**** BEGIN LOGGING AT Tue Apr 12 23:59:56 2005 Apr 13 02:36:42 hehe, I hereby announce successful usage of in-kernel IPSec in openslug! Apr 13 02:36:44 :) Apr 13 02:37:04 cool - have you checked in the new defconfig? :-) Apr 13 02:37:22 nope, still in early testing-phase Apr 13 02:38:10 and I had to compile ipsec-tools on the slug, so it's still a bit ugly. Apr 13 02:46:14 hm... performance is indeed suboptimal. ~2MBit max throughput... :( Apr 13 02:46:33 I think I need some better encryption-algorithm. Apr 13 02:48:02 or "worse" encryption algorithm with better speed :-) Apr 13 02:48:48 hehe, I was using 3des, so it was baaaaad and slow. :) Apr 13 02:50:19 blowfish Apr 13 02:50:22 ? Apr 13 02:51:11 hmm well actually that's fast on openssl, but not in dropbear so I guess it's implementation-dependent Apr 13 02:53:48 I've heard thar XOR is pretty fast .... Apr 13 02:55:28 yiiieehaa! 5mbit with blowfish, I'm getting close! Apr 13 02:57:27 ah, I guess it's using the openssl implementation :-) Apr 13 02:59:03 dunno, it's a kernel-module, perhaps they "recyled" the openssl-code. Apr 13 02:59:52 hmm, interesting Apr 13 03:00:47 jacques: have you heard about the new .altroot support in switchbox? Apr 13 03:02:55 rwhitby, nope! Apr 13 03:06:06 mealtime, I'm off. Apr 13 03:27:51 jacques: check out the switchbox linuxrc for the implementation Apr 13 03:30:05 rwhitby, cool, will do Apr 13 03:46:21 morning [g2] Apr 13 03:46:41 <[g2]> jacques, morning! Apr 13 03:46:54 <[g2]> I hope you've been well Apr 13 03:47:04 <[g2]> what's been happening ? Apr 13 03:52:55 hey [g2]! Apr 13 03:55:38 [g2], are you up early or up late? Apr 13 03:56:50 <[g2]> rwhitby, up early :) Apr 13 03:56:57 <[g2]> siddy hey! Apr 13 03:57:23 <[g2]> rwhitby, I let jacques know I flashed APEX on my gateworks board Apr 13 03:57:48 <[g2]> there's a little issue with a hard reset, but it's working well Apr 13 03:59:33 [g2], IPSec works. So, I'll promote my openslug to be the vpn-gateway for my wlan! :) Apr 13 03:59:44 <[g2]> siddy, AWESOME! Apr 13 03:59:55 <[g2]> is it pretty easy to setup ? Apr 13 04:00:22 you just need some kernel-modules and the userspace-tools "ipsec-tools". Apr 13 04:00:37 <[g2]> and a key :) Apr 13 04:00:45 indeed! :) Apr 13 04:01:11 <[g2]> cool, so it's pretty turnkey from OE Apr 13 04:01:38 I get ~ 5MBit with an 192bit blowfish-encryption, so it can handle almost all my wireless traffic. Apr 13 04:01:54 <[g2]> have you noticed how much larger the kernel is and how big the modules are ? Apr 13 04:02:15 <[g2]> excellent Apr 13 04:02:36 I didn't even need to reflash the kernel, so the size should be the same with IPSec-modules enabled. Apr 13 04:03:00 let's add the modules to the defconfig and openslug.conf EXTRAs. Apr 13 04:03:02 <[g2]> do you know how blowfish compares to aes computationlly wise ? Apr 13 04:03:15 <[g2]> sounds good to me Apr 13 04:03:48 iirc blowfish should be faster, but I didn't succeed in setting up aes, so I don't really know. Apr 13 04:05:14 <[g2]> Hmmmmm I think my 422 my have the crypto stuff Apr 13 04:06:37 <[g2]> hey I just noticed this when I was checking on the 422 Apr 13 04:06:44 <[g2]> http://www.usr-emea.com/products/p-wired-product.asp?prod=net-8200&loc=emea Apr 13 04:07:20 <[g2]> HEY USB 2.0 Apr 13 04:07:33 <[g2]> This looks like a slug replacement possibility ! Apr 13 04:08:13 <[g2]> 64MB ram, 16MB flash .... yummy Apr 13 04:09:39 <[g2]> firmware and GPL ooooohhhhh Apr 13 04:13:37 [g2], you ever figure out why the slug seems to be running at half speed? Apr 13 04:14:25 horizontal :-( Apr 13 04:15:45 anyone able to access the GPL link? Apr 13 04:17:48 seems to be broken Apr 13 04:18:21 how convenient :-) Apr 13 04:19:10 yeah :-\ Apr 13 04:19:19 I've resolved to only buy devices that can stand vertically. Apr 13 04:30:27 <[g2]> actually I got the link to come up one and I've dl'ed the firmware source on version back Apr 13 04:30:56 <[g2]> http://www.usr.com/support/gpl/USR8200_v2612_er.tgz Apr 13 04:47:02 well, there's no apps in that tree, so I hope they're no using busybox .... Apr 13 04:48:59 openrg-rmk6-ds1 Apr 13 04:49:10 <[g2]> I noticed that too, I don't think they need to really distribute custom apps Apr 13 04:49:35 <[g2]> the firmware is actually kinda old, from 03 and 04 Apr 13 04:49:50 if those custom apps are not GPL derivatives, then they don't need to distribute. Apr 13 04:50:02 <[g2]> and the box seem expensive from my quick search on the web Apr 13 04:50:18 <[g2]> nod, on the if they weren't GPL to start with Apr 13 04:50:49 looks like it's just using the Jungo software platform Apr 13 04:52:10 <[g2]> http://www.jungo.com/openrg/design_example_us.html Apr 13 04:52:13 <[g2]> nod. Apr 13 04:52:32 <[g2]> only missing serial access and possibly JTAG Apr 13 04:52:57 <[g2]> it's got a fireware port too Apr 13 04:53:31 <[g2]> http://www.jungo.com/openrg/design_example_welltech.html Apr 13 04:53:58 <[g2]> looks like somebody actually brought out the serial for the ixp420 :) Apr 13 04:54:57 and drivers/csr/csr.o is referenced by the makefile, but not included or buildable Apr 13 04:55:24 looks like a token GPL source release, not a real one. Apr 13 04:55:49 <[g2]> that's also the previous version of the firmware Apr 13 04:56:31 <[g2]> they don't have the souce up for the current version but I think that's from 09/2003 Apr 13 04:56:52 another good jbowler patch :-) Apr 13 04:57:57 <[g2]> cool! Apr 13 04:58:14 <[g2]> that's a depmod fix for the cross dependancies Apr 13 04:59:23 <[g2]> that should probably go upstream if it checks out ok Apr 13 05:00:50 <[g2]> we need to get jbowler plugged into #uclibc and their ml Apr 13 05:18:13 that fixes the long first boot? Apr 13 05:19:44 <[g2]> you mean the 1.1 minute first boot ? Apr 13 05:20:15 yeah, does that patch mean we can do the depmod stuff at image creation time instead of run-time? Apr 13 05:20:19 <[g2]> I'd guess it might save 10 seconds Apr 13 05:20:46 <[g2]> a big-pig is dropbear key generation Apr 13 05:21:32 <[g2]> we should probably change the script to pre generate the key or have a config that pulls it from a usb stick/drive Apr 13 05:22:24 <[g2]> my understanding is that the keys generated are probably pretty weak do to the way they are generated Apr 13 05:22:52 <[g2]> I'd think the generation from the build system would be better Apr 13 05:23:11 but then everyone who downloads an image would have the same key Apr 13 05:23:13 <[g2]> just an un-informed opinion Apr 13 05:23:53 <[g2]> well for a binary possibly, unless you needed to run a program and stick a flash stick in to get the key off that Apr 13 05:24:51 <[g2]> I mean we are talking about startup here, where everyone should be local to the box on the first boot Apr 13 05:25:58 a one minute first boot is not a big deal. not everyone will have a flash key handy Apr 13 05:26:12 heck, windows takes longer than a minute on every boot! Apr 13 05:27:46 <[g2]> well by default if the usb stick isn't there it could generate a default key as it currently does Apr 13 05:28:24 rwhitby: you shouldn't compare a CE embedded device with a windows machine :) Apr 13 05:28:25 <[g2]> also this would fix the issue of having to flush entry in known_hosts on every reflash Apr 13 05:29:05 <[g2]> I think booting should be < 20 seconds Apr 13 05:29:27 hell, i have a blu-ray recorder that takes about a minute to boot :P Apr 13 05:29:30 <[g2]> and I'll probably be there in a week or so Apr 13 05:29:53 <[g2]> Openslug takes about 45 seconds to boot right now Apr 13 05:30:01 <[g2]> about 25 is redboot/switchbox Apr 13 05:30:19 <[g2]> maybe closer to 30 Apr 13 05:30:56 <[g2]> APEX will cut that time to I'd guess 2-3 Apr 13 05:31:33 * [g2] goes to time on the avila board Apr 13 05:31:37 well, i'd like to get started with openslug soon again Apr 13 05:31:49 and that involves flashing a new bootloader :) Apr 13 05:32:10 <[g2]> APEX should be ready in the next couple weeks Apr 13 05:32:24 <[g2]> it's ready now if you've got JTAG and serial Apr 13 05:32:47 hm, i don't... i'll solder jtag if things go wrong Apr 13 05:32:49 not earlier :) Apr 13 05:49:32 morning. Apr 13 05:49:51 <[g2]> Ok with no boot delay it's just under 22 seconds Apr 13 05:49:56 * VoodooZ_Work wants APEX soon! :) Apr 13 05:50:30 nice Apr 13 05:51:07 <[g2]> yeah 22 seconds from power on Apr 13 05:51:29 <[g2]> but this is on the avila board with is a little faster Apr 13 05:51:55 <[g2]> but my jffs2 partition is bigger some maybe it averages out. Apr 13 05:52:08 I'm sure it will kick ass anyways. Apr 13 05:52:13 <[g2]> it's basically 2 seconds from power-on to loading starting the kernel Apr 13 05:52:32 go completely custom or go home! :) Apr 13 05:52:49 <[g2]> that's the quote of the month ! Apr 13 05:53:01 * [g2] hugs VoodooZ_Work Apr 13 05:54:18 hehehe Apr 13 05:54:39 * VoodooZ_Work hugs [g2] right back Apr 13 06:18:31 hmm... openslug-packages fails while trying to config mysql for me.. It complains about linuxthreads.. Apr 13 06:18:54 [g2]: Good thing you're here... Reminds me I have to put up those pics ;) Apr 13 06:19:04 <[g2]> cool Apr 13 06:19:26 Is somebody experiencing problems with the Nslu2-linux repo? Apr 13 06:19:38 I got a connection time-out trying to pull. Apr 13 06:20:01 And I doubt it's my connection as I wouldn't be able to type this. :) Apr 13 06:21:18 same here Apr 13 06:22:33 yup, confirmed ;) Apr 13 06:28:25 It's the server that's down. Apr 13 06:28:49 cool. Apr 13 06:29:09 heh.. now that depends on one's point of view ;) Apr 13 06:30:18 at least I know I'm not alone. Apr 13 06:45:06 [g2]: The images are at http://www.repvik.info/usbkey/ Apr 13 06:45:17 Haven't set up a page for them, gotta sleep now ;) Apr 13 06:45:35 That two last images are of my second usb-key (which also broke) Apr 13 06:45:48 that -> the Apr 13 06:46:24 (and yes, my camera has suddenly decided to suck) Apr 13 06:49:21 But the usbkey looks kinda cool hovering above the cpu :) Apr 13 06:52:23 <[g2]> NAiL, looks cool thx for putting up the pix Apr 13 06:53:51 [g2]: np. I can take a better one later on, where you can see the key more from the side. It'll show off how nice it really looks ;) Apr 13 07:03:03 nice pix NAiL Apr 13 07:03:15 I have some new pics to upload soon too ... Apr 13 07:06:38 rwhitby: Is it possible to reduse the size of the /initrd? It's using ~400 of ~850k ;) Apr 13 07:07:08 sure - build your own switchbox with less capabilities. Apr 13 07:07:56 aha ;) Apr 13 07:11:46 http://nslu2-linux.thestuffguy.com/gallery/wl500gx-usb-serial Apr 13 07:12:10 a new twist on adding a serial port - make it a usb device port instead Apr 13 08:01:22 <[g2]> rwhitby, pls do tell about the little board Apr 13 08:03:30 <[g2]> what are you using to glue that to the pcb ? Apr 13 08:10:24 rwhitby: Nice :) Apr 13 08:11:09 [g2]: that little board is out of one of those phone data cables that everyone picked up cheap. Apr 13 08:11:19 it's just a pl2303 usb to serial converter board. Apr 13 08:11:35 and it's double sided mounting tape which glues it to the pcb :-) Apr 13 08:11:50 <[g2]> nod on the board Apr 13 08:12:01 <[g2]> what kinda of mounting tape ? Apr 13 08:12:20 just normal household double sided mounting tape Apr 13 08:12:21 <[g2]> obviously the glue must be non-conducting :) Apr 13 08:12:42 most mounting tape is non-conductive :-) Apr 13 08:13:08 the usb socket is also held down with the same mounting tape at the moment, but I'll probably glue that later ... Apr 13 08:13:09 <[g2]> I guess one could test with a connectivity tester Apr 13 08:13:34 new photos of slug central coming soon .... Apr 13 08:13:40 <[g2]> cool Apr 13 08:14:04 * [g2] is going to have to find some double sided tape Apr 13 08:14:22 I've got photos of my fancy-but-unfortunately-not-working serial cable mod as well... I used the audio-cable from a CD-ROM ;) Apr 13 08:16:03 [g2]: 3M "Scotch" tape, number 110. Mounting Tape, "Heavy Duty". "Strong, double-stick foam tape" Apr 13 08:16:14 Holds up to 2lbs (900g) Apr 13 08:16:31 <[g2]> COOL! Apr 13 08:17:07 <[g2]> 2lbs for what area ? Apr 13 08:17:24 * [g2] can tape kids to the wall when they act up Apr 13 08:17:27 <[g2]> :) Apr 13 08:20:03 rwhitby: Does the PAP2 run linux as well? Apr 13 08:21:33 dunno, don't have one. Apr 13 08:22:49 New photos are up: http://nslu2-linux.thestuffguy.com/gallery/slug-central Apr 13 08:23:10 [g2]: you'll notice quite a bit of use of that mounting tape .... Apr 13 08:28:04 better overview picture uploaded **** ENDING LOGGING AT Wed Apr 13 23:59:56 2005