| *** ltu8 has joined #cip | 03:02 | |
| *** rynofinn has quit IRC | 06:11 | |
| *** rynofinn has joined #cip | 06:11 | |
| *** eduardas has joined #cip | 06:50 | |
| *** eduardas has quit IRC | 07:06 | |
| *** rajm has joined #cip | 07:08 | |
| *** masashi910 has joined #cip | 08:16 | |
| *** samwilson_ has joined #cip | 08:19 | |
| *** fujita has joined #cip | 08:33 | |
| *** pavel1 has joined #cip | 08:59 | |
| masashi910 | #startmeeting CIP IRC weekly meeting | 09:00 |
|---|---|---|
| brlogger | Meeting started Thu Dec 10 09:00:01 2020 UTC and is due to finish in 60 minutes. The chair is masashi910. Information about MeetBot at http://wiki.debian.org/MeetBot. | 09:00 |
| brlogger | Useful Commands: #action #agreed #help #info #idea #link #topic #startvote. | 09:00 |
| brlogger | The meeting name has been set to 'cip_irc_weekly_meeting' | 09:00 |
| *** brlogger changes topic to " (Meeting topic: CIP IRC weekly meeting)" | 09:00 | |
| masashi910 | #topic rollcall | 09:00 |
| *** brlogger changes topic to "rollcall (Meeting topic: CIP IRC weekly meeting)" | 09:00 | |
| masashi910 | please say hi if you're around | 09:00 |
| sudip | hi | 09:00 |
| pavel1 | hi | 09:00 |
| gavinlai | hi | 09:00 |
| iwamatsu | hi | 09:00 |
| yoshidak[m] | hi | 09:00 |
| masashi910 | #topic AI review | 09:01 |
| *** brlogger changes topic to "AI review (Meeting topic: CIP IRC weekly meeting)" | 09:01 | |
| wens | hi | 09:01 |
| masashi910 | 1. Combine root filesystem with kselftest binary - iwamatsu | 09:01 |
| iwamatsu | no update | 09:01 |
| masashi910 | iwamatsu: Noted. Thanks. | 09:01 |
| masashi910 | 2. Do some experiment to lower burdens on CI - patersonc | 09:01 |
| masashi910 | Based on the offline discussion after the last IRC meeting, I created this AI. | 09:01 |
| masashi910 | patersonc: are you around? | 09:02 |
| masashi910 | OK, let's come back when he joins. | 09:02 |
| masashi910 | any other topics? | 09:02 |
| masashi910 | 3 | 09:02 |
| masashi910 | 2 | 09:02 |
| masashi910 | 1 | 09:03 |
| masashi910 | #topic Kernel maintenance updates | 09:03 |
| *** brlogger changes topic to "Kernel maintenance updates (Meeting topic: CIP IRC weekly meeting)" | 09:03 | |
| iwamatsu | I reviewed 4.4.247 and 4.4.248-rc | 09:03 |
| pavel1 | I have reviewed 4.19.162 and started reviews on 4.19.163. | 09:03 |
| wens | Five new issues this week. I believe we would want to backport the fix for CVE-2020-28588 | 09:04 |
| wens | It was not tagged for stable. | 09:04 |
| pavel1 | Let me investigate.... | 09:04 |
| wens | also, hitachi enables DRM_NOUVEAU in their omap defconfig, which is perplexing. | 09:05 |
| *** tpollard has joined #cip | 09:06 | |
| masashi910 | wens: Then, shall I ask them about it? | 09:06 |
| wens | masashi910: Yes, please. | 09:06 |
| masashi910 | wens: Sure. | 09:06 |
| masashi910 | wens: Also, for the record, let me just log the url of your cip-kernel-sec report sent to cip-dev. | 09:06 |
| masashi910 | https://lore.kernel.org/cip-dev/CAGb2v641=SrfdDh9CS4fwWVrfuCG2O2oni9V_QsVJEza+g5mRg@mail.gmail.com/T/#u | 09:06 |
| masashi910 | wens: I have a couple of questions about cip-kernel-sec. Could I ask such questions after this meeting? | 09:07 |
| wens | sure. | 09:07 |
| masashi910 | wens: Thanks! | 09:07 |
| masashi910 | pavel1, iwamatsu, wens: Thanks for your works! | 09:09 |
| masashi910 | pavel1: While you are investigating the cve, shall we move on? | 09:09 |
| pavel1 | masashi910: Yes, move on. It makes sense to continue over email. | 09:09 |
| masashi910 | pavel1: Thanks! | 09:10 |
| masashi910 | any other topics? | 09:10 |
| masashi910 | 3 | 09:10 |
| masashi910 | 2 | 09:10 |
| masashi910 | 1 | 09:10 |
| masashi910 | #topic Kernel testing | 09:10 |
| *** brlogger changes topic to "Kernel testing (Meeting topic: CIP IRC weekly meeting)" | 09:10 | |
| masashi910 | patersonc: are you here? | 09:10 |
| masashi910 | So, let's skip this part this week. | 09:11 |
| masashi910 | #topic CIP Security | 09:11 |
| *** brlogger changes topic to "CIP Security (Meeting topic: CIP IRC weekly meeting)" | 09:11 | |
| masashi910 | yoshidak[m]: the floor is yours. | 09:11 |
| yoshidak[m] | hi | 09:11 |
| yoshidak[m] | There is no major update from last week. | 09:11 |
| yoshidak[m] | We hold the meeting w/ Exida tomorrow. | 09:12 |
| yoshidak[m] | That's the end from me today. | 09:12 |
| masashi910 | yoshidak[m]: Thanks for your works! | 09:12 |
| masashi910 | any other topics? | 09:12 |
| masashi910 | 3 | 09:12 |
| masashi910 | 2 | 09:12 |
| masashi910 | 1 | 09:12 |
| masashi910 | #topic AOB | 09:12 |
| *** brlogger changes topic to "AOB (Meeting topic: CIP IRC weekly meeting)" | 09:12 | |
| masashi910 | Regarding the development start based on 5.10, it was announced with the following blog. | 09:13 |
| masashi910 | https://www.cip-project.org/blog/2020/12/02/cip-to-embark-on-kernel-5-10-development-for-slts | 09:13 |
| masashi910 | That's it from me. | 09:14 |
| pavel1 | So... | 09:14 |
| masashi910 | pavel1: Please. | 09:14 |
| pavel1 | Do we start preparations? 5.10.1 is likely to be huge. | 09:14 |
| pavel1 | As in -- lots of stuff to review. | 09:14 |
| masashi910 | pavel1: Yes, but after 5.10 is released. | 09:15 |
| wens | IIRC -rt is not merged into mainline yet? | 09:15 |
| pavel1 | Alternatively, we could wait for say 5.10.5 before forking cip branch. | 09:15 |
| iwamatsu | yes, it is not merge yet. | 09:15 |
| pavel1 | Major effect would be that we would not have reviewed 5.10 to 5.10.5 changes :-). | 09:15 |
| pavel1 | No, -rt is not yet merged into mainline in an usable way. | 09:16 |
| masashi910 | pavel1: I think we can choose the best timing. | 09:17 |
| pavel1 | Ok :-). | 09:17 |
| masashi910 | pavel1, iwamatsu, wens: Let's discuss about it in the future. :) | 09:18 |
| iwamatsu | OK | 09:18 |
| masashi910 | pavel1: Do you have any insights on CVE-2020-28588 | 09:19 |
| masashi910 | ? | 09:19 |
| pavel1 | It looks to me like vulnerable code is not in 4.4 or 4.19, but let me confirm. | 09:20 |
| sudip | CVE-2020-28588 was introduced by 631b7abacd02 in v5.1 and that has not been backported so I dont think any CIP kernel is affected | 09:20 |
| pavel1 | If it is, it is easy to fix/backport. | 09:20 |
| masashi910 | sudip: Thanks for this info! | 09:21 |
| wens | If it's a straightforward backport, I suppose we could still ask greg to include it for v5.4, as a way of showing the helpful side of CIP | 09:22 |
| pavel1 | wens: I'd let someone else do that. I'm pretty sure we are not the only ones watching CVEs. | 09:23 |
| iwamatsu | Oh, this commit's comit date is CommitDate: Fri Apr 5 09:26:43 2019 -0400. but Auther date is Mon Nov 7 16:26:37 2016 -0500 | 09:23 |
| iwamatsu | . | 09:23 |
| pavel1 | wens: Or maybe we can/should do that if it is not fixed by january :-). | 09:23 |
| wens | pavel1: fine with me. I suppose we might see bwh or some other distro guys asking for it. :) | 09:24 |
| masashi910 | So, shall we keep our eyes on this CVE, and decide what to do in the future? | 09:24 |
| masashi910 | I mean, make this as an AI. | 09:25 |
| wens | Sure. Let's keep it until, say, mid-January? | 09:25 |
| iwamatsu | +1 | 09:25 |
| pavel1 | +1 | 09:25 |
| masashi910 | Great! Thanks! | 09:26 |
| masashi910 | Any other topics? | 09:26 |
| masashi910 | If there are no topics, then, let's close the meeting. | 09:26 |
| masashi910 | #endmeeting | 09:26 |
| brlogger | Meeting ended Thu Dec 10 09:26:34 2020 UTC. Information about MeetBot at http://wiki.debian.org/MeetBot . (v 0.1.4) | 09:26 |
| brlogger | Minutes: https://irclogs.baserock.org/meetings/cip/2020/12/cip.2020-12-10-09.00.html | 09:26 |
| brlogger | Minutes (text): https://irclogs.baserock.org/meetings/cip/2020/12/cip.2020-12-10-09.00.txt | 09:26 |
| brlogger | Log: https://irclogs.baserock.org/meetings/cip/2020/12/cip.2020-12-10-09.00.log.html | 09:26 |
| *** brlogger changes topic to "Civil Infrastructure Platform Project. Find the logs at https://irclogs.baserock.org/cip/" | 09:26 | |
| masashi910 | Thank you, and stay safe! | 09:26 |
| wens | Thank you! | 09:26 |
| iwamatsu | Thank you. | 09:26 |
| pavel1 | Stay safe! | 09:26 |
| sudip | thanks masashi910 | 09:26 |
| ebardie | cheers all | 09:26 |
| masashi910 | wens: Today, I executed scripts listed here: | 09:27 |
| masashi910 | https://gitlab.com/cip-project/cip-kernel/cip-kernel-sec | 09:27 |
| masashi910 | As a result of scripts/webview.py, I can search issues. But I cannot find some of CVEs you reported today. | 09:27 |
| masashi910 | CVE-2020-27820, CVE-2020-27830, and CVE-2020-28588 are in the list, but CVE-2020-27786 and CVE-2020-29534 are not. | 09:27 |
| masashi910 | I wonder whether your sources to analyze the latest CVE patches are different from the above scripts. Or somehow, my environment could be corrupted? | 09:27 |
| wens | I haven't used the webview to be honest. | 09:28 |
| masashi910 | wens: then, are you using command lines? | 09:29 |
| wens | I do the imports and edit the files by hand mostly. | 09:29 |
| sudip | masashi910: you can use report_affected.py script | 09:30 |
| wens | maybe it only shows issues that aren't fixed? just like report_affected.py | 09:30 |
| wens | CVE-2020-27786 is fixed for all kernels, and CVE-2020-29534 only affects v5.5+ | 09:30 |
| masashi910 | sudip, wens: Thanks for this info! I will try!!! | 09:30 |
| wens | with report_affected.py, you can specify which branch ( or mainline ) you want to track | 09:31 |
| masashi910 | wens, sudip: Thanks for staying after the meeting. This info is really helpful! | 09:32 |
| wens | Regarding cip-kernel-sec, there is an open issue stating that we do not track issues that have been retired by distros | 09:32 |
| wens | Not sure if adding them is helpful. If an issue is retired, surely it is fixed by then? | 09:32 |
| masashi910 | wens: Hmmm. I cannot judge... Shall we ask other members opinions? | 09:33 |
| masashi910 | maybe next week? | 09:34 |
| wens | sure. please add an AI for it? # https://gitlab.com/cip-project/cip-kernel/cip-kernel-sec/-/issues/8 | 09:34 |
| masashi910 | wens: sure, I will. | 09:35 |
| masashi910 | Then, see you next week! | 09:36 |
| wens | See you! | 09:37 |
| *** fujita has quit IRC | 10:33 | |
| *** pavel1 has quit IRC | 10:42 | |
| *** eduardas has joined #cip | 12:38 | |
| *** masashi910 has quit IRC | 13:17 | |
| *** eduardas has quit IRC | 13:29 | |
| *** eduardas has joined #cip | 13:44 | |
| *** samwilson_ has quit IRC | 17:08 | |
| *** eduardas has quit IRC | 17:08 | |
| *** samwilson_ has joined #cip | 17:34 | |
| *** tpollard has quit IRC | 17:36 | |
| *** monstr has quit IRC | 17:43 | |
| *** toscalix has joined #cip | 17:59 | |
| *** toscalix has quit IRC | 18:00 | |
| *** toscalix has joined #cip | 18:01 | |
| *** toscalix has quit IRC | 18:10 | |
| *** toscalix has joined #cip | 18:13 | |
| *** samwilson_ has quit IRC | 18:18 | |
| *** toscalix has quit IRC | 18:19 | |
| *** toscalix has joined #cip | 18:19 | |
| *** toscalix has quit IRC | 18:34 | |
| *** toscalix has joined #cip | 18:34 | |
| *** toscalix has quit IRC | 18:43 | |
| *** toscalix has joined #cip | 18:48 | |
| *** toscalix has quit IRC | 18:59 | |
| *** toscalix has joined #cip | 20:45 | |
| *** toscalix has quit IRC | 22:50 | |
| *** rajm has quit IRC | 23:02 | |
Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!