Remember I posted that LibreSSL is in base DragonFly, but not default? Well, it’s default now. You can have a system without OpenSSL at all, by rebuilding DragonFly-current and using up-to-date dports.
Update: see John’s comments for clarification: LibreSSL is default; the change is that OpenSSL isn’t even built any more. The result is still the same good news: you can have an OpenSSL-free DragonFly system now.
I don’t have it uploaded yet, but DragonFly 4.6.1 is tagged. Anyone with an existing 4.6.0 or earlier system can upgrade now. Use the 4.6 release instructions if you are unsure on how to upgrade. The 4.6.1 tag commit message has all the changes.
I’ll just say I did this:
cpdup -VV -v /var/hammer/usr/snap-20160928-0301/local/pgsql/data /usr/local/pgsql/
And managed to bring back my last year or so of RSS feeds and the like. Phew!
If you had trouble getting your laptop’s touchpad to work under DragonFly, try again. (If you are running DragonFly-current)
It’s now possible to build dports using LibreSSL instead of OpenSSL. Set SSL_DEFAULT in make.conf to the appropriate port name, and start building. Use synth for fastest results, of course.
LibreSSL will eventually become the default library. This is in addition to the previously-mentioned, already-completed in DragonFly 4.7, base system switch to LibreSSL.
For those running DragonFly 4.7, there’s new firmware for all iwm(4) devices. Also, you can get temperature readings off the iwm wireless device now, if I’m reading this correctly.
Tomohiro Kusumi is thinking about porting it. Follow the whole thread for details.
3D printing on DragonFly with a Fabrikator? Yep, it works. (from jh32 on EFNet #dragonflybsd)
I’ve never had as many hackathon links as I did for g2k16 over this week and last.
- “LiteBSD is variant of 4.4BSD operating system for microcontrollers“. (via)
- More g2k16: Florian Obser, Vincent Gross, Antoine Jacoutot, Matthieu Herrb, Martin Pieuchot, and Patrick Wildt.
- OpenBSD on HP Stream 7.
- “PAM Mastery” print layout done.
- Coincidentally, Michael W. Lucas is giving a talk about PAM at next week’s SemiBUG meeting. The 20th, I think.
- The Raspberry PI Platform and The Challenges of Developing FreeBSD.
- One Floppy NetBSD Distribution. (via)
- Beastie tequila.
- “I made a fanzine for fun in scribus, first issue is about DragonFly ! :)“
- OpenBSD Planet.
Matthew Dillon has added powerd, a utility that will automatically step down processor speed based on reported temperature. The range is configurable, and there’s some other nice-to-have features. This will save your CPU from melting, and probably also your thighs from being burned.
I may have mentioned this in part before, but Matthew Dillon has a brief script to reload pf when an interface IP changes. I’m linking it here in case it’s useful in the future.
Recent changes for virtual machine support and the new powerd utility have been rolled into the release branch for DragonFly. They’ll probably be in the next point release, or you can rebuild a release machine now for immediate access.
Also mentioned in the update from Matthew Dillon, DragonFly-master users should upgrade carefully as DragonFly migrates to using LibreSSL in base, and dports-based LibreSSL in dports.
This makes sense once you think about it: copy-on-write filesystems (like Hammer2 and ZFS and probably others) actually do nothing when “zeroing” out filespace.
I don’t know how I ended up with 3 pfSense items to lead with – it just happened.
- pfsense 2.3.x passive ftp.
- PFsense DMZ on ESXi.
- Assistance with routing issue with pfSense VM.
- FreeNAS: Open Source Storage Operating System. (via)
- User manages to get OpenBSD and FreeBSD working with Libreboot. (via)
- HardenedBSD switches to LibreSSL in base as the default crypto lib. (via)
- BSD Question.
- Hardened Operating Systems.
- Performance Improvements for FreeBSD Kernel Debugging. (via)
- SNI support added to libtls, httpd in -current.
- Cover reveal for “PAM Mastery”.
- DiscoverBSD for 2016/08/22.
- Synth – A simple, fast drop-in alternative to 3Ps: Portmaster, Portupgrade, and Poudriere (for FreeBSD and DragonFly). Surely you knew of this already? (via)
For once, I’m not working on Saturday, so even though this is last minute, at least I’m not in a race with the clock.
- ZFS High-Availability NAS. (via)
- Steam on FreeBSD. (via)
- Reminder: Next SemiBUG meeting is on the 23rd.
- Want to help move a cabinet of BSD User Group equipment, in NYC?
- “results-oriented and non-ideological“.
- BSD, guava. (via)
- OpenSSH is/has been deprecating DSA keys. This affects FreeBSD, and probably DragonFly too.
- The third “Hosting files using ZFS” class is available.
- connect doesn’t restart. OpenBSD pkg_add.
- OPNSense is at version 16.7.2 and gained a team member.
- DiscoverBSD for 2016/08/15.
- Linux kernel, the port. (via)
- MidnightBSD 0.8 out. (via)
- UEFI multibooting: FreeBSD and DragonFly BSD.
There’s been multiple reports of pulseaudio causing problems for DragonFly users. It would get pulled in as a dependency, and audio would suddenly stop working. Uninstall, and audio is fine. John Marino has removed it from dports, to prevent that exact problem.
If you are on DragonFly-current, AKA DragonFly 4.7, make sure to perform a full buildworld on your next upgrade. Tomohiro Kusumi changed a Hammer ioctl, and the buildworld is needed to keep everything in sync.
The last bits of Linux emulation have been removed from DragonFly. It’s 32-bit, so it’s been unsupported since DragonFly went to 64-bit only with the 4.0 release. Also, some other 32-bit only items are gone, including the cs, ep, ex, fe, and vx network drivers. It’s almost impossible that anyone was using it, but it’s notable because that’s some… 15-20k lines of code gone? Removal of unused code is also positive.
Because this always happens just after I create a DragonFly release, there’s a new version of OpenSSL. However, this is for version 1.0.2. 1.0.1 is what’s in the release, and it’s supported through the end of the year.
OpenSSH has a major version bump in DragonFly, to 7.3p1. This means some features – specifically patches for High Performance Networking – are no longer there, and you’ll get an error if your config file requires them. Either remove the options from your config, or install OpenSSH from dports.
Thanks to a reminder from IRC user ‘cgag’, I’ve put an uncompressed ISO image of DragonFly 4.6 up on the main site. It’s linked on the download page, and should be available within 24 hours on the mirrors. If you are buying service from a virtual host provider, and can install an operating system directly from a downloadable URL, this is for you.
I did all of this in a hour, because I had so many tabs saved from during the week. Don’t get overwhelmed!
- EuroBSDCon 2016 schedule has been released.
- OPNsense 16.7 released.
- 2016Q2 FreeBSD Status Report.
- SemiBUG has a Twitter. Here’s their last meeting, and the next is 8/23.
- August 3rd: NYCBUG Installfest. Go just to see what weird hardware shows up.
- Attacks against FreeBSD Update components. (via)
- How do I dual boot FreeBSD 10.3 with Windows 10?
- Steam on FreeBSD 11-CURRENT. (via)
- ZFS and RAID.
- OpenBSD 6.0 pre-orders up.
- OpenBSD 6.0 to be released September 1, 2016. (via)
- EuroBSDCon 2016 talks and tutorials. (via and via)
- DiscoverBSD for 2016/07/25.
- Why FreeBSD? by Hamza Sheikh.
- pfSense 2.3.2 is out.
- AWS VPN config supports pfSense 2.2.5+.
- FreeBSD 11 Beta2 is available.
- n2k16 hackathon report: Stefan Sperling on dhclient bugs, iwm(4) issues.
- Will switching to FreeBSD give me an advantage over Linux when it comes to gaming?
- Translation Status for 1.0.0. (Lumina)
- one reason to hate openbsd.
- Status of wireless support for MacBook Pro (late 2011)
- Am I doing it wrong?
- VirtualBox 5.x finally on FreeBSD.
- Some notes on our new generation of ZFS-based file servers.
- A Grand Experiment by Leo Laporte. Shifting to BSD. (via)
- Announcing PacBSD (Formerly named ArchBSD). (via)
- OpenBSD: Release Songs: 6.0: “Another Smash of the Stack”. (via)
Bonus DragonFly items, sent by Rolinh on IRC:
- Migrate UFS drive from FreeNAS to DragonFly BSD
- Ask HN: DragonflyBSD – Do anyone use it in production?
I’m a bit late on this, but: If you are using DragonFly-current, you will need to rebuild world. If you are on 4.4, this won’t matter until you go to 4.6, and you’d be rebuilding world and kernel for that anyway.
(4.6 will probably be tagged this weekend.)
“Where is RC1?” you may ask? I tagged the first release candidate some days ago, and this bug was immediately found right after. It was easier to go right to RC2 once a fix was found.
This candidate will probably lead directly to a release version, so if you want to run the release version exactly, wait a few days.
the i915 support in DragonFly now matches the Linux 4.4 kernel, which is good news if you have a Broxton, Skylake, or Cherryview processor, plus it adds a variety of fixes.
I like finding “This is how I did it” stories from people, as they are often really useful for anyone else trying to do the same “it”. Here’s Dave MacFarlane’s UEFI install story. (Note he’s still needing touchpad support.)
A useful tip: if your DragonFly machine isn’t usually on 24/7 (e.g. a laptop, not a server), you should move your Hammer cleanup from 3 AM to sometime when the computer is normally on.
karu.pruun shares a story of manually installing DragonFly on a UEFI-booting machine. In this case, it’s a Macbook, though there’s other non-fruit UEFI machines out there?
It’s exactly what the title is: ipfw3 now does NAT in-kernel, without locking. I have no benchmarks to point at, unfortunately. The commit has usage examples.
The system I had for running a go builder died. I am running out of extra hardware. Is there someone who is using Go and DragonFly and is willing to commit to running a semi-dedicated builder?
There’s a new digital library in Kisumu, Kenya – and it’s running DragonFly for file storage.
Hammer2 now has inode indexing, which Matthew Dillon was avoiding while trying to create more efficient hardlink support. The result is now with that problem solved, more updates can come in: NFS support, mtime updates, output changes, code removal, and lots of other changes, not all of which I’m even linking.
If you have a NVMe chipset under DragonFly, you now can use a special utility to retrieve status information: nvmectl. Right now, only ‘info’ is implemented.
This is limited to some users of specific Intel video chipsets, but: if you get odd screen artifacts in X, the ‘vesa’ driver may work just fine for you. Or turn acceleration off. Or set ‘drm.i915.enable_execlists=0’ according to zrj on #dragonflybsd.
(Updated to reflect all the answers in the thread and elsewhere.)
Tomohiro Kasumi wrote a lengthy explanation of what “@@” means, in the context of the Hammer file system. It acts as a sort of signifier for each actual Hammer pseudo-file-system, since it’s possible to null-mount these anywhere in DragonFly, under all sorts of names. Don’t trust my summary, though – read his.
There are USB devices out there that are sort of like a mouse, as in they work as a pointing device, but they don’t show up as a mouse device. For example, the PowerMate USB Multimedia Controller. It’s possible to pipe the events from this or similar ‘weird’ devices to sysmouse, and use it the way you’d expect, with this fix from user tautology.
As part of his NVMe work, Matthew Dillon found I/O speed so fast that CRC checking actually got in the way of disk activity. He’s brought in a new CRC algorithm called xxHash. He also brought in Mark Adler’s hardware iscsi_crc32 implementation, but did not add it to Hammer2. There’s some work on read-ahead operations too, to deal with the NVMe throughput.
Did you know there’s a rescue image, created with crunchgen, in DragonFly? If your system can boot to single-user mode, you can use it to at least manipulate data on disk – it includes mined as a simple small editor. (Since vi assumes /usr is mountable.) This rescue image now includes undo, so you can back out changes on a Hammer volume.
Matthew Dillon has been testing on more NVMe hardware, or at least what is supposed to be NVMe hardware, and he has a writeup of the results that may be useful for anyone planning a shopping trip soon.
Remember Sepherosa Ziehau’s nginx tests on DragonFly? He’s using the same configuration to test performance of the accept(2) and close(2) calls. The result? Over 8000 concurrent connections, for 580,000 connections per second. That’s on one DragonFly machine.
Matthew Dillon has written a new, from scratch, driver for NMVe in DragonFly. If you haven’t encountered it yet, that’s SSD access over PCIe, which gives better throughput than ATA. He’s posted a summary of his work, and it’s possible to load it now as a module. It supports MSI-X, and there’s test results from using dd on supported NVMe hardware.
Matthew Dillon and Adrian Chadd have updated the wifi setup in DragonFly, incorporating Adrian’s FreeBSD changes (and merging back some of Matt’s from DragonFly). This affects the ath, rum, iwm, iwn, run, bwn, urtwn, wi, ral, iwi, ndis, and wpi drivers. The ‘an’ driver has been removed, too. I’m not going to even try to link to all the commits.
If you’re on DragonFly master and are using one of these devices, now is the time to update and try. Note that this removes the separate network interface that’s specific to the device and creates only a wlanX device.
Update: Matt reminded me that at least half the work came from Imre Vadasz; I missed it because I was only looking at the commit email names – mea culpa.
karu.pruun managed to get xwayland working on DragonFly, and also took notes while doing it. That means you can try it out, too.
If you get “libGL error: failed to open drm device: Permission denied” when using direct rendering, make sure to add your user id to the ‘video’ group.