| Pronouns | he/him |
New @bsdcan Video Posted:
The state of 3d-printing from OpenBSD by Andrew Hewus Fresh
@AFresh1
It's possible to do some 3d printing related things on an OpenBSD machine, but there are a bunch of popular tools that aren't available in the ports tree. We will talk about some of the different classes of software and what things are popular and whether they are currently available on OpenBSD and what the blockers are from getting those into the ports tree.
It's #Sysadmin Appreciation Day!
Tilted Windmill Press (yes, that's me) is offering 10% off all titles with coupon code YIKES. Buy print, get the ebook free.
https://tiltedwindmillpress.com
(yes, I'll be reposting throughout the day, sorry.)
New @bsdcan Video Posted:
ABI stability in FreeBSD By ShengYi Hung
The FreeBSD project doesn't guarantee the ABI stability in major version. However, for the minor version, we also not fully guarantee. This cause maintaining a out-of-tree module (at least for Kernel module like VirtualBox) a big problem because module compiles from 14.0 may not able to use at 14.1. This also cause some problem when distributing modules with freshpkg in our base because our pkg system only support build for all major version.
A wiki page distribute the workflow of CTF diff and script:
https://wiki.freebsd.org/ShengYiHong/ABIStability?highlight=%28ABI%29
The outline of my slides will be as following:
What is ABI and why we needs to stablize ABI?
How to maintain ABI stability (a tool to check and ABI tag in binary)?
ABI information (CTF and dwarf) in elf and why we use CTF?
New tools CTFDiff: Why implement new CTFDiff and don't use the illumos one? (we port libctf and other command line tools like ctfdump to FreeBSD from illumos)
CTFDiff script: scripts download tarball from web (kernel tarball) so that we can compare abi between local compile one and web.
Short demo (maybe) for ctfdiff ?
Current status of CTFDiff (needs reviewers, licenses issue (CDDL))
Future works: regulize a stable function/obj ABI/API in kernel.
Hey! I am looking for a Sony Ericsson Z520i phone- if any of you happen to have one laying around that you'd be willing to sell for cheap please let me know!!
#FediFlohmarkt
(And boost please <3)
New @bsdcan video posted:
Controlled credentials transitions without privileges: mac_do(4), mdo(1) and setcred(2) by Olivier Certner
In this talk, we will present a project that aims at allowing controlled process credentials transitions without using setuid executables but instead leveraging FreeBSD's MAC framework.
Traditional credentials-changing programs, such as sudo(8), have a non-negligible attack surface as they often include a lot of infrequently used features and mechanisms that can be dangerous from a security standpoint (e.g., loadable modules). As these programs have to run as 'root', compromising them can have catastrophic consequences.
The mac_do(4) kernel module has been introduced to allow unprivileged processes to change credentials, provided the requested changes are explicitly allowed by rules set by an administrator. It has recently undergone major changes. First, thanks to a redesign of rules, it is now possible to specify full sets of user and group IDs that must be present or absent in the final credentials for a transition to be accepted. Second, each jail can be configured with a different set of rules, allowing different transitions to be allowed as needed, or to inherit from the parent jail.
We will describe how mac_do(4)'s credentials rules work, what the role of the mdo(1) companion program is, and what you can do with them in practice.
We will also touch on some aspects of the implementation, notably why we needed to introduce the new setcred(2) system call, which allows to change all process credentials in a single call, and possibly those that are related to the use of some FreeBSD's kernel sub-systems (notably, sysctl, jails and OSD).
While the current implementation is of production quality and immediately useful, there are lots of possible ways to extend it to cover more scenarios and to progress towards our ideal of having all credentials-changing programs work without the setuid bit. We will present them in the hope to get feedbacks.
It's official! The artwork for the European *BSD 😈⛳🐡 event of 2025 has made it on the website!
Grab your tickets 🎟️ at https://tickets.eurobsdcon.org
Check our the program/schedule https://events.eurobsdcon.org/2025/schedule/
EuroBSDCon 2025 in Zagreb, Croatia 🇭🇷
September 25-28, 2025
A History of the BSD Daemon by Marshall Kirk McKusick
This talk tells the history of the BSD Daemon. It starts with the first renditions in the 1970s of the daemons that help UNIX systems provide services to users. These early daemons were the inspiration for the well-known daemon created by John Lasseter in the early 1980s that became synonymous with BSD as they adorned the covers of the first three editions of `The Design and Implementation of the BSD Operating System' textbooks. The talk will also highlight many of the shirt designs that featured the BSD Daemon.
For more information about BSDCan , please visit:
https://www.bsdcan.org
For more information about the BSD Daemon, please visit:
https://www.mckusick.com/beastie/mainpage/copyright.html
https://www.freebsd.org/copyright/daemon/
https://en.wikipedia.org/wiki/BSD_Daemon
A distributed filesystem for OpenBSD by Rob Keizer
This talk goes over the development of a distributed filesystem tailored for OpenBSD. While OpenBSD excels in many areas, its native filesystem support has room for improvement. This talk goes into using the Filesystem in Userspace (FUSE) on OpenBSD to provide for a distributed and highly available filesystem.
This talk also includes an introduction to the Raft Consensus Algorithm, which plays a critical role in ensuring data consistency and reliability across distributed systems. The Elixir programming language is used, providing the necessary foundation for the implementation of the distributed FUSE filesystem on OpenBSD.
https://youtu.be/6DQqTG3QGZc?feature=shared
For more information, please visit: https://www.bsdcan.org
BSDCan 2025 Keynote: Hardware Support for Memory Hungry Applications by Margo Seltzer
https://youtu.be/OCWaGRcPO8E?feature=shared
For nearly 60 years, we lived in a CPU-centric universe. Today, we are on the brink of a transition -- GPUs are the new golden child and those children demand unprecedented amounts of DRAM to satisfy modern data-hungry applications. I'm going to talk about these hardware trends and what they mean for those of us who build systems.
Speaker bio: Margo Seltzer is Canada 150 Research Chair in Computer Systems and the Cheriton Family chair in Computer Science at the University of British Columbia. Her research interests are in systems, construed quite broadly: systems for capturing and accessing data provenance, file systems, databases, transaction processing systems, storage and analysis of graph-structured data, and systems for constructing optimal and interpretable machine learning models.
She is the author of several widely-used software packages including database and transaction libraries and the 4.4BSD log-structured file system. Dr. Seltzer was a co-founder and CTO of Sleepycat Software, the makers of Berkeley DB, the recipient of the 2021 ACM Software Sytems award and the 2020 ACM SIGMOD Systems Award. She is a past President of the USENIX Assocation and served as the USENIX representative to the Computing Research Association Board of Directors. In 2019 recipient of the USENIX Lifetime Achievement Award.
For more information, please visit:
https://www.bsdcan.org/2025/
Michael Lucas 
newt (6398)
EuroBSDCon
Stefano Marinelli