下载android sdk之「platform-tools」时出现「SSLPeerUnverified peer not authenticated」错误

缘由

最近因为要使用adb等工具研究apk,但是使用的是osx系统,习惯了使用iTerm2终端,但是安装「platform-tools」时出现了问题。

症状

下载android sdk之「platform-tools」时出现如下错误信息:

$ android update sdk --no-ui --filter 'platform-tools'
Refresh Sources:
  Fetching https://dl.google.com/android/repository/addons_list-2.xml
  Failed to fetch URL https://dl.google.com/android/repository/addons_list-2.xml, reason: peer not authenticated
  Fetched Add-ons List successfully
  Refresh Sources
  Fetching URL: https://dl.google.com/android/repository/repository-11.xml
  Failed to fetch URL https://dl.google.com/android/repository/repository-11.xml, reason: SSLPeerUnverified peer not authenticated

解决方法

主要是因为之前使用android sdk manager下载sdk时设置了代理,此时需要发将代理去掉即可(ps:下载时我用了vpn),可以修改~/.android/androidtool.cfg解决,修改后的文件内容如下:

### Settings for Android Tool
#Tue Jun 30 17:19:03 CST 2015
# http.proxyPort=80
sdkman.monitor.density=110
sdkman.enable.previews=true
# http.proxyHost=ubuntu.buct.edu.cn
sdkman.ask.adb.restart=true
sdkman.show.update.only=true
sdkman.force.http=true
# sdkman.use.dl.cache=true

树莓派(raspbian)启用root账户

首先,需要发给root帐户设置一个密码:

sudo passwd root

然后,修改/etc/ssh/sshd_config文件,将PermitRootLogin without-password一行改为:

PermitRootLogin yes

重启系统即可。

Fix GStreamer rtmpsrc plugin's bug

问题描述:

当使用GStreamer的rtmpsrc plugin时,在停止pipeline时会偶现一个crash bug。

具体描述:

当从外部调用gst_set_state(GST_STATE_NULL)之后, rtmpsrc会进一步调用gst_rtmp_src_unlock()和gst_rtmp_src_stop()两个接口,然后当此时pipeline的数据线程阻塞在gst_rtmp_src_create()的librtmp的RTMP_Read()接口时,调用RTMP_Free()会导致crash;究其原因,librtmp不是一个多线程的库。

解决方案:

1. 在gstrtmpsrc中加锁保护rtmp对象。
2. 在librtmp中添加回调方法,使得RTMP_Read()在无音视频数据的情况下不会长时间阻塞。

备注:

GStreamer 1.4.5
librtmp 2.4_p20131018


gstrtmpsrc.c

gst_rtmp_src_init()
{
...
g_mutex_init(&rtmpsrc->lock);
}

static void
gst_rtmp_src_finalize (GObject * object)
{
    /* Add by sparktend. */
    rtmpsrc->stop_flag = FALSE;
    g_mutex_clear (&rtmpsrc->lock);
}

static int stop_interrupt_cb(void *ctx)
{
    GstRTMPSrc *rtmpsrc = (GstRTMPSrc *)ctx;
    if (rtmpsrc) {
          GST_DEBUG_OBJECT (rtmpsrc, "interrupt_cb flag=%d", rtmpsrc->stop_flag);
         return rtmpsrc->stop_flag;
    } else {
        return 0;
    }
}

gst_rtmp_src_start() 
{
....
  RTMP_Init (src->rtmp);
  /* Add by sparktend, init rtmp object callback. */
  src->rtmp->interrupt_callback.callback = stop_interrupt_cb;
  src->rtmp->interrupt_callback.opaque = src;
} 

在_unlock()、_create()和_stop()中使用rtmp对象时,用锁保护。

g_mutex_lock(&rtmpsrc->lock);
..
g_mutex_unlock(&rtmpsrc->lock);

librtmp
rtmp.h

  /* Add by sparktend, for no-block callback. */
  typedef struct AVIOInterruptCB {
       int (*callback)(void*);
       void *opaque;
  } AVIOInterruptCB;

  typedef struct RTMP
  {
    ....
     /* Add by sparktend, for no-block callback. */
     AVIOInterruptCB interrupt_callback;
   }RTMP;


rtmp.c
RTMP_GetNextMediaPacket()
{
      if (!bHasMediaPacket)
     {
       RTMPPacket_Free(packet);
       /* Add  by sparktend, do callback. */
       RTMP_Log(RTMP_LOGDEBUG,"bHasMediaPacket = 0");
       if (r->interrupt_callback.callback) {
            RTMP_Log(RTMP_LOGDEBUG,"will do callback");
            if (r->interrupt_callback.callback(r->interrupt_callback.opaque)) {
               break;
            }
       }
     }
}

Git的多账号如何处理?

1.同一台电脑可以有2个git账号(不同网站的)

首先不同网站,当然可以使用同一个邮箱,比如我的github,gitlab,bitbucket的账号都是monkeysuzie[at]gmail.com
这时候不用担心密钥的问题,因为这些网站push pull 认证的唯一性的是邮箱
比如我的windows 上 2个账号一个gitlab 一个github (用的都是id_rsa)

host github
  hostname github.com
  Port 22
host gitlab.zjut.com
  hostname gitlab.zjut.com
  Port 65095

不需要指定key的位置。因为默认读取id_rsa了

这样子使用起来没有任何区别,remote 也想平时一样操作即可。因为邮箱是相同的。

2.同一台电脑有2个github账号?咋办

比如我服务器上模拟的2个用户

#monkeysuzie@gmail.com   我在gitlab的第一个账号suzie
host gitlab.zjut.com
    hostname gitlab.zjut.com
    Port 65095
    User suzie
    IdentityFile /home/suzie/.ssh/id_rsa
#  我在gitlab的第2个账号test
host gitlab-test.zjut.com
    hostname gitlab.zjut.com
    Port 65095
    User test
    IdentityFile /home/suzie/.ssh/id_rsa_second
#837368104@qq.com 我在github的账号 
host github-osteach.com
    hostname github.com
    Port 22
    User osteach
    IdentityFile /home/suzie/.ssh/id_rsa_second

这种情况下,需要几点注意

1.remote pull push的时候有问题,因为要设置邮箱问题了
pull的时候识别的是邮箱,2个github账号,2个邮箱,我们自然不能使用global的user.email了

1.取消global
git config --global --unset user.name
git config --global --unset user.email

2.设置每个项目repo的自己的user.email
git config  user.email "xxxx@xx.com"
git config  user.name "suzie"

之后push pull就木有问题了

备注

生成ssh key

ssh-keygen -m rsa -C "your mail" (当前目录)
然后可以命名默认id_rsa 或者id_rsa_second 把对应的pub放到公共服务器上。

摘自:https://gist.github.com/suziewong/4378434

使用squid配置http(https)代理服务器

  1. 安装Squid,添加软件源(vim /etc/yum.repos.d/squid.repo)
[squid]
name=Squid beta repo for CentOS Linux 6 - $basearch
#IL mirror
baseurl=http://www1.ngtech.co.il/repo/centos/6/beta/$basearch/
failovermethod=priority
enabled=1
gpgcheck=0

然后执行:

yum update
yum install squid.x86_64
  1. 配置用户验证(注意:密码最多8个字符):
sudo htpasswd -d /etc/squid/squid_passwd user1
New password:
Re-type new password:
Adding password for user user1

检查密码:

# /usr/lib64/squid/basic_ncsa_auth /etc/squid/squid_passwd
user1 pass
ERR Wrong password
user1  123456
OK
  1. 如下所示为squid的最终配置文件:
[root@iZ23q9zpdxsZ squid]# vim /etc/squid/squid.conf
#
# Recommended minimum configuration:
#

# Example rule allowing access from your local networks.
# Adapt to list your (internal) IP networks from where browsing
# should be allowed
acl localnet src 10.0.0.0/8     # RFC1918 possible internal network
acl localnet src 172.16.0.0/12  # RFC1918 possible internal network
acl localnet src 192.168.0.0/16 # RFC1918 possible internal network
acl localnet src fc00::/7       # RFC 4193 local private network range
acl localnet src fe80::/10      # RFC 4291 link-local (directly plugged) machines

acl SSL_ports port 443 563
acl Safe_ports port 80          # http
acl Safe_ports port 21          # ftp
acl Safe_ports port 443 563     # https
acl Safe_ports port 70          # gopher
acl Safe_ports port 210         # wais
acl Safe_ports port 1025-65535  # unregistered ports
acl Safe_ports port 280         # http-mgmt
acl Safe_ports port 488         # gss-http
acl Safe_ports port 591         # filemaker
acl Safe_ports port 777         # multiling http
acl CONNECT method CONNECT

#
# Recommended minimum Access Permission configuration:
#
# Deny requests to certain unsafe ports
http_access deny !Safe_ports

# Deny CONNECT to other than secure SSL ports
http_access deny CONNECT !SSL_ports

# Only allow cachemgr access from localhost
http_access allow localhost manager
http_access deny manager

# We strongly recommend the following be uncommented to protect innocent
# web applications running on the proxy server who think the only
# one who can access services on "localhost" is a local user
#http_access deny to_localhost

#
# INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS
#

# Example rule allowing access from your local networks.
# Adapt localnet in the ACL section to list your (internal) IP networks
# from where browsing should be allowed
http_access allow localnet
http_access allow localhost

# authentication
auth_param basic program /usr/lib64/squid/basic_ncsa_auth /etc/squid/squid_passwd
auth_param basic children 5
auth_param basic credentialsttl 2 hours
auth_param basic realm Web proxy server
auth_param basic casesensitive off
acl ncsa_users proxy_auth REQUIRED
http_access allow ncsa_users

# And finally deny all other access to this proxy
http_access deny all
http_port 8888
# https_port 443 cert=/etc/squid/ssl-cert/cert.pem key=/etc/squid/ssl-cert/key.pem

# Uncomment and adjust the following to add a disk cache directory.
#cache_dir ufs /var/spool/squid 100 16 256

# Leave coredumps in the first cache dir
coredump_dir /var/spool/squid

#
# Add any of your own refresh_pattern entries above these.
#
refresh_pattern ^ftp:           1440    20%     10080
refresh_pattern ^gopher:        1440    0%      1440
refresh_pattern -i (/cgi-bin/|?) 0     0%      0
refresh_pattern .               0       20%     4320

参考资料:
http://wiki.squid-cache.org/SquidFaq/BinaryPackages#KnowledgeBase.2FCentOS.Squid-3.5
http://bastengao.com/blog/2015/01/squid-basic-config.html