Thursday, 2021-09-16

T42_<oMinimalist> CONFIG_NETFILTER_XT_MATCH_QTAGUID is set.01:01
T42_<oMinimalist> How can I do ?01:01
T42_<oMinimalist> the log file:
T42_<oMinimalist> 清理了 还是这些错误:
riniguspiggz tried some time already... Didn't work04:34
riniguspiggz: have you had a chance to test hwcrypt based passwords on volla? that should be THE solution used by default as it would allow to use simpler/shorter passwords which we can actually remember07:48
rinigusas for actdead, more work is needed. there seems to be a host of services pulled into boot sequence during actdead target that very much wish to mount /home :( . will have to work through the logs07:49
piggzrinigus: not yet, trying to bring up PP08:11
piggzwill trigger a build for volla08:11
piggzrinigus: several services have hard deps on droid/keymaster services which breaks boot on PP .... could those After/Requires be moved into device adaptation?08:44
piggzrinigus: also, i think a device config option for disabling the hwcrypt password type09:09
riniguspiggz: right! the both should be done. or maybe we can add hwcrypt config with dependencies on droid/keymaster into separate package. that way we don't need to reinvent the wheel with every device10:47
rinigusgreat video!10:47
riniguspiggz: maybe add to ?10:48
piggzrinigus: sure10:48
piggzrinigus: systemd got in a right muddle and totally refused to boot with the default config!10:49
riniguspiggz: I had to force requirements to make sure all services are firing in the right order10:50
piggzrinigus: yeah, but i think those requirements could be added in /etc right?10:51
riniguspiggz: on keystore? probably. or in /usr/lib/systemd/system. I think I know how to partition it - if you file the issue will try to fix it tonight10:52
piggzrinigus: updared description and credited you :)10:52
rinigusthank-you-thank-you :)10:52
rinigus2 issues I guess - one for hwcrypt being optional and the other for keystore requirements10:54
rinigusoff to meetings, will catch up later10:54
piggzrinigus: you can do eg for device adapation sparse/etc/systemd/system/systemd-ask-password-gui.service.d/local.conf, and adding After= in there10:56
riniguspiggz: exactly. but I would prefer to make some kind of separate rpm as a part of encryption-community that we can just add as a dependency for android devices12:01
rinigusthen we don't need to add those sparse files in many devices12:01
piggzrinigus: ok12:02
piggzrinigus: obs has 4.212:05
riniguspiggz: yes, from last night - lbt was pinging you on SFOS channel regarding it :)12:07
piggzah, i missed that12:08
lbtmanaged to get the EA out there12:08
piggzah, chum has it already :)12:09
lbtI'm going to propose we do that in future - not sure it's enough to really have apps fully QA'ed and ready but at least they build and maybe we get an error report back12:09
riniguslbt: if it is possible that would be great12:11
piggzrinigus: i noticed that on the CI server, the docker build environments are from coderus, but he has now left the sfos community to some extent.  I wonder if those images will be updated, or if there is another option12:13
Nicopiggz: coderus said he is going to still maintain them, because it is very low effort12:28
piggzah cool12:29
riniguspiggz: I don't use CI images anymore - it is way easier for me to bake them on PC13:45
piggzrinigus: how quaint :D14:09
piggzi try to do as little as possible locally :D14:10
rinigusmal: have you had a chance to ask/look for that missing /dev/sailfish/home in the logs?18:33
malrinigus: sorry, didn't have time to check more today yet19:08
rinigusmal: no worries - my job is now to ping you once in a while. thank you for helping out!19:08
riniguspiggz: pinephone related encryption issues should be sorted now19:13
piggzrinigus: i saw ... i approve of method, thats what i was considering doing, making a sub-package19:23
piggzwill test tomorrow, pub time now :)19:23
piggzsome guy on telegram was arguing loads about how secure it was ... i argued it was better than stock, and was as good as dmcrypt, we are just a front end19:24
piggzthen he deleted all his messages!19:25
riniguspiggz: as it is pub time - it is VERY secure if you have hw key backing. you could use probably passwords with 5-6 or so random alphanum chars and know that you have 45 years before its cracked. assuming that there are no bugs in hw keystore19:30
T42_<adampigg> Rinigus :sure, and on.PP, use a long phrase20:23

Generated by 2.17.1 by Marius Gedminas - find it at!