#linuxcnc-devel | Logs for 2015-12-15

Back
[08:35:57] <JT-Shop> can someone check the instructions for gladevcp hello world to add as a tab into Axis? I've tried on mint and ubuntu and the tab shows up but the contents do not
[08:36:25] <JT-Shop> EMBED_TAB_COMMAND = gladevcp -H hw.hal -w {XID} hw.ui
[08:36:36] <JT-Shop> I suspect something is wrong with this command
[08:36:59] <cradek> do you get an error message in the terminal?
[08:44:20] <JT-Shop> let me check
[08:45:57] <JT-Shop> yep
[08:46:08] <JT-Shop> gladevcp: no such option -w
[08:46:22] <JT-Shop> I wonder if it should be -W
[08:47:31] <seb_kuzminsky> JT-Shop: the gladevcp in master has neither -w or -W
[08:47:45] <seb_kuzminsky> there's a -x XID
[08:47:55] <JT-Shop> let me try x
[08:48:30] <seb_kuzminsky> the manpage agrees (i went to the source code first)
[08:48:38] <JT-Shop> yep, a typo for sure in the example
[08:48:46] <JT-Shop> -x works
[08:48:47] <seb_kuzminsky> great, thanks for catching it
[08:48:52] <JT-Shop> I'll fix it in a bit
[09:11:14] <jthornton> well I fixed that and when I try to run it directly from a terminal with gladevcp hw.ui I get RTAPI: ERROR: could not open shared memory (No such file or directory)
[09:11:14] <jthornton> HAL: ERROR: could not initialize RTAPI
[09:11:14] <jthornton> *** GLADE VCP ERROR: Asking for a HAL component using a name that already exists.
[09:11:26] <jthornton> just testing the instructions...
[09:15:39] <seb_kuzminsky> jthornton: sounds like there's a hal component using that name already, did you leave one running?
[09:15:56] <seb_kuzminsky> maybe running it with the incorrect -w earlier left it behind in some kind of undead zombie state?
[09:16:09] <seb_kuzminsky> yay, snow day here in boulder
[09:16:15] <seb_kuzminsky> bbl
[09:22:33] <JT-Shop> I'll check
[09:33:03] <skunkworks> lHE0%W+B}aBc
[09:33:06] <skunkworks> heh
[09:33:07] <skunkworks> opps
[09:33:17] <cradek> great password
[09:33:21] <skunkworks> good thing no one knows what that password would be fore
[09:33:23] <skunkworks> for
[09:33:39] <skunkworks> http://www.cnczone.com/forums/diy-cnc-router-table-machines/244370-cnc-software-3.html#post1798660
[09:33:50] <skunkworks> auto generated - the best
[09:34:04] <skunkworks> users freak out about them..
[09:37:49] <archivist> are we running joomla?
[09:38:02] <skunkworks> 3.141" per rev of the servo.. yikes
[09:38:32] <archivist> sounds like a poor setup on that thread
[09:39:05] <cradek> yeah seems like no surprise that's coggy
[09:39:22] <cradek> I have no advice but I hope it works out
[09:39:41] <skunkworks> cool he is able to graph it now..
[09:45:01] <archivist> I never understand why people expect perfection from gearing
[10:38:53] <cncbasher_> is their a problem with pncconf in 2.7 ?
[10:43:18] <skunkworks> cncbasher_, heh - a bit more specific?
[10:43:50] <cncbasher_> haha
[10:44:12] <cncbasher_> python 2.7 pages.py
[10:44:48] <cncbasher_> just getting traceback errors
[11:17:45] <cncbasher_> http://postimg.org/image/igr9mo0e1/
[11:17:53] <cncbasher_> pncconf error
[11:22:51] <cradek> the error from pncconf-rip.sh in your terminal might be important
[11:32:15] <cncbasher_> i get the same errors , both on an installed version & a rip
[11:32:38] <cncbasher_> it only gets to the hal section on the ini then stops creating
[11:44:27] <skunkworks> wow - I fail at computers today. I miss dragged and almost sent fenn 2 database files. I probably should step away from the keyboard...
[11:48:49] <cncbasher_> i'm glad someone else has those days too
[11:54:02] <fenn> now i have your database and your password! muwahahaha
[12:05:04] <cncbasher_> bbl
[12:26:11] <skunkworks> fenn, :)
[13:18:47] <jepler> archivist: yes, forum.linuxcnc.org runs joomla. I updated it yesterday.
[13:35:29] <mozmck> jepler: I'm not so sure you can say that Ubuntu failed to communicate their brltty "fix" upstream. According to this message the bug is that brltty is installed at all: https://lists.debian.org/debian-accessibility/2013/09/msg00012.html
[13:36:18] <mozmck> It looks more like a difference of opinion on what the fix should even be.
[13:39:55] <jepler> mozmck: yes the bug is possibly "brltty is installed at all", but if the Ubuntu fix is in the debian/ directory then the upstream that needs to get the fix is Debian
[13:40:09] <jepler> but there's no sign that they attempted to upstream to brltty or to debian
[13:41:47] <mozmck> Are you saying that if the packaging is different then that needs to go back to debian? What if debian doesn't want it?
[13:43:05] <jepler> If the bug and its fix haven't been communicated to Debian by Ubuntu, how do we know whether Debian wants it or not?
[13:43:35] <jepler> Yes, attempts to upstream changes can fail due to either side and I am absolutely certain it often fails because of inaction by a Debian developer after receiving a report from Ubuntu
[13:43:57] <jepler> Or because the debian developer disagrees with the change or whatever
[13:44:06] <mozmck> I don't know how we would know if it hadn't been communicated
[13:44:16] <jepler> ubuntu's launchpad tracks it
[13:44:39] <jepler> if ubuntu has communicated the bug upstream to debian or to a project that uses a compatible bugtracker (bugzillas, sourceforge and github all qualify) then it's noted in the launchpad bug
[13:44:50] <mozmck> oh, I see - I didn't know that.
[13:45:06] <cradek> my understanding is the braille device is defective, and uses the ID of the generic usb->serial converter chip in it
[13:45:19] <mozmck> That's what it looks like.
[13:45:36] <cradek> the user with this problem had a non-braille generic usb->serial converter, for running a modbus device, plugged in when he installed
[13:45:56] <cradek> if he had known that was a problem, he could have just unplugged the thing when he installed
[13:46:03] <jepler> so here's an example of a launchpad issue that is also reported against debian: https://bugs.launchpad.net/glibc/+bug/33140 (just a random first one I found, no significance to what it is)
[13:47:10] <jepler> you see near the top 'debbugs #373555' which is the link from this bug to the debian bug tracker
[13:47:34] <mozmck> I see.
[13:48:08] <jepler> it's the trademark policy that makes me quake in my boots at the idea of shipping an ubuntu-derived iso from linuxcnc.org though
[13:48:13] <mozmck> Well, I'm sure it's hard for everyone to always do it all the proper way - or even know what that is.
[13:48:18] <jepler> after going through the trademark ordeal with emc corp
[13:48:45] <mozmck> I need to look at that policy again... I do remember they want you to remove all of their trademarks.
[13:50:30] <jepler> > Any redistribution of modified versions of Ubuntu must be approved, certified or provided by Canonical if you are going to associate it with the Trademarks. Otherwise you must remove and replace the Trademarks and will need to recompile the source code to create your own binaries
[13:50:58] <cradek> they're off their rockers
[13:51:07] <mozmck> I think the re-compile is for programs that have their trademarks compiled in.
[13:51:24] <jepler> mozmck: that may or may not be true. they do not provide a list of the packages they say are affected.
[13:51:44] <mozmck> Xubuntu put together a list of things that would need to be done and packages affected I think, I'll have to find it.
[13:53:16] <jepler> > You cannot use Canonical’s patented materials without our permission.
[13:53:38] <jepler> both those texts are from http://www.ubuntu.com/legal/terms-and-policies/intellectual-property-policy
[13:54:05] <jepler> > Canonical owns intellectual property rights in the trade dress and look and feel of Ubuntu (including the Unity interface), along with various themes and components that may include unregistered design rights, registered design rights and design patents, your use of Ubuntu is subject to these rights.
[13:54:38] <jepler> OK, so you can't use Unity on your Ubuntu derivative
[13:54:51] <jepler> they really enrage me
[13:54:59] <jepler> they are not good members of the Free software community
[13:55:17] <mozmck> Oh wow, well, I can't stand Unity anyhow :-)
[13:55:35] <mozmck> Or Gnome3 for that matter.
[13:55:58] <mozmck> Xubuntu would be easier, but would still have some of the same issues: http://xubuntu.org/dev/derivatives/
[13:56:23] <mozmck> debian is much more derivative friendly for sure.
[13:56:31] <jepler> they "clarified" their policy with a GPL exception for the trademark portion, but not the patent portion
[14:01:07] <jepler> anyway I absolutely think others should do what they want, but their eyes should be open. I'll continue not touching Ubuntu with a ten-foot pole
[14:02:48] <mozmck> The discussion is good. I may consider using Jessie instead. I would think I could make it for the linuxcnc project as well - although ours would need some different tweaks.
[14:04:29] <cradek> that's great - it would be nice if we didn't duplicate work. I think we're going to want a jessie live/install image one of these days too.
[14:05:18] <mozmck> Yes, that's my thought. I would probably want to stick with Xfce for my use - but I think a lot of linuxcnc users may prefer Mate?
[14:06:15] <cradek> I'd like it if mate came on debian and worked well, without the troubles I saw with mint (inept packaging)
[14:06:47] <mozmck> I haven't used mate much on anything. Jessie does come with mate
[14:07:01] <cradek> I should try that
[14:07:24] <cradek> although I bet I'll find that it's fine
[14:07:33] <cradek> I don't use many of the guiish things
[14:07:45] <cradek> so my feelings about it are fairly useless
[14:08:05] <mozmck> I like it fine the little I've run it. It always liked gnome2 and mate is basically that with updates.
[14:08:52] <mozmck> Only thing I have to consider is if I want the support issues that might come with having both xfce and mate desktops in the field.
[14:11:52] <Roguish> mozmck: debian is fine with mate. not too bad with xfce but I personally like mate better. cleaner.
[14:13:31] <mozmck> cleaner how? I really like xfce if set up right. I use the whisker menu, and for my desktop I use the Nemo file manager (forked from Nautilus)
[14:18:29] <cradek> I would really not put a choice on the CD
[14:18:40] <cradek> you should pick one that's not overtly broken and go with it
[15:01:47] <Roguish> cradek: totally agree.
[15:07:47] <cncbasher_> sould we not look at a cut down or slimmed distribution , is their any benefit , it would bring ?
[15:09:27] <Roguish> oh, heck yeah. leave out all the multimedia, games, and office stuff. include editors, samba, and useful things.
[15:09:50] <Roguish> bare essentials. it's a machine controller.
[16:02:49] <mozmck> bash scripting is killing me! pkexec ./script tells me No such file or directory, but gksudo ./script works fine
[16:28:27] <archivist> jepler, this was posted in #mysql today <Iota> Whelp, every Joomla install from 1.5.0 to 3.4.5 is vulnerable because they don't sanitize their user-agent string when writting it to the database... :/
[16:34:45] <jepler> archivist: yes, we have the patch for that problem assuming joomla people got it right
[16:35:09] <jepler> Joomla! is up-to-date.
[16:35:09] <jepler> All extensions are up-to-date.
[16:35:17] <JT-Shop> YIPPIE!
[16:36:28] <archivist> :)
[16:46:48] <JT-Shop> after rebooting and testing gladevcp hello world to run independently with gladevcp hw.ui I get this error gladevcp hw.ui
[16:46:48] <JT-Shop> RTAPI: ERROR: could not open shared memory (No such file or directory)
[16:46:49] <JT-Shop> HAL: ERROR: could not initialize RTAPI
[16:46:49] <JT-Shop> *** GLADE VCP ERROR: Asking for a HAL component using a name that already exists.
[20:22:51] <cradek> I'm agog at jepler's wizard-level suckage removal
[20:27:56] <jepler> the bad news is, it looks like the recently disclosed joomla user agent sql exploit was used on us as early as December 8
[20:29:04] <cradek> uh-oh
[20:29:15] <cradek> do you see damage?
[20:29:42] <jepler> no, I looked in the access.log for user agent strings
[20:29:57] <jepler> and I found one starting "http://google.com';declare @b cursor; ..."
[20:30:02] <jepler> well a lot of them of course
[20:31:07] <jepler> In fact as long ago as November 11
[20:33:00] <cradek> I'm so sad that our systems are such that we write the same bugs decade after decade
[20:41:16] <jepler> I've searched a sql dump for the strings that were intended to be inserted by some of these attacks, and I haven't found any of them so far
[20:43:10] <jepler> same with google searches site:forum.linuxcnc.org for the same terms and URLs
[20:47:32] <cradek> oh good.
[20:48:10] <jepler> hmm this appears to be a different, older exploit that I've been finding. They don't match what is disclosed here about the new exploit https://blog.sucuri.net/2015/12/remote-command-execution-vulnerability-in-joomla.html
[20:48:40] <jepler> user agent strings are shown starting "}" and containing JDatabaseDriverMysqli and none of our log entries match