Analysis of networking tests failing only on Ubuntu Desktop (the 127.0.1.1 entry in /etc/hosts).
Documented my understanding in the tck-17 & tck-21 repositories’ READMEs.
Ran tck-17 & tck-21 on noble-arm64 (RPi5 board), all well
openjdk-8 security release
Spent time on triage of new JTREG failures on mantic, jammy, focal, bionic (a large armhf list is still pending)
FIPS crypto provider prototype
prototyped a Java wrapper and tests for Message Authentication Codes
prototyped a Java wrapper and tests for Message Digests
Resumed work on the crypto-config specification with a strong goal of having it validated and published by the end of this cycle
Some time spent on openssl 3.0.13 which is waiting for the t64 transition to conclude first
More review of FIPS patches that we would like to integrate into Noble and SRU to previous releases (no behavior change when not running with the kernel in FIPS mode, don’t worry)
armhf Y2038 support (a.k.a. armhf 64-bit time_t)
Tests on Ubuntu, mostly done but I need to fine-tune the package list; haven’t looked at statistics yet
Misc
A day off at last
Experimented with ways to reduce memory usage of the excuses page (50% lower for the global one, smaller improvements for the by_team one) while also improving the UI and UX (results shown in tables!)
Toyed with data retrieval and extraction from our status posts along with AI and LLMs but finally used word clouds to come up with some “highlights” for the team members during this cycle:
the NMUs to unstable landed, and have mostly made their way into noble-proposed via autosync. A few libraries will still need merges, but the core set (that make the most mess for rebootstrapping) appear to have now landed.
Worked on bootstrapping against the new libraries: perl and python are bootstrapped, apt is bootstrapped
added a hack to apt in the form of an artificial Conflicts: libnettle8 to hint the resolver in the buildd chroots to remove libraries and let apt upgrade. Seems to be working now in the bootstrap ppa.
working on bootstrapping rustc against an out-of-archive build to get around the self-build-dep on cargo (via dh-cargo). This blocks a lot of things via python-cryptography. Maybe will work now that apt is upgradeable.
Had done part of the bootstrap of glib2.0 but then got sucked into other parts of the graph and unfortunately left it broken on !armhf for a long time in noble-proposed, breaking builds of other things. Jeremy Bícha took care of cleaning this up, but glib2.0 bootstrap is still a big project.
Doing a lot of binNMUs in Debian on armel and armhf, as they have the same bootstrap requirements there
Release
Did an early NBS removal of libefivars1 and libefiboot1 from noble because these were breaking image builds because something wanted to pull in the real package during an image build instead of the virtual package now provided by libefivars1t64, causing a conflict.
Update deb packages and snaps, and FIPS packages. For deb packages, still need someone to sponsor the sync from Debian unstable. LP: #2056309, LP: #2056310
Go 1.22 transition
Look at some packages that need special attention when doing archive rebuild with golang-1.22.
Worked with the Public Cloud team to help them debugging Networking broken in early boot on Oracle Native instances. This boiled down to dhcpcd only setting the MTU on the link, but not on the interface. I came up with a patch for initramfs-tools.
PR: 1928 - add support for the Desktop use case of being able to defer user creation to first boot. This task was mostly about enumerating existing use cases and adding tests to avoid regressions.