IRC log for #maemo-ssu on 20130106

00:07.18luffreemangordon: I find the answer ;)
00:08.07freemangordonok :)
00:08.12luffreemangordon: BTW there is gvs-backends with obexftp in maemo _but_ it needs obex-data-server which isn't in maemo ;)
00:08.38freemangordonluf:  gvs-backends? what does that do?
00:08.49freemangordonthe same as obexd plugin?
00:09.06freemangordonluf: BTW where?
00:09.31luffreemangordon: osso-gnomevfs-extra can list the devices ok but there is a problem that it uses btcond which exists only in osso-gwconnect (Diablo package only). I have to rewrite it for bluez.
00:10.05luffreemangordon: I'm sorry: gvfs-backends
00:10.45lufgvfs is used in newer gnome (as gnomevfs is old and not used)
00:15.01freemangordonaah, ok
00:15.07luffreemangordon: do you have any idea how the icons are choosed?
00:15.13freemangordonyes
00:15.15freemangordon:D
00:15.27lufWhen I use names insted of BT MAC I see no icons :(
00:15.29freemangordonit takes the icon from device properties :D
00:15.37freemangordonok, well
00:15.44freemangordonit is using some gconf value
00:15.52freemangordonjust a minute
00:16.27lufWhen I have list of devices it's able to display phone/computer icons based on the name (just BT address)
00:16.46lufHowever BT address is unreadable for humans :D
00:19.20freemangordonluf: are you sure you setup everything correctly
00:19.21freemangordon?
00:19.34freemangordonas it seems there are 2 values, name and address
00:19.55luffreemangordon: where do you see 2 values?
00:20.14lufI need to fill GnomeVFSFileInfo *info;
00:20.35freemangordonI know, gimme some time, i'll provide the links
00:20.49lufThere is only name and symlink_name. When name is [BT MAC] it shows the icons. otherwise it doesn't.
00:21.18freemangordonre icon:https://gitorious.org/community-ssu/libhildonfm/blobs/master/hildon-fm/hildon-file-system-obex.c#line312
00:22.27lufYes. If the name is [BT MAC] it shows the icon right ...
00:22.54freemangordonluf: for the name: https://gitorious.org/community-ssu/libhildonfm/blobs/master/hildon-fm/hildon-file-system-obex.c#line340
00:22.56lufThere is no possibility to have readable name and icon in that case (or patch the file you sent).
00:23.16freemangordonshht, check the code ^^^ :P
00:23.38lufI see ...
00:23.52lufThe ossofilemanager is using _get_icon_from_uri
00:24.01freemangordonluf: no
00:24.15freemangordonit receives everything ready from libhildonfm
00:24.28freemangordonand just uses it
00:24.40freemangordonfortunately we have libhildonfm code
00:24.41freemangordon;)
00:25.14freemangordonluf: I am not sure dbus_message_new_method_call ("org.bluez", "/org/bluez/hci0",
00:25.14freemangordon"org.bluez.Adapter", "GetRemoteName");
00:25.23freemangordonis a valid for BT4
00:25.31*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
00:25.40freemangordonthat's why you don;t have device name
00:26.11lufNo it's not.
00:26.25freemangordonyou' rather have to use org.bluez.Device
00:26.27freemangordonafaik
00:26.36lufI think it's not valid even for the stock bluez.
00:26.51freemangordonit is still 4
00:27.00freemangordonbluez4 that is
00:27.39freemangordonthe code we have is legacy from diablo, which(judging by the code) has bluez3
00:27.50lufOk so it's ok to put there just BT MAC and fix the hildon ...
00:27.59freemangordonseems so
00:28.10lufOk.
00:28.33freemangordonwhere is the code of libhildonfm you use?
00:29.00freemangordonI can help a bit and re-write that function to use bluez4 dbus api
00:29.00lufI don't change libhildonfm (I just uncomment the #if 0 you sent me.
00:29.11freemangordonhmm, ok
00:29.15luffreemangordon: don't worry. I'll do it.
00:29.22freemangordonwell, ok :)
00:29.22lufNow I knwo what to change ;)
00:29.59freemangordonI am just afraid there are too much places to be changed for one men. but ok :)
00:30.06lufAnd I know how to obtain the name ;)
00:30.17freemangordonok, great
00:30.33lufI see two places (gnomevfs-extras and now also libhildonfm)
00:30.41lufThanks. It's big help.
00:30.43freemangordonluf: and missind daemon
00:30.49freemangordon*missing
00:31.00luffreemangordon: no. I'll use bluez ;)
00:31.22freemangordonluf: BTW once i wrote a code to connect rfcomm, lemme check it
00:31.51freemangordoniirc it is Qt, but still
00:32.33luforg.bluez.Serial.Connect/Disconnect ;)
00:32.56lufI need just to pass/determine the path for the device ;)
00:33.38freemangordonright http://pastebin.com/KHFWygg0
00:33.53lufdbus-send --system --print-reply --type=method_call --dest=org.bluez /org/bluez/`pidof bluetoothd`/hci0/dev_00_00_00_00_00_00 org.bluez.Serial.Disconnect string:FTP
00:34.17lufYeah I know that ;)
00:34.46freemangordonluf: where from do you know it, this is mine unpublished code :P
00:35.22freemangordon(though maybe I should publish it, if not for anything else, then just for reference)
00:35.22lufqdbusviewer on my PC (also is using bluez 4.99) :D
00:35.29freemangordon:D
00:35.51lufAnd of course I know a little bit the bluez sources ;)
00:35.57freemangordonhehe
00:35.59lufhttp://maemo.org/api_refs/5.0/5.0-final/bluez/serial-api.txt
00:36.02lufAnd :)
00:36.32lufTo be honest I dislike the gnomevfs-extras code ...
00:36.39freemangordonluf: BTW isn't it better to use UUIDs?
00:38.10freemangordonthe fuck, this is lots of code. and working. defffinitely i should publish that
00:39.45freemangordonluf: http://pastebin.com/v0Fy8B4B
00:40.06freemangordonjust in case you don;t full list of have UUIDs
00:40.36freemangordons/don;t full list of have/don't have the full list/
00:40.46freemangordon~ping
00:40.46infobot~pong
00:41.04*** join/#maemo-ssu jonwil (~jonwil@27-33-137-199.static.tpgi.com.au)
00:52.52luffreemangordon: I'm not sure if it's so precisely defined on all devices.
00:53.25lufI check FTP support with UUID starting 00001106- :)
00:53.28freemangordonluf: this file is part of my SW I talked about
00:53.58freemangordonand it runs on n900.
00:54.00luffreemangordon: just curious. What does the sw do?
00:54.07freemangordonyep, the same #define FTP_UUID            "00001106" UUID_COMMON
00:54.16freemangordonluf: setting applet
00:54.25freemangordondoes whatnot with BT devices
00:54.42freemangordonwith vary fanci interface
00:54.46freemangordon*very
00:54.50luf:)
00:55.23freemangordonthe fuck, maybe I should take some rest, my typing skills are degrading every minute :D:D:D
00:56.00freemangordonluf: I started to write it back in the days when I was playing with extkbd/extmou
00:56.26freemangordonstock menu BT applet don;t have "connect" button for HID devices
00:57.03freemangordoneventually I found a way to write my own plugin (for HID), so all this stuff become useless
01:01.54*** join/#maemo-ssu kolp (~quassel@212.255.39.31)
01:04.03luffreemangordon: Ahh ok.
01:04.54lufHowever I don't like BT applet/settings. It's mess of something ...
01:05.10lufNot able to connect whatever you want (audio, network, ...)
01:06.39freemangordonluf: yeah, I know. my "replacement" does that too, but it is: 1. Qt; 2. Unfinished; :D
01:07.40luffreemangordon: It's nothing you can't fix ;)
01:07.50freemangordonhehe
01:09.02freemangordonluf: one of the UI functions is to connect to BT serial profile, so you can use /dev/rfcommN
01:09.42freemangordonwill try to put himself together and finish tklock tomorrow :)
01:09.43lufThere are several of Connect ... as I wrote. rfcomm is just one of them.
01:09.49freemangordonyep
01:10.00luf:D
01:11.05freemangordonluf: because of that project(consisting of ~60-70 files) I feel comfortable with bluez
01:11.40luffreemangordon; I pushed my last dev on osso-gnomevfs-extras into git. There is only missing connecting (still btcond).
01:12.04freemangordonhmm, can we find that daemon from somewhere?
01:12.05lufHowever listing and checking FTP is working.
01:12.13freemangordonwhat about names?
01:12.30luffreemangordon: I don't like another daemon when bluez can do that.
01:12.42lufI'll fix names in libhildonfm later.
01:12.50freemangordonluf: there might be a reason for Nokia to write a daemon
01:13.02lufmaybe bluez3 :D
01:13.47lufI'll try at least. With bluez 4.99 I also superseed bluetooth-dun and maybe more what is natively supported by bluez.
01:14.03freemangordonok
01:14.13lufAs few daemons as possible is also good for cpu, memory, ...
01:14.25freemangordonsure
01:15.02freemangordonBTW http://maemo.org/packages/package_instance/view/diablo_sdk_free_i386/osso-gwconnect/1.0.12/
01:15.18lufI know. but Diablo ...
01:15.46freemangordonnut it is sdk/free, so I suppose there is source code too. going to check
01:15.49freemangordon*but
01:16.04lufDon't waste your time ;)
01:16.10luftklock is waiting for you :D
01:16.20freemangordonaah, not today
01:16.23freemangordon:)
01:16.53freemangordonyep http://repository.maemo.org/pool/diablo/free/o/osso-gwconnect/
01:20.42freemangordonluf: well, that could be used as reference at least
01:20.56luf:)
01:30.05*** join/#maemo-ssu kolp (~quassel@212.255.39.31)
01:38.04freemangordonluf: seems you miss the call to free_device_properties(devprops); on success exit path
01:38.39freemangordonor I am missing something
01:39.36freemangordonscratch ^^^, found it
01:48.07luffreemangordon: :)
01:48.50freemangordonluf: yeah, I tought that you introduced get_device_properties function
01:50.00luffreemangordon: you're right I introduced that function.
01:50.46freemangordonyep, but in a different commit, so I didn;t have the whole picture when I checked the last one. that's why i though there is a bug :)
01:51.41lufAahhh ok.
01:52.48lufBTW it's funny we have osso-gwconnect-dev in maemo 5 SDK when there is no osso-gwconnect :D
01:53.07freemangordon:D
01:53.43*** join/#maemo-ssu dhbiker (~dhbiker@193.2.218.150)
01:54.20freemangordonanyway, I am off to bed, night
02:07.05jonwilhmmm, it looks like http://repository.maemo.org/pool/fremantle/free/o/osso-gwconnect/ conatins osso-gwconnect-dev deb file plus tarball that builds osso-gwconnect and osso-gwconnect-dev
03:45.44*** join/#maemo-ssu amiconn_ (amiconn@rockbox/developer/amiconn)
04:02.30*** join/#maemo-ssu DocScrutinizer05 (~HaleBopp@openmoko/engineers/joerg)
04:56.26*** join/#maemo-ssu dhbiker (~dhbiker@95.87.145.172)
05:19.04luffreemangordon: coool it works :D
05:37.51*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
07:08.48*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
07:17.35*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
08:00.04*** join/#maemo-ssu Pali (~pali@Maemo/community/contributor/Pali)
08:24.08*** join/#maemo-ssu _rd (~rd@p57B493B5.dip0.t-ipconnect.de)
08:42.28*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
08:43.11*** join/#maemo-ssu freemangordon (~freemango@130-204-50-168.2074221835.ddns.cablebg.net)
08:45.44freemangordonmerlin1991: seems like you and chemist should issue a new update ASAP, in case you've missed it:http://talk.maemo.org/showthread.php?t=88535
08:46.17merlin1991is currently reading the backlog
08:48.23freemangordonluf: cool, what works?
08:54.01*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
08:55.05*** join/#maemo-ssu jonwil (~jonwil@27-33-137-199.static.tpgi.com.au)
08:59.56freemangordonjonwil: that one is the diablo one, NFC what it does in fremantle repo
09:02.05*** join/#maemo-ssu LaoLang_cool (~LaoLang_c@221.226.175.139)
09:09.52Palimerlin1991, freemangordon: What about adding Maemo upgrade description to CSSU metapackage?
09:09.54Palihttps://wiki.maemo.org/Packaging#Maemo_upgrade_description
09:10.21Palithat string will be displayed in HAM when you click on package update details
09:10.31Palithere can be changelong
09:10.37freemangordonwhy not
09:10.50Palionly small problem
09:11.09Palithat string with changelog must be changed every time when updating cssu metapackage
09:11.16Paliso only "last" update changelog is possible
09:11.43Paliand problem with missing changelogs on wiki can be fixed
09:11.52freemangordonPali: sure, but we could have control.in, and replace $SOME_STRING_TO_MATCH in debian/rules
09:11.54Palias it will display directly in HAM
09:12.15Paliok
09:13.02freemangordonPali: BTW I am still not sure how exactly to blacklist a certificate. is move .pem to /blacklist enough?
09:13.12PaliI do not know
09:13.20Palitry to ask certman mainatainer
09:13.36Palihe blacklisted also other certificates after pr1.3.1
09:13.45freemangordonme? nah, i'll leave that to merlin1991 :)
09:13.48Pali(for cssu)
09:14.08Paliwe should ask him if he will continue to maintain certman or not
09:20.28Palifreemangordon, we can use this for geting changelog from last debian version: "dpkg-parsechangelog | sed -n 's/^  //p'"
09:20.54freemangordonPali: yep
09:21.04PaliI will write patch for debian/rules
09:21.49freemangordonPali: there are a couple of packages in CSSU right now using a debian/bontrol template, I'll try to find one
09:22.00freemangordondebian/control
09:22.05Paliwe do not need template
09:22.24freemangordonPali: what?
09:22.25Palijust call that script in debian/rules and update debian/<package>/DEBIAN/control
09:22.27*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
09:22.31Paliit is easier
09:22.47freemangordonPali: what will happen if you build it twice?
09:22.57Paliafter dh_gencontrol
09:22.59Palinothing
09:23.02freemangordonaah, ok, got it
09:23.09Pali<PROTECTED>
09:23.15freemangordonyes, yes
09:26.44merlin1991we have that maemo upgarde description already in -stable
09:26.55merlin1991I started that ;)
09:27.11freemangordonmerlin1991: sure, but it should be altered by hand :)
09:27.23merlin1991something I did aswell :D
09:27.34freemangordonnot for the last -stable :P
09:28.06merlin1991well that's chemist boat now
09:28.13freemangordonhehe
09:28.22freemangordonmerlin1991: what about broken CA?
09:28.55merlin1991we're going to blacklist the root ca
09:29.03freemangordonmerlin1991: do you know how?
09:29.05PaliI will use this for getting major version string: dpkg-parsechangelog | sed -n 's/Version: \(.*maemo.*\)\..*/\1/p'
09:29.19freemangordonPali: will that work for -thumb?
09:29.55Palifreemangordon, what is version string for -thumb?
09:30.04PaliI see this: 21.2011.38-1Tmaemo7.1 for testing
09:30.07Pali(major versin will be 21.2011.38-1Tmaemo7)
09:30.11Paliwithout ".1"
09:30.18merlin1991freemangordon: https://gitorious.org/maemo-5-certificate-manager/maemo-security-certman/commit/fc21ae95be7f44189be2360d445f4fe3f10ab712
09:30.28PaliI think it is good to include changelong since major version
09:30.39merlin1991basically we throw the pem into /etc/certs/blacklist
09:30.49freemangordonPali: 21.2011.38-1Tmaemo7.1+thumb0
09:31.00*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
09:31.30freemangordonmerlin1991: I was reading that commit for the last hour, still not convinced it does just moving a .pem to /blackilst
09:31.31Paliit cut '.1+thumb0'
09:31.53Paliso changelog will be from 21.2011.38-1Tmaemo7 to 21.2011.38-1Tmaemo7.1+thumb0
09:32.03merlin1991if you don't get the commit just checkout twice and diff -r
09:32.07merlin1991then you'll see ;)
09:32.22freemangordonmerlin1991: ok, i trust you
09:33.11freemangordonPali: ok, sounds sane, lets see how it will work in practice :D
09:34.18freemangordonPali: what about from  21.2011.38-1Tmaemo7.1+thumb0 to  21.2011.38-1Tmaemo8+thumb0
09:35.31Palifreemangordon, problem is how to get "from" version string
09:36.28*** join/#maemo-ssu jon_y_ (~enforcer@2002:7c52:3c94::7c52:3c94)
09:39.15freemangordonPali: wouldn't it be easier to just grep for Changes in dpkg-parsechangelog output and use the lines up to the end?
09:39.26freemangordonthough I am not sure how to tell grep to do that
09:40.06PaliI'm doing it
09:40.12freemangordonhmm, seems like "dpkg-parsechangelog | grep -A999 Changes:" does the job
09:40.14Palibut you need to tell start and end version
09:40.31Paliif you do not specify version, then dpkg-parsechangelog show only *last*
09:40.38freemangordonPali: exactly
09:40.46Paliand this is better: dpkg-parsechangelog | sed -n 's/^  //p'
09:41.00freemangordonwhy do we need some "base" version
09:41.08Palibecause changelog starts with 3 empty spaces
09:41.21Paliand debian/control needs one space at stary
09:41.23Pali*start
09:41.34freemangordonyou either puth the whole changelog, or only the last one
09:41.37freemangordon*put
09:42.07Palionly last is bad, because we released more times minor update 1 hour after major
09:42.25Pali(e.g. Recompiled thumb binaries as non-thumb)
09:43.36keriowhy don't we just put a link to the wiki for the complete changelog?
09:43.36freemangordonI see. though I think that won;t work for -thumb, as it does not have -testing's version in debian/changelog
09:43.54kerioare links clickable in HAM?
09:45.51*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
09:46.36Palifreemangordon, it working also for thumb
09:46.39PaliI tested it
09:46.46freemangordonok, great
09:47.00Paliit generate changelog from '21.2011.38-1Tmaemo7' to '21.2011.38-1Tmaemo7.1+thumb0'
09:47.10Palithumb has also 'T' in version
09:49.30freemangordonaah, yes, -thumb has mp-fremantle-community-pr (21.2011.38-1Tmaemo7) unstable; urgency=low in changelog
09:55.04*** join/#maemo-ssu kolp (~quassel@212.255.43.128)
10:01.40Palithis will work if we use version scheme: <something>maemo<something>.<something>
10:01.49PaliI pushed patch to master
10:04.54*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
10:07.13*** join/#maemo-ssu toxaris (~toxaris@s83-180-246-172.cust.tele2.se)
10:17.36*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
10:18.14*** join/#maemo-ssu zogg__ (~zoggrules@bzq-79-182-235-71.red.bezeqint.net)
10:31.43*** join/#maemo-ssu _rd (~rd@p57B493B5.dip0.t-ipconnect.de)
10:39.29freemangordonluf: installing libxml2 led dor maemo unable to boot on my devel device :(
10:39.37freemangordons/dor/to/
10:40.49*** join/#maemo-ssu _rd (~rd@p57B493B5.dip0.t-ipconnect.de)
10:43.59*** join/#maemo-ssu M4rtinK (~M4rtinK@mail.melf.eu)
10:49.51keriowhich libxml2?
10:49.52kerioit boots fine here
10:50.17keriomaybe it should depend on the latest zlib1g
10:50.21freemangordonkerio: which zlib version?
10:50.43kerioalso, what does "unable to boot" mean?
10:50.57freemangordonit just sits on running dots
10:51.00kerioouch
10:51.02keriothat's even worse
10:52.01freemangordonwell, I guess it is boot loop, but I have the device in RD mode
10:52.07freemangordonso WD does not kick in
10:52.22freemangordonor lifeguard rest, or whatever
10:52.26freemangordon*reset
10:52.36keriouse the recovery console to configure the early ssh/usbnet
10:52.40kerioand go from there
10:52.58freemangordoni already flashed :D
10:53.05keriothe n900 has some pretty amazing on-device recovery systems
10:53.08kerio>:c
10:53.27kerioit's unix! you don't reinstall unix! you fix it!
10:53.49freemangordonnow i'll have the chance to verify PR1.3 -> cssu-thumb upgrade
10:53.53keriofreemangordon: http://www.ee.ryerson.ca/~elf/hack/recovery.html
10:59.43keriofreemangordon: btw, what do you think about community-thumb.merlin1991.at as the repo URL?
11:00.17freemangordonkerio: should I think anything about it?
11:01.08kerioit would be a neat URL, wouldn't it
11:01.13freemangordonsure
11:01.26freemangordonwhy need to change the current one?
11:01.37keriobecause 1) it's ugly
11:01.48kerioand 2) apt is stupid and only shows the hostname in a lot of places
11:02.02freemangordonok, according to HAM, cssu-thumb will freee 29.7MB of device's memory :D
11:03.46freemangordonso we gain ~35MB (the difference is because kernel-cssu is way bigger than omap1)
11:08.37*** join/#maemo-ssu jon_y (~enforcer@2002:7387:e722::7387:e722)
11:09.55keriofreemangordon: less
11:10.03keriothe kernel isn't actually stored on the system for long
11:10.18freemangordonkerio: what?
11:10.49keriokernel-cssu includes the .fiasco for the kernel, but it gets deleted by kernel-cssu-flasher's postinst
11:10.53kerioor preinst
11:10.56kerioor something
11:11.10freemangordonkerio: sure, but the same happens for modules
11:11.11keriosame for kernel, and kernel-power
11:11.30freemangordonand modules in kcssu>>omap1
11:11.58freemangordonso the difference gets substracted when HAM reports how much memory will be freed
11:12.11keriothe omap1 modules aren't deleted
11:12.18freemangordonthe real benefit for only userland is > than what HAM reports
11:12.28freemangordonkerio: check it once again
11:12.57freemangordonkerio: KCSSU Conflicts: and Replaces: kernek, kernel-modules
11:12.57keriothe "kernel" and "kernel-modules" packages aren't uninstalled
11:13.05kerio...and HAM honors that? :o
11:13.23freemangordonkerio: they are uninstalled, i've just checked it
11:13.38kerioso what's the problem with making HAM uninstall packages via conflicts? :o
11:14.15freemangordonnfc, who says there is a problem?
11:16.11freemangordonkerio: BTW even if kernel,kernel-modules are not uninstalled, freed memory is still > of what HAM reports
11:16.28kerioso we *can* delete operator-name-cbs-widget now that the actual files are moved back in connui-home-cellular
11:18.23*** join/#maemo-ssu NIN101 (~NIN@p5DD28753.dip0.t-ipconnect.de)
11:20.15freemangordonkerio: hmm, weird. kernel IS uninstalled, but not kernel-modules
11:20.49freemangordonaah, waaait
11:21.13freemangordonit is uninstalled, but dpkg -l lists it as provided package ;)
11:21.33freemangordonor whatever "rc  kernel-modules                                      2.6.28-20103103+0m5 " means
11:21.56kerioremoved but with configuration
11:22.11freemangordonkerio: what zlib version you have installed?
11:22.39freemangordonthe one that works with libxml2
11:22.55keriozlib1g: Installed: 1:1.2.7.dfsg-13maemo1+0cssu1
11:23.02keriolibxml2: Installed: 2.6.32.dfsg-5maemo4+0m5+0cssu1
11:23.19freemangordonaiui libxml2 should work with older zlib, ain;t?
11:23.33kerioif the new libxml2 doesn't work with the old zlib1g, it MUST be dependent on the newer version
11:23.37kerio~2119
11:23.38infobotThe key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED",  "MAY", and "OPTIONAL" in this document are to be interpreted as described in RFC 2119.
11:23.44freemangordonI know
11:23.48freemangordonok, will check it
11:23.50kerioidk, you tell me
11:23.55keriohaven't you got a bootloop because of that?
11:24.10freemangordonI had the new one installed iir
11:24.11freemangordonc
11:24.22freemangordonhowever, will install libxml2 now
11:25.09keriofreemangordon: i'd make kernel-cssu conflict with kernel, actually
11:25.21freemangordonalready there
11:25.26kerio...oh right
11:25.44keriowhy not go the even better route and just call your packages kernel and kernel-modules?
11:25.55freemangordonwill do
11:26.35*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
11:27.47*** join/#maemo-ssu xes (~xes@host144-233-dynamic.54-82-r.retail.telecomitalia.it)
11:28.07freemangordonhmm, bootloop again :(
11:29.08kerioso... new libxml should depend on new zlib, new zlib should Break the old libxml
11:29.24xesi hate bootloop.... :(
11:29.46freemangordonkerio: but why new libxml2 does not work with old zlib?
11:30.20*** join/#maemo-ssu arcean (~Arcean@aaeu24.neoplus.adsl.tpnet.pl)
11:30.22freemangordonmakes no sense
11:30.28freemangordonluf: ^^^?
11:30.41freemangordonthough it could be broken because of -thumb
11:30.52*** join/#maemo-ssu xes_ (~xes@host124-224-dynamic.5-87-r.retail.telecomitalia.it)
11:32.48freemangordonhighly unlikely, but still
11:34.13*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
11:39.40*** join/#maemo-ssu Pali (~pali@Maemo/community/contributor/Pali)
11:41.55*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
11:48.40*** join/#maemo-ssu Pali (~pali@Maemo/community/contributor/Pali)
11:49.05*** join/#maemo-ssu MohammadAG (~MohammadA@Maemo/community/contributor/MohammadAG)
11:55.01*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
12:01.25keriofreemangordon: yay moar thumb
12:02.44keriohm, what's changed in tvout?
12:03.05keriooh, nothing
12:03.34freemangordonkerio: yeah, I was preparing a new update, when I hit libxml bootloop :(
12:03.49keriojust update both at the same time
12:03.54kerioand make sure the dependencies are correct
12:04.13keriomaybe it's libpng that caused the bootloop
12:04.37freemangordonkerio: aah, wait. it could be that i have newr zlib-dev installed in SB
12:04.48freemangordonkerio: no, I installed only libxml
12:04.59freemangordonI have libpng on my primary,it is ok
12:05.52*** join/#maemo-ssu _rd (~rd@p57B493B5.dip0.t-ipconnect.de)
12:06.21*** join/#maemo-ssu Pali (~pali@Maemo/community/contributor/Pali)
12:06.39keriowell, now xterm goes to portrait
12:06.43kerio...how useful
12:07.23kerioupdates his blacklist
12:07.44*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
12:07.45keriooh god, it's already blocked D:
12:07.57keriohow do i block it more?
12:08.21luffreemangordon: osso-gnomevfs-extras with browsing the device. However there is/are some bug(s) I have find.
12:08.36luffreemangordon: I'm able to use bluez for rfcomm connecting ;)
12:11.39luffreemangordon: libxml2 - it's strange. libxml2 depends on zlib1g >= 1.2.3. But you should have such version.
12:13.03luffreemangordon: I checked lixml2 patched with stock zlib.
12:14.23*** join/#maemo-ssu arcean_ (~Arcean@aael82.neoplus.adsl.tpnet.pl)
12:14.36luffreemangordon: what's your zlib version?
12:15.02luffreemangordon: Isn't problem thumb libxml with non-thumb zlib?
12:19.57freemangordonluf: could be, will check
12:20.40freemangordonluf: against which zlib-dev you have libxml built?
12:20.52freemangordonstock or latest?
12:26.08*** join/#maemo-ssu MohammadAG (~MohammadA@Maemo/community/contributor/MohammadAG)
12:29.52lufI think againist stock.
12:30.15*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
12:30.37luffreemangordon: ii  zlib1g-dev  1.2.3-9.osso9+0m5
12:31.39freemangordonluf: baad
12:32.03freemangordonseems it breaks when built agains new zlib
12:32.19freemangordondowngrade and check
12:33.15freemangordon*will downgrade
12:33.36lufStrange :(
12:40.56*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
12:48.13freemangordonluf: ARM libxml2 build against old zlib works
12:48.34freemangordongoing to check thumb build agains old zlib
12:48.53freemangordon*against
12:54.06luffreemangordon: what about ARM libxml2 build againist new ARM zlib?
12:54.17*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
12:56.10freemangordonwill check it
12:56.58freemangordonluf: though it should be the same as ^^^
12:57.12freemangordon(thumb agains old zlib)
12:57.17freemangordon*against
12:57.56*** join/#maemo-ssu Jade (~jade@unaffiliated/jade)
13:00.04luffreemangordon: the libxml2 patch depends on ZLIB_VERNUM ... maybe that's the difference in build. But failure with old libxml2 and new zlib is after starting hidlon (showing empty desktop).
13:00.41freemangordonluf: I know about  ZLIB_VERNUM
13:01.19freemangordonok, thumb build against old zlib boots :(. I was hoping it is my build env broken, but unfortunately it seems ok
13:01.37freemangordongoing to check ARM build against new zlib
13:02.05*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
13:02.49luffreemangordon: ZLIB_VERNUM seems ok in build env (not checked in zlib1g-dev).
13:02.59freemangordonluf: yep, it is ok
13:03.06freemangordonit is something else
13:03.20freemangordonluf: BTW do you have backup menu or something installed?
13:03.38lufNot on dev device :)
13:04.03freemangordonaah, same here, a pity, i'll have to reflash again if it does not work :(
13:08.29xes_...and the rescue/recovery flash? It doesn't work?
13:09.09xes_http://206.253.166.96/N900/rescueOS/
13:26.15freemangordonxes_: don;t have that installed
13:27.38*** join/#maemo-ssu _rd (~rd@p57B493B5.dip0.t-ipconnect.de)
13:34.46xes_freemangordon: you don't need to install that image, you could boot it using flasher
13:34.58xes_http://206.253.166.96/N900/rescueOS/documentation.txt
13:36.20freemangordonxes_: thanks
13:36.33freemangordonbut usually I have -thumb installed ;)
13:37.50freemangordonluf: I know what is going on
13:38.17freemangordonzlib has checks for the same version
13:38.23freemangordon:(
13:44.32freemangordonluf: https://gitorious.org/community-ssu/zlib/blobs/master/deflate.c#line226
13:45.25freemangordonhmm, though it checks only major
13:53.41freemangordonluf: "gconftool-2: /usr/lib/libz.so.1: no version information available (required by ./libxml2.so.2)"
13:54.10freemangordonthis is libxml2 build with new zlib-dev :(
13:58.46*** join/#maemo-ssu Pali (~pali@Maemo/community/contributor/Pali)
14:01.44*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
14:05.28freemangordonluf: http://pastebin.com/srZgr7rT
14:06.34luffreemangordon: LD_LIBRARY_PATH=/usr/lib gconftool-2 ?
14:07.00freemangordonluf: ?
14:07.09freemangordonno, LD_LIBARY_PATH=./
14:07.20freemangordonand I have new libxml2 extracted in ./
14:08.07lufI'll check later. Thanks for all the information
14:08.08freemangordonluf: trying with bot libs new version
14:09.48freemangordonyep, it boots
14:11.28freemangordonluf: i'll fix it, it is a matter of debian/control magic
14:16.30Palimerlin1991, there is something in /srv/apt/cssu-devel/incoming/
14:16.37Palilibqt4-* packages
14:16.51Palifrom Jan  2 15:15
14:20.04freemangordongregoa: ping
14:20.05gregoafreemangordon: You sent me a contentless ping.  This is a contentless pong.  Please provide a bit of information about what you want and I will respond when I am around.
14:20.19freemangordonWTF?
14:20.20keriogregoa: ping
14:20.21gregoakerio: You sent me a contentless ping.  This is a contentless pong.  Please provide a bit of information about what you want and I will respond when I am around.
14:20.30keriooh scripting
14:20.56freemangordonnice :(
14:20.57gregoaanyway, I'm here. what's up?
14:21.18kerioomg, this script is really good
14:21.41keriogregoa: who programmed you? :o
14:21.55freemangordongregoa: seems we have problem with zlib and libxml2(again). zlib breaks libxml2 that is currently installed on the device.
14:22.08keriofreemangordon: that's known
14:22.36freemangordonbut if libxlm2 is built with newer zlib, so has missing symbols if installed on the device with ol zlib
14:22.36kerioperhaps you mean the other issue, the new libxml doesn't work with the old zlib
14:22.45freemangordonkerio: may I finish?
14:22.51keriogo right ahead
14:23.54freemangordongregoa: the problem comes from th afact, that in order to build new libxml2 against new zlib one should install new libzlib-dev. but that breaks the currently installed libxml, thus cannot be installed
14:24.15freemangordon(*conflicts)
14:24.19freemangordonany idea?
14:25.48freemangordonif libxml2 is build against old zlib-dev everything is fine, but that looks ugly
14:26.22gregoascratches head
14:26.26keriofreemangordon: hmm, the issue would be with the autobuilder, right?
14:26.45freemangordonkerio: we are talking CSSU here, no autobuilder
14:27.15xes_i' m quick & dirtry...i would move the old .pc file and (for the first part) install manually(no deb) libzlib-dev
14:27.23*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
14:27.36keriofreemangordon: build libxml2 against the old zlib-dev, then rebuild it against the new one that you can install
14:27.53freemangordongregoa: the only think I can think of is a multi-part update
14:27.59gregoayeah, it guess that needs some round-trip like this
14:28.58freemangordoni.e. build libxml2 agains old zlib, issue mp- thingie depending on new zlib, build libxml2 against new zlib, issue anothe -mp
14:29.10keriofreemangordon: ew, why?
14:29.17keriothis is not a user issue, is it?
14:29.18gregoawhy the -mp release?
14:29.43freemangordonhmm, lemme think
14:30.13freemangordonaah, yes, to be easier for maintainers
14:30.29*** join/#maemo-ssu FlameReaper (~assassin@183.171.161.124)
14:30.55freemangordonhmm, well, maybe no -mp
14:31.08keriofreemangordon: what's bad about compiling libxml2 against the old zlib1g anyway?
14:31.24keriothe new libxml2 is supposed to only use the API
14:31.29kerioand not any internal structure
14:32.10freemangordonkerio: hmm, makes sense
14:32.18freemangordonok. got it
14:32.43keriobtw, did you or luf eventually manage to make Breaks work?
14:32.55freemangordonno
14:33.27luffreemangordon: I think I know ...
14:33.50luffreemangordon: when gregoa build new zlib he has problem with zlib1g.symbols
14:34.09freemangordonluf: the same here
14:34.28luffreemangordon: it seems that our environments ignore that. This should be the difference between old and new.
14:34.51freemangordonluf: ignore what? elaborate please
14:37.28freemangordonkerio: BTW the problem as I see it, is that one should not be allowed(by debian/control) to build against new zlib and to install on the environment with the old one
14:37.39freemangordonritgh now it is possible
14:37.43freemangordon*right
14:38.02keriowhy does it not work, btw?
14:38.10keriothe new libxml, i mean
14:38.32kerioi mean, when compiled against headers that should still be the same thing for all intents and purposes
14:38.35freemangordonkerio: http://pastebin.com/srZgr7rT
14:38.47keriowell, for all legal intents and purposes - aka no accessing internal structures
14:39.10freemangordonit has missing import symbols, see the paste
14:39.15keriohm
14:40.02*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
14:40.05keriofreemangordon: well, make it depend on a recent-enough zlib1g
14:40.32kerioso it won't be possible to install it without the newer zlib1g
14:40.51freemangordonkerio: and then you won;t be able to install zlib-dev, as it will break currently installed libxml2
14:41.00freemangordon(conflicts:)
14:41.38keriowell, you're about to recompile libxml2 at that point, right?
14:41.50keriowhy is it installed?
14:41.55freemangordonluf: why was Conflicts: needed?
14:42.26keriofreemangordon: it should be a Breaks:, but that has the same effect - the old libxml2 depends on zlib internals that were changed in the new zlib
14:42.38freemangordonafter all we're going to ship it in one update
14:42.39kerioit's a bug in the old libxml2
14:42.55freemangordonkerio: I know
14:43.06freemangordonthe point is that we'll ship both in one update
14:43.27kerioit's irrelevant, it's a package that exists right now
14:43.46freemangordon-mp will depend on both, libxml will depend on new zlib
14:43.48kerioand is broken by a new, different package
14:44.37keriowhy does the metapackage have anything to do with this?
14:44.55freemangordonkerio: because I can;t see how to solve the issue
14:45.06freemangordonif you have any idea, please share it
14:45.09keriouninstall libxml2, install zlib-dev, compile new libxml2
14:45.42freemangordonkerio: gconftool-2 depends on libxml2
14:46.28freemangordoni guess if I try to uninstall libxml2, I'll be left with libc6 only :D
14:46.38keriotell dpkg to stfu and remove anyway
14:47.09freemangordonkerio: I am not asking for help with dpkg, I know how to solve it in my SB
14:47.22freemangordonthe problem is that packaging is broken
14:47.30keriowell, you need to solve it in your SB and in merlin's SB
14:47.36freemangordonyup
14:47.55freemangordonand in luf's, arcean's, etc
14:48.29freemangordonthat's why i think it is better to remove Conflicts: from zlib and to add Depends: to libxml2
14:48.42keriono, Depends: to libxml2 has to be there anyway
14:48.51keriois there anyway, perhaps just needs a version clause to be added
14:48.59freemangordonyep, version
14:49.03keriobut the new zlib1g *does* break the old libxml2, and that's a fact
14:49.12freemangordonI know
14:49.13kerioand you can't retroactively change the old libxml2
14:49.15*** join/#maemo-ssu Pali (~pali@Maemo/community/contributor/Pali)
14:49.28kerioi mean, you can do that in the repos, but not in the devices
14:49.39freemangordonI can, by issuing 2 updates
14:49.49gregoathere is a version in the Depends, which needs to be bumped. that should happen automatically with ${shlib:Depends} and dpkg-whatever during build. unless the shlib system is borken
14:50.11freemangordongregoa: aiui it takes only major version
14:50.21keriogregoa: so one would need the new libxml2 to compile the new libxml2 :s
14:50.29freemangordonexactly
14:50.31gregoafreemangordon: currently libxml has "zlib1g (>= 1:1.2.1)"
14:50.51keriofreemangordon: well... it's not exactly a big deal i suppose
14:51.55gregoaI still think that has to be "broken" in a manual roundtrip in one SB by one person, then the 2 packages with fixed Depends/Conflicts can to uploaded and everyone else can use them
14:52.18keriofreemangordon: you can just release both at the same time, you don't necessarily need two updates
14:52.19freemangordongregoa: yep, that will work
14:52.28freemangordonkerio: :nod:
14:52.36freemangordongoing to do it for -thumb
14:52.45keriobut without a Conflicts or a Breaks you'll allow broken configurations
14:53.07freemangordoni'll increase depends: version
14:53.09kerioand broken as in "won't boot"
15:06.23*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
15:16.15*** join/#maemo-ssu dafox (~dafox@ip51cc571d.speed.planet.nl)
15:44.18*** join/#maemo-ssu FlameReaper (~assassin@203.82.92.6)
15:46.46*** join/#maemo-ssu Pali (~pali@Maemo/community/contributor/Pali)
15:47.05arcean_~packages
15:47.18*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
15:47.32arcean~package
15:47.32infobotpackage is probably simply not installable and a bug report against
15:55.12arceanthere's a new qt with disabled QMaemo5OrientationManager in CSSU-devel
15:55.21luffreemangordon: I'm sorry I had to be afk.
15:55.30freemangordonPali: https://gitorious.org/community-ssu/mp-fremantle-community-pr/commit/3ce14c9564766bcc4f4b86d901d4d145244b9f35
15:55.44freemangordonluf: NP
15:56.10luffreemangordon: you can see in history (tomorrow or previous day) that gregoa has problem building new zlib due to missing includes in zlib1g.symobls
15:56.20luffreemangordon: it's not problem in our SB.
15:56.43freemangordonluf: however, I think two-pass build is the right thing we should do
15:57.16freemangordonThis is what I did for -thumb, don;t see a reason why it should ot work for -testing and -stable
15:57.24*** part/#maemo-ssu xes_ (~xes@host124-224-dynamic.5-87-r.retail.telecomitalia.it)
15:57.24freemangordon*should not
15:57.34Palifreemangordon, that is bad
15:57.45Pali-v "include all changes later than version"
15:57.53freemangordonPali: yep
15:57.59freemangordonthe same as yours
15:58.15Paliwe need "include all changes equal or later than version"
15:58.21jonwilso I am still no closer to picking something from http://wiki.maemo.org/Fremantle_closed_packages to reverse engineer that I can actually do :P
15:58.26Palisee how major_version is parsed
15:58.46Palifreemangordon, major_version can be also current version
15:58.56Paliand then it will give for you empty changelog
15:59.15freemangordonPali: dpkg-parsechangelog --from "21.2011.38-1Tmaemo7"| sed -n 's/^  //p' >> debian/mp-fremantle-community-pr/DEBIAN/control
15:59.15freemangordondpkg-parsechangelog: unknown option `--from'
15:59.29Pali--from is same as '-f'
15:59.42Paliseems that I have new version of dpkg-parsechangelog
16:00.09Palifreemangordon, try: dpkg-parsechangelog -f "21.2011.38-1Tmaemo7"| sed -n 's/^  //p' >> debian/mp-fremantle-community-pr/DEBIAN/control
16:00.11freemangordonPali: yes, the one I have here does not support --from
16:00.11kerioarcean: what will that do?
16:00.32Palifreemangoron, '-v' is not same as '-f' (or --from)
16:00.39freemangordondpkg-parsechangelog: unknown option `-f'
16:00.40*** join/#maemo-ssu dafox (~dafox@ip51cc571d.speed.planet.nl)
16:00.45Paliwtf?
16:00.46luffreemangordon: I don't understand what do you mean with two-pass build.
16:01.07Palifreemangordon, upload output of dpkg-parsechanelog --help
16:01.15arceankerio: prepares system for newer hildon-desktop versions
16:01.57arceankerio: new Qt basically fixes rotation/orientation problems
16:01.59freemangordon[sbox-FREMANTLE_ARMEL_GCC472: ~/workspace/thumb/T-maemo7.1+thumb1/mp-fremantle-community-pr] > dpkg-parsechangelog --help
16:02.01freemangordonUsage: dpkg-parsechangelog [<option> ...]
16:02.04freemangordonOptions:
16:02.06freemangordon-l<changelogfile>        get per-version info from this file.
16:02.08freemangordon-v<sinceversion>         include all changes later than version.
16:02.10freemangordon-F<changelogformat>      force change log format.
16:02.12kerioarcean: by not rotating unless hildon-desktop does something, right?
16:02.13freemangordon-L<libdir>               look for change log parsers in <libdir>.
16:02.15freemangordon-h, --help               show this help message.
16:02.17freemangordon--version            show the version.
16:02.20arceankerio: yes ;)
16:02.45kerioarcean: k :c
16:02.53Palifreemangordon, that is bad :-(
16:03.08arceankerio: now every Qt application behaves in the same way as the GTK/Hildon ones
16:03.09PaliI will try to rewrite it, to use -v
16:03.22kerioarcean: well, not *now*
16:03.30freemangordonarcean: while you are on Qt, could you blacklist that turkish CA?
16:03.35keriounless you mean that it'll automagically work
16:03.41Palifreemangordon, I need version string before "$MAJOR_VERSION" from debian/changelog
16:03.48arceanfreemangordon: ok
16:03.56keriofreemangordon: yay thumby things ^_^
16:03.58freemangordonPali: ok, can I help :D
16:04.15Paliyou can see that '-v' will not work with last version
16:04.26freemangordonsure
16:04.47Pali<PROTECTED>
16:04.51PaliI have this option ^^^
16:04.58freemangordonPali: great, I don;t :)
16:04.59Palion ubuntu (in new debhleper/dpkg)
16:05.06freemangordonin scratchbox
16:05.55kerioeverything can be solved with enough sed, grep and awk
16:06.58freemangordonPali: are you going to do it now?
16:07.09Palifreemangordon, you can try to use: dpkg-parsechangelog --since 0 | grep '^ mp-fremantle-community-pr '
16:07.17Palino, do not have time for it now
16:07.24Palinow going away
16:07.38freemangordonwell, i'll use -v for this update
16:09.20Pali'-v' will not work (it will print empty changelog)
16:09.34freemangordonIt works on -thumb
16:09.50freemangordonand results in thumb-only changes
16:10.06freemangordoni.e. since the last -testing
16:10.07*** join/#maemo-ssu xes (~xes@host124-224-dynamic.5-87-r.retail.telecomitalia.it)
16:14.13Palifreemangordon, try to add this line after MAJOR_VERSION := ...
16:14.15PaliPREVIOUS_VERSION := $(shell dpkg-parsechangelog -f 0 2>/dev/null | sed -n 's/^ mp-fremantle-community-pr (\(.*\)).*/\1/p' | grep -A 1 $(MAJOR_VERSION) | tail -1)
16:14.38Paliand replace MAJOR_VERSION with PREVIOUS_VERSION in the end of file
16:15.05Palithis will maybe work
16:15.38freemangordonPali: new -thumb is out, i'll wait you to fix it in aster and will forllow for the next update
16:15.48freemangordons/aster/master/
16:16.14freemangordonprays for his primary device to boot
16:16.37keriofreemangordon: hm, this is the first time you've updated something in cssu-thumb that hasn't been updated in cssu-testing
16:16.45freemangordonkerio: no
16:17.05freemangordonmicrob-engine, Qt, etc
16:17.28keriohm, were those updates?
16:17.33kerioi thought you just recompiled
16:17.36freemangordonno
16:17.54freemangordonCVE fizes in microb came in -thumb first, for example
16:17.58freemangordon*fixes
16:18.11freemangordonsame for some backport in Qt
16:18.21freemangordonok, booted fine
16:18.22arceanPali: what's new in maemo-applet-tvout?
16:18.30freemangordonarcean: nothing
16:19.27arceanahh, I see
16:19.36freemangordonkerio: I am pretty confiden there won;t be problems with this update
16:19.51freemangordonat least I hope so :D
16:21.10freemangordonkerio: i've been runing updated packages on my device for 2 or more weeks, with no problems
16:23.01keriofreemangordon: Depends: libc6 (>= 2.5.0-1), zlib1g (>= 1:1.2.1), zlib1g (>= 1:1.2.7)
16:23.06keriou dun goofd
16:24.11luffreemangordon: you should change the zlib1g (>= 1:1.2.1) in the zlib package (.shlibs)
16:24.56freemangordonluf: hmm? isn;t that auto-generated?
16:26.12freemangordonkerio: besides looking ugly, is there any problem with it?
16:26.31keriohm, i don't think so
16:26.37keriounless apt gets confused somehow, but i doubt it
16:26.45keriojust keep in mind to fix it for the next update :)
16:26.46freemangordonno, update went fine here
16:26.52freemangordonyep, for sure
16:33.52kerioarcean: hm, i don't see the updated qt in -devel
16:34.11freemangordonkerio: seems it is stuck in /incoming
16:34.19freemangordonPali: already reported it to merlin1991
16:35.01*** join/#maemo-ssu NIN102 (~NIN@p5DD2923E.dip0.t-ipconnect.de)
16:35.36arceankerio: I've just updated the Qt on my second n900 via cssu-devel :D
16:35.38arceanhttp://maemo.merlin1991.at/cssu/community-devel/pool/free/q/qt4-x11/
16:35.50keriofreemangordon: oh, it's because i have -thumb pinned at a slightly higher priority
16:36.18luffreemangordon: no. gregoa pointed me ;)
16:36.55freemangordonluf: ok, will keep it in mind for the next update
16:37.17luffreemangordon: zlib.cssu/debian/zlib1.shlibs: libz 1 zlib1 (>= 1:1.2.1)
16:37.35freemangordonanyway, it will be soon, i'll put microb-engine build with system libpng and zlib
16:37.40freemangordonluf: yeah, saw that
16:37.53luffreemangordon: how you fixed fixed libxml2 build on top of new zlib?
16:38.18freemangordon1. build libxml2 against old zlib
16:38.25freemangordon2. install new libxml2
16:38.36freemangordon3. build and install new zlib
16:38.54dafoxhi all. First off, happy (belated) new year :). Now my question: I was wondering what the status of -thumb is, is it 'stable' now?
16:38.55freemangordon4. edit libxml2 debian/control to depend on new zlib
16:39.03keriodafox: hahahahahahahah
16:39.07keriohahahahahahahahha
16:39.16kerioyes, it's quite stable actually
16:39.17freemangordon5. build libxml2
16:39.37freemangordonluf: ^^ is what i did
16:39.44freemangordonkerio: quite?
16:39.46dafoxa few days ago I found an announcement post on tmo for 'stable thumb'
16:40.00dafoxbut what does it mean?
16:40.03keriodafox: "stable thumb2 executables"
16:40.20luffreemangordon: So no fix. Ok. I'll put it into my TODO.
16:40.24kerioas in, running one won't make the cpu blow up because of the silicon errata
16:40.28dafoxI mean, is it as stable as ssu-stable for example?
16:40.37freemangordondafox: IIRC what I wrote, it is explained in that very same OP
16:40.40dafoxaka, 'safe to install'
16:41.09keriodafox: it works fine for a lot of people
16:41.31kerioit's about the same as cssu testing, but a bit smaller and faster
16:41.46dafoxok, I'm willing to give it a go if it is fairly safe. The main benefit seems to be less memory used?
16:41.53dafoxwhich would be very nice
16:41.55freemangordondafox: last time we've checked repo stats, there were > 700 people downloaded it
16:42.10freemangordonthat was some ~months ago
16:42.17keriodafox: also about 30MB of free space
16:42.18freemangordon*~3 moths
16:42.25dafoxcan it be uninstalled, if need be?
16:42.29freemangordonno
16:42.35kerionot really, no
16:42.42dafoxok, so it's not just enable/disable repo?
16:42.50freemangordonit is SSU
16:43.01freemangordonthe same as CSSU-testing and CSSU-stable
16:43.20kerioif you've got some flavour of cssu yes, you just have to enable cssu-testing and cssu-thumb (and disable cssu-stable if you have to)
16:43.32keriobut there's no way to uninstall it
16:43.45keriowhat would that even mean? it's a bunch of updates to a lot of system packages
16:44.21freemangordonkerio: BTW it was for good that I reflashed
16:44.41keriowhat did you find out?
16:44.47freemangordonit turned out libpulse dependency is missing from mp-thingie :D
16:45.00kerio:D
16:45.03freemangordonit is the same in -testing AIUI
16:45.35freemangordon(not that i've checked :D)
16:45.48dafoxfor example, I enable/disable the extras-devel repository on a per-application basis, but it doesn't try to install older versions of those apps when I disable the catalogue again
16:45.54dafoxis it like that?
16:46.14kerioyes, but cssu provides system updates
16:46.17freemangordondafox: this is system upgrade
16:46.21dafoxI have cssu :)
16:46.22kerioyou should keep the repos enabled for that
16:46.32dafoxok, I'll go make some backups then
16:46.58dafoxI do keep the cssu-stable (and testing, I think) enabled at all times
16:47.03keriowonders what the big deal is, when the cssu instructions clearly state to make backups *often* with backupmenu
16:47.24dafoxmaking backups is such a hassle :/
16:47.27freemangordondafox: disable -stabe if you are on -testing, it jst slows down HAM
16:47.32freemangordon*-stable
16:47.54dafoxok, thanks for the tip!
16:48.05*** join/#maemo-ssu _ade_ (~arno@52481E0B.cm-4-1a.dynamic.ziggo.nl)
16:48.11freemangordondafox: if you install -thumb make sure -testing IS ENABLED, along with nokia repos
16:48.43dafoxok
16:50.25_ade_arcean: the replacement clock if now fixed in landscape with the new Qt from cssu-devel
16:50.46freemangordonnice :D
16:51.12arceanwow :D
16:51.19_ade_arcean: other Qt apps I tested look find, no initial rotation to landscape when flat
16:51.25freemangordon_ade_: are you sure you set Maemo5AutoOriantation?
16:51.42_ade_I guess so
16:51.53freemangordonthe fuck :(. Sorry for the typos
16:52.03arceanremeber, that you need also a new h-d, which is not in cssu-devel yet
16:52.09_ade_arcean: can you test for yourself?
16:52.11freemangordonaah, yes
16:52.18arcean_ade_: sure, give me a link :D
16:52.51_ade_arcean: You have the replacement clock installed afaik?
16:52.52freemangordonarcean: are your changes commited on gitorious? in CSSU that is.
16:53.11dafoxis it the same for extras- btw? If I have extras-testing, can I disable the 'regular' extras repository?
16:53.24keriodafox: yep
16:53.25arceanfreemangordon: only in cloned repos
16:53.40arcean_ade_: yes, on the other device :D
16:53.45_ade_arcean: so I just have to wait for a new h-d first?
16:53.56dafoxcool, because ham is really slow, so any speed up is welcome :)
16:54.43arcean_ade_: I'll push a new version in ~15 minutes
16:55.53_ade_arcean: I'll wait for that to test further then
17:17.12merlin1991Pali: I see nothing
17:17.53freemangordonmerlin1991: you broke you glasses? again? :P
17:17.57DocScrutinizer05everything fine here? (didn't watch since 8h, due to massive overload)
17:18.26merlin1991freemangordon: what should i see?
17:18.56freemangordonmerlin1991: NFC. I am just kidding you.
17:19.07merlin1991damn you ;)
17:19.43DocScrutinizer05tztztz
17:19.54freemangordonmerlin1991: on the side not - who do you expect to blacklist that compromised CA?
17:20.04merlin1991I guess I'll have todo that
17:20.19DocScrutinizer05uh?
17:20.30DocScrutinizer05not everything fine so?
17:20.51freemangordonDocScrutinizer05: http://talk.maemo.org/showthread.php?t=88535
17:21.52DocScrutinizer05mhm :-/
17:22.02keriofreemangordon: i suppose it's a maemosec update
17:22.05kerionot sure who did the last one
17:22.09freemangordonnokia
17:22.17kerionope, it was a cssu thing initially
17:22.22DocScrutinizer05TURKTRUST   omg
17:22.33freemangordonkerio: no, it was nokia
17:22.40freemangordonCSSU just distributed it
17:22.41DocScrutinizer05no
17:22.47keriofreemangordon: do you trust the turks?
17:23.01freemangordonkerio: yes, why not
17:23.21DocScrutinizer05freemangordon: iirc MohammadAG had a fix long before nokia came up with it
17:23.30freemangordonusually they are nice people. at least those who live in bulgaria
17:23.43keriobecause they give out intermediate CA certificates instead of SSL certificates, for instance
17:23.45freemangordonDocScrutinizer05: iirc nokia sent them .debs with the fix
17:23.54DocScrutinizer05dunno
17:24.13freemangordons/them/him/
17:24.36keriofreemangordon: http://gitorious.org/community-ssu/maemo-security-certman
17:24.40DocScrutinizer05anyway, do we *need* Nokia to fix this silly issue?
17:24.46freemangordonno
17:24.53freemangordonwe have the source code
17:24.55DocScrutinizer05so, go ahead! :-D
17:25.09freemangordon<freemangordon> merlin1991: on the side not - who do you expect to blacklist that compromised CA?
17:25.11kerioapparently the fix was done by jum
17:25.12freemangordon:D
17:25.20keriojuhani mäkelä
17:25.24keriosounds finnish
17:25.28keriosounds nokia
17:25.32freemangordonyup
17:26.11freemangordonI wonder why M$ issued 2 updates for that
17:27.30Palithat was because I published source code of maemo certman aplet :P
17:28.00freemangordonyep
17:28.12PaliI got by email source tarball with LGPL license, so I published it on TMO
17:28.19Paliand that was problem...
17:28.42Paliso then nokia looked at it and after months released source code
17:28.43arcean_ade_: I know where's the problem
17:28.52arcean_ade_: I'll create a merge request
17:29.09freemangordonarcean: is in adeclock?
17:29.14Palibtw, you can see some changes in git repo *after* PR.1.3.1: https://gitorious.org/maemo-5-certificate-manager/maemo-security-certman
17:29.15arceanyes
17:29.31Pali(that was already included into cssu)
17:29.31freemangordonarcean: missing autoorientation?
17:30.53kerio_ade_: why don't you ship .deb packages?
17:31.38_ade_kerio: see the TMO thread; a bit long to explain here maybe
17:32.18DocScrutinizer05>>Can certs be revoked manually on N900?<< good question, can't they, at least in CSSU?
17:32.36kerioDocScrutinizer05: there's no GUI to do that
17:32.37arcean_ade_: freemangordon: https://gitorious.org/community-ssu/clock-ui/merge_requests/1
17:32.53keriothere's, however, a commandline tool
17:33.01DocScrutinizer05I seem to remember we at least dicussed adding such GUI
17:33.42Sicelokerio: which tool? openssl?
17:33.42DocScrutinizer05...-function
17:34.06kerioSicelo: cmcli
17:34.07_ade_arcean: just an order issue then. It could affect other Qt apps?
17:34.25kerioit's in maemosec-certman-tools
17:34.49Sicelothanks. will have a look :)
17:34.50freemangordonarcean: hmm, why is the order important?
17:35.34freemangordonarcean: this will break more application, I can bet
17:36.33arceansetWindowFlags(Qt::Window) will always clear the windows flags
17:37.01freemangordonarcean: according to docs? ok then.
17:37.22freemangordonBTW why is that neede at all?
17:37.27freemangordon*needed
17:37.59arceanI don't know :D, _ade_?
17:38.41_ade_arcean: it is not a part I did
17:39.04freemangordonafter all it inherits QMainWindow
17:39.18arceanI would remove it then
17:39.24freemangordon_ade_: remove that
17:39.31_ade_I will
17:41.28_ade_arean: I have not found other Qt apps with this issue for now. And you where talking about a new h-d that was needed?
17:42.19kerioSicelo: there's a script on TMO that claims to allow the blacklisting of stuff
17:42.28arcean_ade_: yes, it's needed. Every window which supports portrait mode should have PORTRAIT_SUPPORTED windows flag
17:42.44Sicelokerio: i'm already in love with cmcli ;)
17:43.39_ade_acrean: and the latest available h-d lacks that?
17:44.14arceanno, it was the setWindowFlags(Qt::Window) which cleared that flag :D
17:44.38DocScrutinizer05freemangordon: nice spotting :-)
17:44.55_ade_arcean: okay, so I do have the proper h-d?
17:45.13arcean2.2.146-2? then yes ;)
17:46.48_ade_arcean: sorry then, I thought you where going to release a new h-d in 15 mins related to this. Misunderstood ;-)
17:46.59arceanhehe
17:47.11arceanI'm still going to release a new version :P
17:54.48_ade_arcean: removing this line did the trick indeed, thanks
18:01.49_ade_kerio: btw, Merlin1990 said he would package the replacement clock a long time ago. Maybe it helps if you remind him of that every now and then :)
18:02.16_ade_s/Merlin1990/Merlin1991/g
18:06.34Sicelokerio: seen the cript now. neat.
18:13.15tadzikoooh, new thumb \o/
18:13.18tadzikfreemangordon++
18:23.53dafoxok, so I'm about to install the -thumb stuff. However when I click the link in the tmo post it tells me that the repo is already installed but disabled (which is correct). But when i try to follow the cssu instructions from step 5,  I don't get any more warnings (ok), but at step 6 I don't see the 'Community SSU' icon. Can I skip this step since I already have cssu?
18:24.53keriodafox: yep
18:25.03keriojust tell HAM to check for updates
18:25.11kerioand do the system update
18:25.14dafoxok, thanks. I hope this works :)
18:25.17kerio(connect wallcharger and wait, it'll take a bit)
18:31.04arceannew hildon-desktop (2.2.147.90) @ cssu-devel
18:37.11*** join/#maemo-ssu Martix (~martix@ip-62-245-106-78.net.upcbroadband.cz)
18:37.37merlin1991arcean: what's new in it?
18:40.12arceanmerlin1991: http://talk.maemo.org/showthread.php?p=1311611#post1311611
18:40.46keriomerlin1991: nothing takes priority over the cert issue
18:41.17merlin1991freemangordon: you're right, there's more to it than moving the file to a different place
18:41.18merlin1991damn it
18:41.33merlin1991kerio: guess what I'm looking at atm
18:41.56kerio<3
18:42.06keriojust look at how it was fixed on the first cert issue
18:42.18merlin1991well we have a problem
18:42.38merlin1991the lists of valid certs are signed
18:42.44merlin1991(blacklist also)
18:43.04keriough :s
18:45.52keriowell, at worst we can just delete the cert and pretend it never existed
18:45.59keriobut putting it in the blacklist would be better
18:46.03keriomerlin1991: what checks the signature?
18:46.44merlin1991kerio: can't do that either, because then a cert that should be in the approved list is missing
18:47.04keriomerlin1991: cmcli can remove certificates though
18:49.30keriomerlin1991: we could ask the dude who did the first blacklisting!
18:49.43merlin1991that's what I'm planning todo
18:54.05merlin1991hm the cmcli code just unlinks the file in quesiton
18:54.57keriomerlin1991: we could/should add our own public key to the ones that can sign the cert list, i suppose
19:00.41DocScrutinizer05who T F is signing a revocation list?
19:01.12DocScrutinizer05that's utter nonsense
19:01.53merlin1991well i have no idea why it is signed but both the trusted and the blacklist are signed
19:03.03merlin1991check /etc/secure/s/certman.*
19:04.33freemangordonmerlin1991: signed? with which key?
19:04.57merlin1991gotta check but I think it's with the key in /etc/certs/trusted/root.key
19:05.31freemangordonmerlin1991: hmm, what is the problem then?
19:05.58merlin1991hm how do I check if a key is pw protected :D
19:06.20freemangordonmerlin1991: I bet it is not ;).
19:06.32freemangordonhowever, gimme some time to remember the command
19:07.26freemangordonmerlin1991: did you try to do dpkg-buildpackage
19:07.47freemangordonit could be that signing is a part of package build
19:07.48merlin1991that works, but it never touches the files / signatures
19:08.18freemangordonwell, then the signature is generated on install time
19:08.31freemangordonand we have nothing to worry about
19:08.39merlin1991the lists are presigned
19:09.03freemangordonoh, wait
19:11.15freemangordonmerlin1991: check that commit https://gitorious.org/community-ssu/maemo-security-certman/commit/23037012de495c4dfd2ece1e903b7bb1648168ab
19:11.54freemangordonseems like you should do whatever magic is needed on the device (or PC) and then copy the result
19:12.24merlin1991hm I could test that
19:12.36merlin1991let's see if the signature changes
19:12.43freemangordonyep
19:14.36freemangordonmerlin1991: you should yse cmcli to move the certificate in question to blacklist domain
19:14.38freemangordonaiui
19:14.42freemangordon*use
19:15.41freemangordon-a to add -r to remove
19:15.57freemangordonmerlin1991: d937b34e05fdd9cf9f1216aeb6892feb253a881c
19:20.53merlin1991freemangordon: yep seems to resign
19:21.14merlin1991though I didn't find that code inside the cmcli source when I skimmed it
19:21.56freemangordonmerlin1991: are you sure the signature is not regenerated on install time?
19:22.06merlin1991pretty sure
19:23.23freemangordonhttps://gitorious.org/community-ssu/maemo-security-certman/blobs/master/debian/maemosec-certman-common-ca.postinst
19:23.37merlin1991ah wait perl /usr/bin/c_rehash /etc/certs/common-ca
19:23.47freemangordonexactly
19:25.52merlin1991interestingly my cert manager only shows me the disabled certs, not the valid ones
19:26.06freemangordonmerlin1991: on the device?
19:26.19merlin1991yes
19:26.29merlin1991the one on stable shows me all
19:26.49*** join/#maemo-ssu _rd (~rd@p57B493B5.dip0.t-ipconnect.de)
19:27.13freemangordonthe one on thumb shows them all, it is something with your device
19:27.59freemangordonthough I wonder what's this with microb.
19:28.13freemangordoni.e. that you should remove the certificate by hand
19:31.23merlin1991libmaemosec-certman0 diverts the microb-engine security lib away
19:31.31merlin1991so that should be not neccessary
19:31.38freemangordonyes, that is why I wonder
19:32.09freemangordonBTW if new microb is installed after the diversion what will happen?
19:33.03keriofreemangordon: diversions are a dpkg thing
19:33.11freemangordonsure
19:33.14keriomicrob will happily install itself in the diverted location
19:33.21keriothe diverted files, i mean
19:33.24freemangordonok, thanks
19:33.52freemangordonmerlin1991: hmm, i removed that cert, but it is still listed in cpl applet
19:34.49freemangordonoh, wait, it is on my second device :D
19:35.10freemangordonhmm, still listed too
19:35.22keriofreemangordon: i read somewhere that blacklisted certs still show up in the UI
19:35.39freemangordonkerio: it is not blacklisted, just removed
19:35.44keriohm, weird
19:37.58freemangordonwell, i'll reboot
19:39.12*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
19:40.04freemangordonthe fuck, it is still there
19:46.42freemangordonooh, we have 2 certificates from TÜRKTRUST
19:49.06freemangordonmerlin1991: the second one is c126ef0d847fc578cabfa616229289c42af952e7
19:55.49keriofreemangordon: oh, heh
19:56.01keriofreemangordon: instead of deleting, can't we blacklist?
19:56.18freemangordonwe shal do both aiui
19:57.55freemangordonok. microb refuses to use https with turktrust's site
19:58.05kerio:D
19:59.58merlin1991kerio: we'll blacklist
20:02.16*** join/#maemo-ssu _rd (~rd@p57B493B5.dip0.t-ipconnect.de)
20:05.01freemangordonmerlin1991: hmm, I think we should be very careful
20:05.10freemangordonsee this https://blog.mozilla.org/security/2013/01/03/revoking-trust-in-two-turktrust-certficates/
20:05.12merlin1991I'll prepare a test package
20:05.32freemangordonthey are not blacklisting root certs, just compromised ones
20:05.40freemangordonaiui
20:06.11merlin1991we could just blacklist the intermediate ones
20:06.22freemangordonexactly what we should do
20:06.36merlin1991but ofc the article doesn't link to them
20:06.43freemangordoni'll check in IE, if I can find them
20:07.04freemangordonstarts IE for the first time for the last couple of years :D
20:08.09keriofreemangordon: they should be a CA, and they fucked that up
20:08.15keriothey should go out of business
20:08.26freemangordonkerio: well not exactly
20:08.32freemangordonread their explanation
20:09.12freemangordonmerlin1991: yep, found them :D
20:09.17keriothey're "reviewing"
20:09.51freemangordonmerlin1991: do you have windozw around?
20:09.59keriootoh, TURKTRUST only admitted the problem after google revealed it
20:10.05merlin1991freemangordon: it's windoze, and yes
20:10.25freemangordonyou'll find both sertificates in "untrusted publishers"
20:11.42freemangordonmerlin1991: if you want I can export them for you
20:11.52merlin1991that would be great
20:12.04merlin1991are you sure those are the intermediate and not the root certificates?
20:12.23freemangordonyep, you'll see
20:13.29freemangordonwonders if openssl can read p7b format
20:15.52merlin1991fmg afaick the windoze cert storage can export pem format
20:17.08freemangordonwell, it is .cer, but it is x509 base64 encoded, so yes. I got them both exported, lets see of openssl will like them
20:19.26freemangordonlooks fine
20:19.53freemangordonmerlin1991: do you know where .pem file names are derived from? md5 of the file?
20:20.04merlin1991no idea
20:20.13freemangordon:(
20:20.32*** join/#maemo-ssu nox- (noident@freebsd/developer/nox)
20:20.41merlin1991I don't even understand why they have a derived name
20:22.48freemangordonmerlin1991: well, I want to name the files correctly before giving them to you
20:30.22merlin1991we'll have to email Juhani Mäkelä then
20:30.29merlin1991I have no idea how those file names are generated
20:30.35freemangordonmerlin1991: gimme some time
20:30.49freemangordonit is some hash, i just need to find which one
20:31.56freemangordonmerlin1991: hmm, could be certificate serial number
20:35.03merlin199172:03:21:05:c5:0c:08:57:3d:8e:a5:30:4e:fe:e8:b0 => 408f39269c4c862399c65109a6e6f2c1fea7f6b7.pem how?
20:35.04merlin1991:D
20:35.22freemangordonseems it is not that :D
20:38.45freemangordonmerlin1991: hmm, i'll install them and cmcli will give me their names :D
20:40.40freemangordonhehe:
20:40.42freemangordon64fb1b863db84af24482f9563dea26c0f4e3b334.pem
20:40.42freemangordonef918e90bbc79150e645852bd7b6fa8145fe0063.pem
20:42.03*** join/#maemo-ssu _rd (~rd@p57B493B5.dip0.t-ipconnect.de)
20:42.37freemangordonmerlin1991: http://merlin1991.at/~freemangordon/turktrust_blacklist/
20:42.55freemangordonplease check them, just in case
20:44.15merlin1991hm how do I see that those are intermediate cas?
20:46.25freemangordonopenssl x509 -text -in $CERT
20:46.26freemangordon?
20:49.39merlin1991well my knowledge of all the fileds amounts to almost 0
20:49.44merlin1991so I can't tell what I'm seeing :D
20:50.21freemangordonadd those as blacklisted on your device
20:50.29freemangordonand check in settings applet
20:52.52freemangordonhmm. maybe i should have exported the whole chain
20:56.06freemangordonmerlin1991: looks ok there
20:57.50merlin1991yep it does
20:59.54freemangordonmerlin1991: though I wonder why IE shows one of them as issued to 8.google.com
21:00.00freemangordon*.google.com
21:00.19freemangordonbut maemo shows some cryptic turcish name
21:00.26freemangordon*turkish
21:00.43freemangordon"e-islem.kktcmerkezbankasi.org"
21:01.37freemangordonmerlin1991: oh, wait
21:01.45freemangordoni didn;t export that one
21:01.55freemangordoni'll have to add it too
21:03.10freemangordonmerlin1991: we have 3, not 2 certificates to blacklist
21:03.47merlin1991but everywhere else it states 2 certs to blacklist
21:04.16freemangordonbut M$ updated 3 - 2 intermediate and the one used for MTIM attack
21:04.24freemangordongot it?
21:04.39freemangordonthe others talk abou intermediate certificates only
21:04.57freemangordonbut there was one issued to *.google.com
21:05.10freemangordonusing one of the intermediate certs
21:06.10merlin1991ah k
21:06.24freemangordonok, uploadad
21:06.34merlin1991well if we blacklist the intermediate the one issued to *.google.com has no valid chain anyway
21:06.42freemangordonI know
21:06.58freemangordonI wonder why M$ did it that way
21:07.06keriowhy are we still trusting that CA? really
21:07.53freemangordonkerio: we can only follow M$/Mozilla, etc
21:08.04freemangordonwe are not to decide on that matter
21:08.43freemangordonkerio: i read somewhere that lots of turkish banks use this CA
21:08.56keriolet's follow mozilla pls :3
21:08.56freemangordonif we blacklist them... won;t be good
21:09.06freemangordonkerio: that is what we are doing
21:09.42freemangordonmerlin1991: well, it is up to you to decide whether to include *.google.com certificate
21:09.53freemangordonbut if it was me, i'd rather include it
21:10.04merlin1991the *.google.com cert has no chain wihout the other one
21:10.09keriofreemangordon: if your bank uses that CA, you should probably refrain from using your bank's website
21:10.10merlin1991no point in spamming our cert db
21:10.36freemangordonmerlin1991: check you blacklist store to see what I mean
21:10.52keriomerlin1991: +1, the *.google.com is just the only certificate that we know of
21:10.56keriothere might be a lot more
21:11.06freemangordonmerlin1991: cmcli -c blacklist -L
21:11.44freemangordonmerlin1991: though you are most probably right and we should not include that
21:12.36merlin1991check it before or after I inlcuded the cert?
21:12.49freemangordondoes not matter
21:13.22merlin1991so you're talking about the login.yahoo.com certs?
21:13.26freemangordonmerlin1991: however, I am convinced we should not include *.google.com
21:13.30freemangordonmerlin1991: yep
21:13.49freemangordonand addons.mozilla.org
21:14.21freemangordonbut all of them are signed by root cert
21:14.29freemangordon*.google.com is not
21:14.51freemangordonso i agree it should not be included
21:15.04merlin1991okay :)
21:15.20merlin1991hm which link to quote in the git commit message?
21:15.26freemangordonplus we can always include it later if mozilla includes it
21:16.42freemangordonBTW it will be funny if we are the next after google and M$ to blacklist those
21:16.55freemangordonbefore mozilla and major linux distributions :D
21:17.14merlin1991anyway which link to quote?
21:17.23freemangordonthe one from thread on TMO
21:17.37freemangordongoogleblogspot or something
21:17.53freemangordonhttp://googleonlinesecurity.blogspot.com/2013/01/enhancing-digital-certificate-security.html
21:21.50freemangordonmerlin1991: BTW Pali pushed a commit today to mp- thingie, you may want to revert it as it is briken
21:21.58freemangordon*broken
21:23.11merlin1991what's wrong with it?
21:23.21freemangordondoes not work :D
21:23.29freemangordonyou can't build -mp
21:23.36merlin1991rofl
21:25.39merlin1991okay building new certman stuff now
21:40.46merlin1991update is in testing-testing
21:42.09freemangordongoing to test it
21:43.30freemangordonmerlin1991: what is the repo?
21:43.57merlin1991the one you enable with http://cdnm.at/~christian/maemo/cssu/testing-testing-enabler_0.1_all.deb ;)
21:46.08freemangordonhmm. maybe it won;t work on -thumb
21:46.21merlin1991it's T7.2
21:46.32freemangordonaah, ok
21:48.41freemangordongood, only certman packages are updated
21:50.35merlin1991hehe had todo it via x11vnc
21:50.45merlin1991my wireless does not go into this room :P
21:51.00freemangordonrebooting, lets see
21:53.33freemangordonmerlin1991: something is broken, I see only blacklisted certificates
21:53.46freemangordondid you put hash file too?
21:53.52merlin1991yes
21:54.26merlin1991ah wait I have an idea
21:54.30merlin1991I bet apt is at fault
21:54.33keriomerlin1991: you said you could only see the blacklisted certificates, right?
21:54.39kerioeven before, i mean
21:54.57merlin1991yep, but only on my testing device
21:56.10freemangordonmerlin1991: doing perl /usr/bin/c_rehash /etc/certs/common-ca don't help
21:56.24merlin1991freemangordon: check /etc/secure/s/certman.*
21:56.28merlin1991then you'll see why
21:57.22kerio...config files huh
21:57.26kerio.dpkg-old
21:57.27merlin1991yep
21:57.36merlin1991nah it's .dpkg-dist
21:57.42keriooh, i was just guessing :)
21:57.51keriomerlin1991: it's a bug, remove them from the conffiles list
21:57.53freemangordononly certman.blacklist.dpkg-dist
21:57.56merlin1991but anyway move that to get rid of your manually generated hash file and you'll see the certs again
21:58.10kerioclearly they aren't config files in the usual sense
21:58.18freemangordonaah, yes
21:59.48merlin1991kerio: they are in no conffile list, they are conffiles automatically because they sit in /etc
22:00.35freemangordonmerlin1991: who creates those files?
22:00.48merlin1991well in this case it was ham
22:00.53freemangordonas i did apt-get install --reinstall maemosec-certman-common-ca
22:01.05keriogregoa: *poke*
22:01.13freemangordon(after manually deleting both blacklist.* files)
22:01.40freemangordonand now there is no certman.blacklist
22:01.50gregoakerio: seems I need to add "poke" to the regex of my autoreplies :)
22:02.00merlin1991they are from masemosec-certman-common-ca
22:02.25keriogregoa: how does one make a .deb that installs a file in /etc/ that's not actually a config file?
22:03.25freemangordonmerlin1991: what I miss? why is that file not recreated?
22:03.26gregoakerio: I think the only option is to (1) not ship it in the package and (2) create/cp/mv it in a minatainer script (postrm)
22:03.34keriowait, really? D:
22:03.53*** join/#maemo-ssu Milhouse (~Milhouse@Maemo/community/contributor/Milhouse)
22:04.45keriogregoa: isn't there a way to mark a file explicitly as a conffile or as not a conffile?
22:05.08freemangordonwell, restored with wget :D
22:06.07merlin1991gregoa: when you delete a conffile, --reinstall won't place it again right?
22:06.14gregoakerio: well, dh_installdeb marks them as conffiles automatically, and I don't know how to avoid this
22:06.15freemangordonkerio: actually who are we to mess with user's CA
22:06.20freemangordondatabase
22:06.40gregoamerlin1991: I think so; unless you give dpkg an extra options (something about missing conffiles)
22:06.49merlin1991freemangordon: see above :)
22:06.54freemangordonmerlin1991: IMO it is better that way
22:06.57keriomerlin1991: you could purge and reinstall
22:06.58freemangordonyeah, saw it
22:07.58lufI'm sorry to disturb you but what another meeting ;) ?
22:08.05gregoa--force-confmiss
22:08.18merlin1991luf: good question :D
22:08.28*** mode/#maemo-ssu [+o merlin1991] by ChanServ
22:08.29freemangordonmerlin1991: wednesday?
22:08.38*** topic/#maemo-ssu by merlin1991 -> Maemo Community Seamless Software Update "CSSU" channel, http://wiki.maemo.org/Community_SSU | Known bugs: http://j.mp/communityssu-bugs | Channel logs: http://mg.pov.lt/maemo-ssu-irclog/ | Sources: http://gitorious.org/community-ssu/ | Latest version: Testing(2012-12-25): 21.2011.38-1Tmaemo7.1; Stable(2012-12-24): 21.2011.38-1Smaemo5
22:08.45merlin1991wednesday is ok for me, luf?
22:09.23lufI can be available whole week from 21:00 CET (20:00 UTC)
22:09.43merlin1991so yes :D
22:09.46DocScrutinizer05err wut?
22:09.55merlin1991DocScrutinizer05: wut what?
22:10.15DocScrutinizer05optical diff for topic failed
22:10.56freemangordon:nod:
22:11.29*** mode/#maemo-ssu [-o merlin1991] by ChanServ
22:13.56merlin1991damn, where's acrean, I need one more guinea pig before I release this to the wild
22:14.16freemangordonkerio: ^^^
22:14.27freemangordonluf: ^^^
22:14.31keriohey! >:(
22:15.11keriofine, but i don't really want to enable another repo
22:15.16keriocan you give me the .debs?
22:15.27DocScrutinizer05no
22:15.44kerio?
22:16.00DocScrutinizer05the whole purpose is to test repo delivery
22:16.27DocScrutinizer05bevore we do repo delivery
22:16.29keriowell then both i and freemangordon are useless, we're using cssu-thumb
22:16.33DocScrutinizer05before even
22:16.39keriowho knows what's going on there?
22:16.57freemangordonkerio: we are not, well, at least I am not :P
22:17.09keriocomplains about people having more N900s than him
22:17.12freemangordonkerio: it does not matter if it is -thumb or -testing
22:17.23freemangordonin that particular case
22:18.28DocScrutinizer05since thumb only overides T partially, for the thombified pkgs. This isn't one of them though. right, freemangordon?
22:18.45freemangordonyep
22:18.59freemangordonthe fuuck, http://talk.maemo.org/showpost.php?p=1311677&postcount=3313
22:19.22freemangordonremove that crap from the repos already!!!
22:19.29merlin1991the joys of open forums :D
22:20.00DocScrutinizer05headdesks, hard
22:20.05freemangordonDocScrutinizer05: please, tell whoever has access to repos now to REMOVE IT
22:20.46DocScrutinizer05first I'll ask chem|st to ban this fool doing a 5 pages quote to add 3 lines comment
22:20.57DocScrutinizer05particularly THIS quote
22:21.11freemangordondon;t seems he is a newcomer
22:21.16freemangordondon;t, seems he is a newcomer
22:21.28DocScrutinizer05give it up already
22:22.52DocScrutinizer05and in 4 weeks we either can damage the repo so this particular pkg never ever gets downloaded again, or we have damaged repo from where nobody ever again downloads a pkg
22:23.34freemangordon:D
22:24.22keriocssu should ship a speedpatch with a stupid high version
22:24.34DocScrutinizer05HAHAHAHA brilliant
22:24.34keriothat tries to clean up nicely after it and does nothing otherwise
22:24.36merlin1991that is empty :P
22:24.41freemangordonkerio: don;t help
22:24.51merlin1991like speedpatch 999:99999.999-9999 xD
22:25.15freemangordonthe guy had screwed it that hard, that the only way to get rid if those "patches" is reflash. afaik
22:25.33DocScrutinizer05indeed it's useless since crappatches mess up system files and don't uninstall cleanly
22:26.45DocScrutinizer05sqlite evacuate eventsdb doesn't reverse easily  (<- made that up from some cloudy memory)
22:27.51DocScrutinizer05it's just clearly a pkg that MUST NOT go to extras
22:28.04DocScrutinizer05since it's damaging the system, hard
22:28.08keriowtf is evacuate? :o
22:28.50DocScrutinizer05nfc
22:29.41DocScrutinizer05the carppatchguy had it in his crappatch, and other honoured senior community members asked him "are you mad, guy?"
22:29.54freemangordon:D
22:29.59DocScrutinizer05cloudy memories, as already mantioned
22:30.06kerioso... i installed the testing-testing
22:30.24freemangordonkerio: good, check now in settings
22:30.40kerioi didn't change anything in the CA settings before, and there's no .dpkg-dist crap residue
22:31.10freemangordonyou should have *.EGO.GOV.TR disabled
22:31.19kerio...well, TÜRKTRUST is still there, but i think it's because the UI doesn't know about blacklists
22:31.32freemangordonkerio: ^^^
22:31.36keriohow do i check that microb won't do crap?
22:31.41freemangordonwe don;t disable the root cert
22:31.46keriooh
22:31.46freemangordononly intermediate
22:31.57keriohow do i test the intermediate?
22:32.01*** join/#maemo-ssu arcean_ (~arcean@aael82.neoplus.adsl.tpnet.pl)
22:32.12freemangordonthe second disabled should start with "e-islem"
22:33.27freemangordonkerio: just check if you have those marked as invalid in settings->certificate manager
22:33.43DocScrutinizer05~jrtools
22:33.43infobotcp /etc/hosts /etc/hosts-maemobackup && echo "188.117.59.202 wiki.maemo.org" >> /etc/hosts;  http://wiki.maemo.org/User:Joerg_rw/tools
22:34.48kerioyep, ego.gov.tr is invalid
22:35.08freemangordongood
22:35.17kerioe-islem.kktcmerkezbankasi.org is also invalid
22:35.23freemangordonperfect
22:35.36freemangordondo you have valid certificates listed?
22:35.38kerioany time any of those appears in a chain, the whole certificate is considered invalid, right?
22:35.40keriofreemangordon: loads
22:35.49kerioit took quite a lot to scroll down
22:35.50freemangordonyep
22:37.28kerioDocScrutinizer05 will be delighted to know that i used apt to do the install instead of HAM
22:38.20DocScrutinizer05yeah sure, great. Makes you help useless
22:40.06DocScrutinizer05and you making us believe you wanted to help and possibly merlin1991 already rolling the update to public repo based in fake testing now actually made it a bad thing
22:40.58DocScrutinizer05I wonder if you ever will grok it what's the use of tests
22:43.07DocScrutinizer05"dear community, we ship an urgent security update to you right this moment. It will show up in your HAM and usual update notifier. But PLEASE do NOT install it in HAM, since our CSSU member kerio thought it should get installed via apt"
22:43.23DocScrutinizer05"So it's not tested in HAM"
22:44.30merlin1991srly DocScrutinizer05 relax
22:44.51DocScrutinizer05nah, for today i'm somewhat fed up
22:47.42kerioi didn't want to make doc *this* upset :(
22:49.50SkryI can try it out with ham, whatever it is, just tell me what to do
22:55.16*** join/#maemo-ssu andre__ (~andre@wikimedia/aklapper)
23:01.34DocScrutinizer05Skry: http://cdnm.at/~christian/maemo/cssu/testing-testing-enabler_0.1_all.deb
23:02.18DocScrutinizer05Skry: beware, ask merlin1991
23:02.30DocScrutinizer05it is not exactly easy to "uninstall"
23:02.43DocScrutinizer05aiui
23:02.59freemangordonDocScrutinizer05: afaik it just adds a catalog
23:03.07freemangordonyou can disable it at will
23:03.11DocScrutinizer05that's what I thought as well
23:04.10DocScrutinizer05but when I asked merlin1991 if next testing update will work as usual after using testing-testing, I got a somewhat discouraging (for my) answer
23:04.21DocScrutinizer05which I can't recall in detail right now
23:04.28DocScrutinizer05thus, ask merlin1991
23:04.37merlin1991it will work except for corner cases
23:05.39DocScrutinizer05probably related to last update been way "huger" than this one
23:06.24DocScrutinizer05BM is never a bad idea
23:15.42freemangordonok, pretty enough for today, good night guys
23:15.49freemangordonwaves
23:29.45keriothe enabler should uninstall cleanly, anyway
23:43.44Skryeverything ok
23:48.52DocScrutinizer05Skry: :-D thanks
23:49.20Skrynp :)
23:49.36DocScrutinizer05merlin1991: ^^^

Generated by irclog2html.pl Modified by Tim Riker to work with infobot.