/srv/irclogs.ubuntu.com/2019/08/02/#snappy.txt

amurraykenvandine: yeah I noticed it at least needs a newer PyGObject for Gtk.Template() but I didn't have much luck figuring out how to add that appropriately as a part (was messing around with the python plugin to try and use that but wasn't successful)01:42
kenvandineamurray: i'll get it in the store soon01:59
amurraykenvandine: nice - cheers01:59
mupPR snapcraft#2652 closed: meta: transparently support command-chain <Created by sergiusens> <Merged by sergiusens> <https://github.com/snapcore/snapcraft/pull/2652>04:26
=== pstolowski|afk is now known as pstolowski
pstolowskimornings07:02
mupPR snapd#7196 opened: packaging: use passthrough for type:snapd <Created by stolowski> <https://github.com/snapcore/snapd/pull/7196>07:29
zygaHello10:08
pstolowskihey zyga10:09
Chipaca#1838654 looks like fun10:48
mupBug #1838654: Snap completely broke <client> <crash> <snaps> <Snapcraft:New> <https://launchpad.net/bugs/1838654>10:48
pstolowskiamazing10:50
ChipacaIKR10:50
mupPR snapd#7206 opened: overlord/snapstate: use reflect to improve snapstate.Get <Created by chipaca> <https://github.com/snapcore/snapd/pull/7206>11:58
mupPR snapd#7207 opened: snap: prevent duplicated snap name and snap files when parsing seed.yaml <Created by stolowski> <https://github.com/snapcore/snapd/pull/7207>12:00
Chipaca^^^ a bit of friday fun12:17
Chipacasigh, what's up with spread _now_12:18
Chipacapstolowski: did you check how your dupe checker worked from 'snap debug validate-seed'?12:21
Chipacapstolowski: also note image/validate_seed_test.go12:22
pstolowskiChipaca: hmm, nope, will do, ty12:26
ijohnsonmorning folks12:37
pstolowskihey ijohnson!12:39
ijohnsono/ pstolowski12:40
pstolowskiChipaca: ValidateSeed calls ReadSnapYaml, so it's covered by the fix (and so is snap debug validate-seed)12:41
snapuser9Hi guys, I have a quick question regarding access to /proc. Under flatpak apps such as Discord and Spotify have no access to /proc whatsover, however having made the switch to snap recently I realized that the same apps have access to /proc. As far as I know both Discord and Spotify have not been installed with the --classic flag so I was wondering12:44
snapuser9 if this is intended? (If not then) Correct me if I am wrong but shouldn't access to /proc be limited because sensitive data could be read from there?12:44
pstolowskiChipaca: but surely an extra test for cmd_debug_validate will not harm12:44
ijohnsonsnapuser9: some snaps declare to use interfaces to access certain things inside /proc, so discord and spotify use some of those interfaces12:46
ijohnsonwhat interface depends on what exactly in /proc is desired to access12:47
Chipacasnapuser9: access to proc is limited; is there anything the snap has access to that is sensitive?12:48
mupPR snapd#7208 opened: cmd/snap, data/completion: improve completion for 'snap debug' <Simple 😃> <Created by chipaca> <https://github.com/snapcore/snapd/pull/7208>12:53
Chipacasnapuser9: (it's not an all-or-nothing thing)12:53
mupPR snapcraft#2651 closed: Extension confinement <Created by sergiusens> <Merged by sergiusens> <https://github.com/snapcore/snapcraft/pull/2651>12:54
ograroadmr, cjwatson, i just built a new gadget on build.s.io ... this rightly went into manual review ... yet ... build.s.io tels me "Built and released" and also tells me to "sudo snap install --edge <snapname>" ... i'm pretty sure former gadgets properly showed the store status on build.s.io12:54
popey_ogra: there's a bug report link at the bottom of the page :)12:57
ograheh, k12:57
ograit says "we're hiring" though :)12:58
ChipacaI'm going to be a minute late for the standup12:59
pstolowskik12:59
* ogra files https://github.com/canonical-web-and-design/build.snapcraft.io/issues/123113:06
Chipacaogra: while you're there you could re-file https://bugs.launchpad.net/bugs/183871813:11
mupBug #1838718: Downloaded file is called "snaprcaft.yaml" instead of "snapcraft.yaml" <Snapcraft:New> <https://launchpad.net/bugs/1838718>13:11
ograChipaca, ??13:12
ograENOTMYBUG13:12
Chipacaaw13:14
roadmradopt a bug ❤  🕷  ❤13:14
ograhah13:14
diddledanEWHOCARES13:28
diddledanEGOAWAY13:29
diddledan:-p13:29
diddledanno13:29
diddledanoops13:29
roadmrEHIDANHOWAREYOUDOINGTODAY13:29
diddledanEERRORING13:30
diddledan:-D13:31
diddledanI'm good ta13:31
ijohnson_ETHOSEARENTERRORS13:32
ograEHOWDOYOUKNOW ?13:32
ijohnson_EERRORNOTANERROR13:34
diddledanEIGAVEUPTHINKINGOFMEANINGFULERRORCONSTANTNAMESANDIDONTKNOWWHATTHISERRORACTUALLYIS13:34
diddledanI love those errors, ijohnson_13:34
diddledan"Unknown Error" is a great one, too13:35
diddledanthat's where the developer didn't have a clue what they were doing13:35
ograi still love "Error: success"13:35
tomwardill"Unexpected Error" is also a hit13:35
diddledanyes!13:35
diddledanogra: what about openSSL with their goto fail; on success?!13:35
ograhaha, yeah !13:36
ijohnson_we need more emojis in in error messages E😊😊😊😊😊13:41
roadmrE 🤮13:44
plarsAnyone know of a good way to convince squid to cache downloads from the snap store?  I've set up a simple squid server to try this, and done 'snap set system proxy.http(s)=...' to point it at my proxy, but when I download anything through the store, it doesn't seem to get cached.13:53
plarsno growth of the cache dir, no speedup on subsequent downloads. squid access log occasionally only logs something like: 1564751506.978  51166 192.168.2.96 TCP_TUNNEL/200 14198 CONNECT api.snapcraft.io:443 - HIER_DIRECT/91.189.92.20 -13:53
=== jdstrand_ is now known as jdstrand
diddledanplars: it might be uncached because it's an HTTPS request14:02
diddledanyou need to be intercepting requests for https://fastly.cdn.snapcraft.io14:02
plarsdiddledan: that's what I was thinking, just curious if anyone had any luck getting squid to play nice with that sort of use case. I'm reading up on the ssl_bump stuff on squid which is kind of a terrifying mitm attack I think, and it could be workable if I can figure it out, but would probably take convincing snapd that the cert for squid is valid14:03
zygaplars: snapd will detect mitm attacks14:04
zygaplars: I think you could try setting up the enterprise proxy instead14:04
diddledanthat cost money tho14:05
zygaplars: it's not transparent as you need to opt in but that's one way out14:05
zygadiddledan: not for home use14:05
diddledanaah ok14:05
plarszyga: that's my backup plan, just trying to see if there's something more basic since I don't need any of the revision control stuff14:05
zygaplars: I think that's the only thing that really works14:05
ogra..."opt in to way out" ...14:05
plarszyga: kinda what I figured, thanks for confirmation14:06
diddledancuriously, the fastly cdn is sending this header as part of its response: x-bzr-revision-number: 746414:06
diddledanI wonder what that's about14:06
zygadunno :)14:06
roadmrdiddledan: it's the revision number of the backing service on our side ;)14:08
diddledanyeah I figured it was the django app14:09
roadmrdiddledan: think the commit id of the tree from which the code serving the snap was taken14:09
roadmrplars: shit, sorry :( looks like my squid suggestion is bogus and you'll need the store proxy which is more aware of the content14:10
plarsroadmr: no worries, it was an interesting experiment, and it really is a *good* thing that snapd doesn't want to play nicely with that sort of thing. It would be troubling if it were easy to trick it into downloading some random thing from a proxy pretending to be the store :)14:16
zygaplars: we'd still verify the assertions on the response so it'd be hard to trick anyway14:23
plarsyeah14:23
zygabut at least snapd replies in clear and simple terms that MITM is in progress14:23
Chipacaplars: snap-proxy is a thing14:24
snapuser9Sorry for the late reply, I was thinking about something like retrieving window names (e.g. when in incognito mode of firefox) but apparently no such info is stored inside /proc but rather somewhere else? Chipaca ijohnson_14:24
Chipacaplars: snap-store-proxy*14:24
roadmrChipaca: he knows; we were just wondering if a squid and a simple snap set system.http= would achieve the purpose of faster downloads for frequently-used snaps (he installs a lot)14:24
Chipacaah ok14:24
snapuser9atleast I wasn't able to find anything inside /proc14:24
roadmrChipaca: we're going the store-proxy now :)14:24
* cachio afk14:41
ijohnson_snapuser9: yeah I don't know where window names are stored but snaps shouldn't affect where that is stored, once you figure out what you need access to, feel free to start a forum post and we can try to help you out more15:24
* cachio lunch15:44
=== pstolowski is now known as pstolowski|afk
kenvandineamurray: the drawing snap has been uploaded to the store awaiting manual review :)18:31
mupPR snapd#7074 closed: interfaces: add gpio-control interface <Created by kubiko> <Merged by zyga> <https://github.com/snapcore/snapd/pull/7074>18:33
diddledankenvandine: awesome!18:39
hellsworthhi everyone, i'm new to snap and trying to package a simple gtk application but falling short and seeking some help.21:08
hellsworthI've looked at several forum posts, existing gtk snapcraft.yaml files for examples, and tried lots of things.21:08
hellsworthwould it be best to put all the hairy details into a forum post?21:08
diddledanhellsworth: might be worth a forum post. being that we've got the weekend just appearing in a few hours most of the canonical folk will be elsewhere till monday21:09
hellsworthah yes good point. a forum post it is then!21:10
amurraykenvandine: approved (but perhaps too soon - I am seeing the following error: https://paste.ubuntu.com/p/wkhbcXKhzz/ )21:31
amurraykenvandine: I'm about to board my flight home so will catch you next week - cheers21:32
kenvandineThanks21:32
kenvandineamurray: safe travels21:33
mupPR snapcraft#2653 opened: scriplets: run override-pull on update_pull <Created by cjp256> <https://github.com/snapcore/snapcraft/pull/2653>23:01

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!