15:01 #startmeeting Foundations team meeting 15:01 Meeting started Thu Aug 28 15:01:39 2014 UTC. The chair is stgraber. Information about MeetBot at http://wiki.ubuntu.com/meetingology. 15:01 15:01 Available commands: action commands idea info link nick 15:01 #topic Round table 15:02 since I'm ready anyway, I'll start 15:02 I was in Chicago last week (Tuesday to Saturday): 15:02 - Presented user namespaces at the Linux Security Summit with hallyn 15:02 - Gave a talk on running your own Internet at LinuxCon North America 15:02 - Ran a container hackfest on the Friday 15:02 15:02 Serge and I had a lot of good discussions with various kernel and userspace 15:02 developers around container security, userspace improvement and new use cases. 15:02 I also found the time to attend a few talks on other container projects (we had 15:02 a whole track dedicated to containers this time around) and some other topics I 15:02 had an interest into like btrfs. 15:02 15:02 During some of the spare time and the hackfest, we mostly focused on: 15:02 - Kernel and userspace fixes/workarounds for a recent regression introduced by 15:02 the latest kernel security update (breaking nested unprivileged containers). 15:02 - Some cgmanager debugging for random crashes and for a race on the phone. 15:02 - Discussed the new LXC command line tool and worked on it a bit. 15:03 - Started working on lxcfs, a fuse filesystem that exposes cpuinf, meminfo and 15:03 stat with the values coming from the cgroup limits. 15:03 - Started looking at cgmanagerfs, a fuse filesystem simulating the cgroup 15:03 hierarchy based on what cgmanager tells it, allowing for safe unprivileged 15:03 cgroup operations. 15:03 - Unprivileged fuse mounts, Seth has been reworking his patchset. 15:03 - Went through a bunch of upstream bug reports and fixed a bunch. 15:03 - Discussed using seccomp as a way to catch mount() and do userspace handling 15:03 of it (so we can do policy checks in userspace and fake mounts). 15:03 - Granite (LXC for OpenStack) work, including a bunch of upstream changes to 15:03 support unprivileged containers joining an openvswtich bridge. 15:03 - Checkpoint and restart with CRIU, went through the patchset from tych0 a few 15:03 times and eventually merged it upstream! 15:03 - Had some chats with the Akamai, Heroku, Parallels, Docker.io and Google 15:03 folks in attendance. 15:03 15:03 We had about 20 people attending the hackfest, a bunch from Canonical (Serge, 15:03 Seth, Chuck, Tycho and myself), one from Akamai (our lxc-go maintainer), one 15:03 from Heroku, a bunch from Google (3-4), a bunch from Docker (3-4), a couple 15:03 from Parallels and a few other just dropping in here and there. 15:03 15:03 15:04 After getting back, I've been doing: 15:04 - Some more LXC cleanups, merges, reviews, ... 15:04 - Setup system-image for Ubuntu RTM 15:04 - Running 14.10 beta-1 15:04 - Prepared and attended a whole bunch of LXC/container related meetings 15:04 15:04 Please note that I won't be around on Monday as it's labour day in the US and 15:04 Canada and I'll also be without Internet since I'm doing a partial move (work 15:04 equipment only) this weekend. I'll be working from my new place starting on 15:04 Tuesday and then moving over there for good the Saturday after that. 15:04 15:04 (DONE) 15:04 then let's make it jodh and caribou 15:04 * misc: 15:04 - Short week - only 2 days due to bank holiday and time off! :-) 15:04 * upstart: 15:04 - Continuing to investigate bug 1357252 which seems to be the result 15:04 bug 1357252 in cgmanager (Ubuntu) "systemd-shim fails to handle cgmanager being unavailable" [Undecided,Fix released] https://launchpad.net/bugs/1357252 15:04 of multiple races in various parts of the system :-) 15:04 - Currently reworking code hallyn whipped up to resolve this. 15:04 - Wrote script to reboot device until command fails: 15:04 http://people.canonical.com/~jhunt/scripts/adb-reboot-until-true.sh 15:04 𝀷 15:05 * DMB application for PPU rights postponed due missed quorum (debconf) 15:05 * Overhaul of packaging workflow for sosreport : started to use git.dpm 15:05 * Made sosreport available for Precise, Trusty & Utopic in PPA 15:05 * Misc SRU work 15:05 (done) 15:07 #topic AOB 15:07 wait i'm here 15:07 just up 15:07 #topic Round table (continued) 15:07 robru: go ahead :) 15:08 * fixed queuebot for RTM bugs 15:08 * fixed citrain dashboard for RTM bugs 15:08 * fixed a bunch of citrain RTM bugs ;-) 15:09 * wrote a script to automate copying utopic packages into RTM silos 15:09 * RTM, RTM, RTM 15:09 * optimized some NFSS graphing logic 15:09 * 10 bajillion citrain landings. 15:09 (done) ;-) 15:11 stgraber: ok I gotta run. thanks! 15:11 #topic AOB 15:12 anyone has anything to talk about or should we make that one of our shortest meetings ever and adjourn? :) 15:12 nothing on my side 15:13 ditto 15:14 #endmeeting