To do 25.07 or not?! That is the question!

JD 0

I saw similar behavior in NUT several releases back (don't recall which). But it's not resurfaced since. The instance running is polling the UPS over SNMP.

Zermus

FWIW doing a "pfSense-upgrade -d" from CLI fixes this for me and does the upgrade properly. Not sure why that works and the GUI fails lol. I did have to rebuild my base packages. Here is what ChatGPT had to say about it. I had the same problem, two different locations, network providers, etc. One is in a datacenter with multiple network redundancies so I doubt it was a network issue.

1. Root cause:
   The core problem was due to an incomplete or partially failed upgrade from pfSense 24.11 to 25.07. The missing critical libraries (libmd.so.7), corrupted package repositories, and broken package signatures indicate that some part of the upgrade script was interrupted, incomplete, or encountered dependency conflicts.

2. Specific indicators of broken upgrade:
   Missing libraries (libmd.so.7) causing package operations to fail.

Missing critical files (/usr/local/sbin/read_global_var, /usr/local/libexec/pfSense-upgrade, and /etc/version) indicate that pfSense-base or core packages were only partially upgraded.

Invalid or broken repository signatures (pkg-static: Error loading trusted certificates) point to repository configuration or trust issues post-upgrade.

Dependency conflicts (IGNORE_OSVERSION prompts) clearly indicated version mismatches due to packages from different pfSense/FreeBSD versions.

AndyRH

Updated my 7100. Took less than 5 minutes.

For some unknown reason the CPU usage has dropped. Even with a speed test pushing 1.29Gb the CPU only gets to about 50%. Yesterday that same test was pushing 80%. Crazy...

stephenw10

Hmm, what version were you seeing 80% usage in?

AndyRH

@stephenw10 24.11 would idle above 30% and speed test would push it over 80%. The only change was the upgrade.
I never saw a performance problem so I never chased it.
For a short time I had 2Gb internet and it would hit 100% pushing 2.5Gb which was the limit of the test machine.

stephenw10

Hmm, interesting! PPPoE WAN with the new driver maybe?

AndyRH

@stephenw10 Fiber straight into the 7100. Nothing funky. No heavy packages.
With no performance hit I did not see a reason to chase it.

Someone fixed something and made it better.

In theory I could boot the old image and Clonezilla the disk.

stephenw10

@AndyRH said in To do 25.07 or not?! That is the question!:

Someone fixed something and made it better.

I'll take it.

chudak

Finally upgraded 24.03 to 25.07.1

After the initial reboot the network seemed to be messed up, I could not even ping or login to my router.

However after the power off and on everything looks normal.

I did skip the previous major update as my system was rebooting by itself every 5-11 minutes.

So now need to see that that problem is gone.

Cross my fingers :)

List of installed packadges:

UPDATE

The problem is not fixed :(

I see every ~17 minutes system kinda reboots.

The reason I say "kinda" that last shows one reboot I did after upgrade

[25.07.1-RELEASE][admin@pfsense.wawona.lan]/root: last -4 reboot
shutdown time Tue Aug 19 13:23

But up-time in the UI goes up to ~17 min, then I see services go down and then back up again

And that's every ~17 min!!!

Anybody any clues?

stephenw10

What do you see logged when that happens?

What are you running on?

chudak

@stephenw10 said in To do 25.07 or not?! That is the question!:

What do you see logged when that happens?

What are you running on?

QOTOM-Q355G4

UPDATE:
https://www.youtube.com/watch?v=2RR26J-dDzc

Spent 2 h trying to see what could have caused reboots/resets/up/down unsuccessfully and decided to restore the 24.03 boot env. And ... it did not work, verification during the boot failed!!!! And then another one did not work either etc. Finally I got old 23.x version booted. But I realized that I need to do a fresh install.

Thx to AI for helping to figure what key to press for BIOS setup :)

Long story short, I did fresh install + restore old config.xml and so been running for 24 + min (before it was rebooting every 17)

So hope I am out of the woods....

stephenw10

So a clean install of 25.07.1 is running OK?

Hmm, hard to imagine would could have caused that.

chudak

@stephenw10 said in To do 25.07 or not?! That is the question!:

So a clean install of 25.07.1 is running OK?

Hmm, hard to imagine would could have caused that.

Well there are several issues

1. The s/w change from 24.03 + caused issues. Support's assumption it was h/w issue turned out to be untrue
   This is a difficult problem to find a root cause for and my route h/w may have played a role as well.

2. Boot environments restore failed for multiple snapshots. That is really bad. I have no system around anymore for troubleshooting but I hope somebody can reflect and think about what could have caused that. That was scary, the whole reason I did not to want fresh reinstall because my false feeling that boot envs were safe. Alas :(

Antibiotic

@chudak Looks like on 25.07.1 AES-GSM broken, have a speed 2oo mb with openVPN client and DCO enabled. Before on 24.11 has a speed almost 1 gb with openVPN. https://forum.netgate.com/topic/198535/massive-10x-performance-regression-in-aes-gcm/7

stephenw10

That is the testing tool only. Whatever you've hitting there it's not a general openssl issue.

chudak

said in To do 25.07 or not?! That is the question!:

@stephenw10 said in To do 25.07 or not?! That is the question!:

What do you see logged when that happens?

What are you running on?

QOTOM-Q355G4

UPDATE:
https://www.youtube.com/watch?v=2RR26J-dDzc

Spent 2 h trying to see what could have caused reboots/resets/up/down unsuccessfully and decided to restore the 24.03 boot env. And ... it did not work, verification during the boot failed!!!! And then another one did not work either etc. Finally I got old 23.x version booted. But I realized that I need to do a fresh install.

Thx to AI for helping to figure what key to press for BIOS setup :)

Long story short, I did fresh install + restore old config.xml and so been running for 24 + min (before it was rebooting every 17)

So hope I am out of the woods....

My adventure did not end there.
I found that 25.07.1 was very unstable.

I could not reboot the system running 25.07.1.

It'd come up but no LAN or WAN name resolutions and no matter what I tried I could not make it reboot with no issues. I suspect it was Kea DHCP but switching back did not help either...

So I had to reinstall clean 24.03 and .... I see no issues!

Not sure what to say, but 25.07.1 was a disaster (at least for me :( )

stephenw10

Can you get a boot log? Or anything showing any errors you might have hit?

chudak

@stephenw10 said in To do 25.07 or not?! That is the question!:

Can you get a boot log? Or anything showing any errors you might have hit?

I have to leave soon and can't troubleshoot much longer, will try next tie when I back next to the router.
That's BTW why I am so touchy about being able to manage this remotely.

But I doubt it's boot issue.
Why do you suspect this?

stephenw10

I probably isn't specific to boot but if there are any errors there it would be a clue.

Any logs showing errors would be something to go on.