[ffe][sru]: Update sosreport [last] plugin
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
sosreport (Ubuntu) |
Fix Released
|
Medium
|
Eric Desrochers | ||
Xenial |
Fix Released
|
Medium
|
Eric Desrochers | ||
Bionic |
Fix Released
|
Medium
|
Eric Desrochers | ||
Disco |
Fix Released
|
Medium
|
Eric Desrochers |
Bug Description
[IMPACT]
Canonical support is about to offer SOSCleaner project for UA customer who wants to obfuscate sensible data from an existing sosreport tarball such as user, hostname, network information obfuscation.
For user obfuscation, currently SOSCleaner relies on what sosreport offers which is "lastlog", reporting all user regardless of their UID.
Unfortunately, this generate a lot of false positives (and require a significant ignored_users list) inside SOSCleaner especially for user in the UID range 0-999 (e.g.'sys', 'bin', 'syslog', and much more)
I have submitted a PR in sosreport upstream in order to split lastlog output by UID ranges, in order to help SOSCleaner to obfuscate what we really want to obfuscate and ignore the rest.
https:/
https:/
Once approved upstream, I'd like to push that change in E/D/B/X in order to unblock the development of the tool "SOSCleaner" which unfortunately won't land in the archive for now, will be offered in a Private PPA. Note that the plan is for the package to land in the Ubuntu archive in the near future (few months still) and this change will highly impact the delay if this fix doesn't land in sosreport (Ubuntu archive).
[TEST CASE]
* Install sosreport
** Run sosreport:
- sosreport -a
* Install soscleaner
** Run soscleaner:
- soscleaner /tmp/sosreport-
* Make sure only user in the 1000-60000 UID range are obfuscated.
[REGRESSION POTENTIAL]
- None, sosreport will still collect the entire lastlog (current behavior), we are not removing that behaviour, we simply add an alternative which is not costly for typical systems.
[OTHER INFO]
* Upstream fix not merged yet, but +1 by maintainers:
https:/
https:/
* Build logs:
https:/
https:/
summary: |
- Update sosrepor [last] plugin + Update sosreport [last] plugin |
tags: | added: sts |
Changed in sosreport (Ubuntu): | |
status: | New → In Progress |
assignee: | nobody → Eric Desrochers (slashd) |
description: | updated |
description: | updated |
description: | updated |
description: | updated |
Changed in sosreport (Ubuntu): | |
importance: | Undecided → Low |
importance: | Low → Medium |
description: | updated |
Changed in sosreport (Ubuntu): | |
status: | Triaged → In Progress |
summary: |
- Update sosreport [last] plugin + Ffe: Update sosreport [last] plugin |
Changed in sosreport (Ubuntu Xenial): | |
assignee: | nobody → Eric Desrochers (slashd) |
Changed in sosreport (Ubuntu Bionic): | |
assignee: | nobody → Eric Desrochers (slashd) |
Changed in sosreport (Ubuntu Disco): | |
assignee: | nobody → Eric Desrochers (slashd) |
status: | New → In Progress |
Changed in sosreport (Ubuntu Bionic): | |
status: | New → In Progress |
Changed in sosreport (Ubuntu Xenial): | |
status: | New → In Progress |
importance: | Undecided → Medium |
Changed in sosreport (Ubuntu Bionic): | |
importance: | Undecided → Medium |
Changed in sosreport (Ubuntu Disco): | |
importance: | Undecided → Medium |
summary: |
- Ffe: Update sosreport [last] plugin + [ffe][sru]: Update sosreport [last] plugin |
Ok, this seems fine. Be sure to test-build the changes before uploading to eoan to protect against it FTBFS in the archive. +1 on the FFe from eoan's POV.