03:29:31 why does chrony depend on python39 down its dep tree? that's so old 03:32:40 alepzi: Python 3.9 is the current default version in ports. if you want to change that, you need to set DEFAULT_VERSIONS appropriately and build from source. switching to 3.11 default is in progress 03:32:58 lw know when that'll land? 03:33:01 14.1 or? 03:34:18 it's not tied to freebsd version, it's the same ports tree for every freebsd version. it'll be whenever it's done and tested and all the python ports work. i don't know what the current status is off hand. 03:34:31 (there might be something in phabricator perhaps) 03:35:27 tyvm! 04:11:10 hi, I ran into a problem with samba/gnutls initialization after updating the port. libc pthread_key_create() is returning ENOSYS ('function not implemented'), which is really confusing me. Help? https://pastebin.com/raw/bPgcDN7m 04:13:37 oh. "If libpthread is linked, it will override these placeholder functions with (non-weak) routines." - so it's just missing libpthread? 04:14:36 yes 04:15:38 libc has weak stubs for pthread functions to fail if libpthread isn't otherwise linked in to the binary 04:19:53 I wonder what went wrong then. I checked all recent port changes and nothing stands out. except LDFLAGS is being set 04:31:12 my bad, samba Makefile has a CONFIGURE_ENV= PTHREAD_LDFLAGS="-lpthread" 04:31:37 does this get overwritten by putting CFLAGS= on the commandline when doing a custom test build? 04:34:59 fortunately it has a WITH_DEBUG toggle, but I'd be interested to know how to avoid messing up the internal flags (if that is what happened) 05:57:04 didn't work, same failure. if I roll back gnutls, it magically works again. so there's some bad interaction with the new update, and I guess it hasn't been caught yet 08:43:34 hi guys, I couldn't find anything but maybe someone knows, is there an issue with virtio network drivers on freebsd 13.3-RELEASE ? I have a virtualized router/firewall running 13.3, only ICMP was passing through with virtio nic but couldn't do anything with tcp/udp, swapped to e1000 and everything works flawless. I don't remember having this type 08:43:34 of issue with 13.2 08:53:02 my bad disabling rxcsum works, I thought this issue was resolved since forever 08:59:54 * lw wonders what "Kerberos/GSSAPI patch" option does in security/openssh-portable 09:44:08 anyone else have trouble getting libvirt with bhyve backend to properly work? virt-manager doesn't update vm states, which breaks some basic features like reboot and force-off, can't get spice to work and the overall experience is pretty janky… 09:47:38 when trying to create a win10 vm, the os selection dialog doesn't let me choose anything (but i can still click "forward"), i never get the setup, but rather just stare at the "tianocore" logo forever and when i try starting the vm again it explodes because something something vnet even though i told it to use bridge0 and i don't even know where to begin debugging this entire mess… 09:51:39 i can get linux vms to work, there i only have to work around the vm state jank and for some distros have to move the uefi loader to the same location the freebsd uefi loader would be (something something bootx64.efi), so it doesn't seem to be *completely* broken. 10:20:57 eh, fuck it, going for raw bhyve without a zillion poorly documented abstractions. :F 10:21:15 phryk: have you looked at sysutils/vm-bhyve? 10:21:32 it doesn't have libvirt's remote management stuff, but it's a little easier to use than calling bhyve directly 10:21:37 lw: yes, it already explodes when trying to use onestart instead of having vms running constnatly… 10:22:04 don't use onestart, just don't put the VMs you don't want to auto-boot in vm_list, and start them manually with 'vm start foo' 10:22:42 sorry, a service that fails with onestart is too sus. 10:24:06 vm-bhyve leaves a lot to be desired but it's certainly usable, you just kind of have to know what you're doing sadly 10:24:42 yeah, that's essentially worthless for me. going for direct bhyve use is going to be more involved but at least i explicitly do every step and see the errors along the way and it's actually documented. 10:24:44 i remember hearing about this: https://gitlab.com/swills/cirrina but i don't know how mature/usable it is 10:24:45 Title: Steve Wills / cirrina · GitLab 10:24:52 seems to have releases, though 10:25:40 phryk: vm-bhyve gives you errors, you just have to set debug to "yes" or "true", i forget which. there's vm-bhyve.log and bhyve.log. the latter is a direct bhyve error log 10:33:12 mhh, and the bhyve part of the handbook doesn't document how to run windows, either. :/ 10:33:17 guess i don't have much of a choice… 10:41:45 does bugs.freebsd.org feel really slow for anyone else today? 10:41:52 takes like 5-10 seconds to submit a comment 10:42:09 lw: it's loading fairly slow on my end, but that could be unrelated 14:03:25 hmm, not sure i chose the best time to update my local source tree to main, right after the llvm merge... 14:03:32 hey folks, how are you? 14:03:40 the last commit message is "Fix arm64 build (take 2)" :-d 14:04:16 I know that FreeBSD can use SLAAC and rtsold. I was wondering if there's a way to act as a SLAAC "server"? Basically, I want my host to assign IPv6 to my VNET Jails. 14:05:12 lw: yeah, some llvm regressions and trying to use the FPU in places that had a compiler flag that disables it :) 14:05:19 antranigv: rtadvd(8), if by "slaac server" you mean you want freebsd to response to ICMP Router Soliciation 14:05:23 nothing too serious as far as i can tell so far anyway 14:06:00 lw, indeed. however, while the jails are getting the router's LinkLocal address, they are not getting any public routable IPv6 addresses. 14:06:24 dstolfa how's life in the forums? :) haven't checked in a while :D 14:06:32 antranigv: wouldn't know, i don't use them :D 14:06:39 antranigv: did you configure the appropriate prefixes in rtadvd.conf(5) ? 14:06:44 * dstolfa stays on irc, sometimes mailing lists and phabricator for the most part 14:06:50 otherwise it won't know what prefix to advertise to the client 14:07:01 dstolfa same here…. same here :D 14:07:12 lw I did indeed, here's what it looks like 14:07:42 bridge0: :addr="2001:470:7a1b:2001:1411::":prefixlen#80: 14:07:44 antranigv: other than that, i'm seeing if there's any hope for freebsd to run dtrace tests in the CI to catch some painful regressions earlier 14:08:10 dstolfa we also have a DTrace issue in the system headers, not sure if anyone has noticed it, but we did. I think I forgot to send a PR 14:08:12 there were concerns about doing it before because we didn't closely look at the test suite, so things could crash. however i'd argue it's in a much better state today and quite useful 14:08:18 antranigv: can you show the output of 'tcpdump -nvi ' on the jail while it's sending router solicitations? 14:08:30 lw indeed. one sec :) 14:08:58 i haven't actually used rtadvd for... well, probably since you still had to apply the KAME patch to get IPv6 support :-d but maybe the problem is something obvious 14:10:37 dstolfa: more annoyingly i just noticed this bumped __FreeBSD_version so i need to rebuild all my packages... the build i started this morning hasn't even finished yet! 14:12:32 antranigv: oh, it occurs to me that you might need to start rtsold(8) on the jails, if you didn't already 14:12:57 otherwise you have to wait for the router to send an unsolicited RA which can take ~10 minutes in some default configurations 14:13:59 i also wonder if freebsd even support SLAAC on a subnet size other than /64, that's a fairly unusual config 14:15:10 DHCPv6 might work better there, except FreeBSD doesn't include a DHCPv6 client... not sure if there's one in ports 14:15:16 lw here's the host, jail and other things https://gist.github.com/antranigv/eacfe74e8f788e1f25dbb3892841e71d 14:15:17 Title: Host · GitHub 14:15:39 lw there is indeed one in ports that also support Prefix Delegation, I think it's DHCPCD 14:15:47 ah ofc! that might be the issue! 14:16:06 I should "divide" my /48 to /64s 14:16:10 well, you don't need DHCP-PD for this, just managed address configuration 14:16:19 but yeah, if you have a /48, just give each jail a /64, you're not going to run out 14:16:20 Instead I divided my /64 to /80s :D 14:17:34 okay, lemme try and report back 14:17:52 you could divide it into /56s, then assign one /56 per jail host, which would give you 256 hosts with 256 jails each (or you know... do it however you like :-) 14:18:14 i just give a /128 to each jail and advertise that in OSPF... works well for IPv4 too 14:18:53 My IPv6 math still sucks. If I have a /48 and a single host, should I assign /64 to each Jail? how many /64s are in a /48? 14:19:02 65536 14:19:26 (64-48 is 16) 14:19:31 % echo '2^(64-48)' | bc 14:19:31 65536 14:19:43 useful maths to memorise for ipv6 14:20:28 antranigv: it really depends how you want to do it, and i guess on what the jails are doing? if you're using vnet though, and you don't have any particular preference, using a /64 for each ethernet segment is fairly reasonable 14:20:34 (one epair being one ethernet segment here) 14:20:47 indeed 14:21:10 so I set a /64 to the bridge 14:21:15 and then the bridge advertises that 14:21:23 and then the jail gets a single IP from that 14:21:28 oh you're using a bridge, right, so all the epair are in one segment 14:21:35 but yeah, that sounds right 14:21:37 indeed! 14:21:44 perfect, time to try and hopefully blog 14:22:12 you might want to set a fixed ethernet (MAC) address for each epair so every jail gets the same IP address every time it boots 14:22:19 otherwise you will have issues adding DNS entries etc 14:23:30 lw I'm using `jailer`, which always sets a static MAC 14:23:35 ah ok 14:24:03 it worked! 14:24:06 so it had to be /64 14:24:13 nothing less than that 14:24:32 yeah, i'm not sure why rtadvd even lets you configure that, i'm not sure slaac works at all in non-/64 subnets 14:24:42 maybe some weird edge cases need it 14:25:02 or maybe if you want static address configuration but still use router advertisements... 14:26:46 this reminds me, i want to try a kernel without 'options INET' on my new ipv6-only VPS, that should turn up a bunch of broken things i can send patches for 14:28:48 lw mine is indeed the third case 14:30:27 hm... does rtadvd not support advertising PREF64 (RFC 8781)? 14:31:00 guess i need to send a patch for that too 14:41:02 so i've been using nginx for basic web serving since forever, but i don't really love it... i was looking at www/obhttpd (OpenBSD's httpd) but it seems to be maintained by a single person which makes me a bit nervous. i know about lighttpd, but does anyone have any other preference? 15:03:55 learning anything new with it's own paradigm can be annoying at first, but caddy config is simple. 15:09:30 scoobybejesus: looks interesting, thanks 16:52:15 bugs.freebsd.org slow to load for anyone else? 16:55:04 @skered yes for me as well 16:55:50 ipv6? 16:59:31 IDK 17:00:07 Request-Response timing from browser https://usercontent.irccloud-cdn.com/file/gA2JGeSS/Screenshot%202024-04-07%20at%2018.59.14.png 17:01:36 as shown ... it is taking almost 9 seconds waiting for the server to respond 17:02:11 I noticed this starting today only 18:22:19 how do you enable CLAT? 20:32:52 Soni: it should be possible with ipfw 20:33:22 meena maybe found a handbook error fwiw 21:23:39 jmnbtslsQE: what should we be reading? 21:31:28 if i give an ip to a jail isn't it supposed to disappear from the host's interface? ifconfig -a on host shows ip on interface that jail is given and shows up on jexec -l testjail ifconfig -a 21:37:22 alepzi: I only see the "outside" half of each epair here, both FreeBSD 13 and 14. 21:37:38 alepzi: How are you giving your jails interfaces? 21:49:12 mason: https://termbin.com/y5z2 21:59:58 oh nvm fw rule on host sorry 22:07:19 Ah, sorry, got distracted by a work thing. 22:07:23 Glad you found it. 22:07:40 ty! any other fixes you can see for me to make? 22:10:58 alepzi: IT's a bit fancier than what I do. I don't see anything that needs fixing. It's possible to assign a MAC address if you want, which may or may not matter to other things. Not as important if you're not doing, for instance, DHCP. 22:11:17 ya no dhcp 22:11:50 I'm hoping to put together enough ambition to be able to reference JID in configs, which would obviate the need to explicitly set an ID for your epair. 22:11:56 i guess i need to set the netmask on the jail ip. handbook example shows /24 but why a whole class c? 22:12:12 that sounds nice. how does that work? 22:12:23 alepzi: I think that's all malleable and dependent on whatever you've got for a network locally. 22:12:45 As for how JID works, it doesn't yet. I'll have to figure out how to expose it, if possible, to jail configs. 22:13:11 It will depend on when in the spin-up process the JID starts to exist. 22:14:04 and if a jail is restarted, it will have a new JID 22:16:53 reminds me of what i was thinking. so you know taps can auto start as needed when a bhyve vm starts? well epairs being autocreated on jail start would be nice just the same 22:17:10 because the pre/post command shit can get out of sync 22:18:40 alepzi: https://github.com/freebsd/freebsd-src/blob/main/share/examples/jails/jib is probably your answer 22:18:41 Title: freebsd-src/share/examples/jails/jib at main · freebsd/freebsd-src · GitHub 22:21:49 entrop: Dynamic and shifting JIDs will be part of the point. 22:22:04 entrop: I want to be able to move configs from one host to another and not have to manually reconfigure anything. 22:30:15 entrop: how is jib much of an improvement over what i got already? 22:41:43 entrop: back 22:44:28 alepzi: You wouldn't have to specify a distinct ID for your epairs and keep track of what you've assigned. But fear not, it doesn't exist yet. 22:44:48 copyright says 2016? 22:44:58 What copyright? 22:45:07 Oh, jib. 22:45:16 I missed that link entirely and thought it was a typo. 22:45:19 but ya that does sound useful 22:47:23 Ooh. That says /bin/sh and then checks for a BASH version. Anyway, not entirely what I'm after, but interesting that someone took a stab at it. 22:48:35 yeah, bash doesn't really try to get rid of its bash-isms in /bin/sh-mode in my experience 22:49:33 (and if it's easy enough to account for, might as well do it) 22:50:25 It occurs to me that exposing JID as I want wouldn't strictly help folks who aren't using DHCP to configure networking. Two hosts could very easily have the same JID, so the JID wouldn't strictly be safe to use as an actual address. 22:52:56 Still useful for epair naming, though. 23:10:34 can we turn off the ipv4 stack 23:10:56 mason: just found a prob in my config. i was putting the jail ip on the vm bridge and in the jail. just needs to be on the jail 23:11:27 it takes so long to boot due to waiting for ipv4 23:11:40 Soni: i wanna run pure ipv6 too 23:20:39 also how do you turn 13.2-STABLE into 14.0-RELEASE? 23:21:24 to turn off ipv4 you probably have to compile a custom kernel config 23:21:57 if you find out tell us? 23:23:31 (how big is the freebsd git repo?) 23:23:51 1.1G for me 23:25:35 oof 23:25:55 yeah this might be a problem 23:28:16 retro computing, cool 23:28:32 we don't think we have enough space in our VM for this 23:32:05 https://termbin.com/cccf is my networking for host, bhyve vm, and jail in the vm. any way to make it better or fix anything wrong with it? fwiw it seems to be working 100%