09:00:00 #startmeeting CIP IRC weekly meeting 09:00:00 Meeting started Thu May 28 09:00:00 2020 UTC and is due to finish in 60 minutes. The chair is masashi910. Information about MeetBot at http://wiki.debian.org/MeetBot. 09:00:00 Useful Commands: #action #agreed #help #info #idea #link #topic #startvote. 09:00:00 The meeting name has been set to 'cip_irc_weekly_meeting' 09:00:06 #topic rollcall 09:00:08 Hi 09:00:14 hi 09:00:31 hi 09:00:32 hi 09:01:00 #topic AI review 09:01:01 hi 09:01:06 hi 09:01:10 1. Combine root filesystem with kselftest binary - Iwamatsu-san 09:01:37 No update 09:01:48 iwamatsu: Noted. Thanks. 09:02:01 2. Strengthen sustainable process to backport patches from Mainline/LTS - Kernel Team 09:02:11 At the TSC call on 5/28, I announced that I will send a request mail that configs of reference platforms should be reviewed by board owners. 09:02:18 I will send the mail by the next IRC meeting. 09:02:26 3. Upload a guideline for reference hardware platform addition - masashi910 09:02:34 No updates this week. 09:02:42 4. Post LTP results to KernelCI - patersonc 09:03:23 No updates 09:03:24 patersonc: do you have any aupdate? 09:03:35 patersonc: Noted. Thanks. 09:03:43 5. Ask board owners to review reference platform configs to optimize backporting - masashi910 09:03:51 Jan-san responded to my inquiry. Waiting for other responses. 09:03:58 any other topics? 09:04:06 3 09:04:07 2 09:04:10 1 09:04:11 #topic Kernel maintenance updates 09:04:38 I have reviewed 4.19.125. 09:04:55 five CVEs during the past two weeks: two are fixed in all stable branches except 3.16, other three don't have fixes yet 09:05:05 I reviewed v4.4.225 09:05:40 wens: Should I take a look at any of the CVEs? 09:06:03 pav31: no, the remaining three don't have fixes in mainline yet (one is WiP, other two are MIA) 09:06:37 wens: Ok. (If it was something really critical, I guess we can fix the mainline, too...) 09:07:00 pav31, wens, iwamatsu: Thanks for your works. 09:07:25 any other topics? 09:07:35 3 09:07:36 pav31: Could you push the missing v4.19.120-cip25-rt10 tag, please? 09:07:38 2 09:07:56 jki: Ok, will take a look :-) 09:08:11 pending issue for weeks, unfortunately 09:08:15 see all ML 09:08:22 s/all/also/ 09:08:45 thanks. 09:08:56 any other issues or topics? 09:09:05 3 09:09:08 2 09:09:12 1 09:09:15 #topic Kernel testing 09:09:22 patersonc: the floor is yours. 09:09:48 Nothing from me really this week. Unless anyone had any comments on adding more boards to the lava labs? 09:09:49 Or any complaints etc.? 09:10:32 pav31: missing are related to 1. vfio (CVE-2020-12888, 2. 09:10:36 oops 09:11:22 patersonc: Cybertrust is currently placing one MPSoC in our lab. But, we don't have a plan to add more. 09:11:34 Okay 09:12:20 patersonc: Thanks. 09:12:29 any other topics? 09:12:39 3 09:12:42 2 09:12:43 1 09:12:45 #topic Software update 09:13:11 suzuk35i: the floor is yours. 09:13:16 Hello. 09:13:23 I've finished the task which is to clean SWUpdate branch on isar-cip-core: https://gitlab.com/cip-project/cip-sw-updates/cip-sw-updates-tasks/-/issues/3 09:13:30 Next, I'll work on the task which is to add the safe update demo to the demo repostitory: https://gitlab.com/cip-project/cip-sw-updates/cip-sw-updates-tasks/-/issues/4 09:13:34 That's it from me. 09:13:53 suzuki35: Thanks for your works. 09:14:32 any other topics? 09:14:42 3 09:14:45 2 09:14:47 1 09:14:49 #topic CIP Security 09:15:15 hi 09:15:43 yoshidak[m]: the floor is yours. 09:16:02 We have completed executing all test cases for identified packages for security samples. 09:16:37 We'll send the report of the result for it to the ML, soon. 09:16:46 That's it from me this week. 09:17:05 yoshidak[m]: Thanks for your works. 09:17:24 any other topics? 09:17:33 3 09:17:36 2 09:17:41 1 09:17:42 #topic AOB 09:17:49 Are there any business matters to discuss? 09:17:54 pav31: missing fixes are related to 1. vfio (CVE-2020-12888), 2. NFS client (CVE-2020-10742) and 3. Bluetooth BAIS attack (CVE-2020-10690) 09:18:13 wens: Thanks! 09:18:19 pav31: IIRC someone mentioned on ML that Linux isn't affected by BAIS 09:18:30 pav31: vfio has fix in the works 09:18:55 pav31: so you might want to look at the NFS one? cip-kernel-sec has comments about incorrect fix or cause 09:19:13 wens: Yes, let me take a look at the NFS stuff. 09:19:35 in other news, I will be taking over MOXA's effort to backport patches from mainline to cip kernel 09:20:02 I've replied to the original submission from Johnson mentioning my plans to do this 09:20:46 wens: That's great! 09:21:36 wens: OK, I will take th BAIS attack (CVE-2020-10690). 09:22:50 so let me summarize. 09:23:31 1: fix in the works, 2: Pavel-san to take a look, 3: Iwamatsu-san to take a look. 09:23:35 Is it correct. 09:23:44 ? 09:24:52 CVE-2020-10690 is already fixed. 09:25:33 Well, CVE-2020-10690 is not Bluetooth BAIS related (but ptp?) according to my searches. 09:25:56 sorry, wrong number..... it is CVE-2020-10135 09:26:55 wens: thanks, this has not been fixed in all LTS yet. 09:29:14 thanks for these discussions. any other topics or issues? 09:29:21 that's all from me 09:29:45 wens: Thanks for triggering the discussion. 09:29:54 3 09:29:57 2 09:30:00 1 09:30:02 #endmeeting