== Meeting information == * #ubuntu-meeting Meeting, 26 Feb at 16:33 — 16:53 UTC * Full logs at [[http://ubottu.com/meetingology/logs/ubuntu-meeting/2018/ubuntu-meeting.2018-02-26-16.33.log.html]] == Meeting summary == ''LINK:'' https://wiki.ubuntu.com/SecurityTeam/Meeting === Announcements === The discussion about "Announcements" started at 16:33. === Weekly stand-up report === The discussion about "Weekly stand-up report" started at 16:34. === Highlighted packages === The discussion about "Highlighted packages" started at 16:51. === Miscellaneous and Questions === The discussion about "Miscellaneous and Questions" started at 16:52. == Vote results == == Done items == * (none) == People present (lines said) == * tyhicks (31) * jdstrand (21) * mdeslaur (9) * sbeattie (9) * xnox (6) * sarnold (5) * leosilva (5) * ratliff_ (4) * meetingology (3) * ubottu (1) == Full Log == 16:33 #startmeeting 16:33 Meeting started Mon Feb 26 16:33:39 2018 UTC. The chair is tyhicks. Information about MeetBot at http://wiki.ubuntu.com/meetingology. 16:33 16:33 Available commands: action commands idea info link nick 16:33 The meeting agenda can be found at: 16:33 [LINK] https://wiki.ubuntu.com/SecurityTeam/Meeting 16:33 [TOPIC] Announcements 16:33 The generalist role rotation for this week as follows: 16:34 CVE Triage: mdeslaur, Bug Triage: leosilva, Community: sarnold, Happy Place: ratliff, sbeattie 16:34 An all new version of the USN website (usn.ubuntu.com) will be deployed today 16:34 \o 16:34 Please report a bug (https://github.com/canonical-websites/usn.ubuntu.com/issues/) for any issue that you discover 16:34 Simon Deziel (sdeziel) provided a debdiff for artful for unbound (LP: #1723900) 16:34 Launchpad bug 1723900 in unbound (Debian) "unbound systemctl (re)start fails due to Apparmor profile issue" [Unknown,New] https://launchpad.net/bugs/1723900 16:34 Thank you for your assistance in keeping Ubuntu users secure! :) 16:34 [TOPIC] Weekly stand-up report 16:34 jdstrand: you're up 16:34 tyhicks, will the new website mine cryptocurrencies in javascript? 16:34 hi! 16:35 * xnox giggles 16:35 xnox: not yet but you never know what the future holds 16:35 completed: miscellaneous snappy conversations 16:35 completed: store reviews 16:35 completed: discuss/review PR 4741 - cmd/snap-update-ns: use recursive bind mounts for writable mimic (layouts) 16:35 completed: strict snaps on livecd implementation: PR 4714 (address review feedback) 16:35 progress: investigate more issues with minecraft and opening URLs 16:35 completed: ubuntu-security meeting 16:35 mdeslaur: you're up 16:35 hah 16:35 wait :P 16:35 xnox: it's our new autopkgtest infrastructure 16:35 * be responsive to snapd PRs 16:35 - portals (getting close) 16:35 - layouts (landed, needs a little hardening for 2.32) 16:35 - steam-support (blocked on upstream feedback) 16:35 * strict mode snaps on livecd (close to landing) 16:35 * miscellaneous policy investigations and updates 16:35 * prepare for sprint 16:35 * lxd snap regression wrt confinement as have time 16:35 * create screencast interface as have time 16:35 ok, now mdeslaur you're up :) 16:36 you sure your paste buffer is empty now? ;) 16:36 I'm on triage this week 16:36 my password is ready to paste 16:36 I just pushed out a sensible-utils update 16:36 and I'm going to work on something new off the list 16:36 I also may have an embargoed issue 16:36 that's it from me 16:36 sbeattie: you're up 16:37 I'm in the happy place this week 16:37 * xnox thinks there is a glitch in jdstrand AI today, and a reboot is required. 16:37 I'm double-checking gcc-7, gcc-6, and gcc-5 packages with retpoline enabled by default for x86 for sponsoring today. 16:38 I'm also examining a glibc built by said compilers 16:38 sbeattie, nice =) gcc-8 as well? it's not default, but is available. And some libraries are coming from gcc-8, and used in userspace. E.g. libitm1 -> opencryptoki, etc. 16:38 xnox: not yet, but yeah, I hsuld do that, too 16:38 cool 16:39 I need to add the documentation bits to a patch to hardening retpoline options to dpkg, to support hardening=[+-]retpoline and submit to debian 16:40 There's other bits and bobs related to retpoline to track down in prep for starting the rebuild 16:41 (documentation, double-checking upstream for bug fixes, etc) 16:41 I need to prep a bit for the sprint next week 16:41 that'll consume my week, surely. tyhicks, over to you 16:41 thanks 16:41 * xnox silently pings rbalint to read above status update. 16:41 I've got sprint prep 16:42 I'll be cleaning up any messes found with the switch to the new USN website today 16:42 I need to finalize an LSM stacking demo 16:43 I've got an embargoed issue 16:43 I'll also be involved in the retpoline by default discussions/uploads/etc 16:44 that's it for me 16:44 jjohansen: you're up 16:45 oh, he's not around right now 16:45 sarnold: go ahea 16:47 sorry, I missed this window entirely! :) 16:47 I'm on community, short week for me this weeke 16:48 I expect to review some apparmor patches, then return to brotli MIR, and responding to questions on the openjpeg2 bugs I opened 16:48 and I ought to try to rebuild my poor little pandaboard before the trip. I don't know how realistic that is :( 16:49 that's me, chrisccoulson? or ratliff_ if chrisccoulson is still out? (sorry, can't recall) 16:49 vacation day for chris_ccoulson :) 16:50 I'm in the happy place this week. 16:50 I have sprint prep. I need to nurse the kpis along and touch up the tutorial. I have some internal tasks that I'm working on. 16:50 leosilva: it's up to you 16:50 I'm bug triage this week. 16:51 I'm take a look in qpdf cves, some of them has just test as patch - weird. 16:51 besides that I'll to my hunting 16:51 tyhicks: it's back to you 16:51 thanks! 16:51 s/to/do/ 16:51 [TOPIC] Highlighted packages 16:51 The Ubuntu Security team suggests that contributors look into merging Debian security updates in community-supported packages. If you would like to help Ubuntu but are not sure where to start, this is a great way to do so. See http://people.canonical.com/~ubuntu-security/d2u/ for available merges and https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details on preparing Ubuntu security 16:51 updates. If you have any questions, feel free to ask in #ubuntu-hardened. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved. 16:52 [TOPIC] Miscellaneous and Questions 16:52 Does anyone have any other questions or items to discuss? 16:53 jdstrand, mdeslaur, sbeattie, sarnold, ratliff, leosilva: Thanks! 16:53 #endmeeting Generated by MeetBot 0.1.5 (http://wiki.ubuntu.com/meetingology)