| *** monstr <monstr!~monstr@nat-35.starnet.cz> has joined #cip | 06:53 | |
| *** rajm <rajm!~robert@82.27.50.32> has joined #cip | 06:59 | |
| *** prabhakalad <prabhakalad!~prabhakar@147.161.225.85> has quit IRC (Ping timeout: 252 seconds) | 08:29 | |
| *** prabhakalad <prabhakalad!~prabhakar@147.161.225.85> has joined #cip | 08:30 | |
| *** frieder <frieder!~frieder@i577B93E6.versanet.de> has joined #cip | 08:52 | |
| *** iwamatsu__ <iwamatsu__!~iwamatsu_@2405:6581:5360:1800:195e:4918:1985:8ab0> has joined #cip | 12:59 | |
| iwamatsu__ | hello | 13:03 |
|---|---|---|
| patersonc | hi | 13:03 |
| pave1 | Hi! | 13:03 |
| uli | hello | 13:03 |
| *** jki <jki!~jki@p5b0f192f.dip0.t-ipconnect.de> has joined #cip | 13:03 | |
| *** masami <masami!~masami@FL1-219-107-72-235.tky.mesh.ad.jp> has joined #cip | 13:03 | |
| jki | hi! | 13:04 |
| jki | did you start already? | 13:04 |
| iwamatsu__ | no yet | 13:04 |
| jki | I'm running low on battery, still looking for supplies | 13:04 |
| jki | maybe someone else should in case I drop | 13:04 |
| pave1 | I have good power. | 13:05 |
| masami | hi. my network connection was bad... | 13:05 |
| pave1 | #startmeeting CIP IRC weekly meeting | 13:05 |
| collab-meetbot` | Meeting started Thu Feb 29 13:05:45 2024 UTC and is due to finish in 60 minutes. The chair is pave1. Information about MeetBot at http://wiki.debian.org/MeetBot. | 13:05 |
| collab-meetbot` | Useful Commands: #action #agreed #help #info #idea #link #topic #startvote. | 13:05 |
| collab-meetbot` | The meeting name has been set to 'cip_irc_weekly_meeting' | 13:05 |
| *** collab-meetbot` changes topic to " (Meeting topic: CIP IRC weekly meeting)" | 13:05 | |
| pave1 | #topic AI review | 13:05 |
| *** collab-meetbot` changes topic to "AI review (Meeting topic: CIP IRC weekly meeting)" | 13:05 | |
| pave1 | - prepare blog entry on SLTS kernel state and challenges [Jan] | 13:06 |
| jki | now I just found one :D | 13:06 |
| jki | no progress in the past week, sorry | 13:06 |
| pave1 | No problem. Other AIs? | 13:06 |
| pave1 | 3 | 13:06 |
| pave1 | 2 | 13:06 |
| pave1 | 1 | 13:06 |
| pave1 | #topic Kernel maintenance updates | 13:06 |
| *** collab-meetbot` changes topic to "Kernel maintenance updates (Meeting topic: CIP IRC weekly meeting)" | 13:06 | |
| uli | i'm backporting for 4.4 | 13:07 |
| pave1 | I am reviewing 6.1.79 and .81. | 13:07 |
| masami | This week reported 130 new CVEs and 21 updated CVEs. | 13:07 |
| pave1 | Yep, about that. | 13:07 |
| jki | oh, wow | 13:07 |
| jki | that many | 13:07 |
| pave1 | I don't believe Greg is acting in good faith here. | 13:07 |
| pave1 | He copies changelogs verbatim with zero analysis. Not even making it | 13:07 |
| pave1 | sentences or stripping irrelevant information. Sometimes he pastes "In | 13:07 |
| pave1 | the Linux kernel, the following vulnerability has been resolved:" | 13:07 |
| pave1 | before the changelog. Result is basically DoS on people that try to be | 13:07 |
| pave1 | carefull and not pick everything from stable. Spamming us is colateral | 13:07 |
| pave1 | damage. I don't think arguing with him makes sense. This should be | 13:08 |
| pave1 | escalated. | 13:08 |
| masami | we can see lots of CVE numbers are reserved at git repo https://git.kernel.org/pub/scm/linux/security/vulns.git/tree/cve/reserved | 13:08 |
| pave1 | So... yes, wow :-(. | 13:08 |
| jki | so, what is the damage for us now? | 13:08 |
| pave1 | CVE-2023-52466 is example of bad cve. | 13:08 |
| jki | already | 13:08 |
| pave1 | CVE-2023-52437 is another one. | 13:09 |
| iwamatsu__ | I am reviewing 6.1.79 | 13:09 |
| pave1 | Well... it will make our CVE tracking useless. | 13:09 |
| jki | but that was questionable from a technical perspective already, back then because too many fixes had no number | 13:10 |
| jki | at least that reason is kind of "gone" now... | 13:10 |
| jki | but, yeah | 13:10 |
| pave1 | We should simply ignore any CVE from Greg. But it would be better to escalate through Neal and LF, | 13:11 |
| pave1 | because this will harm whole community. | 13:11 |
| jki | can you write up some concrete points regarding that? | 13:12 |
| jki | I will try, but I need input | 13:12 |
| pave1 | Ideally, security people should do that. | 13:12 |
| pave1 | Because they are supposed to know what CVEs look like. | 13:12 |
| jki | I will try to chat with our own folks on that | 13:14 |
| pave1 | I can try to provide input, but Masami's "New CVE entries this week" already has plenty. | 13:14 |
| jki | yep | 13:14 |
| pave1 | I don't believe "the patch applied okay, so just paste its changelog into CVE" is what security community expects. | 13:14 |
| pave1 | Ok, anything else? | 13:15 |
| pave1 | 3 | 13:15 |
| pave1 | 2 | 13:15 |
| pave1 | 1 | 13:15 |
| pave1 | #topic Kernel release status | 13:15 |
| *** collab-meetbot` changes topic to "Kernel release status (Meeting topic: CIP IRC weekly meeting)" | 13:15 | |
| pave1 | 4.19-rt is late. | 13:15 |
| pave1 | v4.19.307-rt133-rc1 exists, so I guess we should coordinate cip & rt release when that is out. | 13:16 |
| pave1 | IIRC others are on track. | 13:17 |
| pave1 | Anything else? | 13:17 |
| pave1 | 3 | 13:17 |
| pave1 | 2 | 13:17 |
| pave1 | 1 | 13:17 |
| jki | has upstream 4.19-rt any issue? | 13:17 |
| jki | (BTW, CVE-2023-52437 is on rejected by now) | 13:18 |
| jki | my question aims at if we as CIP should/could do something actively, or if we simply wait a bit more | 13:18 |
| pave1 | Not that I know of. I'd need to take second look. I believe it is normal "-rc1 before release". | 13:19 |
| jki | ok, then let's continue | 13:20 |
| pave1 | I believe we should tell Linux Foundation that this does not work for us. We may be in good position to influence Greg. | 13:20 |
| jki | ack, but we will have to explain the reasons sufficiently | 13:21 |
| pave1 | It is likely that there's someone at cve.org who will realise this is bad, so waiting would work, but we can't be sure. | 13:21 |
| pave1 | It is a spam. Greg is not doing any analysis. | 13:21 |
| pave1 | So now either we have to do the analysis, or we can simply ignore it. | 13:22 |
| pave1 | And given it has CVE numbers, our customers likely don't expect us ignoring it. | 13:22 |
| jki | understood | 13:23 |
| jki | already chatting with our CERT in parallel | 13:23 |
| pave1 | Good :-). | 13:23 |
| pave1 | Move on? | 13:24 |
| jki | ack | 13:24 |
| pave1 | 3 | 13:24 |
| pave1 | 2 | 13:24 |
| pave1 | 1 | 13:24 |
| pave1 | #topic Kernel testing | 13:24 |
| *** collab-meetbot` changes topic to "Kernel testing (Meeting topic: CIP IRC weekly meeting)" | 13:24 | |
| patersonc | I don't think I've got anything to share this week | 13:24 |
| arisut | no updates from me | 13:24 |
| jki | what's the deal with the kernelci bot messages now? | 13:25 |
| jki | they are still there or back, aren't they? | 13:25 |
| patersonc | I'm checking with them already | 13:25 |
| patersonc | Maybe the merge request hasn't hit production yet | 13:25 |
| arisut | what message can you give a link? | 13:25 |
| patersonc | Some were sent to cip-dev today | 13:26 |
| jki | exactly - is that intentional? | 13:26 |
| patersonc | The change to stop it has been merged, but it could be that kernelci's production instance hasn't been updated to include it yet | 13:27 |
| pave1 | So I guess it should fix itself within week or so, and we can revisit next meeting? | 13:28 |
| patersonc | yep | 13:28 |
| pave1 | Good. | 13:28 |
| jki | that's fine, yes | 13:28 |
| pave1 | I took a look at squad. | 13:28 |
| pave1 | 13:29 | |
| pave1 | irc is acting funny. | 13:29 |
| pave1 | Squad triggers automatically at push? | 13:30 |
| pave1 | And we need to look if all tests are finished, and that results are either pass or xfail? | 13:30 |
| patersonc | When a build or test job is completed in gitlab CI, it notifies squad | 13:31 |
| arisut | patersonc any progress on sending results to squad from kernelci? | 13:33 |
| patersonc | I haven't had a chance to look yet, sorry | 13:33 |
| jki | ok - more testing topics? | 13:34 |
| pave1 | Ok, so it is "check gitlab page for green crosses, then squad for pass or xfail"? | 13:34 |
| patersonc | Yea | 13:34 |
| patersonc | squad will indicate the results of the actual test cases | 13:35 |
| pave1 | Ok, I guess I'll have a chance to try it soon. | 13:35 |
| patersonc | gitlab only shows if the lava job got to the end or not | 13:35 |
| pave1 | Ok, move on? | 13:35 |
| pave1 | 3 | 13:35 |
| pave1 | 2 | 13:35 |
| pave1 | 1 | 13:35 |
| pave1 | #topic AOB | 13:35 |
| *** collab-meetbot` changes topic to "AOB (Meeting topic: CIP IRC weekly meeting)" | 13:35 | |
| pave1 | Anything else? | 13:36 |
| pave1 | 5 | 13:36 |
| pave1 | 4 | 13:36 |
| pave1 | 3 | 13:36 |
| pave1 | 2 | 13:36 |
| pave1 | 1 | 13:36 |
| pave1 | #endmeeting | 13:36 |
| collab-meetbot` | Meeting ended Thu Feb 29 13:36:31 2024 UTC. Information about MeetBot at http://wiki.debian.org/MeetBot . (v 0.1.4) | 13:36 |
| collab-meetbot` | Minutes: http://ircbot.wl.linuxfoundation.org/meetings/cip/2024/02/cip.2024-02-29-13.05.html | 13:36 |
| collab-meetbot` | Minutes (text): http://ircbot.wl.linuxfoundation.org/meetings/cip/2024/02/cip.2024-02-29-13.05.txt | 13:36 |
| collab-meetbot` | Log: http://ircbot.wl.linuxfoundation.org/meetings/cip/2024/02/cip.2024-02-29-13.05.log.html | 13:36 |
| *** collab-meetbot` changes topic to "Civil Infrastructure Platform Project. CIP mailing list at https://lists.cip-project.org/g/cip-dev | CIP kernel meeting every Thursday at 13:00 UTC | Find the meeting logs at https://ircbot.wl.linuxfoundation.org/meetings/cip/ and chat logs at https://ircbot.wl.linuxfoundation.org/logs/%23cip/" | 13:36 | |
| pave1 | Thank you! | 13:36 |
| iwamatsu__ | Thank you | 13:36 |
| uli | thanks | 13:36 |
| patersonc | OSS Japan dates were announced | 13:36 |
| masami | thank you | 13:36 |
| *** masami <masami!~masami@FL1-219-107-72-235.tky.mesh.ad.jp> has quit IRC (Quit: Leaving) | 13:36 | |
| patersonc | (28-29 Oct) | 13:37 |
| *** masami <masami!~masami@FL1-219-107-72-235.tky.mesh.ad.jp> has joined #cip | 13:37 | |
| pave1 | I guess Japan would be quite a trip from here. | 13:38 |
| *** masami <masami!~masami@FL1-219-107-72-235.tky.mesh.ad.jp> has quit IRC (Client Quit) | 13:38 | |
| arisut | thanks you | 13:39 |
| *** jki <jki!~jki@p5b0f192f.dip0.t-ipconnect.de> has quit IRC (Ping timeout: 272 seconds) | 13:53 | |
| *** iwamatsu__ <iwamatsu__!~iwamatsu_@2405:6581:5360:1800:195e:4918:1985:8ab0> has quit IRC (Quit: Client closed) | 14:45 | |
| *** monstr <monstr!~monstr@nat-35.starnet.cz> has quit IRC (Remote host closed the connection) | 16:27 | |
| *** frieder <frieder!~frieder@i577B93E6.versanet.de> has quit IRC (Remote host closed the connection) | 20:07 | |
| *** rajm <rajm!~robert@82.27.50.32> has quit IRC (Ping timeout: 272 seconds) | 22:53 | |
Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!