almet/blog.notmyidea.org
1
0
Fork 0
mirror of https://github.com/almet/notmyidea.git synced 2025-04-28 11:32:39 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

Update index template

Browse source
This commit is contained in:
Alexis Métaireau 2024-11-23 13:22:19 +01:00
parent f08e5b6cc6
commit fe4cf641c4
No known key found for this signature in database
GPG key ID: 1C21B876828E5FF2
2 changed files with 37 additions and 17 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

23
content/pages/worklog/dangerzone.md
View file

@ -3,7 +3,30 @@ title: dangerzone
save_as: dangerzone/index.html
template: worklog-en
---
## Jeudi 17 Octobre 2024 (8h, 5/5)
Merge-day today :-)
- We finally merged the on-host conversion PR! Good work by A_pyrgio on this one. Happy to have it incorporated in time for the 0.8.0 release in the next few weeks: https://github.com/freedomofpress/dangerzone/pull/748
- Automating the closing of stale issues with the `needs info` tag after some inactivity: https://github.com/freedomofpress/dangerzone/pull/955
- Rebased and merged a PR catching installation errors (and other podman/docker errors) and displaying them in the UI to help gather feedback from users when things go wrong: https://github.com/freedomofpress/dangerzone/pull/952
- Small reviews: https://github.com/freedomofpress/dangerzone/pull/958.
- Rebased the PR adding a `--debug` flag to `dangerzone-cli`. Running with gVisor in debug mode seem to block, not sure if it's related to the on-host conversion or some work I did in there. Will investigate later on.
- Investigated the signing situation on Windows
- Did some more investigation on the relationship between App Armor and flags passed to the container runtime. Commented about that on https://github.com/freedomofpress/dangerzone/issues/865
- Biweekly meeting, planning for 0.8.0 release and discussions on indep. container updates / container signing.
## Jeudi 10 Octobre 2024 (9h, 5/5)
I continued to work on adding tests for the container installation failure, and it turns out I want to do it in two ways: 1) check that errors are displayed when `.install()` returns `False` or raises an exception and 2) check that return values are what they should be.
Then, we debugged why colima isn't working on MacOS, and it turns out to be apparmor-related. We found out that dangerzone was working with an older colima version, where the VM was using alpine, and not ubuntu, so no apparmor in there. We proposed a solution to the user. It was a productive session.
We continued discussing a bit with Alex on different matters, and one of them was about how to use the python's `logging` utility while in the imports. We finally decided the added complexity to handle this right wasn't worth the added value of it.
I also attended Giulio "braindump" session, where he explained how TUF and Sigstore work. My takeaway is that TUF can be seen as a kind of framework to decide how to validate new certs, and how to make it possible for the end users to have some sort of canary: if there are no updates, there is a problem somehow.
Sigstore is basically a way to a) have a proof that you are the owner of a {Google, Github} account, issuing certificates for this and b) sign and publish information related to artifacts you want to publish. There is an observatory inside it, to publish what's going on, following the same principles as Google CT for TLS certificates.
## Mercredi 09 Octobre 2024 (8h, 5/5)
I've reviewed the work done by Alex on the on host conversion, which spawned some interesting discussions about how to deal with our scripts generally speaking, covered by [#946](https://github.com/freedomofpress/dangerzone/issues/946) . I tested the branch locally on a M1 mac and it works well 🎉

31
mnmlist/templates/index.html
View file

@ -3,26 +3,23 @@
<header>
<figure>
<h1 class="post-title"><del>not</del> my ideas</h1>
<figcaption>Carnets web d'Alexis M</figcaption>
</figure>
</header>
<article>
<p>👋 Hey, I'm <a href="/about">Alexis</a>. Here you can find:</p>
<ul>
<li>
<a class="link-code" href="/code">Bits of code</a> (en), tips and learnings around software.
</li>
<li>
<a class="link-ecriture" href="/ecriture">Des écrits</a> (fr), poésie et fiction, souvent au format
court.
</li>
<li>
<a class="link-lectures" href="/lectures">Des notes de lecture</a> (fr), sur differents bouquins.
</li>
<li>
<a class="link-weeknotes" href="/weeknotes">Mes notes hebdo</a> (fr).
</li>
</ul>
<p>👋 <strong>Welcome here</strong>, I'm Alexis,</p>
<p>I am a software engineer interested by digital freedom and privacy.</p>
<p>I'm also a fellow human, exploring how to participate to healthy collectives via listening and conflict-resolution techniques.</p>
<p>I mostly publish here in French, but some stuff is in English. You can find here <a class="link-journal" href="/journal">journal entries (fr)</a>,
<a class="link-lectures" href="/lectures">reading notes (fr)</a> and some stuff related to <a class="link-code" href="/code">software engineering (en)</a>. Also, some <a class="link-ecriture" href="/ecriture">writing (fr)</a></p>
<hr>
<p>👋 <strong>Bienvenue par ici</strong>, je suis Alexis, un développeur intéressé par les
dynamiques collectives, les libertés numériques et la facilitation.</p>
<p>Vous retrouverez sur ce site quelques
<a href="/journal" class="link-journal">billets de blog</a>, des <a href="/lectures" class="link-lectures">notes de lectures</a>, <a class="link-code" href="/code">des bouts
de code</a> et <a href="/ecriture" class="link-textes">des textes</a> que je veux garder quelque part. Bonne lecture !</p>
<p>Pour me contacter, envoyez-moi un email sur <code>alexis@</code> ce domaine (en enlevant <code>blog.</code>).</p>
</article>
{% if articles %}
<hr />