=== ChanServ changed the topic of #ubuntu-uds-client-1 to: Currently no events are active in this room - http://summit.ubuntu.com/uds-1311/client-1/ - http://irclogs.ubuntu.com/2013/11/19/%23ubuntu-uds-client-1.html
=== ChanServ changed the topic of #ubuntu-uds-client-1 to: Track: Client | Settings panels for Ubuntu Touch | Url: http://summit.ubuntu.com/uds-1311/meeting/22083/client-s-system-settings-panels/
loolseb128: (settings things up?)15:06
seb128lool, yeah, start broadcast now15:06
Laneyo hai15:06
seb128ok, we are on15:07
seb128for the video15:07
seb128https://plus.google.com/hangouts/_/76cpi5e1q127qe0elqtkkts9ls?authuser=0 for the hangout15:07
kenvandinepad isn't connecting for me15:07
loolworks here, albeit it's empty15:07
seb128http://pad.ubuntu.com/ep/pad/view/uds-1311-client-s-system-settings-panels for the notes (if it works, I get an error atm)15:07
seb128https://blueprints.launchpad.net/ubuntu/+spec/client-s-system-settings-panels for the blueprint15:08
loolI'm pink today15:08
tedglool, It's a very pretty pink.15:08
alecu etherpad fails for me too15:08
loolwhat happens when one switches between apps with side stage?15:10
attentecan't login to the hangout :S15:11
seb128attente, why not?15:11
lool(sorry, previous question was ECHAN)15:12
looltedg: Sounds too advanced to me15:13
looltedg: in terms of user experience15:13
tedglool, It's okay, you don't have to use it.  ;-)15:14
loolit will clutter settings though15:14
LaneyTrust In Mpt15:14
tedglool, It's not the default, it's more the "I screwed up and want to reset"15:14
loolthere is nothing like this in android or ios15:14
tedglool, Hoping it's going to be in a panel instead of it's own.15:14
ralsina_Is there any plan for being able to go from a app to settings (via a settings URL) and then go back to the app?15:14
tedglool, Yes there is, preferred apps on Android15:14
gatoxQUESTION: <ralsina_> Is there any plan for being able to go from a app to settings (via a settings URL) and then go back to the app?15:15
looltedg: I only found a "reset preferred apps" button15:15
loolit's well hidden indeed15:15
looltedg: use case for going back to the app is click scope installing a package after you add your U1 account15:16
ralsina_we open the panel from the dash :-)15:16
loolseb128: what happens is that you get to the main settings15:17
loolrather than going back to where you came from15:17
loolkenvandine: Yeah15:17
tedglool, I don't think it's something we need to make easy, just something we need to make possible.15:17
alecuQUESTION: does this work too if system settings is already open?15:17
alecu(opening a given setting page)15:18
Laneyas of today ;-)15:20
ralsina_QUESTION: mardy, we are launching it from the dash, so modality is confsing at least until the dash is "just another app" in the future15:21
jdstrandtedg: there is a bug for that and a plan15:21
tedgjdstrand, And a prayer?  ;-)15:22
jdstrandtedg: bug #123009115:22
udsbotuUbuntu bug 1230091 in unity-mir "[enhancement] Window reparenting (required for appstore app trust model)" [High,Triaged] https://launchpad.net/bugs/123009115:22
jdstrandlet me find the bp...15:23
jdstrandtedg: https://blueprints.launchpad.net/ubuntu/+spec/client-1311-trust-store-and-sessions. session later today15:24
alecuLaney: this is when doing app purchases from a preview in the dash15:24
tedgjdstrand, Interesting, I don't know why that needs XEmbed or reparenting...  seems it can use system dialogs.15:24
jdstrandI am the wrong person to talk to about that15:25
jdstrandtvoss_ gave a presentation on his ideas. I think he is going to go over it in the session15:25
tvoss_jdstrand, o/15:25
mdeslaurQUESTION: any plans on making the icons interactive, so clicks actually look like they worked?15:25
tedgjdstrand, Oh, cool.  It's fun to yell at tvoss_! ;-)15:25
jdstrandtvoss_: hi! :)15:25
jdstrandtvoss_: I was talking up your session later today :)15:26
attentei did something with the display languages panel before where there was an activity indicator there15:26
tvoss_jdstrand, \o/15:26
tvoss_jdstrand, kenvandine just to make sure: no xembed :)15:26
tvoss_or mirembed15:26
kenvandinetvoss_, indeed15:27
mdeslaurcool, thanks15:28
cyphermoxseb128: at the very least the timing for the tests shows up in jenkins, sometimes15:30
seb128cyphermox, thanks15:32
LaneyI was thinking that it has a test for opening each panel15:33
Laneyso it could record how long that takes15:33
JackYuseb128, is there any part of this project that Ubuntu Kylin can join?15:34
seb128JackYu, do you have any specific topic/panel/setting in mind?15:36
JackYuseb128, not yet. We want to join first:)15:37
JackYusure, thanks. I think this a interesting work.15:38
seb128JackYu, you are welcome to join, we have lot of workitems aligned, if you want to take with any feel free, just check with us first to make sure we don't dup work15:38
JackYuseb128, I see. Thanks.15:39
LaneyMaybe try it out in Chinese and find all of the bugs that none of us have seen yet :-)15:40
seb128thanks everyone15:40
JackYuLaney, yep, that should be the first step.15:41
Laneylike I'm pretty sure the list of cities in the timezone selector never gets translated15:41
Laneyno idea how you'd even fix that15:41
JackYuLaney, :)15:43
=== ChanServ changed the topic of #ubuntu-uds-client-1 to: Track: Client | User data encryption requirements and work for 14.04 | Url: http://summit.ubuntu.com/uds-1311/meeting/22061/client-1311-user-data-encryption/
seb128jdstrand, mdeslaur, sbeattie: https://plus.google.com/hangouts/_/7ecpi5pr9tj3nrh2h513kh3srg?authuser=016:02
mdeslaurseb128: thanks16:03
jdstrandmterry: https://plus.google.com/hangouts/_/7ecpi5pr9tj3nrh2h513kh3srg?authuser=016:03
seb128^ live stream16:05
looltyhicks: ecryptfs seems to have a different performance profile too16:09
looltyhicks: like, listing files in a directory, or closing a file might be more expensive operations16:09
qenghoComparing no crypto, whole-disk, and per-user-home, what is I/O cost like?16:10
ritzthe  /boot is not encrypted , afaik . wrt full disk encryption16:10
ritz android offers two mode - full disk, and user data only16:10
ritz atleast samsung does16:10
ritzrelated - https://bugs.launchpad.net/ubuntu/+source/plymouth/+bug/123900416:12
loolxnox, seb128: Sorry, would you mind relaying the performance question?16:12
udsbotuLaunchpad bug 1239004 in plymouth (Ubuntu) "plymouth doesn't support touch screens - Cannot enter full disk encryption passphrase on Lenovo Helix in tablet mode" [Wishlist,Confirmed]16:12
xnoxqengho: there is a hit, but it's symetric encryption so the overhead is linear.16:12
xnoxqengho: it's not significant 1-2% CPU on my laptop. and I use it to compile software just fine.16:13
looljdstrand: it's actually harmful to encrypt the read-only part as the contents are well known this makes the encryption weaker16:13
qenghoxnox: i'd expect disk to be much slower than CPU and so CPU isn't really a factor, but perhaps there are size changes or a problem in suboptimal block sizes that aren't knowable at install time.16:14
xnoxqengho: there is no size change.16:14
ritzlvm resize on live volume might break system16:17
ritzso, ro for converged devices. Do we update in "boot mode", or remount with rw to update16:19
neupucenihi to all16:33
qenghoFor a encrypted device and no user has logged in, we need to store incoming events and inject them into the user's data when she first logs in.  Getting a SMS should go into a black box.  Taking a photo should be visible now, and then be stored. An incoming call gets no CID lookup, but goes into the call log later.16:35
slangasekjdstrand: hey, so the other session ended early, I could join the hangout if you want me in there16:38
xnoxslangasek: https://plus.google.com/hangouts/_/7ecpi5pr9tj3nrh2h513kh3srg?authuser=016:38
xnoxslangasek: was the other session bootsplash?16:38
slangasekit was short, we didn't have people available to speak to the Mir system compositor side16:39
xnoxslangasek: any summary? will we have a point to unlock ecrypted partitions?16:40
xnoxslangasek: ah =(16:40
slangasekwhich partitions are you encrypting? :)16:40
slangasekare you encrypting the root partition?16:40
xnoxslangasek: depends which ones we can unlock =)16:40
slangasekand, we don't really have provisions for plymouth touch support16:40
xnoxslangasek: right, and mir will start from root partition?16:40
rsalvetixnox: I think encryption in touch would probably be part of the root fs as well, right?16:41
slangasekso currently, to avoid putting the system compositor + plymouth in the initramfs (where we may have space limitations), we're currently planning to have it only in the rootfs, and have low-battery mode boot to the rootfs with a different initial event (à la friendly-recovery)16:41
rsalvetiyou want a proper UI, virtual keyboard and such to be able to do something16:42
xnoxrsalveti: crazy idea - use NFC token which emits the unlock password (e.g. YubiKey NEO) - or use camera to take & decode QR code to input a secure long password.16:43
xnoxrsalveti: touch keyboard sucks to type 64 character long password.16:44
rsalvetixnox: haha, right, that is a developer oriented feature, clearly :-)16:47
rsalvetiit's cool, but we need something more human friendly :-)16:47
xnoxrsalveti: is NFC token not friendly? =(16:48
jdstrandtyhicks: fyi, I tried to take notes in the etherpad16:48
tyhicksjdstrand: I noticed half way through - thank you!16:49
rsalvetixnox: well, guess that depends, but I never encrypted my phone to see how that is handled currently16:50
rsalvetibut I'd guess it just encrypts a part of the system16:50
rsalvetias our rootfs will be ro anyway (in the touch case), seems that requesting input after unity8 is up is fair (login screen?)16:51
xnoxrsalveti: sure.16:51
xnoxrsalveti: unless somebody pushes out customized RO image with private/corporate stuff.16:51
=== cyphermox_ is now known as cyphermox
=== ChanServ changed the topic of #ubuntu-uds-client-1 to: Currently no events are active in this room - http://summit.ubuntu.com/uds-1311/client-1/ - http://irclogs.ubuntu.com/2013/11/19/%23ubuntu-uds-client-1.html
=== ChanServ changed the topic of #ubuntu-uds-client-1 to: Track: Client | Ubuntu Trust Store & Trusted Interactions | Url: http://summit.ubuntu.com/uds-1311/meeting/22059/client-1311-trust-store-and-sessions/
tvoss_seb128, r u the session lead?18:59
seb128tvoss_, no, I'm hosting the hangout but I've no clue about the topic19:01
tvoss_seb128, ah okay :) I guess I'm asking for the hangout link :)19:01
seb128tvoss_, starting it, one min19:01
tvoss_seb128, cool19:01
seb128tvoss_, https://plus.google.com/hangouts/_/72cpj8vicba1srt47kotesqh7c?authuser=019:02
seb128kenvandine, ^19:02
tvoss_mdeslaur, ^19:02
seb128kenvandine, sorry, I assumed you wanted to join that one, maybe not ;-)19:03
kenvandinei do19:03
kenvandinebe right there19:03
seb128tedg, ^?19:04
tedgI was watching.19:04
tedgNot sure I'm needed on the hangout19:05
kenvandinetedg, come on...  you can sing19:05
tedgI don't own a scarf, I can't be on a hangout with tvoss_19:05
tvoss_tedg, come on19:06
tvoss_tedg, https://plus.google.com/hangouts/_/72cpj8vicba1srt47kotesqh7c?authuser=019:06
kenvandinewe'll forgive you from not having a scarf19:06
tedgHeh, okay.19:06
jdstrandI asked jj to join the fishbowl19:06
seb128^ streaming19:06
jdstrandjjohansen: mdeslaur is describing the concept of trusted helpers19:09
zygaQUESTION (just feel free to answer when there is a time for that), will the policykit model be usable on the touch security model? can we still use pkexec to elevate permissions? etc. Thanks19:09
jdstrandcan people not hear me?19:17
mdeslaurjdstrand: you're muted19:17
mdeslaurzyga: not for confined apps, no19:18
jdstrandI wasn't before19:18
jdstrandI think I worked it out. we'll see19:18
mdeslaurzyga: well, actually, yes...for permissions but not for auth prompts19:18
zygamdeslaur: so a confined app won't be able to talk to something else using dbus and get that thing to ask policykit questions?19:18
mdeslaurzyga: confined apps have a limited set of stuff they can access using dbus19:19
mdeslaurzyga: I don't think anything uses policykit auth currently19:19
mdeslaurzyga: I don't expect that to work19:19
mdeslaurzyga: do you have a specific case or example?19:20
zygamdeslaur: so desktop apps that currently use that will start to fail19:20
mdeslaurdesktop apps aren't confined currently19:20
zygamdeslaur: I mean, assuming I get to run something like udisks on my converged phone/tablet/desktop, wanting to format a disk I have just plugged into my device19:20
zygamdeslaur: sure but I expect them to be sooner than later19:20
zygamdeslaur: I'm looking for pointers on how app developers that rely on that now are supposed to migrate (or if they should migrate in the first place)19:21
mdeslaurzyga: I don't have an answer for that right now...I assume formatting a device won't be allowed from apps, but only from a system element19:30
jdstrandtvoss_: fyi https://wiki.ubuntu.com/SecurityAndPrivacySettings19:30
zygamdeslaur: essentially it seems just like asking for the location service, it's doing a special operation that is granted through policykit as an untrusted app, the same way that gnome-disks can be rewritten to have different look and feel but still talk to udisks over dbus, and get udisks to use policykit to either grant or not, access to certain operations19:33
zygamdeslaur: I would expect to have a clear policy on how this is going to work in the convergence story, breaking that model would be rather scary as lots of stuff just uses it now, today, and if we expect to keep using it we need a plan on how that works in the touch model19:34
mdeslaurzyga: yes, we'll definitely think about this and have a clear policy once we start thinking about the converged devices19:35
* zyga doesn't understand why we're doing something different form what policykit provides now, with regards to UI interaction s19:35
mdeslaurzyga: but policykit isn't appropriate for performing security decisions based on applications within the user's session19:35
mdeslaurzyga: that's not what policykit does19:35
zygamdeslaur: what do you mean by that?19:35
mdeslaurpolicykit is for user apps talking to system-level apps19:36
zygamdeslaur: right19:36
mdeslaurthat's not what we're doing here19:36
mdeslaurthis is all running _inside_ the user's session19:36
zygamdeslaur: how is talking to the location service not just exactly like that?19:36
zygajdstrand: ah19:36
zygamdeslaur: ah19:36
mdeslaurbecause the location service is a daemon runnin in the user's session19:36
zygamdeslaur: and running as the same UID?19:36
zygamdeslaur: why is that?19:37
zygamdeslaur: why isn't the location service something that runs as a dedicated daemon/19:37
zygamdeslaur: I agree that for talking between apps inside the session policykit makes no sense19:37
tedgzyga, For instance, it could need a user account to get data.  i.e. a Yahoo or Google account.19:37
zygamdeslaur: but the example that was given so far made this confusing19:37
zygaah, right19:37
mdeslaurzyga: yes, the location service is a weird example19:38
zygayeah, that makes sense19:38
zygabut still it could be a multi-tier thing19:38
zygaone that only has access to the hardware, another that runs as the user that, for example, has all the credentials and history, and lastly apps, but this is not something that policykit could solve by itself19:38
zygaIDEA: maybe all of the ui interactions could be delegated to modular trusted applications, so the shell or mir won't care about location service prompts, the location service "app" will19:40
zygathis way all the future cases could be handled consistently19:40
tvoss_zyga, that's exactly the idea here19:49
zyganot sure how this fits the conversation19:51
zygaon android you see more and more apps that request every possible permission you can think of19:52
zygabecause instead of passing on to another activity to perform some operation19:52
zygathey instead want to perform that themselves so that they have more consistent UI (maybe?)19:52
zygaand the result is that the user has dozens of apps that can access stuff that should ideally be only handled by system-level, trusted, open source software19:53
zygais there anything we can do to not repeat that problem19:53
mdeslaurthat's exactly what we're trying to prevent. Apps won't be allowed to access stuff directly, they will only be able to access trusted helpers19:53
mdeslaurapps won't be able to access the gps directly, they can only query the location service19:54
mdeslaurand the location service itself will do the user prompts19:54
mdeslaurusing the library/service we're developing19:54
mdeslaurthat library/service will ensure the user interface for prompting is consistent19:54
zygaif an app can "load contacts" vs "pick one contact" then the security feature is basically lost, it's about preventing a class of data theft apps that hide under simple toys with manifests that grant them permissions users don't understand19:54
kenvandinemardy, ^^19:54
mardykenvandine: thanks19:55
mdeslaurzyga: apps can't access contacts. the only thing they can do is ask the system to ask the user to pick a contact19:55
mdeslaurat which point the app gets a single contact19:55
zygamdeslaur: that's good to hear!19:55
zygaquick question19:56
zygawill all of this still work if we choose to implement html5 mobile phone APIs?19:56
tvoss_zyga, sure, it comes down to wiring up the runtime correctly19:57
tvoss_runtime = web runtime19:57
=== ChanServ changed the topic of #ubuntu-uds-client-1 to: Currently no events are active in this room - http://summit.ubuntu.com/uds-1311/client-1/ - http://irclogs.ubuntu.com/2013/11/19/%23ubuntu-uds-client-1.html
=== alex-abreu is now known as alex-abreu|afk

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!