{"@attributes":{"version":"2.0"},"channel":{"title":"Ryan Kavanagh's \/dev\/brain","link":"\/feeds\/planet-debian.xml","description":"Recent content for Ryan Kavanagh's \/dev\/brain","language":"en-CA","item":[{"title":"Battery charge start and stop threshold on OpenBSD","link":"\/blog\/2023-12-20-battery-charge-start-stop-threshold-on-openbsd\/","pubDate":"Wed, 20 Dec 2023 11:11:59 -0500","guid":"\/blog\/2023-12-20-battery-charge-start-stop-threshold-on-openbsd\/","description":"

I often use my laptops as portable desktops: they are plugged into AC\npower and an external monitor\/keyboard 95% of time. Unfortunately,\ncontinuous charging is hard on the battery. To mitigate this,\nThinkPads have customizable start and stop charging thresholds, such\nthat the battery will only start charging if its level falls below the\nstart threshold, and it will stop charging as soon as it reaches the\nstop threshold. Suggested thresholds from Lenovo’s battery team can\nbe found in this comment<\/a>.<\/p>\n

You can set these thresholds on Linux using\ntlp-stat(8)<\/a>, and you can make the values persist across\nreboots by setting START_CHARGE_THRESH_BAT0<\/code> and\nSTOP_CHARGE_THERSH_BAT0<\/code> in \/etc\/tlp.conf<\/code>.<\/p>\n

I recently installed OpenBSD on my work ThinkPad, but struggled to\nfind any information on how to set the thresholds under OpenBSD. After\nonly finding a dead-end thread<\/a> from 2021 on misc@, I started\ndigging around on how to implement it myself. The acpithinkpad<\/code> and\nacpibat<\/code> drivers looked promising, and a bit of Google-fu lead me to\nthe following small announcement in the OpenBSD 7.4 release\nnotes<\/a>:<\/p>\n

\n

New sysctl(2) nodes for battery management,\nhw.battery.charge*. Support them with acpithinkpad(4) and aplsmc(4).<\/p>\n<\/blockquote>\n

Lo and behold, setting the start and stop threshold in OpenBSD is\nsimply a matter of setting hw.battery.chargestart<\/code> and\nhw.battery.chargestop<\/code> with sysctl<\/code>. The documentation was not\ncommitted<\/a> in time for the 7.4 release, but you can read it in\n-CURRENT’s sysctl(2)<\/code><\/a>. I personally set the following values\nin \/etc\/sysctl.conf<\/code>:<\/p>\n

hw.battery.chargestart=40\n<\/span><\/span>hw.battery.chargestop=60\n<\/span><\/span><\/code><\/pre><\/div>"},{"title":"Routable network addresses with OpenIKED and systemd-networkd","link":"\/blog\/2022-06-25-routable-network-addresses-openiked-systemd-networkd\/","pubDate":"Sat, 25 Jun 2022 07:41:37 -0400","guid":"\/blog\/2022-06-25-routable-network-addresses-openiked-systemd-networkd\/","description":"
I’ve been using OpenIKED for some time now to configure my VPN.\nOne of its features is that it can dynamically assign addresses on the internal network to clients, and clients can assign these addresses and routes to interfaces.\nHowever, these interfaces must exist before iked<\/code> can start.\nSome months ago I switched my Debian laptop’s configuration from the traditional ifupdown to systemd-networkd<\/code>.\nIt took me some time to figure out how to have systemd-networkd<\/code> create dummy interfaces on which iked<\/code> can install addresses, but also not interfere with iked<\/code> by trying to manage these interfaces.\nHere is my working configuration.<\/p>\n
First, I have systemd create the interface dummy1<\/code> by creating a systemd.netdev(5)<\/code> configuration file at \/etc\/systemd\/network\/20-dummy1.netdev<\/code>:<\/p>\n
[NetDev]\nName=dummy1\nKind=dummy \n<\/code><\/pre>\n
Then I tell systemd not to manage this interface by creating a systemd.network(5)<\/code> configuration file at \/etc\/systemd\/network\/20-dummy1.network<\/code>:<\/p>\n
[Match]\nName=dummy1\nUnmanaged=yes\n<\/code><\/pre>\n
Restarting systemd-networkd causes these interfaces to get created, and we can then check their status using networkctl(8)<\/code>:<\/p>\n
$ systemctl restart systemd-networkd.service\n<\/span><\/span>$ networkctl\n<\/span><\/span>IDX LINK     TYPE     OPERATIONAL SETUP\n<\/span><\/span>  1<\/span> lo       loopback carrier     unmanaged\n<\/span><\/span>  2<\/span> enp2s0f0 ether    off         unmanaged\n<\/span><\/span>  3<\/span> enp5s0   ether    off         unmanaged\n<\/span><\/span>  4<\/span> dummy1   ether    degraded    configuring\n<\/span><\/span>  5<\/span> dummy3   ether    degraded    configuring\n<\/span><\/span>  6<\/span> sit0     sit      off         unmanaged\n<\/span><\/span>  8<\/span> wlp3s0   wlan     routable    configured\n<\/span><\/span>  9<\/span> he-ipv6  sit      routable    configured\n<\/span><\/span>\n<\/span><\/span>8<\/span> links listed.\n<\/span><\/span><\/code><\/pre><\/div>
Finally, I configure my flows in \/etc\/iked.conf<\/code>, making sure to assign the received address to the interface dummy1<\/code>.<\/p>\n
ikev2 'hades' active esp \\\n        from dynamic to 10.0.1.0\/24 \\\n        peer hades.rak.ac \\\n        srcid '\/CN=asteria.rak.ac' \\\n        dstid '\/CN=hades.rak.ac' \\\n        request address 10.0.1.103 \\\n        iface dummy1\n<\/code><\/pre>\n
Restarting openiked and checking the status of the interface reveals that it has been assigned an address on the internal network and that it is routable:<\/p>\n
$ systemctl restart openiked.service\n<\/span><\/span>$ networkctl status dummy1\n<\/span><\/span>\u25cf 4: dummy1\n<\/span><\/span>                     Link File: \/usr\/lib\/systemd\/network\/99-default.link\n<\/span><\/span>                  Network File: \/etc\/systemd\/network\/20-dummy1.network\n<\/span><\/span>                          Type: ether\n<\/span><\/span>                          Kind: dummy\n<\/span><\/span>                         State: routable (<\/span>configured)<\/span>\n<\/span><\/span>                  Online state: online\n<\/span><\/span>                        Driver: dummy\n<\/span><\/span>              Hardware Address: 22:50:5f:98:a1:a9\n<\/span><\/span>                           MTU: 1500<\/span>\n<\/span><\/span>                         QDisc: noqueue\n<\/span><\/span>  IPv6 Address Generation Mode: eui64\n<\/span><\/span>          Queue Length (<\/span>Tx\/Rx)<\/span>: 1\/1\n<\/span><\/span>                       Address: 10.0.1.103\n<\/span><\/span>                                fe80::2050:5fff:fe98:a1a9\n<\/span><\/span>                           DNS: 10.0.1.1\n<\/span><\/span>                 Route Domains: .\n<\/span><\/span>             Activation Policy: up\n<\/span><\/span>           Required For Online: yes\n<\/span><\/span>             DHCP6 Client DUID: DUID-EN\/Vendor:0000ab11aafa4f02d6ac68d40000\n<\/span><\/span><\/code><\/pre><\/div>
I’d be happy to hear if there are simpler or more idiomatic ways to configure this under systemd.<\/p>\n"},{"title":"Writing BASIC-8 on the TSS\/8","link":"\/blog\/2021-04-07-writing-basic-8-on-the-tss-8\/","pubDate":"Wed, 07 Apr 2021 20:08:52 -0400","guid":"\/blog\/2021-04-07-writing-basic-8-on-the-tss-8\/","description":"
10<\/span>  <\/span>DEF<\/span> <\/span>FNC<\/span>(<\/span>X<\/span>)<\/span> <\/span>=<\/span> <\/span>19<\/span> <\/span>*<\/span> <\/span>COS<\/span>(<\/span>X<\/span>\/<\/span>2<\/span>)<\/span>\n<\/span><\/span>20<\/span>  <\/span>FOR<\/span> <\/span>Y<\/span> <\/span>=<\/span> <\/span>20<\/span> <\/span>TO<\/span> <\/span>-20<\/span> <\/span>STEP<\/span> <\/span>-1<\/span>\n<\/span><\/span>30<\/span>     <\/span>FOR<\/span> <\/span>X<\/span> <\/span>=<\/span> <\/span>-25<\/span> <\/span>TO<\/span> <\/span>24<\/span>\n<\/span><\/span>40<\/span>     <\/span>LET<\/span> <\/span>V<\/span> <\/span>=<\/span> <\/span>FNC<\/span>(<\/span>X<\/span>)<\/span>\n<\/span><\/span>50<\/span>     <\/span>GOSUB<\/span> <\/span>90<\/span>\n<\/span><\/span>60<\/span>  <\/span>NEXT<\/span> <\/span>X<\/span>\n<\/span><\/span>70<\/span>  <\/span>PRINT<\/span> <\/span>""<\/span>\n<\/span><\/span>80<\/span>  <\/span>NEXT<\/span> <\/span>Y<\/span>\n<\/span><\/span>85<\/span>  <\/span>STOP<\/span>\n<\/span><\/span>90<\/span>  <\/span>REM SUBROUTINE PRINTS AXES AND PLOT<\/span>\n<\/span><\/span>100<\/span> <\/span>IF<\/span> <\/span>X<\/span> <\/span>=<\/span> <\/span>0<\/span> <\/span>THEN<\/span> <\/span>150<\/span>\n<\/span><\/span>110<\/span> <\/span>IF<\/span> <\/span>Y<\/span> <\/span>=<\/span> <\/span>0<\/span> <\/span>THEN<\/span> <\/span>150<\/span>\n<\/span><\/span>120<\/span> <\/span>REM X != 0 AND Y != 0 SO IN QUADRANT<\/span>\n<\/span><\/span>130<\/span> <\/span>GOSUB<\/span> <\/span>290<\/span>\n<\/span><\/span>140<\/span> <\/span>RETURN<\/span>\n<\/span><\/span>150<\/span> <\/span>GOSUB<\/span> <\/span>170<\/span>\n<\/span><\/span>160<\/span> <\/span>RETURN<\/span>\n<\/span><\/span>170<\/span> <\/span>REM SUBROUTINE PRINTS AXES (X = 0 OR Y = 0)<\/span>\n<\/span><\/span>180<\/span> <\/span>IF<\/span> <\/span>X<\/span> <\/span>+<\/span> <\/span>Y<\/span> <\/span>=<\/span> <\/span>0<\/span> <\/span>THEN<\/span> <\/span>230<\/span>\n<\/span><\/span>190<\/span> <\/span>IF<\/span> <\/span>X<\/span> <\/span>=<\/span> <\/span>0<\/span> <\/span>THEN<\/span> <\/span>250<\/span>\n<\/span><\/span>200<\/span> <\/span>IF<\/span> <\/span>Y<\/span> <\/span>=<\/span> <\/span>0<\/span> <\/span>THEN<\/span> <\/span>270<\/span>\n<\/span><\/span>210<\/span> <\/span>PRINT<\/span> <\/span>"AXES INVARIANT VIOLATED"<\/span>\n<\/span><\/span>220<\/span> <\/span>STOP<\/span>\n<\/span><\/span>230<\/span> <\/span>PRINT<\/span> <\/span>"+"<\/span>;<\/span>\n<\/span><\/span>240<\/span> <\/span>GOTO<\/span> <\/span>280<\/span>\n<\/span><\/span>250<\/span> <\/span>PRINT<\/span> <\/span>"I"<\/span>;<\/span>\n<\/span><\/span>260<\/span> <\/span>GOTO<\/span> <\/span>280<\/span>\n<\/span><\/span>270<\/span> <\/span>PRINT<\/span> <\/span>"-"<\/span>;<\/span>\n<\/span><\/span>280<\/span> <\/span>RETURN<\/span>\n<\/span><\/span>290<\/span> <\/span>REM SUBROUTINE PRINTS FUNCTION GRAPH (X != 0 AND Y != 0)<\/span>\n<\/span><\/span>300<\/span> <\/span>IF<\/span> <\/span>0<\/span> <\/span><=<\/span> <\/span>Y<\/span> <\/span>THEN<\/span> <\/span>350<\/span>\n<\/span><\/span>310<\/span> <\/span>REM Y < 0<\/span>\n<\/span><\/span>320<\/span> <\/span>IF<\/span> <\/span>V<\/span> <\/span><=<\/span> <\/span>Y<\/span> <\/span>THEN<\/span> <\/span>410<\/span>\n<\/span><\/span>330<\/span> <\/span>REM Y < 0 AND Y < V SO OUTSIDE OF PLOT AREA<\/span>\n<\/span><\/span>340<\/span> <\/span>GOTO<\/span> <\/span>390<\/span>\n<\/span><\/span>350<\/span> <\/span>REM 0 <= Y<\/span>\n<\/span><\/span>360<\/span> <\/span>IF<\/span> <\/span>Y<\/span> <\/span><=<\/span> <\/span>V<\/span> <\/span>THEN<\/span> <\/span>410<\/span>\n<\/span><\/span>370<\/span> <\/span>REM 0 <= Y  AND V < Y SO OUTSIDE OF PLOT AREA<\/span>\n<\/span><\/span>380<\/span> <\/span>GOTO<\/span> <\/span>390<\/span>\n<\/span><\/span>390<\/span> <\/span>PRINT<\/span> <\/span>" "<\/span>;<\/span>\n<\/span><\/span>400<\/span> <\/span>RETURN<\/span>\n<\/span><\/span>410<\/span> <\/span>PRINT<\/span> <\/span>"*"<\/span>;<\/span>\n<\/span><\/span>420<\/span> <\/span>RETURN<\/span>\n<\/span><\/span>430<\/span> <\/span>REM COPYRIGHT 2021 RYAN KAVANAGH RAK AT RAK.AC<\/span>\n<\/span><\/span>440<\/span> <\/span>END<\/span>\n<\/span><\/span><\/code><\/pre><\/div>
It produces the following output:<\/p>\n
                         I\n<\/span><\/span>                         I\n<\/span><\/span>*           **           I           **\n<\/span><\/span>*           **           I           **\n<\/span><\/span>**          **          *I*          **          *\n<\/span><\/span>**          **          *I*          **          *\n<\/span><\/span>**         ***          *I*          ***         *\n<\/span><\/span>**         ****         *I*         ****         *\n<\/span><\/span>**         ****         *I*         ****         *\n<\/span><\/span>**         ****         *I*         ****         *\n<\/span><\/span>**         ****        **I**        ****         *\n<\/span><\/span>***        ****        **I**        ****        **\n<\/span><\/span>***        ****        **I**        ****        **\n<\/span><\/span>***        ****        **I**        ****        **\n<\/span><\/span>***       *****        **I**        *****       **\n<\/span><\/span>***       ******       **I**       ******       **\n<\/span><\/span>***       ******       **I**       ******       **\n<\/span><\/span>***       ******       **I**       ******       **\n<\/span><\/span>***       ******       **I**       ******       **\n<\/span><\/span>***       ******      ***I***      ******       **\n<\/span><\/span>-------------------------+------------------------\n<\/span><\/span>    ******      ******   I   ******      ******\n<\/span><\/span>    ******      ******   I   ******      ******\n<\/span><\/span>    *****       ******   I   ******       *****\n<\/span><\/span>    *****       ******   I   ******       *****\n<\/span><\/span>    *****        *****   I   *****        *****\n<\/span><\/span>    *****        *****   I   *****        *****\n<\/span><\/span>    *****        *****   I   *****        *****\n<\/span><\/span>    *****        ****    I    ****        *****\n<\/span><\/span>    *****        ****    I    ****        *****\n<\/span><\/span>     ****        ****    I    ****        ****\n<\/span><\/span>     ****        ****    I    ****        ****\n<\/span><\/span>     ***         ****    I    ****         ***\n<\/span><\/span>     ***          ***    I    ***          ***\n<\/span><\/span>     ***          ***    I    ***          ***\n<\/span><\/span>     ***          ***    I    ***          ***\n<\/span><\/span>      **          **     I     **          **\n<\/span><\/span>      **          **     I     **          **\n<\/span><\/span>      *            *     I     *            *\n<\/span><\/span>                         I\n<\/span><\/span>                         I\n<\/span><\/span><\/code><\/pre><\/div>
Next up, I am going to try my hand at writing some FORTRAN or some FOCAL69.\nIf you like tinkering with old systems, then you should give the TSS\/8 a try.<\/p>\n
\n
\n
    \n
  1. \n
    It’s written in the BASIC-8<\/a> dialect. ↩︎<\/a><\/p>\n<\/li>\n<\/ol>\n<\/div>\n"},{"title":"Static Comments in Hugo","link":"\/blog\/2021-03-12-static-comments-in-hugo\/","pubDate":"Fri, 12 Mar 2021 13:32:34 -0500","guid":"\/blog\/2021-03-12-static-comments-in-hugo\/","description":"
    I switched from Jekyll<\/a> to Hugo<\/a> last week for a variety of reasons.\nOne thing that was missing was a port of the “jekyll-static-comments<\/a>” plugin that I used to use.\nI liked it because it saved readers from being tracked by Disqus or other comments solutions, and it required no javascript.<\/p>\n
    To comment, users would email me their comment following a template attached to the bottom of each post.\nI then piped their email through a script to add it to the right post.\nAs an added benefit, I could delegate comment spam detection to my mail server.<\/p>\n
    I’ve managed to reimplement this setup using Hugo.\nFor those who are interested in a similar setup, here is what you need to do.<\/p>\n
    Pages with comments<\/h2>\n
    Instead of being single files, pages need to be leaf bundles<\/a>.\nFor example, this means that your blog post must be located at \/content\/blog\/2021-03-12-static-comments-in-hugo\/index.md<\/code> instead of \/content\/blog\/2021-03-12-static-comments-in-hugo.md<\/code>.\nThis lets you store the comments as page resources in the subdirectory \/content\/blog\/2021-03-12-static-comments-in-hugo\/comments\/<\/code>.<\/p>\n
    Partials<\/h2>\n
    You should create a comments.html<\/code> partial and include it in the layout for the pages which should get comments:<\/p>\n
    <<\/span>div<\/span> class<\/span>=<\/span>"post-comments"<\/span>><\/span>\n<\/span><\/span>  <<\/span>p<\/span> class<\/span>=<\/span>"comment-notice"<\/span>><<\/span>b<\/span>><\/span>Comments<\/<\/span>b<\/span>><\/span>: To comment on this post,\n<\/span><\/span>\tsend me an email following the template below. Your email address\n<\/span><\/span>\twill not be posted, unless you choose to include it in\n<\/span><\/span>\tthe <<\/span>span<\/span> style<\/span>=<\/span>"font-family: monospace;"<\/span>><\/span>link:<\/<\/span>span<\/span>><\/span> field.<\/<\/span>p<\/span>><\/span>\n<\/span><\/span>  <<\/span>pre<\/span> class<\/span>=<\/span>"comment-notice"<\/span>><\/span>\n<\/span><\/span>To: Your Name &lt;<\/span>your.email<<\/span>span<\/span>><\/span>@<\/<\/span>span<\/span>><\/span>example.org&gt;<\/span>\n<\/span><\/span>Subject: [blog-comment] {{ .Page.RelPermalink }}\n<\/span><\/span>\n<\/span><\/span>post_id: {{ .Page.RelPermalink }}\n<\/span><\/span>author: [How should you be identified? Usually your name or "Anonymous"]\n<\/span><\/span>link: [optional link to your website]\n<\/span><\/span>\n<\/span><\/span>Your comments here. Markdown syntax accepted.<\/<\/span>pre<\/span>><\/span>\n<\/span><\/span>\n<\/span><\/span>  {{ $scratch := newScratch }}\n<\/span><\/span>  {{ $scratch.Set "comments" (.Resources.Match "comments\/*yml") }}\n<\/span><\/span>  {{ if eq 1 (len ($scratch.Get "comments")) }}\n<\/span><\/span>  <<\/span>h2<\/span>><\/span>1 Comment<\/<\/span>h2<\/span>><\/span>\n<\/span><\/span>  {{ else }}\n<\/span><\/span>  <<\/span>h2<\/span>><\/span>{{ len ($scratch.Get "comments") }} Comments<\/<\/span>h2<\/span>><\/span>\n<\/span><\/span>  {{ end }}\n<\/span><\/span>  {{ range ($scratch.Get "comments") }}\n<\/span><\/span>  <<\/span>div<\/span> class<\/span>=<\/span>"post-comment {% cycle 'odd', 'even' %}"<\/span>><\/span>\n<\/span><\/span>\t{{ $comment := (.Content | transform.Unmarshal) }}\n<\/span><\/span>\t<<\/span>span<\/span> class<\/span>=<\/span>"post-meta"<\/span>><\/span>\n<\/span><\/span>\t\t{{- $comment.date | dateFormat "Jan 2, 2006 at 15:04" -}}\n<\/span><\/span>\t<\/<\/span>span<\/span>><\/span>\n<\/span><\/span>\t<<\/span>h3<\/span> class<\/span>=<\/span>"comment-header"<\/span>><\/span>\n<\/span><\/span>\t  {{ if $comment.link }}\n<\/span><\/span>\t  <<\/span>a<\/span> href<\/span>=<\/span>"{{ $comment.link }}"<\/span>><\/span>{{ $comment.author }}<\/<\/span>a<\/span>><\/span>\n<\/span><\/span>\t  {{ else }}\n<\/span><\/span>\t  {{ $comment.author }}\n<\/span><\/span>\t  {{ end }}\n<\/span><\/span>\t  <<\/span>br<\/span> \/><\/span>\n<\/span><\/span>\t<\/<\/span>h3<\/span>><\/span>\n<\/span><\/span>\t{{ $comment.comment | markdownify }}\n<\/span><\/span>  <\/<\/span>div<\/span>><\/span>\n<\/span><\/span>  {{ end }}\n<\/span><\/span><\/<\/span>div<\/span>><\/span>\n<\/span><\/span><\/code><\/pre><\/div>
    Comments<\/h2>\n
    To associate comments received by email to posts, I pipe them from mutt (using the |<\/code> keybinding) to the following (admittedly janky) shell script.\nIt takes the comment, reformats it appropriately, and puts it in the post’s comments<\/code> subdirectory.\nNote that it determines which filename to use based on the email’s contents, so make sure to check that the email doesn’t contain anything nefarious before you pipe it into the script!<\/p>\n
    #!\/bin\/sh\n<\/span><\/span><\/span><\/span># Copyright (C) 2016-2021 Ryan Kavanagh <rak@rak.ac><\/span>\n<\/span><\/span># Distributed under the ISC license<\/span>\n<\/span><\/span>\n<\/span><\/span>BLOG_BASE<\/span>=<\/span>"\/media\/t\/work\/blog"<\/span>\n<\/span><\/span>\n<\/span><\/span>MESSAGE<\/span>=<\/span>$(<\/span>cat)<\/span>\n<\/span><\/span>\n<\/span><\/span>EMAIL<\/span>=<\/span>$(<\/span>echo<\/span> "<\/span>${<\/span>MESSAGE<\/span>}<\/span>"<\/span> |<\/span> grep "From:"<\/span> |<\/span> sed -e 's\/From[^<]*<\\?\\([^>]*\\)>\\?.*\/\\1\/g;s\/@\/-at-\/g'<\/span>)<\/span>\n<\/span><\/span>DATE<\/span>=<\/span>$(<\/span>echo<\/span> "<\/span>${<\/span>MESSAGE<\/span>}<\/span>"<\/span> |<\/span> grep "Date:"<\/span> |<\/span> sed -e 's\/Date:\\s*\/\/g'<\/span> |<\/span> xargs -0 date -Iseconds -u -d)<\/span>\n<\/span><\/span>POST_ID<\/span>=<\/span>$(<\/span>echo<\/span> "<\/span>${<\/span>MESSAGE<\/span>}<\/span>"<\/span> |<\/span> grep "post_id:"<\/span> |<\/span> sed -e 's\/post_id: \/\/g'<\/span>)<\/span>\n<\/span><\/span>\n<\/span><\/span>COMMENTS_DIR<\/span>=<\/span>"<\/span>${<\/span>BLOG_BASE<\/span>}<\/span>\/content\/<\/span>${<\/span>POST_ID<\/span>}<\/span>\/comments\/"<\/span>\n<\/span><\/span>COMMENT_FILE<\/span>=<\/span>"<\/span>${<\/span>COMMENTS_DIR<\/span>}<\/span>\/<\/span>${<\/span>DATE<\/span>}<\/span>_<\/span>${<\/span>EMAIL<\/span>}<\/span>.yml"<\/span>\n<\/span><\/span>\n<\/span><\/span># Strip out the email headers and whitespace until the start of the comment<\/span>\n<\/span><\/span>COMMENT_WHOLE<\/span>=<\/span>$(<\/span>echo<\/span> "<\/span>${<\/span>MESSAGE<\/span>}<\/span>"<\/span> |<\/span> sed -e '\/^\\s*$\/,$!d;\/^[^\\s]\/,$!d'<\/span>)<\/span>\n<\/span><\/span># Indent everything after the comment header<\/span>\n<\/span><\/span>COMMENT_INDENTED<\/span>=<\/span>$(<\/span>echo<\/span> "<\/span>${<\/span>COMMENT_WHOLE<\/span>}<\/span>"<\/span> |<\/span> sed -e '\/^\\s*$\/,${s\/.*\/  &\/g}'<\/span>)<\/span>\n<\/span><\/span># And add the comment header<\/span>\n<\/span><\/span>COMMENT_PREFIXED<\/span>=<\/span>$(<\/span>echo<\/span> "<\/span>${<\/span>COMMENT_INDENTED<\/span>}<\/span>"<\/span> |<\/span> sed -e '0,\/^\\s*$\/{s\/^\\s*$\/comment: |\/}'<\/span>)<\/span>\n<\/span><\/span>\n<\/span><\/span>[<\/span> -d "<\/span>${<\/span>COMMENTS_DIR<\/span>}<\/span>"<\/span> ]<\/span> ||<\/span> mkdir -p "<\/span>${<\/span>COMMENTS_DIR<\/span>}<\/span>"<\/span>\n<\/span><\/span>\n<\/span><\/span>echo<\/span> "Saving the comment to <\/span>${<\/span>COMMENT_FILE<\/span>}<\/span>"<\/span>\n<\/span><\/span>\n<\/span><\/span>echo<\/span> "date: <\/span>${<\/span>DATE<\/span>}<\/span>"<\/span> |<\/span> tee "<\/span>${<\/span>COMMENT_FILE<\/span>}<\/span>"<\/span>\n<\/span><\/span>echo<\/span> "<\/span>${<\/span>COMMENT_PREFIXED<\/span>}<\/span>"<\/span> |<\/span> tee -a "<\/span>${<\/span>COMMENT_FILE<\/span>}<\/span>"<\/span>\n<\/span><\/span><\/code><\/pre><\/div>
    For example, the following comment in an email body:<\/p>\n
    post_id<\/span>:<\/span> <\/span>\/<\/span>blog<\/span>\/<\/span>2021<\/span>-<\/span>03<\/span>-<\/span>12<\/span>-<\/span>static<\/span>-<\/span>comments<\/span>-<\/span>in<\/span>-<\/span>hugo<\/span>\/<\/span>\n<\/span><\/span><\/span><\/span>author<\/span>:<\/span> <\/span>Ryan<\/span> <\/span>Kavanagh<\/span>\n<\/span><\/span><\/span><\/span>link<\/span>:<\/span> <\/span>https<\/span>:<\/span>\/\/<\/span>rak<\/span>.<\/span>ac<\/span>\/<\/span>\n<\/span><\/span><\/span>\n<\/span><\/span><\/span><\/span>Dear<\/span> <\/span>self<\/span>,<\/span>\n<\/span><\/span><\/span>\n<\/span><\/span><\/span><\/span>Here<\/span> <\/span>is<\/span> <\/span>a<\/span> <\/span>test<\/span> <\/span>comment<\/span> <\/span>for<\/span> <\/span>your<\/span> <\/span>blog<\/span> <\/span>post<\/span>.<\/span>\n<\/span><\/span><\/span><\/span>It<\/span> <\/span>supports<\/span> <\/span>*<\/span>markdown<\/span>*<\/span> <\/span>**<\/span>syntax<\/span>**<\/span> <\/span>and<\/span> <\/span>`<\/span>stuff<\/span>`<\/span>.<\/span>\n<\/span><\/span><\/span>\n<\/span><\/span><\/span><\/span>Best<\/span>,<\/span>\n<\/span><\/span><\/span><\/span>Yourself<\/span>\n<\/span><\/span><\/span><\/code><\/pre><\/div>
    results in a file content\/blog\/2021-03-12-static-comments-in-hugo\/comments\/2021-03-12T18:47:25+00:00_rak-at-example.org.yml<\/code> containing:<\/p>\n
    date<\/span>:<\/span> <\/span>2021-03-12T18:47:25<\/span>+00<\/span>:<\/span>00<\/span>\n<\/span><\/span><\/span><\/span>post_id<\/span>:<\/span> <\/span>\/blog\/2021-03-12-static-comments-in-hugo\/<\/span>\n<\/span><\/span><\/span><\/span>author<\/span>:<\/span> <\/span>Ryan Kavanagh<\/span>\n<\/span><\/span><\/span><\/span>link<\/span>:<\/span> <\/span>https:\/\/rak.ac\/<\/span>\n<\/span><\/span><\/span><\/span>comment<\/span>:<\/span> <\/span>|<\/span>\n<\/span><\/span><\/span>  Dear self,\n<\/span><\/span><\/span>\n<\/span><\/span><\/span>  Here is a test comment for your blog post.\n<\/span><\/span><\/span>  It supports *markdown* **syntax** and `stuff`.\n<\/span><\/span><\/span>\n<\/span><\/span><\/span>  Best,\n<\/span><\/span><\/span>  Yourself<\/span>  \n<\/span><\/span><\/span><\/code><\/pre><\/div>
    You can see the rendered output at the bottom of this page.<\/p>\n"},{"title":"Configuring OpenIKED VPNs for StrongSwan Clients","link":"\/blog\/2020-09-12-configuring-openiked-vpns-for-strongswan-clients\/","pubDate":"Sat, 12 Sep 2020 17:42:00 -0400","guid":"\/blog\/2020-09-12-configuring-openiked-vpns-for-strongswan-clients\/","description":"
    A few weeks ago I configured a road warrior VPN setup. The\nremote end is on a VPS running OpenBSD and OpenIKED, the VPN is\nan IKEv2 VPN using x509 authentication, and the local end is\nStrongSwan. I also configured an IKEv2 VPN between my VPSs. Here\nare the notes for how to do so.<\/p>\n
    In all cases, to use x509 authentication, you will need to\ngenerate a bunch of certificates and keys:<\/p>\n
I recently discovered SDF<\/a>’s PiDP-8<\/a>.\nYou can access it over SSH and watch the blinkenlights over its twitch stream<\/a>.\nIt runs TSS\/8, a time-sharing operating system written in 1967 by Adrian van de Goor while a grad student here at CMU.\nI’ve been having fun tinkering with it, and I just wrote my first BASIC program1<\/a><\/sup> since high school.\nIt plots the graph of some user-specified univariate function.\nI don’t claim that it’s elegant or well-engineered, but it works!<\/p>\n