[continued from previous message]
Samba provides secure, stable and fast file and print services for all clients
using the SMB/CIFS protocol. It is an important component to seamlessly
integrate FreeBSD/Linux/Unix Servers and Desktops into Active Directory
environments. It can function both as a domain controller or as a regular
domain member.
The new FreeBSD Samba Team was created to better coordinate maintenance efforts
of the Samba ports and its dependencies, in particular:
• databases/ldb22
• databases/ldb25
• databases/ldb28
• databases/tdb
• devel/talloc
• devel/tevent
• net/samba416
• net/samba419
Notable changes in the last quarter include:
• Creation of the FreeBSD Samba Team by Timur Bakeyev, Xavier Beaudouin,
Yasuhiro Kimura, Mateusz Piotrowski, and Mikaël Urankar.
• Added SAMBA_LDB_PORT to Mk/Uses/samba.mk (sponsored by Klara, Inc.)
• Switching net/samba419 to use external dependencies by default instead of
vendoring (sponsored by Klara, Inc.)
• Updating net/samba419 to 4.19.8
Currently, the FreeBSD Samba team is coordinating efforts in the following
areas:
• Switching the default version of Samba from 4.16 to 4.19 (Bugzilla PR#
280769).
• Current blockers are:
• Broken fruit:posix_rename = yes (Bugzilla PR#281360)
• Broken replication in Samba 4.19.8_1 (Bugzilla PR#281672)
• Adding Samba 4.20 to the ports tree (Bugzilla PR#280533)
• Adding Samba 4.21 to the ports tree (Bugzilla PR#281262)
Testing and community contributions are welcome, please reach out on Bugzilla
or via the team email.
━━━━━━━━━━━━━━━━━━━━━
━━━━━━━━━━━━━━━━━━━━━
━━━━━━━━━━━━━━━━━━━━
━━━━━━━━━━━━━━
Projects
Projects that span multiple categories, from the kernel and userspace to the
Ports Collection or external projects.
Audio Stack Improvements
Contact: Christos Margiolis
The FreeBSD audio stack is one of those fields that does not attract the same
attention and development as others do, since it has been left largely
unmaintained, and, although high in quality, there is still room for
improvement — from lack of audio development frameworks, to missing
userland
utilities and kernel driver-related bugs. This project is meant to touch on all
those areas, and as such, is more of a general improvement project, than an
implementation of a specific feature.
Important work since last report:
• Several sound(4) fixes.
• Wrote mixer(8) and sound(4) tests.
• mixer(8): Implement hot-swapping
• audio(8): Initial revision
• sound: Implement dummy driver
• Improved and added sound examples.
• mididump(1): Initial revision
• virtual_oss patches.
• Gave a talk at the 09/2024 DevSummit in Dublin, Ireland.
Future work includes:
• More bug fixes and improvements.
• Finalize and commit of audio(8) and mididump(1).
• Implement a generic MIDI layer, similar to pcm/, and improve/modernize
the
MIDI codebase in general.
• Implement a bluetooth device management utility.
• More virtual_oss patches and improvements.
• Attempt to implement an snd_hda(4) pin-patching mechanism.
• Investigate SOF/DMIC support.
You can also follow the development process in freebsd-multimedia@, where I
post regular reports.
Sponsor: The FreeBSD Foundation
━━━━━━━━━━━━━━━━━━━━━
━━━━━━━━━━━━━━━━━━━━━
━━━━━━━━━━━━━━━━━━━━
━━━━━━━━━━━━━━
A bhyve management GUI written in Freepascal/Lazarus
Links:
Bhyvemgr URL: https://github.com/alonsobsd/bhyvemgr/
Contact: José Alonso Cárdenas Márquez
Bhyvemgr is a bhyve management GUI written in Freepascal/Lazarus on FreeBSD. It
needs a bunch of tools mostly installed by the base system and some installed
from ports/packages. The main goal is to be a desktop application focus on
desktop user to easily and quickly setup and run virtual machines on FreeBSD
hosts.
It should be used for virtual machines testing purpose (not for production).
For a tool for production virtual machines management, take a look at sysutils/
vm-bhyve, sysutils/bmd, or sysutils/cbsd.
Bhyvemgr supports aarch64 on 15-CURRENT only, and amd64 from FreeBSD 13.x to
15-CURRENT. It can be compiled from sysutils/bhyvemgr as a port, or installed
as packages with gtk2, qt5, or qt6 interface support.
People interested in helping the project are welcome.
Version at the end of 2024Q3: 1.1.0
TODO
• Test on real aarch64 hardware
• Add uart device support
• Add missing global setting entries (bios, board, chassis, system)
━━━━━━━━━━━━━━━━━━━━━
━━━━━━━━━━━━━━━━━━━━━
━━━━━━━━━━━━━━━━━━━━
━━━━━━━━━━━━━━
Changes to dhclient to speed up the FreeBSD boot process
Links:
Speeding up the FreeBSD boot process URL: https://wiki.freebsd.o
g/SummerOfCode2024Projects/SpeedingUpTheFreeBSDBootProcess
dhclient Pull Request URL: https://github.com/freebsd/freebsd-src/pull/1368
Contact: Isaac Cilia Attard
As part of my Google Summer of Code 2024 project, involving speeding up the
FreeBSD boot process, I have worked on decreasing the time it takes for ARP
resolution within dhclient to happen. This involved reducing the default ARP
resolution timeout from 2000 ms to 250 ms, and adding an option to disable it
altogether. The latter is useful within cloud environments, where a node is
certain to have an IP address allotted to it.
As a consequence of this, connecting to a DHCP network is now faster, including
the boot process during which this happens. The speedup experienced is about 2
seconds.
This causes FreeBSD systems to boot significantly faster than before.
Sponsor: Google LLC (GSoC 2024)
━━━━━━━━━━━━━━━━━━━━━
━━━━━━━━━━━━━━━━━━━━━
━━━━━━━━━━━━━━━━━━━━
━━━━━━━━━━━━━━
Capsicum and Bhyve Code Audit
Contact: Ed Maste Contact: Pierre Pronchery <
pierre@freebsdfoundation.org>
With the support of the Alpha-Omega project, the FreeBSD Foundation undertook
code audits of two important subsystems — the bhyve hypervisor, and the
Capsicum sandboxing framework. In addition to uncovering vulnerabilities in
these systems to correct, the audits look to identify classes of
vulnerabilities and/or suboptimal coding practices that we can look to address
across the project.
The Foundation interviewed several firms, and selected Synacktiv to perform the
audit. A number of issues with critical and high severity were identified,
which have been fixed as documented in security advisories:
• FreeBSD-SA-24:09.libnv
• FreeBSD-SA-24:10.bhyve
• FreeBSD-SA-24:11.ctl
• FreeBSD-SA-24:12.bhyve
• FreeBSD-SA-24:14.umtx
• FreeBSD-SA-24:15.bhyve
• FreeBSD-SA-24:16.libnv
Fixes are in progress for a number of lower-severity issues. The code audit
[continued in next message]
--- SoupGate-Win32 v1.05
* Origin: you cannot sedate... all the things you hate (1:229/2)
|
