| *** Kabouik has joined #maemo | 00:51 | |
| *** Wikiwide has quit IRC | 00:56 | |
| *** xy2_ has quit IRC | 01:01 | |
| Enrico_Menotti | Ehm... HAM catalogues. I can add a new one manually from the HAM itself, or by browsing to a proper installation file and clicking it. But what if I want to access this information via terminal? Where is the catalogue info stored? | 01:05 |
|---|---|---|
| freemangordon | /etc/apt | 01:13 |
| freemangordon | and in gconf database iirc | 01:13 |
| *** err0r3o3 has joined #maemo | 01:18 | |
| DocScrutinizer05 | http://maemo.cloud-7.de/maemo5/session-log_enable-catalogs_README.txt and http://maemo.cloud-7.de/maemo5/usr/local/sbin/enable-catalogs | 01:29 |
| DocScrutinizer05 | ${cp} ${store}/${1}/etc/apt /etc | 01:32 |
| DocScrutinizer05 | ${cp} ${store}/${1}/etc/hildon-application-manager /etc | 01:32 |
| DocScrutinizer05 | http://paste.ubuntu.com/25454201 | 01:35 |
| Enrico_Menotti | Well, thanks, but I was looking for the uri's. I did dpkg -L hildon-application-manager and looked for catalogues. I found that the uri's are stored in /usr/share/hildon-application-manager/catalogues/variant-catalogues.xexp. I just added the muarf.org domain (maemo.muarf.org/apt-mirror/mirror/) and switched from https to http in the uri's. Opening the HAM again seems to work - catalogues are found and uri's are | 01:39 |
| Enrico_Menotti | correct. I think I did the right thing - what's your opinion? | 01:39 |
| Enrico_Menotti | I also noticed that the /etc/apt/sources.list.d/hildon-application-manager.list is automatically updated by the HAM once the catalogues are updated as I did. (However one needs to switch something, e.g. just click save on a catalogue, in order to trigger the apt source list update.) | 01:44 |
| DocScrutinizer05 | or you just look at what I posted | 01:49 |
| Enrico_Menotti | Yes, I looked at it, but in /etc/hildon-application-manager only the enabled/disabled settings are stored, for what I see. | 01:53 |
| DocScrutinizer05 | you noticed there's also a file /etc/apt/sources.list.d/hildon-application-manager.list in that ls output? | 01:57 |
| Enrico_Menotti | Yes, but if I change it, it gets rewritten by the HAM. | 01:59 |
| DocScrutinizer05 | well... you are aware of FHS and the meaning of /usr ? | 01:59 |
| DocScrutinizer05 | and of /etc | 02:00 |
| DocScrutinizer05 | editing files that get installed from a fpkg is usually not the best idea | 02:01 |
| DocScrutinizer05 | dpkg* | 02:01 |
| Enrico_Menotti | Yeah, I agree. I admit I don't know about FHS and the meaning of /usr and /etc. It's a good time to learn it... | 02:03 |
| DocScrutinizer05 | ~fhs | 02:03 |
| infobot | i heard fhs is the Filesystem Hierarchy Standard and is at http://www.pathname.com/fhs/, or included in the debian-policy package | 02:03 |
| DocScrutinizer05 | >>/usr is the second major section of the filesystem. /usr is shareable, read-only data. That means that /usr should be shareable between various FHS-compliant hosts and must not be written to. Any information that is host-specific or varies with time is stored elsewhere.<< | 02:05 |
| DocScrutinizer05 | >>The /etc hierarchy contains configuration files. A "configuration file" is a local file used to control the operation of a program; it must be static and cannot be an executable binary. [4]<< | 02:06 |
| *** err0r3o3 has quit IRC | 02:07 | |
| Enrico_Menotti | Thanks, that's very useful. I'm reading the document. I was looking for something explaining systematically the filesystem hierarchy. I just wonder what the names "etc" and "usr" mean. | 02:09 |
| *** xorly has quit IRC | 02:11 | |
| DocScrutinizer05 | usr is something like "Unix System Resources" | 02:13 |
| DocScrutinizer05 | it's _not_ "User" | 02:13 |
| DocScrutinizer05 | "etc" it... etc | 02:14 |
| DocScrutinizer05 | et cetera | 02:14 |
| DocScrutinizer05 | the names are rather arbitrary, they just have to be well known and unique | 02:14 |
| DocScrutinizer05 | for some cmdline tools literally nobody knows a meaning of their name | 02:15 |
| Enrico_Menotti | :) | 02:18 |
| *** pagurus has joined #maemo | 02:21 | |
| *** pagurus` has quit IRC | 02:23 | |
| Enrico_Menotti | In any case, I'm trying to correct the default uri's for the catalogues and point them to muarf.org. Seems the way is to change the /usr/share/hildon-application-manager/catalogues/variant-catalogues.xexp, although yes, this should not be done, but hey, the links are dead. At this point HAM finds the repos, but gives a "wrong domain" error in the logs (I tried the update button). In /usr/share/hildon-application-manager | 02:27 |
| Enrico_Menotti | / there is also a domains/ directory, where I find a file with keys. What are they? I tried, just to try, to comment them (I put a # in front of them, although probably this is not the right syntax). At this point no more wrong domain error, but a "#" character unexpected. Anyway I am proposed with an update (Maemo 5 security update). So now what is the right character to comment those lines? (Seems an xml...). And | 02:27 |
| Enrico_Menotti | what are those keys? There is also the maemo.org/extras repository, also with his keys. They work fine. | 02:27 |
| DocScrutinizer05 | to correct the *default* uri's for the catalogues and point them to muarf.org, the correct way indeed is to change /usr/share/hildon-application-manager/catalogues/variant-catalogues.xexp | 02:30 |
| DocScrutinizer05 | though you should do that in repo/CSSU | 02:31 |
| DocScrutinizer05 | the keys are for security check | 02:33 |
| DocScrutinizer05 | GAWD!!! doing a rsync copy from /home to external USB3 ext4 drive. This takes aaaaages, in 9h it copied just ~400GB | 02:35 |
| *** luke-jr has quit IRC | 02:37 | |
| *** luke-jr has joined #maemo | 02:37 | |
| *** florian has quit IRC | 03:02 | |
| *** dafox has joined #maemo | 03:54 | |
| *** Kabouik has quit IRC | 03:55 | |
| *** dafox has quit IRC | 04:14 | |
| DocScrutinizer05 | ext4lazyinit my ass | 04:23 |
| *** err0r3o3 has joined #maemo | 04:27 | |
| *** drathir has quit IRC | 04:30 | |
| *** drathir has joined #maemo | 04:39 | |
| *** DarioAlejandro has joined #maemo | 04:53 | |
| *** APic has quit IRC | 07:29 | |
| *** APic has joined #maemo | 07:38 | |
| *** rhn_mk1 has joined #maemo | 09:10 | |
| *** Pali has joined #maemo | 09:41 | |
| Enrico_Menotti | So. I changed /usr/share/hildon-application-manager/catalogues/variant-catalogues.xexp for the catalogues to point to muarf.org. Next I open HAM. The catalogues are ok. I go for updates. Result: no updates available. Log: http://paste.ubuntu.com/25456343/ (lines 2 and 3 are repeated many times, with many different package names. I just reported them one time in the pastebin). Now I close HAM. I remove (or rename) | 09:47 |
| Enrico_Menotti | /usr/share/hildon-application-manager/domains/variant-domains.xexp. Then open Ham. Catalogues ok. Go for updates. Result: one update available (Maemo5 security update). Log empty. Then refresh. Result: same update available. Log: http://paste.ubuntu.com/25456351/. Anybody who may explain to me what's going on? | 09:47 |
| *** xy2_ has joined #maemo | 10:37 | |
| brolin_empey | DocScrutinizer05: Use eSATA to avoid SATA↔USB conversion overhead? | 10:48 |
| brolin_empey | Has anyone else noticed the conceptual similarity between having an SSD on a PCI Express card and the HDDs on an ISA card used in the 1980s? ☺ | 10:52 |
| KotCzarny | isa is already burned down. that witch. | 10:52 |
| brolin_empey | KotCzarny: There are Socket T AKA LGA775 (Intel Core 2 era) motherboards with at least 1 ISA slot but, if I recall correctly, Socket 478 (Pentium 4) is the last generation of motherboard with an ISA slot with working DMA for an ISA card. | 10:58 |
| *** jkepler has quit IRC | 10:58 | |
| *** dmth|intevation has joined #maemo | 11:01 | |
| brolin_empey | Incidentally: After having a bulging battery in two models of smartphone with a removable battery (Samsung Galaxy Note 3 and Geeksphone Revolution), I do not think I want a mobile computer with a non-removable battery. | 11:03 |
| brolin_empey | I was curious how to replace the “non-removable” battery of the BlackBerry KEYone. | 11:03 |
| brolin_empey | https://www.ifixit.com/Guide/BlackBerry+KEYone+Motherboard+Disassembly/92149 | 11:03 |
| brolin_empey | That looks like a lot of work only to remove an internal battery. I do not have an electric blow dryer. | 11:03 |
| brolin_empey | https://www.phonedog.com/2013/09/26/i-don-t-think-i-ll-ever-understand-the-point-of-non-removable-batteries | 11:03 |
| KotCzarny | tbh i do not know how is any samsung phone related to #maemo | 11:04 |
| KotCzarny | :P | 11:04 |
| *** florian has joined #maemo | 11:21 | |
| *** jkepler has joined #maemo | 11:27 | |
| *** dmth|intevation has quit IRC | 11:28 | |
| *** florian has quit IRC | 11:31 | |
| *** florian_ has joined #maemo | 11:31 | |
| *** florian_ has quit IRC | 11:41 | |
| rhn_mk1 | did anyone try to use the 0xFFFF flasher recently? It complains about my libusb version, even though it seems correct | 11:59 |
| Enrico_Menotti | rhn_mk1 It needs libusb0.1, not libusb1.0, nor libusb1.0 + compatibility layer to libusb0.1 (I don't remember its name). | 12:02 |
| rhn_mk1 | Enrico_Menotti: hm, maybe I have both versions installed... | 12:03 |
| Enrico_Menotti | rhn_mk1 ...and it sees the wrong one. May be. | 12:04 |
| rhn_mk1 | Enrico_Menotti: libusb-devel-0.1.5-7.fc24.x86_64 looks good, doesn't it? | 12:05 |
| rhn_mk1 | do you know what happens if the wrong one is used? | 12:05 |
| Enrico_Menotti | Well, as far as I know, libusb1.0 has a different interface from libusb0.1, or something of the kind. They are different packages. And if you use libusb1.0 + compatibility layer, it's too slow, or something of the kind. For further details, better ask Pali, I think. | 12:07 |
| Enrico_Menotti | What is your OS? | 12:07 |
| rhn_mk1 | Enrico_Menotti: Fedora 25 | 12:08 |
| rhn_mk1 | the source of the libusb-devel package is hard to understand... | 12:09 |
| Enrico_Menotti | I'm not used to it in any way. I managed to get 0xFFFF working on a Mac (yes, made some adjustments and recompiled). And had to install libusb0.1. I may look at the Debian available packages, but don't know whether that would help with Fedora. | 12:09 |
| rhn_mk1 | Enrico_Menotti: worst case there's local installation or Docker :) | 12:10 |
| rhn_mk1 | but I want to improve something, I guess, or I'd just flash with the closed flasher already | 12:11 |
| Pali | libusb1.0 is slow | 12:11 |
| Pali | so when you combine libusb1.0 + compat layer for 0.1 then it would be slow too | 12:12 |
| Pali | you need to use libusb0.1 for 0xFFFF | 12:12 |
| rhn_mk1 | Pali: what are the consequences of the slowness? no detection? fails in the middle? | 12:13 |
| Pali | no detection or sometimes no detection | 12:13 |
| Pali | fail in the middle can happen, if "middle" means to reconnect | 12:13 |
| rhn_mk1 | Pali: why are delays critical? will the device timeout somehow? | 12:14 |
| Pali | yes, you need to start communication with device in time window | 12:14 |
| Enrico_Menotti | On Debian the package is libusb-0.1-4. I believe the libusb-devel is not the correct one (but I may be wrong). | 12:15 |
| rhn_mk1 | I just found that Fedora uses libusb-compat | 12:15 |
| Enrico_Menotti | Yes, that's the compatibility layer. So you're using libusb1.0 + compat layer. | 12:15 |
| rhn_mk1 | or actually I'm using libusbx + compar layer | 12:16 |
| rhn_mk1 | thanks for the hints | 12:16 |
| Enrico_Menotti | Yw. | 12:16 |
| Enrico_Menotti | Pali: hello. Could you please have a look at what I asked earlier (08:47 CEST)? Maybe you can help. | 12:18 |
| *** erland has quit IRC | 12:23 | |
| rhn_mk1 | is there some reputable source hosting N900 flash images? | 12:23 |
| Enrico_Menotti | ~lf | 12:24 |
| infobot | i guess #maemo lazyflashing is http://wiki.maemo.org/Updating_the_tablet_firmware#The_Lazy_Approach | 12:24 |
| *** sodadosa has joined #maemo | 12:24 | |
| rhn_mk1 | thanks | 12:24 |
| Enrico_Menotti | Or also a mirror I found on archive.org, up to PR1.3. | 12:24 |
| Enrico_Menotti | http://web.archive.org/web/20131117073524/http://skeiron.org/tablets-dev/nokia_N900/ | 12:25 |
| rhn_mk1 | oh, that's quite good | 12:26 |
| KotCzarny | ~flashing | 12:28 |
| infobot | hmm... maemo-flashing is http://wiki.maemo.org/Updating_the_tablet_firmware, or - on linux PC - download&extract http://maemo.cloud-7.de/maemo5/patches_n_tools/maemo-my-private-workdir.tgz, cd into it, do sudo ./flash-it-all.sh; or see ~flashing-cmdline, or see ~lazyflashing | 12:28 |
| KotCzarny | get the script, run it, forget about downloading anything else | 12:28 |
| KotCzarny | all you need is already in the script | 12:28 |
| rhn_mk1 | I don't like running random scripts as root :P | 12:28 |
| KotCzarny | i assume you have the ability to read? | 12:29 |
| rhn_mk1 | oh, I just did that | 12:31 |
| *** Wikiwide has joined #maemo | 12:39 | |
| *** Wikiwide has quit IRC | 12:50 | |
| *** xorly has joined #maemo | 12:57 | |
| Wizzup | freemangordon: jenkins is now up, almost building the first package. we need to change one or two things on the git side to get it to build. then we can look at pushing it to a reprepro repo | 13:07 |
| Wizzup | and then we need more glue to automatically build packages and such, but that's OK | 13:08 |
| Wizzup | at least then the basics work | 13:08 |
| Wizzup | the more complex thing will be to build fremantle packages that depends on other fremantle packages - then we need to ensure it also fetched those build deps ... from its own previously built repo | 13:08 |
| *** hurrian has quit IRC | 13:18 | |
| *** florian_ has joined #maemo | 13:19 | |
| *** TheKit has joined #maemo | 13:19 | |
| *** xy2_ has quit IRC | 13:21 | |
| *** hurrian has joined #maemo | 13:21 | |
| *** NotKit has quit IRC | 13:22 | |
| *** xy2_ has joined #maemo | 13:28 | |
| *** TheKit has quit IRC | 13:42 | |
| parazyd | Wizzup: we can ask if/how it works in the devuan setup | 13:53 |
| Wizzup | we could | 13:54 |
| Wizzup | I want to understand how the plugins want it work :p | 13:54 |
| freemangordon | great! | 13:54 |
| freemangordon | in the meanwhile, I am finishing codelockui REing | 13:54 |
| freemangordon | :) | 13:54 |
| Wizzup | sweet! | 13:54 |
| parazyd | :) | 13:55 |
| freemangordon | BTW, anybody knows what it is used for? | 13:55 |
| freemangordon | I mean - is that devicelock? | 13:55 |
| Wizzup | haha, finishing REing something without knowing where it is used, I like it | 13:55 |
| Wizzup | (and no, I can only guess) :D | 13:56 |
| freemangordon | REing was started by jonwil | 13:56 |
| freemangordon | also, this is the lib used when you choose "remove operator lock" in control panel | 13:56 |
| freemangordon | but I am not sure what it is supposed to do actually | 13:56 |
| bencoh | freemangordon: I dont exactly remember which is which, but one is used to unlock device | 14:00 |
| bencoh | and the other is used in control panel | 14:00 |
| freemangordon | yep, this is the one used in cpl | 14:01 |
| bencoh | iirc codelockui is basically the code dialog | 14:01 |
| freemangordon | yes, it is, but what it is used for? | 14:01 |
| freemangordon | what code is that one? | 14:01 |
| freemangordon | "operator lock"? | 14:01 |
| bencoh | hmm no, the phone lock | 14:01 |
| freemangordon | WTF is that in terms of n900? | 14:01 |
| freemangordon | no, phonelock is libdevicelock | 14:01 |
| freemangordon | or devicelock | 14:01 |
| freemangordon | ah, you mean this is the ui? | 14:02 |
| bencoh | exactly | 14:02 |
| KotCzarny | make some changes and see where they show up? | 14:02 |
| bencoh | well, from what I remember, at least | 14:02 |
| bencoh | haven't fiddled with those for quite a while (1.5y or something) | 14:02 |
| freemangordon | hmm | 14:03 |
| bencoh | back then I wanted to fix it when in portrait mode... then I realized it was closed-source | 14:03 |
| freemangordon | no more :) | 14:03 |
| bencoh | yay :) | 14:04 |
| bencoh | fixing it should be possible soon then :) | 14:04 |
| bencoh | hm btw, while you're here ... would it be possible to make hildon/mb2 a non-compositing wm? | 14:04 |
| freemangordon | no idea :D | 14:04 |
| bencoh | and how well would it perform with llvmpipe on arm (has anyone tested it)? | 14:05 |
| bencoh | (assuming we have to keep it compositing) | 14:05 |
| freemangordon | ok, I managed to lock my dev device and there seems to be a bug in codelockui so I can't unlock it :D | 14:06 |
| bencoh | haha | 14:06 |
| KotCzarny | lol | 14:06 |
| bencoh | iirc there is some dbus call to unlock it | 14:06 |
| freemangordon | well, I keep the original .so, so I will revert to it, but still, it is funny | 14:07 |
| *** N-Mi has quit IRC | 14:10 | |
| Wizzup | https://wizzup.org/first-build.png | 14:16 |
| freemangordon | Wizzup: BTW, you clone from github to another repo, right? | 14:17 |
| Wizzup | right now from the maemo gitlab, yeah | 14:17 |
| Wizzup | but we target any git URI | 14:17 |
| Wizzup | s/maemo/devuan/ | 14:17 |
| freemangordon | I think we'll have problems with branches, right? or not | 14:17 |
| Wizzup | yes | 14:18 |
| Wizzup | https://git.devuan.org/maemo/libcal | 14:18 |
| freemangordon | you always build master? | 14:18 |
| Wizzup | parazyd already made some branches/files/tags | 14:18 |
| Wizzup | and we need to fix most of the control files | 14:18 |
| parazyd | the maemo/ascii branch | 14:18 |
| Wizzup | but we'll get there, I don't have all the anwsers yet | 14:18 |
| *** jonwil has joined #maemo | 14:18 | |
| freemangordon | ah, ok | 14:18 |
| freemangordon | jonwil: cheers https://github.com/community-ssu/codelockui | 14:19 |
| *** Vajb has quit IRC | 14:19 | |
| bencoh | congratz! :) | 14:19 |
| jonwil | Good to see that's finished | 14:20 |
| jonwil | And that hildon-plugins-notify-sv and libplayback also seem to be finished | 14:21 |
| freemangordon | mhm | 14:21 |
| freemangordon | though there are still problems in codelockui, but I am chasing them | 14:22 |
| jonwil | Great :) | 14:24 |
| Enrico_Menotti | Hello everybody. Could you please have a look at the question I asked earlier, around 8.47 CEST? In particular bencoh (muarf.org is your mirror, right?) | 14:26 |
| *** Vajb has joined #maemo | 14:26 | |
| bencoh | Enrico_Menotti: hey! the KEYEXPIRED warning isn't related to the mirror. it just means that nokia signing keys have expired (quite a long time ago, actually - even before they closed their mirror) | 14:28 |
| Enrico_Menotti | Ah ok, so it's an unavoidable warning which I should live with. But one question: HAM was not working until I removed (renamed, actually) the /usr/share/hildon-application-manager/domains/variant-domains.xexp file. That contains some keys, which I don't know what are needed for. And a key is included also for repository.maemo.org - so I removed that as well, but this doesn't seem to affect that particular repository. | 14:31 |
| DocScrutinizer05 | that's no question | 14:32 |
| Enrico_Menotti | bencoh So what are those keys in variant-domains.xexp? | 14:32 |
| Enrico_Menotti | (This is the question.) | 14:32 |
| DocScrutinizer05 | very interesting if somebody finds an answer that's a) not 15 times the max postlen of freenode, and b) not just "RTFM man apt" | 14:33 |
| *** NeKit has joined #maemo | 14:34 | |
| jonwil | Its good that we are getting more and more of the interesting stuff for the N900 (hildon-plugins-notify-sv for example) cloned :) | 14:34 |
| bencoh | hmm, no idea what variant-domains.xexp is, I've never had to bother | 14:36 |
| bencoh | (not that I use HAM much, but ... it does work here) | 14:36 |
| Enrico_Menotti | DocScrutinizer05 Sorry, why man apt? Is not this related to HAM? | 14:36 |
| DocScrutinizer05 | ham is apt based | 14:36 |
| bencoh | DocScrutinizer05: this is still HAM-specific | 14:36 |
| bencoh | and I doubt he'll find information regarding the HAM-apt glue in the apt manual :) | 14:37 |
| DocScrutinizer05 | then b) already is off the table :-D | 14:37 |
| DocScrutinizer05 | remains a) | 14:37 |
| DocScrutinizer05 | but how are certs HAM specific? I thought that's a genuine apt thing | 14:38 |
| Enrico_Menotti | bencoh How did you proceed to update the catalogues to muarf.org? Just disabled the original Nokia catalogues from the HAM GUI and installed the new catalogues? | 14:38 |
| DocScrutinizer05 | I wouldn't be surprised if the answer is "yes" or "click an install file" | 14:39 |
| DocScrutinizer05 | I for one never edited sourcelist files | 14:39 |
| DocScrutinizer05 | I copy them however, in enable-catalogs | 14:40 |
| Enrico_Menotti | Ok. When you click the install file, does that also install new keys? Or keys are not needed for the muarf.org mirror? | 14:41 |
| DocScrutinizer05 | there are no keys for muarf | 14:41 |
| DocScrutinizer05 | muarf is a mirror that doesn't build&sign stuff itself, so the original nokia keys apply | 14:41 |
| KotCzarny | what is stopping maemo team from repacking nokia debs with maemo.org keys? | 14:42 |
| Wizzup | makes you wonder why we can't just resign it. | 14:42 |
| Wizzup | ^^ | 14:42 |
| *** Kabouik has joined #maemo | 14:42 | |
| KotCzarny | not that there would be any new package in those repos | 14:42 |
| DocScrutinizer05 | missing sources? | 14:42 |
| Wizzup | you don't need sources to sign it | 14:42 |
| KotCzarny | +1 | 14:42 |
| DocScrutinizer05 | bfc | 14:42 |
| DocScrutinizer05 | nfc even. ask the experts | 14:42 |
| KotCzarny | define 'experts' | 14:43 |
| DocScrutinizer05 | I think we looked into that for quite a few months, even Nokia dides did though they had no clue at all | 14:43 |
| Wizzup | devuan does this on a daily basis | 14:44 |
| Wizzup | afaik | 14:44 |
| Enrico_Menotti | Ok. So it's correct to "remove" the variant-domains.xexp, I guess. And what about repository.maemo.org? Does not produce any error nor warning without the key. And ehm, the original Nokia keys do not seem to apply to muarf: if I leave them there, I get the log I reported above (wrong domain). | 14:44 |
| jonwil | I think the issue is that there is no key in the stock firmware that is still valid (not expired) | 14:44 |
| Wizzup | jonwil: right, so cssu can add it | 14:44 |
| KotCzarny | but since packages would barf on keyexpireds, does it change anything? | 14:45 |
| Wizzup | this way one can change the repo url and add a key and be done | 14:45 |
| jonwil | Yeah resigning all the Nokia things with another key belonging to CSSU (and signing all the CSSU packages as well) seems like a good idea. | 14:45 |
| KotCzarny | would apt break if pkg key changes? | 14:46 |
| *** florian_ has quit IRC | 14:47 | |
| Enrico_Menotti | (Brb.) | 14:47 |
| bencoh | Enrico_Menotti: I'm not a good example, since I added the mirror urls to apt conf. and I don't really remember what I had to do for HAM to work (if any) | 14:47 |
| bencoh | s/any/anything/ | 14:47 |
| infobot | bencoh meant: Enrico_Menotti: I'm not a good example, since I added the mirror urls to apt conf. and I don't really remember what I had to do for HAM to work (if anything) | 14:47 |
| DocScrutinizer05 | Wizzup: no CSSU can't add it since we have no valid key to sign the new key | 14:49 |
| bencoh | well, technically CSSU has its own key | 14:49 |
| DocScrutinizer05 | we would need to instruct users to add the new key manually | 14:49 |
| bencoh | the one used to sign CSSU | 14:49 |
| bencoh | that is installed when upgrading (migrating) to CSSU | 14:49 |
| KotCzarny | couldnt cssu installer do that? | 14:50 |
| Wizzup | DocScrutinizer05: then people click a link in the browser and add the key | 14:50 |
| Wizzup | whatever, same thing | 14:50 |
| *** NeKit has quit IRC | 14:50 | |
| DocScrutinizer05 | sorry, I really have only a foggy idea about that stuff. Not much more than "Pali, freemangordon, and/or jonwil and others looked into it back when Nokia asked us how to fix their fuckup, and there was no feasible way for CSSU to accomplish that without help from Nokia that never came" | 14:51 |
| DocScrutinizer05 | I still have the emails | 14:51 |
| jonwil | My understanding is that there was no valid key in the stock ROMs that could be used to re-sign the Nokia repos | 14:52 |
| KotCzarny | because they were thinking about proper fix | 14:52 |
| DocScrutinizer05 | jonwil: yep | 14:52 |
| KotCzarny | i propose just resigning the debs with cssu key | 14:52 |
| DocScrutinizer05 | there was, but Nokia refused to use it | 14:52 |
| KotCzarny | well, another way would be breaking the key | 14:53 |
| DocScrutinizer05 | or just ignore it | 14:53 |
| KotCzarny | breaking onto nokia servers | 14:53 |
| Wizzup | jonwil: but a key can be added via the browser easily | 14:53 |
| Wizzup | *shrug* requiring some user interactions seems fine | 14:53 |
| DocScrutinizer05 | Wizzup: that been exactly the point | 14:54 |
| Wizzup | it's just that not fixing the re-signing is lame, but I can understand it if the issue is time constraints | 14:54 |
| Wizzup | DocScrutinizer05: is it? people already have to jump through several hoops for cssu | 14:54 |
| DocScrutinizer05 | prolly yes, with user interaction it's feasible | 14:54 |
| jonwil | Are CSSU debs currently signed? | 14:54 |
| DocScrutinizer05 | the concern back when was for doofus users who don't have a clue | 14:55 |
| DocScrutinizer05 | jonwil: nfc | 14:55 |
| DocScrutinizer05 | prolly not | 14:55 |
| DocScrutinizer05 | given they are built and packaged offline | 14:55 |
| DocScrutinizer05 | so who would be the key owner? | 14:56 |
| freemangordon | they are | 14:56 |
| jonwil | So they get signed when they get pushed to cssu-testing/cssu-stable/whatever? | 14:56 |
| freemangordon | maemo infra signs then | 14:56 |
| freemangordon | yes | 14:56 |
| DocScrutinizer05 | ooh fine :-) | 14:56 |
| jonwil | Ok so is the key that is used to sign those installed by CSSU (or as part of the CSSU process) or what? | 14:57 |
| *** err0r3o3 has quit IRC | 14:58 | |
| *** NeKit has joined #maemo | 14:58 | |
| freemangordon | jonwil: sorry, can't parse, please rephrase | 14:58 |
| DocScrutinizer05 | took me a while too :-) | 14:58 |
| jonwil | Ok so CSSU packages are signed by someone | 14:58 |
| freemangordon | your english is better | 14:58 |
| freemangordon | jonwil: in the repo, yes | 14:59 |
| DocScrutinizer05 | is the pubkey used to verify CSSU signature a part of the CSSU installation process? | 14:59 |
| freemangordon | yes | 14:59 |
| *** err0r3o3 has joined #maemo | 14:59 | |
| jonwil | Ok so right now there are 3 possibilities. First is someone running a stock firmware in which case it doesn't matter since they will be pointing at the stock Nokia repos that no longer exist. | 15:00 |
| Enrico_Menotti | I will be busy for a couple of hours (F1 race). See you later. Thanks for the discussion so far. | 15:00 |
| jonwil | The second possibility is someone who is running stock (or like me, stock with various replaced packages) but has changed their repos to point to a mirror | 15:00 |
| jonwil | The third is someone running CSSU | 15:00 |
| jonwil | IMO we should do this: | 15:01 |
| DocScrutinizer05 | jonwil: no CSSU????? o,O shame on you! ;-P | 15:01 |
| freemangordon | mhm | 15:01 |
| *** Pali has quit IRC | 15:01 | |
| jonwil | I am running a mix of various cloned/updated packages (some I cloned, others cloned or upgraded by someone else) | 15:02 |
| DocScrutinizer05 | WAAH Pali has a terrible timing | 15:02 |
| freemangordon | anyway, codelockui seems to work :) | 15:02 |
| *** Pali has joined #maemo | 15:02 | |
| DocScrutinizer05 | I'm pretty sure he investigated the whole issue in epic depth back when | 15:02 |
| jonwil | IMO we should do this: | 15:03 |
| jonwil | 1.We re-sign all the Nokia packages with the CSSU key | 15:03 |
| DocScrutinizer05 | in general I agree we finally should reclaim contrpol over *all* signature keys, particularly since original Nokia repos are no more | 15:04 |
| DocScrutinizer05 | so not a single user can run updates without having CSSU installed and repo sourcelists fixed | 15:05 |
| DocScrutinizer05 | ergo we need to take action about that, finally | 15:05 |
| freemangordon | Wizzup: which branch should I use so it is easier for you? | 15:06 |
| Wizzup | freemangordon: I don't know yet, once I do, I'll let you know | 15:06 |
| Wizzup | I think just a tag is fine | 15:06 |
| freemangordon | ok, I'll use gtk2 sisnce then | 15:06 |
| Wizzup | right now we're making it auto generate and sign a repo :) | 15:06 |
| freemangordon | is that ok? | 15:07 |
| Wizzup | gtk2? sure | 15:07 |
| freemangordon | ok | 15:07 |
| jonwil | IMO we should do this: | 15:09 |
| jonwil | 1.We re-sign all the Nokia packages with the CSSU key | 15:09 |
| jonwil | 2.We put the re-signed packages in a mirror repo and make the CSSU installer update things to point there instead of the stock repo locations so anyone with CSSU gets all the stock packages properly signed and working again with no user interaction beyond installing or updating CSSU. | 15:09 |
| jonwil | 3.For people who are running a device but dont want to run CSSU, we have the appropriate "click here to add the new key" and "click here to add the new repo" links available somewhere | 15:09 |
| jonwil | That way anyone who just wants a stock device but wants to be able to pull Nokia packages without key errors can update their repos easily and those who want CSSU get CSSU and get it all done automatically. | 15:09 |
| KotCzarny | that should fix all those cssu installs that require manual package installations? | 15:10 |
| jonwil | Anyone got any comments on whether my idea is good or not? | 15:13 |
| freemangordon | jonwil: I guess the idea is good, but I don;t see who is going to release it | 15:15 |
| KotCzarny | jonwil seems to have run out of things to RE, so.. ;) | 15:16 |
| freemangordon | ah, right :) | 15:17 |
| KotCzarny | and he is keys expert too | 15:17 |
| Wizzup | jonwil: that is exactly what I thought/meant | 15:18 |
| jonwil | My idea requires somewhere we can host a nokia repo mirror and someone who has the relavent CSSU key and the ability to download the nokia repo from an existing mirror, sign it all and then upload it to new space. None of which I can help with (I dont have space to put it or keys to sign it with or the bandwidth/speed to do a full repo download and re-upload) | 15:20 |
| freemangordon | jonwil: iirc we are not allowed to host closed source packages | 15:21 |
| KotCzarny | jonwil, would you be able to write a script for someone to run oh his server? (ie. bencoh) | 15:21 |
| freemangordon | no idea how relevent is this in 2017, but still | 15:21 |
| jonwil | I dont think whatever remains of Nokia (either the Microsoft Nokia who was releasing Windows based crap or the other Nokia that is now releasing crap running some different OS) actually cares anymore about what happens to the N900 and its software. | 15:22 |
| jonwil | I dont know enough about writing shell scripts or signing packages to write such a script :) | 15:23 |
| KotCzarny | eager to learn pkg signing then? ;) | 15:23 |
| jonwil | Actually, I need to stop procrastinating and talking on here and watching crap on YouTube | 15:24 |
| jonwil | I am exhibiting at https://www.facebook.com/events/259797684501353/ and I have a billion things I need to build and change and prepare before I am ready... | 15:25 |
| jonwil | So I gotta stop messing about and actually start building :) | 15:25 |
| bencoh | note that re-signed packages can be host by 3rd parties | 15:26 |
| bencoh | hosted* | 15:26 |
| DocScrutinizer05 | ((<freemangordon> jonwil: iirc we are not allowed to host closed source packages)) yes exactly | 15:29 |
| DocScrutinizer05 | we are not even allowed to publish tablets-dev though in fact we always been the ones to host it, on maemo infra | 15:30 |
| KotCzarny | are we allowed to RE packages? | 15:31 |
| Wizzup | why are you not allowed? | 15:31 |
| Wizzup | and if you host it anyway, might as well just sign it | 15:31 |
| KotCzarny | and to publish/create debs out of the results? | 15:31 |
| DocScrutinizer05 | Wizzup: because Nokia tells us so | 15:31 |
| Wizzup | but I'm not maemo | 15:31 |
| DocScrutinizer05 | you may do whatever you want, you are also the one to suffer any consequences. "We" (maemo 'official') do not discourage anybody hosting Nokia proprietary stuff, but Maemo is not allowed to do it | 15:33 |
| bencoh | :) | 15:33 |
| Wizzup | problem solved | 15:33 |
| jonwil | I believe the deal that transferred maemo infra to community specified that community doesn't get any of the secret stuff (i.e. anything related to projects.maemo.org) and community isn't allowed to distribute the Nokia device repos. | 15:37 |
| *** xorly has quit IRC | 15:38 | |
| jonwil | But there is nothing (other than the very very low risk of being sued by the ghost of Nokia) stopping someone that isn't "community" from redistributing the Nokia repos. | 15:38 |
| jonwil | So we just need someone to come up with a way for whoever has a repo already to re-sign things. | 15:40 |
| jonwil | Then we make CSSU point to that 3rd party repo | 15:40 |
| jonwil | and we are in business :) | 15:40 |
| bencoh | except that we don't want a 3rd-party to resign | 15:41 |
| *** florian_ has joined #maemo | 15:41 | |
| bencoh | s/resign/re-sign/ | 15:41 |
| infobot | bencoh meant: except that we don't want a 3rd-party to re-sign | 15:41 |
| jonwil | well "community" (i.e. official infra) can't host a repo. | 15:42 |
| bencoh | so you'd need maemo to re-sign packages at some point | 15:42 |
| bencoh | yeah I know :) | 15:42 |
| Wizzup | reprepro can do this in a breeze | 15:42 |
| jonwil | Ok so then we need someone who has the CSSU key to re-sign an existing (or new not-hosted-by-community) mirror somehow. | 15:44 |
| jonwil | Then we have a mirror signed by the CSSU key (which is what we want) but not hosted by community in a way that violates any nokia deals. | 15:45 |
| bencoh | "somehow" yeah :) | 15:45 |
| Wizzup | well, if maemo does not want to be associated, they should not sign it | 15:47 |
| bencoh | who would you trust then? | 15:47 |
| DocScrutinizer05 | http://mg.pov.lt/maemo-ssu-irclog/%23maemo-ssu.2013-01-24.log.html#t2013-01-24T13:13:24 | 15:47 |
| jonwil | Anyhow, this isn't something I can do anything to help with really | 15:49 |
| bencoh | ohwell, that link has some info regarding the .xexp file as well | 15:50 |
| bencoh | Enrico_Menotti: ^ | 15:50 |
| DocScrutinizer05 | ((<jonwil> Then we make CSSU point to that 3rd party repo)) is arguable, but I *think* of manageable risk nowadays | 15:50 |
| *** NeKit has quit IRC | 15:51 | |
| jonwil | So we need to figure out whether we have the repo signed by the CSSU key or by someone else and then make that happen. | 15:52 |
| DocScrutinizer05 | *somehow* skeiron was exactly that | 15:52 |
| DocScrutinizer05 | some folks inside maemo went nuts about it | 15:52 |
| DocScrutinizer05 | a secret guerrilla crew did an awesome job setting up skeiron and mirror *everything* there, and in turn the only "support" by maemo council needed would have been that they finance a totally unrelated backup server as compensation for the infra provided by skeiron team. We all know where that ended (fro those who don't: see my signature in tmo) | 15:55 |
| *** NeKit has joined #maemo | 15:55 | |
| DocScrutinizer05 | hail hildon foundation >:-( | 15:58 |
| DocScrutinizer05 | woody been one of that guerrilla crew, but later blamed me for lying at him. I mean, how insidious can it get? | 16:00 |
| bencoh | I don't think going through this helps anymore ;) | 16:00 |
| Wizzup | I don't know anything about this, and I do not know what good this does bringing it up again here and now | 16:01 |
| DocScrutinizer05 | you're right, sorry | 16:01 |
| DocScrutinizer05 | I just felt deep anger and frustration | 16:01 |
| DocScrutinizer05 | had to vent | 16:01 |
| jonwil | We need to stop talking about the past and look at the future. Do we intend to re-sign the repos or not? What mirror do we want to re-sign? And which key do we want to use to re-sign it? | 16:03 |
| DocScrutinizer05 | I *think* we could create a maemo-hosted mirror with restricted access to host the new-signed stuff | 16:04 |
| DocScrutinizer05 | as long as "nobody" (but those with the credentials) has access, we're fine with hosting on maemo | 16:05 |
| DocScrutinizer05 | too bad when the credentials "leak" | 16:05 |
| DocScrutinizer05 | ;-) | 16:06 |
| bencoh | DocScrutinizer05: you can actually re-use existing credentials ;) | 16:06 |
| bencoh | (that's what I did for ovi) | 16:06 |
| DocScrutinizer05 | bencoh: it must not be too obvious | 16:06 |
| *** NeKit has quit IRC | 16:07 | |
| jonwil | Anyhow, this is 100% out of my hands, I have nothing to do with it :) | 16:07 |
| bencoh | same here :) | 16:07 |
| DocScrutinizer05 | e.g. re-implementing that old "please enter your IMEI" thing won't fly | 16:07 |
| *** NeKit has joined #maemo | 16:08 | |
| DocScrutinizer05 | I think of really installong a regular .htaccess with user/password, and some folks running a real non-affiliated mirror will find out about those credentials by social engineering, hacking or whatever | 16:09 |
| DocScrutinizer05 | or similar to tablets-dev which is also still there, just nobody knows about it ;-) | 16:10 |
| DocScrutinizer05 | NB I do _not_ suggest to use the "upstream secret" URL for sources.list in devices. They should use unaffilated mirrors. Those mirrors should sync to that hidden master | 16:12 |
| bencoh | by the way ... https://github.com/postmarketOS/pmbootstrap/issues/438 :) | 16:14 |
| *** florian_ has quit IRC | 16:14 | |
| bencoh | (tl;dr: pavelmachek detailing n900 mainline status as a daily driver) | 16:14 |
| *** TheKit has joined #maemo | 16:18 | |
| DocScrutinizer05 | nice | 16:18 |
| *** NeKit has quit IRC | 16:20 | |
| DocScrutinizer05 | HMMMMM. about re-signing Nokia mirror: CSSU could validly claim they need a working Nokia mirror for their own building process, so they could host such mirror which is "only available to them" via above mentioned credentials | 16:25 |
| DocScrutinizer05 | :-D | 16:25 |
| DocScrutinizer05 | would make more than just some sense when such CSSU "private" mirror had been re-signed by CSSU keys | 16:26 |
| DocScrutinizer05 | when some "ev17 h4x0r5" crack and mirror that private Nokia CSSU mirror, what could we possibly do? | 16:27 |
| bencoh | this is a public chan with public logs :p anyway | 16:29 |
| *** N-Mi has joined #maemo | 16:29 | |
| *** N-Mi has joined #maemo | 16:29 | |
| DocScrutinizer05 | we will diligently change the credentials once a month and run fail2ban and everything against the mirror to protect it. NFC how those evil hax0rs manage to always copy it | 16:29 |
| bencoh | -_- | 16:30 |
| DocScrutinizer05 | bencoh: the idea is we don't do anything evil. So we better discuss this publicly to make sure we didn't miss any aspect ;-) | 16:31 |
| DocScrutinizer05 | meh, the Nokia repos are as static as it can get, we don't need to keep this "infra" dynamically working. It's a one-shot action, just take care the signatures expire no earlier than 2099 ;-) | 16:41 |
| jonwil | Ok so the first thing we need to do is to figure out who is going to run this 3rd party mirror (either someone running an existing mirror if they are interested or someone with the ability to run a new 3rd party mirror). Once that happens I have a plan to make this all work with minimal risk to maemo infra/community people. | 16:43 |
| *** N-Mi has quit IRC | 16:43 | |
| DocScrutinizer05 | keyholder of CSSU keys: merlin1991 | 16:45 |
| DocScrutinizer05 | afaik | 16:45 |
| DocScrutinizer05 | ~mirrors | 16:45 |
| infobot | i guess mirror is http://maemo-archive.wedrop.it/ http://talk.maemo.org/showthread.php?p=1315143#post1315143 or extras-devel.merlin1991.at - for fighting hashsum error, or see ~rmo-new | 16:45 |
| DocScrutinizer05 | hmm, no not those | 16:46 |
| DocScrutinizer05 | jonwil: why would we need "to figure out who is going to run this 3rd party mirror"? | 16:48 |
| jonwil | I mean we need to figure out which mirror is going to be the one that hosts this re-signed repo. | 16:48 |
| DocScrutinizer05 | we will see which mirror is it that picks up | 16:48 |
| DocScrutinizer05 | ;-) | 16:48 |
| DocScrutinizer05 | I suggest to consider indirection: point to a place with an .install file and only that .install file points to the recently valid mirrors | 16:49 |
| *** xorly has joined #maemo | 16:50 | |
| DocScrutinizer05 | ~jrrepos | 16:51 |
| infobot | well, jrrepos is http://maemo.cloud-7.de/maemo5/et_al/HAM-catalogs/ | 16:51 |
| DocScrutinizer05 | for a really longterm stable URL I'd change this to sth not including cloud-7 though | 16:52 |
| DocScrutinizer05 | might even be histed on maemo infra | 16:52 |
| DocScrutinizer05 | hosted* | 16:52 |
| DocScrutinizer05 | maybe a bootjob could download the .install file and edit the sources.list or /etc/hosts | 16:53 |
| *** N-Mi has joined #maemo | 16:55 | |
| *** N-Mi has joined #maemo | 16:55 | |
| DocScrutinizer05 | echo "nokiareposymbolic `wget http://maemo.cloud-7.de/maemo5/et_al/HAM-catalogs/ | grep 'URI = '|cut -f 3`" >>/etc/hosts | 16:55 |
| DocScrutinizer05 | sth like that | 16:56 |
| DocScrutinizer05 | (obviously buggy, but you get the idea) | 16:56 |
| Wizzup | freemangordon: http://sprunge.us/RANT | 17:06 |
| DocScrutinizer05 | RANT ? ;-P | 17:09 |
| APic | ;=P | 17:10 |
| Wizzup | yep, lol | 17:10 |
| APic | lol | 17:10 |
| DocScrutinizer05 | new flavor of bullshit bingo ala sprunge? | 17:10 |
| *** rzr-away has quit IRC | 17:13 | |
| Wizzup | anyway: this is libcal built from a devuan ascii VM running jenkins | 17:13 |
| Wizzup | it auto generates a repo and signs it with a testing key | 17:13 |
| Wizzup | this could essentially be rsynced to a public http server and we could play with it on a real device | 17:13 |
| Wizzup | we'll add the arm arch once we've figured out the other parts | 17:14 |
| Wizzup | automatically adding new packages, auto fetching new builds, documenting the branches / files required for git builds, and such | 17:14 |
| Enrico_Menotti | Wow, I see my original question about HAM generated a lot of discussion. bencoh, I have read the log DocScrutinizer05 linked to. I admit openly that my present knowledge about keys, signatures and so on is null. So although I tried to read all, I didn't understand that much. That log gives some hints about the .xexp files, yes. But I haven't been able to learn substantially anything more than what I had already seen. | 17:57 |
| Enrico_Menotti | Recap: I understand the keys for the original Nokia repos are expired, nothing to do about that. So that issues a warning in the HAM log, but nothing else. Still, I didn't understand why apt-worker refuses to use packages from mirrored (on muarf.org) Nokia repos (says "wrong domain"). Next, by removing the domain and key files in /usr/share/hildon-application-manager/ apt-worker doesn't complain anymore. As far as I | 17:57 |
| Enrico_Menotti | understand at the moment, in this situation apt-worker has no keys to verify the signatures (is this correct?), so it should complain even louder! Also, I removed the keys for repository.maemo.org together with the others, and neither this repository causes apt-worker to complain! Sorry, I don't understand what's going on. | 17:57 |
| Enrico_Menotti | May anybody help me to clarify the situation? | 17:58 |
| bencoh | how did you add the repositories to your device? | 17:59 |
| DocScrutinizer05 | ((apt-worker refuses to use packages from mirrored (on muarf.org) Nokia repos)) there's a setting in HAM red-pill mode to allow "3ed party sources" or somesuch, iirc | 17:59 |
| *** jonwil has quit IRC | 18:00 | |
| DocScrutinizer05 | ~redpill | 18:01 |
| infobot | extra, extra, read all about it, redpill is http://wiki.maemo.org/Red_Pill_mode | 18:01 |
| DocScrutinizer05 | HAM "settings"-> "[ ] Ignore packages from wrong domains", "[x] ignore the third party packages policy for SSU" | 18:04 |
| Enrico_Menotti | bencoh I edited /usr/share/hildon-application-manager/catalogues/vairant-catalogues.xexp and added to the uri's indicated there the path to muarf.org's mirror: http://maemo.muarf.org/apt-mirror/mirror/. This fixes the standard catalogues by pointing them to muarf.org. HAM is not complaining it can't find the catalogues. Problems arise with apt-worker refusing the domain. | 18:04 |
| DocScrutinizer05 | not sure which setting they'd need, but... usually your problem doesn't occur here | 18:04 |
| bencoh | what happens when just using the .install files? | 18:06 |
| DocScrutinizer05 | generally messing around with config preset files that are not meant to get altered by user and only will install from a verified repo is for sure not the best method to avoid unexpected probelms | 18:06 |
| bencoh | (I've never tried those, so ...) | 18:06 |
| DocScrutinizer05 | editing /etc/* is the way to go for *user*, just make sure e.g. HAM is not running concurrently as otherwise it might overwrite your edits when terminating | 18:07 |
| DocScrutinizer05 | well, actually for *user* the canonical way is to use HAM "catalogs" interface, or click an .install file in microB | 18:08 |
| bencoh | /60/60 | 18:09 |
| DocScrutinizer05 | again, I point to my enable-catalogs script that just works to switch different catalog settings, so whatever it does it does it the right way | 18:10 |
| DocScrutinizer05 | when copying files into /etc/apt/* works, then editing same files must work too, right? | 18:12 |
| Enrico_Menotti | Ok, I didn't try the .install files. I was first trying to correct the original Nokia links, so to avoid having disabled catalogues and side by side new ones. Yes, I can use the .install files and see what happens. I agree with the procedure suggested by DocScrutinizer05 , in the sense that this should not be done by the end user. But the original repos are no more, so in my opinion it does not make sense to disable | 18:12 |
| Enrico_Menotti | their catalogues and install others: it makes more sense to me to correct the original catalogues. Anyhow, at this point I'd like to understand how the .xexp files work. | 18:12 |
| Enrico_Menotti | DocScrutinizer05 /etc/apt/sources.list.d/ you mean? | 18:13 |
| DocScrutinizer05 | whatever files are there under /etc/apt | 18:13 |
| DocScrutinizer05 | I can't help with .xexp files, never heard of them before you came up with them | 18:14 |
| DocScrutinizer05 | I guess THAT is a very HAM specific thing | 18:14 |
| DocScrutinizer05 | only used once during initial config | 18:15 |
| DocScrutinizer05 | maybe HAM checks if the .xexp is newer than the files under /etc/apt and /etc/hildon-applicationmanager and if so, it re-initializes the latter files according to the .xexp... Or whatever | 18:16 |
| DocScrutinizer05 | you probably have to dig deep into HAM sources to get an answer to "how does .xexp work?" | 18:17 |
| DocScrutinizer05 | all I know is: nobody sugested to mess with .xexp so far | 18:18 |
| DocScrutinizer05 | the canoical way is via /etc/apt and /etc/hildon-app*ger | 18:18 |
| Enrico_Menotti | About /etc/apt: I am asking because I first tried to change the file inside /etc/apt/sources.list.d, but I found out that the HAM modifies this file according to the catalogues indicated in the .xexp files (and the "enabled/disabled" setting, which I have seen is stored in /etc/hildon-application-manager/catalogues: if a catalogue is disabled, its url doesn't appear in /etc/apt/sources.list.d). If one only modifies | 18:19 |
| Enrico_Menotti | /etc/apt/sources.list.d, then upon calling HAM GUI again and doing some actions, the sources.list.d files go back to their original content. | 18:19 |
| DocScrutinizer05 | see http://maemo.cloud-7.de/maemo5/session-log_enable-catalogs_README.txt and http://maemo.cloud-7.de/maemo5/usr/local/sbin/enable-catalogs | 18:19 |
| DocScrutinizer05 | and http://paste.ubuntu.com/25454201 | 18:19 |
| DocScrutinizer05 | and particularly the modification dates in there | 18:20 |
| Enrico_Menotti | Ok, let me have a look. | 18:20 |
| DocScrutinizer05 | >>If one only modifies /etc/apt/sources.list.d, then upon calling HAM GUI again and doing some actions, the sources.list.d files go back to their original content.<< no, evidently not, unless maybe you have HAM running concurrently to your edits | 18:21 |
| Enrico_Menotti | Well, I didn't remove the OVI catalogue from the /etc/apt/sources.list.d. I disabled it in the HAM GUI. But afterwards it disappeared from the /etc/apt/sources.list.d file as well. | 18:22 |
| Enrico_Menotti | The file is /etc/apt/sources.list.d/hildon-application-manager.list. | 18:23 |
| DocScrutinizer05 | http://paste.ubuntu.com/25458596 | 18:24 |
| Enrico_Menotti | Let me do a test. | 18:28 |
| DocScrutinizer05 | ((I disabled it in the HAM GUI. But afterwards it disappeared from the /etc/apt/sources.list.d file as well.)) yes, that's how HAM manages stuff, it has "enabled"/"disabled" in /etc/hildon-application-manager/catalogues and adjusts the sources.list files accordingly, so apt also *should* use same repos | 18:29 |
| DocScrutinizer05 | AIUI | 18:29 |
| freemangordon | Wizzup: cool!!! | 18:30 |
| Wizzup | :) | 18:30 |
| DocScrutinizer05 | that's why you shouldn't just edit sources.list since HAM will interfere. Use HAM "catalogs" GUI instead. Or edit *all* files that need an edit | 18:30 |
| Wizzup | now I have a headache though | 18:30 |
| Wizzup | enough jenkins for today | 18:30 |
| freemangordon | where is the repo? | 18:31 |
| Wizzup | it's not yet online. I can rsync it somewhere if you want to look at it | 18:31 |
| Wizzup | It's on the vm only | 18:31 |
| freemangordon | ah, no, no hurry | 18:31 |
| DocScrutinizer05 | it's not just any wiskey, it's Jenkins whatthefuck | 18:31 |
| *** ecc3g has quit IRC | 18:31 | |
| freemangordon | :) | 18:31 |
| Wizzup | so yeah, what's left is what I wrote above | 18:32 |
| Wizzup | should be a bit more work, but doable | 18:32 |
| freemangordon | in the meanwhile I managed to build and run hildon-control-panel in devuan VM :) | 18:32 |
| Wizzup | sweet | 18:33 |
| Wizzup | I'm really looking forward to getting a first devuan up and running with the repos | 18:34 |
| Wizzup | just add the repo; apt-get install hildon-desktop and done | 18:34 |
| Enrico_Menotti | DocScrutinizer05 I checked. Yes, if I edit /etc/apt/sources.list.d/hildon-application-manager.list, then open HAM GUI and trigger an action (I went to catalogues, opened the apps one and saved it without any modification), afterwards the /etc/apt/sources.list.d/... file is recreated. So it is enough to edit the .xexp file (/usr/share/hildon-application-manager/catalogues/variant-catalogues.xexp). HAM automatically | 18:34 |
| Enrico_Menotti | mirrors the edits in /etc/apt/sources.list.d/hildon-application-manager.list. | 18:34 |
| freemangordon | do we have any known FOSS cpl applet? | 18:34 |
| *** ecc3g has joined #maemo | 18:34 | |
| Wizzup | cpl? | 18:34 |
| freemangordon | control panel | 18:34 |
| freemangordon | aka settings | 18:34 |
| DocScrutinizer05 | Enrico_Menotti: no, we don't edit .xexp | 18:35 |
| DocScrutinizer05 | /usr/* is read-only for all that matters | 18:35 |
| Wizzup | freemangordon: I don't know. I would assume so. external keyboard? | 18:36 |
| Wizzup | or operator name? | 18:36 |
| freemangordon | extkbd is mine, but it is qt | 18:36 |
| Wizzup | is that a problem? | 18:36 |
| *** florian_ has joined #maemo | 18:36 | |
| freemangordon | still no qt | 18:37 |
| Wizzup | ack | 18:37 |
| Wizzup | btw, if anyone knows how to connect to a bluetooth keyboard that seems to do 'auto pair', that would be nice (e.g. you never get to fill in a pin code) | 18:37 |
| Wizzup | it works on android, but the n900 gets stuck in a weird way and wants to fill in a pin | 18:37 |
| Wizzup | (windows has the same problem) | 18:37 |
| DocScrutinizer05 | Enrico_Menotti: honestly, I have a very simplistic approach to that: make a copy of /etc, then use HAM GUI to add or remove a catalog, then see what it did to /etc (usinf diff tool or whatever you like). So you see what's the correct way to do stuff, then implement that in your script or whatever you are about to create | 18:38 |
| DocScrutinizer05 | for advanced tasks, use strace to watch what exactly it is HAM is doing | 18:39 |
| DocScrutinizer05 | when using strace, watch out not to miss forks | 18:39 |
| Wizzup | strace -f follows forks | 18:39 |
| DocScrutinizer05 | yep | 18:40 |
| DocScrutinizer05 | that's what I leaft to the reader to figure out ;-) | 18:40 |
| Enrico_Menotti | DocScrutinizer05 Ok, I understand your position. However, one can play with his system in the way he likes to. It depends on what one wants to achieve. I'd like to correct the original catalogues instead of creating new ones. By editing the .xexp files this can be done, it seems, with all the risks this implies. | 18:41 |
| Enrico_Menotti | About tracing HAM actions: yes, I was thinking about something of the kind. Thanks for the hints. Never used strace. Will investigate. | 18:41 |
| DocScrutinizer05 | well, what can be done and what will work in the end are two segregate things | 18:41 |
| DocScrutinizer05 | editing files in /usr is a *very* poor idea since apt itself will override them next time you install/update stuff | 18:42 |
| Enrico_Menotti | Segregate? You mean separate? | 18:42 |
| Enrico_Menotti | Oh yes I got it. | 18:42 |
| Enrico_Menotti | That's absolutely correct. I realise it. One should modify packages on the repository they are fetched from by apt. | 18:43 |
| Enrico_Menotti | Right? | 18:43 |
| DocScrutinizer05 | yes | 18:43 |
| Enrico_Menotti | Yeah, I am conscious of this downside. | 18:43 |
| DocScrutinizer05 | and there's no point in musing about the signing keys in (or next to) /usr/share/hildon-application-manager/catalogues/ for you, since you don't have any alternative keys to provide there anyway | 18:46 |
| DocScrutinizer05 | how to correctly turn a signed into an unsigned repo for HAM is an entirely different and pretty complicated topic | 18:47 |
| DocScrutinizer05 | stuff n /etc/apt/trustdb.gpg. And whatnot else | 18:49 |
| DocScrutinizer05 | probably HAM takes care about that too. So I really suggest using HAM for editing HAM catalogs | 18:51 |
| Enrico_Menotti | Right. Is the mirror at muarf.org signed or not? If yes, is the signature the same as for the original Nokia repos? When you use the .install files, do they install any key for verifying the signature, besides creating new catalogues? All questions that arise in my mind. I don't want to annoy you by pretending an answer. It's just what I am thinking about. | 18:51 |
| rhn_mk1 | is there a way to use .install files from command line? | 18:52 |
| Enrico_Menotti | And yes, I'd use HAM to edit catalogues, but the default ones cannot be edited that way, as far as I know. They can only be disabled. | 18:52 |
| DocScrutinizer05 | it's a mirror, so the signatures are original nokia signatures and they don't match the mirror's URL | 18:52 |
| DocScrutinizer05 | when you use .install they don't explicitly create a new signature key | 18:53 |
| Enrico_Menotti | Yeah, that's what I was suspecting! | 18:53 |
| DocScrutinizer05 | it feels a little pointless to discuss this stuff in epic width without knowing what's the goal of that exercise | 18:55 |
| Enrico_Menotti | So if one removes the keys in the .xexp files, or put in another way creates another catalogue without signature by using the .install files, why does that work? Since there are no keys to verify the signature of the repos, should not HAM (or apt-worker) complain? | 18:56 |
| Enrico_Menotti | Ok, yes, this is pure speculation (almost pure). | 18:56 |
| Enrico_Menotti | The practical goal would be to have the original catalogues working by pointing to a mirror. | 18:56 |
| DocScrutinizer05 | that's an oxymoron | 18:57 |
| DocScrutinizer05 | original catalogues != mirror | 18:57 |
| Enrico_Menotti | Well, the catalogues are the info on the local system, pointing to a repo, is that right? | 18:58 |
| DocScrutinizer05 | unless you add a indirection to /etc/hosts | 18:58 |
| Enrico_Menotti | I mean I want to modify this info to point to the mirror, instead of disabling it and creating a new one. | 18:58 |
| DocScrutinizer05 | why? | 18:59 |
| DocScrutinizer05 | not that it'd be impossible (CSSU done similar), but the purpose is unclear | 19:00 |
| Enrico_Menotti | Well, it's a matter of taste, let's say. Since the original repos are down and forever will be, there's no sense in keeping the original catalogues as they are and creating others. This is what I thought initially. | 19:01 |
| Enrico_Menotti | Right, the other way in the end produces the same result. | 19:01 |
| DocScrutinizer05 | why would you want an immutable catalog entry pointing to an arbitrary mirror? | 19:02 |
| DocScrutinizer05 | would complicate matters to no end for users, once that mirror changes | 19:03 |
| Enrico_Menotti | Yes, true. | 19:03 |
| Enrico_Menotti | I was not thinking about other users - it's just for my personal use. If the mirror changes, I know how to correct again the catalogue entry. | 19:04 |
| DocScrutinizer05 | it's arguable if we should remove the original Nokia repos since they are and always will be dead. But replacing them by a random mirror doesn't feel like it's the right thing to do | 19:04 |
| DocScrutinizer05 | anyway, good luck, I'm afk for today | 19:05 |
| DocScrutinizer05 | o/ | 19:05 |
| Enrico_Menotti | Bye DocScrutinizer05 . I will stop here for now - will investigate later. | 19:06 |
| Enrico_Menotti | Thanks. | 19:06 |
| rhn_mk1 | is it possible to use the mirrored repositories with plain apt-get? `apt-get update` complains about old signatures for me | 19:31 |
| KotCzarny | complains doesnt equal 'not worky' | 19:31 |
| rhn_mk1 | errors out actually | 19:31 |
| KotCzarny | pastebin the error | 19:31 |
| rhn_mk1 | KotCzarny: http://pasted.co/f5a366a5 | 19:36 |
| rhn_mk1 | sources.list: http://pasted.co/d581e5db | 19:38 |
| *** jja2000 has joined #maemo | 19:47 | |
| *** arcean has joined #maemo | 19:50 | |
| KotCzarny | ~maemo-repos | 20:08 |
| infobot | it has been said that maemo-repos is http://wiki.maemo.org/Repository#List_of_Maemo_repositories | 20:08 |
| KotCzarny | are you sure those linenoise mirrors match? | 20:08 |
| KotCzarny | they do, hmm | 20:09 |
| rhn_mk1 | copied from there | 20:09 |
| KotCzarny | but what about: | 20:09 |
| KotCzarny | # This is another mirror for the same thing as those above. Temporarily OFFLINE | 20:09 |
| rhn_mk1 | KotCzarny: I tried with muarf with the same error | 20:10 |
| KotCzarny | uhum | 20:10 |
| KotCzarny | was long time since i last updated | 20:10 |
| KotCzarny | but if apt dies on keyexpired it's another reason to resign packages in the mirrors | 20:10 |
| rhn_mk1 | that *does* work with FAM and HAM, but those seem to be using different source lists | 20:11 |
| rhn_mk1 | same URLs, nevertheless | 20:11 |
| DocScrutinizer05 | rhn_mk1: "W: " is *warning* | 20:13 |
| KotCzarny | Err http://maemo.linenoise.info ./ Release | 20:13 |
| KotCzarny | shouldnt it be wrn then? | 20:13 |
| DocScrutinizer05 | look at http://maemo.linenoise.info/, it's not any repo structure | 20:14 |
| DocScrutinizer05 | there's none of "Release" or any of the module dirs | 20:14 |
| DocScrutinizer05 | http://maemo.linenoise.info/downloads.maemo.nokia.com/fremantle/ssu/mr0 404, right? | 20:15 |
| DocScrutinizer05 | hmm actually not | 20:16 |
| KotCzarny | nope, loaded | 20:16 |
| KotCzarny | rhn_mk1: can you install any pkg from those mirrors via apt? | 20:17 |
| DocScrutinizer05 | anyway, I guess the error is about Release file not found in one of the places apt looks for them | 20:17 |
| rhn_mk1 | KotCzarny: can you give me an example? | 20:17 |
| DocScrutinizer05 | it's obviously _not_ a gpg error | 20:17 |
| KotCzarny | tutorial-home-applet ? | 20:18 |
| KotCzarny | seems safe enough to try | 20:18 |
| KotCzarny | if it's already installed you might add --reinstall to force reinstall | 20:19 |
| rhn_mk1 | http://paste.debian.net/984271/ | 20:20 |
| rhn_mk1 | it worked | 20:20 |
| KotCzarny | then i guess you can ignore those warnings | 20:20 |
| rhn_mk1 | KotCzarny: can you give me a random package from CSSU? | 20:21 |
| DocScrutinizer05 | anyway "W: GPG error: http://maemo.linenoise.info ./ Release: The following signatures were invalid: KEYEXPIRED 1349249546 KEYEXPIRED 1349249546 KEYEXPIRED 1349249546" is a *W*arning | 20:21 |
| rhn_mk1 | I'd like to figure out if these work | 20:21 |
| KotCzarny | which cssu flavour do you have? | 20:21 |
| rhn_mk1 | stable, if that's what you mean | 20:21 |
| KotCzarny | cssu server seems slow | 20:22 |
| KotCzarny | status-area-orientationlock-applet | 20:23 |
| rhn_mk1 | thanks | 20:23 |
| rhn_mk1 | also works! | 20:23 |
| KotCzarny | did you install cssu via installer ? | 20:23 |
| rhn_mk1 | KotCzarny: yes, and I added the line manually later | 20:24 |
| rhn_mk1 | the point of this exercise was to install CSSU from command line to save myself from typing | 20:24 |
| KotCzarny | um | 20:24 |
| DocScrutinizer05 | not recommended | 20:24 |
| KotCzarny | cssu installer does more than just changing repos | 20:25 |
| DocScrutinizer05 | indeed | 20:25 |
| KotCzarny | it should always be installed via recommended method | 20:25 |
| rhn_mk1 | it does, but does it need GUI for that? | 20:25 |
| DocScrutinizer05 | yes | 20:25 |
| * rhn_mk1 is baffled but okay | 20:25 | |
| KotCzarny | if you played around and run into troubles remember what you did | 20:26 |
| DocScrutinizer05 | long answer: not if you know *exactly* what and how to start, in which sequence, from cmdline. and even then a GUI will open | 20:26 |
| KotCzarny | easier to debug for cssu folks | 20:26 |
| rhn_mk1 | ack | 20:26 |
| KotCzarny | you can try dissecting installer to check if you missed any steps | 20:27 |
| rhn_mk1 | KotCzarny: I'm not concerned about that actually | 20:27 |
| rhn_mk1 | only about making a "simple" script to bring a system up to date, and publishing that if I can | 20:28 |
| KotCzarny | i would refrain from publishing, unless it gets blessed by cssu folks | 20:29 |
| KotCzarny | otherwise you will create more troubles than help | 20:29 |
| rhn_mk1 | that's why I'm here, asking questions :) | 20:29 |
| DocScrutinizer05 | rhn_mk1: if that had been any feasible, CSSU would have done it | 20:29 |
| DocScrutinizer05 | the point (among others) is about CSSU installer changing repos, and for that HAM needs to be inactive. Later on you need HAM again to run the CSSU update | 20:30 |
| rhn_mk1 | CSSU is one piece of the mess, mirrors are another, dead repositories and useless apps are one more | 20:31 |
| KotCzarny | thank nokia for that situation | 20:31 |
| KotCzarny | :) | 20:31 |
| rhn_mk1 | I thank CSSU people for trying to fix that, but if I can make improvements, why not try? | 20:32 |
| KotCzarny | in perfect world we would have already patched firmware update | 20:32 |
| KotCzarny | but for various reasons it's not going to happen | 20:32 |
| KotCzarny | do you know good lawyer? | 20:32 |
| DocScrutinizer05 | lazyflashing, click recommended.install, one-click install CSSU and follow the instructions (it actually needs more than one click, which is the point) | 20:32 |
| DocScrutinizer05 | this is the canonical method to bring a device up-to-date | 20:33 |
| KotCzarny | especially one that tackled big corpo issues | 20:33 |
| rhn_mk1 | I figured that's the case | 20:33 |
| KotCzarny | if you manage to clear the way, we are golden | 20:33 |
| DocScrutinizer05 | rhn_mk1: quite a few people looked into CSSU to improve the procedure. If you nevertheless can come up with improvements, don't hesitate to suggest them. However it takes quite some study to avoid the pitfalls in that process CSSU needs to use to switch standard SSU to CSSU | 20:35 |
| rhn_mk1 | DocScrutinizer05: the necessary step to updating (and then to customizing) installation is to get the command line to work. but if you're saying it's impossible to update CSSU this way, then I guess there's nothing to be done | 20:37 |
| rhn_mk1 | s/update/install/ | 20:37 |
| infobot | rhn_mk1 meant: DocScrutinizer05: the necessary step to updating (and then to customizing) installation is to get the command line to work. but if you're saying it's impossible to install CSSU this way, then I guess there's nothing to be done | 20:37 |
| rhn_mk1 | huh, neat | 20:37 |
| DocScrutinizer05 | it's a two-step process where HAM installs CSSU-enabler and then quits. And CSSU-enabler changes the repos (while HAM being inactive) and then starts HAM (and apt) again to do the real update | 20:39 |
| DocScrutinizer05 | iirc | 20:39 |
| rhn_mk1 | sounds simple enough, thanks | 20:40 |
| rhn_mk1 | does CSSU-enabler use the system-wide sources.list or the HAM one? | 20:40 |
| DocScrutinizer05 | you can't automate that process in a simple manner, unless you exploit alarmd or whatever to restart stuff after everything terminated | 20:40 |
| KotCzarny | cssu enabler uses ham in the process | 20:41 |
| *** err0r3o3_ has joined #maemo | 20:41 | |
| DocScrutinizer05 | ^^^ | 20:41 |
| rhn_mk1 | I see | 20:41 |
| rhn_mk1 | if I get anywhere, I'll let you know | 20:41 |
| KotCzarny | and most tricky part is ham failing quietly for some users with weird repos/packages | 20:41 |
| KotCzarny | without reporting it | 20:41 |
| rhn_mk1 | why does it use HAM instead of just apt-get? | 20:42 |
| DocScrutinizer05 | there's a possible way to schedule a timed execution of CSSU-enabler from CSSU-enabler's post-install script | 20:42 |
| DocScrutinizer05 | but that's... icky | 20:42 |
| DocScrutinizer05 | because HAM does more than apt-get | 20:43 |
| DocScrutinizer05 | that's why you never install core system stuff via apt | 20:43 |
| DocScrutinizer05 | always use HAM for that | 20:43 |
| rhn_mk1 | that's important advice, I didn't know | 20:43 |
| rhn_mk1 | what is the extra stuff then? | 20:44 |
| DocScrutinizer05 | stuff like stoping/starting services etc iirc | 20:44 |
| *** err0r3o3 has quit IRC | 20:44 | |
| DocScrutinizer05 | priorities, whatnot else | 20:44 |
| DocScrutinizer05 | requesters the user needs to nod off | 20:44 |
| *** ecc3g has quit IRC | 20:45 | |
| DocScrutinizer05 | when you e.g install sshd from apt, you nevertheless get a GUI requester you need to nod off, or in this case even enter new password iirc | 20:46 |
| DocScrutinizer05 | there's quite some HAM specisic stuff in some packages, and system updates cause HAM dto take care about needed reboots and service restarts and whatnot | 20:47 |
| DocScrutinizer05 | I don't know details | 20:47 |
| DocScrutinizer05 | I just know "NEVER EVER do a apt-get upgrade|dist-upgrade" | 20:48 |
| DocScrutinizer05 | which is what it basically boils down to | 20:48 |
| DocScrutinizer05 | ((if I get anywhere, I'll let you know)) the problem with this approach usually is: others been there, done that, and found about the hidden issues during weeks of research and bugfixing | 20:50 |
| DocScrutinizer05 | it's not as simple as "seems to work for me" | 20:51 |
| rhn_mk1 | indeed | 20:51 |
| rhn_mk1 | now I agree that it's not something I can do in a weekend | 20:51 |
| rhn_mk1 | which is a shame anyway :( scriptability rules | 20:52 |
| *** ecc3g has joined #maemo | 20:53 | |
| DocScrutinizer05 | we all agree on that, and it's a sticky topic on CSSU. You may consider CSSU as a "as good as it gets" probably | 20:54 |
| DocScrutinizer05 | if there had been a way to streamline it further, *for sure* it had been implemented | 20:54 |
| DocScrutinizer05 | the above mentioned alarmd (sort of atd alike cronjob thing) "improvement" has usability / UX issues | 20:55 |
| DocScrutinizer05 | the device acts weird, starting stuff without clear plan that would be obvious to the user. Also involves timing isses aka race conditions etc | 20:57 |
| DocScrutinizer05 | I *think* "recently" Pali looked into exactly that | 20:58 |
| rhn_mk1 | I imagine there's also backwards compatibility issue with all the packages which were written assuming they are installed by HAM too | 20:58 |
| *** drcode has quit IRC | 20:58 | |
| DocScrutinizer05 | yes, of course | 20:58 |
| DocScrutinizer05 | not in CSSU installation context maybe | 20:59 |
| DocScrutinizer05 | but generally of course | 20:59 |
| *** xy2_ has quit IRC | 21:00 | |
| *** ecc3g has quit IRC | 21:01 | |
| DocScrutinizer05 | looking at http://wiki.maemo.org/Red_Pill_mode gives an idea what HAM does "behind the scenes" | 21:07 |
| *** drcode has joined #maemo | 21:07 | |
| DocScrutinizer05 | note that red pill got re-activated by CSSU | 21:07 |
| *** ecc3g has joined #maemo | 21:10 | |
| rhn_mk1 | it's similar to what dnf is doing | 21:10 |
| DocScrutinizer05 | age old stuff but maybe still interesting: http://wiki.maemo.org/Task:Improving_the_Application_manager | 21:11 |
| DocScrutinizer05 | also note: | 21:14 |
| DocScrutinizer05 | ~speedyham | 21:14 |
| infobot | extra, extra, read all about it, speedyham is 30 times faster than HAM https://github.com/community-ssu/hildon-application-manager, now included in CSSU. | 21:14 |
| rhn_mk1 | is this stable? | 21:15 |
| Pali | I'm using it without any known error | 21:16 |
| Pali | freemangordon optimized parsing apt list/cache so it is really 30 times faster | 21:16 |
| *** drcode has quit IRC | 21:17 | |
| DocScrutinizer05 | yes, actually like 32 times | 21:17 |
| DocScrutinizer05 | it's in CSSU, that says all about being stable | 21:18 |
| DocScrutinizer05 | https://github.com/community-ssu/hildon-application-manager has a nice readme | 21:19 |
| DocScrutinizer05 | plus more docs | 21:20 |
| DocScrutinizer05 | https://github.com/community-ssu/hildon-application-manager/tree/master/doc | 21:20 |
| DocScrutinizer05 | Enrico_Menotti: https://github.com/community-ssu/hildon-application-manager/blob/master/doc/scripting.txt - for xexp which actually are X-expressions | 21:22 |
| *** xy2_ has joined #maemo | 21:24 | |
| DocScrutinizer05 | >> - `essential` :: When present, marks the catalogue as essential. Essential catalogues can not be removed or edited by the user.<< | 21:25 |
| DocScrutinizer05 | >> If you want to test a multi-package installation script, put the Application Manager into red-pill mode; then it will use the multi-package confirmation dialog when there is more than one package to install.<< gives me some ideas :-D Particularly re ~jrtools etc | 21:32 |
| *** arcean has quit IRC | 21:33 | |
| *** ecc3g has quit IRC | 21:35 | |
| DocScrutinizer05 | Pali: how about creating a multi-package install file to get a "recommended set of tested and found useful packages" installed by one click? Sounds like a convenient thing for (particularly new) users | 21:37 |
| DocScrutinizer05 | the multi-package confirmation dialog (known from hildon restore) still allows user to choose which packages to actually get and which to reject | 21:39 |
| * DocScrutinizer05 glares at http://maemo.cloud-7.de/maemo5/et_al/HAM-catalogs/BM.install in light of `with-temporary-catalogues` instruction. Prolly I should fix that | 21:42 | |
| DocScrutinizer05 | hmm wait, that's scripting, not installfiles# | 21:44 |
| DocScrutinizer05 | LOL! >> Whenever a memory card is inserted that contains a file called `.auto.install`, that file is processed by the Application Manager. Usually, the `.auto.install` file contains a `card\_install` group, of course.<< | 21:49 |
| DocScrutinizer05 | meh! no `with-temporary-catalogues` in .install files | 21:53 |
| DocScrutinizer05 | hmm, https://github.com/community-ssu/hildon-application-manager/blob/master/doc/temporary.txt | 22:01 |
| *** drcode has joined #maemo | 22:15 | |
| freemangordon | Pali: how am I supposed to install gconf chema file? | 22:16 |
| *** drcode has quit IRC | 22:25 | |
| DocScrutinizer05 | https://projects.gnome.org/gconf/ >>Schema files Application developers create files called schema files, traditionally ending in the .schemas extension. These are in a nice human-readable format. These files are not used by GConf directly. Instead, when you "make install" or install an RPM/deb package, gconftool can be invoked to take the schemas in the schema file for an application and install them into one of the configuration | 22:26 |
| DocScrutinizer05 | sources. The schema install process also associates schema names with keys, so GConf can find the right schema for a given key. ...<< | 22:26 |
| freemangordon | I found something called gconf-schema | 22:26 |
| bencoh | "something"? | 22:28 |
| Pali | freemangordon: see some postinst debian script of some package | 22:29 |
| Pali | they are installed by postinst scripts | 22:29 |
| Wizzup | freemangordon: so any package on github needs to be packaged, aye? | 22:30 |
| Wizzup | from https://github.com/fremantle-gtk2 | 22:30 |
| freemangordon | Wizzup: excluding one or 2, yes | 22:30 |
| freemangordon | Wizzup: and most (if not all) need debian/changelg fixed, by the autobuilder script or dunno | 22:31 |
| *** jkepler has quit IRC | 22:31 | |
| Wizzup | they probably also need control file fixes and such | 22:31 |
| Wizzup | Source-Version has to become $source:Version, and other things | 22:31 |
| Wizzup | I'd probably aim for all deps of hildon-desktop + hildon-desktop itself first | 22:32 |
| Wizzup | should be plenty of fun | 22:32 |
| Wizzup | we have forked gtk2, right? | 22:32 |
| Wizzup | should we call it gtk2 on disk, or perhaps call it mgtk? (yes, we'd have to change everything that depends on it) | 22:34 |
| Wizzup | just wondering | 22:34 |
| freemangordon | no, keep it gtk | 22:38 |
| Wizzup | ok | 22:38 |
| Wizzup | so it won't break 'normal' applications? | 22:39 |
| freemangordon | iirc I changed debian/changelog | 22:39 |
| freemangordon | yes | 22:39 |
| Wizzup | sweet | 22:39 |
| Wizzup | we will have to keep it at a higher version than devuan's, or otherwise lock it somehow | 22:39 |
| freemangordon | so hildon-desktop (or some other package) should depend on that modified version | 22:39 |
| Wizzup | my idea was to add our maemo-devuan things as extra repo | 22:39 |
| Wizzup | ok | 22:39 |
| Wizzup | instead of one 'merged' repo | 22:39 |
| Wizzup | seems easier for us | 22:39 |
| freemangordon | right | 22:39 |
| parazyd | Wizzup: if you go that way, i'd recommend investigating apt pinning a bit more | 22:47 |
| parazyd | depending on it, you could have the repo push its priority through a specific (meta)package | 22:48 |
| parazyd | this of course applies only for packages existing in devuan | 22:48 |
| Wizzup | shouldn't be too hard | 22:54 |
| Wizzup | I've done pinning before I think | 22:54 |
| Wizzup | and to be honest, I don't care if things break in the start, a fix is probably a simple apt-command away | 22:55 |
| Wizzup | Let's just get her going, and then we'll figure out what breaks | 22:55 |
| parazyd | agree | 22:57 |
| *** jkepler has joined #maemo | 22:59 | |
| *** rhn_mk1 has quit IRC | 23:06 | |
| *** jja2000 has left #maemo | 23:13 | |
| Enrico_Menotti | DocScrutinizer05 https://github.com/community-ssu/hildon-application-manager/blob/master/doc/repository.txt explains extensively what I wanted to know about package domains and the domain file. Thanks for pointing me there. What I miss now is: where is the info stored about the domain a package was originally installed from? | 23:15 |
| DocScrutinizer05 | with a ton of salt: I think it's never stored anywhere. with all the puzzling consequences | 23:17 |
| DocScrutinizer05 | hildon backup stores a list of package names to re-install, plus a list of cirrently activated repos. If the packages are not mathing the repo list, just too bad | 23:18 |
| freemangordon | it is stored | 23:18 |
| freemangordon | but I can;t remember where | 23:18 |
| freemangordon | I would guess somewhere in /var/ | 23:19 |
| * freemangordon checks | 23:19 | |
| DocScrutinizer05 | maybe inside the .deb cache somewhere | 23:19 |
| DocScrutinizer05 | I'm pretty sure hildon backup doesn't backup that info, though they rather should | 23:20 |
| Enrico_Menotti | It should be stored: >>The AM classifies the package repositories into 'domains' and upgrades | 23:20 |
| Enrico_Menotti | to already installed packages must (usually) come from the same domain | 23:20 |
| Enrico_Menotti | that the package was originally installed from.<< | 23:20 |
| freemangordon | yes, it is stored | 23:20 |
| DocScrutinizer05 | hmm, ok. Take that salt for the soups you eat the rest of your life, then :-D | 23:21 |
| Enrico_Menotti | :) | 23:23 |
| freemangordon | Enrico_Menotti: /var/lib/hildon-application-manager | 23:25 |
| Enrico_Menotti | Thanks. I'm investigating. | 23:27 |
| Enrico_Menotti | Maybe I got the whole process. (Or maybe I'm still missing some detail.) I try to recap. | 23:41 |
| Enrico_Menotti | >>Repositories are associated with domains based on the key that they | 23:41 |
| Enrico_Menotti | have been signed with.<< | 23:41 |
| Enrico_Menotti | The association is in /usr/share/hildon-application-manager/domains/variant-domains.xexp. | 23:42 |
| Enrico_Menotti | When a package is installed, the domain it is installed from is recorded. | 23:42 |
| Enrico_Menotti | In /var/lib/hildon-application-manager there are files beginning with domain. and ending with the domain name, one for each domain defined above. When a package is installed, its name is recorded in the file corresponding to the domain it has been installed from. (Well, I think so.) | 23:44 |
| Enrico_Menotti | Now HAM finds, from the catalogues, a new version available for some package, stored in a certain repo, signed with a certain key. | 23:45 |
| Enrico_Menotti | From the key, the repo is associated to a domain. | 23:45 |
| freemangordon | also, there are domain priorities :) | 23:45 |
| Enrico_Menotti | If the domain the new version comes from is different from the domain the original package had been installed from, HAM issues the "wrong domain" error. | 23:46 |
| freemangordon | you can;t install a package from a domain with a lower priority over a one from a domain with a higher | 23:46 |
| freemangordon | no, wrong domain is only where the priority is lower, iirc | 23:46 |
| freemangordon | *when | 23:47 |
| Enrico_Menotti | With the exception that there is the "trust level" (rather than priority): a package may move from a domain to another with higher trust level. | 23:47 |
| Enrico_Menotti | freemangordon A min, I'm still writing. | 23:47 |
| Enrico_Menotti | Now what I think happens here: the key used for signing the version of the original Nokia repos which is mirrored in muarf.org is not inside my variant-domains.xexp file. As a consequence, the domain associated to the mr0 repo becomes "signed" (it's a fallback of HAM, defined by default). This has trust level 1. | 23:49 |
| Enrico_Menotti | The original domain of packages contained in mr0 is nokia-system, which has trust level 600. | 23:50 |
| Enrico_Menotti | So a package having a new version in mr0 may not be installed since it would be moved to a domain with lower trust level. | 23:51 |
| Enrico_Menotti | If I remove the variant-domains.xexp file, all repos become "signed", but most important the trust levels of all domains are lost. So the nokia-system domain gets trust level 0. | 23:52 |
| Enrico_Menotti | At this point all updates may be installed, since packages move to a domain identical to the original one, or to signed, which has trust level 1, higher than the trust level of the original domain. | 23:53 |
| Enrico_Menotti | Ok, it's just an hypothesis. Does this make sense? | 23:53 |
| Enrico_Menotti | freemangordon Finished, thanks. | 23:53 |
| *** florian_ is now known as florian | 23:54 | |
| Enrico_Menotti | A check would be by finding out the fingerprint of the key used to sign the original Nokia repos mirrored in muarf.org, and see whether or not it is stored in my variant-domains.xexp. | 23:54 |
| Enrico_Menotti | Please let me know your opinion about this reconstruction. | 23:55 |
| freemangordon | sounds about right | 23:58 |
| *** l_bratch has quit IRC | 23:59 | |
Generated by irclog2html.py 2.15.1 by Marius Gedminas - find it at mg.pov.lt!
