[tor-project] Tor Browser team meeting notes, 28 Jan 2019

Georg Koppen gk at torproject.org
Tue Jan 29 12:29:00 UTC 2019


Yesterday we had our first weekly meeting adhering to the new meeting
time and location. For those following along at home: from now on we
,meet 1830UTC on Mondays in #tor-meeting2, as the meeting time usually
overlaps with the network team meeting in #tor-meeting.

That said our IRC log got covered by MeetBot as usual and is available at:


Meeting notes from the pad are below:

Monday January 28, 2019
 - planning for next mobile release (GeKo: We try to have TBA-a3 out by
end of Feb, otherwise it's getting too close for the proposed 8.5 stable
release date)

mcs and brade:
    Last week:
        - Code reviews.
        - Revisited #28885 (notify users that update is downloading).
        - Worked on proposal for #28044 (Integrate Tor Launcher into
            - Experimented some more.
            - Draft proposal is nearly ready to share with the team.
    This week:
        - Publish draft proposal for #28044 (Integrate Tor Launcher into
        - Work on #29180 (MAR download stalls when about dialog is opened).
        - Revisit #28885 (notify users that update is downloading).

    Last week:
        - release preparations
        - code reviews (#28885, #27828, #29097, #29143, #12885, #29178,
#26858, #27531, #28705)
        - dealing with last minute release blockers (#29185, #29182, #29179)
        - wrote patch for #29187
        - continued working on mingw-w64/clang toolchain and Firefox
build (#28716 and #28238)
        - started to get back to emails (sorry, tjr, did not get to
yours but they are on top of the stack now)
        - helped with various proposals and sponsor reports (nlnet, otf,
        - sysrqb: sisbell: see comment:14
https://bugzilla.mozilla.org/show_bug.cgi?id=1516642 (I am still
thinking about what to reply, but we might want to do that outside of
that particular bug anyway)

            - sysrqb: (okay, it's only bold here) ack. i wish following
m-c was easier.VV

        - I got inspired over the weekend (and by the discussion on
tbb-dev) and started to look at our updater security. I am in the
process of going over the code and writing a state-of-the-tor
browser-update document. It's a spare time project, so no big promises
so far. Folks interested might enjoy the recent-ish audit of the firefox
updater: https://bugzilla.mozilla.org/attachment.cgi?id=8985197  mcs:
where is the tbb-dev discussion? I missed it somehow. (GeKo: I meant

    This week:
        - release preparations
        - further work on mingw-w64/clang toolchchain
        - getting back Torbutton integration into tor-browser (#10760)
        - trying to figure out #29185
        - more emails
        - more reviews

    Last week:

    - code reviews ( #29082, #21805 )

    - #25658 work (security settings)

    This week:
            - get a #25658 patch up for review

    Last week:
        - reviewed: #28618 #27597 #27503
        - reopened and fixed #29097 (https-everywhere make.sh explicitly
depends on missing python 3.6)
        - updated patch for #29143 (fix build of obfs4 in nightly builds)
        - made patches for:
            - #29158 (Add fix for DSA 4371-1 (apt vulnerability))
            - #29181 (Make it possible to force rebuild of
            - #29178 (Don't build master of goxcrypto, goxnet, uniuri
and go-webrtc)
        - helped build the new releases
    This week:
        - help with publishing the new releases
        - Try to find some fix for #29158 for wheezy-i686 (GeKo: I think
the right thing to do here is not wasting too much time on finding a
workaround for that but fix #26323)
        - continue work on testsuite
        - make patch for #29183 (We are using linux i686 langpacks in
the linux x86_64 builds)
        - work on #25623 (Disable network during build)
        - work on #26323 (Build 32bit Linux bundles on 64bit systems)
        - some reviews: #28716, #28803

    Last week:
        - 28705 and 28814 (Downloading crash, and allow installing
another apk within TB)
        - Investigated mobile build failure after backporting patch
        - More of new bootstrapping UI (#28329) - but still not complete
    This week:
        - TBA release
        - Hopefully complete 28329 branch
        - Maybe fastlane

    Last week:
        -  Updated  #25764 tablet layout
        - Rebased #25764 on top of master
        - Reviewed more tor button tickets
    This week:
        - Send #25764 to review
        - More TBA alpha tickets

    - Roadmapping

    - OTF Proposal (warnings/notifications & new identity)

    - NLNet ESR proposal

    - GSoC investigation

  Last week:
   - Did testing of integrated TOPL.OrbotService code, various bug fixes
and improvements. Everything now working correctly.
   - Opened 10+ issues on TOPL project (GitHub). These are for the
changes we need for integration.
   This Week:
   - Finish TOPL commits to project (by tomorrow latest) and do pull request
   - Create new GitHub project with modified OrbotService
   - Fork Orbit project, integrating TOPL and the OrbotService
   - If time, start on tor-browser-build


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.torproject.org/pipermail/tor-project/attachments/20190129/0f8387e1/attachment.sig>

More information about the tor-project mailing list