[08:51] apw, cking: I'm confused. https://launchpad.net/ubuntu/+source/zfs-linux/0.6.5.9-5ubuntu5 doesn't appear in https://launchpad.net/~colin-king/+uploaded-packages and doesn't appear to have needed sponsorship. What am I missing? [08:59] rbasak, could it have been a sync into -proposed from cking's ppa and then when its been copied again that is lost ? [09:00] rbasak, as to why its not on his +uploaded-packages ... [09:01] rbasak, i wonder if those are the first ones since the buildinfo [09:02] rbasak, or indeed if artful is missing from that list [09:02] (+uploaded-packages) [09:05] rbasak, ok that artful zfs is listed under _my_ sync's. iirc that was the first upload he did which had .buildinfo included [09:05] apw: ah, yes, thanks. https://launchpad.net/ubuntu/+source/zfs-linux/0.6.5.9-5ubuntu5/+publishinghistory [09:05] rbasak, and that meant i could not sponsor it as an upload (he test builds them in a PPA) so i copied it out of the PPA [09:06] there begin a bug in that pull-lp-source does not get .buildinfo [09:07] Not relevant to my reason for asking, but I'm curious as to why buildinfo gets in the way here. Why could you not sponsor it as an upload? [09:15] I got some gzip issues in Tomcat. But after downgrading zlib1g it works again. Is there somebody with some experience in this? :D === CRogers_________ is now known as CRogers [11:38] xnox: happen to be around? [11:38] dupondje_, sure [11:39] I upgraded my system recently to 17.04. And was having an issue with my 'UniFi' controller. Seems like gzip compression in the build-in tomcat was broken. "curl: (23) Error while processing content unencoding: invalid code lengths set" [11:39] Now I was able to pinpoint it, and the following commit fixes my issue: https://github.com/madler/zlib/commit/f9694097dd69354b03cb8af959094c7f260db0a1.patch [11:40] I don't see any other bugreports, so it must be some edge case I guess. But would an SRU be possible for this you think? [11:41] dupondje_, yes, please open a bug report. [11:41] the SRU style kinda bug report? :) [11:49] xnox: https://bugs.launchpad.net/ubuntu/+source/zlib/+bug/1692870 [11:49] Launchpad bug 1692870 in zlib (Ubuntu) "gzip compression broken in UniFi (built-in tomcat)" [Undecided,New] [11:52] dupondje_, if you could update the bug description to follow https://wiki.ubuntu.com/StableReleaseUpdates#SRU_Bug_Template that would be awesome [11:52] dupondje_, specifically how to reproduce the problem/bug would be very useful. As I am not familiar with tomcat. [11:57] adjusted [12:00] Thing is I didn't had time to test if tomcat is affected somehow. But as the UniFi guest portal is using tomcat in the background, and relies on java (which uses the zlib). I guess it will (in some cases) [15:45] kees, infinity, stgraber, slangasek: tech board meeting in 15 minutes [15:45] * slangasek nods [15:57] stgraber sorry to bug you, but i noticed you've done a few sponsor uploads for the ifupdown and vlan pkgs, could you review and/or sponsor bug 1573272 if you have a chance? [15:57] bug 1573272 in vlan (Ubuntu) "default gateway route not installed for bond interfaces through reboot" [Medium,In progress] https://launchpad.net/bugs/1573272 [16:17] kees: now why are bindnow numbers still so low? [16:27] slangasek: those aren't benefited from the generous PIE logic. i.e. bindnow is only detected on executables with it set [16:28] slangasek: so, 50% of source packages have a PIE executable (with bindnow), and 80% of source packages lack an ET_EXEC (i.e. not not PIE) [16:29] (does that make sense?) [16:33] kees: so you're saying the heuristic is lowballing? [16:35] rbalint: hi, so when PIE was turned on in Debian, did you do anything systematically with static linking? [16:36] rbalint: thinking about how we might do this more cleanly this time around, since when we turned it on for amd64 we spent a long time chasing opaque build failures. [16:39] slangasek: i tracked down every issue, and finally the solution was recompiling the static libs with PIE [16:39] they don't need to be PIC, PIE is enough [16:39] rbalint: so what I'm wondering is if we shouldn't analyze the archive for "-dev build-deps that don't produce shared lib runtime deps", do build tests of those packages, confirm they FTBFS, rebuild the build deps, rebuild the dependent packages, confirm it fixes the FTBFS [16:41] yes, this would be the way to go archive-wide IMO [16:41] rbalint: ok. would you like to drive this? :) [16:41] rbalint: I'm interested in making sure that we fix these build failures early so that developers don't trip on them [16:42] slangasek: sure :-) [16:46] cool [16:46] rbalint: to be clear, we would want this analysis across all of main and universe [16:48] slangasek: sure, it was my understanding, too [17:35] cyphermox: would you happen to have any insight into LP: #1688018 or LP: #1682227 ? [17:35] Launchpad bug 1688018 in network-manager (Ubuntu) "DNS server from vpn connection is not being used after network-manager upgrade to 1.2.6" [Undecided,Confirmed] https://launchpad.net/bugs/1688018 [17:35] Launchpad bug 1682227 in dnsmasq (Ubuntu) "dnsmasq, network manager *still* not able to relay DNS queries or respond to DNS requests after VPN connection failure / die off" [Undecided,New] https://launchpad.net/bugs/1682227 [17:37] not sure the second is accurate, would need to dig in more about the first... [17:51] nacc: too many people with unrelated issues touching these bugs, some are about VPN and network interfaces, other about suspend/resume behavior, and others about $somethingelse [17:51] cyphermox: yeah, me neither yet [17:52] cyphermox: right, so there are (i think) two classes of bugs, as you noted [17:52] s/r is supposedly fixed (or is confirmed fixed for many users) [17:52] the dns 'leak' is a separate bug [17:52] *class [17:52] yes, suspend resume is probably fixed. [17:52] i agree they are all really noisy :) [17:53] rbasak: LP: #1573624, not sure if you've seen that last comment? [17:53] Launchpad bug 1573624 in mysql-5.7 (Ubuntu) "package mysql-server-5.7 5.7.11-0ubuntu6 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1" [Undecided,Confirmed] https://launchpad.net/bugs/1573624 [17:53] yeah... well it's a "common problem" and people don't usually have the esoteric knowledge of DNS in the context of VPNs [17:53] cyphermox: right [17:54] I have no idea why some of these have been marked as duplicate when they pretty obviously look like not [17:55] nacc: that comment sounds like bug 1592669 [17:55] bug 1592669 in mysql-5.7 (Ubuntu) "postinst fails when daemon is not running (or is disabled by policy-rc.d)" [High,In progress] https://launchpad.net/bugs/1592669 [17:55] nacc: I'll comment [17:55] cyphermox: yeah, the s/r bug that is fix-released had a crazy number of dupes, i'm not sure where they all came from [17:55] rbasak: yep, thanks! [17:56] nacc: so first step would be to make sure dnsmasq indeed has the requisite fixes, so at least we know we don't need to look at suspend/resume too much [17:56] (I'm doing this, just including the running commentary) [17:57] err, why is this done without patches? [17:59] cyphermox: dnsmasq is a 1.0 source format pkg [17:59] iirc [17:59] doesn't matter, we still do patches for that? [17:59] (usually anyway) [18:00] it doesn't matter, it's just yucky [18:01] cyphermox: maybe i am misunderstanding, but i thought a 1.0 source package was an orig tarball plus a diff tarball (a single patch to apply aiui) [18:04] cpaelzer: would you be able to respond to LP: #1540692 from a qemu perspective? [18:04] Launchpad bug 1540692 in qemu (Ubuntu) "Enable the VirtIO GPU 3D (Virgil)" [Wishlist,Confirmed] https://launchpad.net/bugs/1540692 [18:04] cpaelzer: i'm guessing we're just following debian's lead, but would like confirmation [18:06] nacc, you can still use a patching tool like quilt for 1.0 format packages; it only needs a bit of configuration [18:07] cyphermox: ah ok, i guess maybe it's not available by default and the tool i usually use (e.g., `dpkg-source --commit`) just says "no" :) [18:07] *not configured by default [18:09] nacc: in any case, looks like dnsmasq is up to par (at least AFAICT), so focusing on the VPN situation... [18:10] cyphermox: ok [18:37] cyphermox: here is another possibly related (with a specific missing connection between NM and openvpn being claimed): LP: #1686252 [18:37] Launchpad bug 1686252 in plasma-nm (Ubuntu) "OpenVPN connection doesnt reconnect on connection loss" [Undecided,New] https://launchpad.net/bugs/1686252 [18:37] the 'repeatedly tell OpenVPN to connect' seems similar [18:41] no, that's something different [18:45] cyphermox: ok :) [18:49] rbasak: it appears that perhaps this is a real bug: LP: #1688068 ? [18:49] Launchpad bug 1688068 in mysql-5.7 (Ubuntu) "apparmor profile prevents running in live CD" [Undecided,New] https://launchpad.net/bugs/1688068 [18:51] sarnold: for something like LP: #1687930 which is really just a report of https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-8779.html, what does the security team usually do with such bugs? [18:51] Launchpad bug 1687930 in rpcbind (Ubuntu) "remote denial-of-service" [Undecided,New] https://launchpad.net/bugs/1687930 [18:51] rpcbind through 0.2.4, LIBTIRPC through 1.0.1 and 1.0.2-rc through 1.0.2-rc3, and NTIRPC through 1.4.3 do not consider the maximum RPC data size during memory allocation for XDR strings, which allows remote attackers to cause a denial of service (memory consumption with no subsequent free) via a crafted UDP packet to port 111, aka rpcbomb. (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8779) [18:52] nacc: we normally mark it confimred, public security, and add the bug to the UCT entry so we stand a chance of closing the bug when updates are issued [18:53] sarnold: ok, are you able to do that for this bug? i can do the first part, not sure if i have permissions to do the second [18:53] nacc: of course if it's in universe we add the usual "this package is community-supported, please provide debdiffs" etc etc [18:54] sarnold: right [18:54] nacc: heh yeah, it's not worth figuring out how to do merges in bzr to add one line to the file :) hehe [18:55] sarnold: thanks! [19:09] nacc: done on the qemu bug [19:10] nacc: it is not only debians lead, but also component mismatch and full of CVEs recently [19:10] nacc: I wrote it in the bug to be clear with the reporter [20:07] cpaelzer: thanks! [20:59] What would I use on Lubuntu and Xubuntu that is equivalent to gnome-session-quit? [21:00] it's via lxsession if memory serves correctly [21:00] (for lubuntu) [21:06] cpaelzer: fwiw, re: c#2.6 in LP: #1686679, the Author should be the patch's author, not the backporter's. [21:06] Launchpad bug 1686679 in autofs5 (Ubuntu Yakkety) "[SRU] Ubuntu16.04 : autofs takes extreamly long with large number of direct maps" [Medium,New] https://launchpad.net/bugs/1686679 [21:11] wxl: Is there anyway you could confirm that for me so I can fix a software-properties bug? [21:12] What precisely does gnome-session-quit do? [21:14] gnome-session-quit - End the current GNOME session [21:14] There's a reboot button in software-properties-gtk that I'm guessing doesn't do anything on Lubuntu or Xubuntu. [21:15] xfce4-session-logout --reboot [21:15] Unit193: will there be a prompt too? [21:15] If you want that, drop '--reboot' [21:16] i'm on kubuntu right now and plasma ain't behaving for me. once i get it going again i'll open a vm for you, bdmurray [21:17] wxl: cool, thanks [21:17] Unit193: Thanks [21:20] lxsession-logout [21:21] bdmurray: Sure thing! [21:21] wxl: I've put this issue in bug 1693038 since it might be worth SRU'ing. [21:21] bug 1693038 in software-properties (Ubuntu) "needs to support restart on Lubuntu and Xubuntu" [Undecided,New] https://launchpad.net/bugs/1693038 [21:22] bdmurray: if you subscribe lubuntu packages team, we'll notice :) [21:30] rbasak: https://launchpadlibrarian.net/318686604/HookError_source_mysql_5.7.txt from LP: #1689015 appears to be a bug in the mysql apport hook? [21:30] Launchpad bug 1689015 in mysql-5.7 (Ubuntu) "package mysql-server-5.7 5.7.18-0ubuntu0.16.04.1 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1" [Undecided,Confirmed] https://launchpad.net/bugs/1689015 [21:32] nacc: For sure with the 2nd traceback [21:33] bdmurray: yep [21:35] nacc: At least in zesty there is try except for the other one [21:35] bdmurray: ah ok, good to know [21:43] nacc, bdmurray: I suspect the user has replaced /usr/bin/python with python 3. [21:43] We should have apport pick up on that and have a bug pattern on it. [21:45] rbasak: Why do you suspect that in that bug? Also re apport bug 1681528. [21:45] bug 1681528 in apport (Ubuntu) "Include information about python versions" [Undecided,New] https://launchpad.net/bugs/1681528 [21:45] bdmurray: I'd need to check, but https://launchpadlibrarian.net/318686604/HookError_source_mysql_5.7.txt and I don't think that the hook has been converted to Python 3. So I wouldn't expect that error. Also I've seen users do this before, IIRC wrt. mysql. [21:46] I could be wrong. Just a hunch. [21:53] rbasak: yeah there was another bug that i triaged today with that issue (they eventually get a backtrace about ConfigParser, which is now configparser in python3) [21:56] rbasak: running python3 /usr/share/apport/package-hooks/source_mysql-5.7.py or python /usr/share/apport/package-hooks/source_mysql-5.7.py works for me on a xenial system [21:56] bdmurray: could it be an edge case? [21:56] bdmurray: what does the shebang say? [21:56] rbasak: there is no shebang in it [21:58] bdmurray: http://paste.ubuntu.com/24637495/ [21:58] This is why I think it's a 2 vs 3 thing. [22:00] bdmurray: so I don't know how he's got things running under Python 3, but I'm pretty sure the hook was not written to target 3. [22:01] We can fix it of course. [22:01] We should update it to work on both at a minimum. And perhaps there's a dependency that's not being declared. [22:01] Or, perhaps it's an edge case code path that we haven't noticed and is always buggy since something in apport was deliberately switched to use 3. [22:02] * rbasak EODs [22:03] python3-apport is seeded and apport just uses all the stuff in /usr/share/apport/package-hooks/ [22:03] The point being I don't think the user did anything wrong but that the hook needs updating. === Guest64879 is now known as RAOF