| DocScrutinizer05 | PukeAudio is poettering | 00:33 |
|---|---|---|
| DocScrutinizer05 | ~poettering | 00:33 |
| infobot | 'sth is poettering' means it acts invasive, possessive, destructive, and generally in an egocentric exacerbating negative way. ``this cancer is extremely poettering'', or you look here for Linus' notion on what's poettering: http://lkml.iu.edu/hypermail/linux/kernel/1404.0/01331.html, or http://lkml.iu.edu/hypermail/linux/kernel/1404.0/01488.html, or see ~systemd cabal | 00:33 |
| DocScrutinizer05 | also Mr L. Poettering has a record to opt out of portability, even when he needs to invest a few more days into coding to achive killing portability for good | 00:34 |
| *** Pali has quit IRC | 00:47 | |
| *** florian has quit IRC | 00:52 | |
| *** florian has joined #maemo | 01:04 | |
| *** florian has quit IRC | 01:10 | |
| *** xy2_ has quit IRC | 01:21 | |
| *** florian has joined #maemo | 01:23 | |
| *** Kabouik- has joined #maemo | 01:34 | |
| *** Kabouik_ has quit IRC | 01:36 | |
| *** florian has quit IRC | 02:02 | |
| *** jonwil has joined #maemo | 02:30 | |
| *** xorly has quit IRC | 02:39 | |
| *** M4rtinK has joined #maemo | 02:39 | |
| *** Kabouik- has quit IRC | 03:02 | |
| *** infobot has quit IRC | 03:20 | |
| *** infobot has joined #maemo | 03:21 | |
| *** ChanServ sets mode: +v infobot | 03:21 | |
| *** M4rtinK has quit IRC | 03:50 | |
| *** Kilroo has joined #maemo | 04:49 | |
| jonwil | hmmm, getting newer OpenSSL to work on Maemo QT isn't as easy as I thought. There is a Debian patch for QT4 but that's for 4.8.7, we only have 4.7.4 | 05:13 |
| *** vahe has joined #maemo | 05:49 | |
| *** LauRoman|Alt has quit IRC | 06:37 | |
| *** LauRoman|Alt has joined #maemo | 06:45 | |
| *** vahe has quit IRC | 06:50 | |
| *** LauRoman|Alt has quit IRC | 06:56 | |
| jonwil | I think I got a solution now. | 07:11 |
| *** spiiroin has quit IRC | 07:24 | |
| Oksana | Sounds nice. Will it help with getting MicroB to work with some of those stubborn websites? | 07:30 |
| jonwil | Nope, this is OpenSSL and QT, not microb-engine | 07:33 |
| jonwil | which uses NSS | 07:33 |
| jonwil | The work to get Firefox 24 going is a different project | 07:34 |
| KotCzarny | i wonder if there is a way to make nss use openssl | 07:34 |
| jonwil | Nope | 07:34 |
| jonwil | Getting FF24 to work is still the best option. | 07:35 |
| jonwil | I need to go back and see about grabbing debug symbols for Firefox 24 on Linux and see if those debug symbols contain any useful info about how FF24 was compiled. | 07:35 |
| jonwil | Official Mozilla FF24 that is | 07:35 |
| KotCzarny | https://rcritten.fedorapeople.org/nss_compat_ossl.html | 07:36 |
| KotCzarny | but thats backwards | 07:36 |
| jonwil | Getting FF24 going will give you more than just TLS 1.2 | 07:39 |
| KotCzarny | https://roumenpetrov.info/e_nss/ | 07:39 |
| KotCzarny | hmm | 07:39 |
| jonwil | That's an engine to allow OpenSSL to read NSS certificate databases and such | 07:40 |
| jonwil | So that doesn't do anything useful. | 07:41 |
| KotCzarny | uhhum | 07:41 |
| jonwil | trust me when I say getting FF24 going is the best hope for a browser that supports TLS 1.2 | 07:42 |
| jonwil | unless you find some weird hacky webkit fork that can be compiled properly on the ancient versions of the libraries the N900 is stuck at | 07:42 |
| Oksana | Firefox 24 does sound nice. | 07:48 |
| *** Kilroo has quit IRC | 07:49 | |
| jonwil | Getting Fahrplan going again is important to me so I can do transport journey planning when I am out and about :) | 07:57 |
| jonwil | hence why I am putting the effort into OpenSSL and QT | 07:58 |
| Oksana | Nice :-) Would Gtk+ applications be able to use the OpenSSL? Or would it require specific adaptation, like Qt does? | 08:05 |
| KotCzarny | i dont think gtk is the same level of toolkitness as qt | 08:06 |
| KotCzarny | maybe glib has some connectivity functions | 08:06 |
| *** spiiroin has joined #maemo | 08:21 | |
| *** vahe has joined #maemo | 08:46 | |
| ceene | jonwil: the QT thing, I did something to it to use openssl1.0 | 08:49 |
| ceene | you have that on my repos too | 08:50 |
| ceene | https://github.com/agamez/qt-x11-maemo/commits/RemoveSSL3 this branch should have been merged on maemo's n900, but i think nobody finally did it, even though it was approved | 08:51 |
| ceene | approved or whatever the process is to have patches applied to maemo repos | 08:51 |
| ceene | i don't remember the bureaucracy of that | 08:51 |
| parazyd | jonwil: You do realize FF24 has like, a hundred CVEs? | 08:51 |
| ceene | and also you have https://github.com/agamez/qt-x11-maemo/commits/UpgradeSSL | 08:51 |
| ceene | which does compile against newer openssl | 08:51 |
| ceene | and backports support for new protocols: tlsv1_1, tlsv1_2 | 08:52 |
| Maxdamantus | Could always just write some tun-based proxy that everything is routed to. | 08:56 |
| Maxdamantus | Browser just has some self-signed certificate that matches every host, gets routed through the tun proxy, using its old version of OpenSSL, tun proxy then connects to the actual IP address using its newer version of OpenSSL, doing host verification, etc | 08:58 |
| jonwil | GTK doesn't have any networking code at all | 09:03 |
| jonwil | Its just a UI toolkit | 09:04 |
| jonwil | Any GTK app can use OpenSSL 1.1.0h no problems | 09:04 |
| jonwil | The removessl thing is already on the cssu version of QT and already in CSSU | 09:05 |
| jonwil | So nothing needs to happen there | 09:06 |
| jonwil | The upgradessl stuff is for 1.0.x, the debian patch makes everything work for 1.1.0h (much better to use 1.1.0 with less bugs etc than 1.0.x) | 09:08 |
| jonwil | And I see nothing specific that makes it hard to get that going | 09:08 |
| jonwil | As for FF24, I bet the 1.9.2 based microb-engine has a lot of security flaws as well | 09:09 |
| jonwil | I doubt upgrading to FF24 is going to make things any LESS secure | 09:10 |
| parazyd | ¯\_(ツ)_/¯ | 09:10 |
| KotCzarny | i just hope it will be usable | 09:10 |
| KotCzarny | not that many exploits would work on n900 | 09:10 |
| KotCzarny | ';) | 09:11 |
| ceene | ah, so debian already has patches for qt4+openssl1.1? | 09:13 |
| ceene | didn't know that | 09:13 |
| jonwil | Yes they do | 09:13 |
| ceene | well, so much better then | 09:14 |
| jonwil | They have a patch for OpenSSL 1.1 support on QT 4.8.7 which I need to get going on the QT 4.7.4 we have | 09:14 |
| jonwil | No-one is going to write something that targets an exploit in an ancient version of Firefox that has been fixed for years now, let alone one running on a linux armel target (as opposed to android) | 09:14 |
| jonwil | Not when they can write an exploit for Windoze and get far more machines infected | 09:15 |
| KotCzarny | i suspect even static arm binaries might fail because of old kernel | 09:15 |
| jonwil | I already have the results of compiling the FF24 tree running on my device (so libxul.so etc) with http://conkeror.org/ as the front end. | 09:16 |
| jonwil | So its definitely working. | 09:16 |
| jonwil | A long way from where I need it to be but its definitely at least working. | 09:16 |
| jonwil | So we know its ok in regards to dependencies, kernel, libc, gtk etc | 09:17 |
| ceene | not to be confused with https://konqueror.org/ | 09:17 |
| jonwil | I did have to turn off a bunch of stuff though including gstreamer, WebRTC, WebM and a bunch of audio stuff like ogg. | 09:18 |
| jonwil | But other than that its definitely usable and working :) | 09:18 |
| ceene | i don't think i've ever run any of those things on my pc | 09:18 |
| jonwil | You will have if you are running a recent browser and e.g. accessed YouTube | 09:18 |
| KotCzarny | jonwil, most people need functionality for utility sites | 09:18 |
| KotCzarny | so audio isnt on top of the needed features | 09:19 |
| *** xy2_ has joined #maemo | 09:19 | |
| KotCzarny | and might even be good because it will use fewer resources | 09:19 |
| Maxdamantus | but not in microb/rtcom-messaging-ui, right? | 09:20 |
| KotCzarny | i would like functioning browser, no need for device wide engine | 09:20 |
| Maxdamantus | Can already do that with a debian root (oldstable's xulrunner is also version 24 iirc) | 09:22 |
| jonwil | My end goal is to hopefully replace microb-engine without breaking anything (except possibly support for the piece of garbage known as Flash) | 09:26 |
| *** xy2_ has quit IRC | 09:28 | |
| jonwil | Although given how slow conkeror was when I tried it, I think I need to see if there are more optimization flags I can turn on (either mozilla config options or compiler/linker flags) | 09:29 |
| KotCzarny | thumb? | 09:29 |
| KotCzarny | ;) | 09:29 |
| jonwil | Anything that doesn't require a new kernel is an option I will consider :) | 09:29 |
| KotCzarny | i think all kernels in any cssu support thumb binaries | 09:30 |
| jonwil | Except that CSSU doesn't install a new kernel | 09:30 |
| jonwil | I have everything from CSSU-testing running on my phone right now and I am still running the stock Nokia kernel | 09:31 |
| Maxdamantus | Nothing should install a new kernel except the user. | 09:31 |
| KotCzarny | ho hum | 09:31 |
| Maxdamantus | but cssu does have custom kernels. | 09:31 |
| jonwil | CSSU-thumb does | 09:32 |
| jonwil | CSSU-devel does | 09:32 |
| jonwil | But cssu-testing and cssu-stable do not | 09:32 |
| jonwil | I know for sure cssu-devel has a custom kernel since I accidentally screwed up my phone by installing the modules for it by mistake without installing the kernel itself (thankfully I ended up finding a solution) | 09:33 |
| *** spiiroin has quit IRC | 09:51 | |
| *** spiiroin has joined #maemo | 09:55 | |
| *** florian_kc is now known as florian | 10:22 | |
| *** Guest75409 has quit IRC | 10:30 | |
| *** geaaru has joined #maemo | 10:35 | |
| *** ruskie has joined #maemo | 10:35 | |
| sixwheeledbeast^ | CSSU -devel is just a repo of random devel packages, it's not a "standard" repo to pull everything from. | 10:40 |
| sixwheeledbeast^ | You can install KP or "kernel-cssu" from thumb repo for thumb support. | 10:43 |
| *** Kabouik has joined #maemo | 10:57 | |
| *** xy2_ has joined #maemo | 11:07 | |
| *** jskarvad has joined #maemo | 11:08 | |
| *** xy2_ has quit IRC | 11:27 | |
| jonwil | Yeah I learned from that mistake pretty quickly and now I know to be more careful in what I install from cssu-devel | 11:31 |
| *** M4rtinK has joined #maemo | 11:35 | |
| *** xorly has joined #maemo | 11:48 | |
| *** kalin has quit IRC | 11:59 | |
| *** M4rtinK has quit IRC | 12:13 | |
| *** parazyd has quit IRC | 12:16 | |
| *** how900 has quit IRC | 12:16 | |
| *** how900 has joined #maemo | 12:17 | |
| *** how900 has joined #maemo | 12:17 | |
| *** parazyd has joined #maemo | 12:17 | |
| *** parazyd has joined #maemo | 12:17 | |
| *** Venemo has quit IRC | 12:55 | |
| *** Venemo has joined #maemo | 12:57 | |
| *** jon_y has quit IRC | 13:01 | |
| *** sunshavi has quit IRC | 13:07 | |
| *** jskarvad is now known as jskarvad_afk | 13:15 | |
| *** xy2_ has joined #maemo | 13:20 | |
| *** jon_y has joined #maemo | 13:21 | |
| *** jon_y has quit IRC | 13:21 | |
| *** jon_y has joined #maemo | 13:26 | |
| *** jon_y has quit IRC | 13:28 | |
| *** jon_y has joined #maemo | 13:29 | |
| *** sunshavi has joined #maemo | 14:11 | |
| *** jskarvad_afk is now known as jskarvad | 14:32 | |
| *** APic has quit IRC | 14:49 | |
| *** vahe has quit IRC | 15:05 | |
| *** xy2_ has quit IRC | 15:21 | |
| *** APic has joined #maemo | 15:23 | |
| *** spiiroin has quit IRC | 15:46 | |
| *** jskarvad has quit IRC | 15:49 | |
| *** kalin has joined #maemo | 15:53 | |
| *** xy2_ has joined #maemo | 16:04 | |
| *** kalin has quit IRC | 16:30 | |
| DocScrutinizer05 | wrap the damn browser into a chroot | 16:46 |
| DocScrutinizer05 | for messing with repos: http://maemo.cloud-7.de/maemo5/usr/local/sbin/enable-catalogs | 16:51 |
| DocScrutinizer05 | even speedyham is a PITA to enable/disable repos | 16:52 |
| *** jonwil has quit IRC | 16:54 | |
| DocScrutinizer05 | enable-catalogs all&&apt-get update&&apt-get install foobar-devel;enable-catalogs standard at very least runs unattended, though also several minutes | 16:54 |
| DocScrutinizer05 | or | 16:55 |
| DocScrutinizer05 | enable-catalogs save tmp&&enable-catalogs all&&apt-get update&&apt-get install foobar-devel;enable-catalogs tmp&&enable-catalogs delete tmp | 16:56 |
| DocScrutinizer05 | might make a wrapper out of this, s/foobar-devel/\$1/ | 16:57 |
| DocScrutinizer05 | install_X_with(){ enable-catalogs save tmp&&enable-catalogs ${2:-all}&&apt-get update&&apt-get install $1;enable-catalogs tmp&&enable-catalogs delete tmp } | 17:00 |
| DocScrutinizer05 | install_X_with foobar-devel allPlusThumb | 17:01 |
| *** xorly has quit IRC | 17:10 | |
| *** jonwil has joined #maemo | 17:10 | |
| *** till has joined #maemo | 17:19 | |
| *** spiiroin has joined #maemo | 17:23 | |
| *** jonwil has quit IRC | 17:30 | |
| *** trx has quit IRC | 17:50 | |
| *** trx has joined #maemo | 17:54 | |
| *** trx has quit IRC | 17:54 | |
| *** trx has joined #maemo | 17:54 | |
| *** xy2_ has quit IRC | 18:13 | |
| *** xy2_ has joined #maemo | 18:14 | |
| *** xy2_ has quit IRC | 18:15 | |
| *** xy2_ has joined #maemo | 18:17 | |
| *** ravelo has joined #maemo | 18:23 | |
| *** vahe has joined #maemo | 18:24 | |
| *** Pali has joined #maemo | 18:52 | |
| *** LauRoman|Alt has joined #maemo | 18:52 | |
| *** Kabouik has quit IRC | 19:09 | |
| *** florian has quit IRC | 19:22 | |
| *** Venemo has quit IRC | 19:48 | |
| *** Kabouik- has joined #maemo | 19:58 | |
| *** M4rtinK has joined #maemo | 20:38 | |
| *** LauRoman has quit IRC | 20:47 | |
| *** LauRoman has joined #maemo | 20:50 | |
| *** xorly has joined #maemo | 20:50 | |
| *** florian has joined #maemo | 20:51 | |
| *** Kabouik has joined #maemo | 20:54 | |
| *** Kabouik- has quit IRC | 20:56 | |
| *** geaaru has quit IRC | 21:02 | |
| *** florian has quit IRC | 21:02 | |
| *** vahe has quit IRC | 21:18 | |
| *** vahe has joined #maemo | 21:20 | |
| *** drrty has joined #maemo | 21:33 | |
| *** vahe has quit IRC | 21:58 | |
| *** florian has joined #maemo | 22:19 | |
| *** louisdk has joined #maemo | 22:33 | |
| *** LauRoman|Alt has quit IRC | 22:50 | |
| *** LauRoman|Alt has joined #maemo | 22:53 | |
| *** louisdk has quit IRC | 22:56 | |
| *** kalin has joined #maemo | 23:17 | |
| *** xorly has quit IRC | 23:39 | |
| *** xorly has joined #maemo | 23:59 | |
Generated by irclog2html.py 2.15.1 by Marius Gedminas - find it at mg.pov.lt!