#archlinux32 | Logs for 2024-09-01

Back
[00:01:08] -!- drathir_tor has joined #archlinux32
[01:19:26] -!- drathir_tor has quit [Ping timeout: 260 seconds]
[01:30:32] -!- drathir_tor has joined #archlinux32
[02:12:59] -!- gehidore has quit [Read error: Connection reset by peer]
[02:23:20] -!- gehidore has joined #archlinux32
[05:00:54] -!- sunshavi has quit [Ping timeout: 276 seconds]
[05:36:12] -!- sunshavi has joined #archlinux32
[06:12:25] -!- mvchtz has joined #archlinux32
[06:53:02] -!- ssserpent has joined #archlinux32
[07:32:06] -!- buildmaster has quit [Read error: Connection reset by peer]
[07:36:20] -!- buildmaster has joined #archlinux32
[07:37:59] -!- titus_livius has joined #archlinux32
[08:00:17] -!- ssserpent has quit [Ping timeout: 255 seconds]
[08:23:48] -!- ssserpent has joined #archlinux32
[08:54:24] -!- drathir_tor has quit [Remote host closed the connection]
[08:54:58] -!- drathir_tor has joined #archlinux32
[11:06:56] -!- AtleoS has quit [Ping timeout: 252 seconds]
[11:07:14] -!- AtleoS has joined #archlinux32
[11:18:50] -!- man has joined #archlinux32
[11:21:10] -!- gehidore has quit [Read error: Connection reset by peer]
[11:23:57] -!- man has quit [Ping timeout: 246 seconds]
[11:26:10] -!- gehidore has joined #archlinux32
[13:08:04] <KitsuWhooa> the website is fucked again
[13:12:30] <KitsuWhooa> and also wtf is going on here https://archive-server.archlinux32.org
[15:46:29] -!- T`aZ has quit [Ping timeout: 248 seconds]
[15:48:28] -!- T`aZ has joined #archlinux32
[17:08:02] -!- gehidore has quit [Read error: Connection reset by peer]
[17:08:04] -!- man has joined #archlinux32
[17:17:16] man is now known as gehidore
[18:57:27] -!- ssserpent has quit [Quit: WeeChat 4.4.1]
[19:04:14] <girls> KitsuWhooa: maybe the keys changed? Let me check.
[19:04:26] <KitsuWhooa> appreciated
[19:04:31] <KitsuWhooa> speaking of keys
[19:04:39] <KitsuWhooa> abaumann: you should fix your key :p
[19:07:25] <girls> or did you already and we just need to create a new keyring package?
[19:07:57] <girls> apparently, I didn't do a `git fetch` on the kernel repo for a long time ...
[19:10:46] <girls> hmm, at least in _my_ kernel clone, v6.10 is still signed by torvalds ABAF11C65A2970B130ABE3C479BE3E4300411886
[19:11:26] <KitsuWhooa> I suspect the error message is misleading
[19:11:31] <KitsuWhooa> just like with anything gpg related
[19:11:36] <girls> :D
[19:12:29] <girls> gpg: Can't check signature: No public key
[19:14:16] <girls> someone(tm) commented out the key sync ;)
[19:14:32] <KitsuWhooa> oh :p
[19:14:40] <KitsuWhooa> git blame
[19:14:50] <girls> it's not git O.O
[19:14:58] <KitsuWhooa> awh
[19:15:09] <girls> it is in git _somewhere_
[19:17:26] <girls> https://git.eckner.net
[19:17:27] <phrik> Title: Erich/archive-server - Unnamed repository; edit this file 'description' to name the repository. (at git.eckner.net)
[19:17:35] <KitsuWhooa> oh, this isn't buff-di-wuff?
[19:17:40] <girls> no
[19:17:59] <girls> buff-di-wuff caches stuff by hash - for the case that upstreams go offline or re-release stuff
[19:18:16] <girls> the archive-server offers a tar-ball'ed download of git repositories
[19:18:28] <girls> so build slaves do not have to clone the whole linux git tree just to build a kernel
[19:18:50] <KitsuWhooa> we might have to find a way to automate this tbh
[19:18:57] <KitsuWhooa> upstream has been using git for a lot of things
[19:18:58] <girls> it _is_ automated
[19:19:07] <KitsuWhooa> the linux packages have custom patches in them
[19:19:09] <girls> ah, you mean the source-replacement?
[19:19:11] <KitsuWhooa> yeah
[19:19:29] <girls> cloning stuff into the archive server is also a manual step - due to security considerations
[19:19:39] <KitsuWhooa> oh
[19:19:53] <KitsuWhooa> I didn't realise there are possible security issues
[19:19:56] <girls> i.e. when you request an unknown repository, only a note thereof gets saved and you get a 5xx delivered
[19:20:16] <girls> you don't want people to be able to clone arbitrary things on the buildmaster
[19:20:30] <KitsuWhooa> can we not limit it to builders
[19:20:32] <girls> "people" meaning "anyone in the internet"
[19:20:34] <KitsuWhooa> using ssh somehow
[19:21:20] <girls> since the buildmaster itself will download the package first (to check the checksums), I think, we could only allow it for the buildmaster, hmmm.
[19:21:30] <KitsuWhooa> builder could try to request a repo, get a "not found", then use the ssh connection to request a clone
[19:22:49] <girls> I think, a first step would be to make it more convenient to exchange a git clone with a tarball download - e.g. provide some helper function, that should be called in the PKGBUILD (via patch)
[19:23:11] <KitsuWhooa> yup
[19:23:14] <girls> then it would be a two-step process: patch the PKGBUILD, clone the repo (both manual steps)
[19:23:32] <KitsuWhooa> tbh even forcing a shallow clone might be good enough
[19:23:52] <girls> maybe upstream does this by now?
[19:24:05] <girls> IDK, I've been a bit out of the loop for some time :-/
[19:24:12] <KitsuWhooa> I don't think so
[19:24:20] <girls> :-(
[19:27:11] <girls> f73f04a3 (Erich Eckner 2019-08-29 10:12:54 +0200 71) /* shell_exec(
[19:27:16] <girls> hehe
[19:27:43] <KitsuWhooa> sometimes I'm surprised you used php
[19:27:57] <KitsuWhooa> could've written cgi scripts in bash :p
[19:28:02] <girls> :D
[19:28:33] <girls> I've recently written something in this direction to get my docker status to http
[19:29:03] <KitsuWhooa> heh
[19:29:32] <KitsuWhooa> I assume using CGI scripts in Apache is still easy
[19:29:52] <KitsuWhooa> on nginx I have to set up fcgiwrap, and if I'm going through that effort, I might as well use php
[19:29:57] <girls> ok, git should work again - I imported Torvald's key to the right GNUPGHOME now
[19:30:02] <KitsuWhooa> thanks!
[19:31:06] <girls> https://git.eckner.net
[19:31:08] <phrik> Title: Erich/docker-status - [no description] (at git.eckner.net)
[19:31:22] <girls> but for some reason, my cgit is currently down (I suspect Claudbot)
[19:31:37] <KitsuWhooa> I assume you know about the CSS being broken
[19:31:53] <girls> which? mine?
[19:32:03] <girls> no?
[19:32:05] <KitsuWhooa> yeah
[19:32:15] <KitsuWhooa> oh
[19:32:18] <KitsuWhooa> it's just returning 503
[19:32:22] <girls> exactly
[19:32:28] <KitsuWhooa> I can see the page
[19:32:32] <KitsuWhooa> but the css request is 503
[19:33:09] <KitsuWhooa> ...did buildmaster deadlock or something
[19:33:28] <girls> maybe I set the rate limiting a bit too low (on my cgit)
[19:33:32] <girls> what's up with buildmaster?
[19:33:33] <buildmaster> up? I'm up for 11 hours, 59 minutes, load average: 0.95, 1.46, 1.78
[19:33:40] <girls> hehe
[19:33:46] <KitsuWhooa> is it behind a proxy? Maybe you need to set some headers
[19:33:53] <KitsuWhooa> so that it doesn't think every request is coming from the same IP
[19:34:02] <KitsuWhooa> > come back (shortly) later - I cannot lock build list.
[19:34:04] <KitsuWhooa> everything just froze
[19:34:06] <girls> nope, the rate limit is on the front nginx
[19:34:11] <KitsuWhooa> ah
[19:35:31] <girls> maybe I should allow a higher rate, but respond with 301 to google or so in case the limit got hit :D
[19:37:30] <KitsuWhooa> there's a bunch of intentions that seem to be sitting there
[19:37:59] <girls> intention 5 is currently being run
[19:38:21] <KitsuWhooa> oh it is running
[19:38:44] <KitsuWhooa> I was looking at htop and I wasn't seeing much going on
[19:45:18] <girls> 2024/09/01 21:45:03 [emerg] 1667078#1667078: value must be between 400 and 599
[19:45:28] <girls> I cannot redirect on hitting the rate limit :-(
[19:46:42] <KitsuWhooa> huh
[19:49:08] <girls> ah, I have to declare it as error page :D
[19:49:24] <KitsuWhooa> that's not a redirect though
[19:49:35] <girls> but it works like one
[19:49:42] <KitsuWhooa> it serves it in place, no?
[19:49:50] <KitsuWhooa> which I guess is the correct course of action
[19:49:51] <girls> no, it changes the url
[19:49:53] <KitsuWhooa> oh
[19:49:57] <girls> limit_req zone=limit_git;
[19:49:57] <girls> limit_req_status 429;
[19:49:57] <girls> limit_conn_status 429;
[19:49:59] <girls> error_page 429 https://eckner.net
[19:50:23] <girls> when the rate-limit kicks in, I just see my front-page
[19:53:05] <girls> ok, gotta go - cu!
[19:54:27] <KitsuWhooa> see ya
[19:54:35] <KitsuWhooa> still waiting for that intention
[19:55:03] <KitsuWhooa> hopefully it's done before I have to head off too
[20:23:26] <KitsuWhooa> I still think it's stuck but w/e, we'll see
[20:26:39] <KitsuWhooa> > Build master is not sane.
[20:26:41] <KitsuWhooa> lol
[21:10:01] -!- drathir_tor has quit [Ping timeout: 260 seconds]
[21:15:47] -!- drathir_tor has joined #archlinux32