=== JanC is now known as Guest98943 === JanC_ is now known as JanC === chihchun_afk is now known as chihchun [04:07] new here.. gotta sleep at midnight.. anyone understand how to set a tcl library path inside a snap? if it is by using export, i am working on that. probably need to launch a script to export the path then run tclsh. am i anywhere near right? [04:48] sabdfl: there's plenty of interfaces; journald logs syslog, dmesg, services's stdout/err, so any of those; a direct interface is logger --journald (if you need to fine-tune the property fields), or the C library API; http://0pointer.de/blog/projects/journal-submit.html describes those === ant_ is now known as Guest67209 [08:33] PR snapd#1713 closed: tests: start teaching the fakestore about assertions [09:23] good morning [09:24] mhall119: hello [09:24] mhall119: I heard you ran into an issue with the content interface on Firday [09:25] mhall119: could you please report the issue if you didn't already [09:25] mhall119: I talked to mvo and I believe I know what this issue is about, I will fix it no [09:25] now* [09:34] zyga, there is a bug already I believe [09:36] ogra: could you put the firmware for pi3 wifi already into the kernel snap? [09:38] JamieBennett: do you have a link for that [09:40] https://bugs.launchpad.net/bugs/1615113 [09:40] Bug #1615113: snap-confine prevented from mounting base directory through the "content" interface [09:40] zyga, ^ [09:41] PR snapcraft#747 opened: kernel plugin: vmlinuz -> kernel.img hard link [09:47] JamieBennett: thanks, the bug is fixed now [09:47] mvo, mind merging my classic-snap PR ? (then i can move the snap to the beta channel) [09:48] hey ogra, how are you :) [09:48] zyga, great, and great investigation work from mhall119 [09:48] zyga, a bit worn out (busy weekend) but fine beyond that :) === tvoss is now known as tvoss|lunch [09:53] ogra: could you put the firmware for pi3 wifi already into the kernel snap? [09:53] Bug #1615566 opened: snapcraft SDK [09:54] Chipaca, so when my system does a secret auto update over night then "snap list" shows the newly installed ubuntu-core despite me not having rebooted yet (so that version isnt in use at all yet) ... isnt that a bug ? [09:54] morphis_, well, we need it to go to the archive [09:55] ogra: sure, but what is the state of that work? [09:55] i'll try o get it added to the package via the PPA, but it needs to go in ASAP [09:55] aye [09:55] morphis_, no idea, ppisati_ are you working on getting the Pi3 FW into xenial ? === hikiko is now known as hikiko|ln === vrruiz_ is now known as rvr [10:45] mvo, can you approve https://myapps.developer.ubuntu.com/dev/click-apps/5573/rev/6/ ? that should amke morphis_ happy [10:45] ogra: yeah!! [10:45] *make [10:46] (i hope at least ) [10:48] PR snapd#1709 closed: many: teach prepare-image to copy the model assertion (and prereqs) into the seed area of the image [10:55] ogra: done [10:55] thx ! [10:55] ogra: you need to publish it still though [10:55] morphis_, tell me if it works for you, then i'll push it to the beta channel too [10:55] mvo, yeah [10:56] ogra: will do [10:56] matteo: ^^ [10:56] ok [10:57] by publish you mean in the snap store? [10:57] mvo, FYI, i dropped the "raspi2" from the pi2-kernel version string ... (was inconsistent vs the other kernels) [10:57] matteo, yes, it is n the edge channel now [10:57] matteo: yes, in the edge channel === tvoss|lunch is now known as tvoss [10:58] matteo, if you have a running image on the pi3, just "sudo snap refesh pi2-kernel --edge" and reboot ... then check /proc/net/dev if you have a wlan interface [10:58] ok === hikiko|ln is now known as hikiko [10:59] (i'll have to do another rebuild though, forgot to ship the license file for the FW) [10:59] is the firmware like the DHD one? [11:00] it is from ppisati_'s package [11:00] raspberrypi-wireless-firmware from https://launchpad.net/~p-pisati/+archive/ubuntu/embedded [11:01] ok [11:08] matteo: o/ [11:08] hi [11:10] ubuntu@pi2:~$ ifconfig | grep "^[a-z].*Ethernet" [11:10] enxb827eb04db1c Link encap:Ethernet HWaddr b8:27:eb:04:db:1c [11:10] gotta love the new NIC naming ... [11:16] ogra: doesn't work here [11:16] hmm, any errors in dmesg/syslog/journald ? [11:16] pi2-kernel 4.4.0-1019-2 is what I have [11:16] yeah, thats the right oone [11:16] I am seeing brcmfmac loaded [11:17] did it load before ? [11:17] ogra: https://paste.ubuntu.com/23078108/ [11:17] no [11:17] [ 18.743469] brcmfmac_sdio mmc1:0001:1: Direct firmware load for brcm/brcmfmac43430-sdio.bin failed with error -2 [11:17] brcmfmac_sdio mmc1:0001:1: Direct firmware load for brcm/brcmfmac43430-sdio.bin failed with error -2 [11:17] heh [11:17] *snap* [11:17] hm [11:18] /lib/firmware/brcm80211/brcm/brcmfmac43430-sdio.bin is present [11:18] yes, i guess wrong dir [11:19] shoudl go to /lib/firmware/brcm i guess [11:19] ogra: yeah, looks so [11:19] bah, that needs some hackery :( [11:21] when snapping a .deb, what's the best strategy when it comes to hard coded cmake variables passed as -D to a target? [11:22] ogra, maybe you know? ^ [11:24] looks like you can do it at runtime using getenv, or somehow at build time. Or maybe via some magic in snapcraft.yml [11:26] jgdx, well, i usuallly snap binaries when snapping debs :) [11:26] jgdx, that said ... i have one package that uses the make plugin https://github.com/ogra1/packageproxy [11:27] (thats approx, built from latest git) [11:27] ogra, please excuse my lack of proper terminology :p [11:28] but usually i just download the deb and run dpkg -x . and then use the copy (now dump) plugin to copy the binaries around [11:29] https://github.com/ogra1/laidout is one where i re-use upstreams .deb [11:29] ogra, actually, the binary I snapped works fine, but the binary tries to read from a absolute path based on CMAKE_BINARY_DIR, which doesn't exist. [11:30] ah, thats bad [11:30] if it douesnt provide a way to overrdie that at runtime i fear you have to patch ... [11:31] * ogra would make it use getenv() and add an env var from a wrapper script [11:31] ogra, right, and then the best way would be a configflags: -DSNAPPY=1? [11:31] hmm, no idea [11:32] thats a kyrofa or sergiusens question ... (or one for the snappy-playpen on gittter) [11:32] ogra, okay, thanks [11:34] ogra jgdx I think that is an upstream call ;-) RUNTIME_RELOCATION? [11:35] or even just check for the existence of env vars and use those if defined [11:35] sergiusens, I forgot to mention we're the upstream /cc ogra :) [11:35] hah [11:35] well, just get the path from an env var then [11:35] (as override option) [11:35] okay then :) Thanks sergiusens, og [11:46] ogra: are you pushing a fixed kernel snap to the store? [11:55] * zyga released snap-confine 1.0.40 just now [12:15] zyga, o/ [12:20] morphis_, already there but mvo needs to approve it again (https://myapps.developer.ubuntu.com/dev/click-apps/5573/rev/7/) [12:20] ogra: aye! [12:23] ogra: done [12:24] mvo, whom do i have to poke to get approval righty myself ... i really dont want to drag you away from your work all the time [12:24] *rights [12:26] sergiusens, any way to quickly do a make build, then have those newly built files into prime? [12:27] ogra, mvo: hm, a snap refresh --edge pi2-kernel does give me any updates [12:28] ah! [12:28] it does here [12:28] that took a bit to go through [12:28] yeah, thats my fault ... forgot to press the publish button immediately [12:33] :-) [12:34] ogra: ah, there we go, a wlan0 is present now [12:34] yay [12:35] matteo: ^^ [12:45] hi everyone :) [12:46] why our snap cant read files inside it :D [12:48] where is "it" in that question ? :) [12:55] ogra, why my snap cant read $SNAP/etc/xdg/Trolltech.conf [12:56] ogra, am writing gui for snapcraft plz join and guide me where am wrong :P [12:56] bull, what makes you think it cant read the file, do you have any DENIED messages in syslog ? [12:56] yes [12:57] can you put them into paste.ubuntu.com ? [12:58] ogra, that is the same issue i faced yesterday . i was packaging supercalc and it says DENIED [12:58] it should able to read $SNAP/etc/xdg/Trolltech.conf , i checked the xdg vars not set or hardcoded in my qt app [12:59] wasnt that trying to read another file ? [12:59] (i.e. without $SNAP) [12:59] i copied that file to other location inside $SNAP and it saying denied again [12:59] you mean outside $SNAP ? [13:00] and you fixed your binaty to actually read the file or accept the XDG location ? [13:00] *binary [13:00] this isnt really a snap problem ... [13:00] bro why developer will mess with xdg path to pack their apps with snap [13:00] if your app does not respect the XDG_CONFIG_DIRS variable then there is a bug in your app (or in whatever loads the file) [13:01] i mean they will excepting everything okay , cause this is unusual no packaging systems messs with what app looking for ? [13:01] these variables have been designed in the freedesktop standard to exactly allow re-location of binaries [13:01] so that you can run two versions of the same app alongside from different paths for example [13:02] if the app doesnt follow that standard you might need to fix it === nessita_ is now known as nessita [13:02] ogra, my app works fine on ubuntu 12.04 to 16.04 [13:02] * ogra wonders why there are so many QT apps that do not have such probs [13:02] with debian packaging [13:02] (we obviously have a good bunch in the store) [13:03] qt4? [13:03] yes, debian packaging has full root access to the whole system ... [13:03] (and the according security issues too) [13:03] ogra it is clear that my app want read $SNAP/etc/xdg/Trolltech.conf [13:03] sabdfl: hi! re 1615262> yes, I'll take care of it [13:03] so my question - why snap cant read its ownstructure [13:04] bull, i dont understand [13:04] can you show the exact DENIED messages please [13:04] why snap cant read its own structure ( $SNAP/etc/xdg/Trolltech.conf ) [13:04] wait [13:05] (since you start giving contradicting info) [13:06] http://paste.ubuntu.com/23078316/ [13:06] its not snappy-debug [13:06] it comes out directly when i run app [13:06] thats not a DENIED message [13:06] and doesnt talk about Trolltech.conf at all ! [13:06] okay wait [13:06] let me debug [13:08] ogra, /snap/supercalc/x2/usr/bin/wrapper: /snap/supercalc/x2/trollconf: Permission denied [13:08] PR snapcraft#747 closed: kernel plugin: vmlinuz -> kernel.img hard link [13:08] Hi, webdm does not work anymore on my target, some xmlhttprequest answers a 500 error code when querying /api/v2/packages/?installed_only=true [13:08] any idea? [13:08] I only see a rotating Ubuntu logo [13:08] bull, please giv the DENIED messages from syslog ... [13:09] it not logging anything [13:09] bull, when you try to run the app after you installed the snap [13:09] sudo /snap/bin/snappy-debug.security scanlog | grep supercalc [13:09] no error in the journalctl -u snap.webdm.snappyd.service [13:10] ysionneau, there is a bug in the systemd unit, it doesnt wait for networking [13:10] bull: fyi, you probably simply want: sudo /snap/bin/snappy-debug.security scanlog supercalc [13:10] ogra: hmmm but I can browse the page though :o [13:10] ysionneau, oh, and it isnt called webdm anymore ;) it is snapweb now [13:10] ysionneau, okay [13:10] ogra: well, when I do "snap find webdm" it finds it [13:10] oh, we need to unpublish it i guess [13:10] (and snap find snapweb does not find anything :o am I outdated somehow ?) [13:11] ogra, i got it [13:11] I have ubuntu-core 16.04+20160531.12-01 [13:11] ogra, http://paste.ubuntu.com/23078334/ [13:11] PR snapcraft#748 opened: kernel plugin: vmlinuz -> kernel.img hard link [13:11] ubuntu@pi2:~$ snap list snapweb [13:11] Name Version Rev Developer Notes [13:11] snapweb 0.20 4 canonical - [13:11] ubuntu@pi2:~$ [13:11] hmm, weird [13:12] snap find does indeed not find it [13:12] my version of webdm is 0.20 also :o [13:12] jdstrand: hey, how are you doing [13:12] ysionneau, thats super ancient [13:12] jdstrand: I would like to implement the setns feature [13:12] I just unsquashfs'ed it and resquashed' it, to fix the wrapper script to run the correct binary [13:12] jdstrand: I would appreciate any hints you have, I didn't fully read the converstation around that but I talked with stgraber at the sprint about it so I have an idea [13:13] ysionneau, is this on an all-snap image or oon classic ? [13:13] ogra: hmmm weird, that's on 16 series [13:13] http://pastebin.com/MXQXxchN <= I'm using this to generate my image [13:13] bull, so like i said, your app is broken, fix it to folow general standars for XDG dirs and it will work [13:13] there is no way around that [13:14] daem [13:14] ogra, should it work normal with debian install ?? [13:14] ysionneau, sudo snap install ubuntu-device-flash --devmode --edge [13:14] i tested it on more then 5 PC [13:14] of my friends and mine [13:14] bull, yes, because debian packages are not running in a sandbox and have full insecure root access [13:15] ysionneau, see mvo's mail to the mailing list about new images and how to build them, we now publish updates for u-d-f via a snap package [13:15] zyga: are you talking about for the shared mount namespace per snap bug? [13:15] ah nice ogra [13:15] do you think it's because of my old udf ? :o [13:16] Bug #1595993 changed: go binaries use bind on startup, requiring network-bind [13:16] ysionneau, well, mainly because of your old ubuntu-core [13:16] ogra, why you guys don't want app to read data ?? [13:16] but i dont think you can build any working images with the old udf [13:16] my old udf does not fetch a recent ubuntu-core ? :( [13:16] hmmm my image kinda work though [13:16] maybe everything is in the "kinda" [13:16] bull, there are plenty apps in the store that read data from various places [13:16] bull, they simply follow established standards [13:17] yours does not seem to [13:17] ysionneau, definitely :) [13:17] error: unknown flag `edge' <= [13:17] (I'm on debian testing) [13:17] its not like that , it simply cant read /snap/supercalc/x1/trollconf [13:17] ysionneau, is your snapd up to date ? [13:17] I just installed it [13:17] ogra@anubis:~$ snap --version [13:17] snap 2.12+ppa203-1 [13:17] snapd 2.12+ppa203-1 [13:17] series 16 [13:17] ubuntu 16.04 [13:17] Get:5 http://debian.univ-lorraine.fr/debian unstable/main amd64 snapd amd64 2.0.8+1 [4,352 kB] [13:17] i think you need at least 2.11 [13:18] yann@imperium:~/dev/workspace2$ snap --version [13:18] snap [13:18] snapd unknown (series 16) [13:18] oh [13:18] ogra ty [13:18] bull, that is not what the DENIED message says [13:18] it does not try to reat /snap/supercalc/x1/trollconf there [13:18] so what makes you think it cant ? [13:18] then? [13:19] ogra, okay i will dig it , [13:19] ogra, my app can read anything inside $SNAP right >? [13:19] bull, yes [13:19] even in debian unstable it seems to be snapd 2.0.8+1 :/ [13:20] i have few more question - i have an app which writes data to user's home directory , do snap allow that ? [13:20] and it can write to $SNAP_DATA (for daemons/services) and to SNAP_USER_DATA (for user apps) [13:20] bull, you can either write to SNAP_USER_DATA or you can use the home interface in your snapcraft.yaml [13:21] oh $SNAP_DATA ? [13:21] note that this does not allow access to "dot" dirs unside home [13:21] :) [13:21] *inside [13:21] jdstrand: yes [13:21] damn [13:21] what :D [13:21] since that would be a security hole [13:21] (apps could spy on other apps etc) [13:21] qt writes app data inside .local/data/yourapp.com/ [13:22] that mean snap will break qt ?? [13:22] so set the right XDG variable to make it write to SNAP__USER_DATA instead [13:22] again, there are tons of Qt apps in the store that work fine [13:23] zyga: I think it would be helpful to read through that bug before we talk about it. I can say, at the highest level you simply give setns the pid and CLONE_NEWNS for the mount you want to go into [13:23] this is not easy for everyone , so why don't you guys make set these paths since you know snap will write data there only [13:23] ogra, there should be better documentation in site [13:23] the desktop-launcher sets these paths usually [13:24] zyga: so, 'just' need enter the mount namespace of another command if it is running, otherwise create a new one [13:24] but if your app does not respect the XDG variables you have to fiix the app [13:24] what snap allow and what not !! where user have to fix their apps and everything [13:24] okay thanks [13:24] bull, btw, the guys that do app packaging are in https://gitter.im/ubuntu/snappy-playpen ... perhaps they have some ideas [13:24] jdstrand: yes, this is obviously a race, I wanted to think about how to solve this [13:24] zyga: 'just' is the hard part. I can think of a robust implementation using security labels. I don't yet for cross-distro [13:25] bull, i told you what snap allows and obviously other packagers do not have big problems with that [13:25] jdstrand: I was thinking that snap-confi e could fork a per-$SNAP_NAME process that just hangs around forever [13:25] jdstrand: that sets up a separate mount namespace [13:25] ogra, what you think of making snapcraft gui ?? will it be a task that can be attained or what ? [13:25] jdstrand: but doensn't hold any files open and chdirs to / [13:25] jdstrand: with the sole goal of being easy to find [13:25] jdstrand: I could use prctl to tweak the process name so that I can find it [13:26] jdstrand: and I could use /proc/$pid/exe to find the executable as a confirmation check [13:26] don't do that [13:26] not the prctl part anyway [13:26] bull, well, why not ... (not that i'd use it ... after all you have to manually edit files, create wrappers etc so in the end you use an editor anyway) [13:26] since applications can change their command name [13:26] i mean it will make easy pack snaps and we can help users showing more info , scanlog etc [13:26] jdstrand: snap-confine --zygote $SNAP_NAME would not run any apps [13:27] jdstrand: it would just sleep forever having unshared the mount namespace [13:27] ogra, we will having simple buttons to create files , check errors in yaml file [13:27] :D [13:27] jdstrand: each snap-confine that actually wnats to start an app would wait for the zygote or launch one [13:27] bull, sure, i wont hold you back ... [13:28] jdstrand: (with the usual trickiness on how to make this race-free and reliable) [13:28] but for me packaging is mostly a commandline task anyway ... and all the tools i need there are existing already [13:28] i initiated a github repo plz keep me updated with features and stuffs we can add to it [13:28] zyga: the security label approach was-- fork, note its PID, create a sumlink from /var/lib/snapd/mountpids/snap.hello-world -> /proc//ns (or whatever). then enter that namespace, then verify the security label of that process, if different, die() [13:28] so you shoudl try to find someone who wants to use such a tool and have him/her give you feedback [13:28] zyga: you could do your technique with the symlink approach [13:28] https://gitter.im/ubuntu/snappy-playpen is probably the best place for this [13:29] ogra, you are in deep bro , you know everything so its easy for you , i seen people and myself find it hard to figure things out :D [13:29] yes, thats why i'm saying i'm the wrong target audience [13:29] i know that bzoltan's team aslo wroks on integration snapcraft into the ubuntu SDK [13:29] zyga: but don't have --zygote [13:30] probably you can help there or give them your tool for integration ot for ideas at least [13:30] *integration of [13:30] all i want from you to guide me like you doing here , if i go wrong with the concept anywhere in the gui version of snapcraft , i need you to guide me [13:31] i will be asking few more people relating to project for sure [13:31] no, you dont [13:31] :D [13:31] there are 282 people in this channel, do you think i'm the only one with knowledge ? [13:31] zyga: ie, run the app, fork this process that will hang around, note its pid, create the symlink, go into it. on the next app launch the symlink exists, so go into it. on systems with a security label, also verify it [13:31] no, i mean you are one of them , chill [13:31] jdstrand: mmmm [13:32] bull, also, the packaging specialists are realy at https://gitter.im/ubuntu/snappy-playpen ... as i said a few times already [13:32] jdstrand: and the forked one should just sit around forever? [13:32] zyga, ty [13:32] zyga: with this idea, yes [13:32] jdstrand: I'll finish my current call and wrap my head around this and get back to you, thank you for the idea [13:33] zyga: note, niemeyer specifically requested reviewing the design, and I know tyhicks (and maybe ratliff) would as well as me [13:33] zyga: quick work there, thanks :) [13:33] mhall119, hi :) [13:33] hi bull [13:34] mhall119: my pleasure, I'm sorry I didn't finish the article on content sharing [13:35] i snapped supercalc but it running only with devmode for now there is a bug in my app which wont allow it to run , http://paste.ubuntu.com/23078334/ [13:35] mhall119, https://github.com/keshavbhatt/supercalc [13:36] bull, soo ... if you fix the broken line in your wrapper the error will go away ... [13:36] ogra, and whats that >?? [13:37] (you could have poinnted me to that before ... ) [13:37] shell vearibles do not allow spaces ... fix your line 3 [13:37] popey, already checked that [13:37] ogra, wait [13:38] ogra, you mean this- XDG_CONFIG_DIRS= $SNAP/trollconf to ---- XDG_CONFIG_DIRS=$SNAP/trollconf [13:38] ? [13:38] yes [13:38] daem [13:38] (not sure if that will help when your app doesnt respect the freedesktop standards though ... but it will fix your error) [13:39] okay :D let me check [13:39] hmm doesn't seem it works nicely to run snapd and stuff in docker [13:40] i think there is a bug open for that [13:40] anyone interested in packing a awesome qml music player https://github.com/keshavbhatt/kmusicplay [13:41] ogra, will the changes will added to stage area automatically when i will run snapcraft after making chnages to wrapper script ? [13:41] no. you need to clean [13:41] (at least the stage and prime steps i think) [13:41] this is not good feature snapcraft offering :D [13:42] cleaning stage will download dependencies again right ?? [13:43] no. thats pull [13:43] okay ty [13:45] (as described in detail in "snapcraft --help" ) [13:45] ty [13:53] PR snapd#1686 closed: boot: add support for "devmode: {true,false}" in seed.yaml [13:55] well, now I've submitted fixes to snapcraft and snap-confine, I guess snapd is next [13:56] zyga: are you still going to do a blog post? [13:57] ogra: on Ubuntu Xenial, I can install webdm but not snapweb is found (on amd64), normal? [13:57] no* [13:57] ogra, am not compiling my app from source using snapcraft , am just copying the binary using snapcraft , so do you think compiling with snapcraft qmake plugin will make the difference ?? [14:03] mhall119: yes, just swamped with more important things now [14:19] ysionneau, yeah, try "sudo snap install snapweb --edge" [14:20] (it seems to only be in the edge channel) [14:21] bull, no idea, most of the time you dont need to change the apps ... [14:21] but yours seems special [14:21] Hello guys. What about the state of this bug https://bugs.launchpad.net/snappy/+bug/1580740 (xdg-open) [14:21] Bug #1580740: [SRU] Cannot open a browser link from a snap that provides a link

[14:25] eldarkg, i know that the needed bits in the ubuntu-core package landed last week, not sure which bits of snap-confine are needed additionally for it though, seb128 and zyga might know [14:26] ogra: thx [14:26] zyga: I recall you mentioned working on allowing content sharing slots to support multiple plugs (though I assume now that it should be the other way around), is that implemented? [14:26] zyga: hello. Are u there? [14:27] seb128: hi. Are u here? [14:27] eldarkg: hey [14:28] mhall119: no, thre's no bug report either, if you report it please give me a link [14:28] zyga: what u say about bug https://bugs.launchpad.net/snappy/+bug/1580740 [14:28]