00:10:36 can 1 service reload or restart another service? 00:13:39 I believe so 00:14:01 there any prior art? 00:31:20 i'm trying to go the most direct path from cloning freebsd-src to a scripted bsdinstall iso. so i make buildworld/kernel, but there's no etc/usr/ dir to copy my distributable.txz into usr/freebsd-dist/. and release/amd64/mkisoimages.sh errors boot/loader.efi no such file or dir. what's wrong? 00:32:50 usr/ dir, not etc/usr/ 00:37:37 buildworld doesn't install the world anywhere 00:38:30 oh so usr/ and all that is built and ready, but it has to be put somewhere? 00:38:37 if you want to make an installed system image you can do make -DDB_FROM_SRC DESTDIR=/path/to/dir installworld installkernel distribution 00:38:54 that won't touch the system i'm running it on right? 00:39:02 as long as you set DESTDIR 00:39:20 if you don't set DESTDIR, it will indeed bugger up the running system 00:39:26 whoa 00:39:33 do i have to sudo run this too btw? 00:39:56 yup 00:43:01 think i got it, i build with sudo make -j8 buildworld buildkernel KERNCONF=GENERIC then i INSTALL to a place with sudo make -DDB_FROM_SRC DESTDIR=~/temp/build installworld installkernel KERNCONF=GENERIC right?? 00:43:20 you forgot the distribution target 00:43:26 that's the one that makes /etc and so on 00:43:49 oh distribution, what's that? 00:44:03 my custom.txz in the DISTRIBUTIONS field in bsdinstall script? 00:44:12 make -DDB_FROM_SRC DESTDIR=~/temp/build KERNCONF=GENERIC installworld installkernel distribution 00:44:26 but what do i put for distribution? 00:44:37 the literal word "distribution" 00:44:45 loool 00:44:52 k trying now !! 00:51:09 sorry forgot i make cleaned last night before going to bed so i gotta rebuild now 00:51:22 using all my cores i got it down to like 15 min tho 01:04:27 running 01:05:54 it's there!! 01:06:21 thwhere does boot/loader.eli come from that's still missing? 01:06:38 .efi* 01:06:57 no wrong, it is 01:07:05 weird ls showed different 01:07:28 i wonder if zfs or the terminal was like, stale 01:07:45 ty RhodiumToad!! 01:08:25 there's no usr/freebsd-dist, so do i just make that and put my custom.txz in there? or is there a different route since i'm compiling from source? 01:08:46 just make that 01:09:30 and the only distribution then that will be in freebsd-dist is my custom.txz. i don't need to put base.txz and kernel.txz in there like i have been? 01:09:40 i was before just because i started with an extracted iso distro 01:09:46 that had stuff in freebsd-dist already! 01:16:35 in the installed freebsd dir there is a regular environment but no mkisoimages.sh, why not? 01:18:00 where am i *supposed* to be getting the .sh from that i make an iso image with? from the dir going into the iso, or from the host system, or? 01:19:05 mkisoimages.sh is part of the sources, not part of the built system 01:19:21 ya, ok so use the one from the repo got it 01:19:44 so btw freebsd-dist only having my custom.txz is ok? 01:19:51 well nvm i'll just test it sorry 01:19:57 tyvm 01:20:07 it needs to have whatever distributions you tell bsdinstall to install 01:20:58 can we install a system with no distributions not even base? 01:21:26 what would that even mean? no files? 01:21:27 when i tried it still installed like normal 01:21:30 ya i dunno 01:21:34 but i put nothing for it 01:21:42 DISTRIBUTIONS="" or whatever 02:29:50 is there a git repo or blog post with all this cool stuff? 03:04:58 not that i know of 03:06:26 i got pflog_enable="YES" in rc.conf but tcpdup --list-interfaces doesn't show pflog0 like it should. why's that? 03:12:15 oops got it 09:37:52 anyone tried /usr/obj on tmpfs? that is building world and kernel in tmpfs. how much size is needed, assuming llvm build 11:44:38 iirc, 20-odd gigs for amd64 world+kernel 11:49:02 maybe a bit more if you don't prune out some stuff 11:51:18 ok. so not yet on this laptop. i have 16G of RAM. not planning ram update 11:52:15 i prune unneeded from base. but not from kernel 13:03:50 hello 13:05:33 <_xor> How does ipfw handle rules added/removed/enabled/disabled via cli after starting the firewall? 13:05:45 Hi. I'm having a problem where my GPT labels are being removed during boot. At the moment, /boot/loader.conf looks like this https://0x0.st/HWGZ.txt and my dmesg looks like https://0x0.st/HWGN.txt.1 13:06:00 <_xor> Also, can ipfw refresh rules that are specified using DNS instead of IP? 13:06:49 You can see the label is created "GEOM_LABEL[1]: Label for provider ada2p2 is gpt/freebsd-root." and then a few moments later it's removed "GEOM_LABEL[1]: Label gpt/freebsd-root removed." 13:07:22 <_xor> Evaluating and possibly moving to ipfw is on my to-do list, but not really high priority. I have a need for manipulating dynamic rules, which I can do with my pf setup (anchors + pfctl), but want to do a quick review of an approach using ipfw before I go ahead and implement it all in pf. 13:07:33 <_xor> Well, "using" pf, not "in" pf heh. 13:08:55 <_xor> FragmentedCurve: Got any more surrounding lines on that dmesg? 13:09:58 https://0x0.st/HWGN.txt 13:10:23 That's the full dmesg output 13:15:00 Michael Dexter asked me to run this, so I wanted to share it as well: https://weblog.antranigv.am/posts/2023/10/bhyve-cpu-allocation-256/ 13:15:02 Title: bhyve CPU Allocation Test for 256 core machine | Freedom Be With All 13:18:23 _xor: Any ideas? 13:18:44 <_xor> Haven't looked yet, need to finish this script, will look after. 13:22:00 <_xor> From a quick look, and mind you I'm not super experienced with geom (so take this with a grain of salt), but an obvious first thing to try is use gpart to check GPT+partitions states. 13:22:19 <_xor> As in make sure it's not corrupt or whatnot. 13:22:56 <_xor> Should be a read-only action that takes a few minutes to eliminate that possibility. 13:32:49 gpart status and gpart recover don't report any corruption. 13:34:56 Also, if I boot into the livecd from the installer, all the labels show up fine under /dev. 13:40:22 FragmentedCurve: glabel entries are removed if the backing device is opened exclusively via another name 13:41:20 FragmentedCurve: so for example if ada2p2 is mounted under that name, then gpt/freebsd-root is removed 13:42:23 RhodiumToad: Ah, thank you. I just booted into single user mode too and see the labels aren't removed. Is there a way to disable that behavior? 13:42:56 no 13:43:21 that would defeat the point of exclusive opens 13:44:35 it's easier to understand if you look at the graphical display of the geom graph, which you can get by installing graphviz and doing sysctl -n kern.geom.confdot | dot -Tsvg >geom.svg and then displaying the svg in any handy viewer 13:45:16 the rNwNeN entries mean the number of read, write and exclusive opens 14:11:40 i am trying to install freebsd on a new dell vostro laptop. I have used win32diskimager on windows to make a live USB, and i have verified the checksum as specified in the manual. I've disabled secure boot and i've made my USB the main bootable device. however, it doesn't seem to boot into the live usb. what should i do to make it work? 14:12:21 (i understand that dell isn't very good with freebsd support, I'd like to do it as an exercise at the very least.) 14:13:04 Can you explain in more detail what you mean by "it doesn't seem to boot into the live usb"? 14:14:37 well, it seems to show a black screen for a few seconds, and then boots into windows 14:16:27 this is after configuring the boot options in the menu and choosing uefi usb boot 14:18:08 "UEFI" might be the sticking point. Do you have an EFI USB or BIOS USB option? 14:20:45 i will check that and get back here. thanks 14:22:25 which image did you use? some of the hybrid images have issues with some BIOses 14:22:28 oops, too late 14:30:06 my laptop doesn't have legacy boot support. 14:30:30 is there an alternate method to make the usb work for an install? 14:31:35 "< RhodiumToad> which image did you use? some of the hybrid images have issues with some BIOses" "< RhodiumToad> oops, too late" 14:33:37 oh, I used https://ftp4.tw.freebsd.org/pub/FreeBSD/releases/ISO-IMAGES/13.2/FreeBSD-13.2-RELEASE-amd64-memstick.img 14:34:38 that should be fine... 14:35:29 i see. I'll look at my bios again and see if there is a setting i can tweak 14:35:55 I'll make a forum post if not 14:36:06 that image is MBR-partitioned rather than GPT, but it has a valid UEFi ESP 14:38:04 https://wiki.freebsd.org/Laptops#A-F seems to be saying some Dell Vostro models work. Is yours one of those? 14:38:06 Title: Laptops - FreeBSD Wiki 14:38:32 they left again 14:38:59 Thanks0 14:39:06 s/0/./ 14:46:12 https://wiki.freebsd.org/Laptops#A-F seems to be saying some Dell Vostro models work. Is yours one of those? 14:46:13 Title: Laptops - FreeBSD Wiki 14:47:24 i checked the website for my model, it is too new, it's a Vostro 5630 14:47:55 the older ones as i've checked from tutorials seem to have legacy boot 14:48:27 this thread: https://forums.freebsd.org/threads/unable-to-install-freebsd-bios-freezes-with-usb.83575/ seems to have an idea, but i need another usb for that.. 14:48:29 Title: Unable to install FreeBSD, BIOS freezes with USB | The FreeBSD Forums 14:48:35 That doesn't mean it can't be made to work, just that no one has reported on it. 14:50:46 i do believe there should be a way, i guess i will set up a forum post with more details and pictures 14:55:01 Good luck! 17:20:44 mage: The problem with my jail that I was talking a bit yesterday is that I'm not able to install any packages as it seems to say insufficient privileges when it's mounted ro for the most part and only specific ones are read-write. For reference I tried to install via the pkg tool, with: "pkg -j bind install bind" 18:22:38 <_xor> Quick opinions, how much of this do you agree with? https://www.youtube.com/watch?v=YsBxS2WswBw&t=3447s 18:22:39 Title: Michael W. Lucas talks FreeBSD (and whatever else he wants) - YouTube 18:22:52 <_xor> 57:30 - 59:15 (link is timestamped, too) 18:23:46 <_xor> Specifically the part where he said "80% of people use pf; that's where the loves goes", which got me wondering how much dev activity ipfw sees vs. pf. 18:34:34 I only use ipfw on FreeBSD, so I guess I'm part of the 20%. Alternately, his numbers are made up. 18:37:03 50% each here; new firewalls would be pf 18:39:20 Sorry I forgot one machine not running that has pf installed. So 66.7% (out if 3) in favor of pf 18:45:48 _xor: is there a resoning for the claim that pf is _the_ modern firewall? 18:46:43 so from what I want and need from a firewall pf and ipfw has these features, and I prefere the ipfw config style 18:51:08 Used to use ipfw before pf got on the scene, then took a break from FreeBSD, then came back to FreeBSD in 2019 and decided to look at pf since it was an option then. I find the pf syntax - or maybe its description in pf.conf(5) - slightly less confusing, so pf it is. Which doesn't contribute much to overall ratio, since I only have one computer. 18:54:39 V_PauAmma_V, What are you talking about? That's 100% pf on your side! 18:59:42 For 1 computer. I doubt that's anything but background noise in the overall ratio. 19:08:43 <_xor> mason: Yeah, the 20% number certainly seems made-up, though I think he meant it more as a figure-of-speech instead of an actual citable number. 19:09:42 <_xor> satanist: No idea if it's more modern. It's newer than pf, that much is objectively true. Beyond that though, I don't know if it means anything beyond that. 19:09:57 <_xor> er, I meant pf is newer than ipfw. 19:10:27 <_xor> Though from the man pages, ipfw seems to have a superset of features that pf offers (as far as I can tell). 19:12:13 <_xor> V_PauAmma_V: I used ipfw (and ipf for a brief period) in the late 90s and early 2000s, then switched to pf. I'm contemplating utilizing ipfw again after seeing how much it has evolved since I last used it and for my use-cases, it might be easier to manage than pf. 19:12:47 <_xor> pf works fine for me though, for the most part. Dynamic rules feel kind of strange with anchors and * children. 19:13:01 <_xor> ipfw looks like it can handle tables without needing a reload, which makes more sense to me. 19:14:36 <_xor> I should stop saying "dynamic rules", since I think that specifically means rules created and deleted by the firewall itself during processing (e.g. state). What I mean is rules that are added/removed after the firewall is initialized and is ready for processing. 19:38:37 * V_PauAmma_V nods at _xor. 19:39:18 ipfw has no trouble at all handling new table entries or entire new rules added on the fly 20:34:36 42.7 percent of all statistics are made up on the spot. 20:35:15 The reputation of pf is that it is an excellent firewall. And the standalone pfsense has increased that reputation by making it accessible to the unwashed masses. 20:36:15 The upstream for pf is OpenBSD and OpenBSD's pf has the reputation for the most efficient pf implementation. It's fastest on the same hardware. 20:36:49 That FreeBSD has a forked version and has been unable to merge back with upstream is less than great. In a perfect world FreeBSD pf would be in sync with upstream OpenBSD pf. 20:37:36 I personally don't like the configuration style of pf. It's not the way I like to do things. But I am spending all of my effort on firewalls with pf regardless. 20:38:24 * RhodiumToad likes ipfw 20:39:06 As far as I can see I don't think anyone is looking to pry ipfw out of FreeBSD. But M. Lucas is giving his expert opinion that if newbies are looking at a firewall that they should learn pf and I agree that from what I see that is not bad advice. 20:39:48 For one thing it means that if they want "the best" implementation of pf then they can transition to an OpenBSD pf implementation more easily. 20:40:12 And I wish FreeBSD were able to merge the pf implementations back together again so that I would not need to say that. 20:41:49 O.o 20:43:43 maybe in your crowd you dont see the firewall software available inside the source tree being used that much ! but that does not mean is not used at all 20:44:02 huh? 20:44:08 As I understand it, FreeBSD and OpenBSD's kernel internal interfaces are different enough that this isn't a realistic option. 20:44:09 both ipfw and pf are in tree 20:45:03 V_PauAmma_V, That's the problem as I see it too. Things have diverged a lot. If it were easy then it would have been done already. It's now a hard problem. 20:46:23 I'm not a kernel dev, so I won't venture an opinion of my own on feasibility or hardness. 20:47:19 (Or effect on filtering performance.) 20:48:07 This is all opinion discussion. Above _xor asked how much people agreed with M. Lucas in that user group talk. 20:48:22 I think if people are using ipfw and happy then they should keep being happy and keep using it. 20:50:14 I think that generally people on the outside when they think of *BSD firewalls though that they think of pf. And pfsense (on FreeBSD too!) has increased that visibility. 20:50:50 But honestly *BSD firewalls are only a small fraction of the Linux netfilter firewall use. Outnumbered by massive numbers there. 20:53:10 * rwp steps off the soapbox and steps outside for a little sunshine and exercise 20:54:19 * V_PauAmma_V stows the soapbox in its appointed place and wanders off for a nap. 23:31:52 <_xor> Just guessing based on what I'd imagine it would be like to merge FreeBSD pf with OpenBSD pf, but I'd have to imagine it would be a pain based on just knowing that FreeBSD's version of tree since it was originally merged in has added multi-threading. 23:32:31 <_xor> So I'd imagine all of the sync primitives and data structures required would be scattered about all over the place, not contained within a few specific places. 23:54:41 yep 23:57:19 it would be nice for a very specific comparison of syntax and things between freebsd and openbsd pf