#cip log

09:00:01 <masashi910> #startmeeting CIP IRC weekly meeting
09:00:01 <brlogger> Meeting started Thu Sep 24 09:00:01 2020 UTC and is due to finish in 60 minutes.  The chair is masashi910. Information about MeetBot at http://wiki.debian.org/MeetBot.
09:00:01 <brlogger> Useful Commands: #action #agreed #help #info #idea #link #topic #startvote.
09:00:01 <brlogger> The meeting name has been set to 'cip_irc_weekly_meeting'
09:00:05 <masashi910> #topic rollcall
09:00:12 <masashi910> please say hi if you're around
09:00:32 <pavelm> hi
09:00:35 <yoshidak[m]> hi
09:00:50 <iwamatsu> hi
09:00:51 <wens> hi
09:00:57 <fujita> hi
09:01:01 <masashi910> #topic AI review
09:01:07 <masashi910> 1. Combine root filesystem with kselftest binary - iwamatsu
09:01:13 <iwamatsu> no update.
09:01:16 <masashi910> iwamatsu: Noted. Thanks.
09:01:26 <masashi910> 2. Check whether CVE-2020-25284 needs to be backported to 4.4-rt - masashi910
09:01:39 <masashi910> The response was that the backporting is not needed.
09:01:48 <wens> I marked CVE-2020-25284 as ignored for CIP.
09:01:49 <pavelm> Should we adjust defconfigs somehow?
09:02:10 <masashi910> wens: Thanks.
09:03:04 <masashi910> pavelm: That's a good idea. The response was that the current 4.4-rt config is mis-config. So, we want to avoid that.
09:03:42 <masashi910> pavelm: Do you have an idea?
09:04:13 <pavelm> masashi: I'd suggest deleting the offending driver from 4.4-rt config.
09:04:58 <wens> do we want them to submit the change for the sake of authenticity? otherwise we could just take care of it by removing BLK_DEV_RBD=m from their config
09:05:13 <pavelm> wens: I believe we can simply remove it.
09:05:47 <masashi910> pavelm: Should somebody from Siemens do that, or can you do that? How to proceed?
09:06:35 <pavelm> I believe iwamatsu is maintaining the config repository, but technically I can do it, too.
09:06:53 <iwamatsu> as defconfig repo maintainer, I can do it.
09:07:10 <masashi910> pavelm, iwamatsu: Thanks!
09:07:21 <masashi910> any other topics?
09:07:30 <iwamatsu> pevelm: OK, I will take over this work.
09:07:31 <masashi910> 3
09:07:34 <masashi910> 2
09:07:37 <masashi910> 1
09:07:39 <masashi910> #topic Kernel maintenance updates
09:07:49 <wens> Two CVEs this week:
09:07:49 <wens> CVE-2020-0427 [pinctrl DT mapping potential use-after-free] - Introduced in v3.5. Fixed for 4.14 and later stable branches.
09:07:52 <wens> CVE-2020-14390 [fbcon soft scroll] - fixed (read: removed) for all stable branches
09:08:21 <wens> I believe CVE-2020-0427 should be backported to v4.4 and v4.9
09:08:52 <iwamatsu> wens: I am just checking it.
09:08:55 <pavelm> wens: I looked into CVE-2020-14390. Proper fix is not easy to do, as the fbcon / vt code is not up to usual standards.
09:09:30 <iwamatsu> I see.
09:09:35 <pavelm> But if we wanted to, it would be easy to revert the removal and then disable tioclinux part of the interface.
09:09:54 <pavelm> (And eventually, I believe someone will want to fix it properly.)
09:10:11 <iwamatsu> agree.
09:10:36 <wens> I imagine there might be some interest in getting it fixed from enterprise distros.
09:11:22 <pavelm> wens: I hope so, but I have not heard from them so far.
09:11:30 <wens> I see.
09:12:36 <masashi910> wens, pavelm, iwamatsu: Thanks for the discussions.
09:12:54 <masashi910> pavelm, iwamatsu: do you have any other updates?
09:13:09 <pavelm> I have reviewed 4.19.147.
09:13:37 <iwamatsu> I reviewed  v4.4.237.
09:14:06 <masashi910> wens, pavelm, iwamatsu: Thanks all your updates.
09:14:23 <masashi910> any other topics?
09:14:40 <wens> btw
09:14:53 <masashi910> wens: please.
09:14:54 <wens> someone proposed adding aosp branches to cip-kernel-sec
09:15:26 <wens> bwh is discussing the merge request here: https://gitlab.com/cip-project/cip-kernel/cip-kernel-sec/-/merge_requests/70
09:15:45 <wens> that's all
09:16:16 <masashi910> wens: I see. Thanks for sharing this.
09:16:35 <masashi910> If no other topics, let's move on.
09:16:48 <masashi910> #topic Kernel testing
09:17:00 <masashi910> Chris-san, are you around?
09:17:32 <masashi910> If Chris-san joins later, let's come back here.
09:17:43 <masashi910> Let's move on.
09:17:46 <masashi910> #topic Software update
09:17:56 <masashi910> Suzuki-san is not here today.
09:18:03 <masashi910> Quote from Suzuki-san "SW Updates WG don't have any updates this week."
09:18:20 <masashi910> Let's move on.
09:18:27 <masashi910> #topic CIP Security
09:18:39 <masashi910> yoshidak[m]: the floor is yours.
09:19:23 <yoshidak[m]> There is no major update this week. JFYI, we'll hold a meeting w/ Exida and start to review IEC 62443-4-2 requirement supporting status tommorow.
09:19:42 <yoshidak[m]> That's all today, thanks
09:19:58 <masashi910> yoshidak[m]: Thanks for your updates.
09:20:05 <masashi910> any other topics?
09:20:12 <masashi910> 3
09:20:15 <masashi910> 2
09:20:18 <masashi910> 1
09:20:23 <masashi910> #topic AOB
09:20:31 <masashi910> Are there any business to discuss?
09:21:14 <masashi910> If no topics, let's close the meeting today.
09:21:26 <masashi910> #endmeeting