Added fedora instructions #616
Conversation
|
Can one of the admins verify this patch? |
|
Not sure about this. We only have Debian/Ubuntu based systems for building tribler at the moment. Any other comments? |
|
It seems ok, we'll test it in a fedora live environment. |
| python-netifaces vlc python-igraph \ | ||
| python-pyasn1 gmpy gmp-devel python-pip \ | ||
| rb_libtorrent-python wxPython | ||
| sudo pip install gmpy m2crypto twisted |
There was a problem hiding this comment.
I don't really like advising people to install stuff trough pip system wide, maybe better to drop the sudo here.
Forgot that twisted needs python-devel and gmpy is already provided by yum
|
@whirm pip needs to be ran as root because twisted is installed in |
| ```sh | ||
| sudo yum group install "Development Tools" -y | ||
| sudo yum install scons libevent-devel python-apsw \ | ||
| python-netifaces vlc python-igraph \ |
There was a problem hiding this comment.
I'm getting "no package vlc available."
There was a problem hiding this comment.
It seems to be only available through rpmfusion
Name : vlc
Arch : x86_64
Version : 2.1.4
Release : 1.fc20
Size : 4.1 M
Repo : installed
From repo : rpmfusion-free-updates
Summary : The cross-platform open-source multimedia framework, player and
: server
URL : http://www.videolan.org
Licence : GPLv2+
Description : VLC media player is a highly portable multimedia player and
: multimedia framework capable of reading most audio and video
: formats as well as DVDs, Audio CDs VCDs, and various streaming
: protocols. It can also be used as a media converter or a server to
: stream in uni-cast or multi-cast in IPv4 or IPv6 on networks.
There was a problem hiding this comment.
This adds the rpmfusion-free repository
su -c 'yum localinstall --nogpgcheck http://download1.rpmfusion.org/free/fedora/rpmfusion-free-release-$(rpm -E %fedora).noarch.rpm -y'
There was a problem hiding this comment.
Added the command to install the free rpmfusion repos in fb62d8e
|
@Mechazawa then better go trough the virtualenv route (you could even provide a script to do it, you would make a few users in our forum happy), I think telling people to install a custom built m2crypto alongside the one in Fedora (which has EC disabled) it's not a really good idea. |
|
It's installing all the requirements through yum now. |
| sudo yum group install "Development Tools" -y | ||
| sudo yum install scons libevent-devel python-apsw \ | ||
| python-netifaces vlc python-igraph \ | ||
| python-pyasn1 gmpy gmp-devel m2crypto \ |
There was a problem hiding this comment.
Have the fedora guys enabled elliptic curves on their m2crypto build? If not this will not work.
There was a problem hiding this comment.
Seems like the only issue right now is m2crypto. The package maintainer didn't compile it with elliptic curves enabled. I could either see if I can contact him and see why it's disabled or it will have to be compiled from source. Compiling from source shouldn't be that hard unless it has some kind of ridicules dep chain.
There was a problem hiding this comment.
Is it only m2crypto, or is openssl also missing the ecc stuff?
On Jul 25, 2014 9:25 PM, "Bas" [email protected] wrote:
In README.md:
python-m2crypto vlc python-igraph \python-pyasn1 python-gmpy+ +### Fedora +You'll need to have the [rpmfusion] repos installed for vlc. only the rpmfusion-free repo is needed. This can be done by running the following command: +sh
+su -c 'yum localinstall --nogpgcheck http://download1.rpmfusion.org/free/fedora/rpmfusion-free-release-$(rpm -E %fedora).noarch.rpm -y'
++ +The following packages are needed to run tribler on Fedora: +sh
+sudo yum group install "Development Tools" -y
+sudo yum install scons libevent-devel python-apsw \python-netifaces vlc python-igraph \python-pyasn1 gmpy gmp-devel m2crypto \Seems like the only issue right now is m2crypto. The package maintainer
didn't compile it with elliptic curves enabled. I could either see if I can
contact him and see why it's disabled or it will have to be compiled from
source. Compiling from source shouldn't be that hard unless it has some
kind of ridicules dep chain.—
Reply to this email directly or view it on GitHub
https://github.com/Tribler/tribler/pull/616/files#r15419678.
There was a problem hiding this comment.
openssl ecc stuff seems to be functional
|
In the end, it doesnt work as we're missing the ec stuff like @whirm was saying. |
|
@Mechazawa are you still interested in updating this? |
|
Whoops sorry I forgot about it because I've had it pretty busy. I'll spin up a clean fedora VM tonight and I'll see exactly what will be needed. (yum only pref) ---- Elric Milon wrote ----
|
|
Glad to hear that, thanks! :D |
|
Please, note that tracker bug for ECC in Fedora is here: |
|
openssl ecparam -list_curves: So, there is still no support for sect233k1 in Fedora. |
|
Sadly, I don't have enough time to resolve the issues (in a clean way) for now. This means that the issue is better off being closed until someone else with enough time can fix it. |
|
Ok, thanks for trying :) |
|
I have looked into this more, and it appears that use of the Elliptic Curve sect233k1 in OpenSSL is patent-encumbered. It will not be included into Fedora until the lawyers have secured a better gaurentee that Red Hat or Fedora users will not be sued for using the ECC routines in OpenSSL. The short-term resolution is to build OpenSSL with ECC support alongside system OpenSSL, so that Tribler can be used. This is a really complicated procedure, but I will be trying it and writing a procedure for Tribler users to use sometime in the next week. The longterm fix would be to move to a platform (like LibreSSL) that is not patent-encumbered, and I will also look into the feasability of that. |
|
What's actually encumbered is the actual curve, so it doesn't matter if we move to LibreSSL as they either have the same (encumbered) curve or they don't and we can't use it :) It's not that hard to have a custom built OpenSSL library, you can check the script we use to build our virtualenv to run our experiments on the DAS4 supercomputer (which runs on CentOS): https://github.com/Tribler/gumby/blob/devel/scripts/build_virtualenv.sh |
|
I am no expert in this matter, why not fall back to other curves if it is unavailable? In Fedora 21 openssl.x86_64 1:1.0.1j-1: |
|
The first two should suffice, although they're a bit "large". However, we need them to be enabled in m2crypto as well, as we're using m2crypto to interact with openssl. |
|
NielsZellemaker - how do i do that? sorry not py dev. |
|
Open a python console, and type |
|
Does it have what is needed ? |
|
How to proceed from here? |
|
It seems promising, ill post another snippit which will test which curves actually work. |
|
@NielsZeilemaker , |
|
I'll have another go with Fedora 21 to see if I can get Tribler up and running. |
|
Unfortunately it's a no go, we can modify Tribler to get it running using the keys @fabianhjr mentioned. However, the master member keys (those used as an identifier for the communities) don't load and cannot load as the curves are not supported. |
|
Neils, On Tue, Feb 10, 2015 at 5:10 PM, Niels Zeilemaker [email protected]
|
|
It's a bit complex, but it's a part of the decentralized permission system tribler is using. |
|
Will those that work in fedora work in other system?
|
|
It will, but we cant easily switch to a new type of identifier |
|
What other diatributions that do not support these keys or its only rh?
|
|
I think it's only redhat, but you just needs to recompile openssl with the ecckeys enabled to get it working. |
|
@NielsZeilemaker |
|
I'm not sure, we're using sect curves which seem to be missing from that list. But have a go, if you get null pointers in m2 crypto then you know there is still a problem with openssl |
|
@NielsZeilemaker |
|
The curves seem to be there. |
|
@NielsZeilemaker |
|
You need to convince m2crypto to use this version of openssl. Or replace the default openssl completely. |
|
Now, why not also sending a Pull Request to upstream? I believe RPM world On 22 February 2015 at 18:32, Niels Zeilemaker [email protected]
|
|
@almereyda Jon, i think there is a conflict between feature request (from this application) and lawyers from redhat. easy to understand that latter wins. |
|
@az-z As a university research team we're very committed to fix all concerns and have the needed crypto expertise in the team. However, improvements take costly development time. Our darknet roadmap for coming years is here: #3 |
|
Maybe someone gives it another try, please? |
|
It would be great to have a rpm package. I'm not using Tribler because I'm on Fedora and it's not available |
|
I remember that we had quite some issues with Unfortunately, our development time is scarce and we have to prioritise. Adding Fedora support would mean yet another platform to maintain, besides Windows/Mac/Debian/Ubuntu, which we already have our hands full with. That said, as a first step we could try to setup a Fedora machine and try to install all required dependencies to run Tribler. We have some plans in the pipeline to do so with arch linux already. |
You may consider a distro-agnostic package like AppImage or Flatpak. It may solve a lot of problems but I'm not a developer so I don't know if it's difficult to create such kind of packages |
|
+1 for distro-agnostic package like AppImage or Flatpak. Then you could drop distro-specific efforts altogether and just support Linux in a whole. |
No description provided.