00:56 <asheesh> zarvox: That is neat.

01:06 <pdurbin> secrets in usernames sounds a bit odd

01:19 <kentonv> I can see the argument for secrets in usernames. Capability-based security calls for using a single value both to identify a resource and authorize access. So how do we shoehorn it into legacy username/password systems? Authorizing based on username alone is odd, but conversely routing based on password is also odd. But as a practical matter, it's usually best to avoid putting secrets into fields that aren't usually expec

01:19 <kentonv> ted to be secrets.

01:22 <tdsmith> Hi #sandstorm! Is Sandstorm/Oasis a useful platform for hosting i.e. IRC logging bots, like botbot or pmxbot? I worry that the bot will be autokilled and there will be gaps in logs; is that a valid worry? (Or, optimistically!, has this already been done in a way that I can leverage for #machomebrew?)

01:22 <tdsmith> (e.g.*, not i.e., oops)

01:25 <kentonv> tdsmith: right now, you can't host an IRC bot on Oasis because apps can't open arbitrary network connections for security reasons. We plan to improve on that through the concept of "drivers", which would allow apps to use specific protocols in a secure way

01:25 <zarvox> While we do have a concept of wakelocks, to allow for backgrounding, we don't have a great story quite yet for "always on" grains, in that if the server stops, there's no way to get the grain running on its own without something outside of Sandstorm pinging it.

01:26 <kentonv> there is an API by which an app can request that it not be killed, FWIW. Of course, we will eventually implement metering of compute usage so that people don't run bitcoin miners on Oasis. :)

01:26 <kentonv> that too

01:26 <tdsmith> okay! brilliant, thanks.

01:28 <tdsmith> i was optimistic about getIpNetwork in hack-session.capnp but I guess the attached comment ("If the owner of the grain calling this is not an admin, then this will raise an exception") refers to an admin of the Sandstorm instance (here, an admin of Oasis)?

01:30 <zarvox> You can also use the Powerbox to request an IpNetwork capability, which the grain could save a reference to and restore for use even if the current session is not for an admin user

01:32 <zarvox> Right now the only thing that does this is a test app from our integration test suite, but that might give you a nudge in the right direction: https://github.com/zarvox/sandstorm-test-python

01:33 <zarvox> Admittedly there are a bunch of moving parts, and we haven't written developer docs for this, so the experience is likely to be a bit rocky. But if you still want to give it a go, I can answer questions as best I can. :)

18:45 <OOCoder> Hi, I'm trying to update my DNS (namecheap) to point to my sandstorm ghost blog app.

18:46 <OOCoder> I ended up using the URL redirect to point domain but I cannot setup correctly the subdomain or host.

18:48 <asheesh> Hi OOCoder !

18:48 <asheesh> http://networkeffects.ca/?p=2162 might be a helpful tutorial.

18:48 <OOCoder> hi, I'll check out the link

18:51 <asheesh> Great! Let me know what you think.

18:52 <OOCoder> Hmm, I did that... maybe I didn't wait long enough. I'll try again, I'll wait 20mins this time.

18:52 <OOCoder> thanks

18:53 <asheesh> OK, cool. Let me know in 20 min how things look.

18:58 <OOCoder> I'm going to get some lunch, i'll repost in 1hr or 2hr.

19:00 <asheesh> Great.

19:34 <OOCoder> didn't work, :(. Trying adding a '.' at the end now.

20:17 <maurer> kentonv: In StructReader (layout.h) it uses BitCount to represent the data size. In a comment, it says this is to support struct lists encoded with less than a word per element. Looking at the composite list pointer type, it says it uses a tag word structured like a struct pointer. Struct pointers can only specify data sections in whole words. What is going on here?

20:18 <maurer> Is this for reading legacy structs?

20:18 <maurer> (I'm trying to actually write canonicalization code and it seems like checking truncation for a non-word-size-multiple data section would be kind of confusing)

20:21 <kentonv> it can happen when you have a list of structs

20:21 <kentonv> maurer: although bit-width structs are no longer supported. The smallest allowed size is bytes.

20:21 <maurer> kentonv: OK, so from the canonicalization standpoint, I can check that the data size is a multiple of word size, and if it is not, reject?

20:22 <kentonv> yeah, in order to make canonicalization possible, we deprecated this "efficient packing" of struct lists

22:28 <OOCoder> fyi, setting subname/host is not working using the settings suggested by the ghost app.

22:28 <OOCoder> i keep getting the following message: Error looking up DNS TXT records for host "blog.oocoder.tech": queryTxt ENOTFOUND

22:29 <OOCoder> Also, The URL redirect works fine from namecheap.

22:30 <OOCoder> Another question, have anybody tried to replace the theme of ghost via external files? I tried to import the odin them from github into ghost but I don't see an option for it.

22:36 <kentonv> OOCoder: It looks like you haven't set the TXT record as required in the instructions. sandstorm-www.blog.oocoder.tech needs a TXT record with the text "6nm7rfnnritwu98kjfe8" (without quotes)

22:39 <kentonv> OOCoder: unfortunately adding themes currently doesn't work since as of the version of Ghost we last packaged there was no UI to import themes -- it required shell access, which Sandstorm doesn't provide. We really should add our own UI for this but haven't had the time. :/ Patches welcome, of course.

22:40 <OOCoder> thanks kentonv, but I did added it like that. Are there some file logs I can look at?

22:40 <OOCoder> Oh I c

22:41 <kentonv> OOCoder: Hmm, I tried doing `dig -t txt sandstorm-www.blog.oocoder.tech` and I am not seeing a TXT record.

22:44 <OOCoder> I have been trying multiple things... let me put it back the way I initially added it.

22:44 <kentonv> hmm, it may be that you had it right at some point but the cache was stale. DNS is slow to update. :/

22:45 <OOCoder> ah.... I c. most likely.

22:52 <OOCoder> Ok, I put it back the way it was. I'll wait 30 mins this time and run the 'dig' utility to verify it, thanks.

22:52 <OOCoder> Btw, How do go about adding a patch for uploading a theme?

22:58 <kentonv> OOCoder: Hmm, you'll have to ask jparyani who maintains the Ghost package.

23:34 <maurer> kentonv: Is there an API for pretty-printing capnproto messages without a schema? I'm trying to debug my canonicalization test cases, which I wrote the representation for by hand, and are probably not what I think they are

23:35 <kentonv> maurer: no, but you could probably whip something up pretty quick based on Any{Pointer,Struct,List}.

23:36 <maurer> OK. Thanks for the help.