beastie!

he's such a rockstar lol

does the bobblehead have a name?

ivy: "this is a well known bug which has been open for months" got a bug ref? also what happens when zfs sent from within the enc dataset

:s/sent/send/g

meeting screen was loading i thought my internet was lagging lol

hi jauntyd :)

are Linux clients able to connect to a FreeBSD NFS server using NFS over TLS? I can see the handshake completing when running tlsservd in debug mode on the server but after a while, I get an input/output error on the client. if I disable TLS on both the client and server, the connection is fine

cation: I haven't done it myself. Is the certificate used for the server signed by a CA that the client trusts?

Wouldn't you be running debug mode on the linux client?

hi, quick question. i get really annoying random screen glitches with my rx 7700 xt using drm-kmod amdgpu. is there anything i can do about this rn or do i just have to wait until more recent drivers are ported? heres an example of what it looks like: imgur.com/E7uk62Y

it's trusted, Alver, I can see the handshake completing in the tlshd.service log on the client

cation: hm, that's most odd

aha!

switching to xprtsec=mtls on the client worked (after generating a certificate)

xprtsec=tls (without a client certificate) wasn't working for some reason

cation: nice name. stay positive!

cation: interesting! And nice too - mtls is nicer than plain tls

... well, that is... did you have to (or can you) whitelist client certificates?

normally when i make a bhyve vm i give it a vol from the root zfs. but can we give a bhyve vm an entire external flash drive?

i would expect that you could

cool!

weather or not it's a good idea....

why not a good idea?

depending on what the vm does, it's a good way to burn through your flash drive

what about a samsung 990 pro nvme?

that would probably last a bit longer

what would be fast but last better? like a wd red ssd?

i wouldn't expect you to have any problems with a nvme

ok great ty

haha thanks ZedHedTed

Alver, I don't think I saw anything in the configuration lets you whitelist individual certificates, but you give a path to one or more CA certificates that the client certificates have to be signed by. I'm just using my own self-signed CA, but I think what companies generally do is have an intermediate CA that they only use to sign client certificates

Today I learned about zfs-hold: See dan.langille.org/2024/11/08/zfs-hold-release

Nice

hello. what's up?

yo yo yo

gonna put my second freebsd box in prod, to host CI runners

this time not only for my personal projects

happy to have jails and all

what CI are you using, just wondering

rtprio: it's going to power a gitlab CI runner

cool

for the GHC haskell compiler

are there pre-release notes anywhere for 14.2-BETAs?

does anyone have an agenda link(s) for summit day 2?

ty

(in general for these kinds of things you can follow links from wiki.f.o/DevSummit, fyi, though it does get kind of twisty for some events)

suppose I want to run something from ports in a jail...

do I build the jail then build the port in the jail, or is it better to build it outside the jail and then import it somehow?

zip: if your build ports yourself, use poudriere, then you end up with a repository of packages which you can install into as many jails as you like (accessible by pkg over local filesystem mount, http, etc)

ooo, neat

I ran a "make fetch" and it's doing more compilation than i thought was implied by that

guess i should have snapshotted my root directory first

i didn't know people do about laptops in summit. i should pull up my acient thinkpad

luke_jobless_sb: What's that now?

well it's not for summit, just for sake of being relavant for current topics in this channel