[00:03] <asac> true
[00:05] <asac> unfortunately my new build donkey seems to be sick ... cc crashes during xul build :(
[00:05] <asac> my guess is bad mem
[00:16] <asac> i dont get why sbuild doesnt work oob
[00:16] <asac> i think i had a good setup ... but then cc crashed :(
[00:17] <fta> any particular place? not enough memory?
[00:17] <asac> should be enough
[00:17] <asac> 2G
[00:18] <fta> for xul yes
[00:18] <asac> yah. its not really production ;)
[00:18] <fta> providing something else is not using it
[00:18] <asac> want to try what i want
[00:19] <asac> i think i had problems with APIC
[00:19] <asac> had crashes in mkinitrd stuff
[00:19] <asac> its now off
[00:19] <fta> smells bad
[00:20] <asac> yeah
[00:20] <asac> lets see if pbuilder makes its way through
[00:20] <asac> if not i give up and dump this shit ;)
[00:21] <asac> (hardware)
[00:21] <asac> ok lets see ... soon we'll know
[00:23] <fta> oh, a new gcc 4.2 just arrived
[00:26] <fta> gasp, no mouse
[00:26] <fta> they upgraded udev
[00:27] <fta> i guess i should not delay the reboot any longer
[00:27] <fta> :(
[00:38] <fta> grr, my eth interface jumped from eth0 to eth1
[00:43] <asac> hehe
[00:43] <asac> NM would work then ;)
[00:49] <asac> http://paste.ubuntu.com/103337/ :(
[00:49] <asac> i think i have to do a memcheck or something
[00:50] <asac> trying hardy pbuilder too
[00:51] <fta> if it always dies at the same place, it may not be your memory
[00:53] <asac> not the same place, but always in js/ so far ;)
[00:53] <asac> so pretty quick
[00:53] <asac> also thats intrepid
[00:53] <asac> cant be that broken :)
[00:55] <fta> asac, build with CC="gcc -v -save-temps" and pray ;)
[00:55] <fta> prey
[00:55] <fta> well
[00:58] <asac> same place but on hardy
[00:58] <asac> strange but certainly not cc fault then
[00:58]  * asac wonderes whether he enabled power-speed mode in bios by accident
[00:59] <asac> too bad that there is no GPU in there now :(
[01:01] <fta> bug 315916
[01:10] <asac> ok off for now
[01:26] <fta> http://ubuntuforums.org/showthread.php?t=1035355
[02:03] <dolske> fta: is http://www.sofaraway.org/ubuntu/tmp/mozcentral-commits.png yours? that's mozilla-central commits per day?
[02:03] <fta> dolske, yes, yes
[02:03] <dolske> interesting.
[02:04]  * dolske guesses the big spikes line up with the betas. :)
[02:05] <fta> 2007-08-21 142
[02:05] <fta> 2007-11-06 140
[05:43] <fabrice_sp> Hi. Fixing a bug in an extension package, I found that line in install file:
[05:43] <fabrice_sp> debian/mozilla-noscript.js usr/share/iceweasel/greprefs/
[05:43] <fabrice_sp> Should it be debian/mozilla-noscript.js usr/share/firefox/greprefs/ for us?
[05:44] <fabrice_sp> or with Firefox 3, it should go in another place?
[08:27] <AnAnt> Hello, is there a way to provide an alternate firefox homepage URL ? There used to be a firefox-homepage alternate in Hardy I think
[10:34] <asac> fabrice_sp: is that a file the user wants to configure?
[10:37] <asac> hmm latest ati driver somehow brought back "corruption" of tiled backgrounds when running XAA
[10:37] <fabrice_sp> this is the content of this file: pref("extensions.{73a6fe31-595d-460b-a920-fcc0f8843232}.update.enabled", false);
[10:37] <asac> AnAnt: are you in hardy?
[10:38] <fabrice_sp> so it's a user configuration (no update of the plugin)
[10:38] <asac> fabrice_sp: you can ignore that
[10:38] <asac> (safely)
[10:38] <asac> alternatively you can add that info to the install.rdf
[10:38] <asac> fabrice_sp: its a global config probably previously used to prevent updates of the extension
[10:38] <fabrice_sp> ok. So I'll delete the installation and the link, then
[10:39] <fabrice_sp> thanks
[10:40] <asac> fabrice_sp: is that extension also installed for iceape/seamonkey?
[10:41] <fabrice_sp> seamonkey, yes
[10:41] <fabrice_sp> asac, it's mozilla-noscript
[10:42] <asac> fabrice_sp: you might want to keep it for that then ... but not for ffox
[10:43] <AnAnt> asac: no, intrepid
[10:45] <fabrice_sp> asac, this script in not used for iceape/seamonkey. Only for iceweasel (in this install file).
[10:46] <fabrice_sp> fyi, I'm working on bug #260955
[10:48] <fabrice_sp> and it's because at some point, a merger forgot to change iceape reference to seamonkey in links, postrm and postinst files
[10:48] <asac> sorry reconnect
[10:48] <asac> 11:48 < fabrice_sp> and it's because at some point, a merger forgot to change iceape reference to seamonkey in links, postrm and  postinst files
[10:49] <asac> 11:48 < asac> fabrice_sp: ok. i would suggest to drop it. its for ffox 2 anyway (judging from path)
[10:49] <asac> yeah. i would suggest that you fix the saemonkey stuff and leave the rest alone then ;)
[10:49] <asac> if you want you can cleanup stuff and remove all /usr/share/firefox/ /usr/lib/firefox/ stuff
[10:50] <asac> but well
[10:50] <asac> fabrice_sp: where is the extension installed to?
[10:50] <fabrice_sp> usr/share/mozilla-extensions
[10:50] <AnAnt> asac: no, I am using intrepid now
[10:51] <fabrice_sp> and links is done with usr/lib/firefox-addons so it sounds good
[10:51] <asac> 11:46 < asac> AnAnt: then look at that file ;)
[10:51] <asac> AnAnt: /usr/share/doc/ubufox/example-homepage.properties ... that is an example and explains how to enable the example
[10:51] <asac> fabrice_sp: yeah. but where are the links installed to?
[10:51] <asac> firefox-addons?
[10:52] <fabrice_sp> usr/lib/firefox-addons/extensions/{73a6fe31-595d-460b-a920-fcc0f8843232}
[10:52] <asac> kk
[10:52] <fabrice_sp> so it's ok, right?
[10:52] <asac> all fine then
[10:52] <asac> fabrice_sp: are there still references to usr/lib/firefox/ `
[10:52] <asac> ?
[10:52] <asac> e.g. links et al?
[10:53] <fabrice_sp> I haven't seen any, but I'll check again
[10:53] <fabrice_sp> no, none
[10:54] <asac> jcastro: gwibber looses blogs when you send during reconnect (while being offiline) ... guess thats known?
[10:54] <asac> fabrice_sp: yes its ok. just dont push anything to /usr/lib/firefox/... (e.g. like the greprefs thing)
[10:54] <fabrice_sp> ok
[10:55] <fabrice_sp> anyway, I will attach my debdiff to the bug report, so you will be able to verify it's ok
[10:56] <asac> fabrice_sp: thanks. let us know when you attached so we can look more timely; also ask Jazzva for review too (in case i am not here)
[10:57] <fabrice_sp> ok. Thanks for your answer and your time!
[10:57] <asac> welcome
[10:57] <asac> *sigh* my connection feels shaky again
[10:57] <asac> i *hate* my provider again
[11:04] <fabrice_sp> I have the same feeling... (at least one drop per hour... :-( )
[11:05] <fabrice_sp> I've just subscribed mozillateam to Bug #260955, so it's up to you
[11:05] <fabrice_sp> by the way, How to you succed in not loosing any comments?
[11:05] <asac> in bug tracker?
[11:07] <fabrice_sp> no, in irc
[11:07] <fabrice_sp> when I get connection inestability, I loose 15 minutes each time
[11:07] <asac> this reconnect was strange
[11:08] <asac> it was really quick (e.g. i received a message in the same minute where my irssi reconnected)
[11:08] <asac> usually it takes ~4min for irssi to reconnect
[11:08] <AnAnt> asac: I don't get it, how can that be an alternative that can be used by a package ?
[11:08] <asac> but i notice it earlier
[11:08] <asac> and /reconnect ;)
[11:09] <asac> AnAnt: its not an alternative. its how you configure it as an admin
[11:11] <fabrice_sp> I really thought you knew some trick :-)
[11:11] <asac> fabrice_sp: why does it take 15 minutes for you?
[11:11] <asac> the physical reconnect takes 1 minute or less here
[11:11] <asac> its just that irssi doesnt notice phyiscal connects and waits for timeouts
[11:12] <fabrice_sp> don't know: I'm using xchat, and I have gap of 15 minutes.
[11:12] <fabrice_sp> Sounds like some kind of itmeout to fix
[11:12] <asac> fabrice_sp: dont you notice that you are disconnected?
[11:12] <asac> cant you force xchat to reconnect?
[11:13] <AnAnt> asac: doesn't work
[11:13] <fabrice_sp> yes I can, but as I am doing other things, I almost never notice that I got disconnected
[11:13] <asac> AnAnt: what doesnt work?
[11:13] <fabrice_sp> sorry for this OT :-)
[11:13] <asac> yeah. then probably a timeout thing
[11:13] <asac> no problem ;)
[11:14] <AnAnt> asac: oops, sorry
[11:15] <asac> the example should work ;)
[11:17] <AnAnt> asac: ok, I done this, copied /etc/firefox-3.0/pref/ubufox.js to  /etc/firefox-3.0/pref/my.js
[11:17] <AnAnt> asac: and I uncommented the pref("browser.startup.homepage...) line in my.js
[11:17] <AnAnt> but that didn't work
[11:17] <asac> yeah
[11:17] <AnAnt> it worked when I uncommented it in ubufox.js
[11:18] <asac> AnAnt: disable ubufox in tools -> addons ... restart; i guess your my.js is used then?
[11:19] <AnAnt> yup, that worked, but why ?
[11:19] <asac> because ubufox overloads the homepage pref. so your pref isnt used
[11:19] <asac> so what a package would have to do is somewhat ugly (the current system had admins in mind)
[11:20] <asac> place a .js in /usr/share/ubufox/defaults/preferences/
[11:20] <AnAnt> and ?
[11:20] <asac> and in /usr/firefox-3.0/pref/my.js
[11:21] <asac> take care that the link you place in /usr/share/ubufox/defaults/preferences/ is read first (lex ordered)
[11:21] <asac> the aaa_* stuff is a hack that allows admins to configure stuff even though ubufox is installed
[11:22] <asac> i dont really see why packages would want to set the homepage though
[11:22] <asac> whats the use-case?
[11:22] <asac> is that an extension=
[11:22] <asac> ?
[11:22] <AnAnt> asac: nope, a distro based on Ubuntu
[11:22] <asac> AnAnt: so you binary copy our files and just add new ones?
[11:23] <asac> AnAnt: otherwise i would suggest to main ubufox downstream
[11:23] <asac> its easy to track as all is in bzr.
[11:23] <asac> so you just doa bzr merge ...
[11:23] <asac> then add a new changelog entry on top and push that to your distro
[11:23] <asac> s/main/maintain/
[11:24] <AnAnt> hmmm
[11:24] <asac> maintaining a diff for xul or firefox wouldnt be a good idea
[11:24] <asac> too much work unless you have someone dedicated doing ffox/xul security updates
[11:24] <asac> but ubufox should be simple and doesnt receive many stable -updates or even -security stuff
[11:25] <AnAnt> hmmm, I prefer that .js solution
[11:25] <asac> soudns rogue
[11:25] <AnAnt> so I should place the my.js in /usr/share/ubufox/defaults/preferences/ ?
[11:25] <asac> anyway
[11:26] <AnAnt> rogue=bad ?
[11:26] <asac> AnAnt: yes, but name it 300$DISTRO_NAME-homepage.js in there
[11:27] <AnAnt> ok
[11:27] <asac> its important that admins can still overrule that by editing the /etc/firefox-3.0/ preferences
[11:27] <asac> AnAnt: ^^
[11:27] <asac> test that the example still works
[11:27] <asac> if it does then all is fine
[11:27] <asac> AnAnt: not really bad, but not really nice  either ;)
[11:29] <AnAnt> you mean /etc/firefox-3.0/pref/firefox.js ?
[11:30] <asac> AnAnt: like what the example says
[11:30] <asac> if that example still works all is fine
[11:30] <AnAnt> ok
[11:32] <AnAnt> works !
[11:32] <AnAnt> thanks
[11:32] <asac> welcome ...
[11:32] <asac> AnAnt: why is maintaining a diff of ubufox too much?
[11:32] <asac> (just curious)
[11:33] <AnAnt> asac: because I am trying to make the distro in Ubuntu repos
[11:34] <asac> AnAnt: what distro is that?
[11:34] <AnAnt> asac: ubuntume
[11:34] <asac> what purpose?
[11:34] <asac> e.g. focus?
[11:35] <AnAnt> it adds some software that muslims would need
[11:36] <asac> i would suggest to take a different name. ubuntu is a trademark after all ;)
[11:36] <asac> anyway. good
[11:36] <asac> AnAnt: do you use GNOME?
[11:36] <AnAnt> asac: yup
[11:37] <asac> AnAnt: do you change /etc/lsb-release or is there some other way to identify your distro at runtime?
[11:38] <AnAnt> no, I don't change /etc/lsb-release
[11:38] <AnAnt> except for the default artwork & installation, I don't think there's another way to identify distro at runtime
[11:39] <asac> k
[11:39] <asac> i think you should adjust lsb-release and file bugs if that causes issues
[11:40] <asac> you should be able to use a different CODENAME at least
[11:40] <asac> e.g. jaunty-me
[11:41] <AnAnt> what issues do you mean?
[11:41] <asac> i would file bugs if i knew about issues
[11:41] <asac> not sure. maybe some software relies on some value in there
[11:41] <asac> but i hope not
[11:41] <asac> rely==if its changed it breaks
[11:44] <AnAnt> asac: ok, how does ubufox does the following: when the machine is offline, it displays a local homepage
[11:45] <asac> AnAnt: it has a startpage that tries to get the homepage and if it doesnt succeed in a few seconds it forces local page
[11:48] <AnAnt> in /usr/share/ubufox/chrome/ubufox.jar ?
[11:50] <AnAnt> aha, found it
[11:52] <asac> AnAnt: i would suggest to use the bzr branch
[11:55] <asac> and maiintain your own ubufox
[11:55] <asac> use a different name
[11:55] <asac> OTOH i could understand if you dont want to put work into that
[11:55] <asac> if ubufox needs more hooks or features let me know ;)
[11:58] <asac> grrrr
[11:58] <asac> reconnect again ;)
[11:58] <asac> 12:50 < AnAnt> aha, found it
[11:59] <asac> 12:52 < asac> AnAnt: i would suggest to use the bzr branch
[11:59] <asac> 12:53 < asac> and maiintain your own ubufox
[11:59] <asac> 12:53 < asac> use a different name
[11:59] <asac> 12:54 < asac> OTOH i could understand if you dont want to put work into that
[11:59] <asac> 12:54 < asac> if ubufox needs more hooks or features let me know ;)
[12:01] <AnAnt> yeah, I got those , thanks
[12:21] <AnAnt> asac: this startpage.html doesn't work except from inside a jar file ?
[12:46] <AnAnt> asac: I tried to make a start page similar to ubufox's startpage.html
[12:47] <AnAnt> I got this when I load it though: Permission denied to get property XPCComponents.classes
[12:48] <asac> sec
[12:49] <asac> AnAnt: it needs to be chrome
[12:49] <asac> so in jar would help
[12:52] <asac> amazing
[12:53] <asac> 64 bytes from fx-in-f104.google.com (74.125.39.104): icmp_seq=3 ttl=244 time=5460 ms
[12:53] <asac> massive provider suckage
[13:03] <asac> @time
[13:04] <AnAnt> asac: ok, how does chrome://ubufox point to /usr/share/ubufox/chrome/ubufox.jar ?
[13:04] <asac> fta: http://identi.ca/notice/1775229
[13:04] <asac> AnAnt: what do you want to change?
[13:05] <AnAnt> asac: I want to make a chrome://ubuntume for example
[13:05] <AnAnt> brb
[13:05] <asac> AnAnt: you need to main your own ubufox then ;) ... thats what i am telling you
[13:05] <asac> i am gone now for a while too ;) (3 hours i guess)
[13:09] <asac> AnAnt: ls -l /usr/share/ubuntu-artwork/home/index.html
[13:09] <asac> lrwxrwxrwx 1 root root 34 2008-03-13 18:21 /usr/share/ubuntu-artwork/home/index.html -> /etc/alternatives/firefox-homepage
[13:10] <asac> so seems like it uses the firefox-homepage alternative for the OFFLINE page still
[13:10] <asac> give it a try
[13:29] <AnAnt> asac: I tried that alternative,but it  doesn't work
[13:31] <white> asac: how is xulrunner coming along? :)
[13:32] <asac> AnAnt: ls -l /usr/share/ubuntu-artwork/home/locales
[13:32] <asac> lrwxrwxrwx 1 root root 42 2008-03-13 18:21 /usr/share/ubuntu-artwork/home/locales -> /etc/alternatives/firefox-homepage-locales
[13:32] <asac> you need that i think
[13:33] <AnAnt> asac: would that work even if ubufox is in use ?
[13:33] <asac> AnAnt: thats used for OFFLINE case
[13:34] <asac> AnAnt: online case is still as discussed before
[13:34] <asac> if a locale is not found it will fall back to the other alternative
[13:35] <asac> AnAnt: thats the code that figures the offline page: http://paste.ubuntu.com/103520/
[13:35] <AnAnt> yes, I saw it in startpage.html
[13:36] <AnAnt> but I don't think that the firefox-homepage is used anymore
[13:36] <AnAnt> it used to work for a while, until ubufox was here
[13:37] <AnAnt> what I see, is that homepage is set to startpage.html
[13:37] <AnAnt> and startpage.html contains the URLs for both ONLINE & OFFLINE pages
[13:37] <AnAnt> hence there is no use for firefox-homepage nor firefox-homepage-locales
[13:39] <asac> AnAnt: its used as the final fallback
[13:39] <asac> e.g. not ONLINE + locale doesnt exist in /etc/alternatives/firefox-homepage-locales pointed directory
[13:39] <asac> if both happen the firefox-homepage is used
[13:39] <asac> AnAnt: OFFLINE page points to /usr/share/ubuntu-artwork/home/locales ... if you want to put something else there you can repoint that
[13:40] <asac> otherwise you need to fork ubuntu-docs package i guess
[13:41] <AnAnt> I see
[13:43] <fta> asac, http://ubuntuforums.org/showthread.php?t=1030693
[13:47] <asac> fta: asked something
[13:56] <white> asac: seen http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0071 yet?
[14:28] <fta> asac, http://identi.ca/fta
[15:56] <jcastro> asac: I don't think that's a known bug (the gwibber one), can you report it?
[16:06] <fta> jcastro, is there a doc for the syntax of messages? I'm new to this so i'm not sure how to refer to people, tags, add urls, etc..
[16:07] <jcastro> fta: yeah, people are @name and tags are #tags.
[16:07] <jcastro> that's about it
[16:08] <fta> jcastro, and url?
[16:08] <jcastro> you just dump them in there
[16:08] <jcastro> there is a preference for autoshortening them
[16:08] <jcastro> you probably want that enabled
[16:09] <jcastro> fta: I follow a bunch of OSS people if you want to start off with a list: http://identi.ca/jorge
[16:12] <fta> jcastro, yep, saw that, 340+ subscriptions! aren't you flooded by messages?
[16:12] <jcastro> I kinda keep gwibber on the end of a 2nd monitor, so I don't really pay attention to each message, I let it just flow by
[16:12] <jcastro> once in a while I check the replies to see if someone is messaging me directly
[16:13] <jcastro> people ebb and flow with posting though so it's not so bad
[16:48] <fta> jcastro, would be nice if Gwibber was able to register itself in the gnome session so it starts automatically on login
[16:53] <jcastro> yeah that would be nice
[16:53] <jcastro> ryan is always busy with stuff though, it only recently got translations and things like that
[16:53] <jcastro> but it's coming along
[17:08] <asac> fta: cool ... cany ou use #ubuntumozilla for mozillateam stuff?
[17:08] <asac> hopefully we can assemble some kind of report for team more easily from that :)
[17:09] <asac> jcastro: to start it in session is just a .desktop file
[17:09] <asac> jcastro: you could do that ;)
[17:10] <asac> jcastro: look at /etc/xdg/autostart/nm-applet.desktop
[17:10] <asac> ship something similar for gwibber in package and ask upstream to do that on make install too ;)
[17:11] <fta> cool, liferea should do that too
[17:11] <fta> maybe xchat too
[17:12] <asac> fta: yep.
[17:12] <asac> fta: i think it can be disbled by default ... in that way users can just enable it by flagging it in preferences -> sessions
[17:13] <asac> so it should definitlyb e shipped ... whether enabled/or disabled by default depends on whether users start complaining ;)
[17:14] <asac> @time
[17:14] <asac> (still here?)
[17:14] <asac> thanks ubottu
[17:15] <asac> my ping topped 4 seconds now
[17:15] <asac> again
[17:15] <asac> not sure if a router reset will help ... alredy did that 10 hours ago :(
[17:24]  * asac resets all net stuff again :(
[17:26] <fta> asac, jcastro, my gwibber is broken, i keep getting http errors 401: unauthorized. any idea?
[17:26] <fta> started about 1 hour ago
[17:27] <fta> hm, maybe my refresh time is too fast
[17:28] <fta> asac, X-GNOME-Autostart-enabled=false
[17:42] <asac_> hmm ... net seems a bit better now
[17:42] <asac_> lets see how long that last
[17:42] <asac_> s
[17:48] <white> asac_: how is xulrunner coming? Do you need anything? :)
[18:05] <asac> white: whats the currently released version?
[18:05] <asac> h?
[18:06] <asac> seems so
[18:07] <white> asac: 1.8.0.15~pre080614h-0etch1
[18:19] <asac> fta: http://ubuntuforums.org/showpost.php?p=6533954&postcount=5
[18:20] <asac> regression ;)
[18:20] <asac> xmaintainers probably blindly dropped the patch i added in hardy (or was it intrepid?)
[18:20] <asac> i think hardy even
[18:21] <asac> i dont understand why they think that Xaa is now fixed ;)
[18:22] <asac> this must have been done without much thinking ;)
[18:28] <asac> seems the offscreen patch became a victim of a patch cleanup
[18:28] <asac> seems they thought it was irrelevant
[18:29] <asac> wow
[18:29] <asac> seems like the xaa issue was fixed in debian before we found how to fix it ... we just didnt ship the patch
[18:29] <asac> now it was dropped again ... let me check whether its in debian or something
[18:30] <asac> !info xorg-server
[18:30] <asac> !source xorg-server
[18:30] <asac> !source xserver-xorg-dev
[18:30] <asac> !info xserver-xorg-dev
[18:30] <fta> !info xserver-xorg
[18:30] <asac> launchpad doesnt know about the package :(
[18:30] <asac> there is a source package xorg-server
[18:31] <asac> but launchpad lies
[18:31] <fta> n
[18:31] <asac> and doesnt show it for whatever reason
[18:31] <asac> Source: xorg-server
[18:31] <asac> Section: x11
[18:31] <asac> Priority: optional
[18:31] <fta> !info xorg
[18:31] <asac> xorg-server (2:1.5.99.3-0ubuntu4) jaunty; urgency=low
[18:31] <asac>   * 155_dix-don-t-set-the-child-window-for-non-virtual-Enter-Leave-events.patch
[18:31] <asac>     + Fixes issue where mouse cursor in Firefox blinks when hovering over URLs.
[18:31] <asac> fta: its not xorg ;)
[18:31] <asac> see above ;)
[18:31] <asac> its definitly its own package
[18:31] <asac> ha ;)
[18:31] <asac> i always mistyped
[18:31] <asac> https://bugs.edge.launchpad.net/ubuntu/+source/xorg-server
[18:32] <asac> so it was killed in intrepid
[18:32] <asac> 2:1.4.99.905-0ubuntu1
[18:32] <asac> seems rightfully as i didnt have the regression there
[18:32] <asac> and now upstream somehow flipped this option back
[18:33] <asac> what a mess
[18:33] <asac> looked at source ... they are again using XaaNoOffscreenPixmaps instead of XaaOffscreenPixmaps (which was the new one used)
[18:34] <fta> The following packages will be upgraded:  libnspr4-0d libnss3-0d libnss3-1d libnss3-tools watershed <[18:35] <asac> hehe
[18:35] <asac> yeah
[18:35] <asac> any problems?
[18:35] <asac> ;)
[18:35] <asac> i wait a bit for this to digest and then push all rdepends. if you want to take the universe ones let me know ;)
[18:36] <fta> why 3.12.2~rc1 ? is it still rc1 after so many months?
[18:36] <asac> not sure ... thats what i have here ;)
[18:36] <asac> we can go on from there
[18:37] <asac> nss-3.12.tar.gz17-Jun-2008 17:36 NickServ 4.9M
[18:38] <asac> there is no 3.12.2 @ http://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/
[18:38] <asac> i will ask kaie
[18:38] <asac> tomorr
[18:38] <asac> (if i remember)
[18:39] <fta> http://paste.ubuntu.com/103603/
[18:39] <asac> so seems like
[18:39] <asac> no RTM there
[18:39] <asac> probably they undergo some certifications and want to wait until they get thumbs up from there
[18:48] <asac> bug 316136
[18:54] <asac> good stuff ... so nspr is built everywhere
[18:54] <asac> now lets wait till nss catches those armel and ia64 bits and then the rest can be done without bumping build-depends lower bounds i guess
[19:13] <fta> asac, no problem with ff3.2 after the upgrade
[19:13] <asac> cool
[19:13] <asac> though i think you already have that transition in your ppa ;)
[19:13] <asac> dont you?
[19:13] <asac> fta: check with ldd on firefox wehther it points to the versioned or not versioned nss/nspr
[19:14] <fta> yep
[19:14] <asac> yeah still. i think all is fine
[19:14] <asac> i am using a bunch of stuff from the archive and had nss installed for quite a while
[19:14] <asac> never had any issue
[19:15] <fta> http://paste.ubuntu.com/103617/
[19:16] <asac> fta: lsof is for sure
[19:16] <asac> ldd is what i wonder abvout
[19:16] <asac> or make objdump -x /path/to/libxul.so | grep REQUIRE
[19:16] <asac> err NEEDED
[19:16] <asac> maybe you have xul 1.9.0.5 from the archive? you should see the versioned stuff there
[19:16] <asac> objdump -x /usr/lib/xulrunner-1.9.0.5/libxul.so | grep libnspr NEEDED               libnspr4.so.0d
[19:17] <asac> but objdump -x /usr/lib/xulrunner-1.9.1b2/libxul.so | grep libnsp NEEDED               libnspr4.so
[19:17] <fta> fta@ix:~ $ ldd /usr/lib/xulrunner-1.9.2a1pre/libxul.so | grep nss
[19:17] <fta>         libnss3.so => /usr/lib/libnss3.so (0xb71ae000)
[19:17] <fta>         libnssutil3.so => /usr/lib/libnssutil3.so (0xb7196000)
[19:17] <asac> yeah 1.9.2 only exists in your archive ;)
[19:17] <asac> NEEDED probably points to unversioned SONAME too
[19:18] <asac> and i use ffox 3.0 all the time ... so seems fine
[19:18] <fta> but it was build with an nss with a soname
[19:18] <asac> objdump -x /usr/lib/xulrunner-1.9.0.5/libxul.so | grep libnss NEEDED               libnss3.so.1d NEEDED               libnssutil3.so.1d required from libnssutil3.so.1d: required from libnss3.so.1d:
[19:18] <asac> fta: which 1.9.2? i doubt it
[19:18] <asac> you have that build in your ppa for quite some time
[19:18] <asac> good sign that you didnt notice ;)
[19:19] <asac> means it is a perfect transition ;) (so far)
[19:19] <fta> i reverted the nss change a while ago
[19:19] <fta> you just re-added it
[19:19] <asac> no
[19:19] <asac> it was in bzr for ages ;)
[19:19] <asac> i only baked a release today
[19:21] <fta> it was in bzr but i didn't update it in my ppa since you re-added it
[19:25] <asac> fta: i remember that i asked you to update it
[19:25] <asac> and you did it
[19:25] <asac> fta: http://launchpadlibrarian.net/20032831/nspr_4.7.3-0ubuntu1~fta1_4.7.3-0ubuntu1~fta2.diff.gz
[19:26] <asac> http://launchpadlibrarian.net/20033108/nss_3.12.2~rc1-0ubuntu1~fta1_3.12.2~rc1-0ubuntu1~fta2.diff.gz
[19:26] <asac> those are definitl the builds with dropped soname patch
[19:27] <asac> but given that that was end of november i guess it can easily be forgotten ;)
[19:27] <asac> i wonder if anyone would risk to upgrade xulrunner from gutsy to latest :/
[19:28] <asac> that would be ~15 releases at once
[19:28] <asac> https://edge.launchpad.net/ubuntu/+source/xulrunner
[19:28] <asac> !info xulrunner
[19:28] <asac> !info xulrunner gutsy
[19:28] <fta>   * RELEASE 3.12.2~rc1-0ubuntu1~fta2 to jaunty/ppa
[19:28] <fta>     - merge with nss.head #89
[19:28] <fta> so you're right
[19:28] <asac> yeah ;)
[19:28] <asac> what matters is that now it has happened in real archive ;)
[19:30] <asac> hmm why is it still in jaunty?
[19:30] <asac> !info xulrunner jaunty
[19:30] <asac> !info-rdepends xulrunner jaunty ;)
[19:31] <asac> hmm eclipse
[19:31] <asac> libmozillainterfaces-java
[19:32] <asac> !info libmozillainterfaces-java
[19:32] <asac> ok thats from xulrunner
[19:32] <asac> !info libswt3.2-gtk-jni
[19:32] <asac> damn mobile-basic-flash still isnt built against xul 1.9
[19:32] <asac> !info libswt3.2-gtk-jni
[19:32] <asac> !info mobile-basic-flash
[19:33] <asac> !info libjdic-bin
[20:07] <asac> white: xul upload started. can you please check evolution if you have a native etch install? testing secure connections would be good
[20:07] <asac> will probably take 30 minutes or more to upload ;)
[20:07] <asac> so be patient
[20:12] <white> asac: i'll start testing with democracyplayer :)
[20:12] <asac> white: the more you test the better
[20:13] <asac> white: main prob with evo is that it cannot be run in my chroot here
[20:13] <asac> probably some dbus issues
[20:13] <asac> native install or VM helps for evo testing
[20:31] <asac> white: Successfully uploaded packages.
[20:31] <asac> Not running dinstall.
[20:33] <white> asac: cheers
[21:05] <fta> asac, why is our python-xpcom still using 1.8.1 and not 1.9++ ?
[21:09] <white> asac: http://security-tracker.debian.net/tracker/status/release/stable shows other CVEs supposedly unfixed but affecting current xulrunner. Did you have a look through them?
[21:25] <fta> jcastro, do you know if debian has an openkomodo package somewhere? I just see a RFP
[21:29] <jcastro> I can't find anything fta
[21:29] <fta> asac, oh, python-xpcom is part of xulrunner. damn, we should add it too
[21:29] <fta> jcastro, ok, thanks.
[21:34] <fta> jcastro, i may give it a try, if i have enough time and stamina to fix our python xpcom
[21:36] <jcastro> heh
[21:37] <jcastro> so hey, I think this microblogging thing is a good way to let people know what's going on
[21:38] <fta> jcastro, i don't want to announce things there before i even start working on them
[21:39] <fta> jcastro, and btw, my gwibber is still broken, unusable :(
[21:42] <jcastro> what happened?
[21:42] <fta> no idea
[21:43] <jcastro> does it spit anything out to the console?
[21:43] <fta> yes, HTTPError: HTTP Error 401: Unauthorized
[21:43] <fta> I posted once, no problem, got a few lines from others, then it broke
[21:44] <jcastro> k
[21:44] <jcastro> I'll ask him
[21:44] <jcastro> let me know if it resolves itself, I get those sometimes from identica
[21:45] <fta> it's been like that for 5h+
[21:45] <jcastro> :-/
[21:46] <fta> the web is ok so my login is not blocked
[21:47] <jcastro> ok
[21:47] <jcastro> asking
[21:50] <jcastro> fta: is that in the error window or on the console? (that error message)
[21:50] <fta> console
[21:51] <fta> nothing in the main window
[21:51] <fta> i mean, it's in the Error window
[21:51] <fta> i also get a Sign at the bottom right of the main window
[21:52] <fta> nothing in the shell/terminal
[21:53] <jcastro> double click the item in the error window
[21:54] <jcastro> fta: I am stepping out for a bit, bbl
[21:54] <fta> jcastro, http://paste.ubuntu.com/103656/
[21:56] <fta> jcastro, from the network: http://paste.ubuntu.com/103659/
[22:02] <jcastro> oh oh
[22:02] <jcastro> you need to make an account on identica
[22:02] <jcastro> you can't use the api with openid iirc
[22:04] <fta> eh? how come it worked for a couple of hours then? and btw, I have an account on identica, that's what i put in gwibber
[22:05] <fta> I checked the Authorization: Basic stuff, it's the right one
[23:22] <asac> white: CVE-2007-3074 fixed in 1.8.0.12
[23:22] <asac> CVE-2007-3144 - no clue ... probably a mitre thing. whats the firefox status for this?
[23:23] <asac> CVE-2007-3827 - same here
[23:23] <asac> CVE-2008-0420 - fixed1.8.0.15 (see bug)
[23:25] <asac> CVE-2008-4063 - firefox 3/xulrunner 1.9 only part of the mfsa-2008-42 -> not affected
[23:26] <asac> CVE-2008-4064 - same here
[23:27] <asac> CVE-2008-5019 - browser only thing (session restore) -> not affected
[23:28] <asac> CVE-2008-5504 - code is only on 1.8.1 branch or above -> not affected
[23:29] <white> asac: you are really handy, did I ever say that? :)
[23:29] <fta> i need to ship a better automation.py than the one in _test/ which is not meant to be used outside of the build tree :(
[23:30] <asac> CVE-2008-5510 - thats mfsa2008-67 ... its the one not backported in this patchset -> pleas kick me to backport it regularly
[23:31] <asac> white: isnt 451680 in the patchset?
[23:32] <white> asac: i was just pointing you to the tracker, it includes the iussues handled in this round as well
[23:32] <asac> so the 5512 one is 370461 and 453310
[23:32] <white> so don't take it as a list of missing items :)
[23:32] <asac> white: yes. i left those out that are in changelog
[23:32] <asac> so i think 5512 is fixed too
[23:32] <asac> in xulrunner
[23:32] <asac> oh dump me ;)
[23:32] <asac> its already in there
[23:33] <asac> so CVE-2008-5511 is the question here ;)
[23:33] <asac> lets see
[23:33] <white> asac: if CVE-2008-0420 was already fixed in a previous DSA, shouldn't I be able to find it in a changelog entry?
[23:33] <asac> yes
[23:33] <asac> its fixed
[23:33] <asac> (5512 that is)
[23:34] <asac> white: not sure. there might be glitches. its one of those bugs that have been fixed in CVS even
[23:34] <asac> so its not in the patchset anymore
[23:34] <asac> could be that CVE id changed ... you never know ;)
[23:34] <white> asac: CVE ids don't change :)
[23:35] <asac> they do
[23:35] <white> asac: i am just wondering what I can write in the tracker :)
[23:35] <asac> well ... they might have issued a new one
[23:35] <asac> and found that there exists an older one
[23:35] <white> asac: they rarely get adjusted, but once a CVE is given it stays. If it is a wrong issue, it get's rejected
[23:35] <asac> i think mitre is finally smart enough to not go through bugzilla anymore and assign random IDs to issues they dont understand ;)
[23:35] <white> asac: yeah that happens
[23:35] <asac> but they did ;)
[23:36] <white> i agree that in case of such large packages like mozilla stuff it gets very confusing :/
[23:36] <white> asac: that's why i'm happy to have an active developer there ;)
[23:37] <asac> not sure why we left out mfsa 2008-07
[23:37] <asac> we have -06 and -08
[23:37] <asac> the code seems to apply
[23:40] <asac> anyway, our CVS snapshot is 080614 ... and this was committed in march
[23:40] <asac> so all in ther
[23:40] <asac> white: i thinks thats all
[23:40] <asac> so one CVE still open
[23:40] <asac> in future you should really not add something there that doesnt have a MFSA ;)
[23:40] <asac> i mean documented ;)
[23:43] <white> asac: so for CVE-2008-0420 I'll just write that it doesn't affect etch, because it was fixed in the standard etch version?
[23:43] <white> asac: or was it silently fixed in the last DSA?
[23:44] <asac> white: no let me check ;)
[23:45] <asac> it was definitly fixed in 1.8.0.15~pre080323b-0etch1 (because snapshot was taken 23rd march and commit happend on 12th)
[23:46] <asac> but more likely it was fixed in the release where it belongs to:
[23:46] <asac> 1.8.0.15~pre080131b-0etch1
[23:46] <asac> (-06 and -08 are in there)
[23:46] <asac> but i cannot tell without looking at that package (and i dont have it i think)
[23:49] <asac> white: ok
[23:49] <asac> so as i said:
[23:49] <asac> moz-1.8.1.12-backports$ ls *408*
[23:49] <asac> 0039_408256-attachment-293003.patch
[23:50] <asac> thats http://people.ubuntu.com/~asac/mozilla-security/1.8.1.12/moz-1.8.1.12b-backports.tar.gz
[23:50] <asac> which is 1.8.0.15~pre080131b-0etch1
[23:50] <asac> (aka the release when mfsa-2008-07 was disclosed)
[23:50] <asac> so this was also a perfect fix ;)
[23:50] <asac> hehe
[23:51] <asac> https://bugzilla.mozilla.org/show_bug.cgi?id=408076 -> fixed by https://bugzilla.mozilla.org/show_bug.cgi?id=408256 ;) (a bit confusing)
[23:51] <white> asac: so i'll leave CVE-2007-3144 and CVE-2007-3827 for now, right?
[23:52] <asac> white: CVEs that dont even have a mozilla bug are bogus and should be marked invalid
[23:52] <asac> CVE-2007-3144 -> invalid
[23:53] <asac> CVE-2007-3827 -> invalid ;)
[23:53] <asac> i can ask josh to get that done
[23:59] <white> asac: CVE-2007-3827 has https://bugzilla.mozilla.org/show_bug.cgi?id=388097 as a reference
[23:59] <white> just to let you know :)