16:02 #startmeeting Weekly Ubuntu Foundations team 16:02 Meeting started Thu Jan 18 16:02:32 2018 UTC. The chair is cyphermox. Information about MeetBot at http://wiki.ubuntu.com/meetingology. 16:02 16:02 Available commands: action commands idea info link nick 16:02 #topic Lightning rounds 16:02 echo $(shuf -e slangasek bdmurray xnox tdaitx doko sil2100 rbalint infinity cyphermox mwhudson rcj philroche Odd_Bloke tribaal fginther juliank) 16:02 fginther sil2100 tribaal mwhudson Odd_Bloke philroche slangasek bdmurray juliank infinity rcj xnox doko rbalint tdaitx cyphermox 16:03 winning! 16:03 * Off Monday 16:03 * Further work publishing images to resolve CVE-2017-5754 16:03 * Dove into how we create and maintain query data for a couple of reviews 16:03 * Investigated a memory issue with some of our jenkins slaves 16:03 Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache. (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5754) 16:03 (done) 16:03 sil2100, your turn 16:03 Oh! 16:04 - Kernel respin SRUs - lots 16:04 - Switching on langpack generation for bionic 16:04 - Regular SRU reviews/releases 16:04 - Improving the kernel-sru-review tool to perform a master-kernel diff if present 16:04 - Implementing and preparing an exclusion list of d-i packages for merge KPIs 16:04 - Familiarizing with the process of system installations through d-i 16:04 - Investigating vt.handoff, trying to fix server netboot installs being crap 16:04 - Some preparations for 16.04.4 (HWE stack shepherding etc.) 16:04 (done) 16:05 tribaal: ? 16:05 I guess tribaal is off sick 16:05 yeah 16:05 He didn't feel too good in the morning 16:05 He's out and Odd_Bloke and mwhudson too. I'll go 16:05 philroche: 16:05 * Meltdown CVE cloud images work 16:05 * Preparation for Spectre CVE 16:06 * Cloud image build system maintenance 16:06 (done) 16:06 bdmurray: next 16:06 been out sick for off and on 16:06 modifications to the mojo spec for the Error Tracker based on reviewer feedback 16:06 set Ubuntu 17.04 to End of Life in meta-release files and Error Tracker 16:06 submitted, tested RT re staging update of errors code in Error Tracker 16:06 replied to MP re the Ubuntu Error Tracker mojo spec 16:06 submitted, tested RT re production update of errors code in Error Tracker 16:06 upgraded desktop to bionic 16:06 investigation into apport bug LP: #1739532 (username scrubbing) 16:06 Launchpad bug 1739532 in apport (Ubuntu) "apport-collect SHOULD prune out /home/%USER/ from JournalErrors" [High,Incomplete] https://launchpad.net/bugs/1739532 16:06 reported apport bug LP: #1743906 after testing 16:06 Launchpad bug 1743906 in Apport "crash reports owned by root not anonymized well" [Undecided,New] https://launchpad.net/bugs/1743906 16:07 done 16:07 juliank: 16:07 since last week: 16:07 * merges (7): ncurses, newt, gpgme1.0, popularity-contest, cryptsetup, xapian-bindings, coreutils 16:07 * sponsors (1): lowmem 16:07 * syncs (3): ipset, libsecret, ndisc6 16:07 * uploads: parted (bug 1737144, forwarded), ubuntu-release-upgrader (bug 1695666) 16:07 * made add-apt-repository run update (review pending) 16:07 bug 1737144 in Ubuntu on IBM z Systems "[18.04 FEAT] Upgrade parted to use latest fdasd/vtoc code base from s390-tools" [High,Fix committed] https://launchpad.net/bugs/1737144 16:07 * apt: added support for inrelease-path for image building (idea cjwatson) 16:07 bug 1695666 in ubuntu-release-upgrader (Ubuntu Artful) "users shoot themselves in the foot by removing /boot/efi from /etc/fstab; u-r-u should warn and refuse to let them upgrade" [High,Triaged] https://launchpad.net/bugs/1695666 16:07 * MoM: merged a patch, and trying to fix it to not apply patches (https://code.launchpad.net/~juliank/merge-o-matic/skip-patches/+merge/336267) 16:07 * multipath-tools situation is starting to clear up, gotta figure out if we want 0.7.4 or not (SUSE does not, thinks it might be to unstable), and auto discovery 16:07 plans: 16:07 * more merges (zsh, wpa) 16:07 * finalize multipath-tools 16:07 * ??? 16:07 * apt automatic safe-autoremoval for kernel and oldlib or stuff 16:07 (done) 16:07 infinity does not seem here 16:07 juliank: yay for wpa 16:07 * Off Monday 16:07 * Continued publication work for CVE-2017-5754 (Meltdown) 16:07 Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache. (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5754) 16:07 * Code reviews 16:07 * Shut down Zesty cloud-image build environment 16:07 (done) 16:08 Did a few merges; Merged openssl; Almost done with plymouth merge, loving hidpi. (done) 16:08 Yay for plymouth 16:08 doko: ? 16:08 doko is out, i think 16:08 is on vac 16:08 ? 16:09 ah 16:09 rbalint: your turn then 16:09 (short week) 16:09 * Debian uploads: 16:09 - wireshark new upstream, fixing old behaviour of enabling BPF JIT which 16:09 possibly made systems vulnerable to some Spectre exploit variants 16:09 * nfs-utils: upload to fix lintian error + LP: #1709129 16:09 Launchpad bug 1709129 in nfs-utils (Ubuntu) "Please drop patch 20-ticket-expired-error.patch" [Low,Confirmed] https://launchpad.net/bugs/1709129 16:09 * update-manager & ubuntu-release-upgrader: 16:09 - refined fix for LP: #1732185 + SRUs 16:09 Launchpad bug 1732185 in update-manager (Ubuntu Artful) "do-release-upgrade crashed with SIGSEGV under wayland" [Critical,Fix committed] https://launchpad.net/bugs/1732185 16:09 - further update-manager fixes including LP: #1624644 which is in progress 16:09 Launchpad bug 1624644 in update-manager (Ubuntu Artful) "By default settings unattended-upgrade does not automatically remove packages that become unused in conjunction with updating by other software" [Undecided,In progress] https://launchpad.net/bugs/1624644 16:09 * uploaded merges: 16:09 - procps 16:09 - sudo 16:09 (done) 16:09 tdaitx: ? 16:10 Short(ish) week: working half days past week 16:10 * OpenJDK 8 & 9 security updates (ongoing tests + verifying test results) 16:10 * Backporting OpenJDK 8 security updates to OpenJDK 7 16:10 (done) 16:10 - debug captive portal DNS issues caused by EDNS0 fail (bug LP: #1727237) 16:10 - snap MIR doc 16:10 Launchpad bug 1727237 in systemd (Ubuntu Bionic) "systemd-resolved is not finding a domain" [High,Triaged] https://launchpad.net/bugs/1727237 16:10 - shim SRUs, grub updates for Mok/fb binaries renamed 16:10 - discussed grub-installer splash/quiet/handoff with Lukasz 16:10 - netplan: rework CLI command parsing to extend for the next features 16:10 - netplan: improving on routes configuration 16:10 (done) 16:11 should we do the tracking bugs? since half of the time isn't there... 16:11 bdmurray: what do you think? 16:11 s/time/team/ 16:11 cyphermox: I think we can pass 16:12 HIGHLIGHT: Follow https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/SpectreAndMeltdown for up-to-date information regarding Spectre and Meltdown issues 16:12 rcj: thanks 16:12 #topic AOB 16:12 is there AOB? 16:12 Not from me 16:13 alrighty 16:13 thanks all! 16:13 #endmeeting