. '''To Software [[Software|Software]]''' - '''To Software-Assessment [[Software/Assessment|Software/Assessment]]''' - '''To [[Software/Assessment/20120529-S-A-MiniTOP|previous meeting]]''' - '''To [[Software/Assessment/20120612-S-A-MiniTOP|next meeting]]''' ---- = Minutes of the MiniTOP on the 2012-06-05 = == Setting == The MiniTOP will be held via telco 22:00 CEST Attendees: dirk, marcus, uli, michael == Topics == (skip to [[#AGENDA|agenda]]) Action items from last meeting '''[[Software/Assessment/ActionItems|Meeting Action Items]]''' <> <> == Agenda == ## last full agenda https://wiki.cacert.org/Software/Assessment/20120228-S-A-MiniTOP === 1. Preface === 1. dirk topics 1. Cebit brainstorming * dirk: request for events report * (2012-03-27) Marcus awaiting translation from Marc * (2012-04-03) Marcus will do upcoming (easter) weekend * (2012-04-17) no update * (2012-04-24) no update * (2012-05-29) no update, uli: marcus please translate by yourself 1. Marcus bugs list * [[https://bugs.cacert.org/view.php?id=1023|bug#1023]] related * [[https://bugs.cacert.org/view.php?id=583|bug#583]], [[https://bugs.cacert.org/view.php?id=648|bug#648]], [[https://bugs.cacert.org/view.php?id=802|bug#802]], [[https://bugs.cacert.org/view.php?id=870|bug#870]], [[https://bugs.cacert.org/view.php?id=914|bug#914]], [[https://bugs.cacert.org/view.php?id=930|bug#930]], [[https://bugs.cacert.org/view.php?id=931|bug#931]], [[https://bugs.cacert.org/view.php?id=998|bug#998]], [[https://bugs.cacert.org/view.php?id=1000|bug#1000]] * Others * [[https://bugs.cacert.org/view.php?id=118|bug#118]], [[https://bugs.cacert.org/view.php?id=428|bug#428]], [[https://bugs.cacert.org/view.php?id=489|bug#489]], [[https://bugs.cacert.org/view.php?id=567|bug#567]], [[https://bugs.cacert.org/view.php?id=767|bug#767]] === 2. bug #1023 Testing (6.php) === 1. Thawte points removal, final step * relates to 6.php * this also relates to TTP * dirk will work on this last weekend (2012-01-21) * current state: not yet finished * expected finishing? upcoming weekend (2012-01-23 to 2012-01-30) * not finished, upcoming weekend 2012-02-06? * not finished, last weekend 2012-03-12? * 2012-03-13: new bug#1023 [[https://bugs.cacert.org/view.php?id=1023|bug#1023]] * transfered to git cacert * to test: * assure someone * w/ and w/o ttp * in all variations * Added to testserver Tue 13.3., Wed 14.3. || dirk || [[https://bugs.cacert.org/view.php?id=1023|bug #1023]] Consolidate changes into the Assure Someone page || 6.php global re-design project<
>assurance, wot area (Thawte points removal effective) || {0} || * current state: patch removed from testserver, needs work (DEV) * (2012-03-27) back on testserver: bug #1023 (6.php), has a bug, needs work * 2 new bugs within meeting 2012-03-27 * (2012-04-03) bugs analyze, empty results analyse, new patch transfered to testserver * current state 2012-04-17 {{{ * dirk: didn't we concluded 14 days ago, that the current patch state is the revision similar on the production system * potential bugs on production system can be identified against wot.php on testserver (-> diff wot.php, if no difference bugs are also in production system) * Michael: diff is empty, this means wot.php is identical between production and testserver * Michael: didn't pushed one patch, as it has at least one error * Michael: fix and push to git / testserver, patch is transfered to testserver * testing: failures occured * last time we've added method transfer * if board=1, method empty -> results in garbage in database * new bug, that methods aren't checked that needs to be checked [[https://bugs.cacert.org/view.php?id=1032|bug#1032]] * req by Marcus to add maxpoints limit definition: 35 assurance points (by AP) in a f2f meeting, upto 50 assurance points possible though a subpolicy (currently none available), new bug [[https://bugs.cacert.org/view.php?id=1033|bug#1033]] }}} * #1033 passed to production * 2012-04-24: 2nd review by neo [[https://bugs.cacert.org/view.php?id=1023|bug #1023]] (6.php) (next time) * 2012-05-05: dirk_: @neo ... is the review of 6.php done? / NEOatNHNG: almost * bug #1023 Testing (6.php) 1. did some test and fixed small remaining bugs (removed dropdown for method when only assuer, new text for the date field as it is now prefilled with the actual date if started for the first time in a session) 1. magu and marcus tested the last version, patch ready to review by dirk and deploy to production 1. while testing on the bug we discovered a strage behavior of the WebDB and filed a dispute to this matter. ||<#ff8080> '''blocker''' || * dirk: finished, later there was one text correction, not yet reviewed by dirk * text change breaks translations * dirk: diff since last week is ok, 2nd review ok * to michael: please transfer * patch transfered to production system 2012-05-30 1. what are the next steps for thawte points revoke? * points settings codes eg 50 pts open gpg/pgp, which certs avail by how many pts * 15.php needs rename to 10.php === 3. 2nd review of about 6 patches === ||<#ff8080> '''Software-Assessors task''' || 1. [[https://bugs.cacert.org/view.php?id=789|bug #789]] OA edit domain fix, Editing domain for organisations does not work<
>new update 2011-09-26<
>2 tests, needs 2nd review, deploy<
>more fixes, more testing * 2nd review of 1 patch * Michael cannot do, needs doing by dirk (or other Software-Assessor, who else?) 1. [[https://bugs.cacert.org/view.php?id=978|bug #978]] bug 978 (weak keys) (bug 918) * invalid key format, no regular error message, something wrong, error code # identified * debugging infos from user + infos from critical team with error code #, was spkac routine * one test done 2011-12-17 by JensK * uli, marcus: more tests: certs routine, weak keys (small keys test), relates to [[https://bugs.cacert.org/view.php?id=540|bug#540]] tests * (week 7) 1. [[https://bugs.cacert.org/view.php?id=540|bug#540]] No key usage attribute in cacert org certs anymore? * also: [[https://bugs.cacert.org/view.php?id=905|bug#905]] * Policy group discussion - Extended key usage -> [[PolicyDecisions#p20111113|p20111113]], motion CARRIED * deployment 1. prepare fixes -> Michael to prepare diffs, against svn 1. sending to testserver 1. transfer to critical system * (2011-12-13) approx 2 weeks to write the fix, approx 2 months to go * Michael did transfer the patch to testserver * signer code update * changes against svn * uli, to add to tester portal, done * uli to inform testers about new tests * test report from kenneth to transfer to report (email from 2011-12-25) * Michael: where to find the report from kenneth? link? * NEO has added the report (written to private dl) * who has adobe 8 for testing? * magu has, please test * next: needs testing (week 6) * uli, marcus: needs full cert create tests * uli (2012-01-25): sent notification to software testers * awaiting testing ... problem FULL test, including all possible variations with certs creation * also to report under [[https://bugs.cacert.org/view.php?id=978|bug #978]] bug 978 (weak keys) (bug 918) * Testers: test all certs veriations, functions || neo || [[https://bugs.cacert.org/view.php?id=1024|bug #1024]] Assurer flag is not set correctly on updatesort.php run || tested by 4, ok || 1 {0} || || uli || [[https://bugs.cacert.org/view.php?id=967|bug #967]] OA isassurer check || Give an OA the opportunity to check if a designated Organisation Administrator is a CAcert assurer || 2 {0} || || Michael || [[https://bugs.cacert.org/view.php?id=540|bug #540]] || p20111113 CPS #7.1.2 "Certificate Extensions" adjustments - testing<
>uli, marcus: needs full cert create tests<
>duplicate report to bug#978 || 3 {0} || || inopiae || [[https://bugs.cacert.org/view.php?id=981|bug #981]] OA overview (dupe of [[https://bugs.cacert.org/view.php?id=943|bug #943]]) || New layout of view for Organisation Administrators in account/id35 || 4 {0} || || neo || [[https://bugs.cacert.org/view.php?id=978|bug #978]] Invalid SPKAC requests are not properly validated || recheck full certs signing procedures<
>duplicate report to bug#540 || 5 {0} || || uli, ted || [[https://bugs.cacert.org/view.php?id=789|bug #789]] OA edit domain fix || Editing domain for organisations does not work<
>new update 2011-09-26<
>2 tests, needs 2nd review, deploy<
>more fixes, more testing || 6 {0} || === 4. Permissions Review === 1. dispute cases * new bug: [[https://bugs.cacert.org/view.php?id=1038|bug #1038]] Provide a script for board/tverify reset flags by arbitration a20110118.1 * re [[https://bugs.cacert.org/view.php?id=1003|bug #1003]] Permissions review script, to incorporate new intermediate ruling 1. Permissions review and revoke of board and tverify flag ([[https://bugs.cacert.org/view.php?id=1003|bug #1003]] and [[https://bugs.cacert.org/view.php?id=1038|bug #1038]]) . Michael run the permission preview script. After finding some formating stuff and fixing it, the script was run a second time. . Afterwards Michael run the script revoke of board and tverify flag. The executing report was added as private to [[https://bugs.cacert.org/view.php?id=1003|bug #1003]] . All tester please review your flags and mails on the test server and report ONLY in [[https://bugs.cacert.org/view.php?id=1003|bug #1003]]. 1. fix available, tested, next run close before * last run: 2012-03-30, next run 2012-06-30 * to dirk: 2nd review [[https://bugs.cacert.org/view.php?id=1003|bug#1003]] === 5. Marcus Bugs list === * [[https://bugs.cacert.org/view.php?id=1023|bug#1023]] related * [[https://bugs.cacert.org/view.php?id=583|bug#583]] "Assure Somebody" allows future assurance dates * [[https://bugs.cacert.org/view.php?id=648|bug#648]] send message from Assurer to Member * [[https://bugs.cacert.org/view.php?id=802|bug#802]] Name parts should be designated in assurance form * [[https://bugs.cacert.org/view.php?id=870|bug#870]] My Details - My Points show bugus time stamp * [[https://bugs.cacert.org/view.php?id=914|bug#914]] Information about Practice on Name while entering an Assurance * [[https://bugs.cacert.org/view.php?id=930|bug#930]] types wrong points in "Assure Someone" form * [[https://bugs.cacert.org/view.php?id=931|bug#931]] Date of assurance in future don't throw any exception * [[https://bugs.cacert.org/view.php?id=998|bug#998]] When entering an assurance in the WoT one line of the form the suffix is given in another line the suffix is missing. * [[https://bugs.cacert.org/view.php?id=1000|bug#1000]] Entering an assurance into the system after searching for an assurer causes a pre-filled location field * Others * [[https://bugs.cacert.org/view.php?id=118|bug#118]] Secure TTP Form upload - outdated, conflicts with new procedure, closed * [[https://bugs.cacert.org/view.php?id=428|bug#428]] Reminder language-drop-down-box doesn't keep "English" if you choose it again - cannot be reproduced, tested by 2, closed * [[https://bugs.cacert.org/view.php?id=489|bug#489]] Pb on rewarding 2 points for an assurance * [[https://bugs.cacert.org/view.php?id=567|bug#567]] case sensitive email: tested by 2, cannot be confirmed, closed * [[https://bugs.cacert.org/view.php?id=767|bug#767]] Single-quotes escaped in Web-of-Trust contact form. * see also [[Software/BugsOverview]] === 6. second testserver? === * a request received the team to deploy a 2nd testserver with software state identical to the production system so testers can compare current state on production with the revision on testserver 1 === 7. Pootle Updates === * a request received the team to update translations on a regular basis * proposal by Wytze: send request for an update with the new patches transfer === 8. next meeting === * Tuesday, June 12th, 2012 22:00 CEST == Minutes == 1. CCA Patches * update from dirk, patch written back in 2009, somewhere on a backup disk 1. Cebit brainstorming * (2012-05-29) no update, uli: marcus please translate by yourself * (2012-06-05) no update 1. bug #1023 Testing (6.php) * had gone to production 1. Pootle Updates * a request received the team to update translations on a regular basis * proposal by Wytze: send request for an update with the new patches transfer * how to get an account on pootle? * create an account (unmoderated) * diff handling * currently short on resources, lang maintener not avail 1. Permissions Review * fix available, tested, next run close before * last run: 2012-03-30, next run 2012-06-30 * to dirk: 2nd review [[https://bugs.cacert.org/view.php?id=1003|bug#1003]] 1. Black Jack coding * Michael: keygen .. contacted MS 1. second testserver? * a request received the team to deploy a 2nd testserver with software state identical to the production system so testers can compare current state on production with the revision on testserver 1 * local testserver, not every tester has a local image * duplication impossible, no further ip's avail * vhost impossible as vhosting was disabled 1. [[https://bugs.cacert.org/view.php?id=1068|bug#1068]] blog problem (also relates to community) * debian lenny - edge - squeeze upgrades needed * alternate: new server with squeeze, install wordpress, transfer domain * workaround: configure your FF [[FAQ/BrowserClients]] 1. Permissions Review, 2nd review part 2 * (23:40) to dirk: 2nd review [[https://bugs.cacert.org/view.php?id=1003|bug#1003]] * dirk: review looks ok * has been tested on testserver, on local testserver by Michael * good to go * part 1: recuring script, ok * part 2: permission reset, notification of users missing ==== Fixed Action Items since last or within meeting ==== || dirk || [[https://bugs.cacert.org/view.php?id=1023|bug #1023]] Consolidate changes into the Assure Someone page || 6.php global re-design project<
>assurance, wot area (Thawte points removal effective) || {g} || ==== Action Items New ==== Action items: '''[[Software/Assessment/ActionItems|Meeting Action Items]]''' ---- . CategorySoftwareAssessment