Yet Another Boring Development Blog

Adding Basic Japanese Visemes to Avatars for VRChat

Colin — Sat, 28 May 2022 22:15:03 GMT

A lot of avatar bases are sold primarily to English speaking audiences, and may not support Japanese visemes for natural things like speech using the JA locale, or worlds that rely on these blendshapes to animate your character for you (such as MMD worlds.)

Getting Started: What You Will Need

A fully rigged 3D model or premade avatar base ready for VRChat
Blender 2.93
CATS plugin for Blender
PumkinsAvatarTools for Unity
The proper version of Unity for your avatar/VRChat
Roughly 30 minutes

Why Blender 2.93?

Blender version 2.93 is a LTS release of Blender that still uses Python 3.9 which does not contain some regression bugs that break CATS's FBX exporting tools. If you downloaded Blender via Steam, you can right click on it in your Game Library and select Properties and then Betas. From here you can specify which release to use (2.93 - Stable - LTS)

If you have a different version that you know works with CATS's FBX exporting tooling, feel free to use that instead. I'm not a cop.

Installing the Plugins

CATS

Open Blender and navigate to the Edit menu, and then click Preferences. Once your preferences window opens, navigate to Add-ons and click Install. Point Blender to your downloaded .zip file. Once installed, ensure that CATS is enabled. It should pop up on the right hand menu of the default scene view (with the cube.) If it doesn't appear, look for an arrow to click to expand it.

PumkinsAvatarTools

Download the .unitypackage and import it into your project. You're done! If you have an older copy from before PhysBones, you'll probably want to update it.

Editing the Model

Once you've got your environment set up, you're ready to begin. Import your model's mesh (probably in the form of an .fbx file) into Blender. If it's an FBX, it will look something like File > Import > FBX. You can delete the default cube, light, and camera.
You'll need to navigate through the Armature (located at the top right of the default view), and into the Body in order to expose the Object Data Properties menu (the green upside-down triangle.) Once you're there, expand the Shape Keys.

An imported model and its Shape Keys

All of your Shape Keys should have their value set to 0 before proceeding. If you're familiar with Blend Shapes, we're duplicating the standard vowel Blend Shapes into new ones that the game can recognize. Select the Shape Key you wish to duplicate and set the value to 1 so that it's "on". Once you've done that, click the downward arrow below the minus button. This will open a menu where you can select New Shape from Mix. Refer to the following table for a list of what to duplicate, and what to name them. Remember! Once you make a new Shape Key, ensure you set the values back to 0!

As someone who doesn't regularly use Blender, finding the New Shape from Mix button took a little more time than I would have liked, so I'm including it here as well.

Setting the weight of a Shape Key to 1

Shape Key to Duplicate	New Name
vrc.v_aa	あ
vrc.v_ih	え
vrc.v_oh	お
vrc.v_ou	う
vrc.v_nn	ん
vrc.v_ee (optional)	い

You may have noticed that this is not nearly all of the visemes that are available. We're being lazy in this because the Japanese language mostly follows the Consonant, Vowel pattern for its letters. Why put in ra ri re ro rou when a i e o ou works the same? I'm sure there's a good reason to, I just don't know enough to tell you with confidence in a random blog post.

Exporting

CATS makes exporting easy. Just expand the CATS menu, click "Export Model" (if it complains about material slots, just click "Continue to Export"), and save it somewhere. That's it! You're done!

Unity – Applying Your New Mesh

If you're feeling cozy with your model, you can just drag in the new Mesh to your project and set it up as normal.

For those of us who aren't super comfy, there's PumkinsAvatarTools.
The first step is to show the PumkinsAvatarTools menu which can be done by clicking Pumkin up at the top bar, Tools, and then Avatar Tools. Go ahead and dock this where it's comfy for you. Drag in your new mesh into the world, and then into where it says "Avatar" in Pumkin's Tools. Expand the "Copy Components" accordion, and drag your working avatar (the one that's using your old mesh, the one without the new visemes) into the Copy From field.

Pumkin's Avatar Tools

It's up to your discretion to make sure that everything transfers over properly. I've personally had problems where it's added a duplicate FX layer to the avatar, but it's a simple fix. Make sure that you hit "Select All" (or whatever's appropriate) and that if you have complex PhysBones interactions that you ensure that that transfers properly. Once your avatar is back up and running and ready to go with your new mesh, congratulations! You're all set to test in an MMD world. If It worked, you're all set :)

My Server

Colin — Tue, 05 Nov 2019 01:13:32 GMT

On November 3, 2019, at about 11:34PM, I did something difficult that by all accounts should have been easy. I shut down a server one last time. It's uptime was over 2 years strong, and had been in service for over 4. It didn't have a name.

It's tradition with ships to give them a name. Usually it's something poetic or meaningful. The Nora II was the name of a childhood friend's dad's boat. When I asked him about it, he just shrugged and said that he had named her after his wife. Something poetic, so that he could be with his wife even when he was out at sea. I imagine with servers, though not exactly seafaring, there is a similar sentiment.

My friend Eric named his server NACL, to go with his elements naming scheme. He hosts projects and gaming servers on there. Something poetic, where the server is the salt it provides.

My current server hosting this document is named Driftmetal, after Astral Driftmetal from Dungeons and Dragons lore. Astral Driftmetal is said to be completely effective against incorporeal attacks. Something poetic, to represent its hardened nature.

This server did not have a name. It's hostname was the site it was serving at the time, and I always referred to it as just "my server". Because that's what it was. My server.

It was the first time that I had set one up myself. Initially I was using some random free web hosting. You would connect via ftp and upload your document, after a five minute delay your site was live. Eric found out about this and let me borrow some space on his server. He did it as payment for a joke article about why cake is better than pie, but I'm pretty sure the real reason was that he felt sorry for me.

It wasn't long until I was hosting my content on a Shared Hosting plan from Cloud9. It was something simple, and exactly what I needed at the time to start my journey proper into web development. They were great to host with, as long as I only needed cPanel and phpMyAdmin. The customer service was always quick and friendly, and they gave me access to set up my own MySQL databases. I later found out that this was a paid feature that they had just tacked onto my account for free, because I had asked nicely.

But I wanted more.

I thought it would be impressive if I set up my own server from the ground up, and that it would be an excellent learning opportunity. So I did.

It started its service without fanfare. I signed up for a VPS with a whopping 25gb storage and 1gb ram, sporting 1 virtual core cpu in some random datacenter in New York. I didn't christen it with a name; after all it was my server. I set up nginx (at the time, not realizing the benefits over Apache, I just didn't want to use Apache again...) and moved all my content over. And so began its work.

It hosted my website through several iterations, my stupid projects like tracking where I was at any given point in time on a map (yeah, who thought this was a good idea? Oh...) or an icecast for hosting D&D, hosting files I wanted to send to friends, compiling C++ code for school projects and assignments, chat servers, my mail and my calendars... Hell, it even hosted a self encrypting diary at one point. There was no sense of segregation. There was no sense of set purpose. After all, it was my server.

Time progressed and I started needing more than that 1GB/1 core beast. I moved across the country, and location started impacting latency. Not by much, mind you, but having a server that's 3,000 miles away won't do. The song and dance started again, and a fancy new server named Driftmetal in San Francisco would be my workhorse. Services were slowly moved from NY to SF, until eventually only one remained. Yesterday that service was transferred away from me, and the NY server sat, for the first time in four years, idle.

It was finally time to take a rest.

I poked around the contents of the filesystem one last time. I found old projects, emails, notes to myself about how to update certificates and what commands to use to start what services. There was a program to find the greatest common denominator in a file "assignment3.cpp" in a random directory where it most certainly shouldn't have been. I found the first iteration of my website, where I introduced myself and was still a bright-eyed not-yet-clinically-depressed high schooler who was ready to compose video game music and work for a game company, or make websites for people. Projects I made in classes when I should have been paying attention. Files I remember writing in Latin class, outside the band room, and in English class... My server was a time capsule, containing memories of slacking off and doing the things I loved doing in places I shouldn't have been doing them.

It's kind of spooky looking into your past. A lot changes in ten years. I had wondered what I was going to do, what kind of jobs I would have – I had no idea then that I would write contracts and develop websites for other businesses on freelance, or that I would be hired somewhere far away for my programming skills, or that I would become an experienced service technician, or that I could even sustain myself financially by making websites. Little Colin, trying to make some text scroll in an element it shouldn't while not listening about Robert Frost, had no idea.

I got a lot from that low-powered virtual machine. Depending on your worldview, it's either comforting or concerning that somewhere, deep in a world of server racks, sits who we were and who we dreamed we'd be.

I never gave it a name, and it may seem silly to write an retrospective for a QEMU instance, but it was important to me and I'm glad that it gave me the opportunities that it did.

Wherever those 1's and 0's are now... Thank you, take a rest – You've more than earned it.

Pretty Good Privacy

Colin — Fri, 21 Oct 2016 12:00:00 GMT

A quick look into the world of PGP

Public Keys

You can think of public keys like a jewellery box with an automatic lock that you can share with your friends. You give your friends this box and, after confirming with you and only you that you are the owner of that box, they begin to put things in it. This is basically what is happening with PGP encryption. Your public key is the key you give out to everyone. People encrypt files using your public key (placing files in the box), and send you those encrypted files. Once they encrypt the files using your public key (closing the lid on the box), only the person with the associated private key can decrypt that file, or open the box. You can upload your keys to a public "keyserver" which will allow others to "sign" and verify the integrity of your key.

Private Keys

Private keys go hand in hand with public keys. For every public key, there is at least one associated private key. Never hand out your private key. Ever. To anyone. Your private key is yours and yours alone as it is associated with your person and your person only. When you create your public key, your private key is generated. You should keep this file in a safe place, away from any online sources. Make backups of your private key on flash drives and/or compact disks. A common practice is to print out a QR code of your private key, however this is unadvised due to the legal technicalities that can ensue resulting in the seizure or spread of your private key. If your private key is compromised in any way, you may generate a revocation certificate that, when uploaded to a keyserver, will inform any user attempting to encrypt using your public key that your key is no longer secure. Only your private key can generate this certificate.

History

PGP actually had kind of a dark past. It was essentially born when Zimmermann discovered that most people had all their files out in the open - it wasn't safe. There was no real way of knowing if who you were talking to was really that person. In 1991 he created a system that did just that. Thus we have "Pretty Good Privacy", a method of encryption that's based mostly on trust and backed by reliability. It worked off of an algorithm he had designed himself, "BassOmatic", and each non-commercial copy of PGP shipped with a complete copy of the source code.

Everything was going well for a while. PGP left the US borders, gaining worldwide popularity - which was a problem. Cryptography was (and still is) a grey area in US law, and having a key that was larger than 40 bits was considered illegal by the United States. PGP uses keys that are larger than 128 bits. Zimmermann was put on trial for "munitions export without a license". Munitions being defined as guns, explosives, other weapons, and software. After years of trials, the case was finally closed with no charges.

Funny enough, Zimmermann thought of a way around getting charged with violating anything "munitions" again by publishing the source code. For $60 you can buy the source to PGP in a hardcover book, shipped anywhere around the world. This made his work protected under the United State's first amendment.

Uses and Practicality

There are many uses for PGP. Whether you just want to ensure your safety amongst friends and family, or if you're hiding yourself from third parties peeking over your shoulder, PGP is a good way to keep yourself safe. Some very common mediums for PGP include emails, instant messaging, message boards, and even pen and paper! No matter how you're sharing, you can have peace of mind that what you're making is only going to be seen by you and its intended recipient.

With the use of GUI applications such as Cryptophane (for Windows), PGP has become easier than ever to use. It's as simple as selecting the name of the person, and typing in your message. Many popular mail applications, such as Mozilla Thunderbird and Flipdog's MailDroid will automatically use your keys to protect your messages from being intercepted.

It's Summer, So Don't Forget That SPF!

Colin — Sat, 22 Aug 2015 16:23:00 GMT

Summer, the slow season for many administrative offices, leaves little to do for the general tech-support employees. Some might argue that we're really working at all. Now, when I say this, I don't mean it as an across the board comment. Of course there are many IT professionals working their asses off as you read this, making sure that everything works smoothly the first time. Though for me personally, summer means waiting for the next user error to pop up in our ticket feed. Exciting, right?

It being so slow I started to really think about what I had done with my professional career and how it could be expanded upon. Trying out the whole system admin thing has been fun, but it's not like I really have much to monitor. With that in mind, I started reading about other admins, which lead to reading about other systems, which lead to reading about Google, which lead to reading about security, which lead to reading about how we don't really have all that much control over what we use on a daily basis. It suddenly clicked why so many corporations use in-house services instead of just pre-setup services like Gmail and Comcast mail.

The thing is, we don't have control over what we use. We don't own our email. If someone acquires your email password and reads your mail, you're not protected under the federal law that says it's a felony to open others mail without express permission. If you house your email in-house and someone hacks in, you can still legally protect yourself because hacking into an unauthorized system is itself illegal. (Disclaimer- I am not a lawyer, take everything I say with three grains of salt)

This whole time I've been using other people's systems. These were free services, such as Gmail and cpanel (which, to be fair, was forced unto me by my old server hoster, which I no longer use (we good!)). I figured, if I encrypted my emails using PGP that that would be enough. What if, though, they got hacked?

Don't get me wrong, there's no one I trust more to keep my data safe than Google. A company that big could not afford to get hacked, because they're seen as the giant in the industry, the biggest. They could make companies disappear overnight if they wanted to, and I'm convinced that the only reason they're not evil is because they're already making so much money. But what if they did? What if Google was compromised and my data leaked and placed out on the web like you see with minecraft accounts every other week? What could I do about that?

Nothing.

I'm not trying to say that free email accounts are insecure and you shouldn't use them. Am I going to stop using my three gmail accounts? No. No I am not. I love my gmail accounts and they are my babies. What I'm saying is, maybe it wouldn't be too bad to have my own mail server. One I set up and have complete control over.

So with the help of a few reference here and there, and a lot of help from my good friend Eric, I set out to do what many have so fervently claimed to be "the worst part." And you know what? It wasn't so bad. Eric explained to me that you can't just set up a server and call it a day. In fact, he got on my ass about my SPF records on my other domains – to which I asked – "SPF, like the sunscreen?"

This is the part of the post where I take a step back and say that without my friends I would be nowhere. Eric has taught me so much about numerous different fields of computers. He got me into researching PGP, secure web development, preventing SQL injection, in-house solutions which lead me to researching more and eventually contributing to FOSS - he really is one intelligent guy and if you have a minute go check out his stuff.

To my understanding, there are four parts of having a secure mail server in terms of not becoming susceptible to spam, and to my surprise they all have to do with DNS. You have your SPF, your DKIM, and your DMARC; all of these are TXT records in your zone file. Then you have your MX record, which just lists the mail server address on the domain. Still with me? Good, let's break it down some more.

MX

If I send an email to "colin@colind.me", my mail server will reach out and look at the DNS records for colind.me. From there it will check the Mail Exchange (MX) record to see where exactly it should be sending the mail. In my case, the MX record was just colind.me. 1800 IN MX 10 mail.colind.me., and was definitely the easiest and fastest part of the setup. Breaking that down further, it's the domain, the TTL is 30 minutes (1800 seconds), and the MX is located at mail.colind.me with the priority of 10.

SPF

The Sender Policy Framework record is there to specify who can send mail from that domain. The best policy if you only have one domain is probably "v=spf1 mx -all". v=spf1 just means it's declaring the TXT record as an SPF record. mx is taking the place of a server – it's saying that only the MX record holders can send out mail. Alternatively, you can declare a server using ipv4:40.50.60.70 replacing the IP with your own server address, of course. ipv6: also works here. The -all just means that no one else can send mail from this domain.

DKIM

DomainKeys Identified Mail are how your recipients know that what you're sending them is legitimate. The DKIM record is there to provide authenticity and verification that the mail being sent out is actually from you. Your outgoing mail is signed using keys that are also placed in your DNS via a TXT record. They look something like mail._domainkey.colind.me 1800 IN TXT "v=DKIM1; k=rsa; p=reallylongkey" in your zone file. It's similar to how PGP works; mail gets signed, dns checks it – if it passes, it says so in the header, if it fails, it says dkim=failed in the header. This is important, but it doesn't really do anything without probably the most important record...

DMARC

Setting up DMARC (Domain Message Authentication Reporting & Conformance) was the part that gave me the most trouble solely because of lack of extensive documentation and full examples. I recommend using a DMARC generator instead of writing one yourself. DMARC tells your mail client what to do with the email if it has failed the previous checks. It absolutely needs SPF and DKIM set in order to work. If you have your DMARC policy (p) set to quarantine (for a total of p=quarantine), then your receiver is going to put that forged message into their Spam folder. I think that dmarc.org explains it easily in their overview flowmap. Using DMARC, you can have reports sent to you, the postmaster, using rua=mailto:. The difference between rua and ruf (both standard switches) is that rua is reporting uri aggregates and ruf is reporting aggregate forensics. What confused me the most about DMARC though is the name. In the end, I ended up getting it to work by setting it to _dmarc.colind.me. IN TXT ... - it's seriously easier and faster to use a generator for this one.

By now I've explained what everything does and how it works as far as setting up the DNS end of the mail server. As far as the software went, I used postfix to host the actual mail server itself, and dovecot is working with it to actually integrate with mail clients such as Thunderbird and Outlook etc. Postfix itself is working with linux's accounts (/etc/passwd) to provide an inbox to every user that hosts an account on that machine - in my case, my server. In addition to this, it uses the machine's aliases (/etc/aliases) to set up "fake" email addresses that will get forwarded to another address. For example, one of the required addresses is "postmaster", which will get forwarded to "root" by default. I don't have a postmaster account on the server, and it's bad practice to use the root email. What you do in this case is forward your root email to you. So at the end of the day your server's aliases might end up looking like mine and having:

postmaster:root
root:colin

Adding aliases is as easy as editing this file and running sudo newaliases. Dovecot on the other hand was a little bit more of a headache for me, which is odd because it's supposedly the other way around. The lesson I learned that way is that sometimes you shouldn't copy the documentation word for word. Every system is different and should be configured to work best with that setup.

After I added in all the proper elements - email was finally working. I could send it, but my test emails still weren't being recieved. Something wasn't right. I was wondering what it was until I finally gave up and asked for help. Glitch (again, see how helpful he is?) said it might have something to do with the fact that I'm not being fully authenticated. Lo-and-behold, I wasn't being marked as an "authenticated" sender. This was patched up with an SSL certificate, which was probably the easiest part to install. All that needed to be done was to change the reference in the dovecot and postfix config files and restart the services with sudo service postfix reload && service dovecot reload. With that, everything was working.

Update 1/29/2019:

I still recommend that everyone at least try to set up a mail server at least once. It's a really informative process that takes a lot of the mystery out of how email works. However, if it's an email address you plan to be using for important contacts, bills, or any other kind of communique that requires consistency, I recommend having either a dedicated server with a failover policy for it, or entrusting the hosting and setup to a third party with a fleshed-out contract and a plan in place for if the worst occurs.

VTHacks: 2014

Colin — Tue, 22 Apr 2014 13:53:00 GMT

After a twelve hour drive, we finally made it to Virginia Tech. The way up was riddled with chats about what hack we were going to do and how we would incorporate what technologies into it.

My teammate and I decided to make an Android app while we were there. It would be weather-based, and it would be a small daily tool. Thus the idea for Weather Squid was born.

When we actually got to Virginia Tech, there was a lot of issues with the Wifi which halted our development process by a full two hours. They promised that we would have gigabit wifi and would be among "600+ hackers", neither of which was the case. I'd wager that there was a maximum of 200 people (that's me being generous with numbers, there) in that room with us. That's counting the people that left, too.

In the end, the award ceremony consisted of a team that made a product called "LockBox" that won literally every award. Oh, and two middle-school students got a pat on the back for "never giving up once during the entire hackathon". They weren't even allowed to be there because high school students were allowed on a case-by-case with special exceptions... A lot of us were perplexed and/or disappointed. We had seen them playing LoL, and a lot of us worked non-stop, with out only breaks being short and to keep our sanity or while our code was compiling.

Overall the experience was enjoyable and I would consider going back again. Plus I got to see one of my good friends again. I like going to hackathons. They're tons of fun.

Information about WeatherSquid will be posted, and we plan to move forward with the development process. Just... maybe after a little break from programming for 36 hours straight.

Update:
We never did move forward with development, and the team eventually drifted our separate ways. Unfortunately, this means the end of Weather Squid.

Hack FSU: 2014

Colin — Fri, 11 Apr 2014 08:03:00 GMT

I had never been to a "hackathon", so I didn't really know what to expect. To say the least, I was surprised at how well put together it was and how much fun the event as a whole was. It was my first hackathon, and it definitely won't be my last.

When I walked into the Dirac Science Library to participate, there was an Oculus Rift dev-kit and a 3D printer just chilling there. I mean, come on - I could hardly contain my excitement. Almost immediately I was approached by a man I would later come to know as Yuhui, and was asked if I was interested in joining their team. Him, Eric, and Neely helped me have one of the most intense and unforgettable nights of my life.

In just twenty-four hours, we came together and pooled our resources to make a working prototype of a website called Learn In Groups, a social media for studying. We joked and worked together, and we made a presentable product in just a day. It was amazing.

I hope to continue development on this site with the rest of the team, as I'm sure it can turn into something big with all the love that we've put into it. We can do it - we've come this far, so what's stopping us?

It was my first time at a hackathon, specifically at Hack FSU, but it certainly won't be my last. I think I found my new favourite social thing to do.