From owner-freebsd-rc@FreeBSD.ORG Sun Sep 20 13:41:12 2009 Return-Path: Delivered-To: freebsd-rc@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A8EE91065670; Sun, 20 Sep 2009 13:41:12 +0000 (UTC) (envelope-from hrs@FreeBSD.org) Received: from mail.allbsd.org (gatekeeper-int.allbsd.org [IPv6:2001:2f0:104:e002::2]) by mx1.freebsd.org (Postfix) with ESMTP id 1D2458FC1E; Sun, 20 Sep 2009 13:41:10 +0000 (UTC) Received: from delta.allbsd.org (p4121-ipbf1805funabasi.chiba.ocn.ne.jp [114.146.83.121]) (authenticated bits=128) by mail.allbsd.org (8.14.3/8.14.3) with ESMTP id n8KDewQi099474; Sun, 20 Sep 2009 22:41:09 +0900 (JST) (envelope-from hrs@FreeBSD.org) Received: from localhost (alph.allbsd.org [192.168.0.10]) (authenticated bits=0) by delta.allbsd.org (8.13.4/8.13.4) with ESMTP id n8KDenGT017268; Sun, 20 Sep 2009 22:40:52 +0900 (JST) (envelope-from hrs@FreeBSD.org) Date: Sun, 20 Sep 2009 22:40:18 +0900 (JST) Message-Id: <20090920.224018.16368211.hrs@allbsd.org> To: dougb@FreeBSD.org From: Hiroki Sato In-Reply-To: <4AB15FCE.70505@FreeBSD.org> References: <200909122222.n8CMMV3d099311@svn.freebsd.org> <4AB15FCE.70505@FreeBSD.org> X-PGPkey-fingerprint: BDB3 443F A5DD B3D0 A530 FFD7 4F2C D3D8 2793 CF2D X-Mailer: Mew version 6.2.51 on Emacs 22.3 / Mule 5.0 (SAKAKI) Mime-Version: 1.0 Content-Type: Multipart/Signed; protocol="application/pgp-signature"; micalg=pgp-sha1; boundary="--Security_Multipart0(Sun_Sep_20_22_40_18_2009_230)--" Content-Transfer-Encoding: 7bit X-Virus-Scanned: clamav-milter 0.95.2 at gatekeeper.allbsd.org X-Virus-Status: Clean X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.2.3 (mail.allbsd.org [133.31.130.32]); Sun, 20 Sep 2009 22:41:09 +0900 (JST) Cc: freebsd-rc@FreeBSD.org Subject: Re: svn commit: r197145 - in head: etc/defaults share/man/man5 X-BeenThere: freebsd-rc@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion related to /etc/rc.d design and implementation." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 20 Sep 2009 13:41:12 -0000 ----Security_Multipart0(Sun_Sep_20_22_40_18_2009_230)-- Content-Type: Multipart/Mixed; boundary="--Next_Part(Sun_Sep_20_22_40_18_2009_389)--" Content-Transfer-Encoding: 7bit ----Next_Part(Sun_Sep_20_22_40_18_2009_389)-- Content-Type: Text/Plain; charset=us-ascii Content-Transfer-Encoding: 7bit Hi Doug, First, I am sorry for the delayed response. I was in transit to UK to attend EuroBSDCon and email application on my laptop was somewhat in a bad state. Doug Barton wrote in <4AB15FCE.70505@FreeBSD.org>: do> I realize that you've posted your patches in the past, and I do> definitely had it in mind to review them in detail and give you do> feedback on them. However I got focused on my own projects for the do> pending release, and then since we were so close to the release I did do> not think you would be committing these changes until after it was do> done so I let review of these patches slip down my list of priorities. do> Therefore I ask you to accept my apologies for this "after the fact" do> review. No problem. I am willing to listen to any opinions and discuss if needed. do> Before I forget, you keep putting "mfc after 3 days" in your commit do> messages. You don't actually plan to MFC these changes to RELENG_8 do> prior to the 8.0-RELEASE do you? I would not be supportive of this do> given the sweeping nature of the changes and the (unfortunately) small do> percentage of our userbase that uses and tests IPv6. I think shaking do> this code out in HEAD for several weeks at least would be a good thing. I am still want to merge it into 8.0R because this includes a user-visible change and the major version bump is a good timing. What I want to do are: - Make ND6_IFF_ACCEPT_RTADV a per-IF flag and turn it off by default. Accepting Router Advertisement by default on all interfaces when ipv6_enable=YES is too aggressive (explained later). Also, I personally think RA should be accepted when the user specifies it explicitly. We do not enable DHCP for IPv4 automatically when no manual configuration is in rc.conf, for example. IPv6 RFCs explains IPv6 nodes are classified as a host node and a router, and a host may perform automatic address configuration by DHCPv6, SLAAC or so. In practice, however, a FreeBSD box does not always have only IPv6 interfaces. Some people may want to use one of the interfaces for IPv4 only, and some want to use one for IPv6 with a manual configuration. The current implementation does not allow it and ipv6_enable=YES forces receiving RA enable on interfaces with no configuration. - Remove ipv6_enable. It is a very confusing knob because a kernel with INET6 (in GENERIC, as you know) supports IPv6 and it is unclear that "what will be done on what interface". In earlier days when IPv6 was an additional component maintained outside the tree it was okay. However, it is now tightly integrated and I believe IPv6 configuration should be done in a consistent way with IPv4 (at least) wherever we can do so. For IPv4, what we need is simply adding $ifconfig_IF (and $ifconfig_IF_aliasN if needed). So, they should work for IPv6 instead of "ipv6_"-prefixed variables. The user-visible changes I added are the following: 1. $ipv6_enable is obsolete. Simply adding $ifconfig_IF_ipv6 works. 2. $ipv6_ifconfig_IF is obsolete. Use $ifconfig_IF_ipv6 instead. Note that $ifconfig_IF_ipv6 does NOT automatically add "inet6" keyword. 3. For people who do not want to IPv6 at all (for security reason for example), interfaces with no manual configuration for IPv6 are marked as ND6_IFF_IFDISABLED by rc.d/netif. If you do not mind IPv6 is enabled for all interfaces, set $ipv6_prefer=YES. Even if $ipv6_prefer=NO (default), configurations by $ipv6_ifconfig_IF and so on work. Also, you can disable IPv6 on only one interface by using "ifconfig IF inet6 ifdisabled" in $ifconfig_IF_ipv6. One thing you have to be careful is source address selection by ip6addrctl(8). When both IPv4 and IPv6 are usable, which is used is controlled by it. IPv4 is preferred when $ipv6_prefer=NO, and IPv6 is preferred when $ipv6_prefer=YES. 4. A link-local address is almost always added to an interface. The link-local address is automatically assigned to an interface and can be used for IPv6 communication such as SSH. I remember there was a discussion that network communication on an interface should not be enabled if there is no configuration. And in our default configuration ($ipv6_enable=NO) this address is not assigned. However, the link-local address is essential for IPv6 functionality and we cannot remove it if we need IPv6 communication on that interface. Something like "ifconfig fxp0 inet6 2001:db8::1/64" can assign the IPv6 address to an interface even if it has no link-local address, it can lead unexpected behaviors. So, as a compromised way, I added the change described in "3." above. A link-local address is always assigned, but no communication is allowed in that interface when it is marked as IFDISABLED. The rc.d/netif script marks an interface as IFDISABLED only when "$ipv6_prefer=NO and no $ifconfig_IF_ipv6". 5. If you want to enable SLAAC (State-Less Address AutoConfiguration), simply add "accept_rtadv" to $ifconfig_IF_ipv6. It works in a per-IF basis. After all, $ipv6_enable does too many things, IMHO. It detects whether it is a host node or a router, and then if a host it enables accepting RA on almost all interfaces and sends out a Router Solicitation message for SLAAC. We need a more fine-grained way and consistency with way for IPv4. After committing my patch, I noticed there were some rough edges and bugs, and it needs more backward compatibility knob handling. I am appreciated it if you could review the attached patch. The backward compatibility handling and incompatibilities are the following: a) When $ipv6_enable=YES is defined, it means $ipv6_prefer=YES and all interfaces with IPv6 configuration (it means $ifconfig_IF_ipv6 exists in rc.conf) accepts RA by default. This is almost the same behavior in the prior releases. b) If an $ipv6_ifconfig_IF="xxx" is defined, it is translated to $ifconfig_IF_ipv6="inet6 xxx" and display a warning. c) If an $ipv6_ifconfig_IF_aliasN="xxx" is defined, it is translated to $ifconfig_IF_aliasN="inter xxx" after evaluating the other $ifconfig_IF_aliasN. A warning is displayed. So, in short, follow them to migrate to the new world: - If you use $ipv6_enable=YES, use $ipv6_prefer=YES instead. If $ipv6_prefer=NO or no $ipv6_prefer, you can still use IPv6 but interfaces with no $ifconfig_IF_ipv6 are automatically disabled. Note that only IPv6 functionality on that interface is disabled. IPv4 communication works, and other interfaces with $ifconfig_IF_ipv6 work, too. This means you can enable IPv6 functionality only on interfaces with $ifconfig_IF_ipv6 when $ipv6_prefer=NO. If you do not mind IPv6 is enabled on all interfaces, use $ipv6_prefer=YES. In both cases, link-local address is assigned automatically. - If you use $ipv6_ifconfig_IF, use $ifconfig_IF_ipv6 instead. Do not forget adding "inet6" keyword. - If you use $ipv6_ifconfig_IF_aliasN, use $ifconfig_IF_aliasN in the same way as IPv4. Do not forget adding "inet6" keyword. - If you use Router Advertisement and SLAAC in your environment, add "accept_rtadv" keyword to appropriate $ifconfig_IF_ipv6. I think these are enough for backward compatibility. Please note that above descriptions are based on the committed patch and the attached additional patch. The committed patch does not support $ipv6_enable. I am sorry for committing them without detail explanations behind the change. Hope the above (lengthy) sentences helps your understanding what I want to do. do> In general I have a problem with the idea of drastically changing the do> semantics of the current code when I can't see any real value in doing do> so. I object to this change specifically because on my laptop I really do> like having the ability to easily disable IPv6 when I am not on my do> home network. do> do> My preferred scenario would be something similar to what we have now, do> which is that if ipv6_enable is set that it takes the same list of do> interfaces as ipv4 (defaults to AUTO) and that rtadv is enabled by do> default for each of those interfaces. My feeling is that this not only do> significantly reduces POLA it will also more precisely fit the way do> that the vast majority of our users will actually use IPv6. do> do> On a "marketing" note I really think it would be valuable to make it do> as easy as possible for the average user to get IPv6 working. We have do> IPv4 down to it more or less "just works," I think IPv6 should be the do> same way. (On a side note, I'd actually like to see DHCP be the do> default for IPv4 such that if you have DHCP available on a network you do> wouldn't have to do any configuration at all to get FreeBSD on line, do> but that's a whole other topic.) Yes, I completely agree. I am also concerned about POLA, and decide to add support of $ipv6_enable to recede the astonishment. I would like your comments on my goal by combination of the committed and the attached patch. do> > - Receiving ICMPv6 Router Advertisement is not automatically do> > enabled even if there is no manual configuration of IPv6 in do> > rc.conf. If you want it, define do> > ifconfig_xxx_ipv6="inet6 ... accept_rtadv". do> do> What is the reason for this change? While I am definitely in favor of do> making it easier to disable rtadv, I still think it should be the do> default. I think this may be a moot point. As explained above, I think "$ipv6_enable on a host, not a router, and no IPv6 configuration always means receiving RA" is too aggressive. No configuration should be no configuration, does not mean "I want RA". "Specifying it explicitly if you want it, no configuration if you don't" is safer and consistent. Another concern I have is the fact that RA includes default router address and the box configures the default route based on it. This means it can override manually-configured default route. If it handles only prefix-list then receiving RA by default would be okay, but I think we have to be more careful to whether we accepts it or not. Anyway, $ipv6_enable knob support in the attached patch emulates the old behavior. My approach may not be the best, but the concern was as I explained. Any comments are welcome. do> > - The rc.d/ip6addrctl now chooses address selection policy based do> > on $ipv6_prefer, not $ipv6_enable. The default is do> > ipv6_prefer=NO. do> do> Once again, what is the reason for this change? My read of the do> IPv6-using community is that if they have it available they want to do> use it as a first choice. I know that is certainly my preference. Because IMHO the name $ipv6_enable was inappropriate (IPv6 is enabled by kernel already) from the start, and I want to use a new name rather than changing behavior of the old variable since they are not identical to each other. My patch virtually narrows the behavior down to 1) whether it marks non-manually-configured interfaces as IFDISABLED or not, and 2) whether it uses or not IPv6 address rather than IPv4 address when the both are available. Also, people can notice that the variable is changed if the name is different. I understand the feeling that we do not want to change a long-standing practice for IPv6 configuration. I want to fix such inconsistencies and make the IPv6 enabled by default on this occasion of the major version bump. -- Hiroki ----Next_Part(Sun_Sep_20_22_40_18_2009_389)-- Content-Type: Text/X-Patch; charset=us-ascii Content-Transfer-Encoding: 7bit Content-Disposition: inline; filename="etc.diff" Index: etc/network.subr =================================================================== --- etc/network.subr (revision 197340) +++ etc/network.subr (working copy) @@ -97,15 +97,26 @@ if afexists inet6; then if ipv6if $1; then if checkyesno ipv6_gateway_enable; then - _ipv6_opts="-accept_rtadv auto_linklocal" + _ipv6_opts="-accept_rtadv" + fi + else + if checkyesno ipv6_prefer; then + _ipv6_opts="-ifdisabled" else - _ipv6_opts="auto_linklocal" + _ipv6_opts="ifdisabled" fi - else - _ipv6_opts="-auto_linklocal ifdisabled" + + # backward compatibility: $ipv6_enable + case $ipv6_enable in + [Yy][Ee][Ss]) + _ipv6_opts="${_ipv6_opts} accept_rtadv" + ;; + esac fi - ifconfig $1 inet6 ${_ipv6_opts} + if [ -n "${_ipv6_opts}" ]; then + ifconfig $1 inet6 ${_ipv6_opts} + fi # ifconfig_IF_ipv6 ifconfig_args=`ifconfig_getargs $1 ipv6` @@ -382,7 +393,7 @@ # 1 otherwise. ipv6if() { - local _if i + local _if _tmpargs i _if=$1 if ! afexists inet6; then @@ -396,6 +407,18 @@ ;; esac + # True if $ifconfig_IF_ipv6 is defined. + _tmpargs=`_ifconfig_getargs $_if ipv6` + if [ -n "${_tmpargs}" ]; then + return 0 + fi + + # backward compatibility: True if $ipv6_ifconfig_IF is defined. + _tmpargs=`get_if_var $_if ipv6_ifconfig_IF` + if [ -n "${_tmpargs}" ]; then + return 0 + fi + case "${ipv6_network_interfaces}" in [Aa][Uu][Tt][Oo]) return 0 @@ -431,17 +454,30 @@ if checkyesno ipv6_gateway_enable; then return 1 fi + _tmpargs=`get_if_var $_if ipv6_prefix_IF` + if [ -n "${_tmpargs}" ]; then + return 1 + fi case $_if in lo0|\ stf[0-9]*|\ faith[0-9]*|\ lp[0-9]*|\ - sl[0-9]*) + sl[0-9]*|\ + pflog[0-9]*|\ + pfsync[0-9]*) return 1 ;; esac + # backward compatibility: $ipv6_enable + case $ipv6_enable in + [Yy][Ee][Ss]) + return 0 + ;; + esac + _tmpargs=`_ifconfig_getargs $_if ipv6` for _arg in $_tmpargs; do case $_arg in @@ -451,6 +487,16 @@ esac done + # backward compatibility: $ipv6_ifconfig_IF + _tmpargs=`get_if_var $_if ipv6_ifconfig_IF` + for _arg in $_tmpargs; do + case $_arg in + accept_rtadv) + return 0 + ;; + esac + done + return 1 } @@ -691,7 +737,7 @@ ;; *) ifconfig $1 inet6 ${ifconfig_args} alias && _ret=0 - warn "\$ipv6_ifconfig_$1_alias${alias} is obsolete." + warn "\$ipv6_ifconfig_$1_alias${alias} is obsolete." \ " Use ifconfig_$1_aliasN instead." ;; esac @@ -773,6 +819,7 @@ done # backward compatibility: ipv6_ifconfig_IF_aliasN. + alias=0 while : ; do ifconfig_args=`get_if_var $1 ipv6_ifconfig_IF_alias${alias}` case "${ifconfig_args}" in @@ -780,13 +827,12 @@ break ;; *) - ifconfig $1 inet6 ${ifconfig_args} -alias - alias=$((${alias} + 1)) - warn "\$ipv6_ifconfig_$1_alias${alias} is obsolete." + ifconfig $1 inet6 ${ifconfig_args} -alias && _ret=0 + warn "\$ipv6_ifconfig_$1_alias${alias} is obsolete." \ " Use ifconfig_$1_aliasN instead." - _ret=0 ;; esac + alias=$((${alias} + 1)) done return $_ret Index: etc/rc.d/netif =================================================================== --- etc/rc.d/netif (revision 197340) +++ etc/rc.d/netif (working copy) @@ -41,7 +41,7 @@ extra_commands="cloneup clonedown" cmdifn= -set_rcvar_obsolete ipv6_enable +set_rcvar_obsolete ipv6_enable ipv6_prefer network_start() { Index: etc/rc.d/ip6addrctl =================================================================== --- etc/rc.d/ip6addrctl (revision 197340) +++ etc/rc.d/ip6addrctl (working copy) @@ -19,6 +19,8 @@ prefer_ipv6_cmd="ip6addrctl_prefer_ipv6" prefer_ipv4_cmd="ip6addrctl_prefer_ipv4" +set_rcvar_obsolete ipv6_enable ipv6_prefer + ip6addrctl_prefer_ipv6() { ip6addrctl flush >/dev/null 2>&1 Index: etc/rc.d/rtadvd =================================================================== --- etc/rc.d/rtadvd (revision 197340) +++ etc/rc.d/rtadvd (working copy) @@ -43,7 +43,10 @@ case ${rtadvd_interfaces} in [Aa][Uu][Tt][Oo]|'') for i in `ifconfig -l` ; do - if is_wired_interface $1; then + case $i in + lo0) continue ;; + esac + if ipv6if $i; then rtadvd_interfaces="${rtadvd_interfaces} ${i}" fi done ----Next_Part(Sun_Sep_20_22_40_18_2009_389)---- ----Security_Multipart0(Sun_Sep_20_22_40_18_2009_230)-- Content-Type: application/pgp-signature Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (FreeBSD) iEYEABECAAYFAkq2MMIACgkQTyzT2CeTzy3jlwCgx+jB5G2SwNoJDdUxDvXnf0Ip +GAAniQz8CEXHNOEl8FOob/ljgeVBBNL =e82d -----END PGP SIGNATURE----- ----Security_Multipart0(Sun_Sep_20_22_40_18_2009_230)---- From owner-freebsd-rc@FreeBSD.ORG Mon Sep 21 11:07:03 2009 Return-Path: Delivered-To: freebsd-rc@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id AC2E6106568F for ; Mon, 21 Sep 2009 11:07:03 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 99FE28FC18 for ; Mon, 21 Sep 2009 11:07:03 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.3/8.14.3) with ESMTP id n8LB73Lv030406 for ; Mon, 21 Sep 2009 11:07:03 GMT (envelope-from owner-bugmaster@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.3/8.14.3/Submit) id n8LB72fJ030402 for freebsd-rc@FreeBSD.org; Mon, 21 Sep 2009 11:07:02 GMT (envelope-from owner-bugmaster@FreeBSD.org) Date: Mon, 21 Sep 2009 11:07:02 GMT Message-Id: <200909211107.n8LB72fJ030402@freefall.freebsd.org> X-Authentication-Warning: freefall.freebsd.org: gnats set sender to owner-bugmaster@FreeBSD.org using -f From: FreeBSD bugmaster To: freebsd-rc@FreeBSD.org Cc: Subject: Current problem reports assigned to freebsd-rc@FreeBSD.org X-BeenThere: freebsd-rc@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion related to /etc/rc.d design and implementation." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 21 Sep 2009 11:07:03 -0000 Note: to view an individual PR, use: http://www.freebsd.org/cgi/query-pr.cgi?pr=(number). The following is a listing of current problems submitted by FreeBSD users. These represent problem reports covering all versions including experimental development code and obsolete releases. S Tracker Resp. Description -------------------------------------------------------------------------------- o conf/138208 rc [rc] [patch] Making rc.firewall (workstation) IPv6 awa o conf/137629 rc [rc] background_dhclient rc.conf option causing double o conf/137470 rc [PATCH] /etc/rc.d/mdconfig2 : prioritize cli parameter o conf/136875 rc [request] _flags appending o conf/136624 rc [rc.d] sysctl variables for ipnat are not applied on b o conf/134918 rc [patch] rc.subr fails to detect perl daemons o conf/134660 rc [patch] rc-script for initializing ng_netflow+ng_ipfw o conf/134333 rc PPP configuration problem in the rc.d scripts in combi o conf/134006 rc [patch] Unload console screensaver kernel modules if s o conf/133987 rc [rc.d] defaultroute broken with DHCP in some cases o conf/133890 rc [patch] sshd(8): add multiple profiles to the rc.d scr o conf/132766 rc wait_for_pids() in /etc/rc.subr is dull. o conf/132483 rc rc.subr(8) [patch] setfib(1) support for rc.subr o conf/132476 rc [rc.d] [patch] add support setfib(1) in rc.d/routing o conf/130414 rc [patch] rc services started with onestart are not stop o conf/128299 rc [patch] /etc/rc.d/geli does not mount partitions using o conf/127917 rc [patch] dumpon rejects on start with physmem>swap even o bin/126562 rc rcorder(8) fails to run unrelated startup scripts when o conf/126392 rc [patch] rc.conf ifconfig_xx keywords cannot be escaped o bin/126324 rc [patch] rc.d/tmp: Prevent mounting /tmp in second tim o conf/124747 rc [patch] savecore can't create dump from encrypted swap o conf/124248 rc [jail] [patch] add support for nice value for rc.d/jai o conf/123734 rc [patch] Chipset VIA CX700 requires extra initializatio o conf/123222 rc [patch] Add rtprio(1)/idprio(1) support to rc.subr(8). o conf/122477 rc [patch] /etc/rc.d/mdconfig and mdconfig2 are ignoring o conf/122170 rc [patch] [request] New feature: notify admin via page o o kern/121566 rc [nfs] [request] [patch] ethernet iface should be broug o conf/120431 rc [patch] devfs.rules are not initialized under certain o conf/120406 rc [devd] [patch] Handle newly attached pcm devices (eg. o conf/119874 rc [patch] "/etc/rc.d/pf reload" fails if there are macro o conf/119076 rc [patch] [rc.d] /etc/rc.d/netif tries to remove alias a o bin/118325 rc [patch] [request] new periodic script to test statuses o conf/118255 rc savecore never finding kernel core dumps (rcorder prob o conf/117935 rc [patch] ppp fails to start at boot because of missing o conf/113915 rc [patch] ndis wireless driver fails to associate when i o conf/109980 rc /etc/rc.d/netif restart doesn't destroy cloned_interfa o conf/109562 rc [rc.d] [patch] [request] Make rc.d/devfs usable from c o conf/108589 rc rtsol(8) fails due to default ipfw rules o conf/106009 rc [ppp] [patch] [request] Fix pppoed startup script to p o conf/105689 rc [ppp] [request] syslogd starts too late at boot o conf/105568 rc [patch] [request] Add more flexibility to rc.conf, to o conf/105145 rc [ppp] [patch] [request] add redial function to rc.d/pp o conf/104549 rc [patch] rc.d/nfsd needs special _find_processes functi o conf/102700 rc [geli] [patch] Add encrypted /tmp support to GELI/GBDE o conf/99721 rc [patch] /etc/rc.initdiskless problem copy dotfile in s o conf/99444 rc [patch] Enhancement: rc.subr could easily support star o conf/96343 rc [patch] rc.d order change to start inet6 before pf o conf/93815 rc [patch] Adds in the ability to save ipfw rules to rc.d o conf/92523 rc [patch] allow rc scripts to kill process after a timeo o conf/89870 rc [patch] [request] make netif verbose rc.conf toggle o conf/89061 rc [patch] IPv6 6to4 auto-configuration enhancement o conf/88913 rc [patch] wrapper support for rc.subr o conf/85819 rc [patch] script allowing multiuser mode in spite of fsc o kern/81006 rc ipnat not working with tunnel interfaces on startup o conf/77663 rc Suggestion: add /etc/rc.d/addnetswap after addcritremo o conf/73677 rc [patch] add support for powernow states to power_profi o conf/58939 rc [patch] dumb little hack for /etc/rc.firewall{,6} o conf/56934 rc [patch] rc.firewall rules for natd expect an interface o conf/45226 rc [patch] Fix for rc.network, ppp-user annoyance o conf/44170 rc [patch] Add ability to run multiple pppoed(8) on start 60 problems total. From owner-freebsd-rc@FreeBSD.ORG Tue Sep 22 17:46:39 2009 Return-Path: Delivered-To: freebsd-rc@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1360B10656A5; Tue, 22 Sep 2009 17:46:39 +0000 (UTC) (envelope-from jhb@freebsd.org) Received: from cyrus.watson.org (cyrus.watson.org [65.122.17.42]) by mx1.freebsd.org (Postfix) with ESMTP id D77F68FC30; Tue, 22 Sep 2009 17:46:38 +0000 (UTC) Received: from bigwig.baldwin.cx (66.111.2.69.static.nyinternet.net [66.111.2.69]) by cyrus.watson.org (Postfix) with ESMTPSA id 86F8946B09; Tue, 22 Sep 2009 13:46:38 -0400 (EDT) Received: from jhbbsd.hudson-trading.com (unknown [209.249.190.8]) by bigwig.baldwin.cx (Postfix) with ESMTPA id C08588A01D; Tue, 22 Sep 2009 13:46:37 -0400 (EDT) From: John Baldwin To: Doug Barton Date: Tue, 22 Sep 2009 13:43:23 -0400 User-Agent: KMail/1.9.7 References: <20090917183525.O73400@sola.nimnet.asn.au> <4AB21295.5080103@FreeBSD.org> In-Reply-To: <4AB21295.5080103@FreeBSD.org> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200909221343.24541.jhb@freebsd.org> X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.0.1 (bigwig.baldwin.cx); Tue, 22 Sep 2009 13:46:37 -0400 (EDT) X-Virus-Scanned: clamav-milter 0.95.1 at bigwig.baldwin.cx X-Virus-Status: Clean X-Spam-Status: No, score=-2.5 required=4.2 tests=AWL,BAYES_00,RDNS_NONE autolearn=no version=3.2.5 X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on bigwig.baldwin.cx Cc: Oliver Fromme , freebsd-rc@freebsd.org, Ian Smith , Cezary Morga Subject: Re: 8.0 rc.d scripts less verbose? X-BeenThere: freebsd-rc@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion related to /etc/rc.d design and implementation." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 22 Sep 2009 17:46:39 -0000 On Thursday 17 September 2009 6:42:29 am Doug Barton wrote: > > Also, I agree with Oliver; YES should probably be the default > > (POLA) so folks annoyed by 'too much information' in console.log > > can disable it. > > This late in the release cycle I'm comfortable adding a knob, but I'm > not comfortable toggling the default. If there is consensus on the > freebsd-rc list to make the default "yes" then I will go with that > consensus. I actually vote for getting this into 8.0 and turning the messages back on to undo the current POLA violation in 8.0. The biggest thing I think is just restoring the functionality as the messages are handy when debugging a startup issue. -- John Baldwin From owner-freebsd-rc@FreeBSD.ORG Tue Sep 22 18:51:55 2009 Return-Path: Delivered-To: freebsd-rc@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7DCC61065692 for ; Tue, 22 Sep 2009 18:51:55 +0000 (UTC) (envelope-from dougb@FreeBSD.org) Received: from mail2.fluidhosting.com (mx21.fluidhosting.com [204.14.89.4]) by mx1.freebsd.org (Postfix) with ESMTP id 9E60F8FC19 for ; Tue, 22 Sep 2009 18:51:54 +0000 (UTC) Received: (qmail 8056 invoked by uid 399); 22 Sep 2009 18:51:48 -0000 Received: from localhost (HELO foreign.dougb.net) (dougb@dougbarton.us@127.0.0.1) by localhost with ESMTPAM; 22 Sep 2009 18:51:48 -0000 X-Originating-IP: 127.0.0.1 X-Sender: dougb@dougbarton.us Message-ID: <4AB91CBE.5030303@FreeBSD.org> Date: Tue, 22 Sep 2009 11:51:42 -0700 From: Doug Barton Organization: http://www.FreeBSD.org/ User-Agent: Thunderbird 2.0.0.23 (X11/20090822) MIME-Version: 1.0 To: John Baldwin References: <20090917183525.O73400@sola.nimnet.asn.au> <4AB21295.5080103@FreeBSD.org> <200909221343.24541.jhb@freebsd.org> In-Reply-To: <200909221343.24541.jhb@freebsd.org> X-Enigmail-Version: 0.96.0 OpenPGP: id=D5B2F0FB Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: Oliver Fromme , freebsd-rc@freebsd.org, Ian Smith , Cezary Morga Subject: Re: 8.0 rc.d scripts less verbose? X-BeenThere: freebsd-rc@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion related to /etc/rc.d design and implementation." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 22 Sep 2009 18:51:55 -0000 John Baldwin wrote: > On Thursday 17 September 2009 6:42:29 am Doug Barton wrote: >>> Also, I agree with Oliver; YES should probably be the default >>> (POLA) so folks annoyed by 'too much information' in console.log >>> can disable it. >> This late in the release cycle I'm comfortable adding a knob, but I'm >> not comfortable toggling the default. If there is consensus on the >> freebsd-rc list to make the default "yes" then I will go with that >> consensus. > > I actually vote for getting this into 8.0 and turning the messages back on to > undo the current POLA violation in 8.0. The biggest thing I think is just > restoring the functionality as the messages are handy when debugging a > startup issue. I made the change in HEAD 5 days ago with the default to off, I can easily switch that to on if that is the consensus. I also sent a message to re@ around the same time but haven't heard back from them. Doug -- This .signature sanitized for your protection From owner-freebsd-rc@FreeBSD.ORG Sat Sep 26 14:37:39 2009 Return-Path: Delivered-To: freebsd-rc@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id F1A28106566B for ; Sat, 26 Sep 2009 14:37:39 +0000 (UTC) (envelope-from jhay@meraka.csir.co.za) Received: from zibbi.meraka.csir.co.za (zibbi.meraka.csir.co.za [IPv6:2001:4200:7000:2::1]) by mx1.freebsd.org (Postfix) with ESMTP id 88A378FC0C for ; Sat, 26 Sep 2009 14:37:39 +0000 (UTC) Received: by zibbi.meraka.csir.co.za (Postfix, from userid 3973) id 7147539825; Sat, 26 Sep 2009 16:37:36 +0200 (SAST) Date: Sat, 26 Sep 2009 16:37:36 +0200 From: John Hay To: freebsd-rc@freebsd.org Message-ID: <20090926143736.GA21588@zibbi.meraka.csir.co.za> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4.2.3i Subject: zfs boot and fstab chicken and egg problem X-BeenThere: freebsd-rc@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion related to /etc/rc.d design and implementation." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 26 Sep 2009 14:37:40 -0000 Hi, I have setup a zfs only system using 2 mirrored disks and gpart, using gptzfsboot to boot. That part is working well. The problem comes when you need to add things like the linproc filesystem. If you add that to fstab, the rc scripts will try to mount that before the zfs filesystems and fail because rcorder put mountcritlocal before zfs. Should a system that boot from zfs have it the other way around maybe? I understand that my kind of setup is in the minority, but I guess that more and more people will start to use zfs as their primary filesystem. John -- John Hay -- jhay@meraka.csir.co.za / jhay@FreeBSD.org From owner-freebsd-rc@FreeBSD.ORG Sat Sep 26 21:39:46 2009 Return-Path: Delivered-To: freebsd-rc@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id DA1F91065676 for ; Sat, 26 Sep 2009 21:39:46 +0000 (UTC) (envelope-from jilles@stack.nl) Received: from mx1.stack.nl (relay02.stack.nl [IPv6:2001:610:1108:5010::104]) by mx1.freebsd.org (Postfix) with ESMTP id A017F8FC1A for ; Sat, 26 Sep 2009 21:39:46 +0000 (UTC) Received: from snail.stack.nl (snail.stack.nl [IPv6:2001:610:1108:5010::131]) by mx1.stack.nl (Postfix) with ESMTP id 82B0A35A824; Sat, 26 Sep 2009 23:39:45 +0200 (CEST) Received: by snail.stack.nl (Postfix, from userid 1677) id 6B851228CD; Sat, 26 Sep 2009 23:39:45 +0200 (CEST) Date: Sat, 26 Sep 2009 23:39:45 +0200 From: Jilles Tjoelker To: John Hay Message-ID: <20090926213945.GB88702@stack.nl> References: <20090926143736.GA21588@zibbi.meraka.csir.co.za> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20090926143736.GA21588@zibbi.meraka.csir.co.za> User-Agent: Mutt/1.5.18 (2008-05-17) Cc: freebsd-rc@freebsd.org Subject: Re: zfs boot and fstab chicken and egg problem X-BeenThere: freebsd-rc@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion related to /etc/rc.d design and implementation." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 26 Sep 2009 21:39:46 -0000 On Sat, Sep 26, 2009 at 04:37:36PM +0200, John Hay wrote: > I have setup a zfs only system using 2 mirrored disks and gpart, using > gptzfsboot to boot. That part is working well. The problem comes when > you need to add things like the linproc filesystem. If you add that to > fstab, the rc scripts will try to mount that before the zfs filesystems > and fail because rcorder put mountcritlocal before zfs. You can probably work around this using the "late" option in fstab. -- Jilles Tjoelker