If you've set 'LLVM_TARGETS=' remove it and rebuild llvm + clang (in order). I couldn't reproduce the bug however. If you face it, ensure to file a bug citing this blog or post because now there are multiple users facing it.
Linux tricks, tutorials, hardware, politics and philosophy
My blog will mostly talk about Desktop Linux & it's administration, general philosophy and software politics.
Sunday, September 22, 2024
Clang "error: unknown target triple 'unknown'" on Gentoo.
Friday, August 23, 2024
agetty autologin prompting for password
You've added --autologin to agetty in whatever ways (like modifying or creating a new systemd unit). In that vtty, the user DOES login but not without a password prompt.
Check for --login-options/-o and try removing it. It interferes with -a, --autologin
Monday, April 1, 2024
Prevent systemd from killing a child (sub-process) process on a service stop.
Because of cgroups, systemd knows which process belongs to which systemd unit even if it daemonizes (even to systemd/init). Therefore if you stop a systemd service unit (like a display manager), it’ll kill all processes which was spawned directly or indirectly by the display manager. To prevent this from happening, you need to play around with cgroup.
Find the target PID which you want to avoid being
killed. Then move it to another cgroup which systemd did not make
(this is all about echoing it’s Pid to the new cgroup) --
echo <pid> >> /sys/fs/cgroup/cgroup.procs
Now systemd has lost track of this process and you can stop the systemd service unit without systemd killing the process.
Monday, March 4, 2024
Washermod vs contact frame.
I recently got a contact frame and replaced it with washermod -- benchmarked it and found no difference.
Monday, December 25, 2023
Secure openwrt WOL with no open ports (firewall/nat etc...)
The objective of this article is to achieve WOL in a setup where Internet access is behind a NAT or has a firewall which allows no open connections. We'll also cover the security aspect using purely iptables (instead of openwrt's built in firewall) -- this's particularly important since the openwrt installed on the router is outdated and it's discontinued (so it won't receive any security updates).
To achieve WOL, we'll be using a simple shell script which will periodically download a text file and check it's contents; for a certain value within the text file, it'll trigger a WOL for a certain hardware address. Here is the script --
#! /bin/ash
while [[ j != k ]]
do
if test '<wol string>' = "$(wget -q -O - -U 'Mozilla/5.0 (Windows NT 10.0; Win64; x64) Edg/91.0.864.37' --no-check-certificate '<URL of text file>')"
then
/usr/bin/etherwake -D -i '<interface>' <hardware address of your system>
sleep 30
fi
done
For this you need to install the etherwake package.
<wol string> is the string written in the text file. For this string the WOL signal will be emitted. Therefore to disable WOL, you need to modify the text file to anything else other than this string.
<URL of text file> is a HTTP link. This may point to an s3 object which is a good candidate or any online office document (something hosted by google drive). Regardless, you must be directly able to download a text file using the link using wget.
<interface> is the interface via which your to-be-wol system is accessible.
Make a file /usr/bin/wol.sh, write the script there and --
chmod 755 /usr/bin/wol.sh
Add /usr/bin/wol.sh to the local startup script (found in luci in the startup page) as --
/usr/bin/wol.sh &
And you're done!
Now for the firewall part. I've disabled the buitin firewall of openwrt because it was not working as expected --
service firewall disable
Reboot router.
Add the firewall rules --
iptables -A INPUT -i lo -j ACCEPT
iptables -A OUTPUT -o lo -j ACCEPT
iptables -A OUTPUT -o <router interface> -p icmp -s <router IP> -d <your system IP>,<default gateway IP>,255.255.255.255,<broadcast IP of your subnet> -j ACCEPT
iptables -A INPUT -i <router interface> -p icmp -s <your system IP>,<default gateway IP> -d <router IP>,255.255.255.255,<broadcast IP of your subnet> -j ACCEPT
iptables -A INPUT -i <router interface> -p tcp -m conntrack --ctstate NEW,RELATED,ESTABLISHED --dport <ssh port of your router> -s <your system IP> -d <router IP> -j ACCEPT
iptables -A OUTPUT -o <router interface> -p tcp -m conntrack --ctstate RELATED,ESTABLISHED -d <your system IP> -s <router IP> --sport <ssh port of your router> -j ACCEPT
iptables -A OUTPUT -o <router interface> -p udp -m conntrack --ctstate NEW,RELATED,ESTABLISHED --dport 53 -d <DNs server IP> -j ACCEPT
iptables -A INPUT -i <router interface> -p udp -m conntrack --ctstate RELATED,ESTABLISHED --sport 53 -s <DNs server IP> -j ACCEPT
iptables -A OUTPUT -o <router interface> -p udp -m conntrack --ctstate NEW,RELATED,ESTABLISHED --dport 123 -d <NTP server IP> -j ACCEPT
iptables -A INPUT -i <router interface> -p udp -m conntrack --ctstate RELATED,ESTABLISHED --sport 123 -s <NTP server IP> -j ACCEPT
iptables -A OUTPUT -o <router interface> -p tcp -m conntrack --ctstate NEW,RELATED,ESTABLISHED -d <list of public IPs> -s <router IP> -m multiport --dports 80,443 -j ACCEPT
iptables -A INPUT -i <router interface> -p tcp -m conntrack --ctstate RELATED,ESTABLISHED -m multiport --sports 80,443 -s <list of public IPs> -d <router IP> -j ACCEPT
iptables -P INPUT DROP
iptables -P OUTPUT DROP
iptables -P FORWARD DROP
<your system IP> is the system using which you're accessing the router over SSH.
This system of rules assume you access the luci GUI over ssh tunneling which is recommended.
You need to change your ntp servers to something fixed -- otherwise most NTP server DNS has so many IPs behind it... Good luck finding such a service.
<list of public IPs> is the list of public IPs of the service provider hosting your text file which the WOL script will monitor. Best of luck finding that.
After ensuring you're not cut off ssh access (otherwise reboot and then reattempt to fix the firewall rules) --
iptables-save > /etc/custom-iptables
Then add to the local startup stript (via luci GUI) --
iptables-restore < /etc/custom-iptables
Test all desired functionality.
Tuesday, November 7, 2023
Washer mod results on an i3.
I noticed that the temps on my i3 (Alder lake) was pretty high for an i3. So I did a washer mod and calculated an approx 12 degree drop in temps. FYI.
Wednesday, July 19, 2023
Using the script command to record all your shell output and commands transparently.
In your bashrc file (either /etc/bash.bashrc, or /etc/bashrc or /etc/bash/bashrc etc...) add the following lines by the very end --
if test -z "$script_running"; then export script_running=1; script -a <destination directory>`date +%s`.txt; exit; fi
AFTER creating <destination directory> -- this is the place where all your recordings will be placed.
Monday, June 19, 2023
Improving cooling of laminar cooler (on steroids, faster fans, mod/hack) by replacing it's stock fan.
The great thing about Intel's laminar coolers is that you can take the fan off by removing 4 screws --
Here I have it attached on the motherboard after removing the fan.
Now you can attach a much more powerful fan on it by using hot glue on the plastic clips (4 in no.; the thing that fixes the heat sink to the motherboard). If you wish to attach a smaller fan, you can stick it directly to the copper heat sink.
Hot glue sticks are good enough for the purpose and is easy to take off when the need arises. Here is the result --
Here I have a 92mm PWM server fan attached on the heat sink.
This resulted in 5 degree lower temps.
Wednesday, September 21, 2022
Promql query to get the average/max/min CPU utlization, network rate and memory
CPU utilization in the last 24 hours --
highest –
100 - min_over_time((avg without(cpu)(((node_cpu_seconds_total{mode=`idle`} - (node_cpu_seconds_total{mode=`idle`} offset 1m))/60*100)))[24h:1m])
lowest --
100 - max_over_time((avg without(cpu)(((node_cpu_seconds_total{mode=`idle`} - (node_cpu_seconds_total{mode=`idle`} offset 1m))/60*100)))[24h:1m])
Average --
100 - ((avg without(cpu) (max_over_time(node_cpu_seconds_total{mode="idle"}[24h])) - avg without(cpu) (min_over_time(node_cpu_seconds_total{mode="idle"}[24h])))/86400*100)
Network upload/download rate (MBPS) for an interface in the last 24 hours --
Average --
((max_over_time(node_network_receive_bytes_total{device="team0"}[24h]) – min_over_time(node_network_receive_bytes_total{device="team0"}[24h]))/86400)/1024/1024
((max_over_time(node_network_transmit_bytes_total{device="team0"}[24h]) – min_over_time(node_network_transmit_bytes_total{device="team0"}[24h]))/86400)/1024/1024
Lowest --
min_over_time(((delta(node_network_receive_bytes_total{device="team0"}[1m])/60))[24h:1m])/1024/1024
min_over_time(((delta(node_network_transmit_bytes_total{device="team0"}[1m])/60))[24h:1m])/1024/1024
Highest --
max_over_time(((delta(node_network_receive_bytes_total{device="team0"}[1m])/60))[24h:1m])/1024/1024
max_over_time(((delta(node_network_transmit_bytes_total{device="team0"}[1m])/60))[24h:1m])/1024/1024
Memory utilization (in %) in the last 24 hours --
Average --
avg_over_time((((node_memory_MemTotal_bytes)-(node_memory_MemAvailable_bytes))/node_memory_MemTotal_bytes*100)[24h:1m])
minimum --
min_over_time((((node_memory_MemTotal_bytes)-(node_memory_MemAvailable_bytes))/node_memory_MemTotal_bytes*100)[24h:1m])
maximum --
max_over_time((((node_memory_MemTotal_bytes)-(node_memory_MemAvailable_bytes))/node_memory_MemTotal_bytes*100)[24h:1m])
Memory utilization (in GB) in the last 24 hours --
Average --
avg_over_time(((node_memory_MemTotal_bytes/1024/1024/1024)-(node_memory_MemAvailable_bytes/1024/1024/1024))[24h:1m])
Minimum --
min_over_time(((node_memory_MemTotal_bytes/1024/1024/1024)-(node_memory_MemAvailable_bytes/1024/1024/1024))[24h:1m])
Maximum --
max_over_time(((node_memory_MemTotal_bytes/1024/1024/1024)-(node_memory_MemAvailable_bytes/1024/1024/1024))[24h:1m])
Monday, October 4, 2021
Ignoring XXX because its extensions are not built. Try: gem pristine…
After trying out whatever tips and tricks that others have suggested, and this issue still doesn't resolve, this maybe a permission issue; that's why things might running as root.
And no -- it's not less permissions, it maybe related to MORE permissions -- for certain files, the group or others executable permission bits might have been set. To fix this --
find <gem paths> -type f -perm -u=x -exec chmod g+x,o+x {} +
find <gem paths> -type f -perm -u=rx -exec chmod g+rx,o+rx {} +
Of course if you're planning to use the gems system wide, all files and directories must be readable --
find <gem path> -type f -exec chmod o+r,g+r {} +; find <gem path> -type d -exec chmod o+rx,g+rx {} +
Sunday, June 6, 2021
Backporting gtk-gnutella on Debian buster.
It seems Debian 10 does not have this package in the repository, but Debian unstable has. So we'll try building a deb for Debian buster --
aptitude install libdbus-1-dev libglib2.0-dev libgnutls28-dev=3.6.7-4+deb10u6 libgtk2.0-dev libxml2-dev zlib1g-dev fakeroot
apt-get source --compile gtk-gnutella
This'll result in the deb being generated. Install it --
dpkg -i gtk-gnutella_1.1.15-1_amd64.deb
Alternatively, you may download the deb directly --
https://drive.google.com/file/d/1YAMfQpgwWGWotwG7NZtRO-WNZMBHobCF/view?usp=sharing
Cleanup --
aptitude markauto libdbus-1-dev libglib2.0-dev libgnutls28-dev libgtk2.0-dev libxml2-dev zlib1g-dev fakeroot
apt-get autoremove
Debian buster -- Working VAAPI (hardware video decoding) for newer intel hardware (like ice lake/gen 11 intel GPU (UHD)).
In case you cannot get hardware video acceleration to work on your new Intel processor, apart from trying to install the backported kernel, you may also need a newer intel-media-va-driver (as of the current time 21.1.1 is the latest from testing).
In this article, it'll be shown how to backport these yourself (since no backports are available) from testing. Alternatively, you can find prebuild backports from here --
https://drive.google.com/file/d/10rcxvetlJbe4wMUijficd-263S_QYhIj/view?usp=sharing
Extract and install all the debs (dpkg -i *.deb)
To test --
LIBVA_DRIVER_PATHS=/usr/lib/x86_64-linux-gnu/dri/ LIBVA_DRIVER_NAME=iHD vainfo
In case you want to build this yourself, take the following instructions --
Add the following to /etc/apt/sources.list --
deb http://mirror.csclub.uwaterloo.ca/debian-multimedia/ stable main
deb-src http://mirror.csclub.uwaterloo.ca/debian-multimedia/ stable main
#bullseye
deb http://mirror.csclub.uwaterloo.ca/debian/ bullseye main contrib non-free
deb-src http://mirror.csclub.uwaterloo.ca/debian/ bullseye main contrib non-free
deb http://security.debian.org/debian-security bullseye/updates main contrib non-free
deb-src http://security.debian.org/debian-security bullseye/updates main contrib non-free
deb http://mirror.csclub.uwaterloo.ca/debian/ bullseye-updates main contrib non-free
deb-src http://mirror.csclub.uwaterloo.ca/debian/ bullseye-updates main contrib non-free
#sid
deb http://mirror.csclub.uwaterloo.ca/debian/ sid main contrib non-free
deb-src http://mirror.csclub.uwaterloo.ca/debian/ sid main contrib non-free
Next install packages --
aptitude install debhelper=13.3.3~bpo10+1 dwz=0.13-5~bpo10+1 libdrm-dev libgl1-mesa-dev libwayland-dev libx11-dev libxext-dev libxfixes-dev pkg-config build-essential libset-scalar-perl
Generate debs to be installed --
apt-get source --compile libva=2.10.0-1
Install all the resulting debs --
dpkg -i libva-dev_2.10.0-1_amd64.deb libva-drm2_2.10.0-1_amd64.deb libva-glx2_2.10.0-1_amd64.deb libva-wayland2_2.10.0-1_amd64.deb libva-x11-2_2.10.0-1_amd64.deb libva2_2.10.0-1_amd64.deb
Install build-depends of intel-media-driver --
aptitude install debhelper=13.3.3~bpo10+1 dh-sequence-libva cmake libigdgmm-dev=20.4.1+ds1-1 libx11-dev pkg-config
Generate the debs --
apt-get source --compile intel-media-driver=21.1.1+dfsg1-1
And install the generated debs.
Cleanup --
aptitude markauto debhelper dwz libdrm-dev libgl1-mesa-dev libwayland-dev libx11-dev libxext-dev libxfixes-dev pkg-config build-essential libset-scalar-perl libva-dev libva-drm2 libva-glx2 libva-wayland2 libva-x11-2 libva2 dh-sequence-libva cmake libigdgmm-dev libx11-dev pkg-config
apt-get autoremove
Tuesday, May 25, 2021
Error: Server asked us to run CSD hostscan.
Anyconnect has provisions of a ‘CSD script’… via which basically a remote program which’ll be downloaded from the VPN server and will be executed on the host machine to gather information about it and to be sent to the server.
If a VPN server mandates running such a scan the following errors will come up –
"Error: Server asked us to run CSD hostscan."
For openconnect, you’ve to download external CSD scripts. There are 2 CSD scripts – which communicate to the VPN server either via post or by some other means.
The above is a script sends the collected info via non-POST means. Another official, openconnect CSD script sends it via POST. It’s called csd-post.sh. If you’ve used the wrong script, the following errors will occur –
"Refreshing +CSCOE+/sdesktop/wait.html after 1 second"
Repetitively.
In the above csd-wrapper.sh script, you’ve edit it and fill in your VPN host’s DNS name in an environment variable.
Switches to openconnect –
--csd-wrapper <path to CSD wrapper script>
--csd-user <user name> – Run the CSD script as this user.
Wednesday, March 17, 2021
Restricting access based on IP on NFS v4 with fsid=0
There’s a scenario when you want to restrict people from mounting things under a directory, for e.g. /home/test/ based on their IP address; but as you know the /etc/exports entry for /home/test/ which has fsid=0 must allow for Ips which is a superset of all other host entries in /etc/exports (and under /home/test); otherwise access will be denied for the other entries. Here you can use nocrossmnt. With nocrossmnt for the /etc/exports entry if you’ve mount –bind inside a directory X inside /home/test, the NFS server will not allow the client to descent into X unless you’ve another entry for X in /etc/exports and if it explicitly allows the client’s IP to mount it.
Thursday, February 4, 2021
Running older systems (which need cgroupv1) on systems running over cgroupv2 (systemd.unified_cgroup_hierarchy)
Run the command -- mount | grep cgroup on your host system, and if you see the all the mount entries as cgroup2 fs (instead of cgroup), then you wont be able to run run older OSs as containers on this host. If you try to force cgroup2 over cgroupv1, the following errors will occur --
Cannot determine cgroup we are running in: No such file or directory
Failed to allocate manager object: No such file or director
An e.g. of what happens in centos 7 on lxc.
For older systems which don't support cgroupv2, you’ll need cgroupv1 mounted in /sys/fs/cgroup/systemd on the host. There doesn't seems to be way to do this using lxc.mount.auto = ; so you’ve to use scripts (lxc.hook.mount). For this script to mount a cgroup (named X) in the guest, a cgroup named X must also be mounted on the host; this same cgroup will be made available to to the guest. Alternatively, you may mount –bind in this script from the host’s cgroupv1 mounted directory to the guest’s directory; this’s a better approach since this allows you to create cgroups inside X exclusively for the container, so the guest may not play around with other processes's cgroups.
As an e.g. –
#! /bin/bash
mount -t tmpfs -o size=1M tmpfs $LXC_ROOTFS_MOUNT/sys/fs/cgroup/
mkdir -p $LXC_ROOTFS_MOUNT/sys/fs/cgroup/systemd
#mount -t cgroup -o none,name=cgroupv1 cgroupv1 $LXC_ROOTFS_MOUNT/sys/fs/cgroup/systemd &>> /tmp/script_out.log
mount --bind /tmp/cgroup1/lxc_containers $LXC_ROOTFS_MOUNT/sys/fs/cgroup/systemd
exit 0
Can't get cgroupv1 mounted no your host? Getting "already mounted or mount point busy." -- in this case ensure the cgroup that you're mounting is not being attached to any subsystem/controllers, which is the default behavior. This's the right approach --
mount -t cgroup -o none,name=lxc_compat systemd /tmp/cgroup1
Thursday, November 19, 2020
Asus P1440FA-3410Z linux compatibility.
This laptop in reality comes with Linux pre-installed (mine did); so is 100% linux compatible including the wifi.
Friday, November 6, 2020
Moto 3G (2015) (osprey) -- no audio from speaker or wifi.
I think this's a hardware issue.
To try and resolve the issue, make a call on mobile network and turn the speaker on. The issue must resolve.
Friday, October 16, 2020
[spreadsheet][ods]Unsprung/rotating mass (wheel/sprocket/tyre) power loss calculator for cars bikes and motorcycles
In case you're wondering how much power will you get when you replace you wheel or sprocket or tyres to lighter ones, this spreadsheet is for you.
https://drive.google.com/file/d/1bM1nyAbg6gJ8RFpCKRujqXe6EF4voAlF/view?usp=sharing
Open in either libreoffice or google docs.
Realize that the power loss is not only dependent on unsprung mass, but also on other factors such as wind resistance (your vehicle's aerodynamics), mechanical losses etc... unsprung mass is only one of the losses. These other losses changes over the speed in which you're at, so while calculating, apart from dimensions, you've to also enter the speed and the time required to reach that speed in order to determine the power lost because of the wheel/sprocket/tyre. Another reason why you need to enter the speed and time it takes to reach that speed is that power is a function of energy. So if your vehicle takes less time to reach a certain speed, the mass will take less time to attain that RPM, but ultimately will result in having the same energy. Thus, same energy attained in less time means more power taken by up the rotating mass while accelerating.
Only fill the required values in column B against the non-colored cells. The colored cells are calculated values.
Thursday, October 8, 2020
D-Link DWM-222 4G on Linux.
Will work on any new Linux distribution out of the box. No need to install the 'driver's.
In case yours is an old Linux distribution, just eject the detected corresponding cdrom device (/dev/sr0 or /dev/sr1, sr2 etc...) and a modem will be spawned which can be used just as a standard modem using your networkmanager or using wvdial.
In networkmanager or wvdial, just do not set the APN (or INIT3 string), the device will pick it up automatically. Older versions of networkmanager do not allow this, so you may face issues on it. In this caseu use wvdial with a high BAUD rate.
Thursday, September 10, 2020
Mystery high feaver (ranging from 99 to 103) comes and goes with extreme chills (sometimes)
One of my relatives (old) had this kind of mysterious fever. It used to go away in 3 days, and then used to come back within around 5 days. The first day, fever was high (like 103), then it used to reduce over the next 2 days. The fever was high promenantly at night.
'Modern' medicine and 'specialists' got stuck with lung infection and various tests which gave no results. The blood test results were erratic and inconsistent pointing to a mix of all diseases. This had been going on with 6 months.
Then he though of taking a remedy of alternative medicine based on Indian origin (something related to Yoga). The practitioner said this's a result of food allergy. Apart from giving medications, he a black and whitelist of foods to avoid and prefer.
And that was it ... fever was gone.
Tuesday, September 1, 2020
Matching encoded URLs using regexp/regular expressions (optionally in fail2ban).
Your regular expression can fail against attackers doing attacks by encoding their URLs; fail2ban will not detect those, neither your regular expression; But you can modify your regexpes to match these encoded URLs also even in mixed form (partly encoded, and partly not); create regular expressions to replace each character with something like --
(c|%63|%43)
Here I replace c with the above; this will match c, and it's capital and small form in encoded URLs. In fail2ban you need to replace the % with a %% --
(c|%%63|%%43)
So I write .php as --
(\.|%%2E)(p|%%70|%%50)(h|%%68|%%48)(p|%%70|%%50)
You may begin the regular expression with (?i) in fail2ban or define it as (?i:<your regexp>) elsewhere to ignore case of the character (so C and c are alike and %2e and %2E is also alike.
To convert URLs to their encoded form I've created a simple script --
#! /usr/bin/ruby
# Converts the input string to a regular expression which will match the string either in the URL encoded form or mixed or unencoded form and case insensitively
# First argument is the string.
input = ARGV[0].dup
input.gsub!(/a/,'(a|%61|%41)')
input.gsub!(/b/,'(b|%62|%42)')
input.gsub!(/c/,'(c|%63|%43)')
input.gsub!(/d/,'(d|%64|%44)')
input.gsub!(/e/,'(e|%65|%45)')
input.gsub!(/f/,'(f|%66|%46)')
input.gsub!(/g/,'(g|%67|%47)')
input.gsub!(/h/,'(h|%68|%48)')
input.gsub!(/i/,'(i|%69|%49)')
input.gsub!(/j/,'(j|%6A|%4A)')
input.gsub!(/k/,'(k|%6B|%4B)')
input.gsub!(/l/,'(l|%6C|%4C)')
input.gsub!(/m/,'(m|%6D|%4D)')
input.gsub!(/n/,'(n|%6E|%4E)')
input.gsub!(/o/,'(o|%6F|%4F)')
input.gsub!(/p/,'(p|%70|%50)')
input.gsub!(/q/,'(q|%71|%51)')
input.gsub!(/r/,'(r|%72|%52)')
input.gsub!(/s/,'(s|%73|%53)')
input.gsub!(/t/,'(t|%74|%54)')
input.gsub!(/u/,'(u|%75|%55)')
input.gsub!(/v/,'(v|%76|%56)')
input.gsub!(/w/,'(w|%77|%57)')
input.gsub!(/x/,'(x|%78|%58)')
input.gsub!(/y/,'(y|%79|%59)')
input.gsub!(/z/,'(z|%7A|%5A)')
input.gsub!(/\./,'(\.|%2E)')
input.gsub!(/-/,'(-|%2D)')
puts input
The first argument to this script will be your text input.
Monday, June 1, 2020
Nikon A900 review and issues/problems/drawbacks.
Everything about the camera is expected; for the size, it's the best that you can get at night photography (which is still deficient) as of 2019.
Before you buy, these are a few drawbacks --
1) The slowest shutter speed is 8 seconds in reality. No it's not 25; 25 seconds is given by some 'mode' which useless actually.
2) Black round bands are seen on the edges of the pictures sometimes. I think this is is because of the image stabilizer. Solution is to zoom in and then zoom out and soon it'll fix itself. This issue calls in for a warranty claim! And yes -- warranty has been claimed. The highly abused lens has now been replaced.
3) Autofocus is terrible! Even while shooting videos. And there's no manual focus to make matters worst. To provide a global e.g. just try to shoot moon so it's craters can be seen. This's not possible without fully zooming into the moon.
4) The camera hangs sometimes.
5) Wi-Fi picture transfer feature is non-standard. It requires a Windows 'driver'; so it wont work on Linux/BSD. I use P2P over USB instead.
6) Transferring pictures to phone over wifi is broken. So is remote photography (actually the phone never connects to the 'smart device' over wifi).
7) Battery charging is extremely slow.
8) Battery display has only 2 levels -- full, and low (that 50% mark is not, medium, it's low actually, and you're hardly going to get any backup beyond that).
On the very plus size, the IS is very good! Audio recording is great too!
Monday, August 12, 2019
Lineage/resurrection remix/Android: Audio stops when earphones are plugged in.
The corresponding logs in logcat --
08-11 22:41:36.375 315 8872 E qcvirt : [vendor/qcom/proprietary/mm-audio-noship/audio-effects/safx/android-adapter/qcvirt/qcvirt.c:477] Assertion fail: status == PPSUCCESS
Solution -- disable the equalizer in audioFX.
Sunday, May 12, 2019
Linux technologies (kernel, bash etc...) support for Windows -- for a better monopoly.
No, in fact Microsoft is still trying to enforce it's monopoly and support for opensource technologies makes it's monopoly stronger.
Reviewing from a few pages of history realize why Microsoft is a monopoly --
1) It keeps all protocols hidden
2) All technologies will be patented in the US (Microsoft tax)
3) It tires to hide the formats of files that their programs use and when they open up the format, the specs are not complete (to ensure only their programs are able to open their files) and ladened with patent warnings.
None of this has changed; but now Linux programs can run on Windows officially. So to the unsuspecting consumer -- Windows has the power to run both their propitiatory, cryptic and hidden Windows program and open Windows files along with Linux capabilities; so the obvious question is, why will it switch to Linux? So let the monopoly commence and be better.
Thursday, August 30, 2018
Fixing kernel: "unregister_netdevice: waiting for to become free. Usage count = "
The thing that worked for me to reduce the probability of this bug is removing limits from the docker systemd service. Newer systemd has a default limit even if you didnt set it. Set LimitNOFILE=1048576, LimitNPROC=infinity, LimitCORE=infinity, TasksMax=infinity in docker systemd unit and this may just fix the issue; this also reduced the load average (CPU based).
Saturday, March 31, 2018
Bash history sanitize/cleaner.
#! /bin/bash # Without argument will print what it'll delete. If 1st argument is y, then it'll clean the history of the user. # The regular expressions catch the good commands which are to be retained. echo 'Would delete commands -- ' grep -vP --regexp='^[a-zA-Z0-9/./.#~>]' ~/.bash_history grep -vP --regexp='^.{0,1000}$' ~/.bash_history if test "$1" == 'y' then grep -P --regexp='^[a-zA-Z0-9/.#~>]' ~/.bash_history | grep -P --regexp='^.{0,1000}$' > /tmp/bash_history_cleaned || exit mv /tmp/bash_history_cleaned ~/.bash_history fi
Read the comments for how to get this to work.
The mysterious case of engine oil thinning (AKA oil sheering)
So it's better to check your engine oil for quality. Now question is what to check? Feel the viscosity of the engine oil on your fingers, and if it does not feel oily (and feels more watery), the engine oil is subjected to sheering and has thinned down.
For other aspects, the engine oil might be ok -- it wont smell burnt, will not leave a soot when you rub it and of course will not be excessively thick; but regardless, if it has thinned this much, it's time for a change, and next time switch to fully synthetic engine oil since engine oils must not thin like this at all.
Saturday, September 30, 2017
Understanding inner workings of crossdev.
Tuesday, September 19, 2017
systemd-logind -- "Failed to start Login Service." on Debian 8
You need to add the sys_resource capability top fix this.
Wednesday, August 9, 2017
Using curb with custom verb/methods, headers and body.
Instead of using Easy, you can use the Curl module. In curb's rubydoc, you'll see hardly any description of these methods, so I explain them here.
There are methods named after REST verbs in the Curl module and there's http method which allows you to send custom verbs. These methods also take a code block in which case it'll pass a newly created object (just like Easy.new) as the first argument to the body. All instance methods which applies to the object of Easy.new also apply to this object. Before existing the code block, the request will be made.
Sunday, July 30, 2017
Script to group files/directories to reach the closest desired/target size.
First argument -- target size in bytes.
Off the selected files, will print each of them in a new line with their size, separated with a tab in the same line. Specify units as KB, MB, GB, TB in the environment variable UNIT.
script --
https://paste.ubuntu.com/25206842/
Before you run, install run 'gem install ClosestSum' on your system as root. This'll install the
ClosestSum gem which's a library implementing the algorithm.
Monday, July 24, 2017
lxc-console prints duplicate characters (crippled/corrupt console).
In lxc-1.x you must have made getty@tty*.service somewhere in /etc/systemd/system/. They're no longer needed. Remove them to fix the issue.
Thursday, June 15, 2017
-flto-partition=balanced and -flto-partition=1to1 benchmark
Friday, May 12, 2017
Persistent/resilient ssh sessions for unstable internet connections.
Instead of using roaming, a much better approach is using screen with shell scripting. This has serious advantages like resuming the session over a different client machine, the program running in foreground won't slow down even if the terminal (or Internet connection) is slow etc...
Just install screen on the server and run the following commands for a presistant session --
while [[ j != k ]]; do ssh -tt
This'll reconnect on disconnecting. You can use tabs in screen and take multiple sessions over the same screen instance. Open the other tabs using --
while [[ j != k ]]; do ssh -tt
while [[ j != k ]]; do ssh -tt
while [[ j != k ]]; do ssh -tt
For tabs numbered 1, 2, 3 etc...
I use Gentoo's default config for the screen on the server, it works great!
Friday, May 5, 2017
Incremental backup system of your Android app settings and your data.
So I've created a system to regularly backup your app data in an incremental way -- so the old data gets retained and snapshot of the latest backups is also taken all using less space. You can restore all this data to a new phone or revert an older version of the data to your existing phone (maybe to get it unbricked without loosing all your settings).
Of course I know about Google's cloud backup, but in my experience it's unreliable, requires a lot of bandwidth and works only on select (Google only) apps. This works on all apps. I also know about adb backup and restore feature, but that also does not work on all apps.
This system requires sshelper app and it must run in the background all the time. You must configure key based login as specified in this (Public-key (passwordless) logins) tutorial. After configuring that, you can disable password based login and disable the 'keep device awake' checkbox to improve on the battery and security.
Other things that is requires is root access.
sshelper installs a busybox. You need to use the tar command cron command of that. The scripts I've deployed use exactly that --
Place this script in /system/bin/custom_data_backup.sh --
# backups data only if the latest one is less than 12 hours old #! /system/bin/sh SECONDS=$((12*60*60)) SD_CARD="Your sdcard mount point" mkdir $SD_CARD/custom_backup latest=`ls -tr $SD_CARD/custom_backup/ | tail -1` if test \( -z "$latest" \) -o \( `date +%s` -gt $(($latest + $SECONDS)) \) then cd /data/data && /data/data/com.arachnoid.sshelper/bin/tar -cpf $SD_CARD/custom_backup/`date +%s` * fi
This can be done by the command (as root) --
vim /system/bin/custom_data_backup.sh
And then pressing 'i' to got to edit mode. Then paste, make changes, then press ESC a few times and type ':x' (without the single quotes).
Modify SD_CARD variable to point to the mount point where your sdcard is mounted. Use the mount command to see the various mount points. One of these must be your SDcard. cd to that place and verify by looking at it's contents if it is indeed the place.
It happens that Android has a bug or a problem etc... the system call which these basic utilities use to seep for a certain period of time is inaccurate. This systemcall never returns when sleep is done for a long period of time. This system works around this problem.
Next you need to setup cron.
Run these commands root --
mkdir /data/data/com.arachnoid.sshelper/spool
vim /data/data/com.arachnoid.sshelper/spool/root
Now press i, then copy paste the following text --
*/30 * * * * custom_data_backup.sh
Then press ESC a few times and type ':x' (without the single quotes).
Then run --
vim /etc/init.d/99backup.sh
Now press i, then copy paste the following text --
#!/system/bin/sh mount -o remount,rw / ln -s /system/bin /bin mount -o remount,ro / /data/data/com.arachnoid.sshelper/bin/crond -c /data/data/com.arachnoid.sshelper/spool
Then press ESC a few times and type ':x' (without the single quotes).
Then run --
chmod 755 /etc/init.d/99backup.sh.
Install universal init.d and enable init.d scripts support. If you've a rom which has inbuilt support of init.d, you will not require this.
After this you must see backups created in directory
Tuesday, April 18, 2017
CSV to vcf/vcard converter (advanced edit android contact).
So we got vcf2csv to do the conversion. This program will blindly convert all fields in the vcard (including the standard fields like version) to columns in the generated tab separated CSV. And that's just we want.
Now you got to convert it back to VCF so you can import it to your (standard compliant) phone. To do so, convert using the script (Released under Apache license :p) --
#!/usr/bin/ruby require 'csv.rb' header = nil counter = 0 CSV.foreach(ARGV[0], { :col_sep ="\t", :quote_char ='!' }) { |row| if counter == 0 header = row.dup else puts "BEGIN:VCARD" row.each_with_index { |data, index| if data != nil puts "#{header[index]}:#{data}" end } puts "END:VCARD" end counter += 1 }
First argument is the path of the tab separated CSV to convert. The output of the program is the converted VCARD. It simply converts the columns to vcard fields
Sunday, April 16, 2017
(semi)Static IPv6 for AWS.
In the Interface page of your EC2 instance, there's an option to add more IPv6 address (like you can do with IPv4 address); in fact, there maybe a default IPv6 address depending on if you opted for one.
You just add an IPv6 address to the interface -- you'll have control over it, you can remove it from one instance attach it to another (but only in the same subnet).
Saturday, April 15, 2017
Ultimate traffic shaping script (low prioritize/background your P2P/torrent/Bitcoin/gnutella/edonkey/emule traffic).
It's to be realized that QoS works only at the point where the traffic is throttled. Since you have no control over your ISPs network throttle, you wont be able to get a working QoS unless you throttle your traffic manually on your local system and apply a QoS there. The same goes for incoming(ingress) and outgoing(egress) traffic.
devspeed is the speed of your Internet connection, inetdev is the interface over which you get your internet connection. inetUspeed, inetspeed is your upload and download Internet speed.
The units are in K or M bits per second.
After filing up the variables, copy paste the commands to your root shell. If the commands result in errors, you can try and upgrade to a newer version of iproute2 and upgrade the kernel.
The script works well, but don't expect things like SSH to work like... in real time. You'll see considerable delay with these real time apps.
And yes, ICMP has not been given a high priority.
devspeed=100mbit inetdev=eth1 inetUspeed=10000kbit inetspeed=10000kbit tc qdisc add dev $inetdev ingress tc filter add dev $inetdev parent ffff: protocol ip prio 1 u32 match ip src 192.168.0.0/16 flowid 10:1 modprobe ifb numifbs=1 tc filter add dev $inetdev parent ffff: protocol ip prio 10 u32 match u32 0 0 flowid 11:1 action mirred egress redirect dev ifb0 tc qdisc add dev ifb0 root handle 1: cbq avpkt 1400b bandwidth $inetspeed tc class add dev ifb0 parent 1: classid 1:1 cbq allot 1400b prio 0 bandwidth $inetspeed rate $inetspeed avpkt 1400 bounded isolated tc filter add dev ifb0 parent 1: protocol ip prio 16 u32 match u32 0 0 flowid 1:1 tc qdisc add dev ifb0 parent 1:1 handle 2: cbq avpkt 1400b bandwidth $inetspeed tc class add dev ifb0 parent 2: classid 2:1 cbq allot 1400b prio 1 rate $inetspeed avpkt 1400 maxburst 1000 bandwidth $inetspeed tc class add dev ifb0 parent 2: classid 2:2 cbq allot 1400b prio 8 rate $inetspeed avpkt 1400 maxburst 1 bandwidth $inetspeed tc filter add dev ifb0 parent 2: protocol ip prio 1 u32 match ip sport 443 0xffff flowid 2:1 tc filter add dev ifb0 parent 2: protocol ip prio 1 u32 match ip sport 80 0xffff flowid 2:1 tc filter add dev ifb0 parent 2: protocol ip prio 1 u32 match ip sport 25 0xffff flowid 2:1 tc filter add dev ifb0 parent 2: protocol ip prio 1 u32 match ip sport 143 0xffff flowid 2:1 tc filter add dev ifb0 parent 2: protocol ip prio 1 u32 match ip sport 993 0xffff flowid 2:1 tc filter add dev ifb0 parent 2: protocol ip prio 1 u32 match ip sport 465 0xffff flowid 2:1 tc filter add dev ifb0 parent 2: protocol ip prio 1 u32 match ip sport 8080 0xffff flowid 2:1 tc filter add dev ifb0 parent 2: protocol ip prio 1 u32 match ip sport 53 0xffff flowid 2:1 tc filter add dev ifb0 parent 2: protocol ip prio 10 u32 match u32 0 0 flowid 2:2 ip link set up dev ifb0 tc qdisc add dev $inetdev root handle 1: cbq avpkt 1400b bandwidth $devspeed tc class add dev $inetdev parent 1: classid 1:1 cbq allot 1400b prio 0 bandwidth $devspeed rate $devspeed avpkt 1400 tc class add dev $inetdev parent 1: classid 1:2 cbq allot 1400b prio 0 bandwidth $inetUspeed rate $inetUspeed avpkt 1400 bounded maxburst 1 bandwidth $inetUspeed tc filter add dev $inetdev parent 1: protocol ip prio 1 u32 match ip dst 192.168.0.0/16 flowid 1:1 tc filter add dev $inetdev parent 1: protocol ip prio 10 u32 match u32 0 0 flowid 1:2 tc qdisc add dev $inetdev parent 1:2 handle 2: cbq avpkt 1400b bandwidth $inetUspeed tc class add dev $inetdev parent 2: classid 2:1 cbq allot 1400b prio 1 rate $inetUspeed avpkt 1400 maxburst 1000 bandwidth $inetUspeed tc class add dev $inetdev parent 2: classid 2:2 cbq allot 1400b prio 8 rate $inetUspeed avpkt 1400 maxburst 1 bandwidth $inetUspeed tc filter add dev $inetdev parent 2: protocol ip prio 1 u32 match ip sport 443 0xffff flowid 2:1 tc filter add dev $inetdev parent 2: protocol ip prio 1 u32 match ip sport 80 0xffff flowid 2:1 tc filter add dev $inetdev parent 2: protocol ip prio 1 u32 match ip sport 8080 0xffff flowid 2:1 tc filter add dev $inetdev parent 2: protocol ip prio 1 u32 match ip sport 65111 0xffff flowid 2:1 tc filter add dev $inetdev parent 2: protocol ip prio 10 u32 match u32 0 0 flowid 2:2
Saturday, March 25, 2017
Unique/Similar links/URLs grouper/sorter
https://rubygems.org/gems/LinkGrouper
Which group similar links/URLs (or find unique links) and writes them to separate files
Saturday, February 25, 2017
Awk vs gawk vs ruby benchmark.
720 7 256 1 4 4 5 7 a578dc953fd09cc6 55 3 f2d9d631d497c97e cb6db932d9c9b6c2
Awk pattern --
'/^[0-9]/ { print $1+$2 }'
Ruby script --
#! /usr/bin/ruby ARGF.each { |line| if line =~ /^([0-9]+) ([0-9]+)/ puts $1.to_i | $2.to_i end }
Results --
time gawk '/^[0-9]/ { print $1+$2 }' /tmp/awk_input.txt > /dev/null real 0m10.224s user 0m10.192s sys 0m0.031s
time mawk '/^[0-9]/ { print $1+$2 }' /tmp/awk_input.txt > /dev/null real 0m2.804s user 0m2.769s sys 0m0.032s
time ./bench.rb /tmp/awk_input.txt > /dev/null real 0m36.886s user 0m36.813s sys 0m0.070s
So overall, mawk is 3.5 times faster than gawk and is 13 times faster than Ruby.
Script used to generate the input fie --
#! /usr/bin/ruby require 'securerandom' awkinput = IO.new(IO.sysopen("/tmp/awk_input.txt", 'a')) 9999999.times { writeme = SecureRandom.hex(8) if writeme =~ /^([0-9]+).*([0-9]+)/ datawrite = "#{$1} #{$2}" else datawrite = writeme end awkinput.write(datawrite + "\n") }