07:00 <KGB-0> https://tests.reproducible-builds.org/openwrt/openwrt_ath79.html has been updated. (98.6% images and 99.6% packages reproducible in our current test framework.)

10:34 <KGB-1> https://tests.reproducible-builds.org/openwrt/openwrt_sunxi.html has been updated. (0% images and 99.6% packages reproducible in our current test framework.)

16:27 <owrt-snap-builds> Build [#844](https://buildbot.openwrt.org/master/images/#builders/1/builds/844) of `ath79/generic` completed successfully.

16:29 <lynxis> it seems a lot of the loader based images are broken.

16:40 <mrkiko> robimarko: ping

18:28 <robimarko> mrkiko: Sorry for the late reply

19:06 <Znevna> hmm

19:06 <Znevna> i can't find the env data in mtd2 on this thin

19:06 <Znevna> thing

20:11 <Znevna> does this equal to 61 reserved blocks? https://paste.debian.net/plainh/26e2ee88

20:12 <Znevna> do they need to be specified as in, here? https://github.com/openwrt/openwrt/pull/10685

20:12 <Znevna> https://github.com/openwrt/openwrt/pull/10685#issuecomment-1243177735 * sorry

21:12 <yolo> trying to send email, ssmtp is obsolete, mstmp depends on (big)gnutls, others have no ssl at https://openwrt.org/docs/guide-user/services/email/smtp.client, is there a decent solution

21:13 <yolo> https://marlam.de/msmtp/news/openssl-discouraged/

21:54 <Znevna> no? no :<

22:01 <slh> the situation is quite simple, you need some kind of ssl/ tls provider - among these, we have openssl, wolfssl and mbedtls (and theoretically libressl). mbedtls currently isn't good enough for hostapd (and it's relatively slow and feature limited in general), wolfssl hasn't really held its promises (it's been buggy/ borderline broken in terms of basic features, ABI stability is a joke), openssl is

22:01 <slh> seeing more public scrutiny, it's what most projects are using - it's bigger, but faster and more compatible

22:01 <slh> there are still reasons for either of those

22:02 <slh> but it's not a case of openssl being 'evil'

22:15 <yolo> actually the only option on the table is openssl, forget about the rest for now. yes it's 1MB in size but wolfssl itself is 500KB anyways, we're really talking about 500KB size increase, it's acceptable on 8MB flash I feel

22:17 <yolo> i want to use mbedtls for my MCU/freertos board as there is no way to fit openssl, plus I don't run hostapd there so tls1.2 is good enough for a small https

22:17 <yolo> mbedtls tls1.3 is very partial, it will take a while for hostapd support for sure.

23:11 <mirko> how does openwrt ensure enumeration of network devices stays the same (eth0, eth1, ..) across changes? it doesn't, does it? any way to fix it to a mac-addr without udev or otherly bloated helpers?

23:14 <slh> it depends, in some cases it's defined in DTS (in others it may be a bit of closing the eyes and hoping for the best)

23:16 <slh> even udev on big iron linux isn't always good at doing so...

23:36 <enyc> slh: where does GNUtls fit into your analysis?

23:38 <slh> enyc: gnutls is pretty much a GPLv2 compliant alternative, mature, but very much behind on features and reliability - and in general not very relevant to OpenWrt as a whole (due to it not being supported by hostapd). with msmtp in the spotlight, the situation 'might' be different for that particular use case

23:41 <enyc> slh: Interestingly, Debian decided OpenSSL is component normally supplied with OS and subject to GPLv2 linking exception clause

23:42 <slh> well, that's a fairly recent decision/ re-definition (and imho rather questionable) - and openssl v3 also changes the equation somewhat