Reset git tree
This commit is contained in:
commit
40545022f6
431 changed files with 4686 additions and 0 deletions
34
.build.yml
Normal file
34
.build.yml
Normal file
|
@ -0,0 +1,34 @@
|
|||
image: nixos/latest
|
||||
sources:
|
||||
- https://git.sr.ht/~cyplo/blog
|
||||
|
||||
secrets:
|
||||
- 6c23a8c1-7a30-4a7e-b3b7-0171e898a7d3
|
||||
- 47d167ed-ef43-4515-9923-6954d34a4fab
|
||||
|
||||
oauth: pages.sr.ht/PAGES:RW
|
||||
|
||||
tasks:
|
||||
- fetch_tools: |
|
||||
cd blog
|
||||
nix-shell --pure --run 'date'
|
||||
- github_push: |
|
||||
set +xv
|
||||
cd blog
|
||||
GITHUB_TOKEN=`cat ~/.github_token`
|
||||
git remote add github https://cyplo:$GITHUB_TOKEN@github.com/cyplo/blog.git
|
||||
nix-shell --pure --run 'git push github --all --force'
|
||||
- build: |
|
||||
cd blog
|
||||
nix-shell --pure --run 'hugo --gc --minify'
|
||||
- netlify_publish: |
|
||||
set +xv
|
||||
cd blog
|
||||
export NETLIFY_TOKEN=`cat ~/.netlify_token`
|
||||
if [ `git branch --contains HEAD | grep -i master` ]; then nix-shell --pure --keep NETLIFY_TOKEN --run 'netlify-deployer master 7a0944f0-cfd0-424b-8252-ca44fc950350 public'; fi
|
||||
- package: |
|
||||
tar -C blog/public -cv . > site.tar
|
||||
gzip --best site.tar
|
||||
ls -hal site.tar.gz
|
||||
- sourcehut_upload: |
|
||||
acurl -i -f https://pages.sr.ht/publish/cyplo.srht.site -Fcontent=@site.tar.gz
|
1
.envrc
Normal file
1
.envrc
Normal file
|
@ -0,0 +1 @@
|
|||
eval "$(lorri direnv)"
|
3
.github/FUNDING.yml
vendored
Normal file
3
.github/FUNDING.yml
vendored
Normal file
|
@ -0,0 +1,3 @@
|
|||
# These are supported funding model platforms
|
||||
liberapay: cyplo
|
||||
patreon: cyplo
|
2
.gitignore
vendored
Normal file
2
.gitignore
vendored
Normal file
|
@ -0,0 +1,2 @@
|
|||
public/
|
||||
resources/_gen/
|
10
.gitlab-ci.yml
Normal file
10
.gitlab-ci.yml
Normal file
|
@ -0,0 +1,10 @@
|
|||
image: monachus/hugo
|
||||
|
||||
variables:
|
||||
GIT_SUBMODULE_STRATEGY: recursive
|
||||
|
||||
pages:
|
||||
tags:
|
||||
- docker
|
||||
script:
|
||||
- hugo
|
3
.gitmodules
vendored
Normal file
3
.gitmodules
vendored
Normal file
|
@ -0,0 +1,3 @@
|
|||
[submodule "themes/beautifulhugo"]
|
||||
path = themes/beautifulhugo
|
||||
url = https://github.com/halogenica/beautifulhugo.git
|
104
LICENSE
Normal file
104
LICENSE
Normal file
|
@ -0,0 +1,104 @@
|
|||
Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International Public License
|
||||
|
||||
By exercising the Licensed Rights (defined below), You accept and agree to be bound by the terms and conditions of this Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International Public License ("Public License"). To the extent this Public License may be interpreted as a contract, You are granted the Licensed Rights in consideration of Your acceptance of these terms and conditions, and the Licensor grants You such rights in consideration of benefits the Licensor receives from making the Licensed Material available under these terms and conditions.
|
||||
|
||||
Section 1 – Definitions.
|
||||
|
||||
Adapted Material means material subject to Copyright and Similar Rights that is derived from or based upon the Licensed Material and in which the Licensed Material is translated, altered, arranged, transformed, or otherwise modified in a manner requiring permission under the Copyright and Similar Rights held by the Licensor. For purposes of this Public License, where the Licensed Material is a musical work, performance, or sound recording, Adapted Material is always produced where the Licensed Material is synched in timed relation with a moving image.
|
||||
Adapter's License means the license You apply to Your Copyright and Similar Rights in Your contributions to Adapted Material in accordance with the terms and conditions of this Public License.
|
||||
BY-NC-SA Compatible License means a license listed at creativecommons.org/compatiblelicenses, approved by Creative Commons as essentially the equivalent of this Public License.
|
||||
Copyright and Similar Rights means copyright and/or similar rights closely related to copyright including, without limitation, performance, broadcast, sound recording, and Sui Generis Database Rights, without regard to how the rights are labeled or categorized. For purposes of this Public License, the rights specified in Section 2(b)(1)-(2) are not Copyright and Similar Rights.
|
||||
Effective Technological Measures means those measures that, in the absence of proper authority, may not be circumvented under laws fulfilling obligations under Article 11 of the WIPO Copyright Treaty adopted on December 20, 1996, and/or similar international agreements.
|
||||
Exceptions and Limitations means fair use, fair dealing, and/or any other exception or limitation to Copyright and Similar Rights that applies to Your use of the Licensed Material.
|
||||
License Elements means the license attributes listed in the name of a Creative Commons Public License. The License Elements of this Public License are Attribution, NonCommercial, and ShareAlike.
|
||||
Licensed Material means the artistic or literary work, database, or other material to which the Licensor applied this Public License.
|
||||
Licensed Rights means the rights granted to You subject to the terms and conditions of this Public License, which are limited to all Copyright and Similar Rights that apply to Your use of the Licensed Material and that the Licensor has authority to license.
|
||||
Licensor means the individual(s) or entity(ies) granting rights under this Public License.
|
||||
NonCommercial means not primarily intended for or directed towards commercial advantage or monetary compensation. For purposes of this Public License, the exchange of the Licensed Material for other material subject to Copyright and Similar Rights by digital file-sharing or similar means is NonCommercial provided there is no payment of monetary compensation in connection with the exchange.
|
||||
Share means to provide material to the public by any means or process that requires permission under the Licensed Rights, such as reproduction, public display, public performance, distribution, dissemination, communication, or importation, and to make material available to the public including in ways that members of the public may access the material from a place and at a time individually chosen by them.
|
||||
Sui Generis Database Rights means rights other than copyright resulting from Directive 96/9/EC of the European Parliament and of the Council of 11 March 1996 on the legal protection of databases, as amended and/or succeeded, as well as other essentially equivalent rights anywhere in the world.
|
||||
You means the individual or entity exercising the Licensed Rights under this Public License. Your has a corresponding meaning.
|
||||
|
||||
Section 2 – Scope.
|
||||
|
||||
License grant.
|
||||
Subject to the terms and conditions of this Public License, the Licensor hereby grants You a worldwide, royalty-free, non-sublicensable, non-exclusive, irrevocable license to exercise the Licensed Rights in the Licensed Material to:
|
||||
reproduce and Share the Licensed Material, in whole or in part, for NonCommercial purposes only; and
|
||||
produce, reproduce, and Share Adapted Material for NonCommercial purposes only.
|
||||
Exceptions and Limitations. For the avoidance of doubt, where Exceptions and Limitations apply to Your use, this Public License does not apply, and You do not need to comply with its terms and conditions.
|
||||
Term. The term of this Public License is specified in Section 6(a).
|
||||
Media and formats; technical modifications allowed. The Licensor authorizes You to exercise the Licensed Rights in all media and formats whether now known or hereafter created, and to make technical modifications necessary to do so. The Licensor waives and/or agrees not to assert any right or authority to forbid You from making technical modifications necessary to exercise the Licensed Rights, including technical modifications necessary to circumvent Effective Technological Measures. For purposes of this Public License, simply making modifications authorized by this Section 2(a)(4) never produces Adapted Material.
|
||||
Downstream recipients.
|
||||
Offer from the Licensor – Licensed Material. Every recipient of the Licensed Material automatically receives an offer from the Licensor to exercise the Licensed Rights under the terms and conditions of this Public License.
|
||||
Additional offer from the Licensor – Adapted Material. Every recipient of Adapted Material from You automatically receives an offer from the Licensor to exercise the Licensed Rights in the Adapted Material under the conditions of the Adapter’s License You apply.
|
||||
No downstream restrictions. You may not offer or impose any additional or different terms or conditions on, or apply any Effective Technological Measures to, the Licensed Material if doing so restricts exercise of the Licensed Rights by any recipient of the Licensed Material.
|
||||
No endorsement. Nothing in this Public License constitutes or may be construed as permission to assert or imply that You are, or that Your use of the Licensed Material is, connected with, or sponsored, endorsed, or granted official status by, the Licensor or others designated to receive attribution as provided in Section 3(a)(1)(A)(i).
|
||||
|
||||
Other rights.
|
||||
Moral rights, such as the right of integrity, are not licensed under this Public License, nor are publicity, privacy, and/or other similar personality rights; however, to the extent possible, the Licensor waives and/or agrees not to assert any such rights held by the Licensor to the limited extent necessary to allow You to exercise the Licensed Rights, but not otherwise.
|
||||
Patent and trademark rights are not licensed under this Public License.
|
||||
To the extent possible, the Licensor waives any right to collect royalties from You for the exercise of the Licensed Rights, whether directly or through a collecting society under any voluntary or waivable statutory or compulsory licensing scheme. In all other cases the Licensor expressly reserves any right to collect such royalties, including when the Licensed Material is used other than for NonCommercial purposes.
|
||||
|
||||
Section 3 – License Conditions.
|
||||
|
||||
Your exercise of the Licensed Rights is expressly made subject to the following conditions.
|
||||
|
||||
Attribution.
|
||||
|
||||
If You Share the Licensed Material (including in modified form), You must:
|
||||
retain the following if it is supplied by the Licensor with the Licensed Material:
|
||||
identification of the creator(s) of the Licensed Material and any others designated to receive attribution, in any reasonable manner requested by the Licensor (including by pseudonym if designated);
|
||||
a copyright notice;
|
||||
a notice that refers to this Public License;
|
||||
a notice that refers to the disclaimer of warranties;
|
||||
a URI or hyperlink to the Licensed Material to the extent reasonably practicable;
|
||||
indicate if You modified the Licensed Material and retain an indication of any previous modifications; and
|
||||
indicate the Licensed Material is licensed under this Public License, and include the text of, or the URI or hyperlink to, this Public License.
|
||||
You may satisfy the conditions in Section 3(a)(1) in any reasonable manner based on the medium, means, and context in which You Share the Licensed Material. For example, it may be reasonable to satisfy the conditions by providing a URI or hyperlink to a resource that includes the required information.
|
||||
If requested by the Licensor, You must remove any of the information required by Section 3(a)(1)(A) to the extent reasonably practicable.
|
||||
ShareAlike.
|
||||
|
||||
In addition to the conditions in Section 3(a), if You Share Adapted Material You produce, the following conditions also apply.
|
||||
The Adapter’s License You apply must be a Creative Commons license with the same License Elements, this version or later, or a BY-NC-SA Compatible License.
|
||||
You must include the text of, or the URI or hyperlink to, the Adapter's License You apply. You may satisfy this condition in any reasonable manner based on the medium, means, and context in which You Share Adapted Material.
|
||||
You may not offer or impose any additional or different terms or conditions on, or apply any Effective Technological Measures to, Adapted Material that restrict exercise of the rights granted under the Adapter's License You apply.
|
||||
|
||||
Section 4 – Sui Generis Database Rights.
|
||||
|
||||
Where the Licensed Rights include Sui Generis Database Rights that apply to Your use of the Licensed Material:
|
||||
|
||||
for the avoidance of doubt, Section 2(a)(1) grants You the right to extract, reuse, reproduce, and Share all or a substantial portion of the contents of the database for NonCommercial purposes only;
|
||||
if You include all or a substantial portion of the database contents in a database in which You have Sui Generis Database Rights, then the database in which You have Sui Generis Database Rights (but not its individual contents) is Adapted Material, including for purposes of Section 3(b); and
|
||||
You must comply with the conditions in Section 3(a) if You Share all or a substantial portion of the contents of the database.
|
||||
|
||||
For the avoidance of doubt, this Section 4 supplements and does not replace Your obligations under this Public License where the Licensed Rights include other Copyright and Similar Rights.
|
||||
|
||||
Section 5 – Disclaimer of Warranties and Limitation of Liability.
|
||||
|
||||
Unless otherwise separately undertaken by the Licensor, to the extent possible, the Licensor offers the Licensed Material as-is and as-available, and makes no representations or warranties of any kind concerning the Licensed Material, whether express, implied, statutory, or other. This includes, without limitation, warranties of title, merchantability, fitness for a particular purpose, non-infringement, absence of latent or other defects, accuracy, or the presence or absence of errors, whether or not known or discoverable. Where disclaimers of warranties are not allowed in full or in part, this disclaimer may not apply to You.
|
||||
To the extent possible, in no event will the Licensor be liable to You on any legal theory (including, without limitation, negligence) or otherwise for any direct, special, indirect, incidental, consequential, punitive, exemplary, or other losses, costs, expenses, or damages arising out of this Public License or use of the Licensed Material, even if the Licensor has been advised of the possibility of such losses, costs, expenses, or damages. Where a limitation of liability is not allowed in full or in part, this limitation may not apply to You.
|
||||
|
||||
The disclaimer of warranties and limitation of liability provided above shall be interpreted in a manner that, to the extent possible, most closely approximates an absolute disclaimer and waiver of all liability.
|
||||
|
||||
Section 6 – Term and Termination.
|
||||
|
||||
This Public License applies for the term of the Copyright and Similar Rights licensed here. However, if You fail to comply with this Public License, then Your rights under this Public License terminate automatically.
|
||||
|
||||
Where Your right to use the Licensed Material has terminated under Section 6(a), it reinstates:
|
||||
automatically as of the date the violation is cured, provided it is cured within 30 days of Your discovery of the violation; or
|
||||
upon express reinstatement by the Licensor.
|
||||
For the avoidance of doubt, this Section 6(b) does not affect any right the Licensor may have to seek remedies for Your violations of this Public License.
|
||||
For the avoidance of doubt, the Licensor may also offer the Licensed Material under separate terms or conditions or stop distributing the Licensed Material at any time; however, doing so will not terminate this Public License.
|
||||
Sections 1, 5, 6, 7, and 8 survive termination of this Public License.
|
||||
|
||||
Section 7 – Other Terms and Conditions.
|
||||
|
||||
The Licensor shall not be bound by any additional or different terms or conditions communicated by You unless expressly agreed.
|
||||
Any arrangements, understandings, or agreements regarding the Licensed Material not stated herein are separate from and independent of the terms and conditions of this Public License.
|
||||
|
||||
Section 8 – Interpretation.
|
||||
|
||||
For the avoidance of doubt, this Public License does not, and shall not be interpreted to, reduce, limit, restrict, or impose conditions on any use of the Licensed Material that could lawfully be made without permission under this Public License.
|
||||
To the extent possible, if any provision of this Public License is deemed unenforceable, it shall be automatically reformed to the minimum extent necessary to make it enforceable. If the provision cannot be reformed, it shall be severed from this Public License without affecting the enforceability of the remaining terms and conditions.
|
||||
No term or condition of this Public License will be waived and no failure to comply consented to unless expressly agreed to by the Licensor.
|
||||
Nothing in this Public License constitutes or may be interpreted as a limitation upon, or waiver of, any privileges and immunities that apply to the Licensor or You, including from the legal processes of any jurisdiction or authority.
|
6
archetypes/default.md
Normal file
6
archetypes/default.md
Normal file
|
@ -0,0 +1,6 @@
|
|||
---
|
||||
title: "{{ replace .Name "-" " " | title }}"
|
||||
date: {{ .Date }}
|
||||
draft: true
|
||||
---
|
||||
|
61
config.toml
Normal file
61
config.toml
Normal file
|
@ -0,0 +1,61 @@
|
|||
baseurl = "https://blog.cyplo.dev/"
|
||||
|
||||
languageCode = "en-gb"
|
||||
|
||||
theme = "beautifulhugo"
|
||||
paginate = 7
|
||||
|
||||
pygmentsUseClasses=true
|
||||
pygmentsCodeFences=true
|
||||
|
||||
title = "Adventurous Computing"
|
||||
|
||||
[taxonomies]
|
||||
series = "series"
|
||||
tags = "tags"
|
||||
|
||||
[[params.bigimg]]
|
||||
src = "images/header.jpg"
|
||||
position = "center top"
|
||||
|
||||
[params]
|
||||
homeTitle = "Adventurous Computing by Cyryl Płotnicki"
|
||||
keywords = "programming, testing, tdd, rust, golang"
|
||||
logo = "images/avatar.jpg"
|
||||
showRelatedPosts = true
|
||||
rss = true
|
||||
|
||||
[[menu.main]]
|
||||
identifier = "donate"
|
||||
name = " donate"
|
||||
url = "https://liberapay.com/cyplo/"
|
||||
|
||||
[[menu.main]]
|
||||
identifier = "blog"
|
||||
name = "blog"
|
||||
url = "/posts"
|
||||
|
||||
[[menu.main]]
|
||||
identifier = "about"
|
||||
name = "about"
|
||||
url = "/pages/about"
|
||||
|
||||
[[menu.main]]
|
||||
identifier = "projects"
|
||||
name = "projects"
|
||||
url = "/pages/projects"
|
||||
|
||||
[[menu.main]]
|
||||
identifier = "talks"
|
||||
name = "talks"
|
||||
url = "https://slides.cyplo.dev/"
|
||||
|
||||
[Author]
|
||||
name = "Cyryl Płotnicki"
|
||||
website = "https://blog.cyplo.dev/"
|
||||
email = "blog@cyplo.dev"
|
||||
github = "cyplo"
|
||||
gitlab = "cyplo"
|
||||
twitter = "cyplo"
|
||||
linkedin = "cyplo"
|
||||
mastodon = "todon.nl/@cyplo"
|
111
content/pages/about.md
Normal file
111
content/pages/about.md
Normal file
|
@ -0,0 +1,111 @@
|
|||
---
|
||||
title: "Heya !"
|
||||
date: 2019-04-08T12:51:40+01:00
|
||||
draft: false
|
||||
---
|
||||
|
||||
My name is Cyryl and I hope you're having a great day !
|
||||
|
||||
## Interesting random tidbits about me
|
||||
|
||||
I am [running](https://blog.cyplo.net/posts/2018/05/pair-with-me-on-rust.html) remote pairing sessions, helping people with Rust.
|
||||
My recent focus is [adding fuzzer](https://twitter.com/cyplo/status/1094606119421521922) infrastructure to their projects.
|
||||
|
||||
I started a [blog post series](https://blog.cyplo.net/series/rust-testing-tricks/) on testing in [Rust](https://blog.cyplo.net/categories/rust.html) where I share the tricks I've learned.
|
||||
|
||||
I was in both leadership and individual contributor roles, I have respect for all sides involved in the process.
|
||||
|
||||
I like testing, I taught various aspects of TDD in an apprenticeship course.
|
||||
|
||||
## Day jobs
|
||||
|
||||
**Head of Core Engineering** at Form3, _May 2019 - now_
|
||||
|
||||
I am responsible for 3 engineering teams, each having its own technical leadership structure. I work closely with product leadership on the vision for the shared services at the organisation and with other team leads and section heads on execution planning. I help with establishing standards across multiple teams while providing architectural and technical support. I review the more sensitive code & documentation contributions. I guide people through their growth as team leaders and individual developers alike.
|
||||
|
||||
**Software Engineer** at balena, _October 2018 - May 2019_
|
||||
|
||||
I worked remotely on **Rust** crates compiled into NPM packages through the power of **WASM**.
|
||||
As all of the above is on the bleeding edge - I find, report and fix bugs throughout the ecosystem.
|
||||
|
||||
**Software Craftsman** (Consultant) at Codurance, _January 2017 - October 2018_
|
||||
|
||||
Helping client teams grow - working within software teams and teaching technical concepts as well as improving the process.
|
||||
Running workshops (e.g. Legacy Code Retreat, advanced git, **TDD**).
|
||||
Running **Rust** pairing sessions and intro to Rust workshops.
|
||||
Facilitating open-space conferences.
|
||||
Teaching at the apprenticeship programme.
|
||||
|
||||
Projects:
|
||||
|
||||
- Transportation route planning software for a big retailer, using a graph database (**Gremlin/Apache Tinkerpop**) in Java. Managed deployment to **AWS** via **Terraform**.
|
||||
- Transaction consolidation software for an investment bank.
|
||||
- Electronic circuit simulation software for a startup.
|
||||
|
||||
**Consultant** at Infusion, _June 2012 - November 2016_
|
||||
|
||||
Writing code is still where I spend most of my time, and happily so.
|
||||
I do that in **Java** and **.Net**, sprinkled with some **C**, **C++**, Python, bash and powershell I gather requirements, talk to the clients, other engineers, figure out solutions together. My particular specialty seems to be taking over legacy code bases and making them shine. I am responsible for a small team of developers.
|
||||
|
||||
Projects:
|
||||
|
||||
- Pulse - a product for mass remote software installation and monitoring. Used, among others, in demo kiosk installations, phone retail shops and in-flight entertainment systems. Writing server and client code. Largish system working mostly on the backend in .Net, standing on Azure. I'm helping here and there, with the architecture and sometimes doing changes to our **Android** client code as well.
|
||||
- I've helped build a **distributed** solution for insurance cost calculation for Metlife Japan. Mostly Java, some IBM mainframes and occasional C++.
|
||||
- I've worked for other financial institutions on distributed software for risk exposure analysis. Mostly .Net, some C++, large in-house computation farms involved.
|
||||
|
||||
**Senior Software Engineer**, Power Media S.A., _February 2011 - June 2012_
|
||||
|
||||
I was asked to return to Power Media by the head of the whole department, this was quite cool ! I've helped recruit more people and was one of the developers working on the system for TV materials storage. The system was written in **C#**, but I've also took a look inside an **Erlang** one and a one in **Obj-c** as well, from time to time. I've convinced the company to [open source](https://github.com/powermedia/PowerMedia.Common) the core libraries used.
|
||||
|
||||
**Mobile Games Developer**, iNTRES/Scoreloop, _December 2009 - February 2011_
|
||||
|
||||
I was a part of a team that was tasked with developing a cross-platform, pure C library that provided matchmaking, ladders and other networking capabilities to mobile games, **Pro Evolution Soccer 2011** among others. We've used C89 as the base language.
|
||||
|
||||
**Lead Developer**, Power Media S.A., _June 2007 - December 2009_
|
||||
|
||||
This was my first experience as a leader. Despite this we've managed to build the new [travelplanet.pl](http://www.travelplanet.pl/) - a website for the biggest trip broker in Poland. This was a .Net job and involved some quite heavy server machinery. Around **60 different data sources** were involved. In the meantime I've also helped with growing the **Erlang** team and got my hands dirty with proof-of-concept **low-level** Mac **PowerPC** programming.
|
||||
|
||||
**Software Developer**, Power Media S.A., _June 2006 - June 2007_
|
||||
|
||||
My first "real" job ! Maintenance on the in-house systems written in Java. Slowly I got into client-facing project as well. Java, Webobjects.
|
||||
|
||||
## Education
|
||||
|
||||
**Wrocław University of Technology** 2005-2007
|
||||
|
||||
## Books
|
||||
|
||||
I am one of the technical reviewers for the "500 lines or less" book, a new entry in the [Architecture of Open Source Applications](http://aosabook.org/en/index.html) books series.
|
||||
I helped to shape the chapter on Paxos there.
|
||||
|
||||
## Talks/workshops - ask me to give some !
|
||||
|
||||
The links provided are for the slide decks.
|
||||
|
||||
- Working with legacy code utilizing golden master tests
|
||||
- Fuzzing in Rust
|
||||
- Mastering Git
|
||||
- Legacy Code Retreat - running a full-day workshop on test-driving changes in legacy code.
|
||||
- A secret to secure software (ssshhh it's TDD)
|
||||
- ["Conferences you did not know existed and now you know you just need to go to"](https://blog.cyplo.net/posts/2016/03/13/conferences.html)
|
||||
- "Languages are communities" - impromptu talk about how communities are the most important thing when choosing your programming language.
|
||||
- ["Tor and what it's good for"](https://github.com/cyplo/talks/tree/master/tor_for_beginners)
|
||||
- ["Erlang for the .Net people"](https://github.com/erlang-wroclaw/erlang_tech_night) - introduction to Erlang with some live coding by me and my friend Fabian
|
||||
- ["Anatomy of a debugger"](https://prezi.com/hzvnsznfkgwj/anatomy-of-the-debugger/) - very high-level overview of how debugging works
|
||||
- SMD soldering
|
||||
- Start your journey with 3D printing
|
||||
|
||||
## More to read
|
||||
|
||||
I like building tools. Be they physical or software. Something that lasts.
|
||||
|
||||
I like teaching - allows me to understand topics in more depth.
|
||||
I'm good at understanding whole worlds of interactions within software projects.
|
||||
|
||||
The people and their needs and then the system architecture, code itself, its execution. Because of that I'm sometimes slow to comprehend new things. I really like trying new things. I like **Rust** quite a bunch and am trying to spread that love - I am a contributor to the core Rust projects. I run my own infrastructure - email, blog, backups.
|
||||
|
||||
I ask a lot of questions. I like to be in the understanding of the value of my work. I think there's a big value in sharing. I am really into the open source movement. I like **helping people**. I like electronics. I've assembled a RepRap. I've built a sun-powered backup server. I'm learning PCB design in **KiCad** and CAD via Fusion360. I like debugging. Electronics and software. I have a **CNC** router. I like board and RPG games. Rock climbing. Cycling. Other life activities.
|
||||
|
||||
Curious reader might want to follow my blog at [blog.cyplo.net](https://blog.cyplo.net/)
|
||||
|
||||
[Email me](mailto:hello@cyplo.net) at hello@cyplo.net - I'm happy to have a chat with you !
|
9
content/pages/projects.md
Normal file
9
content/pages/projects.md
Normal file
|
@ -0,0 +1,9 @@
|
|||
---
|
||||
title: "Projects"
|
||||
date: 2019-04-08T12:51:40+01:00
|
||||
---
|
||||
|
||||
- [genpass](https://git.sr.ht/~cyplo/genpass) - A simple yet robust commandline random password generator written in Rust. Has an extensive generative test suite, including tests against a Rust port of Dropbox's password strength tester zxcvbn.
|
||||
- [netlify deployer](https://pypi.org/project/netlify-deployer/) - A Python CLI tool to deploy a website to Netlify using their incremental API client. Not the best code but works like a charm. This blog [uses](https://git.sr.ht/~cyplo/blog/tree/master/item/.build.yml#L21) it.
|
||||
- [my dotfiles](https://sr.ht/~cyplo/dotfiles/) - all of the settings for all of my machines, automated using Nix
|
||||
- [bakare](https://sr.ht/~cyplo/bakare/) - work in progress on writing a modern backup solution in Rust
|
23
content/posts/2010/10/10/google-ai-challenge.md
Normal file
23
content/posts/2010/10/10/google-ai-challenge.md
Normal file
|
@ -0,0 +1,23 @@
|
|||
---
|
||||
title: Google AI Challenge
|
||||
date: 2010-10-10 20:37:09
|
||||
tags: [dotnet, ai, google, mono]
|
||||
category: artificial intelligence
|
||||
---
|
||||
|
||||
It seems that being so much into other programming things I missed the
|
||||
[Google AI Contest](http://ai-contest.com/) announcement. It's
|
||||
supercool that they sponsor such challenges but also it's really uncool
|
||||
[so like warm ?] that apparently I won't have time to participate.
|
||||
|
||||
About the challenge itself - it involves working with
|
||||
[GalconFusion](http://www.galcon.com/fusion/)-like game. Easy to
|
||||
learn, difficult to master type. As they provide starter packs with a
|
||||
sample bot it's easy to start. However, getting some decent place would
|
||||
involve some really long time of good old hard work.
|
||||
|
||||
As a side note on .NET being spread around the unix world, there's a C#
|
||||
starter pack. Good. After few secs I realised that the code will be run
|
||||
under antique [Mono 1.2.6](http://www.go-mono.com/archive/1.2.6/),
|
||||
therefore none of my young C# friends would be there. No type inference,
|
||||
no linq, no other fancy stuff. Not good.
|
29
content/posts/2010/10/15/bulletstorm.md
Normal file
29
content/posts/2010/10/15/bulletstorm.md
Normal file
|
@ -0,0 +1,29 @@
|
|||
---
|
||||
title: It's raining bullets
|
||||
date: 2010-10-15 13:12:13
|
||||
category: games
|
||||
---
|
||||
|
||||
I have always been fascinated by works of Adrian Chmielarz, from the
|
||||
times of Metropolis Software on. Naturally then, I am following really
|
||||
closely on the development of
|
||||
[Bulletstorm](http://www.bulletstorm.com/). Damn, I even hoped to
|
||||
talk to The Guy or Mieszko Zielinski at the
|
||||
[gameaiconf](http://gameaiconf.com/>) in Paris, but
|
||||
[Alex](http://aigamedev.com/) told me that "whoa,
|
||||
[PCF](http://www.peoplecanfly.com/) are so busy with the new IP that
|
||||
they didn't have time to come this year, next year they'll be here,
|
||||
hopefully".
|
||||
|
||||
Having something so deeply embedded in your mind that you're always
|
||||
thinking of it. While you eat, while you talk, in your sleep. That's the
|
||||
way I do like to work. Reading about making of Bulletstorm gives me
|
||||
creeps as I do feel their hyperenthusiasm about the thing, I do feel
|
||||
that they take this game everywhere with them. To dinner, breakfast,
|
||||
party. That's the way I do like to work.
|
||||
|
||||
Now back on track, an interview which triggered this urge to flush my
|
||||
thoughts here. [Interview with Tanya Jessen](http://techland.com/2010/10/14/origins-tanya-jessen-lead-producer-on-bulletstorm/),
|
||||
producer at Epic.
|
||||
|
||||
People make games so other people can have fun. How selfless.
|
47
content/posts/2010/10/24/vps-adventures-part-one.md
Normal file
47
content/posts/2010/10/24/vps-adventures-part-one.md
Normal file
|
@ -0,0 +1,47 @@
|
|||
---
|
||||
title: VPS adventures part one
|
||||
date: 2010-10-24 23:40:32
|
||||
tags: [dmehosting, server, ubuntu, virtualization, vps]
|
||||
category: server
|
||||
---
|
||||
|
||||
As every person in the software industry I need ways to promote my humble
|
||||
self. A decent web page and online resume plus a blog maybe are a must
|
||||
these days. The question remains where to put them.
|
||||
|
||||
Previously I had my site published within one of the polish hosting
|
||||
companies for free, as my friend was involved in its operations. Thanks
|
||||
[Kajetan](http://www.kajetanwandowicz.com/) for 5 years of support !
|
||||
And maybe it'd stay that way if not of that desire of mine to tinker and
|
||||
have control of every aspect of the technology power. Some platform with
|
||||
ability to boot the system I want up would be appreciated.
|
||||
|
||||
Real servers are good when you have a place to put them. And want to pay
|
||||
electricity bills, provide UPS, KVM, BGP and other three-letter
|
||||
abbreviations. And oh, I simply don't like the fan noise
|
||||
anymore. [VPS](http://en.wikipedia.org/wiki/Virtual_private_server)
|
||||
then it is.
|
||||
|
||||
Since I recently made contact with Ubuntu Server edition and liked it
|
||||
for its simplicity, I started searching for a cheap VPS which supports
|
||||
the newest Ubuntu. Two googles later I found
|
||||
[dmehosting.com](http://www.dmehosting.com/). 6$ for 25Gigs of space
|
||||
and 256MB RAM seemed ok, so I bougth the VPS1 plan. Payment went without
|
||||
problems, they support PayPal. With 6$ less on my account I was waiting
|
||||
for them to give me the IP + login & password. I didn't expect that I
|
||||
would take the whole day long.
|
||||
|
||||
My first contact with the machine was that of apt-get update, which
|
||||
failed. Because of lack of network connectivity. I was logged by ssh to
|
||||
that machine, so definitely some sort of connectivity had to be in
|
||||
place. I dug into and found not working DNS servers, so I made VPS
|
||||
connect to the other ones and everything started working. I jumped into
|
||||
their 'live' tech support line just to hear that it was really bad of me
|
||||
to change the resolv.conf and I just shouldn't do that. In the meanwhile
|
||||
their DNSes went back so I in fact did revert the resolv.conf after all.
|
||||
|
||||
It's [OpenVZ](http://wiki.openvz.org/Main_Page>)-based hosting, so
|
||||
policy of "no-no's" is pretty much embedded in the very system. No
|
||||
kernel reinstallation. No swap space. No system clock write access. No
|
||||
clicking too fast in the administration panel. Back to google then my search for VPS
|
||||
is. Stay tuned for the next part.
|
39
content/posts/2010/11/01/vps-adventures-part-two.md
Normal file
39
content/posts/2010/11/01/vps-adventures-part-two.md
Normal file
|
@ -0,0 +1,39 @@
|
|||
---
|
||||
title: VPS Adventures part two
|
||||
date: 2010-11-01 14:23:18
|
||||
tags: [server, tilaa, ubuntu, virtualization, vps]
|
||||
category: server
|
||||
---
|
||||
|
||||
After some not so pleasurable experiences with the previous VPS hosting
|
||||
provider I started my search for some other one. This time not only
|
||||
google was involved but also [aardvark](http://vark.com/) and some of
|
||||
the "top XX best hosting providers" sites. Two results kept showing up.
|
||||
[server4you](http://www.server4you.com/) and
|
||||
[tilaa](https://www.tilaa.nl/). Which one to choose then ? I wanted
|
||||
to give both of them a chance.
|
||||
|
||||
[server4you](http://www.server4you.com/). I really tried to buy a VPS
|
||||
there and I failed. Lots of forms to fill and no instant money
|
||||
transfer available. I entered my credit card details only to receive the
|
||||
email after a day or so stating that they were unable to process my
|
||||
payment.
|
||||
|
||||
[tilaa](https://www.tilaa.nl/). What caught my attention there was
|
||||
that clean website of them. I like such a design style, as you can also
|
||||
see it here. Not so cheap, I must admit, but definitely easy to buy.
|
||||
Payment transfered and after about a minute I had a full access to the
|
||||
VPS. That's how I like things to work. I am using tilaa's the most
|
||||
simple VPS plan since then and I am pretty happy with it. Here gathered
|
||||
are some things I like or don't about its services.
|
||||
|
||||
- friendly, responsive staff
|
||||
- 2x RAM amount of swap space - seems great compared to no swap on other VPSes
|
||||
- [KVM](http://www.linux-kvm.org/page/Main_Page)- and [qemu](http://en.wikipedia.org/wiki/QEMU)-based, you get full control of your system
|
||||
- good overall system responsiveness - I experienced occasional lags when using [OpenVZ](http://wiki.openvz.org/Main_Page) virtualization before, there's no such thing here
|
||||
- they work fast - the day the new Ubuntu 10.10 was released, they had the VPS image ready !
|
||||
- their motto "We try to be good open source citizens" just convinces me
|
||||
- the only disadvantage is the price, it's 8.95 euro net montly, it's also easy to miss that info on the site
|
||||
|
||||
As I already have a safe place to tinker with my system the real work on
|
||||
the server configuration begins. Stay tuned for the next episode.
|
16
content/posts/2010/11/14/sharpdevelop.md
Normal file
16
content/posts/2010/11/14/sharpdevelop.md
Normal file
|
@ -0,0 +1,16 @@
|
|||
---
|
||||
title: Hello Sharpdevelop
|
||||
date: 2010-11-14 13:38:02
|
||||
category: open source
|
||||
---
|
||||
|
||||
For years I've been involved in the open source community. I encouraged
|
||||
company managers to use open source solutions, I reported bugs, I did
|
||||
tests. Since this Monday I am officially a part of
|
||||
[Sharpdevelop](http://www.icsharpcode.net/opensource/sd/) team,
|
||||
pursuing the goal of better
|
||||
[F#](http://en.wikipedia.org/wiki/F_Sharp_(programming_language))
|
||||
support within the IDE. The project itself made has made a impressive
|
||||
progress last years, had [MonoDevelop](http://monodevelop.com/)
|
||||
forked from it and has some pretty good people working on it right now.
|
||||
What more can I say.
|
|
@ -0,0 +1,35 @@
|
|||
---
|
||||
title: Netbeans 6.9 for Rails 3 on Ubuntu 10.10
|
||||
date: 2011-01-29 14:51:07
|
||||
tags: [linux, maverick, netbeans, ruby, ubuntu]
|
||||
category: ruby
|
||||
---
|
||||
|
||||
I am a lazy person. I do like things to just work, run out of the box,
|
||||
name it. I like Ubuntu for it's packaging system and ease of
|
||||
installation of various software. However using Netbeans from the
|
||||
default repo could cause you a headache when developing Rails 3 apps.
|
||||
These just won't run. Let us start with installing the newest version of
|
||||
the IDE
|
||||
|
||||
```bash
|
||||
sudo apt-get install netbeans
|
||||
#then go to the Tools->Plugins->Available and install all regarding Ruby
|
||||
```
|
||||
|
||||
Now go ahead and try running some Rails app.
|
||||
|
||||
```bash
|
||||
/var/lib/gems/1.9.1/gems/activesupport-3.0.3/lib/active_support/dependencies.rb:239:in `require': /var/lib/gems/1.9.1/gems/activesupport-3.0.3/lib/active_support/cache/mem_cache_store.rb:32: invalid multibyte escape: /[x00-x20%x7F-xFF]/ (SyntaxError)
|
||||
```
|
||||
|
||||
you say ? Here's a quick fix
|
||||
|
||||
```
|
||||
#edit /usr/share/netbeans/6.9/etc/netbeans.conf
|
||||
#=> append -J-Druby.no.kcode=true to the the netbeans_default_options and volia
|
||||
# the whole line im my case goes like that:
|
||||
netbeans_default_options="-J-client -J-Xss2m -J-Xms32m -J-XX:PermSize=32m -J-XX:MaxPermSize=200m -J-Dapple.laf.useScreenMenuBar=true -J-Dsun.java2d.noddraw=true -J-Dsun.java2d.pmoffscreen=false -J-Druby.no.kcode=true"
|
||||
```
|
||||
|
||||
Long term solution ? Wait for Netbeans 7.0 as the devs promised it to be fixed there
|
28
content/posts/2011/03/27/do-blog.md
Normal file
28
content/posts/2011/03/27/do-blog.md
Normal file
|
@ -0,0 +1,28 @@
|
|||
---
|
||||
title: How not to blog
|
||||
date: 2011-03-27 22:25:23
|
||||
category: blog
|
||||
---
|
||||
|
||||
Today's post is definitely not a tech one. Or maybe just a bit. It's
|
||||
about blogging, from the other side of the keyboard. PEBKAC-style.
|
||||
Fun-fact: Did you know that 'kac' in Polish means 'hangover' ? To the
|
||||
point. I realised that I have dozens of posts in the state of started
|
||||
but definitely not finished. Why is that so ? Is it that I am superbusy
|
||||
with my new work ? Kinda. Is that that I am the guy responsible for the
|
||||
installation of the sound system in one of the new Wrocław's clubs ?
|
||||
Sounds pretty serious but still not a perfect excuse. The thing is that
|
||||
there is no right excuse for not doing something you want to do. Do it
|
||||
or don't. Don't pretend to. The funny thing is that the smallest
|
||||
possible posts, like
|
||||
[this one](/posts/2011/01/29/netbeans-6-9-rails-3-ubuntu-10-10/) brought me
|
||||
the most views. I don't wanna loose you guys because I don't feel like
|
||||
blogging recently. Mine unfinished tech posts won't probably make it
|
||||
because I just don't remember what were these small tech tricks I used
|
||||
to solve that problems. Not even wrote them down as I was so enlightened
|
||||
by the superiority of my solutions. Don't do that. Take notes about
|
||||
everything which you would possibly need and start working on the
|
||||
sentences and wording. Right now. Go. Hit publish and let the world
|
||||
know. Thanks go to
|
||||
[TC](http://techcrunch.com/2011/03/27/why-startups-need-to-blog-and-what-to-talk-about/)
|
||||
& [Mark Suster](http://techcrunch.com/author/marksuster/).
|
|
@ -0,0 +1,43 @@
|
|||
---
|
||||
title: Installing MacOSX Server 10.6 on VirtualBox
|
||||
date: 2011-05-07 14:23:30
|
||||
tags: [macosx, virtualbox]
|
||||
categories: [freedom, mac, server]
|
||||
---
|
||||
|
||||
It all started with my work assignment of installing MacOSX Server 10.6
|
||||
on the XServe rack. Briefly speaking, after debugging some hardware problem
|
||||
with the CPU temperature meter, I managed to install the base OSX server
|
||||
system there. After that I needed to set up VMs with 10.6 64bit and 10.4 32bit
|
||||
on top of that. Why so if already having 10.6 as the base system ?
|
||||
Simply I wanted to avoid constant reinstallation of the base system, as
|
||||
the machines are meant to be used for development and testing. Also the
|
||||
XServe hardware was needed instead of classic blade system to meet Apple
|
||||
license requirements. Having the internet read twice I decided to give
|
||||
VirtualBox a try. My way of thinking was that I am already familliar
|
||||
with that piece of software and know it as a easy to use one. In
|
||||
addition to being pretty fool-proof it also enables features like operating from the commandline only. So what's the deal ?
|
||||
Bring up VirtualBox GUI, click on new virtual machine creation button,
|
||||
choose MacOSXServer, insert the iso file made from the installation dvd
|
||||
and volia ? Not even remotely close. It appears that Apple has embedded
|
||||
some kind of valid processors db into the system and checks the
|
||||
processors present against it on every boot. The only configuration I managed to install
|
||||
and launch was single-core. Both 32 and 64bit guests seem to be working
|
||||
fine. But what's the point of having many cores there if only one can be
|
||||
used per a VM ? Some time after that I found brilliant blog pair by
|
||||
[prasys](http://prasys.info/) and
|
||||
[nawcom](http://blog.nawcom.com/). It seems that the latter one
|
||||
produces what's called [ModCD](http://blog.nawcom.com/?p=446) which
|
||||
allows booting with the processor checks disabled. Recipe for amd64:
|
||||
|
||||
- create new MacOSX vm in VirtualBox
|
||||
- change it to non-EFI type
|
||||
- boot ModCD
|
||||
- swap iso image for the one with the MacOS install
|
||||
- press f5
|
||||
- type -force64
|
||||
- press enter
|
||||
|
||||
For me the installer crashed on the last step before reboot, but then it
|
||||
rebooted successfully and continued on with the installation. Don't
|
||||
forget to donate to nawcom if you can.
|
31
content/posts/2011/05/23/speeding-up-eclipse-aptana.md
Normal file
31
content/posts/2011/05/23/speeding-up-eclipse-aptana.md
Normal file
|
@ -0,0 +1,31 @@
|
|||
---
|
||||
title: Speeding up Eclipse/Aptana
|
||||
date: 2011-05-23 12:29:49
|
||||
tags: [aptana, eclipse, java]
|
||||
category: open source
|
||||
---
|
||||
|
||||
As you know Aptana is Eclipse. And Eclipse is a Java-based IDE
|
||||
which means it's not particularly a speedy one. However if you have a
|
||||
decent amount of ram, like 4gb, it's fairly easy to speed the Eclipse
|
||||
up. Find `eclipse.ini` or `aptana.ini` or other file which
|
||||
contents look similar. These settings are from my Linux box - I know that
|
||||
MacOS can get scared by higher values there; if you encounter any problems - try lowering the `Xmx`
|
||||
and/or others.
|
||||
|
||||
```
|
||||
--launcher.XXMaxPermSize
|
||||
512m
|
||||
--launcher.defaultAction
|
||||
openFile
|
||||
-vmargs
|
||||
-Xms128m
|
||||
-Xmx2048m
|
||||
```
|
||||
|
||||
These settings are for the 4gb ram box, try to find the ones which suit you best. `MaxPermSize`
|
||||
stands for the maximum amount of the memory to be used by the Java
|
||||
internals, `Xms` gives the amount of heap allocated on the VM start and
|
||||
`Xmx` is the heap size limit. Start by upping `Xms` value as it's often
|
||||
too small which causes the Java VM to make lots of heap resizes on the
|
||||
app start.
|
48
content/posts/2011/07/24/how-to-hire-people.md
Normal file
48
content/posts/2011/07/24/how-to-hire-people.md
Normal file
|
@ -0,0 +1,48 @@
|
|||
---
|
||||
title: How to hire a programmer, a.k.a. tech recruitment explained
|
||||
date: 2011-07-24 20:31:55
|
||||
tags: [recruitment]
|
||||
category: hopefully influential
|
||||
---
|
||||
|
||||
Today’s post is not a recipe at all. Here’s what I think the tech recruitment should look
|
||||
like. It won’t be cheap. Start by describing the position. Who are you looking for,
|
||||
what would they do for you, how would they bring money to your company.
|
||||
Use words, not techie talk. I found most of the job descriptions online
|
||||
do not match the real expectations of the employer. You just want a good
|
||||
programmer, a person who thinks about what they does. It really doesn’t
|
||||
matter if they know Haskell and you write in Erlang. I doesn’t matter if
|
||||
they think in asm when you’re looking for Forth. I doesn’t matter if
|
||||
they are Linux nerds and you’re Windows-only, if they know how
|
||||
computers work. As long as they think about what they do and agree with your goals, that’s perfectly fine. If you
|
||||
translate your desire for a good programmer into a bulletpoint list of
|
||||
tech words you dehumanize it. Don’t look for skillsets, look for people. How to check whether someone is a good programmer then ? How to
|
||||
score people against such a vague job description ? You don’t score
|
||||
people, you just sort the set of people. Start by a rather loose
|
||||
conversation. Tell me about the point in life you’re in, tell me
|
||||
something about what fascinates you in the programming and finally
|
||||
what’s your motivation for changing the job and why do you want to work
|
||||
with us ? Somewhere in the middle I ask about the projects, what
|
||||
technologies you do like, what not, why not. Do you feel comfortable
|
||||
teaching others ? If someone is fascinated by
|
||||
The Machines you're noticing it by now. Same with
|
||||
boring people or annoying people. If you do not want to work with them
|
||||
then do not hire them. Even if they’re brilliant. How does the computer
|
||||
work then ? How does this happen that I have this text file full of
|
||||
strange writings and suddenly they make the computer do stuff ? Why it’s
|
||||
not a good idea to get the modern pc to fly a space shuttle ? What’s a
|
||||
stack and what’s a heap ? Is the stack memory different from the heap
|
||||
memory ? Why so. And the why. The most important question for me is the
|
||||
mighty why. Not only should they understand how something works, but
|
||||
more importantly why it works like that. I enjoy working with people who
|
||||
are microwave-curious than the hex-feared ones. How does the microwave
|
||||
oven heat things ? Does the DEADBEEF scare your ? Talk with people, make notes. What annoys you, what
|
||||
impresses you. Do the exercises with them. Ask them how would they solve
|
||||
a simple but a reallife problem. Design the solution with them. The more
|
||||
lifelike the work scenario the better. Do the things you’d normally do
|
||||
with your work colleague. And order the set of candidates. Work as the
|
||||
simple max function. Decide
|
||||
which one seems better suited for you. Then take the next one and
|
||||
compare her to the current max. And please hire people only when you’re
|
||||
ready to hire them. UPDATE. After writing this post I've stumbled onto
|
||||
this [37signal's article](http://37signals.com/svn/posts/2628-how-to-hire-a-programmer-when-youre-not-a-programmer)
|
20
content/posts/2011/09/22/ubuntu-11-10-beta1.md
Normal file
20
content/posts/2011/09/22/ubuntu-11-10-beta1.md
Normal file
|
@ -0,0 +1,20 @@
|
|||
---
|
||||
title: Ubuntu 11.10 Beta1
|
||||
date: 2011-09-22 09:40:22
|
||||
tags: [ubuntu]
|
||||
category: linux
|
||||
---
|
||||
|
||||
What do I think ? Easy to install, hard to disable Unity, some programs crash sometimes and some things are weird. Despite that I have the faith in the Ubuntu folks that the system would be ready when 11.10 comes.
|
||||
|
||||
As whining itself never got anybody anywhere, I've reported all of these here:
|
||||
|
||||
[#855901](https://bugs.launchpad.net/ubuntu/+source/linux/+bug/855901)
|
||||
[#834425](https://bugs.launchpad.net/ubuntu/+source/software-center/+bug/834425)
|
||||
[#855945](https://bugs.launchpad.net/ubuntu/+source/unity-2d/+bug/855945)
|
||||
[#855917](https://bugs.launchpad.net/ubuntu/+source/empathy/+bug/855917)
|
||||
[#855919](https://bugs.launchpad.net/ubuntu/+source/thunderbird/+bug/855919)
|
||||
|
||||
I've even got one OOPS. However, since I'm writing this post under
|
||||
11.10, it seems usable, even the OOPS was not of disturbance as it got
|
||||
nice GUI window displayed and no system crash then.
|
34
content/posts/2011/10/06/configuring-tor-non-exit-relay.md
Normal file
34
content/posts/2011/10/06/configuring-tor-non-exit-relay.md
Normal file
|
@ -0,0 +1,34 @@
|
|||
---
|
||||
title: Configuring Tor non-exit relay
|
||||
date: 2011-10-06 15:33:49
|
||||
tags: [tor]
|
||||
---
|
||||
|
||||
I'm for privacy. I'm for cryptography. I do provide
|
||||
[Tor](https://www.torproject.org/) relays for the good of all people.
|
||||
Here's how to configure a classic non-exit Tor relay on your machine. In
|
||||
my case I got it running on the VPS server, with 2 IP addresses and some
|
||||
bandwidth quota applied. I wanted the Tor traffic to be easily
|
||||
recognizable from outside as different from the 'normal' traffic coming
|
||||
from my server. Second requirement was to make Tor not use my whole
|
||||
traffic quota up. Here's my config, with some notes
|
||||
|
||||
```
|
||||
cyryl@serv:~$ cat /etc/tor/torrc
|
||||
SocksPort 0 # what port to open for local application connections
|
||||
SocksListenAddress 127.0.0.1 # accept connections only from localhost
|
||||
RunAsDaemon 1
|
||||
|
||||
DataDirectory /var/lib/tor
|
||||
|
||||
ORPort 9001 #switches Tor to server mode
|
||||
ORListenAddress tor.cyplo.net
|
||||
OutboundBindAddress 91.213.195.28 #what IP address use to direct the outbound traffic
|
||||
Nickname cyplonet
|
||||
Address tor.cyplo.net
|
||||
ExitPolicy reject *:* # no exits allowed
|
||||
AccountingStart day 09:00
|
||||
AccountingMax 2 GB
|
||||
|
||||
MyFamily cyplonethome, cyplonet
|
||||
```
|
|
@ -0,0 +1,19 @@
|
|||
---
|
||||
title: Disassembling Pioneer SE-50 headphones
|
||||
date: 2011-12-20 11:12:11
|
||||
tags: [hardware, repair]
|
||||
---
|
||||
|
||||
Today's story is a photostory ! Here's how to disassemble Pioneer SE-50
|
||||
headphones, as I found this task quite difficult, mainly because no info
|
||||
available on the internet on how to open the can from the back. As you
|
||||
can see Pioneer signs on the side of each can are removable. Take them
|
||||
off to uncover the screws. Research made possible by
|
||||
[kabanosy](http://en.wikipedia.org/wiki/Kabanos) - best multitool
|
||||
ever. Some more info on the headphones: [scan of the user manual](/pdf/disassembling-pioneer-se-50/se-50-b-user-manual.pdf)
|
||||
Produced between '68 and '72.
|
||||
Two speakers per can !
|
||||
Photos taken after replacing the cable and before pots rejuvenation.
|
||||
Enjoy :)
|
||||
|
||||
{{< gallery dir="/galleries/disassembling-pioneer-se-50" />}}
|
61
content/posts/2012/04/01/bitcoin-wallet-recovery-photorec.md
Normal file
61
content/posts/2012/04/01/bitcoin-wallet-recovery-photorec.md
Normal file
|
@ -0,0 +1,61 @@
|
|||
---
|
||||
title: Bitcoin wallet recovery using Photorec
|
||||
date: 2012-04-01 21:06:01
|
||||
tags: [bitcoin, recovery]
|
||||
category: linux
|
||||
aliases:
|
||||
- /2012/04/01/bitcoin-wallet-recovery-photorec/
|
||||
- /posts/2012/04/01/bitcoin-wallet-recovery-photorec/
|
||||
---
|
||||
|
||||
Ever cried over damaged disk holding your bitcoin wallet ? Ever
|
||||
formatted storage holding a perfectly valid and the only copy of your
|
||||
wallet.dat ? Yes, me too. Well, there's
|
||||
[Photorec](http://www.cgsecurity.org/wiki/PhotoRec), an opensource file
|
||||
recovery software. It just skips the partition and filesystem info and
|
||||
scans for plain file signatures on the disk. Unfortunately it does not
|
||||
recognize Bitcoin's Wallet as a file format. Bitcoin wiki
|
||||
[states](https://en.bitcoin.it/wiki/Wallet) that wallet.dat is just a
|
||||
good old BerkeleyDB. Just let me check that with the famous `file`
|
||||
command:
|
||||
|
||||
```
|
||||
[cyryl@uglybook ~]$ file .bitcoin/wallet.dat
|
||||
.bitcoin/wallet.dat: Berkeley DB (Btree, version 9, native byte-order)
|
||||
```
|
||||
|
||||
That is right. Photorec however, has its own file-type
|
||||
detection magic. Let's see whether it works on the wallet.
|
||||
|
||||
```
|
||||
[cyryl@uglybook ~]$ fidentify .bitcoin/wallet.dat
|
||||
.bitcoin/wallet.dat: unknown
|
||||
```
|
||||
|
||||
Uhoh. Do not abandon hope for not all is lost ! Photorec [provides a
|
||||
way](http://www.cgsecurity.org/wiki/Add_your_own_extension_to_PhotoRec)
|
||||
for you to add custom signatures. The only missing ingredient appears to
|
||||
be the knowledge possed by the `file` command. Just check your linux installation for
|
||||
`file`'s detection signatures. On my system these are to be found
|
||||
under `/usr/share/misc/magic`. We need file extensions, offset and some
|
||||
magic number for Photorec to work. Well, extension is `.dat`, magics
|
||||
and offsets are stored in the file mentioned above. Translate offsets
|
||||
from decimal-based to hexs and take care of endianess and done :)
|
||||
|
||||
```
|
||||
[cyryl@uglybook ~]# cat .photorec.sig
|
||||
dat 0x0 0x00061561
|
||||
dat 0x0 0x61150600
|
||||
dat 0x0 0x00053162
|
||||
dat 0x0 0x62310500
|
||||
dat 0xc 0x00061561
|
||||
dat 0xc 0x61150600
|
||||
dat 0xc 0x00053162
|
||||
dat 0xc 0x62310500
|
||||
dat 0xc 0x00042253
|
||||
dat 0xc 0x53220400
|
||||
dat 0xc 0x00040988
|
||||
dat 0xc 0x88090400
|
||||
```
|
||||
|
||||
That is it. Happy wallet recovery.
|
|
@ -0,0 +1,31 @@
|
|||
---
|
||||
title: Enabling wireless on Dell Latitude 2110 under CrunchBang Linux
|
||||
date: 2012-07-08 09:18:59
|
||||
tags: [BCM43224, crunchbang, dell, linux]
|
||||
category: linux
|
||||
---
|
||||
|
||||
Update:
|
||||
**Please note that I no longer host this kernel as it is very old and also Crunchbang is no more.**
|
||||
|
||||
Some time ago I got my hands on [CrunchBang Linux](http://crunchbanglinux.org/) distro, which is great. The only thing there that could be better is that my Broadcom BCM43224 WiFi card is not working. But I'm used to it, as many
|
||||
Linux distros do not provide it. As I happen to
|
||||
know from my Fedora experiences that it is resolved in kernel version
|
||||
3.4 . Also as that kernel tends to be generally faster on my machine, I
|
||||
decided to compile just this one. Here you are. [Vanilla 3.4.4](http://www.kernel.org/pub/linux/kernel/v3.0/linux-3.4.4.tar.bz2)
|
||||
kernel, [compiled](http://crunchbanglinux.org/forums/topic/18060/how-to-compile-the-kernel-from-source/)
|
||||
for Intel Atom and with BCM43224 support. This is a 64bit kernel.
|
||||
Download [crunchbanglinux-kernel-3.4.4-intel\_atom.tar.bz2]
|
||||
and:
|
||||
|
||||
```
|
||||
dpkg --remove firmware-linux
|
||||
dpkg --remove firmware-linux-nonfree
|
||||
tar jxf crunchbanglinux-kernel-3.4.4-intel_atom.tar.bz2
|
||||
cd linux-3.4.4-intel_atom/
|
||||
dpkg -i *.deb
|
||||
reboot
|
||||
```
|
||||
|
||||
Should work for Debian Squeeze also but not tested on that system. Email me if you'd
|
||||
like it compiled any other way, e.g. for another processor.
|
14
content/posts/2012/08/01/boosting-your-wifi-signal.md
Normal file
14
content/posts/2012/08/01/boosting-your-wifi-signal.md
Normal file
|
@ -0,0 +1,14 @@
|
|||
---
|
||||
title: Boosting your WiFi signal with cooking utensils
|
||||
date: 2012-08-01 18:13:31
|
||||
tags: [hardware]
|
||||
category: hardware
|
||||
---
|
||||
|
||||
I love cooking and well made utensils. That is a part of the
|
||||
solution. And the problem ? Boosting WiFi signal. Get WiFi USB dongle
|
||||
and put it where the bowl's focal point is. Or near it, wherever you get
|
||||
strongest signal boost. I get up to 2x stronger reception with the
|
||||
antenna presented.
|
||||
|
||||
{{< figure src="/images/boosting-your-wifi-signal/IMG_0230.jpg" position="center" >}}
|
|
@ -0,0 +1,79 @@
|
|||
---
|
||||
title: How to build minimalistic REST server in .Net
|
||||
date: 2012-11-01 13:22:39
|
||||
tags: [dotnet]
|
||||
category: programming
|
||||
---
|
||||
|
||||
Install "Microsoft ASP.NET Web API Self Host" and all of its
|
||||
dependencies via NuGet.
|
||||
|
||||
```csharp
|
||||
using System;
|
||||
using System.Collections.Generic;
|
||||
using System.Linq;
|
||||
using System.Text;
|
||||
using System.Threading;
|
||||
using System.Threading.Tasks;
|
||||
using System.Web.Http;
|
||||
using System.Web.Http.SelfHost;
|
||||
|
||||
namespace resttest
|
||||
{
|
||||
public class ExampleData { public int Id { get; set; } }
|
||||
|
||||
public class ExampleController : ApiController
|
||||
{
|
||||
// /api/job
|
||||
public IEnumerable<ExampleData> Get()
|
||||
{
|
||||
return new List<ExampleData>()
|
||||
{
|
||||
new ExampleData(){ Id = 2 },
|
||||
new ExampleData(){ Id = 4 }
|
||||
};
|
||||
}
|
||||
|
||||
// /api/job/3
|
||||
public ExampleData Get(int id)
|
||||
{
|
||||
return new ExampleData() { Id = 3 };
|
||||
}
|
||||
|
||||
}
|
||||
|
||||
|
||||
class Program
|
||||
{
|
||||
static void Main(string[] args)
|
||||
{
|
||||
var configuration =
|
||||
new HttpSelfHostConfiguration("http://localhost:1337");
|
||||
//Setup the routes
|
||||
configuration.Routes.MapHttpRoute(
|
||||
name: "DefaultApiRoute",
|
||||
routeTemplate: "api/{controller}/{id}",
|
||||
defaults: new
|
||||
{ controller = "ExampleController", id = RouteParameter.Optional }
|
||||
);
|
||||
var server = new HttpSelfHostServer(configuration);
|
||||
server.OpenAsync().Wait();
|
||||
|
||||
Console.Out.WriteLine("Press ESC to quit");
|
||||
do
|
||||
{
|
||||
while (!Console.KeyAvailable)
|
||||
{
|
||||
Thread.Sleep(256);
|
||||
}
|
||||
} while (Console.ReadKey(true).Key != ConsoleKey.Escape);
|
||||
}
|
||||
}
|
||||
}
|
||||
```
|
||||
|
||||
We can launch it and query it using any http-enabled client:
|
||||
|
||||
`$ curl http://localhost:1337/api/Example [{"Id":2},{"Id":4}]`
|
||||
|
||||
Happy hacking !
|
24
content/posts/2012/12/22/i-bought-a-book.md
Normal file
24
content/posts/2012/12/22/i-bought-a-book.md
Normal file
|
@ -0,0 +1,24 @@
|
|||
---
|
||||
title: I bought a book
|
||||
date: 2012-12-22 15:20:47
|
||||
tags: [books]
|
||||
category: books
|
||||
---
|
||||
|
||||
I bought a book I didn't read before. On the Internet. Paying person I
|
||||
don't personally know, basing on his reputation only. Believing he would
|
||||
send me a paper copy of his words from the remote land I've never even
|
||||
visited. On the other hand he trusted me to write this review and gave
|
||||
me the discount for the very fact. And yet everything worked out pretty
|
||||
well. I transferred the money, got the book, read it and I'm writing the
|
||||
promised review right now. How is that possible ? How does people trust
|
||||
each other in this "trust no one" place of the 'nets ? [Liars and
|
||||
Outliers](http://www.amazon.com/gp/product/1118143302/ref=as_li_tf_tl?ie=UTF8&camp=1789&creative=9325&creativeASIN=1118143302&linkCode=as2&tag=cyplonet-20)
|
||||
tries to answer that questions. Is this a good read, breathtaking one ?
|
||||
No, I sometimes struggled to get through. Does it need to be so
|
||||
intriguing though ? Also no. It is a solid collection of examples on how
|
||||
does the trust work in our societies and where it did all come from. It
|
||||
tries to categorize the situations in which trusting is needed and
|
||||
provides a look into how such can be exploited by some. If you are even
|
||||
somewhat interested in the cogs moving the society, this book might turn
|
||||
some of your implicit, intuitive knowledge into explicit one.
|
8
content/posts/2012/12/28/29c3.md
Normal file
8
content/posts/2012/12/28/29c3.md
Normal file
|
@ -0,0 +1,8 @@
|
|||
---
|
||||
title: 29c3
|
||||
date: 2012-12-28 14:21:10
|
||||
tags: [CCC]
|
||||
category: freedom
|
||||
---
|
||||
|
||||
{{< gallery dir="galleries/29c3" />}}
|
22
content/posts/2013/01/15/laptop-would-love-to-buy.md
Normal file
22
content/posts/2013/01/15/laptop-would-love-to-buy.md
Normal file
|
@ -0,0 +1,22 @@
|
|||
---
|
||||
title: Laptop I'd love to buy
|
||||
date: 2013-01-15 17:12:50
|
||||
category: hardware
|
||||
---
|
||||
|
||||
- support for 16GB of RAM
|
||||
- contact smartcard reader
|
||||
- ~2kg weight
|
||||
- 11-14" matte, non-glossy screen
|
||||
- good keyboard, with separate [home], [end], [insert], [delete]
|
||||
buttons
|
||||
- screen resolution of >=1440
|
||||
- HDMI
|
||||
- at least 2x USB2.0 and 1x USB3.0
|
||||
- no optical drive
|
||||
- no thunderbolt
|
||||
- no firewire
|
||||
- TPM
|
||||
- HSDPA modem
|
||||
|
||||
Is there something similar that you recommend for me to buy/build ?
|
14
content/posts/2013/03/06/erlang-tech-night.md
Normal file
14
content/posts/2013/03/06/erlang-tech-night.md
Normal file
|
@ -0,0 +1,14 @@
|
|||
---
|
||||
title: Erlang Tech night
|
||||
date: 2013-03-06 18:41:34
|
||||
tags: [erlang, talk]
|
||||
category: talks
|
||||
---
|
||||
|
||||
I recently gave a two hours presentation on Erlang 101 along with
|
||||
[Fabian](http://fabiankrol.com/). Because of the generous support
|
||||
from Infusion I was able to speak at Institute of Computer Science at
|
||||
University of Wroclaw. The event was a blast, and that is an opinion of
|
||||
the people other than me also ;) Thanks for everyone who was there and
|
||||
you can find the code and slides on
|
||||
[github](https://github.com/erlang-wroclaw/erlang_tech_night)
|
23
content/posts/2013/03/23/assembling-reprap.md
Normal file
23
content/posts/2013/03/23/assembling-reprap.md
Normal file
|
@ -0,0 +1,23 @@
|
|||
---
|
||||
title: Assembling RepRapPro Mendel
|
||||
date: 2013-03-23 11:36:49
|
||||
tags: [3d printing, hardware]
|
||||
category: hardware
|
||||
---
|
||||
|
||||
It was December, 3D printing fever struck me. Here is the first day of
|
||||
me building ReprapPro Mendel printer.
|
||||
|
||||
{{< gallery dir="galleries/assembling-reprap/1" />}}
|
||||
|
||||
Second day of building. Fun fact: you can see the daylight come and go ;)
|
||||
|
||||
{{< gallery dir="galleries/assembling-reprap/2" />}}
|
||||
|
||||
Next few days - Featuring hotbed and plastic extruder !
|
||||
|
||||
{{< gallery dir="galleries/assembling-reprap/3" />}}
|
||||
|
||||
Yet another few days - Hot header installation, lots of wiring, tests and... it's alive !
|
||||
|
||||
{{< gallery dir="galleries/assembling-reprap/4" />}}
|
54
content/posts/2013/03/31/building-nas-hardware.md
Normal file
54
content/posts/2013/03/31/building-nas-hardware.md
Normal file
|
@ -0,0 +1,54 @@
|
|||
---
|
||||
title: Building NAS - hardware
|
||||
date: 2013-03-31 20:27:52
|
||||
tags: [nas, hardware]
|
||||
category: hardware
|
||||
---
|
||||
|
||||
For a long time I've wandered the voids of the intertubes in search for
|
||||
the parts for my NAS/backup/home server solution.
|
||||
|
||||
Online backup solutions are fine to some extent, however, someone else
|
||||
than you then is going through that cat picture collections of yours and
|
||||
other private stuff. Also the cloud tends to not be the cheapest option
|
||||
possible.
|
||||
|
||||
## Case
|
||||
|
||||
{{< figure src="/images/building-nas-hardware/Node304_nocover-top-view_lores.jpg" postition="center" >}}
|
||||
|
||||
The need for moar virtual disk space calls for moar physical disk space.
|
||||
To build any reasonable RAID solution you need 4-5 disks at least, plus
|
||||
maybe one for system disk. That is a minimum of 6 disk slots in the
|
||||
computer case. As I have quite some variety of disks laying around I'd
|
||||
like this case to have an option for using either 3.5" or 2.5" disks.
|
||||
Ah, and the whole thing should not take big amounts of space. Hence
|
||||
["Node 304" by Fractal Design](http://www.fractal-design.com/?view=product&prod=94).
|
||||
|
||||
Although I intend my NAS to be fanless in the future, I couldn't resist
|
||||
to leave the original fans connected. These are beautiful, supersilent,
|
||||
hydraulic bearing fans, all included in the Node's package.
|
||||
|
||||
There are really only two things that you need to be wary of: metal
|
||||
where the screwholes are is very soft and it is easy to damage - and
|
||||
that if you have a PSU without detachable cables you're going to have
|
||||
bad time fitting these inside.
|
||||
|
||||
By the way, other small but nice thing is a user manual for this case.
|
||||
Nice paper, nice clean print and friendly attitude. Attention to details
|
||||
!
|
||||
|
||||
## Motherboard
|
||||
|
||||
{{< figure src="/images/building-nas-hardware/lkpq2whHjMbzUSAU_500.jpg" postition="center" >}}
|
||||
|
||||
What board supports at least 6 SATA disks, has low power consuption and
|
||||
fits into miniITX format ? Easily obtainable in central Europe ? And not
|
||||
super expensive ?
|
||||
|
||||
It took almost 3 months for me to find it, I present to you [Asus P8H77-I](http://www.asus.com/Motherboards/P8H77I/). All the usual stuff, most of it I don't need, frankly and not so low on power, but hey - 6 SATA in miniITX.
|
||||
|
||||
One caveat - it needs 2 power cables connected to function. The
|
||||
usual 24-pin EATX and also 4-pin ATX 12V also called P4. What if your
|
||||
PSU has only those fancy new EPS8 and EPS6 as mine do ? Fear not,
|
||||
connect half of the EPS8 into P4 port and everything shall be okay.
|
116
content/posts/2013/05/26/building-nas-software.md
Normal file
116
content/posts/2013/05/26/building-nas-software.md
Normal file
|
@ -0,0 +1,116 @@
|
|||
---
|
||||
title: Building NAS - software
|
||||
date: 2013-05-26 21:32:07
|
||||
tags: [nas, linux]
|
||||
category: server
|
||||
---
|
||||
|
||||
## Operating system
|
||||
|
||||
I think my NAS box build is no longer in much flux, so I thought it'd be
|
||||
nice to describe it. I had some disks laying around, I had them
|
||||
installed and started playing with the software setup.
|
||||
|
||||
```
|
||||
Disk /dev/sda: 60.0 GB, 60022480896 bytes
|
||||
Disk /dev/sdb: 320.1 GB, 320072933376 bytes
|
||||
Disk /dev/sdc: 160.0 GB, 160041885696 bytes
|
||||
Disk /dev/sdd: 250.1 GB, 250059350016 bytes
|
||||
Disk /dev/sde: 500.1 GB, 500107862016 bytes
|
||||
```
|
||||
|
||||
First one is an SSD drive, I used it for OS
|
||||
installation. I went for [Crunchbang](http://crunchbang.org/) as I
|
||||
was already familiar with it, however now I'm thinking of just getting
|
||||
newest Debian there, as it's finally released. Nothing fancy about the
|
||||
OS, a regular install really.
|
||||
|
||||
```
|
||||
storage# df -h
|
||||
Filesystem Size Used Avail Use% Mounted on
|
||||
rootfs 53G 2.4G 48G 5% /
|
||||
/dev/sda1 461M 31M 407M 7% /boot
|
||||
```
|
||||
|
||||
As you can see `/` filesystem takes little amount
|
||||
of space, hence the next thing I plan on doing is actually move `/` to
|
||||
USB3.0 pendrive and then free the SATA drive from it's current duties.
|
||||
I'm reluctant to do so right now, as moving swap to pendrive might
|
||||
result in significant wear. I'm thinking of getting more RAM and then
|
||||
getting rid of the swap at all. These stats were acquired after reboot,
|
||||
there are some loads under which I saw swapping occur.
|
||||
|
||||
```
|
||||
storage# free -m
|
||||
total used free shared buffers
|
||||
Mem: 1636 282 1354 0 53
|
||||
-/+ buffers/cache: 166 1470
|
||||
Swap: 1903 0 1903
|
||||
```
|
||||
|
||||
## Software + configuration
|
||||
|
||||
NAS means SAMBA, right ? That's what I thougth. RAID5 + SAMBA for Win
|
||||
clients and NFS for others. After a while I got accustomed to this setup
|
||||
and started playing with my photo collection as it was laying on NAS.
|
||||
The problem ? I deleted one photo and wanted it back. It was nowhere to
|
||||
be found. RAID5, although having internal copies for resiliency, was
|
||||
visible as one drive only and happily deleted the data when asked to.
|
||||
What I really needed was a backup solution, not a NAS. My final answer
|
||||
to that:
|
||||
|
||||
```
|
||||
storage# df -h
|
||||
Filesystem Size Used Avail Use% Mounted on
|
||||
rootfs 53G 2.4G 48G 5% /
|
||||
/dev/md0 294G 36G 243G 13% /mnt/array_back
|
||||
/dev/sde1 459G 35G 401G 8% /mnt/array_front
|
||||
|
||||
storage# cat /etc/fstab
|
||||
#
|
||||
/dev/mapper/vg_storage-root / ext4 errors=remount-ro 0 1
|
||||
UUID=b9d32208-edc0-4981-ab74-5da1e7348a1a /boot ext4 defaults 0 2
|
||||
/dev/mapper/vg_storage-swap none swap sw 0 0
|
||||
|
||||
/dev/md0 /mnt/array_back ext4 defaults 0 2
|
||||
/dev/sde1 /mnt/array_front ext4 defaults 0 2
|
||||
|
||||
storage# mdadm --detail /dev/md0
|
||||
/dev/md0:
|
||||
Version : 1.2
|
||||
Creation Time : Sun Apr 21 22:47:38 2013
|
||||
Raid Level : raid5
|
||||
Array Size : 312318976 (297.85 GiB 319.81 GB)
|
||||
Used Dev Size : 156159488 (148.93 GiB 159.91 GB)
|
||||
|
||||
Number Major Minor RaidDevice State
|
||||
0 8 17 0 active sync /dev/sdb1
|
||||
1 8 33 1 active sync /dev/sdc1
|
||||
3 8 49 2 active sync /dev/sdd1
|
||||
```
|
||||
|
||||
One disk `[sde]` serves as a front for all user operations. After a while, all changes
|
||||
except for deletions are being flushed onto `[array_back]` which is a
|
||||
RAID5 matrix.
|
||||
|
||||
```
|
||||
storage# cat /etc/cron.daily/90_sync_front_to_back
|
||||
#!/bin/bash
|
||||
rsync -avr /mnt/array_front/ /mnt/array_back/back
|
||||
```
|
||||
|
||||
## Secret sauce
|
||||
|
||||
[ownCloud](http://owncloud.org/). `[array_front]` is not directly
|
||||
exposed via SAMBA or NFS, it's governed by ownCloud instance, and then
|
||||
only ownCloud sync client on the computer or phone gets to mess with the
|
||||
data. By having such setup I get 3 copies of each file. One on device,
|
||||
one on the front array and one on the back array. What is also cool
|
||||
about ownCloud is that it also handles contacts and calendar storage for
|
||||
me. One more step towards getting all my data off google ! Points for
|
||||
improvement:
|
||||
|
||||
- `[array_front]` is not an array now. It's just a disk. Make it an
|
||||
proper disk array.
|
||||
- encrypt the data from array_back and send it to S3 and then let it
|
||||
graduate to Glacier
|
|
@ -0,0 +1,13 @@
|
|||
---
|
||||
title: How to remove multiarch in debian 7
|
||||
date: 2013-06-13 09:04:37
|
||||
tags: [debian, linux]
|
||||
---
|
||||
|
||||
Just a quick one, for me to remember and for you to enjoy.
|
||||
|
||||
```
|
||||
dpkg -l | grep :i386 | cut -s -d ' ' -f3 | xargs apt-get remove -y
|
||||
dpkg --remove-architecture i386
|
||||
apt-get update
|
||||
```
|
|
@ -0,0 +1,97 @@
|
|||
---
|
||||
title: Automating running Debian in VirtualBox
|
||||
date: 2013-07-16 14:22:47
|
||||
tags: [linux, debian, virtualbox]
|
||||
category: server
|
||||
---
|
||||
|
||||
I'm experimenting with service separation by having each service run in
|
||||
its own operating system, all of the sharing hardware though. Why ?
|
||||
Separation seems to be the only secure approach to running any software.
|
||||
Check [Joanna's](http://theinvisiblethings.blogspot.com/) blog out. I
|
||||
went with VirtualBox on Debian 7 host, with, well, Debian 7 guests.
|
||||
First I've prepared template VM by creating a new VM and just proceeding
|
||||
with install. Then I tried spawning some clones of that, but having it
|
||||
done manually takes quite some time and is error prone. Did somebody
|
||||
say automation ? Yes ! First, clone a VM, regenerating MAC addresses and
|
||||
making sure the resource caps are good:
|
||||
|
||||
```
|
||||
vmrunner@storage:~$ cat prepare_vm
|
||||
#!/bin/bash
|
||||
set -e
|
||||
if [ $# -ne 2 ] ; then
|
||||
echo "usage: $0 vm_name vm_number"
|
||||
exit 0
|
||||
fi
|
||||
|
||||
VM_NAME="$1"
|
||||
RAM_AMOUNT="128"
|
||||
DISK_SIZE="2000"
|
||||
VM_NUMBER="$2"
|
||||
RDP_PORT=$(($2+3389))
|
||||
EXECUTION_CAP="50"
|
||||
|
||||
VBoxManage clonevm fresh.cyplo.net --name $VM_NAME --mode machine --register
|
||||
VBoxManage modifyvm $VM_NAME --vrde on
|
||||
echo "setting RDP listening port to $RDP_PORT"
|
||||
VBoxManage modifyvm $VM_NAME --memory $RAM_AMOUNT
|
||||
VBoxManage modifyvm $VM_NAME --vrdeport $RDP_PORT
|
||||
VBoxManage modifyvm $VM_NAME --nic1 bridged --bridgeadapter1 eth0
|
||||
VBoxManage modifyvm $VM_NAME --pae on
|
||||
VBoxManage modifyvm $VM_NAME --cpuexecutioncap $EXECUTION_CAP
|
||||
VBoxManage modifyvm $VM_NAME --hpet on
|
||||
VBoxManage modifyvm $VM_NAME --hwvirtex on
|
||||
VBoxManage modifyvm $VM_NAME --pagefusion on
|
||||
VBoxManage modifyvm $VM_NAME --dvd none
|
||||
VBoxManage modifyvm $VM_NAME --autostart-enabled on
|
||||
VBoxManage modifyvm $VM_NAME --macaddress1 auto
|
||||
VBoxManage modifyvm $VM_NAME --macaddress2 auto
|
||||
echo "vm set up, listing all VMs:"
|
||||
VBoxManage list vms
|
||||
```
|
||||
|
||||
Then run the VM and change it into Debian
|
||||
service host with new name and some software:
|
||||
|
||||
```
|
||||
vmrunner@storage:~$ cat kickstart_debian
|
||||
#/bin/bash
|
||||
set -e
|
||||
if [ $# -ne 2 ] ; then
|
||||
echo "usage: $0 new_hostname new_domainname"
|
||||
exit 0
|
||||
fi
|
||||
|
||||
NEW_HOSTNAME="$1"
|
||||
NEW_DOMAINNAME="$2"
|
||||
NEW_FQDN="$NEW_HOSTNAME.$NEW_DOMAINNAME"
|
||||
aptitude update
|
||||
aptitude dist-upgrade -y
|
||||
aptitude install vim atop sudo -y
|
||||
hostname
|
||||
ifconfig
|
||||
set -v
|
||||
echo "$NEW_FQDN" > /etc/mailname
|
||||
echo "$NEW_HOSTNAME" > /etc/hostname
|
||||
sed -i "s/dc_other_hostnames\='.*'/dc_other_hostnames='$NEW_FQDN'/g" /etc/exim4/update-exim4.conf.conf
|
||||
sed -i "s/127\.0\.1\.1.*/127.0.1.1 $NEW_FQDN $NEW_HOSTNAME/g" /etc/hosts
|
||||
|
||||
rm /etc/ssh/ssh_host_*
|
||||
dpkg-reconfigure openssh-server
|
||||
reboot
|
||||
```
|
||||
|
||||
The script above needs to be run on guest, I'm using scp with known ssh keys to upload it and
|
||||
then run via ssh. This step is to be automated in the future. Points to
|
||||
improve:
|
||||
|
||||
- updating all the guests at once [Chef?]
|
||||
- monitoring all guests at once [Nagios?]
|
||||
|
||||
Summarizing, I'm now running a Tor node, file server, caldav, carddav
|
||||
and some other services on my home server. All of them in separate VMs.
|
||||
And it's running quite well with 2GB of RAM. For more info on my home
|
||||
server build check its
|
||||
[hardware](/posts/2013/03/31/building-nas-hardware/) and basic
|
||||
[software](/posts/2013/05/26/building-nas-software/).
|
52
content/posts/2013/08/10/new-laptop.md
Normal file
52
content/posts/2013/08/10/new-laptop.md
Normal file
|
@ -0,0 +1,52 @@
|
|||
---
|
||||
title: New laptop
|
||||
date: 2013-08-10 10:45:20
|
||||
tags: [linux, hardware]
|
||||
category: hardware
|
||||
---
|
||||
|
||||
Hey, remember my [search for the new laptop](/posts/2013/01/15/laptop-would-love-to-buy/) ?
|
||||
It's finally over ! I found that Clevo, Taiwanese custom laptop
|
||||
manufacturer, has recently added 13'3 FullHD laptop base to their
|
||||
offerings - W230ST. And to my surprise - there is a [Polish importer](http://www.bluemobility.pl/) which allows pretty neat specs
|
||||
calibration for you. Game on you say ? Indeed.
|
||||
|
||||
## What I like about it:
|
||||
|
||||
- Haswell-based, so all the new tech is here, same as in the newest
|
||||
MacBooks
|
||||
- up to 16GB RAM, I have 8GB installed for now and it works pretty good
|
||||
- 2x mPCIx mSATA capable slots
|
||||
- nice copper cooling inside
|
||||
- FullHD matte display
|
||||
- 4x USB
|
||||
- HDMI
|
||||
- typing on its keyboard, just clicks with me
|
||||
- survived [OHM2013](https://ohm2013.org/site/) camp - not scared of
|
||||
humidity and hot air
|
||||
|
||||
## What I do not like so much:
|
||||
|
||||
- Haswell-based, so Linux support is not that great yet, everything
|
||||
seems to be working okay, however power consumption is off the
|
||||
limits. 60Wh battery lasts for ~2h tops.
|
||||
- while the outer side of the case is of nice rubberrized plastic, the
|
||||
inside is cheap-looking grey one. There was no option to change it
|
||||
unfortunately, while I see that [other](http://www.xoticpc.com/)
|
||||
importers/assemblers around the world have such mods avaiable.
|
||||
- the looks of the keyboard, purely visual stuff like the font used to
|
||||
print the characters, the layout is okay
|
||||
|
||||
## Running Linux on it:
|
||||
|
||||
Everything seems to be working by default on
|
||||
most of the distros. I've tested Gentoo, Arch, Fedora and Crunchbang.
|
||||
The only thing that needed some tweaking was that by default I was
|
||||
unable to control backlight brightness at all. Adding `acpi_backlight=vendor` to the kernel boot parameters, as suggested
|
||||
on [Arch wiki](https://wiki.archlinux.org/index.php/Intel_Graphics#Backlight_not_fully_adjusting.2C_or_adjusting_at_all_after_resume.),
|
||||
solved the problem. I haven't delved deeply into Optimus yet, so I don't
|
||||
know whether the graphics cards switching works correctly or not. The
|
||||
one thing I've noticed is that, after waking from deep sleep, so after
|
||||
leaving the lid closed for a long time, not for few minutes, there are
|
||||
some visual artifacts on screen. Also, as mentioned before, power
|
||||
consumption worries me a bit. Will keep you posted !
|
21
content/posts/2013/09/02/links-directory.md
Normal file
21
content/posts/2013/09/02/links-directory.md
Normal file
|
@ -0,0 +1,21 @@
|
|||
---
|
||||
title: Idea for a curated links directory
|
||||
date: 2013-09-02 18:47:15
|
||||
---
|
||||
|
||||
I read a lot. Of books and news alike. Oh, and whitepapers too. And some
|
||||
recipes maybe. Some of them I find by my RSS reader. Some are given to
|
||||
me by colleagues at work, some arrive by mail, sometimes even in
|
||||
somewhat curated, described form. I read through most of them. And
|
||||
resend. Often I want to share a particular piece with friends of mine
|
||||
and possibly some other people too. Most often I do this by pasting the
|
||||
link into the IM window or email it to a particular person I know might
|
||||
be interested. Then I recall the other person who would also love to
|
||||
hear about this. Then I need to search the IM logs or my Delicious. And
|
||||
all of this only to hear that the people mentioned did not have the time
|
||||
to read the article referred but would love to in the future. Just not
|
||||
right now. I need a system for this. I read something, I archive it in
|
||||
the system. People sign up or I do sign them up. People receive my
|
||||
curated links list in a more or less regular email. But there is also a
|
||||
public, searchable web directory for all the previous editions. Is there
|
||||
anything like it around ? Open source please. Selfhosted please. If not - I'm just gonna write it.
|
24
content/posts/2013/09/18/anatomy-debugger.md
Normal file
24
content/posts/2013/09/18/anatomy-debugger.md
Normal file
|
@ -0,0 +1,24 @@
|
|||
---
|
||||
title: Debuggers - how do they work ?
|
||||
date: 2013-09-18 17:26:26
|
||||
tags: [talks]
|
||||
---
|
||||
|
||||
I gave a talk [yesterday](http://www.meetup.com/wrocnet/events/138787702/). It was
|
||||
on
|
||||
[debuggers](https://prezi.com/hzvnsznfkgwj/anatomy-of-the-debugger/).
|
||||
From VM-level debuggers to JTAG, quite a packed, high level overview. In
|
||||
fact I gave it
|
||||
[before](http://www.meetup.com/KGD-NET/events/113593522/) on another
|
||||
occasions. And this time was different, hence this post. The thing I am
|
||||
particularly proud of is that I was able to entertain the crowd for the
|
||||
first half of an hour despite not having any computer launched and
|
||||
connected. You know, like, interacting with actual people ! We had some
|
||||
difficulties connecting to a beamer so I thought it'd be good to have an
|
||||
open discussion first. We've started with "unit tests vs debuggers". Is
|
||||
having a rock solid unit tests suite enough for you to never touch a
|
||||
debugger ? After some time I've transitioned to my presentation, talked
|
||||
a bit about the history of debugging, then what are the features of
|
||||
modern debuggers and finally how all of these work. And while we're at
|
||||
it I would like to give a shout out to the organizers of these 2 events.
|
||||
Thanks !
|
18
content/posts/2013/10/26/new-dotfiles-repository.md
Normal file
18
content/posts/2013/10/26/new-dotfiles-repository.md
Normal file
|
@ -0,0 +1,18 @@
|
|||
---
|
||||
title: New dotfiles repository
|
||||
date: 2013-10-26 10:35:52
|
||||
tags: [cygwin, dotfiles, linux, mac, vim]
|
||||
category: open source
|
||||
---
|
||||
|
||||
Hi ! Just letting you know that I've been working for some time on
|
||||
structuring my dotfiles and finally published them to
|
||||
[github](https://github.com/cyplo/dotfiles). These contain e.g. my
|
||||
[vimrc](https://github.com/cyplo/dotfiles/blob/master/.vimrc) and
|
||||
[font](https://github.com/cyplo/dotfiles/tree/master/.local/share/fonts)
|
||||
[configs](https://github.com/cyplo/dotfiles/tree/master/.config/fontconfig/conf.d).
|
||||
I've [patched](https://github.com/cyplo/vim-colors-solarized)
|
||||
the famous [solarized](http://ethanschoonover.com/solarized) theme
|
||||
for vim to allow better
|
||||
[gitgutter](https://github.com/airblade/vim-gitgutter) symbols
|
||||
display. Enjoy !
|
106
content/posts/2013/11/10/booting-gentoo-lukslvm2systemd.md
Normal file
106
content/posts/2013/11/10/booting-gentoo-lukslvm2systemd.md
Normal file
|
@ -0,0 +1,106 @@
|
|||
---
|
||||
title: Booting Gentoo with LUKS+LVM2+systemd
|
||||
date: 2013-11-10 21:20:26
|
||||
tags: [gentoo, linux, luks, systemd]
|
||||
category: linux
|
||||
---
|
||||
|
||||
I've spent quite some time recently trying to get a laptop running
|
||||
Gentoo boot from an encrypted partition with LVM. I thought that this
|
||||
might be useful for someone else, so here you are: First things first:
|
||||
I'm assuming you've followed Gentoo handbook and are operating from
|
||||
within livecd's shell. You've done the regular luksFormat + lvm stuff
|
||||
and you've come up with a layout similar to this one:
|
||||
|
||||
```
|
||||
dagrey ~ # lsblk
|
||||
NAME SIZE TYPE MOUNTPOINT
|
||||
sda 55.9G disk
|
||||
└─sda1 55.9G part
|
||||
└─crypthome (dm-3) 55.9G crypt /home
|
||||
sdb 29.8G disk
|
||||
├─sdb1 485.4M part /boot
|
||||
└─sdb2 29.4G part
|
||||
└─root_sdb2-vg-root (dm-0) 29.3G crypt
|
||||
├─vg-swap (dm-1) 8G lvm [SWAP]
|
||||
└─vg-root (dm-2) 21.3G lvm /
|
||||
```
|
||||
|
||||
You need a kernel to boot this, a kernel that understands crypto stuff as well as
|
||||
lvm.
|
||||
|
||||
`genkernel --symlink --save-config --no-mrproper --luks --lvm --udev --menuconfig all`
|
||||
|
||||
If you're using `gentoo-sources` you'll notice the fancy gentoo-specific menu on top. Go there and check
|
||||
systemd. Apart from the usual stuff, please make sure to check stuff on
|
||||
[this list](https://wiki.gentoo.org/wiki/Systemd), and also this one:
|
||||
|
||||
```
|
||||
Device Drivers
|
||||
Multi-device support (RAID and LVM)
|
||||
[*] Multiple devices driver support (RAID and LVM)
|
||||
<*> Device mapper support
|
||||
<*> Crypt target support
|
||||
|
||||
Cryptographic API
|
||||
<*> SHA256 digest algorithm
|
||||
<*> AES cipher algorithms
|
||||
```
|
||||
|
||||
Your setup is so new that you need grub2. Grub2 is very picky about its configuration. Take this one and
|
||||
avoid hours of reading:
|
||||
|
||||
```
|
||||
dagrey ~ # cat /etc/default/grub
|
||||
|
||||
GRUB_DISTRIBUTOR="Gentoo"
|
||||
|
||||
GRUB_DEFAULT=0
|
||||
GRUB_HIDDEN_TIMEOUT=0
|
||||
GRUB_HIDDEN_TIMEOUT_QUIET=true
|
||||
GRUB_TIMEOUT=3
|
||||
|
||||
GRUB_PRELOAD_MODULES=lvm
|
||||
GRUB_CRYPTODISK_ENABLE=y
|
||||
GRUB_DEVICE=/dev/ram0
|
||||
|
||||
# Append parameters to the linux kernel command line
|
||||
GRUB_CMDLINE_LINUX="real_init=/usr/bin/systemd quiet real_root=/dev/mapper/vg-root crypt_root=/dev/sdb2 dolvm acpi_backlight=vendor"
|
||||
```
|
||||
|
||||
You're using initrd to set everything up for the kernel, so you need `real_root` and `real_init` instead of
|
||||
regular ones. `cryptdevice` no longer works, use `crypt_root` And
|
||||
`dolvm` is essential, without it only the first part will work, leaving
|
||||
you with open crypt container and kernel panic just afterwards. Also
|
||||
notice `GRUB_DEVICE`, `GRUB_CRYPTODISK_ENABLE` and `GRUB_PRELOAD_MODULES`. Make sure the first partition on the disk you're
|
||||
installing grub onto is starting at 2048. If it's any earlier grub just
|
||||
won't be able to fit its magic in there. Finally, install grub
|
||||
|
||||
```
|
||||
grub2-install --modules="configfile linux crypto search_fs_uuid luks lvm" --recheck /dev/sda
|
||||
grub2-mkconfig -o /boot/grub/grub.cfg
|
||||
```
|
||||
|
||||
That should be sufficient to boot the system and initialize root. What
|
||||
about those other encrypted partitions like `/home` though ? Well, init
|
||||
subsystem needs to initialize them, OpenRC did such by reading
|
||||
`/etc/fstab` and then `/etc/dmcrypt/dmcrypt.conf` accordingly. Systemd is a
|
||||
bit different here. You still need your `/etc/fstab` entries for it to
|
||||
know which partitions need to be initialized. The place where you say
|
||||
how to map and decrypt crypto containers, however, is in `/etc/crypttab.`
|
||||
|
||||
```
|
||||
dagrey ~ # cat /etc/fstab
|
||||
|
||||
/dev/sdb1 /boot ext2 defaults 1 2
|
||||
/dev/mapper/vg-root / ext4 defaults 0 1
|
||||
/dev/mapper/vg-swap none swap sw 0 0
|
||||
/dev/mapper/crypthome /home ext4 defaults 0 2
|
||||
|
||||
dagrey ~ # cat /etc/crypttab
|
||||
#crypthome /dev/sda1
|
||||
crypthome /dev/sda1 /etc/conf.d/dmcrypt.key
|
||||
```
|
||||
|
||||
The keyfile is available from then already decrypted root partition. You can also skip the key and the
|
||||
you'll get a password prompt, sometimes hidden somewhere in systemd messages. Hit enter to reveal it once more.
|
17
content/posts/2013/12/28/30c3.md
Normal file
17
content/posts/2013/12/28/30c3.md
Normal file
|
@ -0,0 +1,17 @@
|
|||
---
|
||||
title: 30C3
|
||||
date: 2013-12-28 12:08:16
|
||||
tags: [CCC]
|
||||
category: freedom
|
||||
---
|
||||
|
||||
I'm writing this on the beginning of the day 2 of 30C3, as day 1 was so
|
||||
packed with action that I was not able to sit down and type, not even
|
||||
for a little while. [Glen Greenwald's keynote](https://www.youtube.com/watch?v=gyA6NZ9C9pM) was
|
||||
moving the crowd, making the audience interrupt him with rounds of
|
||||
applause every few minutes. Lots of mobile phone network exploitation
|
||||
talks along with general anti-buffer-overflow techniques. [Tor folks talking about the interesting times](https://www.youtube.com/watch?v=CJNxbpbHA-I) we live in. Quite
|
||||
a day. Here are some photos, with no Congress people, except for me, in
|
||||
them, as the tradition goes.
|
||||
|
||||
{{< gallery dir="galleries/30c3" />}}
|
28
content/posts/2014/01/01/wordpress-https-nonstandard-port.md
Normal file
28
content/posts/2014/01/01/wordpress-https-nonstandard-port.md
Normal file
|
@ -0,0 +1,28 @@
|
|||
---
|
||||
title: Wordpress and nonstandard ports and protocols
|
||||
date: 2014-01-01 11:32:36
|
||||
tags: [tls, wordpress]
|
||||
category: software
|
||||
---
|
||||
|
||||
I needed to set up a Wordpress installation where https is on
|
||||
nonstandard port and the admin interface lives in that land, while the
|
||||
site itself is using plain http.
|
||||
|
||||
In `wp-config.php`:
|
||||
|
||||
```php
|
||||
if (!empty($_SERVER['HTTPS'])) {
|
||||
define('WP_SITEURL', 'https://example.com:12345');
|
||||
define('WP_HOME', 'https://example.com:12345');
|
||||
}
|
||||
else {
|
||||
define('WP_SITEURL', 'http://example.com');
|
||||
define('WP_HOME', 'http://example.com');
|
||||
}
|
||||
```
|
||||
|
||||
This allows the installation to properly see resources like
|
||||
images and css if accessed via nonstandard port. So if you don't see
|
||||
image previews in the admin panel, your styles look weird, or you just
|
||||
don't see new posts' previewes - this might be it.
|
54
content/posts/2014/01/21/meetings.md
Normal file
54
content/posts/2014/01/21/meetings.md
Normal file
|
@ -0,0 +1,54 @@
|
|||
---
|
||||
title: Meetings
|
||||
date: 2014-01-21 20:13:05
|
||||
tags: [social]
|
||||
---
|
||||
|
||||
Meetings come in different shapes and forms. Let's chat about them.
|
||||
|
||||
# Decisions
|
||||
|
||||
Most of the meetings come from the desire to have a decision made. The
|
||||
problem is in most cases is that these are not decisions to be made now.
|
||||
Software prototyping is cheap. We should just try to build a working
|
||||
solution and iterate around. Let's prototype. Get someone most annoyed
|
||||
with the problem and leave them to build it. Of course, the clearer
|
||||
communication of what they are actually doing the better. It should be
|
||||
something like ‘hey I’m gonna build this – okay’ or even ‘hey, I've
|
||||
built that, let’s see how it behaves’ Does not need to be “we should now spend
|
||||
multiple meetings on discussing how this should be done’.
|
||||
|
||||
# Sharing the knowledge
|
||||
|
||||
Other possible reasoning behind having a meeting can be that of some
|
||||
knowledge needs to be shared. And that's a noble cause. Just don't make
|
||||
a meeting out of it. Make a lecture. A presentation. No audience members
|
||||
interacting with each other. Speaker talking and maybe sometimes
|
||||
allowing questions. The knowledge sharing sessions are oftentimes a
|
||||
prelude to the decisionmaking meetings. See above.
|
||||
|
||||
# Confirming your ideas
|
||||
|
||||
Sometimes however somebody just wants some confirmation on their idea,
|
||||
maybe before building a prototype. Then, there is a good chance that
|
||||
they already know who they should ask. No meeting then. Just ask the
|
||||
people you know you should ask. 1-on-1 interaction. Maybe somebody will
|
||||
overhear and start listening. Notice that the social dynamic is very
|
||||
different from the meeting then, two people having a conversation and
|
||||
another one politely listening, maybe being invited to the conversation
|
||||
after some while. Just look how it works in between the talks on
|
||||
conferences. Very different from “everybody says everything” meetings.
|
||||
|
||||
# The meetings that are left
|
||||
|
||||
Also, if for some reason you really need to have a meeting – make
|
||||
it opt-in. Just the people who are interested coming. Set the timer.
|
||||
There is one I particularly like - a clock showing amount of money
|
||||
wasted so far by this meeting.
|
||||
|
||||
## Post scriptum
|
||||
|
||||
[37 signals on meetings](https://m.signalvnoise.com/meetings-are-toxic/):
|
||||
These folks have the idea of every communication should be async and read
|
||||
when convenient, hence their emphasis on email. That gets you to really
|
||||
think of your proposal and really describe it, which is good. To stop and think, RFC-style.
|
44
content/posts/2014/02/01/compiling-tarsnap-raspberrypi.md
Normal file
44
content/posts/2014/02/01/compiling-tarsnap-raspberrypi.md
Normal file
|
@ -0,0 +1,44 @@
|
|||
---
|
||||
title: Compiling tarsnap on RaspberryPi
|
||||
date: 2014-02-01 21:59:27
|
||||
tags: [raspberry pi, tarsnap]
|
||||
---
|
||||
|
||||
Just a quickie for `tarsnap 1.0.35.` Featuring my new favourite, download software called aria2.
|
||||
|
||||
```
|
||||
aptitude install aria2 libssl-dev zlib1g-dev e2fslibs-dev
|
||||
aria2c https://www.tarsnap.com/download/tarsnap-autoconf-1.0.35.tgz
|
||||
aria2c https://www.tarsnap.com/download/tarsnap-sigs-1.0.35.asc
|
||||
gpg --recv-key 2F102ABB
|
||||
gpg --decrypt tarsnap-sigs-1.0.35.asc
|
||||
sha256sum tarsnap-autoconf-1.0.35.tgz # should get the value from sig file, 6c9f67....9a
|
||||
tar xf tarsnap-autoconf-1.0.35.tgz
|
||||
cd tarsnap-autoconf-1.0.35/
|
||||
./configure
|
||||
time nice ionice make -j2
|
||||
```
|
||||
|
||||
How do I know that `-j2` really gives some advantage on raspi ? Well, here is the benchmark:
|
||||
|
||||
```
|
||||
#fresh, j1
|
||||
real 14m7.129s
|
||||
user 6m30.790s
|
||||
sys 0m21.640s
|
||||
|
||||
#-j2
|
||||
real 11m33.868s
|
||||
user 6m36.690s
|
||||
sys 0m19.880s
|
||||
|
||||
#-j1 again, caches warmed up
|
||||
real 12m38.598s
|
||||
user 6m30.960s
|
||||
sys 0m20.470s
|
||||
|
||||
#-j2 again
|
||||
real 10m14.975s
|
||||
user 6m34.980s
|
||||
sys 0m20.710s
|
||||
```
|
8
content/posts/2014/02/11/today-fight-back.md
Normal file
8
content/posts/2014/02/11/today-fight-back.md
Normal file
|
@ -0,0 +1,8 @@
|
|||
---
|
||||
title: Today we fight back
|
||||
date: 2014-02-11 15:47:54
|
||||
---
|
||||
|
||||
If you don't have JS disabled you might have noticed the huge black
|
||||
banner on the bottom of this blog. Stop mass surveillance. This is the
|
||||
day we fight back. https://thedaywefightback.org/international/
|
90
content/posts/2014/02/16/sunpowered-server-setup.md
Normal file
90
content/posts/2014/02/16/sunpowered-server-setup.md
Normal file
|
@ -0,0 +1,90 @@
|
|||
---
|
||||
title: Sunpowered server setup
|
||||
date: 2014-02-16 21:13:46
|
||||
tags: [hardware, raspberry pi, sunpowered]
|
||||
bigimg: [{ src: "/galleries/sunpowered/IMG_0942.jpg" }]
|
||||
series: sunpowered
|
||||
---
|
||||
|
||||
Remember my [NAS](/tags/nas) ? It
|
||||
turned out great ! Very reliable storage, I had a disk failure once and
|
||||
haven't noticed for some time because all the files were just there.
|
||||
Hardware enhanced virtualization is another great stuff. I ended up
|
||||
migrating all my of infrastructure there, each service in separate
|
||||
virtual machine; email, calendar, contacts, tor node and such. Only
|
||||
caveat ? Power consumption. This setup just eats Watts. About 50W
|
||||
constant power usage is not something you want to have turned on
|
||||
24h/day. One such day I had a realization that this giant ball of plasma
|
||||
that is hanging out there might be of some use. One side of my balcony
|
||||
is to the south somewhat, gets lots of sunshine no matter whether it's
|
||||
morning or evening. Why not exploit that ? That's how my first
|
||||
solarpowered server setup was born. Enjoy the photos ! Also please find
|
||||
upgrade options and general notes after the break ! There's a [part 2](/posts/2014/04/21/adding-voltage-current-measurements-sunpowered-pi/) of this post you might be interested in as well.
|
||||
|
||||
Setup itself consists of:
|
||||
|
||||
- 144W solar panel
|
||||
- 33Ah 12V battery
|
||||
- trusty old WRT54GL
|
||||
- Raspberry Pi model B
|
||||
- charging controller
|
||||
- 12V and 5V step up/step down converters. Don't use linear converters,
|
||||
especially for the 5V rail. As these will give you the 5V by
|
||||
dissipating the difference from 12V directly onto their heatsinks,
|
||||
huge power loses.
|
||||
- around one hundred M3 hexhead screws with nuts and washers. yup.
|
||||
|
||||
The router acts as wireless bridge to my home WiFi network, there are no
|
||||
cables running from inside the house to the balcony. Router and raspi
|
||||
use about 8W total. It is winter in here now and this seems to be
|
||||
holding nicely, panel being able to charge the battery for the night
|
||||
during relatively short day, even if the weather is bad. However, I want
|
||||
more computing power there and this setup does not seem to be very
|
||||
scalable. Another raspi model B means another 4W constant power usage. I
|
||||
estimate the whole thing will start loosing power during the night with
|
||||
about 15W constant consumption. Which is okay for stuff like email
|
||||
server, but not really for blog or other sites. Hence my first idea for
|
||||
improvement: discard router and change for the separate raspis, model A,
|
||||
with wireless network cards each. Should be much better. Some general
|
||||
notes:
|
||||
|
||||
- Use equipment specifically designed for DC. You want to disconnect
|
||||
the solar panel or battery sometimes. To be able to to that without
|
||||
that fancy sparks show you need proper DC switch able to handle high
|
||||
currents. AC switches as any other equipment dragged from AC land are
|
||||
not really a choice. If you use AC mains switch to switch high
|
||||
current DC you might end up with nice weld in place of your switch.
|
||||
Same for fuses.
|
||||
- My ability to cut acrylic to line is nonexistent. Probably maybe use
|
||||
better tools ? Or even, since I now know how the box should be cut -
|
||||
just order pieces for box 2.0 cut to size already.
|
||||
- Same for my ability to make stuff look nice and clean
|
||||
- I like the look of bare PCBs inside of transparent box though
|
||||
- The box itself seems to be holding up nicely against below zero
|
||||
temperatures as well as rain.
|
||||
- Air flow is nice, nothing is heating up. Air enters from the bottom,
|
||||
heats up a bit and moves up. Goes through the holes on the left, into
|
||||
the funnel and exist on the right. Water does not enter as there is
|
||||
pretty steep slope there.
|
||||
- Watch for SD card corruption. Most often, the cause is having 5V not
|
||||
really being 5V. Raspi does not really like lower voltages. One
|
||||
preventive measure would be not to use some cheap voltage converters.
|
||||
Another is to mount SD card with very conservative options. I use `/dev/mmcblk0p2 / ext4 defaults,rw,data=journal,journal_checksum,discard 0 1`
|
||||
- Make sure your electronic components are rated for -40C to +80C
|
||||
- I'm a bit worried of battery being in such proximity to the airco
|
||||
unit. We'll see in the summer whether it needs relocation, for now
|
||||
the unit is completely powered off.
|
||||
- mountain climbing equipment comes in handy when hanging stuff from
|
||||
your balcony
|
||||
|
||||
Future improvements:
|
||||
|
||||
- most pressing: get the power usage down by changing to model A + wifi
|
||||
card
|
||||
- add monitoring, something like ADC connected to raspi's GPIO ports,
|
||||
gathering voltages all across. I would like to get readings on: solar
|
||||
panel voltage, battery voltage, 5V rail actual voltage and the whole
|
||||
system power usage at least
|
||||
- more safety fuses and bypass diodes
|
||||
|
||||
{{< gallery dir="galleries/sunpowered" />}}
|
24
content/posts/2014/02/24/wifi-raspberrypi.md
Normal file
24
content/posts/2014/02/24/wifi-raspberrypi.md
Normal file
|
@ -0,0 +1,24 @@
|
|||
---
|
||||
title: WiFi on RaspberryPi
|
||||
date: 2014-02-24 20:45:32
|
||||
tags: [debian, raspberry pi]
|
||||
---
|
||||
|
||||
Easiest way I've found to configure wifi on RaspberryPi, not really
|
||||
being mentioned when you search for such. Not using separate
|
||||
wpa_supplicant configuration at all.
|
||||
|
||||
```
|
||||
root@frontend:~# cat /etc/network/interfaces
|
||||
auto lo
|
||||
iface lo inet loopback
|
||||
|
||||
iface eth0 inet dhcp
|
||||
|
||||
allow-hotplug wlan0
|
||||
iface wlan0 inet dhcp
|
||||
wpa-ssid NETWORK_NAME
|
||||
wpa-psk NETWORK_KEY
|
||||
|
||||
iface default inet dhcp
|
||||
```
|
11
content/posts/2014/03/17/poc-gtfo.md
Normal file
11
content/posts/2014/03/17/poc-gtfo.md
Normal file
|
@ -0,0 +1,11 @@
|
|||
---
|
||||
title: PoC or GTFO
|
||||
date: 2014-03-17 10:08:21
|
||||
tags: [pocorgtfo]
|
||||
---
|
||||
|
||||
Hey – to all you curious folks – the new issue of PoC or GTFO is well,
|
||||
out ! The best minds in infosec on exploits and more. Lots of hardcore
|
||||
programming knowledge to obtain. For your convenience, as it’s not that
|
||||
easy to get this on the webs, I’ve took a liberty of uploading them
|
||||
[here](/pages/files)
|
|
@ -0,0 +1,33 @@
|
|||
---
|
||||
title: Changing Terminal preferences in Gnome 3 from the commandline
|
||||
date: 2014-03-29 22:34:21
|
||||
tags: [gnome3]
|
||||
---
|
||||
|
||||
It turns out this was not that obvious, at least for me, how to change
|
||||
various profile preferences for Gnome Terminal under Gnome 3 from the commandline. You can go
|
||||
and fetch the list of profiles this way:
|
||||
|
||||
```
|
||||
~# dconf list /org/gnome/terminal/legacy/profiles:/
|
||||
:b1dcc9dd-5262-4d8d-a863-c897e6d979b9/
|
||||
```
|
||||
|
||||
And then you can use the profile id to list and change various settings:
|
||||
|
||||
```
|
||||
~# dconf list /org/gnome/terminal/legacy/profiles:/:b1dcc9dd-5262-4d8d-a863-c897e6d979b9/
|
||||
foreground-color
|
||||
login-shell
|
||||
palette
|
||||
use-system-font
|
||||
use-theme-colors
|
||||
font
|
||||
bold-color-same-as-fg
|
||||
bold-color
|
||||
background-color
|
||||
audible-bell
|
||||
|
||||
~# dconf write /org/gnome/terminal/legacy/profiles:/:b1dcc9dd-5262-4d8d-a863-c897e6d979b9/font "'Inconsolata for Powerline Medium 18'"
|
||||
~# dconf write /org/gnome/terminal/legacy/profiles:/:b1dcc9dd-5262-4d8d-a863-c897e6d979b9/login-shell true
|
||||
```
|
|
@ -0,0 +1,68 @@
|
|||
---
|
||||
title: Adding voltage and current measurements to the sunpowered Pi
|
||||
date: 2014-04-21 14:39:13
|
||||
tags: [hardware, raspberry pi, sunpowered]
|
||||
bigimg:
|
||||
[
|
||||
{
|
||||
src: "/images/adding-voltage-current-measurements-sunpowered-pi/voltages.png",
|
||||
},
|
||||
]
|
||||
series: sunpowered
|
||||
---
|
||||
|
||||
Remember my [sunpowered Pi](/posts/2014/02/16/sunpowered-server-setup/)
|
||||
installation on the balcony ? The only indication I had, since recently,
|
||||
on how well the system is doing was an LED blinking red when battery was
|
||||
low. Not really helpful in making predictions or making measurements
|
||||
over the time. I've searched for simple ADC solution to hook up into Pi
|
||||
and allow for some voltage and power measurements. I've decided on [ADC Pi](https://www.abelectronics.co.uk/p/69/adc-pi-raspberry-pi-analogue-to-digital-converter),
|
||||
as it seemed very straightforward in its design and also comes with
|
||||
example python code. Did I say Python ?! It turns
|
||||
out that Python has an excellent [graph plotting library](http://matplotlib.org/) as well as it is very well equipped
|
||||
with general purpose functions and hardware specific stuff support, like
|
||||
i2c. But back to the system design. The solar panel itself can generate up to
|
||||
about 30V under no load. Battery is 12V nominal but can get to 14.5V
|
||||
when charging, the specs say. ADC Pi however, can measure up to 5V. You
|
||||
have some resistors laying around you say ? Voltage divider it is. For
|
||||
current measurement I've used [hall effect sensor module](http://www.pololu.com/product/1185) from Pololu. Summarising,
|
||||
I have 8 measurement lines, hooked up as follows:
|
||||
|
||||
1. unused :D
|
||||
2. voltage of the power line from Pi to current sensor
|
||||
3. panel voltage
|
||||
4. battery voltage
|
||||
5. load voltage
|
||||
6. regulated 12V rail voltage
|
||||
7. regulated 5V rail voltage
|
||||
8. current sensor reading voltage
|
||||
|
||||
It turned out that for the current measurement to be accurate I can't
|
||||
trust the voltage coming from the Pi to be stable. I actually measure
|
||||
that and use that to calculate the real reading. The docs round the hall
|
||||
sensor are not that obvious at the first sight, so here's the formula I
|
||||
came up with, for the greater good:
|
||||
|
||||
`current = (measured_sensor_voltage - (voltage_powering_sensor/2))/0.185`
|
||||
|
||||
Finally, sprinkle all of the above with [some python](https://github.com/cyplo/sunpowered) and get the following:
|
||||
|
||||
{{< figure src="/images/adding-voltage-current-measurements-sunpowered-pi/voltages.png" position="center" >}}
|
||||
|
||||
Looking at this you can spot 2 things. One - April the 5th
|
||||
was supercloudy superrainy and the battery did not get much charge. And
|
||||
the second being that on the average day the battery gets to the full
|
||||
capacity near the half of the sunny period. This is the data I was after
|
||||
! I think this means that I can add more batteries to the system and on
|
||||
a sunny day they will get filled up and this should suffice for couple
|
||||
of rainy days in a row. Here, get some photos as the bonus, also:
|
||||
|
||||
TODOs, for me, and everyone else, to remember that nothing is ever finished in the
|
||||
realm of hobby projects:
|
||||
|
||||
- add graph for power usage
|
||||
- would be super cool to add the weather data to the graphs
|
||||
- clean up python stuff, add more unit tests there
|
||||
- write next post on the above ;)
|
||||
|
||||
{{< gallery dir="galleries/adding-voltage-current-measurements-sunpowered-pi/" />}}
|
13
content/posts/2014/06/19/better-crypto-initiative.md
Normal file
13
content/posts/2014/06/19/better-crypto-initiative.md
Normal file
|
@ -0,0 +1,13 @@
|
|||
---
|
||||
title: Better crypto initiative
|
||||
date: 2014-06-19 12:38:07
|
||||
tags: [crypto, tls, security]
|
||||
---
|
||||
|
||||
It's not common for me to put just one link here as the content of the
|
||||
article. Today, however, is one of these days. The
|
||||
[bettercrypto](https://bettercrypto.org/) folks came up with
|
||||
really excellent practical guide to securing your servers. A draft for
|
||||
now, but already sporting a high concentration of knowledge. BTW - it
|
||||
being a draft means that you should read it and contribute to it as
|
||||
well.
|
14
content/posts/2014/06/19/filament-spool-wall.md
Normal file
14
content/posts/2014/06/19/filament-spool-wall.md
Normal file
|
@ -0,0 +1,14 @@
|
|||
---
|
||||
title: Mount your filament spool on the wall
|
||||
date: 2014-06-19 13:01:59
|
||||
tags: [3d printing, hardware]
|
||||
category: hardware
|
||||
---
|
||||
|
||||
I find it useful to hang as much stuff as possible on the walls, instead
|
||||
of using shelf/floor/desk space for that. Here is just a quick hack I
|
||||
did to allow filament spools to be mounted securely to a wall. It turns
|
||||
out that if you cut off the bent part the rod it fits perfectly into the
|
||||
spool's handle hole.
|
||||
|
||||
{{< gallery dir="galleries/filament-spool-wall" />}}
|
56
content/posts/2014/07/05/compiling-git-2-0-cygwin.md
Normal file
56
content/posts/2014/07/05/compiling-git-2-0-cygwin.md
Normal file
|
@ -0,0 +1,56 @@
|
|||
---
|
||||
title: Compiling git 2.0 on cygwin
|
||||
date: 2014-07-05 10:06:59
|
||||
tags: [cygwin]
|
||||
---
|
||||
|
||||
I had some troubles compiling git 2.0 under cygwin. I present you with a
|
||||
very dirty hack to do so. Proper patch will probably follow. Did I
|
||||
mention that the hack is dirty and will make your hands burn if you're
|
||||
gonna type it in ?
|
||||
|
||||
```
|
||||
git clone https://github.com/git/git.git
|
||||
cd git
|
||||
git checkout v2.0.1
|
||||
autoconf
|
||||
./configure
|
||||
# so far so good...
|
||||
make
|
||||
|
||||
# oops
|
||||
# ....
|
||||
|
||||
SUBDIR perl
|
||||
make[2]: /home/cplotnicki/dev/git/perl/0: Command not found
|
||||
perl.mak:375: recipe for target 'blib/lib/.exists' failed
|
||||
make[2]: *** [blib/lib/.exists] Error 127
|
||||
Makefile:16: recipe for target 'all' failed
|
||||
make[1]: *** [all] Error 2
|
||||
Makefile:1653: recipe for target 'all' failed
|
||||
make: *** [all] Error 2
|
||||
```
|
||||
|
||||
Want perl as '0' ? Well, why not. Here you are:
|
||||
|
||||
```
|
||||
# link perl as 0 to some directory that is in your path
|
||||
ln -s /usr/bin/perl ~/tools/0
|
||||
# also link here, obviously.
|
||||
# 'perl' is a direct subdir for your git checkout
|
||||
ln -s /usr/bin/perl perl/0
|
||||
|
||||
make # should now compile
|
||||
|
||||
# cygwin's permission scheme is very peculiar
|
||||
# here, have a dirty hack for your default install
|
||||
# where there is no su or sudo
|
||||
chmod a+rwX -R /usr/local/share/man/man3
|
||||
chmod a+rwX -R /usr/local/lib/perl5/site_perl
|
||||
|
||||
make install
|
||||
git --version
|
||||
# should display 2.0.1.
|
||||
# update man pages' cache manually
|
||||
/etc/postinstall/man-db.sh
|
||||
```
|
90
content/posts/2014/09/26/poor-mans-secrets-storage.md
Normal file
90
content/posts/2014/09/26/poor-mans-secrets-storage.md
Normal file
|
@ -0,0 +1,90 @@
|
|||
---
|
||||
title: Poor man's secrets storage
|
||||
date: 2014-09-26 10:33:31
|
||||
tags: [security]
|
||||
---
|
||||
|
||||
I'm a bit cautious when it comes to storing my passwords and other
|
||||
secrets. I do not use any web or desktop applications to do this for me.
|
||||
How do I remember those passphrases then ? I have a central file server,
|
||||
accessible via a tunnel. I store there a gpg-encrypted file containing a
|
||||
tar archive of a directory with various files containing secrets.
|
||||
Syncing these files across computers became a bit cumbersome lately. I'm
|
||||
using git to version them, but because I do not want to have the sync
|
||||
server to contain unencrypted secrets I needed to bake some custom
|
||||
solution. [Bash](https://access.redhat.com/articles/1200223) to the
|
||||
rescue ! There are still some assumptions made here about permissions,
|
||||
directories layout and some stuff not failing, but I'm sure you'll be
|
||||
able to figure this out and tweak to your needs.
|
||||
|
||||
```
|
||||
#!/bin/bash
|
||||
|
||||
TUNNEL_CREDS="user@tunnelhost"
|
||||
TUNNEL_PORT=123
|
||||
STORAGE_CREDS="storage_user@localhost"
|
||||
STORAGE_ADDRESS="storagehost.example.org"
|
||||
SOCKET="/tmp/black_socket"
|
||||
REMOTE_VAULT_PATH="/somepath/.vault.tar.gpg"
|
||||
TMP_VAULT="/tmp/.vault.tar.gpg"
|
||||
TMP_VAULT_TAR="/tmp/.vault.tar"
|
||||
TMP_VAULT_DIR="/tmp/.vault"
|
||||
|
||||
TMP_LOCAL_PORT=10022
|
||||
LOCAL_VAULT_DIR="$HOME/.vault"
|
||||
LOCAL_VAULT_BACKUP_DIR="$LOCAL_VAULT_DIR.bak"
|
||||
|
||||
pushd `pwd`
|
||||
|
||||
echo "removing old vault backup at $LOCAL_VAULT_BACKUP_DIR"
|
||||
rm -rI "$LOCAL_VAULT_BACKUP_DIR"
|
||||
|
||||
set -e
|
||||
|
||||
echo "backing up local vault..."
|
||||
cp -r "$LOCAL_VAULT_DIR" "$LOCAL_VAULT_BACKUP_DIR"
|
||||
|
||||
echo "establishing tunnel ..."
|
||||
ssh -L $TMP_LOCAL_PORT:$STORAGE_ADDRESS:22 $TUNNEL_CREDS -p $TUNNEL_PORT -N -f -M -S "$SOCKET"
|
||||
|
||||
echo "tunnel ready, copying remote version of the vault..."
|
||||
rsync --progress -avz -e "ssh -p $TMP_LOCAL_PORT" "$STORAGE_CREDS:$REMOTE_VAULT_PATH" "$TMP_VAULT"
|
||||
|
||||
echo "decrypting new vault..."
|
||||
gpg -d "$TMP_VAULT" > "$TMP_VAULT_TAR"
|
||||
|
||||
echo "unpacking new vault..."
|
||||
mkdir -p "$TMP_VAULT_DIR"
|
||||
tar xf "$TMP_VAULT_TAR" -C "$TMP_VAULT_DIR"
|
||||
|
||||
echo "pulling from remote vault..."
|
||||
cd "$LOCAL_VAULT_DIR"
|
||||
git pull "$TMP_VAULT_DIR"
|
||||
|
||||
echo "pulling to remote vault..."
|
||||
cd "$TMP_VAULT_DIR"
|
||||
git pull "$LOCAL_VAULT_DIR"
|
||||
|
||||
echo "cleaning up a bit..."
|
||||
rm -fr "$TMP_VAULT_TAR"
|
||||
rm -fr "$TMP_VAULT"
|
||||
|
||||
echo "packing refreshed remote vault..."
|
||||
tar pcf "$TMP_VAULT_TAR" -C "$TMP_VAULT_DIR" .
|
||||
|
||||
echo "encrypting refreshed remote vault..."
|
||||
gpg -c "$TMP_VAULT_TAR"
|
||||
|
||||
echo "sending out updated vault"
|
||||
rsync --progress -avz "$TMP_VAULT" -e "ssh -p $TMP_LOCAL_PORT" "$STORAGE_CREDS:$REMOTE_VAULT_PATH"
|
||||
|
||||
echo "cleaning up.. "
|
||||
rm -fr "$TMP_VAULT_DIR"
|
||||
rm -fr "$TMP_VAULT_TAR"
|
||||
rm -fr "$TMP_VAULT"
|
||||
|
||||
echo "closing tunnel.."
|
||||
ssh -S "$SOCKET" -O exit $TUNNEL_CREDS
|
||||
|
||||
popd
|
||||
```
|
44
content/posts/2014/11/01/running-eagle-ubuntu-14-10-64bit.md
Normal file
44
content/posts/2014/11/01/running-eagle-ubuntu-14-10-64bit.md
Normal file
|
@ -0,0 +1,44 @@
|
|||
---
|
||||
title: Running Eagle on Ubuntu 14.10 64bit
|
||||
date: 2014-11-01 11:08:10
|
||||
tags: [eda, eagle, linux]
|
||||
---
|
||||
|
||||
Eagle is still the first choice when it comes to Open Hardware
|
||||
electronics design. That's a bit unfortunate because the software itself
|
||||
is proprietary. Sometimes you need to run it though. For example to
|
||||
migrate projects over to non-proprietary software ! Say, you'd like to
|
||||
run new Eagle 7.1 under Ubuntu ? Try repos. Repos have the old major
|
||||
version 6 only. The harder to get proprietary software the better, I
|
||||
suppose. Download the blob then:
|
||||
|
||||
```
|
||||
$ wget -c http://web.cadsoft.de/ftp/eagle/program/7.1/eagle-lin-7.1.0.run
|
||||
$ chmod a+x eagle-lin-7.1.0.run
|
||||
```
|
||||
|
||||
Inspect and run:
|
||||
|
||||
```
|
||||
$ vim eagle-lin-7.1.0.run
|
||||
$ ./eagle-lin-7.1.0.run
|
||||
Ensure the following 32 bit libraries are available:
|
||||
libXrender.so.1 => not found
|
||||
libXrandr.so.2 => not found
|
||||
libXcursor.so.1 => not found
|
||||
libfreetype.so.6 => not found
|
||||
libfontconfig.so.1 => not found
|
||||
libXi.so.6 => not found
|
||||
libssl.so.1.0.0 => not found
|
||||
libcrypto.so.1.0.0 => not found
|
||||
```
|
||||
|
||||
32bit craziness, you say.
|
||||
New Ubuntu does not have ia32 libs prepackaged, you say ? Here, have
|
||||
this handy list of all of the dependencies then:
|
||||
|
||||
```
|
||||
$ sudo apt-get install libxrandr2:i386 libxrender1:i386 libxcursor1:i386 libfreetype6:i386 libfontconfig:i386 libxi6:i386 libssl1.0.0:i386 libcrypto++9:i386
|
||||
# should show you the installation wizard [sic !]
|
||||
$ ./eagle-lin-7.1.0.run
|
||||
```
|
23
content/posts/2014/11/01/tor-talk.md
Normal file
23
content/posts/2014/11/01/tor-talk.md
Normal file
|
@ -0,0 +1,23 @@
|
|||
---
|
||||
title: Tor talk
|
||||
date: 2014-11-01 12:19:49
|
||||
tags: [tor, talks]
|
||||
category: talks
|
||||
description:
|
||||
categories: talks
|
||||
wp-status: publish
|
||||
---
|
||||
|
||||
I gave a talk this Monday, an important one I think. The one from the
|
||||
kind of spreading knowledge on the safe internet usage to people not
|
||||
necessarily of the tech background. This was my first one given to a
|
||||
such audience and to add to it all, it was given in Polish. The biggest
|
||||
challenge ? Finding good equivalent for the English tech terms. I think
|
||||
the talk went quite okay and the discussion afterwards was
|
||||
lively. I talked a bit on how the internet works and what's wrong with
|
||||
that, to transition later to what problems Tor addresses and which it
|
||||
does not. I tried to emphasize that using Tor does not make you
|
||||
automatically immune to the dangers of the internet. Big thanks to the
|
||||
organizers, [Praxis](http://praxis.ue.wroc.pl/) student group from
|
||||
the Wroclaw University of Economy. You can find my slides
|
||||
[here](https://github.com/cyplo/talks/tree/master/tor_for_beginners), along with speaker notes.
|
19
content/posts/2014/11/09/gui-vagrant-box.md
Normal file
19
content/posts/2014/11/09/gui-vagrant-box.md
Normal file
|
@ -0,0 +1,19 @@
|
|||
---
|
||||
title: GUI Vagrant box
|
||||
date: 2014-11-09 16:02:13
|
||||
tags: [linux, vagrant]
|
||||
---
|
||||
|
||||
Recently I've started working on changing my default development
|
||||
workflow. I'm evaluating vagrant as a main env manager, and then docker
|
||||
for extra speed. In short, my `vagrant up` boots up new dev box and
|
||||
then couple of docker containers. What I've found is that there is not
|
||||
really a plethora of GUI-enabled vagrant boxes, so I've created one ! If
|
||||
you want to use it, go:
|
||||
|
||||
```
|
||||
vagrant init
|
||||
cyplo/ubuntu-gnome-utopic-gui vagrant up
|
||||
```
|
||||
|
||||
I will write about the whole setup later, as I'm not yet sure what approach is best for me.
|
14
content/posts/2015/01/06/standing-desk.md
Normal file
14
content/posts/2015/01/06/standing-desk.md
Normal file
|
@ -0,0 +1,14 @@
|
|||
---
|
||||
title: Standing desk
|
||||
date: 2015-01-06 14:19:40
|
||||
tags: [hardware]
|
||||
---
|
||||
|
||||
It was some time since the last photo-story so, please accept these
|
||||
pictures of my standing desk. On the actual desk, there is a laptop
|
||||
stand serving a role of a keyboard and mouse rest. Laptop itself is
|
||||
flipped on its back, motherboard attached to the back of what once was a
|
||||
lid. The whole thing is flying on standard monitor desk mount, using
|
||||
custom vesa-to-acrylic mounting system ;)
|
||||
|
||||
{{< gallery dir="galleries/standing-desk" />}}
|
|
@ -0,0 +1,85 @@
|
|||
---
|
||||
title: Backing up and restoring whole block devices
|
||||
date: 2015-02-14 08:30:51
|
||||
tags: [raspberry pi, hardware]
|
||||
---
|
||||
|
||||
SD cards are not really a reliable storage, especially when used
|
||||
constantly e.g. while sitting in always powered-on Raspberry Pi. Because
|
||||
of that I've recently needed to perform lots of backup/restore
|
||||
operations ;) I wrote this script for backing up:
|
||||
|
||||
```
|
||||
#!/bin/bash
|
||||
|
||||
if [[ -z $1 ]]; then
|
||||
echo "usage: $0 device_to_clone"
|
||||
exit
|
||||
fi
|
||||
|
||||
device=$1
|
||||
|
||||
timestamp=`date +%Y%m%d`
|
||||
dest_file="/tmp/$timestamp.dd.xz"
|
||||
|
||||
echo "about to clone $device to $dest_file"
|
||||
echo "ctrl-c or [enter]"
|
||||
read
|
||||
|
||||
sudo umount $device?
|
||||
sudo umount $device
|
||||
|
||||
sudo sync
|
||||
sudo pv -tpreb $device | dd bs=4M | pixz > $dest_file
|
||||
sudo sync
|
||||
```
|
||||
|
||||
And this one for restoring:
|
||||
|
||||
```
|
||||
#!/bin/bash
|
||||
|
||||
if [[ -z $1 ]] || [[ -z $2 ]]; then
|
||||
echo "usage: $0 restore_file.xz device_to_restore_to"
|
||||
exit
|
||||
fi
|
||||
|
||||
source_file=$1
|
||||
if [[ ! -f $source_file ]]; then
|
||||
echo "cannot open $source_file"
|
||||
exit
|
||||
fi
|
||||
|
||||
device=$2
|
||||
|
||||
echo "about to restore $source_file onto $device"
|
||||
echo "ctrl-c or [enter]"
|
||||
read
|
||||
|
||||
sudo umount $device?
|
||||
sudo umount $device
|
||||
|
||||
pv -tpreb $source_file | pixz -d | sudo dd bs=4M of=$device
|
||||
sudo sync
|
||||
sudo eject $device
|
||||
```
|
||||
|
||||
Some of the more fun features include progressbars and making sure you've unmounted the
|
||||
device properly before ;) This also uses parallel threads to deflate the
|
||||
data, so the XZ compression should not be a bottleneck on any modern
|
||||
machine. The scripts above were used to backup and restore SD cards but
|
||||
will work for any block device, be it an external or internal disk
|
||||
drive, etc. usage example [remember to use the whole device, not just
|
||||
its partition as an argument]:
|
||||
|
||||
```
|
||||
./backup_sdcard /dev/sdc
|
||||
about to clone /dev/sdc to /tmp/20150214.dd.xz
|
||||
ctrl-c or [enter]
|
||||
|
||||
[sudo] password for cyryl:
|
||||
umount: /dev/sdc1: not mounted
|
||||
umount: /dev/sdc2: not mounted
|
||||
umount: /dev/sdc: not mounted
|
||||
19,6MiB 0:00:02 [9,72MiB/s] [> ] 0% ETA 0:52:26
|
||||
```
|
15
content/posts/2015/03/28/tools-pcb-holder.md
Normal file
15
content/posts/2015/03/28/tools-pcb-holder.md
Normal file
|
@ -0,0 +1,15 @@
|
|||
---
|
||||
title: Tools - PCB holder
|
||||
date: 2015-03-28 18:33:53
|
||||
tags: [hardware, electronics]
|
||||
series: tools
|
||||
---
|
||||
|
||||
I thought it would be cool to share with you the tools I find
|
||||
surprisingly useful. Behold the first in the series: the PCB holder ! I
|
||||
cannot overstate how much is that of a difference from the 'third
|
||||
hand'-type of holders. The grip is very firm but won't scratch the
|
||||
surface nor short anything because the jaws are made from a soft
|
||||
plastic. And the whole thing **ROTATES** !
|
||||
|
||||
{{< gallery dir="galleries/tools-pcb-holder" />}}
|
35
content/posts/2015/04/26/cnc-router-arrives.md
Normal file
35
content/posts/2015/04/26/cnc-router-arrives.md
Normal file
|
@ -0,0 +1,35 @@
|
|||
---
|
||||
title: CNC router arrives
|
||||
date: 2015-04-26 13:17:05
|
||||
tags: [hardware, cnc]
|
||||
series: cnc
|
||||
---
|
||||
|
||||
After 2 months of waiting - my CNC router arrives. 8 weeks lead time
|
||||
they said - 7 weeks and 4 days it was ! Who are they ?
|
||||
[TanieCNC](http://tanie-cnc.pl/) people [CheapCNC in Polish :].
|
||||
Although it may look like they don't know how to make websites AND their
|
||||
name does not instill a lot of confidence - but hey, they certainly
|
||||
know how to weld and make precise machinery ! The size of the package
|
||||
caught me off guard, I've spent an hour disassembling the crate in full
|
||||
sun. After that I wasn't able to get it through the stairs myself,
|
||||
fortunately a friendly neighbour gave me their pair of hands. Lifting
|
||||
the machine by 2 people is okay, it's still not lightweight, but
|
||||
bearable. Putting it on the table was a different affair entirely.
|
||||
Careful not to damage anything, especially the motor assemblies - we've
|
||||
put it on a impromptu wood ramp. Using heavy duty straps, we've lifted it
|
||||
up little by little. Then some inspection - the quality is really
|
||||
superb, especially of the metal frame ! After that I got an old PC with
|
||||
Windows XP and parallel port running Mach3 software - I wanted to set it
|
||||
up as in any other shop at start. Later on I'm planning on moving to
|
||||
LinuxCNC and then gradually off parallel port on to a USB stack,
|
||||
something more like an arduino parsing gcode and driving motors instead
|
||||
of relying of the accurate timing of the PC. TODOs:
|
||||
|
||||
- add an MDF bed layer on top of existing bed
|
||||
- get better clamps
|
||||
- get more router bits
|
||||
- get a vacuum attachment for the spindle
|
||||
- move to LinuxCNC
|
||||
|
||||
{{< gallery dir="galleries/cnc-router-arrives" />}}
|
34
content/posts/2015/05/02/sunpowered-data.md
Normal file
34
content/posts/2015/05/02/sunpowered-data.md
Normal file
|
@ -0,0 +1,34 @@
|
|||
---
|
||||
title: Update on the sunpowered server
|
||||
date: 2015-05-02 14:54:05
|
||||
tags: [observability]
|
||||
series: sunpowered
|
||||
---
|
||||
|
||||
Some, rather long, time ago I've added a [custom python](/posts/2014/04/21/adding-voltage-current-measurements-sunpowered-pi/)
|
||||
data acquisition and graphing to my sunpowered RaspberryPi installation
|
||||
on the balcony. Since then I've upgraded it to Raspi2 and ported the
|
||||
data thingy to influxdb + grafana. All 3 of those things I am very
|
||||
positively surprised by.
|
||||
|
||||
RaspberryPi2 - definitely worth the upgrade - it's a speed demon now. Small caveat - I recommend
|
||||
installing raspbian from scratch, especially if you had some custom
|
||||
overclocking config, as these do not seem to be compatible between Pi1 and Pi2. Also RasPi2 needs a microsd card instead of full-sized one. As for
|
||||
the software - since everything went surprisingly smoothly this post is
|
||||
not much of a tutorial. Just go to [influxdb](http://influxdb.com/)
|
||||
and [Grafana](http://grafana.org/) and go through the respective
|
||||
installation documentation. You need x86 64bit server to host this, so
|
||||
unfortunately no self-hosting on RaspberryPi - at least I wasn't able to
|
||||
compile the software there. I've [changed the original python scripts slightly](https://github.com/cyplo/sunpowered/tree/master/software),
|
||||
to upload the data to influxdb instead of graphing directly via
|
||||
matplotlib. Then configured grafana to display some cool graphs and that
|
||||
was pretty much it - you can see the result at
|
||||
[data.cyplo.net](http://data.cyplo.net/dashboard/db/sunpowered).
|
||||
|
||||
Right now I'm testing 2 different sizes of solar panels and
|
||||
batteries, hooked at the same time. The ADC is connected as it was
|
||||
before though, so a TODO is to add more measurements, to see how the
|
||||
individual panels' output change during the data and how does it affect
|
||||
each of the batteries.
|
||||
|
||||
{{< gallery dir="galleries/sunpowered-data" />}}
|
80
content/posts/2015/05/28/cnc-workflow.md
Normal file
80
content/posts/2015/05/28/cnc-workflow.md
Normal file
|
@ -0,0 +1,80 @@
|
|||
---
|
||||
title: My CNC machining workflow
|
||||
date: 2015-05-28 19:01:33
|
||||
tags: [cnc]
|
||||
series: cnc
|
||||
---
|
||||
|
||||
Hello ! Today we'll talk about driving CNC machines, toolpaths and
|
||||
Debian, so stay tuned ! I have a separate old PC for driving the CNC
|
||||
machine via parallel port. This is, as they say, the Only Proper Way and
|
||||
It Was Always Like That. I'm thinking about changing this to
|
||||
USB+[grbl](https://github.com/grbl/grbl) in the future then ;) Up
|
||||
till now, my workflow went as follows;
|
||||
|
||||
- Do the research and drawing/parts modeling in FreeCad, on my main workstation
|
||||
- Export to e.g. DXF
|
||||
- Import in HeeksCad
|
||||
- Design machining operations, export gcode
|
||||
- Copy gcode to a network drive
|
||||
- Switch the monitor and keyboard to the one of the old PC
|
||||
- Open gcode in LinuxCNC and go
|
||||
|
||||
What happens if it's not perfect at first try though ?! Most commonly the issue is with the
|
||||
toolpath, like I want to change feeds or speeds or depth of cut, rarely
|
||||
it is with the part itself, fortunately. It may have something to do
|
||||
with the fact that I'm mostly working with other people's parts for now
|
||||
;) Anyway, to do any correction I need to switch back to the main
|
||||
workstation, correct in Heeks, re-export to the network drive and switch
|
||||
back, reimport. Not very annoying but not very convenient either. But
|
||||
wait. What if...I install Heeks on the old PC ?! It's running
|
||||
[LinuxCNC](http://linuxcnc.org/) realtime distro, which is based on
|
||||
Debian wheezy. Heeks packages are available prepackaged for Ubuntu only.
|
||||
With the help of the
|
||||
[documentation](https://code.google.com/p/heekscad/wiki/BuildDebianPackages)
|
||||
and the comments there and in other corners of the internet I was able
|
||||
to get this little script done:
|
||||
|
||||
```bash
|
||||
#!/bin/bash
|
||||
set -e
|
||||
set -v
|
||||
|
||||
sudo apt-get update
|
||||
sudo apt-get -y install liboce-visualization-dev libwxgtk2.8-dev libgtkglext1-dev python-dev build-essential bzr git libboost-dev libboost-python-dev subversion debhelper cmake liboce-ocaf2 liboce-ocaf-dev oce-draw
|
||||
mkdir heeks_build
|
||||
cd heeks_build
|
||||
svn checkout http://libarea.googlecode.com/svn/trunk/ libarea
|
||||
cd libarea
|
||||
dpkg-buildpackage -b -us -uc
|
||||
cd ..
|
||||
sudo dpkg -i libarea*.deb python-area*.deb
|
||||
svn checkout http://heekscad.googlecode.com/svn/trunk/ heekscad
|
||||
cd heekscad
|
||||
dpkg-buildpackage -b -us -uc
|
||||
cd ..
|
||||
sudo dpkg -i *heeks*.deb
|
||||
svn checkout http://heekscnc.googlecode.com/svn/trunk/ heekscnc
|
||||
cd heekscnc
|
||||
dpkg-buildpackage -b -us -uc
|
||||
cd ..
|
||||
git clone https://github.com/aewallin/opencamlib.git
|
||||
cd opencamlib
|
||||
bzr branch lp:~neomilium/opencamlib/packaging debian
|
||||
dpkg-buildpackage -b -us -uc
|
||||
cd ..
|
||||
sudo dpkg -i python-ocl*.deb
|
||||
sudo dpkg -i heekscnc*.deb
|
||||
```
|
||||
|
||||
Run this on your LinuxCNC machine and that's it. It will download and
|
||||
build all the dependencies and Heeks CAD and CAM packages. This way, my
|
||||
current workflow goes more like this:
|
||||
|
||||
- Do the research and drawing/parts modeling in FreeCad, on my main workstation
|
||||
- Export to e.g. DXF to a network drive
|
||||
- Switch the monitor and keyboard to the one of the old PC
|
||||
- Import in HeeksCad
|
||||
- Design machining operations, export gcode
|
||||
- Open gcode in LinuxCNC and go
|
||||
- Repeat last 2 steps if necessary - no machine switching
|
23
content/posts/2015/08/12/containerized-zombie-spawner.md
Normal file
23
content/posts/2015/08/12/containerized-zombie-spawner.md
Normal file
|
@ -0,0 +1,23 @@
|
|||
---
|
||||
title: Containerized zombie spawner
|
||||
date: 2015-08-12 21:21:13
|
||||
tags: [docker]
|
||||
---
|
||||
|
||||
Recently I was playing with a fully Dockerized setup of Jenkins at work
|
||||
and found a curious issue there. Whenever Jenkins was polling the git
|
||||
server the side effect was that it created a zombie ssh process. The
|
||||
issue is actually
|
||||
[remediated](https://github.com/jenkinsci/docker/issues/54) by the
|
||||
Jenkins team now by [explicitly using](https://github.com/jenkinsci/docker/commit/d5aea67dcae9d62fe4ca6ad961ffe66f65d9a591)
|
||||
a tiny init system called ... [tini](https://github.com/krallin/tini) started as the main
|
||||
container's process instead of just starting Jenkins there. This tiny
|
||||
tini thing can properly adopt and reap the children. I was all like -
|
||||
wow, what a great blog entry is coming at me. I was planning to describe
|
||||
how zombies come to existence on Linux and why Docker should, in my
|
||||
opinion, provide an adopter-reaper by default and other very interesting
|
||||
things ! But then I found a really excellent article by the
|
||||
[Phusion](http://www.phusion.nl/) team
|
||||
[here](https://blog.phusion.nl/2015/01/20/docker-and-the-pid-1-zombie-reaping-problem/)
|
||||
explaining all that and more. It is very good. You should read it. That
|
||||
is it. The end. Happy reaping !
|
46
content/posts/2015/09/02/swap-on-temp-disk.md
Normal file
46
content/posts/2015/09/02/swap-on-temp-disk.md
Normal file
|
@ -0,0 +1,46 @@
|
|||
---
|
||||
title: When life gives you temp space - make lemonade !
|
||||
date: 2015-09-02 20:00:24
|
||||
tags: [cloud, azure, linux]
|
||||
---
|
||||
|
||||
Some VPS providers, e.g. Azure provide you with 2 disk drives for
|
||||
your VPSes. One, of very limited size, system disk, and the other one,
|
||||
spacy but with not guarantees that the data survives reboot. Basically
|
||||
it means that you can have a small VPS, with a small amount of RAM but
|
||||
large temp disk space. Why this could be useful ? Imagine tasks with
|
||||
lots of mem requirements but that not need to be extra fast, where
|
||||
swapping is allowed. Like complex nightly builds. Here is a set of super
|
||||
simple scripts I've come up with to quickly boot up a system, and then
|
||||
in the background add a new swap file on the temp drive there. The temp
|
||||
drive is assumed to be under /mnt.
|
||||
|
||||
```
|
||||
root@someazurehost:~# cat /etc/rc.local
|
||||
#!/bin/sh -e
|
||||
set -v
|
||||
|
||||
# do not wait for swap to become online,
|
||||
# proceed with the boot further,
|
||||
# with swap being created in the background
|
||||
/etc/make_and_enable_swap &
|
||||
|
||||
exit 0
|
||||
```
|
||||
|
||||
```
|
||||
root@someazurehost:~# cat /etc/make_and_enable_swap
|
||||
#!/bin/sh
|
||||
set -e
|
||||
set -v
|
||||
# create new 2GB swap file
|
||||
dd if=/dev/zero of=/mnt/swap bs=1M count=2048
|
||||
chmod 0600 /mnt/swap
|
||||
mkswap /mnt/swap
|
||||
swapon /mnt/swap
|
||||
```
|
||||
|
||||
Don't forget to make `/etc/make_and_enable_swap` executable !
|
||||
Do not add this swap file to fstab, as it is being read before rc.local,
|
||||
and this may certainly result in a boot failure, as the swap file would
|
||||
not be ready yet.
|
23
content/posts/2015/09/27/usb-3-0-virtualbox-vms.md
Normal file
23
content/posts/2015/09/27/usb-3-0-virtualbox-vms.md
Normal file
|
@ -0,0 +1,23 @@
|
|||
---
|
||||
title: Enabling USB 3.0 in already existing Virtualbox VMs
|
||||
date: 2015-09-27 12:09:05
|
||||
tags: [virtualbox]
|
||||
---
|
||||
|
||||
Just a quick note on how to get USB 3.0 in Virtualbox for VMs that were
|
||||
created with USB 1.1 support only. First, download VirtualBox Extension
|
||||
Pack from [here](https://www.virtualbox.org/wiki/Downloads). Install
|
||||
it. Then quit Virtualbox completely. Go to your directory that contains
|
||||
your virtual machine and edit `.vbox` file. Replace the whole
|
||||
`<USBController>` section with the following:
|
||||
|
||||
```xml
|
||||
<USB>
|
||||
<Controllers>
|
||||
<Controller name="xHCI" type="XHCI"/>
|
||||
</Controllers>
|
||||
<DeviceFilters/>
|
||||
</USB>
|
||||
```
|
||||
|
||||
That's it, let me know if it works for you !
|
19
content/posts/2015/10/17/tools-indicator-holder.md
Normal file
19
content/posts/2015/10/17/tools-indicator-holder.md
Normal file
|
@ -0,0 +1,19 @@
|
|||
---
|
||||
title: Tools - precision gauge holder
|
||||
date: 2015-10-17 13:46:36
|
||||
tags: [cnc, tools]
|
||||
series: tools
|
||||
---
|
||||
|
||||
This is the second part in the [series](/series/tools) on the tools I use. Tools that are
|
||||
surprisingly useful, tools that are not that obvious to find. Today:
|
||||
how to calibrate the CNC axis without actually cutting anything ? Use a
|
||||
test indicator ! How to hold the meter steady though, ? Attach it to the
|
||||
frame of your router using the power of magnets ! Sample item on Amazon
|
||||
[here](http://www.amazon.com/gp/product/B00OZA71H6/ref=as_li_qf_sp_asin_il_tl?ie=UTF8&camp=1789&creative=9325&creativeASIN=B00OZA71H6&linkCode=as2&tag=adventucomput-20&linkId=6ZJKCJHMA2YON4LY)
|
||||
[affiliate link warning]
|
||||
|
||||
Despite being attached to the frame by its back instead of the bottom it
|
||||
still holds beautifully.
|
||||
|
||||
{{< gallery dir="galleries/tools-indicator-holder" />}}
|
|
@ -0,0 +1,98 @@
|
|||
---
|
||||
title: Fixing timeouts running Android integration tests
|
||||
date: 2015-10-25 09:55:54
|
||||
tags: [android, testing]
|
||||
---
|
||||
|
||||
I run Android tests on CI and after having switched to Lollipop recently the integration tests wouldn't run. Invoking
|
||||
`androidConnectedTest` gradle target always resulted in crashing with
|
||||
`ShellCommandUnresponsiveException`. Internet says that in such a case
|
||||
ou just need to set `ADB_INSTALL_TIMEOUT`. I tried to no avail.
|
||||
Sourcediving it is then !
|
||||
|
||||
A long while after that I got to this file:
|
||||
[Device.java](https://android.googlesource.com/platform/tools/base/+/master/ddmlib/src/main/java/com/android/ddmlib/Device.java) [Linking
|
||||
to master, here's the commit
|
||||
hash:`1cb1a4c2976b99ae53d28d7f01d975232c85f990`, as I don't seem to be
|
||||
able to find how to link to that hash directly]
|
||||
What do we see there ? That indeed `ADB_INSTALL_TIMEOUT` is being used:
|
||||
|
||||
```java
|
||||
static {
|
||||
String installTimeout = System.getenv("ADB_INSTALL_TIMEOUT");
|
||||
long time = 4;
|
||||
if (installTimeout != null) {
|
||||
try {
|
||||
time = Long.parseLong(installTimeout);
|
||||
} catch (NumberFormatException e) {
|
||||
// use default value
|
||||
}
|
||||
}
|
||||
INSTALL_TIMEOUT_MINUTES = time;
|
||||
}
|
||||
```
|
||||
|
||||
So far so good,
|
||||
`ADB_INSTALL_TIMEOUT` system variable seems to be respected when
|
||||
invoking package installation tools. Are the above the only methods that
|
||||
can install a package though ? Going further on that hunch we see that
|
||||
in addition to installing single packages there is a possibility of
|
||||
having a multi-package installation session.
|
||||
|
||||
```java
|
||||
public void installPackages(List<String> apkFilePaths, int timeOutInMs, boolean reinstall, String... extraArgs) throws InstallException {
|
||||
assert(!apkFilePaths.isEmpty());
|
||||
if (getApiLevel() < 21) {
|
||||
Log.w("Internal error : installPackages invoked with device < 21 for %s",Joiner.on(",").join(apkFilePaths));
|
||||
if (apkFilePaths.size() == 1) {
|
||||
installPackage(apkFilePaths.get(0), reinstall, extraArgs);
|
||||
return;
|
||||
}
|
||||
Log.e("Internal error : installPackages invoked with device < 21 for multiple APK : %s", Joiner.on(",").join(apkFilePaths));
|
||||
throw new InstallException("Internal error : installPackages invoked with device < 21 for multiple APK : " + Joiner.on(",").join(apkFilePaths));
|
||||
}
|
||||
[...]
|
||||
String sessionId = createMultiInstallSession(apkFilePaths, extraArgsList, reinstall);
|
||||
```
|
||||
|
||||
Aha ! Non-Lollipop check here, with a
|
||||
fallback to the old method - we may be onto something ! Some lines pass
|
||||
and we can see an invocation of `createMultiInstallSession`. What's
|
||||
there ?
|
||||
|
||||
```java
|
||||
private String createMultiInstallSession(List<String> apkFileNames, @NonNull Collection<String> extraArgs, boolean reinstall) throws TimeoutException, AdbCommandRejectedException, ShellCommandUnresponsiveException, IOException {
|
||||
[...]
|
||||
String cmd = String.format("pm install-create %1$s -S %2$d", parameters.toString(), totalFileSize);
|
||||
executeShellCommand(cmd, receiver, DdmPreferences.getTimeOut());
|
||||
[...]
|
||||
```
|
||||
|
||||
A different invocation of
|
||||
`executeShellCommand`, now using `DdmPreferences.getTimeOut()` as a
|
||||
timeout value source.
|
||||
|
||||
Summarizing - this only happens if you install
|
||||
multiple applications for your `androidConnectedTest` and you are using
|
||||
android device to test on that has api version that is equal or greater
|
||||
to 21. That is all cool that we had this little Computer Science
|
||||
Investigation, but how to fix that - i.e. how to have proper timeouts
|
||||
for your installations ? Ideally from somewhere you configure and/or
|
||||
invoke your builds. It turns out that gradle supports invoking just
|
||||
enough Java for us to use there. In your `gradle.build` as the very
|
||||
first lines:
|
||||
|
||||
```groovy
|
||||
println "setting global timeout for apk installation to 10 minutes"
|
||||
com.android.ddmlib.DdmPreferences.setTimeOut(600000)
|
||||
|
||||
android {
|
||||
compileSdkVersion compileSdk
|
||||
buildToolsVersion buildTools
|
||||
[...]
|
||||
```
|
||||
|
||||
That's it. Invoke your android tests with
|
||||
`ADB_INSTALL_TIMEOUT` env variable set **AND** have the
|
||||
`DddPreference` set in your `gradle.build` as in the example above and
|
||||
you should be golden. Happy droiding !
|
22
content/posts/2015/11/17/lets-encrypt-certificate.md
Normal file
22
content/posts/2015/11/17/lets-encrypt-certificate.md
Normal file
|
@ -0,0 +1,22 @@
|
|||
---
|
||||
title: Sporting Let's Encrypt certificate
|
||||
date: 2015-11-17 09:51:25
|
||||
tags: [tls, letsencrypt]
|
||||
---
|
||||
|
||||
[Let's Encrypt](https://letsencrypt.org/) is a soon to be publicly
|
||||
available service to provide TLS certificates for free and in automated
|
||||
fashion. I'm helping them test their systems by participating in the
|
||||
[beta programme](https://letsencrypt.org/2015/11/12/public-beta-timing.html).
|
||||
Because of that this site is now sporting, publicly recognizable
|
||||
certificate from Let's Encrypt. Yay ! The work they are doing I believe
|
||||
is of much importance. Lack of easy path for getting TLS certificate was
|
||||
a major hurdle for the most of the website owners, otherwise keen on
|
||||
getting their traffic encrypted. This, in turn, is important for two
|
||||
reasons. Not allowing the content you are viewing on the internet to be
|
||||
snooped at, not leaking you private data is one thing. Other, less
|
||||
known, but as much important, is countering the ability of injecting any
|
||||
malicious code/data into the responses from the servers you got and in
|
||||
turn preventing lots of man in the middle attacks. Hopefully, when Let's
|
||||
Encrypt becomes publicly available we would be on the path to much more
|
||||
friendly internet for all.
|
16
content/posts/2015/12/31/productive-new-years-eve.md
Normal file
16
content/posts/2015/12/31/productive-new-years-eve.md
Normal file
|
@ -0,0 +1,16 @@
|
|||
---
|
||||
title: Productive New Year's Eve
|
||||
date: 2015-12-31 20:11:35
|
||||
tags: [electronics]
|
||||
---
|
||||
|
||||
It turns out that the last day of the year can be quite productive. I've
|
||||
managed to sneak in a PCB layout for the input measurement and
|
||||
protection board for my [sunpowered](/series/sunpowered). Got it
|
||||
ordered, can't wait to test it ! I got carried away with via stitching
|
||||
there a bit - we'll see how hard it will be to solder the larger
|
||||
components because of that. The whole project is hosted
|
||||
[here](https://github.com/cyplo/sunpowered/tree/master/electronics) - it's
|
||||
open hardware so please do take a look.
|
||||
|
||||
{{< gallery dir="galleries/productive-new-years-eve" />}}
|
98
content/posts/2016/03/13/conferences.md
Normal file
98
content/posts/2016/03/13/conferences.md
Normal file
|
@ -0,0 +1,98 @@
|
|||
---
|
||||
title: Conferences you did not know existed and now you know you just need to go to
|
||||
date: 2016-03-13 11:43:03
|
||||
tags: [social, conferences]
|
||||
---
|
||||
|
||||
# Go to conferences. It's good for you.
|
||||
|
||||
Ever wondered why to go to conferences ? Is it worth it, especially if
|
||||
you [do not feel confident](http://sarah.thesharps.us/2016/02/02/first-timers-guide-to-foss-conferences/)
|
||||
that the conference is on something that would be in an immediate realm
|
||||
of your day-to-day interests ? Just go ! You might end up learning
|
||||
something and meeting new people. And new people mean more variables to
|
||||
mix up your life. A bit scary, I know. Still worth it though. Wondered
|
||||
what conference in **Europe** are weird enough so people wouldn't mind
|
||||
having another misfit ? Here you go.
|
||||
|
||||
# nucl.ai
|
||||
|
||||
Now imagine something niche within the industry. To me, AI comes to
|
||||
mind. Mages in robes in their towers, sending out autonomous robot
|
||||
armies against each other. Right ? There's a conference for that ! At
|
||||
[nucl.ai](http://nucl.ai/), in July, in Vienna, you can meet AI
|
||||
professionals from academia and industry alike, most of them coming from
|
||||
game development background. The atmosphere is very newcomer-friendly,
|
||||
the only requirement is that you're interested in AI, not necessarily
|
||||
having anything to do with it professionally. Petra and Alex, the
|
||||
organizers, are wonderful people that make this conference quite unique.
|
||||
It's happy fun to see ideas floating from academia to the industry and
|
||||
vice versa. Don't forget the presentations on work-in-progress major AAA
|
||||
games ! I've learned there that the everyday programming in the games
|
||||
industry is quite different than the one I do in terms of best practices
|
||||
and patterns. Definitely worth a try !
|
||||
|
||||
# Erlang User Conference
|
||||
|
||||
Speaking of something completely different. Erlang ! Was functional
|
||||
before being functional was [considered cool](https://www.youtube.com/watch?v=xrIjfIjssLE). Very practical,
|
||||
very fast, parallelize everything ! Processes everywhere ! Message
|
||||
passing ! Want to feel the groove as well ? Visit Stockholm in September
|
||||
for [Erlang User Conference](http://www.erlang-factory.com/). Meet
|
||||
creators of the language, talk about massive scale deployments. Other FP
|
||||
languages are welcome. I would even say, the more strange the better.
|
||||
[Idris](http://www.idris-lang.org/) seems to be the topic of interest
|
||||
as well. Eat good food, walk the city of dynamite. Erlang has a quite
|
||||
close-knit community which gives you this warm family feeling.
|
||||
|
||||
# SoCraTes
|
||||
|
||||
Speaking of family. There's a family of conferences known as
|
||||
[SoCraTes](https://www.socrates-conference.de/). Software
|
||||
Crafstmanship and Testing. SoCraTes. Get it ? :D As it's more than one
|
||||
conference a year, it's harder to go to all of them. I only went to
|
||||
[Codefreeze](http://www.codefreeze.fi/), in Finland, in January, and
|
||||
only once, but loved it already. Codefreeze, Finland, in January. Get it
|
||||
?! :D First thing is that you don't know what will happen there. You
|
||||
just go, meet the people and then you sit down and everyone talks about
|
||||
what they would like to learn and what they can share. This way you come
|
||||
up with some loose agenda you follow more or less. One track, very
|
||||
intense. Talking, swimming in ice water, learning, sauna going. Very
|
||||
intimate feel, not many people, lots of things to learn.
|
||||
|
||||
# Chaos Communication Congress
|
||||
|
||||
Speaking of lots of people and intimate feel. [Chaos Communication Congress](https://en.wikipedia.org/wiki/Chaos_Communication_Congress) is, I think, the biggest gathering of all nerds and freaks in Europe,
|
||||
yet being there feels quite at home. The best organized conference I've
|
||||
been to. Friendly people showing their wares on their humble tables, 4
|
||||
simultaneous tracks, huge building with intricate hallways. It's
|
||||
cyberpunk, it's inclusive, it's about hardcore infosec topics, it's
|
||||
about politics. Everything's there, everyone's there. 4 days of data
|
||||
being constantly uploaded to your brain, riding on the waves of [Club
|
||||
Mate](https://en.wikipedia.org/wiki/Club-Mate). Feels like an
|
||||
extended holiday present, as it's happening in the last week of
|
||||
December.
|
||||
|
||||
# The Camps
|
||||
|
||||
[The Dutch Camp](https://en.wikipedia.org/wiki/Observe._Hack._Make.), [EMF Camp](https://www.emfcamp.org/) and
|
||||
[Chaos Communication Camp](https://en.wikipedia.org/wiki/Chaos_Communication_Camp).
|
||||
Imagine CCC, the Congress, but in the woods. Middle of nowhere,
|
||||
multigigabit internet connection. sleeping in the tent, then going to a
|
||||
world-class lecture. BothCCC, the camp, and The Dutch Camp, the camp,
|
||||
are happening every 4 years, each of them taking alternating slots. So
|
||||
every 2 years there is a camp somewhere. EMF is there even more frequently - every 2 years !
|
||||
Did I mention that the location changes with almost every event ? Happy camping !
|
||||
|
||||
## Summary
|
||||
|
||||
So go out there. Explore. Meet people. Learn. Have fun. None of the
|
||||
above are much expensive and most of the events have a policy of "write
|
||||
to us if you want to go but can't afford the ticket". Friendly people
|
||||
fixing problems together.
|
||||
|
||||
- nucl.ai: July, tickets around 250EUR
|
||||
- EUC: September, tickets around 350EUR
|
||||
- SoCraTes: the cost and the time depend on the event
|
||||
- CCC: last week of December, tickets around 100EUR
|
||||
- The Camps: summer, tickets around 125EUR
|
12
content/posts/2016/06/12/dont-throw-away-fix.md
Normal file
12
content/posts/2016/06/12/dont-throw-away-fix.md
Normal file
|
@ -0,0 +1,12 @@
|
|||
---
|
||||
title: Don't throw away. Fix.
|
||||
date: 2016-06-12 12:25:34
|
||||
tags: [hardware]
|
||||
---
|
||||
|
||||
Try fixing your things. It's already broken - no need to sweat.
|
||||
You might learn something.
|
||||
Level 2 - push for things to be easily fixable.
|
||||
It's good for you. It's good for the planet.
|
||||
|
||||
{{< gallery dir="galleries/dont-throw-away-fix" />}}
|
53
content/posts/2016/07/06/terminal-emulator-windows-10.md
Normal file
53
content/posts/2016/07/06/terminal-emulator-windows-10.md
Normal file
|
@ -0,0 +1,53 @@
|
|||
---
|
||||
title: The best terminal emulator for Windows 10's Bash or how to run X applications
|
||||
date: 2016-07-06 19:21:13
|
||||
tags: [windows]
|
||||
aliases:
|
||||
- /posts/2016/07/06/terminal-emulator-windows-10-bash.html
|
||||
- /posts/2016/07/06/terminal-emulator-windows-10-bash
|
||||
- /posts/2016/07/06/terminal-emulator-windows-10
|
||||
---
|
||||
|
||||
**update as of 03/2017**
|
||||
|
||||
As this article is by far the most popular on my site right now I feel that an update is necessary, as the landscape evolved a bit since the original publish date.
|
||||
[Conemu](https://conemu.github.io/) started to support Bash on Windows properly now and this is what I settled on in the end.
|
||||
The article below is still relevant for _the running X applications on Windows_ part though.
|
||||
|
||||
---
|
||||
|
||||
I've been playing a bit with
|
||||
[GNU/kWindows](https://mikegerwitz.com/2016/04/GNU-kWindows) a.k.a.
|
||||
Bash on Windows a.k.a Windows Subsystem for Linux (Beta). I was
|
||||
especially interested whether I can use my regular Linux
|
||||
[dotfiles](https://github.com/cyplo/dotfiles/) to recreate my working
|
||||
environment of zsh + tmux + vim. The biggest troubles I had were with
|
||||
the terminal emulator. While the default one, invoked by saying **bash**
|
||||
is much better than powershell or cmd.exe already - it lacks some things
|
||||
I've learned to rely on, like 256-colour palette support. Thus the
|
||||
search for the ultimate terminal emulator begun. I tried **ConEmu**,
|
||||
**cmder** and their spinoffs to no avail. Either the colours were
|
||||
lacking, or the emulator would swallow up certain strokes like the arrow
|
||||
keys. Then I thought - hey, I use **terminator** on Linux, maybe it
|
||||
would be possible to use it here as well. To my surprise the answer was - yes !
|
||||
|
||||
- install Windows Subsystem for Linux
|
||||
- restart Windows
|
||||
- install [VcXsrv](https://sourceforge.net/projects/vcxsrv)
|
||||
- run VcXsrv
|
||||
- invoke the following from the bash console:
|
||||
|
||||
```
|
||||
sudo apt-get install terminator
|
||||
DISPLAY=:0 terminator -u
|
||||
```
|
||||
|
||||
- profit !
|
||||
|
||||
{{< figure src="/images/terminal-emulator-windows-10/capture.png" postition="center" >}}
|
||||
|
||||
The font rendering is not ideal and the borderless mode does
|
||||
not work, but hey, it is quite usable nonetheless ! It even has
|
||||
bidirectional clipboard sharing with Windows' windows, which is good.
|
||||
P.S. konsole and gnome-terminal do seem to have troubles launching
|
||||
(crashy-crashes there)
|
53
content/posts/2016/09/rustfest-organization-was-the-best.md
Normal file
53
content/posts/2016/09/rustfest-organization-was-the-best.md
Normal file
|
@ -0,0 +1,53 @@
|
|||
---
|
||||
title: RustFest - organization was the best. Also rhymes.
|
||||
date: 2016-09-18 18:43:47
|
||||
tags: [conferences]
|
||||
---
|
||||
|
||||
# I went to RustFest and it was amazing !
|
||||
|
||||
It was clearly the best conference organizational-wise I've been to so far.
|
||||
It made me think of what I really liked there. What made it so awesome and welcomy ?
|
||||
To me this was a large number of small things just coming together. I listing them here for me to remember and for others to use.
|
||||
Let's make conferences at least this friendly, together !
|
||||
|
||||
## Before the event:
|
||||
|
||||
- very clear emails, repeating messages couple of times in different emails for the important stuff
|
||||
- maps of the popular routes provided, e.g. from the airport and bus station
|
||||
- supporter ticket sale - two times the price - you pay for another person that wouldn't be able to get a ticket otherwise
|
||||
- survey on dietary requirements/allergies
|
||||
- survey on childcare needs
|
||||
- clear statement of the code of conduct for the conference
|
||||
|
||||
## During the event:
|
||||
|
||||
- very good MC person
|
||||
|
||||
- keeping people entertained through the tech breaks
|
||||
- keeping tabs on the talk length, allowing appropriate amount of questions if the time allowed
|
||||
|
||||
- live captioning of all talks - small screen outside of the view of the main screen with the text live
|
||||
- getting the next speaker prepared and mic-tested before the end of the current talk
|
||||
|
||||
- quiet room to rest with clear rules on no talking and interrupting there
|
||||
- clear signage for the different parts of the venue (washrooms, quiet room, party space etc)
|
||||
- washrooms
|
||||
|
||||
- all same, ungendered
|
||||
- basic items for free in said washrooms
|
||||
|
||||
- chewing gum
|
||||
- tooth paste
|
||||
- tampons, pads
|
||||
- baby wipes
|
||||
|
||||
- info desk/registration
|
||||
|
||||
- clear info during registration, handing out programme
|
||||
- asking people if they want to be on the photos - giving out lanyards accordingly - flashy red lanyards for people who do not want photos of them taken
|
||||
|
||||
- emergency number to call with stated purpose
|
||||
|
||||
- code of conduct violation
|
||||
- if you are lost in the city
|
|
@ -0,0 +1,36 @@
|
|||
---
|
||||
title: Using ad hoc Docker volumes on SELinux systems
|
||||
date: 2016-12-30 18:28:50
|
||||
tags: [docker]
|
||||
---
|
||||
|
||||
I've recently tried running some quick Docker commands using host's directory as a volume:
|
||||
|
||||
```
|
||||
docker run -i -t -v `pwd`:/mnt debian:jessie bash -c "ls -hal /mnt"
|
||||
ls: cannot open directory /mnt: Permission denied
|
||||
```
|
||||
|
||||
I use Fedora as my main OS, which, it turns out, has some pretty nice SELinux settings. These deny access from inside the container to the outside.
|
||||
Said Fedora consists mostly of almost-newest-but-stable everything though, which makes Docker to be in a fairly recent version.
|
||||
A version that understands how to change a SELinux context for the directory we're mounting, by itself !
|
||||
You need at least Docker v1.7 for this.
|
||||
|
||||
```
|
||||
docker run -i -t -v `pwd`:/mnt:Z debian:jessie bash -c "ls -hal /mnt"
|
||||
total 8.0K
|
||||
drwxrwxr-x. 2 1000 1000 4.0K Dec 30 18:34 .
|
||||
drwxr-xr-x. 21 root root 242 Dec 30 19:07 ..
|
||||
```
|
||||
|
||||
Please note the capital `Z` as a mount parameter.
|
||||
And that is it. Mostly. Some cleanup remains, as docker leaves the host's directory with a changed SELinux context.
|
||||
To restore it you need to
|
||||
|
||||
```
|
||||
restorecon -R `pwd`
|
||||
```
|
||||
|
||||
Or use any other path you'd like instead of `pwd` in the examples above.
|
||||
|
||||
Happy dockering !
|
|
@ -0,0 +1,34 @@
|
|||
---
|
||||
title: Running host programs in isolation inside one-off Docker containers
|
||||
date: 2017-02-17 22:08:46
|
||||
tags: [docker]
|
||||
---
|
||||
|
||||
I am quite bad at remembering how to launch docker to have everything set up correctly. Hence the following - a script that launches any commandline specified in its arguments inside a new docker container. Current directory is mounted inside the container automatically, so the thing you are executing can have its local dependencies satisfied.
|
||||
|
||||
```bash
|
||||
#!/bin/bash
|
||||
USERNAME=`whoami`
|
||||
MOUNT_PATH="/mnt"
|
||||
CURRENT_DIRECTORY=`pwd -P` # untangle symbolic links if needed - SELinux needs the real path
|
||||
IMAGE="debian:jessie"
|
||||
|
||||
if [[ -z $1 ]]; then
|
||||
echo "usage: `basename $0` command_to_run_inside_a_container"
|
||||
exit 1
|
||||
fi
|
||||
|
||||
RESOLVED_ARGUMENTS="$@"
|
||||
docker run -i -t -v "$CURRENT_DIRECTORY":"$MOUNT_PATH":Z $IMAGE bash -c "useradd -M -d '$MOUNT_PATH' $USERNAME && cd '$MOUNT_PATH' && bash -c '$RESOLVED_ARGUMENTS'"
|
||||
|
||||
# restore SELinux context for the current directory
|
||||
restorecon_path=`which restorecon`
|
||||
if [[ -x "$restorecon_path" ]]; then
|
||||
restorecon -R "$CURRENT_DIRECTORY"
|
||||
fi
|
||||
```
|
||||
|
||||
I use vanilla Debian Jessie as a run platform there, mostly because this is what most of my servers run.
|
||||
The script covers setting up SELinux and mounting the directory from which it is run as `/mnt` inside the container while also having the default non-root user added.
|
||||
|
||||
Run Jessie, run !
|
7
content/posts/2017/03/netlify-incremental-deployer.md
Normal file
7
content/posts/2017/03/netlify-incremental-deployer.md
Normal file
|
@ -0,0 +1,7 @@
|
|||
---
|
||||
title: Upload your site to Netlify using their incremental deployment API
|
||||
date: 2017-03-20 19:25:00
|
||||
tags: [netlify]
|
||||
---
|
||||
|
||||
I've recently switched to a setup where I do all my builds for this blog on [Travis](https://travis-ci.org/cyplo/blog). While doing so I needed to migrate away from using Netlify's internal build infrastructure. This resulted in a quick [python script](https://github.com/cyplo/netlify_deployer) that allows you to upload arbitrary directory tree to Netlify and does so using their [incremental deployment API](https://www.netlify.com/docs/api/#deploying-to-netlify). All that means that while this site is quite big in size the deployments go rather quickly ! There are some [known issues](https://github.com/cyplo/netlify_deployer/issues) but apart from them the script should just work for any custom Netlify deployment you would like to have. I use it on this very site, to have a preview of any PR before merging it as well as for deploying the main site after the PR is merged. I hope you will find it useful and please do not hesitate if you want to post an issue or a PR !
|
53
content/posts/2017/07/adding-graphs-to-posts-in-nikola.md
Normal file
53
content/posts/2017/07/adding-graphs-to-posts-in-nikola.md
Normal file
|
@ -0,0 +1,53 @@
|
|||
---
|
||||
title: Adding graphs to posts in Nikola
|
||||
date: 2017-07-15 20:13:50
|
||||
tags: [nikola]
|
||||
---
|
||||
|
||||
**Update as of April 2019**
|
||||
|
||||
This blog no longer runs on Nikola so the embedded examples do not work anymore.
|
||||
The method described in the post is still valid though.
|
||||
|
||||
---
|
||||
|
||||
I really like to teach, try to explain things in a simple manner. There is often no better way of making an explanation than visualizing it.
|
||||
The problem is that I really can't draw, especially on a computer.
|
||||
Wouldn't it be awesome if I could make the computer draw for me ?
|
||||
I found out that, unsurprisingly, there is a software for that already. The one I like is called mermaid - it renders a simple text description of a graph or diagram into an html representation. Can look something like this.
|
||||
|
||||
```html
|
||||
<div class="mermaid">
|
||||
graph TB subgraph one a1-->a2 end subgraph two b1-->b2 end subgraph three
|
||||
c1-->c2 end c1-->a2
|
||||
</div>
|
||||
```
|
||||
|
||||
This blog is rendered by Nikola hence I would like to show you how I've added mermaid support to my Nikola installation.
|
||||
I use `USE_BUNDLES = False` in `conf.py` as for it gives me more control and is more HTTP/2 friendly.
|
||||
With that disabled I can include mermaid's style and js files like so (also in `conf.py`):
|
||||
|
||||
```python
|
||||
EXTRA_HEAD_DATA = """
|
||||
<link rel="stylesheet" type="text/css" href="/assets/css/fontawesome.css">
|
||||
<link rel="stylesheet" type="text/css" href="/assets/css/titillium.css">
|
||||
<link rel="stylesheet" type="text/css" href="/assets/css/mermaid.forest.css">
|
||||
"""
|
||||
|
||||
BODY_END = """
|
||||
<script src="/assets/js/mermaid.js"></script>
|
||||
<script>mermaid.initialize({startOnLoad:true, cloneCssStyles: false});</script>
|
||||
"""
|
||||
```
|
||||
|
||||
Where do all these files come from though ? In my case, I have a custom theme, based on `zen` called `zen-cyplo`. The assets in the sources are located under `themes/zen-cyplo/assets/`. Oh, and `cloneCssStyles: false` is there as the default of `true` made the different css styles on my blog clash.
|
||||
Finally, to use mermaid in the post do (for reStructured Text):
|
||||
|
||||
```html
|
||||
<div class="mermaid">
|
||||
graph TB subgraph one a1-->a2 end subgraph two b1-->b2 end subgraph three
|
||||
c1-->c2 end c1-->a2
|
||||
</div>
|
||||
```
|
||||
|
||||
~~You can click on `source` button located below the title of this post to see it in action. If you are interested in the build process and how all these come together - the complete sources for this blog are hosted under https://github.com/cyplo/blog~~
|
132
content/posts/2017/11/rust-vscode-mac.md
Normal file
132
content/posts/2017/11/rust-vscode-mac.md
Normal file
|
@ -0,0 +1,132 @@
|
|||
---
|
||||
title: Setting up Rust development environment using VSCode on a Mac
|
||||
date: 2017-11-25 13:50:27
|
||||
tags: [rust, vscode]
|
||||
---
|
||||
|
||||
## Completion and highlighting
|
||||
|
||||
While on Linux VSCode with the Rust plugin seems to work more or less out of the box, on a Mac I needed to spend some time configuring it.
|
||||
|
||||
First things first though, let's start by installing Rust version manager, rustup.
|
||||
|
||||
```
|
||||
curl https://sh.rustup.rs -sSf | sh
|
||||
```
|
||||
|
||||
We will be using nightly version of rust as to have one version that can compile all of our tools. This is mostly due to [`clippy`](https://github.com/rust-lang-nursery/rust-clippy) requiring a nightly compiler.
|
||||
|
||||
```
|
||||
rustup install nightly
|
||||
rustup default nightly
|
||||
```
|
||||
|
||||
We will need Rust Language Server to provide the code completion.
|
||||
|
||||
```
|
||||
rustup component add rls-preview --toolchain nightly
|
||||
rustup component add rust-analysis --toolchain nightly
|
||||
rustup component add rust-src --toolchain nightly
|
||||
```
|
||||
|
||||
For a more wholesome experience, please have some tools as well:
|
||||
|
||||
```
|
||||
cargo install clippy rustfmt rustsym
|
||||
```
|
||||
|
||||
Now finally, for the VSCode itself, press `cmd-p` and `ext install vscode-rust`. I'm using the new `Rust` extension as `Rusty Code` has been discontinued.
|
||||
|
||||
If you're lucky - that's it, you should have working completion and highlighting in Rust files. Check this by opening any Rust source code file.
|
||||
If you're greeted by this message: `You have chosen RLS mode but neither RLS executable path is specified nor rustup is installed` - then we need to get the extension to get to know your setup a bit:
|
||||
|
||||
In VSCode go to `Settings` using `cmd-,` and put the following config elements there:
|
||||
|
||||
```json
|
||||
{
|
||||
"rust.cargoPath": "/Users/yourusername/.cargo/bin/cargo",
|
||||
"rust.cargoHomePath": "/Users/yourusername/.cargo",
|
||||
"rust.rustfmtPath": "/Users/yourusername/.cargo/bin/rustfmt",
|
||||
"rust.rustsymPath": "/Users/yourusername/.cargo/bin/rustsym",
|
||||
"rust.rustLangSrcPath": "/Users/yourusername/.rustup/toolchains/nightly-x86_64-apple-darwin/lib/rustlib/src/rust/src",
|
||||
"rust.mode": "rls",
|
||||
"rust.rls": {
|
||||
"executable": "/Users/yourusername/.cargo/bin/rls",
|
||||
"useRustfmt": true
|
||||
}
|
||||
}
|
||||
```
|
||||
|
||||
As the paths in the config need to be absolute, remember to adjust to your situation (system username) accordingly.
|
||||
|
||||
Now when you reload and start editing a Rust file you should see `RLS: Analysis finished` on the bottom bar and the completion and highlighting should all work. Yay !
|
||||
|
||||
## Building and testing
|
||||
|
||||
VSCode has a system of tasks that we can leverage to run the build and test from within VSCode.
|
||||
If you go to `Tasks->Configure` tasks it will create an empty `tasks.json` file in your repository.
|
||||
Change it to the following to allow for `cargo` to be hooked up as your build tool and test runner.
|
||||
|
||||
```json
|
||||
{
|
||||
"version": "2.0.0",
|
||||
"tasks": [
|
||||
{
|
||||
"label": "build",
|
||||
"type": "shell",
|
||||
"command": "cargo build",
|
||||
"group": {
|
||||
"kind": "build",
|
||||
"isDefault": true
|
||||
},
|
||||
"problemMatcher": []
|
||||
},
|
||||
{
|
||||
"label": "test",
|
||||
"type": "shell",
|
||||
"command": "cargo test",
|
||||
"group": {
|
||||
"kind": "test",
|
||||
"isDefault": true
|
||||
}
|
||||
}
|
||||
]
|
||||
}
|
||||
```
|
||||
|
||||
You can use `cmd-shift-b` to run the build now.
|
||||
|
||||
## Debugging
|
||||
|
||||
For the native debugger to work we need to install another extension to VSCode called ['LLDB Debugger'](https://github.com/vadimcn/vscode-lldb/blob/master/MANUAL.md). That would be `cmd-p` and `ext install vadimcn.vscode-lldb`.
|
||||
|
||||
After reloading VSCode you should be able to set breakpoints on the side gutter and run the program using debugger by pressing `F5`. First time doing this will result in the debugger choice window. Choose `LLDB Debugger` as your debugger and you will be greeted with a JSON configuration file in which you need to tell the debugger a few details on your project. It may look like this:
|
||||
|
||||
```json
|
||||
{
|
||||
"version": "0.2.0",
|
||||
"configurations": [
|
||||
{
|
||||
"type": "lldb",
|
||||
"request": "launch",
|
||||
"name": "Debug",
|
||||
"program": "${workspaceRoot}/target/debug/name_of_your_executable",
|
||||
"args": [],
|
||||
"cwd": "${workspaceRoot}",
|
||||
"preLaunchTask": "build"
|
||||
}
|
||||
]
|
||||
}
|
||||
```
|
||||
|
||||
And that should be it !
|
||||
|
||||
Now you should be able to set breakpoints and debug through the code.
|
||||
|
||||
Start the debugging session by pressing `F5` again - this should result in the build proceeding and then the debugger launching.
|
||||
|
||||
## Questions ?
|
||||
|
||||
Any questions ? Ask on [https://users.rust-lang.org/](https://users.rust-lang.org/) and ping me the link to the post on [Twitter](https://twitter.com/cyplo) or email it to me at [blog@cyplo.net](mailto:blog@cyplo.net). This way the answer will be visible to everyone in the community.
|
||||
|
||||
Keep on Rusting !
|
|
@ -0,0 +1,53 @@
|
|||
---
|
||||
title: Configure AWS Elastic Beanstalk Docker environment variables
|
||||
date: 2018-04-23 12:00:00
|
||||
tags: [aws, docker]
|
||||
---
|
||||
|
||||
AWS Beanstalk is a good 'intermediate' level hosting for Docker containers. It gives you load balancing and scalability pretty much out of the box in exchange for being a bit more opaque to configure. The Docker bits are a bit more hidden away there.
|
||||
In a typical production setup you would want to have Docker images not containing anything environment related, e.g. to be able to run them both in production and locally. An easy way to achieve that with Docker is via environment variables. On the local environment it's `docker run --env NAME=VALUE` - what would be a Beanstalk equivalent though ?
|
||||
|
||||
It turns out that Beanstalk has a magical configuration directory structure that you can pass to an environment.
|
||||
It goes like this:
|
||||
|
||||
```
|
||||
configuration.zip
|
||||
Dockerrun.aws.json
|
||||
.ebextensions/
|
||||
environmentvariables.config
|
||||
```
|
||||
|
||||
Where `Dockerrun.aws.json` is your regular Docker definition file for Beanstalk, can look like this:
|
||||
|
||||
```
|
||||
{
|
||||
"AWSEBDockerrunVersion": "1",
|
||||
"Image": {
|
||||
"Name": "image:latest",
|
||||
"Update": "true"
|
||||
},
|
||||
"Ports": [
|
||||
{
|
||||
"ContainerPort": "1234"
|
||||
}
|
||||
]
|
||||
}
|
||||
```
|
||||
|
||||
While `.ebextensions/environmentvariables.config` is where, well, you set the environment variables that will be defined in the container. Example:
|
||||
|
||||
```
|
||||
option_settings:
|
||||
- option_name: ENV_VAR1
|
||||
value: "some value"
|
||||
- option_name: ENV_VAR2
|
||||
value: "some other value"
|
||||
```
|
||||
|
||||
But wait, there's more ! Get the zip file and upload it to some S3 bucket, I'm going to assume that the file is at `BUCKET_NAME/CONFIG_PATH` in the example below.
|
||||
Then you need to tell Beanstalk where the file is located. This can be achieved by creating a new application version:
|
||||
|
||||
```
|
||||
aws elasticbeanstalk create-application-version --application-name APPLICATION_NAME --version-label VERSION --source-bundle S3Bucket=BUCKET_NAME,S3Key=CONFIG_PATH
|
||||
aws elasticbeanstalk update-environment --environment-name ENVIRONMENT_NAME --version-label VERSION
|
||||
```
|
39
content/posts/2018/04/wait-for-beanstalk.md
Normal file
39
content/posts/2018/04/wait-for-beanstalk.md
Normal file
|
@ -0,0 +1,39 @@
|
|||
---
|
||||
title: Waiting for AWS Elastic Beanstalk environment to become ready
|
||||
date: 2018-04-23
|
||||
tags: [aws]
|
||||
---
|
||||
|
||||
Elastic Beanstalk on AWS seems to be one of those services that are pretty cool but it's hard to get to know them.
|
||||
One of the tasks you may encounter while working with it is that after making some change to its configuration you would like to wait for it to be finished before proceeding further. The change may be setting an environment variable but can also be deploying a new version of the application. I created a small bash script to help with that, can be useful when you try to run this process unattended, e.g. from CI.
|
||||
|
||||
```bash
|
||||
#!/bin/bash
|
||||
set -e
|
||||
set -o pipefail
|
||||
|
||||
application_name=$1
|
||||
environment_name=$2
|
||||
timeout_seconds=$3
|
||||
|
||||
function getStatus() {
|
||||
echo `aws elasticbeanstalk describe-environments \
|
||||
--application-name $application_name --environment-name $environment_name |\
|
||||
jq -r '.Environments | .[]?' | jq -r '.Status'`
|
||||
}
|
||||
|
||||
sleep_time_seconds=5
|
||||
max_iterations_count=$(($timeout_seconds/$sleep_time_seconds))
|
||||
iterations=0
|
||||
|
||||
echo "Waiting for a maximum of $timeout_seconds seconds for $environment_name to become ready"
|
||||
status=$(getStatus)
|
||||
while [[ ( $status != "Ready" ) && ( $iterations -lt $max_iterations_count ) ]]; do
|
||||
status=$(getStatus)
|
||||
echo $status
|
||||
sleep $sleep_time_seconds
|
||||
((iterations+=1))
|
||||
done
|
||||
```
|
||||
|
||||
Happy coding !
|
22
content/posts/2018/05/pair-with-me-on-rust.md
Normal file
22
content/posts/2018/05/pair-with-me-on-rust.md
Normal file
|
@ -0,0 +1,22 @@
|
|||
---
|
||||
title: I’m running Rust pair programming sessions !
|
||||
date: 2018-05-20
|
||||
tags: [rust]
|
||||
---
|
||||
|
||||
Why ? Rust has such a wonderful community and I want to give back as much as I can.
|
||||
I am not an expert in Rust but I am not a beginner either. In addition to that I love pair programming !
|
||||
The result is always much better than I could produce myself. I am happy to both share the knowledge and learn.
|
||||
|
||||
I would love to pair with you !
|
||||
If you’re a new Rustacean, fresh to the language - come on in ! If you’re an expert - welcome !
|
||||
|
||||
We can work on any of the following:
|
||||
|
||||
- Any project of yours !
|
||||
- Contribute back to a larger open source project (I am a contributor to e.g. [cargo](https://github.com/rust-lang/cargo/), [rustc](https://github.com/rust-lang/rust/) and [rustup](https://github.com/rust-lang-nursery/rustup.rs/))
|
||||
- A project of mine - e.g. [genpass](https://github.com/cyplo/genpass)
|
||||
|
||||
Ping me an [email](mailto:rust@cyplo.dev) to schedule a session - can be a remote one or in person somewhere in London.
|
||||
|
||||
Thank you !
|
27
content/posts/2018/05/rust-resources.md
Normal file
27
content/posts/2018/05/rust-resources.md
Normal file
|
@ -0,0 +1,27 @@
|
|||
---
|
||||
title: Resources for starting your adventure with Rust
|
||||
date: 2018-05-22 00:00:00
|
||||
tags: [rust]
|
||||
---
|
||||
|
||||
As I've been running several intro to Rust sessions throughout the last year, I've assembled a set of resources that help people ease into the language.
|
||||
|
||||
Depending on your learning style you might like:
|
||||
|
||||
- [Rustlings](https://github.com/rustlings/rustlings) - This is a good set of starter exercises if you want to have a feeling for the language - have links to relevant book sections for each exercises so you can either start with the book or trying to figure it out yourself first. Ah, and it uses the Playground, which means you don't need to install anything on your machine to start.
|
||||
- [The book itself](https://doc.rust-lang.org/stable/book/second-edition/index.html) - Second edition. Good when you want a solid baseline understanding of the language first.
|
||||
- [Rust by example](https://doc.rust-lang.org/stable/rust-by-example/) - An set of examples that are runnable within a browser, intertwined with explanatory prose.
|
||||
- [Exercism](http://exercism.io/)’s Rust exercises - a CLI app that guides you through exercises of increasing difficulty.
|
||||
- [IntoRust](http://intorust.com/) - A set of short screencasts for the foundational topics.
|
||||
|
||||
Make sure to stay up to date with:
|
||||
|
||||
- [This week in Rust](https://this-week-in-rust.org/)
|
||||
- [Awesome Rust](https://rust.libhunt.com/)
|
||||
|
||||
And finally:
|
||||
|
||||
- [contribute back](https://www.rustaceans.org/findwork/starters) !
|
||||
- don't forget to join the [user forums](http://users.rust-lang.org/) for the warm welcome.
|
||||
|
||||
If you'd like someone to ask questions to or pair program with, [ping me an email](mailto:rust@cyplo.dev).
|
131
content/posts/2018/07/rust-injection.md
Normal file
131
content/posts/2018/07/rust-injection.md
Normal file
|
@ -0,0 +1,131 @@
|
|||
---
|
||||
title: Rust - controlling side effects from the test.
|
||||
date: 2018-07-30 00:00:00
|
||||
tags: [rust, testing, tdd]
|
||||
series: rust-testing-tricks
|
||||
---
|
||||
|
||||
# Rust: controlling side effects from the test.
|
||||
|
||||
Hello and welcome to the newest episode on testing in Rust.
|
||||
Imagine you want to write a timestamping repository of some sorts, that will associate the timestamp of when the storage operation was invoked with the stored value.
|
||||
How to write it in Rust ? And more importantly - how to test it ?
|
||||
I would like to share a solution I found and talk a bit about how it works.
|
||||
|
||||
Please note that this solution can be used anywhere where you need to pass a handle that is remembered by the production code, and that thing it points to - you then want to change from the test.
|
||||
|
||||
```rust
|
||||
trait Clock {
|
||||
fn now(&self) -> Instant;
|
||||
}
|
||||
|
||||
struct SystemClock;
|
||||
|
||||
impl SystemClock {
|
||||
fn new() -> Self {
|
||||
SystemClock {}
|
||||
}
|
||||
}
|
||||
|
||||
impl Clock for SystemClock {
|
||||
fn now(&self) -> Instant {
|
||||
Instant::now()
|
||||
}
|
||||
}
|
||||
|
||||
struct TimestampingRepository<'a, ClockType>
|
||||
where
|
||||
ClockType: Clock + 'a,
|
||||
{
|
||||
clock: &'a ClockType,
|
||||
storage: Vec<(Instant, u32)>, // (timestamp, value)
|
||||
}
|
||||
|
||||
impl<'a, ClockType> TimestampingRepository<'a, ClockType>
|
||||
where
|
||||
ClockType: Clock + 'a,
|
||||
{
|
||||
fn with_clock(clock: &'a ClockType) -> Self {
|
||||
TimestampingRepository {
|
||||
clock,
|
||||
storage: vec![],
|
||||
}
|
||||
}
|
||||
|
||||
fn store(&mut self, value: u32) {
|
||||
self.storage.push((self.clock.now(), value));
|
||||
}
|
||||
|
||||
fn all_stored(&self) -> Vec<(Instant, u32)> {
|
||||
self.storage.clone()
|
||||
}
|
||||
}
|
||||
|
||||
#[cfg(test)]
|
||||
mod should {
|
||||
|
||||
#[test]
|
||||
fn handle_seconds() {
|
||||
let clock = FakeClock::with_time(Instant::now());
|
||||
let mut repository = TimestampingRepository::with_clock(&clock);
|
||||
|
||||
repository.store(1);
|
||||
clock.move_by(Duration::from_secs(32));
|
||||
repository.store(2);
|
||||
|
||||
let time_difference = time_difference_between_two_stored(repository);
|
||||
|
||||
assert_eq!(32, time_difference.as_secs());
|
||||
}
|
||||
|
||||
struct FakeClock {
|
||||
now: Instant,
|
||||
move_by_secs: AtomicUsize,
|
||||
}
|
||||
|
||||
impl FakeClock {
|
||||
fn with_time(now: Instant) -> Self {
|
||||
FakeClock {
|
||||
now,
|
||||
move_by_secs: AtomicUsize::new(0),
|
||||
}
|
||||
}
|
||||
|
||||
// WAT no `mut`
|
||||
fn move_by(&self, duration: Duration) {
|
||||
self.move_by_secs
|
||||
.store(duration.as_secs() as usize, Ordering::SeqCst);
|
||||
}
|
||||
}
|
||||
|
||||
impl Clock for FakeClock {
|
||||
fn now(&self) -> Instant {
|
||||
let move_by_secs = self.move_by_secs.load(Ordering::SeqCst) as u64;
|
||||
self.now + Duration::from_secs(move_by_secs)
|
||||
}
|
||||
}
|
||||
|
||||
}
|
||||
```
|
||||
|
||||
That's a lot of code. And I already skipped `use`s and some definitions to make it less.
|
||||
If you want to get the full source code that to follow along - try this [playground](https://play.rust-lang.org/?gist=7f47c441732b543a918cb491487196d4&version=stable&mode=debug&edition=2015) or [this repo](https://github.com/cyplo/rust-dependency-injection) for the full project including production code usage.
|
||||
|
||||
Let's start with the test itself.
|
||||
The clock appears to be immutable (immovable) in the test, yet we call `move_by` on it and the whole thing appears to be working somehow.
|
||||
First question: can't we just make the clock mutable and skip all this ?
|
||||
It appears that sadly (but fortunately) Rust prevents us from doing so.
|
||||
We [cannot](https://doc.rust-lang.org/book/second-edition/ch04-02-references-and-borrowing.html) both have a immutable and mutable borrow of the clock in the same scope.
|
||||
For the full example with an error go [here](https://play.rust-lang.org/?gist=3e496f857f1e016c596ec7c4060538df&version=stable&mode=debug&edition=2015).
|
||||
|
||||
What is this sorcery then ?
|
||||
We use a type that provides [`Interior Mutability`](https://doc.rust-lang.org/book/second-edition/ch15-05-interior-mutability.html), namely [`AtomicUsize`](https://rust-lang-ja.github.io/the-rust-programming-language-ja/1.6/std/sync/atomic/struct.AtomicUsize.html).
|
||||
On the outside - it look immutable, yet it provides a thread-safe and very narrow method of mutating the underlying state.
|
||||
As we trust `AtomicUsize` to be written correctly, we can then proceed and write our Rust code as usual, relying fully on the borrow checker. Rust compiler is happy and our test code is happy.
|
||||
|
||||
I wouldn't use this as a pattern in production code - the borrow checker rules are there for a reason.
|
||||
Please treat it as an escape hatch to be used in specific situations, situations like this.
|
||||
|
||||
Happy Rusting !
|
||||
|
||||
p.s. if you'd like to chat about Rust - [ping me an email](mailto:rust@cyplo.dev) !
|
63
content/posts/2018/09/rust-testing-tricks.md
Normal file
63
content/posts/2018/09/rust-testing-tricks.md
Normal file
|
@ -0,0 +1,63 @@
|
|||
---
|
||||
title: Testing tricks in Rust
|
||||
date: 2018-09-25 00:00:00
|
||||
tags: [rust, tdd, testing]
|
||||
series: rust-testing-tricks
|
||||
---
|
||||
|
||||
# Use verbs as test module names
|
||||
|
||||
Who said that the test module needs to be named `test` ?
|
||||
Experiment with different module names, pay attention to how the test runner displays the results.
|
||||
|
||||
A structure that I like, an example:
|
||||
|
||||
`worker.rs:`
|
||||
|
||||
```rust
|
||||
// some production code here
|
||||
|
||||
mod should {
|
||||
|
||||
#[test]
|
||||
fn consume_message_from_queue() {
|
||||
// mock queue, create worker with that queue injected
|
||||
// start worker
|
||||
// check if queue's 'get_message' was invoked
|
||||
}
|
||||
|
||||
}
|
||||
```
|
||||
|
||||
Cargo prints `worker::should::consume_message_from_queue` when running this test, which reads nicely and exposes the requirement.
|
||||
|
||||
# Interior mutability for controlling state of variables injected from the test
|
||||
|
||||
Use e.g. the `atomic` types family or `RefCell` itself to get an immutable handle to a internally mutable data.
|
||||
Useful when you don't want your production code to accept anything that can mutate but you still want to control that value from the test.
|
||||
|
||||
See injecting the system clock example in [my previous blog post](/posts/2018/07/rust-injection.html).
|
||||
|
||||
# Write the test first
|
||||
|
||||
Not really a Rust trick, but hey.
|
||||
Try writing your test first, before production code.
|
||||
If you're building a feature or fixing a bug that will affect external behaviour - start with an integration test at the crate level.
|
||||
|
||||
Try thinking what would be the ideal code you would like to interact with, what would be the types, what would be the functions ? A broad-strokes scenario, not caring much about implementation details, not caring much about covering all edge cases. Write that code. It does not compile. But it looks nice, you're pleased.
|
||||
|
||||
Read through again, add assertions. Add the types. For each missing feature or a bug that is present in this high level scenario - write a unit test. Satisfy that test with changes to production code. Maybe refactor a bit in between. Once the big test is green - you're done !
|
||||
|
||||
There is no Rust-focused TDD book just yet for me to recommend, but here, have some for other languages:
|
||||
|
||||
- Kent Beck - Test Driven Development: By Example
|
||||
- Steve Freeman, Nat Pryce - Growing Object-Oriented Software, Guided by Tests
|
||||
|
||||
Rust allows for more cool tricks and generally writing less test code than mentioned in these books, so please use your judgment - and the tricks from this article !
|
||||
|
||||
# Let's talk !
|
||||
|
||||
Have any questions ? Would like to pair on Rust ? Curious about TDD ? Ping me !
|
||||
Email is good - [hello@cyplo.net](mailto:hello@cyplo.net) or try [Twitter](https://twitter.com/cyplo).
|
||||
|
||||
thanks !
|
105
content/posts/2018/12/generate-rust-tests-from-data.md
Normal file
105
content/posts/2018/12/generate-rust-tests-from-data.md
Normal file
|
@ -0,0 +1,105 @@
|
|||
---
|
||||
title: Generate Rust tests from data files
|
||||
date: 2018-12-25
|
||||
tags: [rust, tdd, testing]
|
||||
series: rust-testing-tricks
|
||||
---
|
||||
|
||||
Sometimes you just have a bunch of example data laying around and you want to make sure your code works with all of them.
|
||||
Some of them are probably short and sweet and could live happily as [doctests](https://doc.rust-lang.org/rustdoc/documentation-tests.html), which are amazing btw. But some of them are more awkward to present in such form, because, for example, of their size or number. Typically when you have an example of how the program should behave you write an example-based unit test. Ideally, each of them would represent an isolated example and they should fail independently. But, converting your source data files into a unit test one by one, manually, can be a bit tedious.
|
||||
|
||||
[Rust build scripts](https://doc.rust-lang.org/cargo/reference/build-scripts.html) to the rescue !
|
||||
|
||||
What if you could could just iterate over the data files you have already and then produce unit tests accordingly ?
|
||||
What follows is an example of such, where we iterate over directories and generate one unit test per each, assuming all of them contain files named according to our convention.
|
||||
|
||||
I chose to generate integration tests here, but you can generate pretty much any code using this technique.
|
||||
|
||||
`tests/test_loader.rs`
|
||||
|
||||
```rust
|
||||
// include tests generated by `build.rs`, one test per directory in tests/data
|
||||
include!(concat!(env!("OUT_DIR"), "/tests.rs"));
|
||||
```
|
||||
|
||||
`build.rs`
|
||||
|
||||
```rust
|
||||
use std::env;
|
||||
use std::fs::read_dir;
|
||||
use std::fs::DirEntry;
|
||||
use std::fs::File;
|
||||
use std::io::Write;
|
||||
use std::path::Path;
|
||||
|
||||
// build script's entry point
|
||||
fn main() {
|
||||
let out_dir = env::var("OUT_DIR").unwrap();
|
||||
let destination = Path::new(&out_dir).join("tests.rs");
|
||||
let mut test_file = File::create(&destination).unwrap();
|
||||
|
||||
// write test file header, put `use`, `const` etc there
|
||||
write_header(&mut test_file);
|
||||
|
||||
let test_data_directories = read_dir("./tests/data/").unwrap();
|
||||
|
||||
for directory in test_data_directories {
|
||||
write_test(&mut test_file, &directory.unwrap());
|
||||
}
|
||||
}
|
||||
|
||||
fn write_test(test_file: &mut File, directory: &DirEntry) {
|
||||
let directory = directory.path().canonicalize().unwrap();
|
||||
let path = directory.display();
|
||||
let test_name = format!(
|
||||
"prefix_if_needed_{}",
|
||||
directory.file_name().unwrap().to_string_lossy()
|
||||
);
|
||||
|
||||
write!(
|
||||
test_file,
|
||||
include_str!("./tests/test_template"),
|
||||
name = test_name,
|
||||
path = path
|
||||
)
|
||||
.unwrap();
|
||||
}
|
||||
|
||||
fn write_header(test_file: &mut File) {
|
||||
write!(
|
||||
test_file,
|
||||
r#"
|
||||
use crate_under_test::functionality_under_test;
|
||||
"#
|
||||
)
|
||||
.unwrap();
|
||||
}
|
||||
```
|
||||
|
||||
`tests/test-template`
|
||||
|
||||
```rust
|
||||
|
||||
#[test]
|
||||
fn {name}() {{
|
||||
let input = include_str!("{path}/input-data");
|
||||
let expected_output = include_str!("{path}/output-data");
|
||||
|
||||
let actual_output = functionality_under_test(input);
|
||||
|
||||
assert_eq!(expected_output, actual_output);
|
||||
}}
|
||||
|
||||
```
|
||||
|
||||
So to recap - first the `build.rs` script creates `$OUT_DIR/tests.rs` file containing all the generated tests code.
|
||||
The compiler does not know there are tests to launch using normal integration tests procedure there though,
|
||||
so then we use `tests/test_loader.rs` to tell it so, basically including the generated Rust code into that file.
|
||||
After the compilation proceeds normally, giving us one unit test per directory, giving us ability to pinpoint test cases that are problematic more precisely.
|
||||
|
||||
You can then further improve on that, e.g. add more directory structure, split tests into modules etc - you can generate any Rust code this way.
|
||||
|
||||
Happy hacking !
|
||||
|
||||
p.s.
|
||||
there are more [Rust testing tricks](/series/rust-testing-tricks) and let me know if you'd like to [pair program with me on anything !](/posts/2018/05/pair-with-me-on-rust)
|
35
content/posts/2019/04/blog-refresh.md
Normal file
35
content/posts/2019/04/blog-refresh.md
Normal file
|
@ -0,0 +1,35 @@
|
|||
---
|
||||
title: Website refresh
|
||||
date: 2019-04-09
|
||||
tags: [nikola, hugo, blog]
|
||||
---
|
||||
|
||||
Hello !
|
||||
|
||||
As you may have noticed - this website looks different now ! Why is that ? I've not only changed the visual theme but also a lot of underlying infrastructure.
|
||||
Let's start with describing the old setup and see where we can improve.
|
||||
The site previously ran on [Nikola](https://getnikola.com/), was built on [Travis](https://travis-ci.org/cyplo/blog) and then pushed to [Netlify](https://www.netlify.com/), which I later changed to [Github Pages](https://pages.github.com/). While it worked it had some issues of its own;
|
||||
|
||||
1. Image galleries were hard to navigate and looked a bit out of place.
|
||||
2. The site was not rendering the main menu correctly on mobile devices.
|
||||
3. It was slow to build the site, especially on CI - it took 15 to 30 minutes for the CI run on travis to get the site deployed - not ideal for fast feedback
|
||||
4. Lack of previews for the work in progress - it was hard for me to set up a preview per branch, updated automatically.
|
||||
|
||||
All of the above, mixed with me having a bit of a time off, resulted in getting this site migrated to some new and exciting stack !
|
||||
|
||||
It now runs on [Hugo](https://gohugo.io/) and uses Netlify as the deployment target. I fixed all of the problems above and added some more niceties !
|
||||
|
||||
1. I'm using [Beautiful Hugo](https://themes.gohugo.io/beautifulhugo/)'s Gallery now - see this [old post](/posts/2016/06/12/dont-throw-away-fix/) for an example
|
||||
2. This theme also makes the site mobile-friendly out of the box
|
||||
3. It takes 1-3 minutes for the full site deploy
|
||||
4. Previews just work :)
|
||||
5. No need to use [custom Netlify sync script I wrote](/posts/2017/03/netlify-incremental-deployer/) anymore, as Hugo is natively supported on Netlify
|
||||
6. Netlify supports TLS on multiple domains - you can now use [cyplo.dev](https://blog.cyplo.dev/) as well as [cyplo.net](https://blog.cyplo.net) to reach this site :)
|
||||
|
||||
As for how the actual migration was done - it was a bit of work, as you can see in this [PR](https://github.com/cyplo/blog/pull/46). While I could migrate the content mostly automatically, I chose to actually use this opportunity to review all the posts manually !
|
||||
This allowed me to spot and fix some additional issues, like broken links, editorial mistakes etc.
|
||||
|
||||
Overall I think this was worth it - the site is now more modern, the sources are smaller and it is fast to build.
|
||||
If you're curious about the details - all the sources are [here](https://github.com/cyplo/blog).
|
||||
|
||||
Happy blogging !
|
47
content/posts/2019/04/fuzzers.md
Normal file
47
content/posts/2019/04/fuzzers.md
Normal file
|
@ -0,0 +1,47 @@
|
|||
---
|
||||
title: Fuzzers and how to run them.
|
||||
date: 2019-04-17
|
||||
tags: [fuzzing, rust, testing]
|
||||
---
|
||||
|
||||
I am fascinated by the concept of fuzzing. It fits well with my desire to test weird code paths by using more of computer's time and less that of a programmer.
|
||||
|
||||
## What is fuzzing ?
|
||||
|
||||
It's a type of automated testing, especially good with finding edge cases in your code. It runs totally outside of your code and knows nothing about it - it just throws random data at it. Modern fuzzers instrument your code to be able to tell if by changing input they change the code paths covered and by doing that they try to achieve maximum coverage. While this sounds like a very naive approach it can lead to finding incredibly interesting bugs. For that reason fuzzers are oftentimes used in the security community for finding vulnerabilities. Fuzzing is a type of a black box testing - but how you define that box is entirely up to you. It can be the whole program, it can be a single function. It just needs a clear entry point with ability to manipulate input data.
|
||||
|
||||
An example may be in order. We'll look into one provided by [Rust Fuzzing Authority](https://github.com/rust-fuzz) - people behind [cargo fuzz](https://fuzz.rs/book/cargo-fuzz.html) and [afl.rs](https://fuzz.rs/book/afl.html).
|
||||
Imagine you're trying to see if you've handled all cases in your url parser. You can just do
|
||||
|
||||
```rust
|
||||
fuzz_target!(|data: &[u8]| {
|
||||
if let Ok(s) = std::str::from_utf8(data) {
|
||||
let _ = url::Url::parse(s);
|
||||
}
|
||||
});
|
||||
```
|
||||
|
||||
And that's it ! You define a function that takes raw bytes, discards the ones that are outside of a UTF8 string space and then tries to invoke the function under test with the said string. We assume that if this function completes then the run is considered ok, if it panics then not.
|
||||
|
||||
I wanted to use this example because it is very typical of how a fuzzer would be used.
|
||||
|
||||
1. get random input from the engine
|
||||
2. discard some of the input
|
||||
3. drive the function under test
|
||||
4. check some simple property of the run - the faster the property to check the better. For this reason - the 'did not crash' property is used often, however you can use any condition you want, as long as fuzzer has a way of distinguishing between successful and failed runs.
|
||||
|
||||
## How does it compare to property-based tests ?
|
||||
|
||||
When thinking about other types of tests that are driven by randomness and are generally black-box-ish - property-based tests come to mind. How does fuzzing compare ?
|
||||
|
||||
- Fuzzing is good with finding hidden properties of the existing code, it used after the code is written, while property-based tests can also be used in a TDD workflow
|
||||
- In property-based tests you typically want to describe behaviour - they serve as good documentation. Fuzzing is not really as good with that. It can automatically collect the examples though, that then can be manually transformed into a property.
|
||||
- As you want your program to always hold all properties true you run all property-based tests within your CI/CD pipeline. For this reason they tend to test only things that are relatively fast to check, execution-time wise. Fuzzers are typically ran over nights or weeks - finding those edge cases, providing more properties for you to know and care about.
|
||||
|
||||
## Want help with fuzzing your open source project ?
|
||||
|
||||
If you're not sure what fuzzing is, or you want help with adding fuzzer support to your open source project - just tell me ! Either by [email](mailto:fuzzing@cyplo.dev) or on [Twitter](https://twitter.com/cyplo). I'm happy to jump on a call, pair program or whatever you fancy ! I know the most about the Rust fuzzing space, but happy to help with other languages as well - this allows me to learn :)
|
||||
|
||||
I also run a fuzzing server where I can test your project overnight and see if we find anything.
|
||||
|
||||
With that in mind - happy fuzzing !
|
75
content/posts/2019/11/tools.md
Normal file
75
content/posts/2019/11/tools.md
Normal file
|
@ -0,0 +1,75 @@
|
|||
---
|
||||
title: My 2019 setup
|
||||
date: 2019-11-16
|
||||
series: my-setup
|
||||
tags: [tools]
|
||||
---
|
||||
|
||||
Here's a list of software and some hardware I find useful, either things that I use daily or things that make an unusual task pleasant instead of incredibly difficult.
|
||||
This is constantly evolving, so please mind the publish date of this post to gauge how dated it is. The best place to get most recent settings I currently use is my [dotfiles](https://github.com/cyplo/dotfiles) repository, especially the [nixos](https://github.com/cyplo/dotfiles/tree/master/nixos) configuration.
|
||||
|
||||
## Laptop and OS
|
||||
|
||||
My daily driver is [Thinkpad T480](https://www.thinkwiki.org/wiki/Category:T480#Lenovo_ThinkPad_T480) running [NixOS](https://nixos.org/). I like the hardware for its matte screen, nice keyboard and general sturdiness. It's also black and black is nice.
|
||||
The device-specific config lives [here](https://github.com/cyplo/dotfiles/blob/master/nixos/boxes/foureighty.nix).
|
||||
|
||||
I use [home manager](https://github.com/rycee/home-manager) to manage my dotfiles.
|
||||
I still haven't found a good way of having all this setup ported exactly to non-NixOS operating systems.
|
||||
Within the NixOS land I'm all set up now though, as an example -
|
||||
I have an older laptop that I used previously, and installing NixOS there took total of around half an hour, giving me **exactly** the same look and feel to all the software I run as I'm used to.
|
||||
|
||||
NixOS's ability to boot into a previous version of the whole system is another big plus to me, as I like to experiment with my settings and sometimes I break something important. It creates an environment that does not punish you for trying something new, it encourages that.
|
||||
|
||||
## Networking gear
|
||||
|
||||
I had a lot of problems with network speed over wifi previously, because of that I bought a Netgear [Nighthawk X4S R7800](https://www.netgear.co.uk/home/products/networking/wifi-routers/R7800.aspx) router and installed [OpenWRT](https://openwrt.org/) on it. After all this change, I am able to run very frequent multi-gigabyte backup transfers over wifi and everything works nicely.
|
||||
|
||||
## Graphical interface
|
||||
|
||||
I started running [i3](https://i3wm.org/) recently because of the strain Gnome3 was putting on my system, and I am liking it so far, mostly for the speed of navigation and little resource usage. There's [polybar](https://github.com/polybar/polybar) on top and not much else in terms of bells and whistles present.
|
||||
I use [autorandr](https://github.com/phillipberndt/autorandr) to keep track of different display devices on different machines - it will automatically set the best resolution for whatever the screen combination I am currently using. See [config](https://github.com/cyplo/dotfiles/blob/master/nixos/user-xsession.nix) for more details.
|
||||
|
||||
[Firefox](https://www.mozilla.org/en-GB/firefox/new/) remains my browser of choice, I highly recommend you try it, it is so much faster now than it used to be. Make sure to switch the tracking protection on.
|
||||
|
||||
## Secrets management
|
||||
|
||||
I have a [veracrypt](https://www.veracrypt.fr/en/Home.html) encrypted container, where my secrets reside, with a small set of scripts to [mount](https://github.com/cyplo/dotfiles/blob/master/tools/mount-vault) and [unmount](https://github.com/cyplo/dotfiles/blob/master/tools/umount-vault) it. The container is synced between different machines using [syncthing](https://syncthing.net/).
|
||||
Inside the container, among other things, there is a [password store](https://www.passwordstore.org/) directory, which I use from either command line or from Firefox, using [this plugin](https://github.com/passff/passff)
|
||||
|
||||
## Sync
|
||||
|
||||
[Syncthing](https://syncthing.net/) just keeps working, no matter how many devices I attach and what is their configuration. I run it on all my machines, including mobile devices and it just works. This is how I keep all my documents, photos and other data always fresh between all devices. Just make sure to encrypt the data at rest when using it, you don't want to sync to a device which someone else can take from you and read all the data off of.
|
||||
Sync is also not a replacement for backup, as file deletions and corruption can spread easily across your fleet.
|
||||
|
||||
## Backups
|
||||
|
||||
Here is where I am not that happy with the overall setup.
|
||||
Currently I use [restic](https://restic.net/) to encrypt the backup and then ship it off of individual machines to my central NAS storage. Then from there it is being shipped to Backblaze's [b2](https://www.backblaze.com/b2/cloud-storage.html) for off-site storage.
|
||||
|
||||
In principle, the setup I would like to retain, where the encryption credentials are only on machines creating backups and everything else only sees already encrypted files. In practice, restic itself seems to have a lot of troubles with the source machines being laptops and being constantly opened and closed, caused the running backup process to go through hibernation cycles. This locks/damages the central backup repo quite frequently and I need to run `restic rebuild-index` quite often to keep things working.
|
||||
|
||||
For this reason I started working on [bakare](https://github.com/cyplo/bakare), a small backup engine in Rust - [let me know](mailto:bakare@cyplo.net) if you would be interested in collaborating with me on it.
|
||||
|
||||
## Editors
|
||||
|
||||
I use a combination of [vim](https://www.vim.org/), [VSCode](https://code.visualstudio.com/) and different [JetBrains'](https://www.jetbrains.com/) IDEs for work. I like IDEs mostly for refactoring and debugging capabilities, while vim and VSCode for speed of editing individual files. I still use vim-mode in IDEs though.
|
||||
|
||||
## Fonts
|
||||
|
||||
I settled on [Fira Code Retina](https://github.com/tonsky/FiraCode) for most of my programming and terminal needs.
|
||||
|
||||
## Terminal
|
||||
|
||||
I find [termite](https://github.com/thestinger/termite) quite fast, while supporting extended character and colour sets.
|
||||
My shell is [zsh](https://www.zsh.org/) with minimal [oh-my-zsh](https://github.com/robbyrussell/oh-my-zsh) [config](https://github.com/cyplo/dotfiles/blob/master/nixos/programs/zsh.nix). I always run it inside a [tmux](https://github.com/tmux/tmux/wiki) session though, and no matter how many terminal windows I open, I am always greeted with the same state. All history and window state is shared between all terminal windows all tmux windows as well - it is always the same one tmux session. Because I am always running tmux, sometimes I end up in a situation when I ssh into some box and need to run tmux there - for that reason I have my main tmux session having different leader key than the default, this way I can choose which tmux session will receive my command - my machine or the one I'm connecting to. All of the above comes from a combination of [shell](https://github.com/cyplo/dotfiles/blob/master/nixos/programs/zsh.nix) and [tmux](https://github.com/cyplo/dotfiles/blob/master/nixos/programs/tmux.nix) settings.
|
||||
|
||||
Here's a small collection of other tools I found help a lot when on the terminal:
|
||||
|
||||
- [ripgrep](https://github.com/BurntSushi/ripgrep) - it is just so much faster than grep
|
||||
- [fd](https://github.com/sharkdp/fd) - same but for `find`
|
||||
- [bat](https://github.com/sharkdp/bat) - a cooler `cat`
|
||||
- [genpass](https://crates.io/crates/genpass) for generating passwords
|
||||
- [z.lua](https://github.com/skywind3000/z.lua) for faster navigation
|
||||
|
||||
And that's it !
|
||||
I hope you'll find this list useful and do not hesitate to [contact me](mailto:blog@cyplo.net) on `blog@cyplo.net` if you would have any questions or comments. Happy hacking !
|
8
content/posts/2019/death-and-life-of-cities.md
Normal file
8
content/posts/2019/death-and-life-of-cities.md
Normal file
|
@ -0,0 +1,8 @@
|
|||
---
|
||||
title: Death and Life of American Cities
|
||||
date: 2019-04-09
|
||||
tags: [book]
|
||||
draft: true
|
||||
---
|
||||
|
||||
review
|
6
content/posts/2019/hugo-post-series.md
Normal file
6
content/posts/2019/hugo-post-series.md
Normal file
|
@ -0,0 +1,6 @@
|
|||
---
|
||||
title: Add a concept of post series in Hugo
|
||||
date: 2019-04-09
|
||||
tags: [hugo]
|
||||
draft: true
|
||||
---
|
8
content/posts/2019/nixos.md
Normal file
8
content/posts/2019/nixos.md
Normal file
|
@ -0,0 +1,8 @@
|
|||
---
|
||||
title: Migrating laptop workstation to to Nixos
|
||||
date: 2019-04-09
|
||||
tags: [linux, nixos]
|
||||
draft: true
|
||||
---
|
||||
|
||||
Nixos
|
4
content/posts/2019/rust-pairing-update.md
Normal file
4
content/posts/2019/rust-pairing-update.md
Normal file
|
@ -0,0 +1,4 @@
|
|||
pairing sessions update
|
||||
|
||||
- using genpass
|
||||
- fuzzing
|
38
content/posts/2020/10/cornbread.md
Normal file
38
content/posts/2020/10/cornbread.md
Normal file
|
@ -0,0 +1,38 @@
|
|||
---
|
||||
title: Buttermilk cornbread
|
||||
date: 2020-10-10
|
||||
tags: [baking]
|
||||
---
|
||||
|
||||
I like baking, as it can be something that does not involve any computers.
|
||||
Please have this recipe for cornbread, based on buttermilk and baked in a skillet.
|
||||
As for baking goes, this recipe is quite forgiving and you don't need to watch ratios as closely as with others.
|
||||
|
||||
## Ingredients
|
||||
|
||||
This is for a 20cm (8") skillet, which gives you enough bread for you and one other person to enjoy over a weekend. For a 25cm (10") skillet - double the amounts. It's best to use a cast iron skillet as it has enough thermal mass to take pouring cold batter into it and still be reasonably hot afterwards. Flour and cornmeal volume measurements are for flour poured into a cup.
|
||||
|
||||
```
|
||||
1/2 tablespoon vegetable oil
|
||||
300ml cornmeal
|
||||
150ml all-purpose flour
|
||||
1/2 teaspoons salt
|
||||
1 teaspoons baking powder
|
||||
1/2 teaspoon baking soda
|
||||
300ml buttermilk
|
||||
2 eggs
|
||||
2 tablespoons melted butter
|
||||
```
|
||||
|
||||
## Steps
|
||||
|
||||
- Put the veggie oil in the skillet, put the skillet in the oven, preheat to 200C. This takes a while and gives you time to prepare the batter. The oil shouldn't smoke.
|
||||
- Combine all dry ingredients in a large bowl, mix well.
|
||||
- In another bowl whisk eggs and then melted butter into the buttermilk. No need for any extensive whisking, just to combine well.
|
||||
- Make sure your oven came to temp.
|
||||
- Pour wet ingredients into the dry, mix well. Acid from the buttermilk will start to react with bases from the baking soda and powder leavening the mixture. Do not overmix and work reasonably quickly, to not lose the bubblage. The resulting batter should be thick, barely pourable.
|
||||
- Take the hot skillet out of the oven, make sure the oil is spread evenly.
|
||||
- Pour the batter onto the hot skillet, most of it should pour but the last of it you may need to transfer using a spoon. Even out the surface, but don't be too pedantic about it.
|
||||
- Put the skillet back into the oven, reduce heat to 185C
|
||||
- Bake for around 20-30 minutes, it does not burn easily, you can put it under a broiler for few minutes at the end if you want more brownage. The time needed does not change as much with the volume.
|
||||
- After baking you can keep it in the skillet, or take it out. It does not need to release much moisture, but also should come out pretty easily when fully baked.
|
80
content/posts/2020/12/fail-and-fork.md
Normal file
80
content/posts/2020/12/fail-and-fork.md
Normal file
|
@ -0,0 +1,80 @@
|
|||
---
|
||||
title: Don't let failures spread over your suite with process-based tests isolation
|
||||
date: 2020-12-28
|
||||
series: rust-testing-tricks
|
||||
tags: [rust, testing]
|
||||
---
|
||||
|
||||
Being able to precisely control what failures in underlying systems occur and at what time can be really useful in achieving a fast and stable test suite. While I am a big proponent of dependency inversion and being able to control dependencies via the explicit injection points in your API, sometimes it's impractical to do so. This is where [`fail`](https://crates.io/crates/fail) can help us immensely, providing an escape hatch for situations like those as it allows to inject failures into previously defined failure points.
|
||||
|
||||
It comes at a price though. If you would mix your other unit tests and tests activating fail points you will notice some unexpected failures in the test suite. As `cargo test` runs tests in parallel by default, the tests activating a fail point can interfere with another test that did not want that fail point active at all that is ran at the same time. The crate authors [recommend](https://docs.rs/fail/#usage-in-tests) running all of the tests using fail points in a separate executable and using `FailScenario` to serialise test execution.
|
||||
|
||||
There is another way, that I found simpler for the way I write tests, if you allow for yet another helper crate. We can run each test in a separate process, effectively isolating it from the rest, stopping failures from spreading.
|
||||
|
||||
Let's take a look at an example from [`bakare`](https://git.sr.ht/~cyplo/bakare) - my experiment in writing a backup system.
|
||||
|
||||
`cargo.toml`
|
||||
|
||||
```toml
|
||||
[dependencies]
|
||||
fail = "0.4"
|
||||
|
||||
[dev-dependencies]
|
||||
two-rusty-forks = "0.4.0"
|
||||
|
||||
[features]
|
||||
failpoints = [ "fail/failpoints" ]
|
||||
```
|
||||
|
||||
`lock.rs`
|
||||
|
||||
```rust
|
||||
/// this function is called from `Lock::lock()`
|
||||
fn create_lock_file(lock_id: Uuid, index_directory: &VfsPath) -> Result<()> {
|
||||
...
|
||||
fail_point!("create-lock-file", |e: Option<String>| Err(anyhow!(e.unwrap())));
|
||||
let mut file = lock_file_path.create_file()?;
|
||||
...
|
||||
}
|
||||
|
||||
mod must {
|
||||
use super::Lock;
|
||||
use anyhow::Result;
|
||||
|
||||
/// only import the macro when `failpoints` feature is enabled
|
||||
#[cfg(feature = "failpoints")]
|
||||
use two_rusty_forks::rusty_fork_test;
|
||||
use vfs::{MemoryFS, VfsPath};
|
||||
|
||||
#[test]
|
||||
/// this is a normal unit test
|
||||
/// we don't want for it to be affected by the fail points being active
|
||||
fn be_released_when_dropped() -> Result<()> {
|
||||
let temp_dir: VfsPath = MemoryFS::new().into();
|
||||
{
|
||||
let _lock = Lock::lock(&temp_dir);
|
||||
}
|
||||
let entries = temp_dir.read_dir()?.count();
|
||||
|
||||
assert_eq!(entries, 0);
|
||||
Ok(())
|
||||
}
|
||||
|
||||
#[cfg(feature = "failpoints")]
|
||||
rusty_fork_test! { /// use the macro to create a separate process for this test
|
||||
#[test]
|
||||
fn be_able_to_lock_when_creating_lock_file_fails_sometimes() {
|
||||
/// activate the fail point
|
||||
fail::cfg("create-lock-file", "90%10*return(some lock file creation error)->off")
|
||||
.unwrap();
|
||||
let path = MemoryFS::new().into();
|
||||
|
||||
let lock = Lock::lock(&path).unwrap();
|
||||
lock.release().unwrap();
|
||||
}
|
||||
}
|
||||
|
||||
...
|
||||
}
|
||||
|
||||
```
|
118
content/posts/2020/12/setup.md
Normal file
118
content/posts/2020/12/setup.md
Normal file
|
@ -0,0 +1,118 @@
|
|||
---
|
||||
title: My 2020 setup
|
||||
date: 2020-12-29
|
||||
series: my-setup
|
||||
tags: [tools]
|
||||
---
|
||||
|
||||
Hello and welcome to the second edition of me doing a summary of the year of using tech tools.
|
||||
|
||||
Here's a list of software and some hardware I find useful, either things that I use daily or things that make an unusual task pleasant instead of incredibly difficult.
|
||||
This is constantly evolving, so please mind the publish date of this post, please also check the [last year's installment](https://blog.cyplo.dev/posts/2019/11/tools/) as this article will make references to the previous setup.
|
||||
|
||||
## Laptop, OS and other work hardware
|
||||
|
||||
- [Thinkpad T480](https://www.thinkwiki.org/wiki/Category:T480#Lenovo_ThinkPad_T480), the device-specific config lives [here](https://git.sr.ht/~cyplo/dotfiles/tree/master/item/nixos/boxes/foureighty/default.nix).
|
||||
- CalDigit TS3 Plus usb-c hub
|
||||
- Iiyama ProLite 27" 4K monitor
|
||||
- IKEA BEKANT motorised standing desk
|
||||
|
||||
No dramatic changes here since the [last year](https://blog.cyplo.dev/posts/2019/11/tools/), I'm still on [NixOS](https://nixos.org/) on the T480. Thinkpad got a RAM upgrade to 48GiB and is handling it well, despite it being above it stated memory limit. I've also managed to get my `home-manager` config [called](https://git.sr.ht/~cyplo/dotfiles/tree/83ddcc09dc68389b129d598722eca9e90a6dff33/item/nixos/boxes/foureighty/default.nix#L33) from the main system configuration, so now I just need to do `sudo nixos-rebuild switch --upgrade` once and it does my `home-manager` setup as well. This allowed me to split the config into modules a bit better.
|
||||
|
||||
I'm really happy with the standing desk as it allows me to switch from sitting to standing and back very quickly.
|
||||
|
||||
For the USB-C hub, I switched from the StarTech one I had before and this one is much more stable now.
|
||||
|
||||
### TODOs for 2021:
|
||||
|
||||
- to look into [`flakes`](https://nixos.wiki/wiki/Flakes) and see if I want to port my config over to that style.
|
||||
|
||||
## Networking
|
||||
|
||||
- [Turris Omnia](https://www.turris.com/en/omnia/overview/)
|
||||
- [Devolo Magic 2 WiFi](https://www.devolo.co.uk/magic-2-wifi) powerline adapters
|
||||
|
||||
While I stopped having WiFi speed problems with the purchase of the Netgear R7800 router, it started dropping packets in the summer. I suspect it started overheating, whether it was solely a problem with the hardware itself or was also influenced by where the router was placed and the airflow avaiable I don't know. As I needed this solved quickly I bought Turris Omnia as a replacement and am quite happy with it.
|
||||
|
||||
### TODOs for 2021:
|
||||
|
||||
- debug the overheating problem
|
||||
- try to port [NixWRT](https://github.com/telent/nixwrt) to run on R7800
|
||||
|
||||
## Graphical interface
|
||||
|
||||
- [i3](https://git.sr.ht/~cyplo/dotfiles/tree/83ddcc09dc68389b129d598722eca9e90a6dff33/item/nixos/i3)
|
||||
- [grobi](https://git.sr.ht/~cyplo/dotfiles/tree/83ddcc09dc68389b129d598722eca9e90a6dff33/item/nixos/i3/grobi.nix)
|
||||
|
||||
Running `grobi` now instead of `autorandr` but otherwise the config seems to be stabilising.
|
||||
|
||||
## Secrets management
|
||||
|
||||
- [veracrypt](https://www.veracrypt.fr/en/Home.html) + [syncthing](https://syncthing.net/)
|
||||
- [password store](https://www.passwordstore.org/) + [passff](https://github.com/passff/passff)
|
||||
- [bitwarden](https://bitwarden.com/)
|
||||
|
||||
I have a `veracrypt` encrypted container, where my secrets reside, with a small set of scripts to [mount](https://git.sr.ht/~cyplo/dotfiles/tree/83ddcc09dc68389b129d598722eca9e90a6dff33/item/tools/mount-vault) and [unmount](https://git.sr.ht/~cyplo/dotfiles/tree/83ddcc09dc68389b129d598722eca9e90a6dff33/item/tools/umount-vault) it. The container is synced between different machines using `syncthing`.
|
||||
Inside the container, among other things, there is a `password store` directory, which I use from either command line or from Firefox.
|
||||
|
||||
For when I need to share a secret I use `bitwarden` as it allows for that in a quite an easy way.
|
||||
|
||||
## Sync
|
||||
|
||||
[Syncthing](https://syncthing.net/) just keeps working, no matter how many devices I attach and what is their configuration. I run it on all my machines, including mobile devices and it just works. This is how I keep all my documents, photos and other data always fresh between all devices. Just make sure to encrypt the data at rest when using it, you don't want to sync to a device which someone else can take from you and read all the data off of.
|
||||
Sync is also not a replacement for backup, as file deletions and corruption can spread easily across your fleet.
|
||||
|
||||
## Backups
|
||||
|
||||
- [restic](https://restic.net/)
|
||||
|
||||
Here is where I am not that happy with the overall setup, and not that much has changed from 2019.
|
||||
Currently I use `restic` to package and encrypt the backup and then ship it off of individual machines to my central NAS storage. Then from there it is being copied to Backblaze's [b2](https://www.backblaze.com/b2/cloud-storage.html) for off-site storage.
|
||||
|
||||
I made some progress on [bakare](https://github.com/cyplo/bakare), a small backup engine in Rust, but it's not ready for production use yet. [Let me know](mailto:bakare@cyplo.net) if you would be interested in collaborating with me on it.
|
||||
|
||||
### TODOs for 2021:
|
||||
|
||||
- finish bakare ?
|
||||
|
||||
## Editors
|
||||
|
||||
- vim [configured via nix](https://git.sr.ht/~cyplo/dotfiles/tree/83ddcc09dc68389b129d598722eca9e90a6dff33/item/nixos/home-manager/programs/vim.nix)
|
||||
- VSCode [also configured via nix](https://git.sr.ht/~cyplo/dotfiles/tree/83ddcc09dc68389b129d598722eca9e90a6dff33/item/nixos/gui/vscode.nix)
|
||||
|
||||
Not much of a change here.
|
||||
|
||||
## Fonts
|
||||
|
||||
I settled on [Fira Code Retina](https://github.com/tonsky/FiraCode) for most of my programming and terminal needs.
|
||||
|
||||
## Terminal
|
||||
|
||||
- [kitty](https://sw.kovidgoyal.net/kitty/) and [my config](https://git.sr.ht/~cyplo/dotfiles/tree/83ddcc09dc68389b129d598722eca9e90a6dff33/item/nixos/home-manager/programs/kitty.nix) for it
|
||||
- [zsh](https://www.zsh.org/) + [config](https://git.sr.ht/~cyplo/dotfiles/tree/83ddcc09dc68389b129d598722eca9e90a6dff33/item/nixos/home-manager/programs/zsh.nix)
|
||||
- [tmux](https://github.com/tmux/tmux/wiki) + [config](https://git.sr.ht/~cyplo/dotfiles/tree/83ddcc09dc68389b129d598722eca9e90a6dff33/item/nixos/home-manager/programs/tmux.nix)
|
||||
|
||||
While I still like `termite` and `alacritty`, I have switched to `kitty` lately as it is still quite fast while providing for some fancy shenanigans like graphics in the terminal. I'm not fully happy with my setup yet, as, for example, kitty sometimes requires restart for the graphics feature to work.
|
||||
|
||||
Here's a small collection of other tools I found help a lot when on the terminal:
|
||||
|
||||
- [newsboat](https://newsboat.org/) - a new one on the list, I find it providing a cool and relaxing way of reading RSS in the terminal, see [here](https://git.sr.ht/~cyplo/dotfiles/tree/83ddcc09dc68389b129d598722eca9e90a6dff33/item/nixos/home-manager/programs/newsboat.nix) for my config, including my subscriptions list
|
||||
- [ripgrep](https://github.com/BurntSushi/ripgrep) - it is just so much faster than grep
|
||||
- [fd](https://github.com/sharkdp/fd) - same but for `find`
|
||||
- [bat](https://github.com/sharkdp/bat) - a cooler `cat`
|
||||
- [genpass](https://crates.io/crates/genpass) for generating passwords
|
||||
- [z.lua](https://github.com/skywind3000/z.lua) for faster navigation
|
||||
|
||||
### TODOs for 2021:
|
||||
|
||||
- make `kitty`'s image mode always work out of the box
|
||||
|
||||
## Code hosting
|
||||
|
||||
I'm trying to migrate off of GitHub, I'm trying out [sr.ht](https://sr.ht/) now. I like its simplicity and ease of setup, especially when it comes to the built-in CI.
|
||||
|
||||
## The end
|
||||
|
||||
And that's it !
|
||||
|
||||
I hope you'll find this list useful and do not hesitate to [contact me](mailto:blog@cyplo.net) on `blog@cyplo.net` if you would have any questions or comments. Happy hacking !
|
77
content/posts/2021/11/own-router-with-cityfibre.md
Normal file
77
content/posts/2021/11/own-router-with-cityfibre.md
Normal file
|
@ -0,0 +1,77 @@
|
|||
---
|
||||
title: Using own OpenWRT router with Vodafone/Cityfibre
|
||||
date: 2021-11-04
|
||||
tags: [hardware, freedom]
|
||||
---
|
||||
|
||||
For something very different this time, a quick recipe for a very specific situation.
|
||||
|
||||
One of the very few fiber-to-the-home solutions in the UK is through Cityfibre, sold as Vodafone "Gigafast" packages where I live. As with other ISPs they give you their own internet router. If you would like to use your own, here's how.
|
||||
|
||||
`TLDR; Obtain PPPoE credentials specific to your account from Vodafone, then use them to configure your router, you need to tag all your packets with VLAN 911.`
|
||||
|
||||
|
||||
1. Obtain PPPoE credentials from Vodafone. You can do so by using the chat feature on their website. Here's an example chat transcript pasted here for your enjoyment and pleasure
|
||||
|
||||
```
|
||||
Tobi : I’m TOBi - Vodafone’s chatbot Ask me anything, I’m here to help.
|
||||
You : hi, I would like to swap the provider router for the own router, could you share the PPPoE credentials I would need to use ? thank you
|
||||
Tobi : Please try asking your question again using fewer words, making sure you only ask one question at a time. You’ll be able to ask other questions later if you need to.
|
||||
You : ppoe credentials
|
||||
Tobi : TOBi is thinking...
|
||||
TOBi : Sorry, I didn't understand the question. Can you please try rephrasing?
|
||||
You : own router ppoe credentials
|
||||
TOBi : Sorry, I didn't understand the question. Can you please try rephrasing?
|
||||
You : can I speak to a human please ?
|
||||
TOBi : Could you tell me your full name please?
|
||||
You : xxxxxxxxxxxxxxx
|
||||
TOBi : Could you please tell me your phone number?
|
||||
You : xxxxxxxxxxx
|
||||
TOBi : Please tell me what type of account you have with us:
|
||||
TOBi :
|
||||
Pay Monthly
|
||||
Pay As You Go
|
||||
Small Business
|
||||
Broadband
|
||||
You : Broadband
|
||||
Pragya : Hi , you're now connected to Broadband chat support. Please give me 1-2 minutes as I quickly go through your conversation so that you don't have to repeat yourself.
|
||||
You : Hi, perfect, thank you :)
|
||||
Pragya : Cyryl , Thank you for waiting
|
||||
Pragya : As per the pre chat , I understand that you wish to have PPOE details , right , Cyryl ?
|
||||
You : that's correct, I'm trying to establish connection using own hardware
|
||||
Pragya : Cyryl , Thank you lets do a quick security check ,
|
||||
Please share your broadband account number or home phone number once so I can locate your account and proceed further.
|
||||
You : account number xxxxxxxxxx
|
||||
Pragya : Thank you very much
|
||||
Pragya : I have your account ready. Let's complete a quick security check so that I can try to resolve this for you.
|
||||
Pragya : Confirm the 2nd and 3rd digit of the security PIn ?
|
||||
You : xxxxxxx
|
||||
Pragya : Thank you let me verify it
|
||||
Pragya : Brilliant that matches the record
|
||||
Pragya : Would you mind being online for few minutes, while I am checking the details ?
|
||||
You : no problem, thank you
|
||||
Pragya : Thank you , Moving away from the chat window or not responding for 8 mins may result in losing the chat. If it does, here's a link to get back to us faster than usual: https://www.vodafone.co.uk/bbservcd
|
||||
Pragya : Thank you for waiting
|
||||
Pragya : Here is the username - dsl123456789@broadband.vodafone.co.uk
|
||||
Pragya : Password is - XXXXXXXX
|
||||
|
||||
```
|
||||
|
||||
2. armed with that knowledge you can configure your router, I'm gonna give an example of configuring an OpenWRT router via their GUI interface LuCI
|
||||
* backup your settings
|
||||
* -> Network->Interfaces
|
||||
* note down the physical interface of current WAN interface - (`WAN`->Edit->Physical Settings), e.g. `eth2`
|
||||
* remove existing `WAN` interface, press `save and apply`
|
||||
* add a new PPPoE interface:
|
||||
* Name: `WAN`
|
||||
* Protocol: `PPPoE`
|
||||
* interface - type in the `custom` field - name of your physical interface followed by a dot and `911` indicating the VLAN number to tag packets with - e.g. `eth2.911`
|
||||
* -> create interface
|
||||
* PAP/CHAP username: [username from Vodafone]
|
||||
* PAP/CHAP password: [password form Vodafone]
|
||||
* -> Firewall settings
|
||||
* Create / Assign firewall-zone: `WAN`
|
||||
* -> save
|
||||
* -> save and apply
|
||||
* wait around a minute for the router to connect
|
||||
|
73
content/posts/2022/01/zig-direnv.md
Normal file
73
content/posts/2022/01/zig-direnv.md
Normal file
|
@ -0,0 +1,73 @@
|
|||
---
|
||||
title: Quick reproducible zig dev env using nix flakes
|
||||
date: 2022-01-01
|
||||
tags: [zig, nix]
|
||||
---
|
||||
|
||||
Want this great feeling of entering a directory and having all your dev setup done but can never remember how to set up nix flakes ?
|
||||
|
||||
What you'll need is, in addition to a working [direnv](https://direnv.net/) with `nix` and `nix flake` enabled, is:
|
||||
|
||||
`.envrc`:
|
||||
```text
|
||||
use flake
|
||||
```
|
||||
|
||||
`.gitignore`:
|
||||
```text
|
||||
.direnv/
|
||||
```
|
||||
|
||||
`flake.nix` (this `nixpkgs` hash points to the first revision with zig 0.9 present):
|
||||
```nix
|
||||
{
|
||||
inputs = {
|
||||
nixpkgs = {
|
||||
type = "github";
|
||||
owner = "nixos";
|
||||
repo = "nixpkgs";
|
||||
ref = "e1eeb53e64159fbb2610ba7810ed511e4d5c10ca";
|
||||
};
|
||||
flake-compat = {
|
||||
url = "github:edolstra/flake-compat";
|
||||
flake = false;
|
||||
};
|
||||
};
|
||||
|
||||
outputs = { self, nixpkgs, flake-compat }:
|
||||
let pkgs = nixpkgs.legacyPackages.x86_64-linux;
|
||||
in
|
||||
{
|
||||
devShell.x86_64-linux =
|
||||
pkgs.mkShell {
|
||||
buildInputs = with pkgs;[
|
||||
nixpkgs-fmt
|
||||
zig
|
||||
zls
|
||||
];
|
||||
};
|
||||
};
|
||||
}
|
||||
```
|
||||
|
||||
and some `shell.nix` for this extra bit of `nix-shell` compatibility, if you'd want it:
|
||||
```nix
|
||||
(import
|
||||
(
|
||||
let
|
||||
lock = builtins.fromJSON (builtins.readFile ./flake.lock);
|
||||
in
|
||||
fetchTarball {
|
||||
url = "https://github.com/edolstra/flake-compat/archive/${lock.nodes.flake-compat.locked.rev}.tar.gz";
|
||||
sha256 = lock.nodes.flake-compat.locked.narHash;
|
||||
}
|
||||
)
|
||||
{
|
||||
src = ./.;
|
||||
}).shellNix
|
||||
```
|
||||
|
||||
Don't forget to:
|
||||
* `git add` all of the above, otherwise nix flake operations might not work
|
||||
* `direnv allow` this directory
|
||||
* have fun !
|
Some files were not shown because too many files have changed in this diff Show more
Loading…
Reference in a new issue