=== freeflying_away is now known as freeflying === freeflying is now known as freeflying_away === freeflying_away is now known as freeflying === freeflying is now known as freeflying_away === freeflying_away is now known as freeflying === freeflying is now known as freeflying_away === freeflying_away is now known as freeflying === freeflying is now known as freeflying_away === freeflying_away is now known as freeflying === freeflying is now known as freeflying_away === freeflying_away is now known as freeflying === freeflying is now known as freeflying_away === freeflying_away is now known as freeflying === freeflying is now known as freeflying_away === freeflying_away is now known as freeflying === freeflying is now known as freeflying_away === freeflying_away is now known as freeflying === freeflying is now known as freeflying_away === freeflying_away is now known as freeflying === freeflying is now known as freeflying_away === freeflying_away is now known as freeflying === freeflying is now known as freeflying_away === freeflying_away is now known as freeflying === freeflying is now known as freeflying_away === freeflying_away is now known as freeflying === freeflying is now known as freeflying_away === freeflying_away is now known as freeflying === freeflying is now known as freeflying_away === freeflying_away is now known as freeflying === freeflying is now known as freeflying_away === freeflying_away is now known as freeflying === psivaa is now known as psivaa-lunch === psivaa-lunch is now known as psivaa === JanC_ is now known as JanC === greyback is now known as greyback|rebooty [16:39] \o [16:39] o/ [16:39] hi! [16:39] #startmeeting [16:39] Meeting started Mon Mar 3 16:39:58 2014 UTC. The chair is jdstrand. Information about MeetBot at http://wiki.ubuntu.com/meetingology. [16:39] Available commands: action commands idea info link nick [16:39] The meeting agenda can be found at: [16:39] [LINK] https://wiki.ubuntu.com/SecurityTeam/Meeting [16:39] [TOPIC] Review of any previous action items === meetingology changed the topic of #ubuntu-meeting to: Review of any previous action items [16:40] chrisccoulson send oxide and qtwebkit benchmark results to mailing list [16:40] heh, sorry, i still haven't done that yet. i'll do it later :) [16:40] ok thanks [16:40] [TOPIC] Weekly stand-up report === meetingology changed the topic of #ubuntu-meeting to: Weekly stand-up report [16:40] I'll go first [16:40] I'm on triage [16:40] I have some updates to get to [16:41] I'd like to do some work on click-apparmor to support the newer frameworks (for the upcoming app showdown) [16:42] I need to look over before and after apparmor denials of running all the apps under qt5.0 and qt5.2 and investigate any new denials in 5.2 in preparation for its landing [16:42] oh hrm, were there a lot of them? [16:42] (I've been given the denials, just need to look at the reports, etc) [16:42] I'm not sure [16:43] there were a lot of denials in both that I was a little surprised about [16:43] so, need to take a look [16:43] huh [16:43] apparently the denials are harmless enough, cause there aren't bugs open for what I saw [16:44] ah, good [16:44] like, permy and network access. I think that might be the qt xml trying to do a name lookup or something (maybe for a dtd?) even though it is given a local url [16:44] ie file:// [16:45] interesting [16:45] and I have slightly more inbox catchup to do-- I did pretty well last week, but have a couple things left [16:46] that's it from me [16:46] mdeslaur: you're up [16:46] I'm on community this week [16:46] I'm currently testing python and php5 updates which I'll be releasing today [16:46] there's a new gnutls issue out that I need to prepare updates for [16:46] and the list is growing, so I have to catch up [16:46] friday I'm on patch piloting [16:46] that's it from me [16:46] sbeattie: you're up [16:47] I'm focused on apparmor stuff again this week. [16:48] I helped sarnold dig out some of the issues with the 2.9 snapshot we're trying to land, I think the only thing really remaining is the inability of the new utils to parse dbus rules. [16:48] what is the plan there? [16:48] I'll also be focusing on helping jj test the ipc stuff. [16:49] ignore the rules (like the old tools) or actually parse them? [16:49] tyhicks: I'm trying to come up with a quickish patch to make parse them enough to not drop them. [16:49] nice [16:50] s/make/ [16:50] anyway, that's the big stuff for me this week. [16:50] tyhicks: you're up [16:51] the kernel keyring work took up a little more of my time last week than expected (but I did get the investigation done and a patch sent out) [16:51] so now I'm addressing the final few comments from the dbus-daemon mediation patches review [16:51] after I get that done and resubmitted, I'll switch to kdbus for a day or two [16:52] and then hopefully I have some time to help out sbeattie and sarnold shake out issues with the pending upload [16:52] but it sounds like they may get it done before I can help [16:52] :/ [16:53] I feel bad for leaving some landmines laying around that they've had to deal with [16:53] that's it for me [16:53] jjohansen: you're up [16:53] tyhicks: that keyring patch was for pam? [16:53] jdstrand: it was [16:53] * jdstrand nods [16:53] jdstrand: pam_keyinit [16:53] jdstrand: we' [16:53] jdstrand: we've started to partially use it [16:53] neat [16:54] it is neat [16:54] but it breaks some of the ecryptfs-utils tools [16:54] dhowells has already responded to my patch and I'm working on convincing him of my approach to fix it [16:54] * jjohansen is working on apparmor again this week. primarily ipc kernel issues, and then maybe cross namespace stacking [16:54] * tyhicks is done [16:55] heh, sorry tyhicks /me too the "it is neat" as done [16:55] np :) [16:56] tyhicks: not to worry-- assuming a reactive update or two isn't required first, I know that jjohansen and sbeattie could use some help for the 14.04 deliverables and bug fixes (we always have stuff to do ;) [16:56] oh I suppose I am working with sbeattie on testing the ipc work as well [16:57] yeah jdstrand is right, tyhicks you weren't planning on sleeping this week where you? [16:57] ;) [16:58] heh - it is cold here so long nights indoors won't be too bad [16:58] hehe [16:59] I think that is it for me, sarnold you're up [16:59] it is cold here [16:59] (brrr) [16:59] mdeslaur: I blame you and your Canadian air [17:00] jdstrand: I blame you for global warming :) [17:00] I'm on apparmor packaging again, it feels closer now than before, thanks to some great debugging by jjohansen and sbeattie, I -think- the only remaining problems with the qrt tests are because the new python-based tools fail on the first mention of dbus [17:00] * jdstrand likes being warm [17:00] jdstrand: it'll be nice and warm here once texas is covered in molten lava :) [17:00] while this means e.g. aa-disable foo fails :( I still like these packages more than the old perl-based tools [17:01] I've also got several MIRs still outstanding: juju-core, schroot, strongswan, glusterfs, thermald [17:01] sarnold: where 'foo' is not the path to the file? [17:01] ie aa-disable foo vs aa-disable /etc/apparmor.d/foo [17:02] I'm sorry, I haven't followed the aa-disable issue closely [17:02] the nginx mir made some pretty good leaps forward last week, it's now blocked solely on a nginx module that requires lua 5.1 and would require significant work to work with lua 5.2. I hope someone else will sort that one out, no security impact there anyway.. [17:02] jdstrand: no difference, aa-disable (py version) was reading/parsing all the profiles before doing anything. [17:02] jdstrand: sorry, 'foo' was just a placeholder, it'll fail completely regardless of how you use it [17:02] sarnold, jdstrand: I committed the fix to aa-disable upstream to not do that. [17:02] sbeattie: yay! thanks :) [17:03] (but the rest of the tools still do :( ) [17:03] sbeattie: ah, so it ended up being a dbus parsing casualty as a result? [17:04] jdstrand: yes [17:04] I see [17:05] oh yes, I've also got an internally-requested php module audit to finish. (quite the jarring experience after the nginx code..) [17:05] anyway I think that's me done, chrisccoulson? [17:06] i'm finishing work on our user-agent override mechanism this week, which is quite a big chunk of work [17:06] nice! [17:06] i also reimplemented the script messaging API on the renderer side last week (the original implementation was rushed to get unit tests working), which fixes some bugs: https://code.launchpad.net/~chrisccoulson/oxide/user-scripts-and-messaging-rework [17:07] i guess this week will be more of the same :) [17:07] i think that's me done [17:08] cool [17:09] [TOPIC] Highlighted packages === meetingology changed the topic of #ubuntu-meeting to: Highlighted packages [17:09] The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so. [17:09] See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved. [17:09] http://people.canonical.com/~ubuntu-security/cve/pkg/tinc.html [17:09] http://people.canonical.com/~ubuntu-security/cve/pkg/argyll.html [17:09] http://people.canonical.com/~ubuntu-security/cve/pkg/libipc-pubsub-perl.html [17:09] http://people.canonical.com/~ubuntu-security/cve/pkg/lcgdm.html [17:09] http://people.canonical.com/~ubuntu-security/cve/pkg/9base.html [17:09] [TOPIC] Miscellaneous and Questions === meetingology changed the topic of #ubuntu-meeting to: Miscellaneous and Questions [17:10] Does anyone have any other questions or items to discuss? [17:14] mdeslaur, sbeattie, tyhicks, jjohansen, sarnold, ChrisCoulson: thanks! [17:14] #endmeeting === meetingology changed the topic of #ubuntu-meeting to: Ubuntu Meeting Grounds | Calendar/Scheduled meetings: http://fridge.ubuntu.com/calendar | Logs: https://wiki.ubuntu.com/MeetingLogs | Meetingology documentation: https://wiki.ubuntu.com/meetingology [17:14] Meeting ended Mon Mar 3 17:14:51 2014 UTC. [17:14] Minutes: http://ubottu.com/meetingology/logs/ubuntu-meeting/2014/ubuntu-meeting.2014-03-03-16.39.moin.txt [17:14] thanks jdstrand! [17:14] jdstrand: woot, thanks! [17:14] thanks jdstrand [17:17] thanks jdstrand [20:57] * kees waves "hi" [20:59] mdeslaur, stgraber: it's just the 3 of us so far! :) [20:59] \o [20:59] * stgraber waves [21:01] #startmeeting [21:01] Meeting started Mon Mar 3 21:01:32 2014 UTC. The chair is kees. Information about MeetBot at http://wiki.ubuntu.com/meetingology. [21:01] Available commands: action commands idea info link nick [21:01] so, uhm, just the 3 of us... do we want to go through the agenda anyway? Looks like it hasn't been updated. [21:02] not sure we really have anything to discuss [21:02] yeah, me either. [21:02] mysql MRE, maybe? [21:02] we probably ought to vote on the new LTS flavours though if we don't have quorum, that's not terribly useful [21:02] and I'd be happy to do it on the list [21:02] yeah, that should be on list. [21:02] looks like mysql MRE had enough votes on the list to approve it [21:03] yeah, just noticed that now. [21:03] shortest meeting evar! [21:03] hehe [21:03] yeah, we just need a single +1 for a MRE, so someone just needs to put it on the wiki (either as full MRE or just provisional, whatever seems approperiate) [21:03] no community bugs open. [21:04] FYI, I fully agree with the mysql MRE [21:04] yeah, me too. [21:04] ok. mdeslaur I think you're next to chair? [21:04] fine with me [21:05] excellent. thanks you guys. :) [21:05] #endmeeting === meetingology changed the topic of #ubuntu-meeting to: Ubuntu Meeting Grounds | Calendar/Scheduled meetings: http://fridge.ubuntu.com/calendar | Logs: https://wiki.ubuntu.com/MeetingLogs | Meetingology documentation: https://wiki.ubuntu.com/meetingology [21:05] Meeting ended Mon Mar 3 21:05:34 2014 UTC. [21:05] Minutes: http://ubottu.com/meetingology/logs/ubuntu-meeting/2014/ubuntu-meeting.2014-03-03-21.01.moin.txt [21:05] thanks! [21:05] short and sweet! [21:05] oh, mysql is already in the wiki [21:05] thanks stgraber, kees! [21:05] mdeslaur: yeah, pitti said he was going to add it in his email [21:05] when I have a minute, I'll look at those flavour e-mails and start voting, hopefully the rest will follow and we can get that over with soon enough [21:06] stgraber: cool [21:06] (I wanted to do it before the meeting, but obviously $annoying_bug_of_the_day prevented me from doing it ;)) [21:09] hi all [21:09] hey sabdfl [21:09] hi sabdfl [21:09] hi sabdfl [21:11] thought i'd stop by in case there was any perspective i could provide on init [21:12] don't let me interrupt :) [21:12] sabdfl: meeting is already over -- nothing really to discuss, and only (at the time) 3 of us too. [21:13] ah, ok [21:13] you guys are super-efficient, thank you! [21:13] heh. [21:13] sorry that init has reared its head again in debian [21:14] while i completely understand the concerns, and i think it's naive of russ to wish for "independent implementations of interfaces" when the init they've adopted takes, um, a "whatever" approach to interfaces, it's simply too little too late now