**** BEGIN LOGGING AT Wed Jan 28 02:59:59 2015 Jan 28 10:40:19 hi guys Jan 28 13:22:12 bencoh: sxiv may be slower, I dunno; feh seems better as it can open images directly via http and this is what I need Jan 28 14:45:50 Anyone know if ghost affects maemo? Jan 28 14:48:51 fricking wonderful Jan 28 14:48:53 vulnerable Jan 28 14:51:01 virtually everything released between 2000 and 2013 is vuln Jan 28 14:51:49 (at least its glibc is, the fact that it can be effectively exploited is out of scope) Jan 28 14:52:28 yep Jan 28 14:52:37 i ran code to verify we are vuln =/ Jan 28 14:52:53 So... If i compile the newest glibc w/patch, will that break stuff bencoh ? Jan 28 14:53:27 the newest glibc ? ABI breaks :) Jan 28 14:53:38 well, it *might* break Jan 28 14:53:49 Ok, so what do we do? Jan 28 14:53:59 try and port the patch to our glibc Jan 28 14:54:09 I patched bash with no major issues, but bash isn't as underlying as a c library to maemo Jan 28 14:54:30 bash isnt used anywhere Jan 28 14:54:32 Whats ABI bencoh ? Jan 28 14:54:39 I used it bencoh =) Hence my need to patch Jan 28 14:54:42 use rather Jan 28 14:54:54 http://en.wikipedia.org/wiki/Application_binary_interface Jan 28 14:55:16 * stryngs goes 'ah' Jan 28 14:56:25 How do you know it breaks the abi? Jan 28 14:56:33 Just trying to figure out hwere to start from.. Jan 28 14:56:39 I definately want to patch this Jan 28 14:56:41 15:53 < bencoh> well, it *might* break Jan 28 14:57:22 I dunno where we stand for regarding glibc upgrade, but some people had a look at it iirc Jan 28 14:57:30 ok Jan 28 14:57:40 Well I'm going to go with lowest version of glibc as possible Jan 28 14:57:40 s/for// Jan 28 14:57:41 bencoh meant: I dunno where we stand regarding glibc upgrade, but some people had a look at it iirc Jan 28 14:57:54 I'll compile and see what happens, if good I'll port it i guess Jan 28 14:58:00 It's just i don't build in sb Jan 28 14:58:09 I build natively so my debs aren't normal Jan 28 14:58:19 not sure if the community is rdy for that =/ Jan 28 15:06:09 glibc can be (and is) upgraded via CSSU Jan 28 15:07:12 * stryngs doesn't use CSSU Jan 28 15:07:35 =) Jan 28 15:12:31 freemangordon: freely ? Jan 28 16:02:57 bencoh: hmm? Jan 28 16:03:05 can't parse your question Jan 28 16:04:06 does everything work with the latest glibc ? Jan 28 16:04:28 (cssu-s still has 2.5.3 btw) Jan 28 16:04:50 (err 2.5.1) Jan 28 16:05:11 yes, it is 2.5.1, but fit patches on top of the stock Jan 28 16:05:17 *with Jan 28 16:05:41 2.18 is compiling...... Jan 28 16:05:47 BTW the problem with upgrading glibc seems to be qith gcc, not glibc itself Jan 28 16:05:52 *with Jan 28 16:05:56 yep... need 4.6 Jan 28 16:05:58 =) Jan 28 16:06:07 ...and it miscompiles it Jan 28 16:06:09 ill upload my deb if yall want Jan 28 16:06:18 no issues here Jan 28 16:06:21 currently in the make stage Jan 28 16:06:36 stryngs: yes, you'll have, with locales ;) Jan 28 16:06:40 freemangordon: yeah, which means upgrading libgcc too ... Jan 28 16:07:38 bencoh: no, the problem is that gcc, at least 4.6 and 4.7.2 are miscompiling glibc, leading to broken locales on the device Jan 28 16:07:48 oh Jan 28 16:07:50 i see Jan 28 16:08:00 but we all speak english =) Jan 28 16:08:43 freemangordon: how do the others do ? Jan 28 16:08:52 the other distribs for instance Jan 28 16:09:03 includeing those, you end up with _fi_whatever_the_nokia_dev_madeup_ instead of the real text Jan 28 16:09:17 bencoh: no idea Jan 28 16:09:31 freemangordon: How do you know the locales are broken? Jan 28 16:10:51 OE builds with gcc4.8.2 for instance Jan 28 16:11:01 but they build eglibc Jan 28 16:11:43 stryngs: there is a thread on TMO about upgrading libc Jan 28 16:13:16 it is eglibc what we have here afaik Jan 28 16:15:58 then it should build with gcc4.8 :) Jan 28 16:23:59 we don't have gcc4.8 though Jan 28 16:24:02 do we? Jan 28 16:29:39 ве дон;т Jan 28 16:29:42 sorry Jan 28 16:29:45 we don't Jan 28 16:30:05 Pali: any idea what is 2nd.bin? Jan 28 16:30:18 used for coldflashing Jan 28 16:30:37 2nd.bin + secondary.bin is send via usb and 2nd.bin is booted by omap bootrom Jan 28 16:30:50 no idea what is difference between 2nd.bin and xloader.bin... Jan 28 16:31:17 Pali: thanks Jan 28 16:31:50 maybe 2nd.bin enable something which is disabled by xloader? Jan 28 16:31:57 yeah, maybe Jan 28 16:32:13 do we have any clue what is signed, hashed, etc. and how? Jan 28 16:34:08 Pali: I guess there is one signature of the public key, with TI private, and one signature of the binary, with Nokia private, correct< Jan 28 16:34:58 no idea Jan 28 16:35:05 try to ask jacekowski Jan 28 16:35:13 hehe :D Jan 28 16:35:15 he had tool for signing x-loader images... Jan 28 16:35:25 ~seen jacekowski Jan 28 16:35:28 jacekowski was last seen on IRC in channel #debian, 360d 16h 30m 11s ago, saying: 'i couldn't resist'. Jan 28 16:35:45 he did a rage-quit iirc Jan 28 16:40:24 :/ Jan 28 16:41:19 https://github.com/milaq/android_device_lge_p940/blob/cm-10.2/releasetools/ifttool/signimg.sh Jan 28 16:41:28 looks like signing tool is called ift Jan 28 16:41:43 (referenced from https://github.com/swetland/omap4boot/issues/8) Jan 28 16:42:57 !tmo Jan 28 16:43:02 !info tmo Jan 28 16:43:04 hmm Jan 28 16:43:06 ~tmo Jan 28 16:43:07 it has been said that tmo is http://en.wikipedia.org/wiki/TMO, or http://talk.maemo.org, or http://de.wikipedia.org/wiki/Terrestrial_Trunked_Radio#TMO. It's *not* T-MO (see ~T-MO) or trolls, morons, oxen. Jan 28 16:44:44 Pali: yeah, and I couldn;t find it Jan 28 16:45:22 though I just downloaded the signing tool mentioned here http://wiki.maemo.org/Firmware_hacking#X-Loader_Hacking Jan 28 16:47:04 hmm, there are some keys with it Jan 28 16:47:10 actually LOTS OF keys Jan 28 16:47:25 and there is configuration for HS/EMU devices Jan 28 16:48:09 it is in folder Security/IFT Jan 28 17:00:28 Pali: it seems that SW can sign xloaders for HS devices Jan 28 17:01:13 yes "OMAP3430 CSST Binary Release" is that tool found by jacekowski Jan 28 17:02:00 and he told that tool is for signing xloader (if you have private key) Jan 28 17:02:18 Firmware_hacking wiki page? Jan 28 17:02:28 I did not know about it Jan 28 17:04:45 http://wiki.maemo.org/Firmware_hacking#X-Loader_Hacking <--- 2nd.bin is signed; secondary.bin is not Jan 28 17:05:05 #needsediting ;D Jan 28 17:06:04 well, that's correct, secondary is NOLO Jan 28 17:06:54 Pali: *which* private key? TI? Jan 28 17:07:20 I think we do not know if key is owned by TI or Nokia... Jan 28 17:07:36 for sure there is at least on key owned by TI Jan 28 17:07:55 *BUT* we can ask TI to sign a certificate for us Jan 28 17:08:09 and that would becoe a valid signing certificate :) Jan 28 17:08:16 *become Jan 28 17:09:24 hmm, actually Neo900 would need on Jan 28 17:09:26 *one Jan 28 17:13:18 zomg... Jan 28 17:13:20 still building Jan 28 17:13:45 gezuz Jan 28 17:13:48 +1 hr to build Jan 28 17:32:59 I post this link also here: http://forum.gsmhosting.com/vbb/f83/nokia-rsa-private-key-195f111a9543a8644e77e1677296ab23-free-1490743/ Jan 28 17:34:14 freemangordon: by chance, can you extract keys/certificates from xloader and check if above one is not valid? :D Jan 28 20:33:41 wtf... 2 files in /var/log? Jan 28 20:33:46 is this normal? Jan 28 20:35:59 Anybody know if it is possible to set WLAN priorities on N900? Jan 28 20:50:14 Should /var/log have files?!? Jan 28 21:05:25 why not? Jan 28 21:27:21 Pali: heh. my /var/log has two files...wtf Jan 28 21:27:38 syslog? fsck log? Jan 28 21:27:59 Nokia-N900:/var/log# ls Jan 28 21:28:00 maemo-optify-boottime.log pycentral.log Jan 28 21:28:03 thats it Jan 28 21:28:07 strange, eh? Jan 28 21:29:03 not strange at all. i've got more :D Jan 28 21:29:19 yeah, but i should have more than 2 files Jan 28 21:29:20 wtf? Jan 28 21:30:01 like? Jan 28 21:30:10 heck i dunno Jan 28 21:30:18 i just figured it should have more than that =) Jan 28 21:30:36 no Jan 28 21:30:38 heh Jan 28 21:31:29 i have more because i installed packages which create logs there .. but those two you have are the 'standard' ones on maemo, as Pali indicated already Jan 28 21:32:00 16:27 < Pali> syslog? fsck log? Jan 28 21:32:18 I have maemo-optify-boottime.log and pycentral.log Jan 28 21:33:00 21:05 < Pali> why not? Jan 28 21:33:29 anyway, g'nite Jan 28 22:26:43 stryngs: I can confirm I have the same two files BTW. Jan 28 22:28:06 ok Jan 28 22:28:11 no worries. thank u though sixwheeledbeast Jan 28 22:28:18 just thought it kind of odd at the time =) Jan 28 22:28:47 np Jan 28 22:34:22 Pali: yeah, I can try Jan 28 22:34:45 ok **** ENDING LOGGING AT Thu Jan 29 02:59:59 2015