjo> how come executing a sh script with '. script arg1' does not have access to $1 but './script arg1' does?
19:01:59 <Demosthenex> jarebear6expepjo: you're sourcing it in the current context. arg1 is ignored.
19:02:39 <Demosthenex> https://superuser.com/questions/176783/what-is-the-difference-between-executing-a-bash-script-vs-sourcing-it
19:02:40 <VimDiesel> Title: linux - What is the difference between executing a Bash script vs sourcing it? - Super User
19:03:03 <jarebear6expepjo> ty
19:03:56 <Kalten> sourcing reads the code—it is like coping it into the outher script
19:04:15 <Kalten> the environment is shared this way
19:04:39 <Kalten> when executing it, the environment is not shared
19:05:31 <jarebear6expepjo> ok in the past i recall executing script with ./script arg1 and within that script passing args to another script with . script arg1
19:05:33 <Kalten> when sourcing you cann call functions defined in the sourced script (like #include in C)
19:06:28 <jarebear6expepjo> so im assuming it took on the parent env
19:07:03 <Kalten> when soourcing, I think, the environments are even merged
19:10:14 <jarebear6expepjo> yeah works as expected
19:10:18 <jarebear6expepjo> neat
19:37:03 <Demosthenex> hrm. so i may not be able to use mod_md. :P
19:37:46 <Demosthenex> my criteria are: my real HTTPS server is on a nonstandard port, so certbot and other acme won't use it. i can run a temporary service on 80 or 443, but insist it only be used for renewal and offline after. i don't want those ports open at all.
19:38:10 <Demosthenex> i know certbot has some temp server option, but i've been burned by it before. i'd prefer a tool that doesn't change daily
19:39:01 <AndroidToad> Are you able to use dns challenges?
19:42:04 <meena> jarebear6expepjo: i don't know why, but i keep trying to read your name as Cyrillic
20:02:31 <Demosthenex> angry_vincent: unfortunately not that i'm aware.
20:02:36 <Demosthenex> AndroidToad: sorry ^^
20:02:58 <Demosthenex> i think i'd rather spin up a temp server and stop it only for auth. i could script one in a jail and pf allow/deny
20:03:01 <Demosthenex> just added complexity
20:05:35 <Demosthenex> i just don't want an always on http/https server on the standard port. my nextcloud instance is on nonstandard for all 3 clients ;]
20:40:37 <jarebear6expepjo> unsuccessfully? meena
20:49:32 <debdrup> Demosthenex: nginx with https-only reverse proxy with basic or digest auth, that way nobody can hammer the login portal
20:51:13 <Demosthenex> debdrup: is the port open?
20:51:39 <debdrup> Demosthenex: i think that's missing the point of what i wrote
20:51:50 <Demosthenex> is it? a closed port needs no auth.
20:52:20 <debdrup> a closed port needs you to interact with it some way, and at that point you're basically just reinventing port knocking which has shown to not work without TOTP
20:52:33 <debdrup> so you may as well do port knocking with TOTP
20:52:33 <Demosthenex> for acme auth?
20:52:40 <Demosthenex> that's all i want to do
20:52:46 <Demosthenex> open port, acme auth to get cert, close port
20:52:47 <debdrup> use dns based auth
20:52:57 <Demosthenex> i can't :P
20:53:10 <debdrup> can't, or wont?
20:53:12 <meena> jarebear6expepjo: yeah, very
20:54:32 <Demosthenex> debdrup: afraid.org dyndns.
20:54:55 <Demosthenex> to my knowledge, i can't add any record. and let's encrypt is already upset at afraid.org :P
21:42:52 <AmyMalik> vtfontcvt is the answer to the question I was about to ask that is the X to the Y that I meant to ask
21:44:02 <AmyMalik> (what format is /usr/share/vt/fonts/*.fnt, how do I convert from a pcf to that (feed the output of pcftobdf into vtfontcvt))
21:48:08 <AmyMalik> (context: i want to change my FreeBSD `vt` font to Terminus 22px, because 26px is 12pt on my laptop's screen (which is the height of the default VGA font on a 96px/in screen) and I wanted a slightly smaller terminal font)
21:50:18 <AmyMalik> (well, pcf2bdf, as it happens)
21:51:04 <tsoome> AmyMalik set screen.font on loader prompt
21:51:39 <AmyMalik> uh
21:51:42 <AmyMalik> ok
21:52:42 <AmyMalik> that's to change the loader font?
21:53:24 <tsoome> yes, and it will be passed to the kernel
21:56:03 <tsoome> once happy, you can add screen.font=XxY to loader config.
21:57:23 <AmyMalik> right
21:58:23 <AmyMalik> I'll have to copy it to /boot/fonts/ter-u22.fnt, I take it, and set screen.font=ter-u22?
21:58:34 <AmyMalik> ... do I have to gzip it, or will it work fine bare?
21:58:57 <tsoome> no, boot/fonts has terminus already
21:59:37 <tsoome> screen.font will get glyph size (without value, you get the list of values)
22:00:11 <AmyMalik> ah.
22:00:30 <tsoome> if you want something else than terminus, you need to create fnt file and you can load it with loadfont command
22:00:55 <AmyMalik> I want terminus, but in sizes not shipped by FreeBSD - which I think counts as "fonts not terminus"
22:01:28 <tsoome> what you have in /boot/font ?
22:01:51 <tsoome> fonts*
22:13:17 <AmyMalik> oops. lost all my line drawing characters. minor embarrassment
22:13:37 <Kalten> ROTFL
22:13:52 <AmyMalik> plus, turned out the size i wanted was already in there
22:13:59 <Kalten> This statement sounds awfully british ;-)
22:14:08 <AmyMalik> yes, I used to be british
22:14:22 <AmyMalik> serves me right, minor learning experience, everything still works
22:14:25 <AmyMalik> etc etc etc
22:15:03 <Kalten> You made my day a little bit more joyfull :-)
22:23:56 <antranigv> is there a way to make dpv act just like pv?
22:37:26 <debdrup> I'm not sure what either is good for, so I'm probably not the right person to answer that question :3
22:38:31 <antranigv> debdrup well, I'm doing zxfer, so I'd really like a progress bar :D
22:39:25 <debdrup> How can you get a progress bar on a stdio datastream?
22:39:31 <Kalten> sysutils/pv
22:39:32 <Kalten> https://www.freshports.org/sysutils/pv
22:39:33 <VimDiesel> Title: FreshPorts -- sysutils/pv: Pipe throughput monitor
22:40:00 <debdrup> That doesn't really answer my question,.
22:41:44 <Kalten> if you e.g. do a `pv file` it tells how many percent have been transphered yet, including a progress bar etc.
22:41:47 <debdrup> https://www.ivarch.com/programs/images/pv.png tells me it's nothing like what I was imagining.
22:42:33 <debdrup> It's pretty obviously a lot more complex than `pv file`, so I'm just gonna stick to mbuffer and SIGINFO when I forget about that.
22:42:44 <Kalten> e.g. `pv bsdimage > /dev/da0` or the like to see the progress on writing a boot image to a USB stick
22:43:45 <debdrup> Yes, it's not something you put in the middle of a pipeline, it's scattered all throughout the pipeline.
22:44:22 <Kalten> “progress ON writing” … ist that correct? “progress OF writing“? sounds all strange to me
22:45:11 <V_PauAmma_V> My instinct would be "progress writing".
22:45:22 <antranigv> Kalten what about dpv? the problem is that it's not sending it to stdout
22:46:02 <Kalten> V_PauAmma_V: hmmm…
22:46:12 <debdrup> Still kinda seems to me that it's solving a problem that doesn't exist when you have SIGINFO integrated into the relevant parts of the base system.
22:46:28 <V_PauAmma_V> (But I've been known to be wrong.)
22:46:33 <Kalten> antranigv: I have not found this port yet.
22:46:44 <antranigv> Kalten it's not a port, dpv is part of base
22:46:46 <debdrup> V_PauAmma_V: happens to the best of us, and the rest of us.
22:47:21 <Kalten> ah!
22:51:10 <Kalten> antranigv: you mean, dpv does not send the file to stdout?
22:51:34 <antranigv> Kalten not by the looks of it... unless I'm missing something
22:52:36 <Kalten> -o for the target file, according to the manual page. Strange thing
22:53:55 <antranigv> Kalten I'm thinking of doing -o /dev/stdout
22:56:16 <Kalten> to which file handle does it write its output???? redirecting stdout of it as well as redirecting stderr does still let it write to the terminal...
22:59:20 <Kalten> can even send the output to another program by -x so `-x cat` ?
23:01:09 <Kalten> dialog(1) is used, it seems, and that talks about --output-fd  --stderr --stdout and that stderr would be the default for dialogs output
23:01:56 <antranigv> Kalten aaaaaa, -x cat makes sense, but when I have a pipe after dpv, it doesn't do anything
23:02:04 <antranigv> this is making me crazy!
23:08:14 <Kalten> A shell script mybe:
23:08:14 <Kalten> ...8<--- bla.sh
23:08:15 <Kalten> #!/bin/sh
23:08:15 <Kalten> cat
23:08:16 <Kalten> --->8...
23:08:16 <Kalten> and -x to that?
23:10:02 <antranigv> also didn't work. now trying with -o /dev/stdout
23:10:07 <antranigv> nope