#ubuntu-meeting log

16:34 <jdstrand> #startmeeting
16:34 <meetingology> Meeting started Mon Apr 14 16:34:34 2014 UTC.  The chair is jdstrand. Information about MeetBot at http://wiki.ubuntu.com/meetingology.
16:34 <meetingology> 
16:34 <meetingology> Available commands: action commands idea info link nick
16:34 <jdstrand> The meeting agenda can be found at:
16:34 <jdstrand> [LINK] https://wiki.ubuntu.com/SecurityTeam/Meeting
16:34 <jdstrand> [TOPIC] Announcements
16:34 <jdstrand> Thanks to Patrik Lundin (patrik-lundin) provided debdiffs for lucid-precise for OpenAFS (LP: #1305807). Your work is very much appreciated and will keep Ubuntu users secure. Great job! :)
16:34 <ubottu> Launchpad bug 1305807 in openafs (Ubuntu) "DSA-2899-1 openafs -- security update" [Undecided,Fix released] https://launchpad.net/bugs/1305807
16:35 <jdstrand> [TOPIC] Weekly stand-up report
16:35 <jdstrand> I'll go first
16:35 <jdstrand> I've got a short week this week (off friday) and next (off monday)
16:35 <jdstrand> I'm on triage this week
16:35 <jdstrand> I'd like to finish up install testing. I did desktop and server already and filed a couple of bugs
16:36 <jdstrand> still going through touch
16:36 <jdstrand> I'd like to take a look at scopes confinement
16:36 <jdstrand> and get to some updates
16:36 <jdstrand> mdeslaur: you're up
16:36 <mdeslaur> I'm on community this week
16:36 <mdeslaur> I'm off on monday also
16:37 <mdeslaur> I'm working on the usual CVE updates
16:37 <mdeslaur> that's pretty much it for me, sbeattie, you're up
16:37 <sbeattie> I'm focused on apparmor again this week.
16:37 <sbeattie> I'm still trying to wrap up my review of jjohansen's patches
16:38 <sbeattie> as well as writing and doing some additional tests
16:38 <sbeattie> I need to shave some yaks and upgrade a couple of my secondary systems to trusty
16:39 <sbeattie> That's pretty much it for me; tyhicks, you're up
16:40 <tyhicks> I didn't get to iterate on the aa.py patches last week, so I've still got to do that
16:41 <tyhicks> I was just reminded that I need to respin the patches in the upstream dbus-daemon AA mediation bug after some feedback I received
16:41 <tyhicks> after that, I need to take a look at my work items and sync up w/ mdeslaur
16:41 <jdstrand> wasn't there kdbus stuff from a bit back?
16:42 <tyhicks> jdstrand: ah, yes! that'll be what I focus on
16:42 <tyhicks> thanks
16:42 <tyhicks> that's it for me
16:42 <tyhicks> jjohansen: you're up
16:44 <jjohansen> I'm working on apparmor this week. I need to finish up the backport kernels for ubuntu touch, and finish up with several bugs lp1306804, two refcount bugs, a pivot_root bug, as well as kick out a new iteration of patches for review
16:44 <jdstrand> jjohansen: which kernels are you doing?
16:45 <jjohansen> jdstrand: for the backport?
16:45 <jdstrand> yeah
16:45 <jjohansen> jdstrand: atm 3.4 mako/manta but will also need to do flo
16:45 <jjohansen> after that we can see
16:46 <jdstrand> grouper might be interesting since several people on the team have it
16:46 <jjohansen> yeah
16:46 <jdstrand> unity hasn't run super great on it, but I noticed that is is actually useful if you clear out /var/crash/* and kill any running apports
16:47 <jdstrand> not saying it is a high priority though. it isn't for me know that I have flo
16:48 <jdstrand> jjohansen: oh, goldfish too-- that probably is a high priority
16:48 <jdstrand> s/know/now/
16:48 <jjohansen> jdstrand: your the only one on the team
16:48 <jdstrand> with flo?
16:48 <jjohansen> jdstrand: yeah goldfish too
16:49 <jdstrand> (fyi, my flo is my personal device that I dual boot)
16:49 <jjohansen> jdstrand: basically those 4 are all the same backport for apparmor
16:49 <jdstrand> oh goldfish is with the others?
16:49 <jdstrand> I either forgot or never knew that :)
16:49 <mdeslaur> what's goldfish?
16:49 <jjohansen> emulator
16:49 <jdstrand> emulator
16:49 <mdeslaur> oh
16:50 <sarnold> do we have a handy table somewhere to convert these names into what they actually are?
16:51 <mdeslaur> sarnold: I'm making one right now
16:51 <jjohansen> sarnold: hrmm, I'm not sure we do for all of them, there is https://wiki.ubuntu.com/Touch/Devices for the earlier ones
16:51 <tyhicks> https://wiki.ubuntu.com/Touch/Install#Supported_devices_and_codenames
16:51 <mdeslaur> sarnold: before insanity sets in
16:51 <sarnold> yay
16:52 <mdeslaur> oh, well, there you go
16:52 <mdeslaur> except for goldfish they're all there
16:52 <jjohansen> anyways thats it for me sarnold you are up
16:52 <sarnold> I'm in my happy place this week
16:52 <sarnold> which this week means apparmor patch review
16:52 <sarnold> I'm finished with all the MIRs for trusty :)
16:53 <mdeslaur> \o/
16:53 <sbeattie> yay
16:53 * jjohansen is not sure that is such a happy place, but is glad sarnold is a masochist
16:53 <sarnold> yeah :) \o/ indeed :)
16:53 <sarnold> but it'll be nice to reduce the number of not-checked-in patches for apparmor, so hooray
16:54 <sarnold> that's me done, chrisccoulson?
16:54 <chrisccoulson> hi :)
16:54 <chrisccoulson> this week, i've got a chromium update
16:55 <chrisccoulson> and i'm also currently investigating getting hangouts working in oxide (requires support for ppapi plugins)
16:56 <chrisccoulson> other than that, it's business as usual :)
16:56 <jdstrand> chrisccoulson: we already have those security updates in oxide 501, correct?
16:57 <chrisccoulson> jdstrand, we're based on the dev channel, so I guess so. things are going to be a bit confusing until we're on the stable channel
16:57 <jdstrand> chrisccoulson: yeah, you've got the plan to get there though. I forget when you said we'd be on stable...
16:58 <chrisccoulson> i'm going to aim to branch for beta at the next chromium release. i think that's realistic now
16:58 <chrisccoulson> so that would mean we'd be on stable within the next 2 releases
16:58 <chrisccoulson> ie, by chromium 36
16:58 <chrisccoulson> (we're on 34 now)
16:59 <jdstrand> is that ~4 weeks?
17:00 <chrisccoulson> it's a bit longer than that. the releases seem to be ~6 weeks
17:00 <chrisccoulson> when do we do 14.04.1?
17:01 <jdstrand> ah
17:01 <jdstrand> ok
17:01 <jdstrand> I couldn't remember if the major release was 2 weeks or 6
17:02 <chrisccoulson> so, 12.04.1 was in august
17:03 <jdstrand> that's fine
17:03 <chrisccoulson> we can be on a stable channel quite a way before then :)
17:03 * jdstrand nods
17:03 <jdstrand> I'm not worried, I just couldn't remember the timing
17:03 <mdeslaur> what's special about 14.04.1?
17:03 <chrisccoulson> i'll send an e-mail later so everybody is aware, but I think the aim should be that we branch on the next chromium release (~5-6 weeks from now)
17:03 <jdstrand> mdeslaur: its when precise users get the update-manager recommendation to upgrade
17:04 <mdeslaur> jdstrand: I know what it is, I just don't know why that has anything to do with oxide
17:04 <jdstrand> webapp-container is used on the desktop
17:04 <jdstrand> installed by default and uses oxide
17:04 <mdeslaur> o_O?
17:05 <mdeslaur> where?
17:05 <jdstrand> webapps
17:05 <jdstrand> this is so we don't need all the special code in firefox and chromium that was so brittle and either broke or blocked the updates
17:05 <mdeslaur> wow
17:06 <jdstrand> (this was the webapps' team plan for the 14.04 dev cycle all along)
17:06 <jdstrand> it's in an image near you right now :)
17:06 <mdeslaur> ok, hah, well it instantly segfaults for me in 14.04
17:06 <jdstrand> uh
17:06 <chrisccoulson> oh :/
17:06 <jdstrand> it should not. are you up to date? please file a bug
17:07 <jdstrand> 1.0.0~bzr501-0ubuntu1 is the latest
17:07 <mdeslaur> does it require 3d?
17:08 <mdeslaur> it explodes in a vm, but not on my main desktop
17:08 <chrisccoulson> aha, qtquick requires a GL api
17:08 <mdeslaur> ah, ok, it segfaults because it doesn't have enough ram
17:09 <mdeslaur> bumping up the ram in the vm fixed it
17:11 <mdeslaur> jdstrand, chrisccoulson: sorry for interrupting, please continue
17:11 <chrisccoulson> oh, I think I'm done now anyway :)
17:11 <jdstrand> [TOPIC] Highlighted packages
17:11 <jdstrand> The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so.
17:12 <jdstrand> See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved.
17:12 <jdstrand> http://people.canonical.com/~ubuntu-security/cve/pkg/pywbem.html
17:12 <jdstrand> http://people.canonical.com/~ubuntu-security/cve/pkg/php-radius.html
17:12 <jdstrand> http://people.canonical.com/~ubuntu-security/cve/pkg/ibm-3270.html
17:12 <jdstrand> http://people.canonical.com/~ubuntu-security/cve/pkg/tpp.html
17:12 <jdstrand> http://people.canonical.com/~ubuntu-security/cve/pkg/ltp.html
17:12 <jdstrand> [TOPIC] Miscellaneous and Questions
17:12 <jdstrand> Does anyone have any other questions or items to discuss?
17:25 <jdstrand> mdeslaur, sbeattie, tyhicks, jjohansen, sarnold, ChrisCoulson: thanks!
17:25 <jdstrand> #endmeeting