Today

np closed D9854: Add cxgbetool(8) to the base system. by committing rS314579: Add cxgbetool(8) to the base system..
Fri, Sep 22, 8:38 PM
np closed D9854: Add cxgbetool(8) to the base system. by committing rS314579: Add cxgbetool(8) to the base system..
Fri, Sep 22, 8:33 PM
nwhitehorn accepted D12421: Compile loader as Little-Endian on PPC64/POWER8.
In D12421#258230, @wma wrote:

Oh, I indeed forgot to add -U9999 to the format-patch, sorry.

As for the installation of fbsd on P8, I have a plan to investigate what can be done to make the petitboot running the freebsd kernel or loader netively.
I see two solutions - just ideas, I didn't check their feasibility yet:

  1. Modify kexec+petitboot to understand freebsd kernel. Right now it finds that the ELF is relocatable and refuses to go further. Most likely it would require porting loader.kboot into petitboot.
Fri, Sep 22, 8:28 PM
np closed D9854: Add cxgbetool(8) to the base system. by committing rS314579: Add cxgbetool(8) to the base system..
Fri, Sep 22, 8:27 PM
np closed D9854: Add cxgbetool(8) to the base system. by committing rS314579: Add cxgbetool(8) to the base system..
Fri, Sep 22, 8:22 PM
tsoome added a comment to D12466: Allow LOADER_TFTP_SUPPORT to work again.

This is busting all the effort of avoiding to define tftp or NFS at build time, isn’t it?

I'm unsure as what I can tell is that the current version of pxeboot won't tftp an MFSroot + Kernel in its current state.

Its possible that I just don't know what the magical incantation is in dhcpd.conf to get it to work right, but tcpdump doesn't show a TFTP req if this code isn't in place.

I can not check the man pxeboot right now, but we have tftp:// prefix etc. I am not sure if the man has received the update, or it is just a,bout the source.

Fri, Sep 22, 8:20 PM
np closed D9854: Add cxgbetool(8) to the base system. by committing rS314579: Add cxgbetool(8) to the base system..
Fri, Sep 22, 8:17 PM
sbruno added a comment to D12466: Allow LOADER_TFTP_SUPPORT to work again.

This is busting all the effort of avoiding to define tftp or NFS at build time, isn’t it?

I'm unsure as what I can tell is that the current version of pxeboot won't tftp an MFSroot + Kernel in its current state.

Its possible that I just don't know what the magical incantation is in dhcpd.conf to get it to work right, but tcpdump doesn't show a TFTP req if this code isn't in place.

I can not check the man pxeboot right now, but we have tftp:// prefix etc. I am not sure if the man has received the update, or it is just a,bout the source.

Fri, Sep 22, 8:16 PM
jrm added inline comments to D12463: new port: x11/urxvt-font-size.
Fri, Sep 22, 8:14 PM
np closed D9854: Add cxgbetool(8) to the base system. by committing rS314579: Add cxgbetool(8) to the base system..
Fri, Sep 22, 8:12 PM
np closed D9854: Add cxgbetool(8) to the base system. by committing rS314579: Add cxgbetool(8) to the base system..
Fri, Sep 22, 8:07 PM
np closed D9854: Add cxgbetool(8) to the base system. by committing rS314579: Add cxgbetool(8) to the base system..
Fri, Sep 22, 8:02 PM
cem committed rS323935: ddb(4): Add 'show badstacks' command to show witness badstacks.
ddb(4): Add 'show badstacks' command to show witness badstacks
Fri, Sep 22, 8:01 PM
cem closed D12468: ddb(4): Add 'show badstacks' command to show witness badstacks.
Fri, Sep 22, 8:01 PM
np closed D9854: Add cxgbetool(8) to the base system. by committing rS314579: Add cxgbetool(8) to the base system..
Fri, Sep 22, 7:57 PM
np closed D9854: Add cxgbetool(8) to the base system. by committing rS314579: Add cxgbetool(8) to the base system..
Fri, Sep 22, 7:52 PM
oliver committed rP450399: rename files which conflict with mail/courier-imap.
rename files which conflict with mail/courier-imap
Fri, Sep 22, 7:50 PM
np closed D9854: Add cxgbetool(8) to the base system. by committing rS314579: Add cxgbetool(8) to the base system..
Fri, Sep 22, 7:47 PM
jhb added a comment to D12437: opencrypto: Loosen restriction on HMAC key sizes.

Hmm, the commit message is perhaps not clear as it conflates the two meanings of "key" when it first states "there is no limit", which applies to "user supplied key" but it is about correcting the size of the "key the algorithm uses". I would perhaps leave the member as 'keysize' instead of 'max_keysize'. Perhaps we can replace it in the future with a flag indicating if a key is valid at all and if it is the implied value is 'blocksize'.

Fri, Sep 22, 7:45 PM
rstone accepted D12468: ddb(4): Add 'show badstacks' command to show witness badstacks.
Fri, Sep 22, 7:43 PM
np closed D9854: Add cxgbetool(8) to the base system. by committing rS314579: Add cxgbetool(8) to the base system..
Fri, Sep 22, 7:42 PM
np closed D9854: Add cxgbetool(8) to the base system. by committing rS314579: Add cxgbetool(8) to the base system..
Fri, Sep 22, 7:37 PM
np closed D9854: Add cxgbetool(8) to the base system. by committing rS314579: Add cxgbetool(8) to the base system..
Fri, Sep 22, 7:32 PM
np closed D9854: Add cxgbetool(8) to the base system. by committing rS314579: Add cxgbetool(8) to the base system..
Fri, Sep 22, 7:27 PM
np closed D9854: Add cxgbetool(8) to the base system. by committing rS314579: Add cxgbetool(8) to the base system..
Fri, Sep 22, 7:22 PM
cem added a comment to D12452: Add a new driver, sha_sse(4).
In D12452#258449, @jhb wrote:

On a general note, I would almost consider making this part of aesni.ko instead if the effective sets of CPUs that support both instruction sets is the same (or nearly so).

Fri, Sep 22, 7:20 PM
cem added inline comments to D12451: crypto(9): Use a more specific error code when a driver isn't capable.
Fri, Sep 22, 7:18 PM
np closed D9854: Add cxgbetool(8) to the base system. by committing rS314579: Add cxgbetool(8) to the base system..
Fri, Sep 22, 7:17 PM
cem added a comment to D12451: crypto(9): Use a more specific error code when a driver isn't capable.
In D12451#258445, @jhb wrote:

Note that using this should also let you remove the hardcoded lists of supported "cipher groups" for device names and all the 'skipif' stuff.

Fri, Sep 22, 7:16 PM
cem added a comment to D12437: opencrypto: Loosen restriction on HMAC key sizes.
In D12437#258443, @jhb wrote:
In D12437#258088, @cem wrote:
In D12437#258077, @jhb wrote:

By larger keys I meant keys larger than the block size. ccr(4) handles this explicitly in ccr_init_hmac_digest() for example. However, this same bit of code needs to be duplicated in all drivers which seems a bit odd.

Ah. None of the drivers I reviewed handles larger than block size correctly. It would be a little odd to have to duplicate that in all of the drivers.

That is what Linux does. I'd probably like us to avoid that if possible.

Fri, Sep 22, 7:12 PM
jhb added a comment to D12452: Add a new driver, sha_sse(4).

On a general note, I would almost consider making this part of aesni.ko instead if the effective sets of CPUs that support both instruction sets is the same (or nearly so). In particular, the existing aesni.ko code does not accelerate things that combine AES with an HMAC (like an IPSec session using AES-CBC with a SHA HMAC). Having a single module that registers support for whatever algorithms the CPU supports (only SHA if AESNI isn't available for example) would permit the driver to handle these chained operations by combining AESNI with accelerated SHA hashing. (In this case aesni.ko would perhaps be better named "x86_crypto.ko" or some such to mean "accelerated software crypto for x86".)

Fri, Sep 22, 7:12 PM
np closed D9854: Add cxgbetool(8) to the base system. by committing rS314579: Add cxgbetool(8) to the base system..
Fri, Sep 22, 7:12 PM
cem added a comment to D12437: opencrypto: Loosen restriction on HMAC key sizes.
In D12437#258443, @jhb wrote:

Well, I think the only functional result of this change is to permit shorter keys passed via /dev/crypto, yes?

Fri, Sep 22, 7:08 PM
jhb added a comment to D12451: crypto(9): Use a more specific error code when a driver isn't capable.

I was going to say that you needed to update crypto(4) but it doesn't have an ERRORS section yet. :(

Fri, Sep 22, 7:07 PM
np closed D9854: Add cxgbetool(8) to the base system. by committing rS314579: Add cxgbetool(8) to the base system..
Fri, Sep 22, 7:07 PM
np closed D9854: Add cxgbetool(8) to the base system. by committing rS314579: Add cxgbetool(8) to the base system..
Fri, Sep 22, 7:02 PM
jhb added a comment to D12437: opencrypto: Loosen restriction on HMAC key sizes.
In D12437#258088, @cem wrote:
In D12437#258077, @jhb wrote:

By larger keys I meant keys larger than the block size. ccr(4) handles this explicitly in ccr_init_hmac_digest() for example. However, this same bit of code needs to be duplicated in all drivers which seems a bit odd.

Ah. None of the drivers I reviewed handles larger than block size correctly. It would be a little odd to have to duplicate that in all of the drivers.

Fri, Sep 22, 7:02 PM
oliver committed rP450398: Fix bug with copying z_stream objects around in zip archiver.
Fix bug with copying z_stream objects around in zip archiver
Fri, Sep 22, 7:01 PM
cem added a comment to D10893: capsicum_helpers: Add SEEK to default stdio rights set.

If I don't receive any feedback, I'll treat the silence as acquiescence and go ahead with this change.

Fri, Sep 22, 6:59 PM
tsoome added a comment to D12466: Allow LOADER_TFTP_SUPPORT to work again.

This is busting all the effort of avoiding to define tftp or NFS at build time, isn’t it?

I'm unsure as what I can tell is that the current version of pxeboot won't tftp an MFSroot + Kernel in its current state.

Its possible that I just don't know what the magical incantation is in dhcpd.conf to get it to work right, but tcpdump doesn't show a TFTP req if this code isn't in place.

Fri, Sep 22, 6:59 PM