philtor_ has joined #mirage
dbuenzli has left #mirage [#mirage]
agarwal1975 has joined #mirage
dbuenzli has joined #mirage
dbuenzli has quit [Quit: dbuenzli]
philtor_ has quit [Ping timeout: 248 seconds]
philtor_ has joined #mirage
philtor_ has quit [Ping timeout: 240 seconds]
philtor has quit [Ping timeout: 264 seconds]
tlockney is now known as tlockney_away
thomasga has joined #mirage
thomasga has quit [Quit: Leaving.]
thomasga has joined #mirage
jludlam has joined #mirage
dbuenzli has joined #mirage
AltGr has joined #mirage
djs55 has joined #mirage
djs55 has quit [Client Quit]
thomasga has quit [Quit: Leaving.]
djs55 has joined #mirage
<bsb> Can anyone recommend some secure coding guidelines for ocaml? I've googled around a bit, but not really found anything.
dsheets has joined #mirage
dsheets has quit [Client Quit]
dsheets has joined #mirage
dbuenzli has left #mirage [#mirage]
dbuenzli has joined #mirage
agarwal1975 has quit [Quit: agarwal1975]
djs55 has quit [Quit: Leaving.]
djs55 has joined #mirage
thomasga has joined #mirage
agarwal1975 has joined #mirage
thomasga has quit [Quit: Leaving.]
mort___ has joined #mirage
dbuenzli has quit [Ping timeout: 255 seconds]
agarwal1975 has quit [Quit: agarwal1975]
mort___ has quit [Quit: Leaving.]
mort___ has joined #mirage
agarwal1975 has joined #mirage
dbuenzli has joined #mirage
mort___ has quit [Quit: Leaving.]
<dbuenzli> Is there a way of automatically setting the upstream remote when you fork a project on github or is their workflow really as broken as I think ?
agarwal1975 has quit [Quit: agarwal1975]
agarwal1975 has joined #mirage
dbuenzli has quit [Quit: dbuenzli]
dbuenzli has joined #mirage
thomasga has joined #mirage
avsm has joined #mirage
<avsm> noddy: hannes: there?
<bsb> Wow, it's off-the-hook in this irc channel.
<bsb> :P, Hiya avsm
<noddy> noddy: here
<noddy> oops
<noddy> avsm: noddy here
<noddy> ... and about to drop to cl in about 20
avsm has quit [Quit: Leaving.]
yomimono has joined #mirage
avsm has joined #mirage
miragebot has joined #mirage
<miragebot> [mirage] avsm pushed 6 new commits to master: http://git.io/pQwWpQ
<miragebot> mirage/master f1f15ca Thomas Leonard: Convert from ELF to binary format (for ARM)
<miragebot> mirage/master c17f2f6 Thomas Leonard: Link libgcc.a...
<miragebot> mirage/master ada8268 Thomas Leonard: Updated "mirage configure --xen" for new Mini-OS and libm...
miragebot has left #mirage [#mirage]
mort___ has joined #mirage
jludlam has quit [Ping timeout: 240 seconds]
philtor_ has joined #mirage
jludlam has joined #mirage
mort___ has quit [Quit: Leaving.]
philtor_ has quit [Ping timeout: 240 seconds]
tlockney_away is now known as tlockney
AltGr has left #mirage [#mirage]
jprakash has joined #mirage
thomasga has quit [Quit: Leaving.]
avsm has quit [Quit: Leaving.]
avsm has joined #mirage
jludlam has quit [Ping timeout: 240 seconds]
NoNNaN has joined #mirage
avsm has quit [Ping timeout: 255 seconds]
thomasga has joined #mirage
dsheets has quit [Ping timeout: 240 seconds]
djs55 has quit [Quit: Leaving.]
dsheets has joined #mirage
philtor has joined #mirage
thomasga has quit [Quit: Leaving.]
philtor has quit [Ping timeout: 256 seconds]
yomimono has quit [Ping timeout: 240 seconds]
dbuenzli has quit [Quit: dbuenzli]
avsm has joined #mirage
<avsm> noddy: hannes: there?
<avsm> noddy: hannes: one good query on HN is why https://github.com/mirleft/ocaml-tls/issues/6 was closed without an associated commit
dbuenzli has joined #mirage
<noddy> avsm: refresh the page
<avsm> aha! parallel replies, woops
<avsm> more the merrier
<noddy> yeah, mirror symmerty :D
<avsm> noddy: could you give me access on mirleft to reopen bugs and such? not got any atm i think
<noddy> sure, as soon as i figure out github security
tlockney is now known as tlockney_away
<hannes> morning
<avsm> hannes: noddy: ooops, no path normalization on the unix server?
<hannes> avsm: ?
<avsm> see mail, just fwd
<hannes> igs
<noddy> mail?
<hannes> I'll take care
<hannes> fixed
<hannes> avsm: I actually thought that the mirage-fs-unix would do that...
<avsm> probably should...
<avsm> but see cohttp example; theres a uri normalization
djs55 has joined #mirage
<hannes> avsm: do we have load on the machines (and/or req/s stats)?
<avsm> hannes: nope, can infer from the tracing?
<hannes> we can at some point
<noddy> we can from the mere logging to
<avsm> noddy: hannes: am getting Server Error from one of them
<avsm> tls1
<noddy> i have five open shells with five scrolling loggs and boy, do they hammer us
<avsm> in fact, from all of them
<noddy> somebody is running php-exploiting scripts on us
<avsm> am i the only one seeing the Server Error btw?
<noddy> no
<avsm> ack
* hannes has a fix
<noddy> hannes: wat
<hannes> deploying as we speak..
<noddy> well it fixed the directory traversal at least
<avsm> the right fix is to run path through
<avsm> (Uri.resolve "" (Uri.of_string "") uri)
<avsm> to remove ..
<noddy> it's the "bsd fix". that how they fix the suspend problem, i hear.
<hannes> ..deployed
<dbuenzli> No Server Error !
<hannes> avsm: but then we still need to validate that the path is in a subdir of <whereever web is>, don't we?
agarwal1975 has quit [Quit: agarwal1975]
<avsm> hannes: sort of
<avsm> let path = Uri.of_string "/foo/../../../etc/passwd";;
<avsm> (Uri.resolve "" (Uri.of_string "") path);;
<avsm> Uri.t = /etc/passwd
<avsm> so you need to make sure the Uri input isnt relative though
<noddy> guys, i'll be leaving my combat post now
<hannes> u enjoy ur birthday, noddy! great work! :D
<noddy> *high 5*
<avsm> noddy: woot!
dbuenzli has quit [Ping timeout: 240 seconds]
tlockney_away is now known as tlockney
yomimono has joined #mirage
thomasga has joined #mirage
<avsm> hannes: noddy: btw mail mirageos-devel about the release/blog too (we never quite remember to actually post our blogs on the list, and lots of people miss them)
<avsm> i always find it a bit odd to post my own blog posts, but I think the benefits outweight the awkwardness
<avsm> *post my => email my
<bsb> Oh, it's at night that it lights up.
<hannes> will do. also ocaml list, I believe
<avsm> hannes: and the mitls/sewell thread useful too
thomasga has quit [Quit: Leaving.]
<hannes> avsm: uhm, we're unix socket api, no tcp/ip from mirage iirc
<avsm> hey bsb
<avsm> hannes: context?
<avsm> bit distracted by the brazil germany match :P
djs55 has quit [Quit: Leaving.]
<avsm> hannes: the main site; that's taking the brunt of the hit from HN
<avsm> (it's running in xen mode)
<hannes> avsm: ah, ic :)
<hannes> avsm: thx for the followup in the mitls/ocaml-tls thread...
<avsm> just occurred to me that we forgot that bit
<avsm> next step is to make https openmirage.org default too
<avsm> needs xen mode, shouldnt be too long with talex5's minios changes
<avsm> (now merged into trunk)
<hannes> \o/
<hannes> btw, libgmp is license-wise a bad thingy... (lgpl)
jludlam has joined #mirage
<hannes> cryptopp might also be a viable solution.. or native code
jprakash has quit [Quit: leaving]
thomasga has joined #mirage
philtor has joined #mirage
thomasga has quit [Quit: Leaving.]
djs55 has joined #mirage
agarwal1975 has joined #mirage
djs55 has quit [Quit: Leaving.]
avsm has quit [Quit: Leaving.]
tlockney has quit [Quit: I may return, one day...]
tlockney_away has joined #mirage
tlockney_away is now known as tlockney
yomimono has quit [Ping timeout: 240 seconds]
NoNNaN has quit [Remote host closed the connection]
NoNNaN has joined #mirage