16:02 <cyphermox> #startmeeting Weekly Ubuntu Foundations team 16:02 <meetingology> Meeting started Thu Jan 18 16:02:32 2018 UTC. The chair is cyphermox. Information about MeetBot at http://wiki.ubuntu.com/meetingology. 16:02 <meetingology> 16:02 <meetingology> Available commands: action commands idea info link nick 16:02 <cyphermox> #topic Lightning rounds 16:02 <cyphermox> echo $(shuf -e slangasek bdmurray xnox tdaitx doko sil2100 rbalint infinity cyphermox mwhudson rcj philroche Odd_Bloke tribaal fginther juliank) 16:02 <cyphermox> fginther sil2100 tribaal mwhudson Odd_Bloke philroche slangasek bdmurray juliank infinity rcj xnox doko rbalint tdaitx cyphermox 16:03 <fginther> winning! 16:03 <fginther> * Off Monday 16:03 <fginther> * Further work publishing images to resolve CVE-2017-5754 16:03 <fginther> * Dove into how we create and maintain query data for a couple of reviews 16:03 <fginther> * Investigated a memory issue with some of our jenkins slaves 16:03 <ubottu> Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache. (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5754) 16:03 <fginther> (done) 16:03 <fginther> sil2100, your turn 16:03 <sil2100> Oh! 16:04 <sil2100> - Kernel respin SRUs - lots 16:04 <sil2100> - Switching on langpack generation for bionic 16:04 <sil2100> - Regular SRU reviews/releases 16:04 <sil2100> - Improving the kernel-sru-review tool to perform a master-kernel diff if present 16:04 <sil2100> - Implementing and preparing an exclusion list of d-i packages for merge KPIs 16:04 <sil2100> - Familiarizing with the process of system installations through d-i 16:04 <sil2100> - Investigating vt.handoff, trying to fix server netboot installs being crap 16:04 <sil2100> - Some preparations for 16.04.4 (HWE stack shepherding etc.) 16:04 <sil2100> (done) 16:05 <cyphermox> tribaal: ? 16:05 <sil2100> I guess tribaal is off sick 16:05 <cyphermox> yeah 16:05 <sil2100> He didn't feel too good in the morning 16:05 <philroche> He's out and Odd_Bloke and mwhudson too. I'll go 16:05 <cyphermox> philroche: 16:05 <philroche> * Meltdown CVE cloud images work 16:05 <philroche> * Preparation for Spectre CVE 16:06 <philroche> * Cloud image build system maintenance 16:06 <philroche> (done) 16:06 <philroche> bdmurray: next 16:06 <bdmurray> been out sick for off and on 16:06 <bdmurray> modifications to the mojo spec for the Error Tracker based on reviewer feedback 16:06 <bdmurray> set Ubuntu 17.04 to End of Life in meta-release files and Error Tracker 16:06 <bdmurray> submitted, tested RT re staging update of errors code in Error Tracker 16:06 <bdmurray> replied to MP re the Ubuntu Error Tracker mojo spec 16:06 <bdmurray> submitted, tested RT re production update of errors code in Error Tracker 16:06 <bdmurray> upgraded desktop to bionic 16:06 <bdmurray> investigation into apport bug LP: #1739532 (username scrubbing) 16:06 <ubottu> Launchpad bug 1739532 in apport (Ubuntu) "apport-collect SHOULD prune out /home/%USER/ from JournalErrors" [High,Incomplete] https://launchpad.net/bugs/1739532 16:06 <bdmurray> reported apport bug LP: #1743906 after testing 16:06 <ubottu> Launchpad bug 1743906 in Apport "crash reports owned by root not anonymized well" [Undecided,New] https://launchpad.net/bugs/1743906 16:07 <bdmurray> done 16:07 <bdmurray> juliank: 16:07 <juliank> since last week: 16:07 <juliank> * merges (7): ncurses, newt, gpgme1.0, popularity-contest, cryptsetup, xapian-bindings, coreutils 16:07 <juliank> * sponsors (1): lowmem 16:07 <juliank> * syncs (3): ipset, libsecret, ndisc6 16:07 <juliank> * uploads: parted (bug 1737144, forwarded), ubuntu-release-upgrader (bug 1695666) 16:07 <juliank> * made add-apt-repository run update (review pending) 16:07 <ubottu> bug 1737144 in Ubuntu on IBM z Systems "[18.04 FEAT] Upgrade parted to use latest fdasd/vtoc code base from s390-tools" [High,Fix committed] https://launchpad.net/bugs/1737144 16:07 <juliank> * apt: added support for inrelease-path for image building (idea cjwatson) 16:07 <ubottu> bug 1695666 in ubuntu-release-upgrader (Ubuntu Artful) "users shoot themselves in the foot by removing /boot/efi from /etc/fstab; u-r-u should warn and refuse to let them upgrade" [High,Triaged] https://launchpad.net/bugs/1695666 16:07 <juliank> * MoM: merged a patch, and trying to fix it to not apply patches (https://code.launchpad.net/~juliank/merge-o-matic/skip-patches/+merge/336267) 16:07 <juliank> * multipath-tools situation is starting to clear up, gotta figure out if we want 0.7.4 or not (SUSE does not, thinks it might be to unstable), and auto discovery 16:07 <juliank> plans: 16:07 <juliank> * more merges (zsh, wpa) 16:07 <juliank> * finalize multipath-tools 16:07 <juliank> * ??? 16:07 <juliank> * apt automatic safe-autoremoval for kernel and oldlib or stuff 16:07 <juliank> (done) 16:07 <juliank> infinity does not seem here 16:07 <cyphermox> juliank: yay for wpa 16:07 <rcj> * Off Monday 16:07 <rcj> * Continued publication work for CVE-2017-5754 (Meltdown) 16:07 <ubottu> Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache. (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5754) 16:07 <rcj> * Code reviews 16:07 <rcj> * Shut down Zesty cloud-image build environment 16:07 <rcj> (done) 16:08 <xnox> Did a few merges; Merged openssl; Almost done with plymouth merge, loving hidpi. (done) 16:08 <sil2100> Yay for plymouth 16:08 <cyphermox> doko: ? 16:08 <rbalint> doko is out, i think 16:08 <juliank> is on vac 16:08 <juliank> ? 16:09 <cyphermox> ah 16:09 <cyphermox> rbalint: your turn then 16:09 <rbalint> (short week) 16:09 <rbalint> * Debian uploads: 16:09 <rbalint> - wireshark new upstream, fixing old behaviour of enabling BPF JIT which 16:09 <rbalint> possibly made systems vulnerable to some Spectre exploit variants 16:09 <rbalint> * nfs-utils: upload to fix lintian error + LP: #1709129 16:09 <ubottu> Launchpad bug 1709129 in nfs-utils (Ubuntu) "Please drop patch 20-ticket-expired-error.patch" [Low,Confirmed] https://launchpad.net/bugs/1709129 16:09 <rbalint> * update-manager & ubuntu-release-upgrader: 16:09 <rbalint> - refined fix for LP: #1732185 + SRUs 16:09 <ubottu> Launchpad bug 1732185 in update-manager (Ubuntu Artful) "do-release-upgrade crashed with SIGSEGV under wayland" [Critical,Fix committed] https://launchpad.net/bugs/1732185 16:09 <rbalint> - further update-manager fixes including LP: #1624644 which is in progress 16:09 <ubottu> Launchpad bug 1624644 in update-manager (Ubuntu Artful) "By default settings unattended-upgrade does not automatically remove packages that become unused in conjunction with updating by other software" [Undecided,In progress] https://launchpad.net/bugs/1624644 16:09 <rbalint> * uploaded merges: 16:09 <rbalint> - procps 16:09 <rbalint> - sudo 16:09 <rbalint> (done) 16:09 <cyphermox> tdaitx: ? 16:10 <tdaitx> Short(ish) week: working half days past week 16:10 <tdaitx> * OpenJDK 8 & 9 security updates (ongoing tests + verifying test results) 16:10 <tdaitx> * Backporting OpenJDK 8 security updates to OpenJDK 7 16:10 <tdaitx> (done) 16:10 <cyphermox> - debug captive portal DNS issues caused by EDNS0 fail (bug LP: #1727237) 16:10 <cyphermox> - snap MIR doc 16:10 <ubottu> Launchpad bug 1727237 in systemd (Ubuntu Bionic) "systemd-resolved is not finding a domain" [High,Triaged] https://launchpad.net/bugs/1727237 16:10 <cyphermox> - shim SRUs, grub updates for Mok/fb binaries renamed 16:10 <cyphermox> - discussed grub-installer splash/quiet/handoff with Lukasz 16:10 <cyphermox> - netplan: rework CLI command parsing to extend for the next features 16:10 <cyphermox> - netplan: improving on routes configuration 16:10 <cyphermox> (done) 16:11 <cyphermox> should we do the tracking bugs? since half of the time isn't there... 16:11 <cyphermox> bdmurray: what do you think? 16:11 <cyphermox> s/time/team/ 16:11 <bdmurray> cyphermox: I think we can pass 16:12 <rcj> HIGHLIGHT: Follow https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/SpectreAndMeltdown for up-to-date information regarding Spectre and Meltdown issues 16:12 <cyphermox> rcj: thanks 16:12 <cyphermox> #topic AOB 16:12 <cyphermox> is there AOB? 16:12 <bdmurray> Not from me 16:13 <cyphermox> alrighty 16:13 <cyphermox> thanks all! 16:13 <cyphermox> #endmeeting