| 2017-01-04 12:57:23 |
Matthias Klose |
bug |
|
|
added bug |
| 2017-01-04 12:57:40 |
Matthias Klose |
parallax (Ubuntu): assignee |
|
Ubuntu Server Team (ubuntu-server) |
|
| 2017-01-04 12:57:54 |
Matthias Klose |
bug |
|
|
added subscriber MIR approval team |
| 2017-02-09 20:30:44 |
Robie Basak |
description |
crmsh now depends on parallax |
[Availability]
In universe; Architecture: all.
[Rationale]
Dependency for crmsh, part of our HA stack. parallax is needed for commands like 'crm cluster health' to work.
[Security]
No security history. It looks like parallax wraps the openssh client, so I don't think it is particularly security sensitive. It might be worth asking the security team to decline a security review anyway though.
[Quality assurance]
parallax is a Python API wrapper for ssh; users don't use it directly. Both Python 2 and Python 3 modules are shipped. No debconf questions. No open bugs in Debian, Ubuntu or upstream. No sign of any non-maintenance in Debian (just few upstream releases). No relation to exotic hardware.
Packaging does arrange for some tests to run automatically on build. It misses the one test that does exist. However, that test requires an ssh-able host, and we have no mechanism to set that up currently. Nesting an lxd container inside the autopkgtest environment might be something we could do, but it'd be Ubuntu only (no lxd Debian in yet; still at ITP stage in Debian bug 768073). I'm not sure we've done this thing before, or to what extent our autopkgtest infrastructure will work for this. Please let me know if you think it's needed.
debian/watch file connects to PyPI as expected.
[UI standards]
parallax provides an API only, so N/A.
[Dependencies]
None, except for Python. It should depend on openssh-client. TBC.
[Standards compliance]
Appears FHS compliant (trivial; it's a Python module built using dh-python). lintian clean except for debian-watch-may-check-gpg-signature. I don't believe there's a solution for this in PyPI at the moment, or at least upstream don't currently provide a signature.
[Maintenance]
~ubuntu-server will subscribe to this package, pending ack from ~jgrimm. I think this also falls under "simple packages" from the MIR requirements.
[Background information]
ssh support used to be provided via the pssh package in crmsh before 2.2. Since 2.2, it has been provided via the python-parallax instead. The upstream change for this was https://github.com/ClusterLabs/crmsh/commit/1698e42f5408adc553000616e1804294a7f61965.
Historically, crmsh never provided none of depends, recommends, suggests against pssh nor python-parallax. pssh has always been in universe, as is python-parallax.
According to https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=819545, "crm cluster health" requires ssh support. In response to this Debian added a dependency on python-parallax. I don't know when "crm cluster health" first appeared upstream, or if it has always been present, or whether Debian never worked with "crm cluster health" until that bug was resolved.
I don't think it'd be a regression upon what was already published to not depend on python-parallax, since "crm cluster health" would still have needed pssh previously (AFAICT). So I intend to do this for now to solve the component mismatch, but leave the MIR open for python-parallax to enter main in order to support "crm cluster health" going forward. |
|
| 2017-02-09 20:50:31 |
Robie Basak |
description |
[Availability]
In universe; Architecture: all.
[Rationale]
Dependency for crmsh, part of our HA stack. parallax is needed for commands like 'crm cluster health' to work.
[Security]
No security history. It looks like parallax wraps the openssh client, so I don't think it is particularly security sensitive. It might be worth asking the security team to decline a security review anyway though.
[Quality assurance]
parallax is a Python API wrapper for ssh; users don't use it directly. Both Python 2 and Python 3 modules are shipped. No debconf questions. No open bugs in Debian, Ubuntu or upstream. No sign of any non-maintenance in Debian (just few upstream releases). No relation to exotic hardware.
Packaging does arrange for some tests to run automatically on build. It misses the one test that does exist. However, that test requires an ssh-able host, and we have no mechanism to set that up currently. Nesting an lxd container inside the autopkgtest environment might be something we could do, but it'd be Ubuntu only (no lxd Debian in yet; still at ITP stage in Debian bug 768073). I'm not sure we've done this thing before, or to what extent our autopkgtest infrastructure will work for this. Please let me know if you think it's needed.
debian/watch file connects to PyPI as expected.
[UI standards]
parallax provides an API only, so N/A.
[Dependencies]
None, except for Python. It should depend on openssh-client. TBC.
[Standards compliance]
Appears FHS compliant (trivial; it's a Python module built using dh-python). lintian clean except for debian-watch-may-check-gpg-signature. I don't believe there's a solution for this in PyPI at the moment, or at least upstream don't currently provide a signature.
[Maintenance]
~ubuntu-server will subscribe to this package, pending ack from ~jgrimm. I think this also falls under "simple packages" from the MIR requirements.
[Background information]
ssh support used to be provided via the pssh package in crmsh before 2.2. Since 2.2, it has been provided via the python-parallax instead. The upstream change for this was https://github.com/ClusterLabs/crmsh/commit/1698e42f5408adc553000616e1804294a7f61965.
Historically, crmsh never provided none of depends, recommends, suggests against pssh nor python-parallax. pssh has always been in universe, as is python-parallax.
According to https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=819545, "crm cluster health" requires ssh support. In response to this Debian added a dependency on python-parallax. I don't know when "crm cluster health" first appeared upstream, or if it has always been present, or whether Debian never worked with "crm cluster health" until that bug was resolved.
I don't think it'd be a regression upon what was already published to not depend on python-parallax, since "crm cluster health" would still have needed pssh previously (AFAICT). So I intend to do this for now to solve the component mismatch, but leave the MIR open for python-parallax to enter main in order to support "crm cluster health" going forward. |
[Availability]
In universe; Architecture: all.
[Rationale]
Dependency for crmsh, part of our HA stack. parallax is needed for commands like 'crm cluster health' to work.
[Security]
No security history. It looks like parallax wraps the openssh client, so I don't think it is particularly security sensitive. It might be worth asking the security team to decline a security review anyway though.
[Quality assurance]
parallax is a Python API wrapper for ssh; users don't use it directly. Both Python 2 and Python 3 modules are shipped. No debconf questions. No open bugs in Debian, Ubuntu or upstream. No sign of any non-maintenance in Debian (just few upstream releases). No relation to exotic hardware.
Packaging does arrange for some tests to run automatically on build. It misses the one test that does exist. However, that test requires an ssh-able host, and we have no mechanism to set that up currently. Nesting an lxd container inside the autopkgtest environment might be something we could do, but it'd be Ubuntu only (no lxd Debian in yet; still at ITP stage in Debian bug 768073). I'm not sure we've done this thing before, or to what extent our autopkgtest infrastructure will work for this. Please let me know if you think it's needed.
debian/watch file connects to PyPI as expected.
[UI standards]
parallax provides an API only, so N/A.
[Dependencies]
None, except for Python. It should depend on openssh-client. I filed http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=854722 but don't think it's worth an Ubuntu delta over (openssh is recommended in Ubuntu's standard seed).
[Standards compliance]
Appears FHS compliant (trivial; it's a Python module built using dh-python). lintian clean except for debian-watch-may-check-gpg-signature. I don't believe there's a solution for this in PyPI at the moment, or at least upstream don't currently provide a signature.
[Maintenance]
~ubuntu-server has subscribed to this package. I think this also falls under "simple packages" from the MIR requirements.
[Background information]
ssh support used to be provided via the pssh package in crmsh before 2.2. Since 2.2, it has been provided via the python-parallax instead. The upstream change for this was https://github.com/ClusterLabs/crmsh/commit/1698e42f5408adc553000616e1804294a7f61965.
Historically, crmsh never provided none of depends, recommends, suggests against pssh nor python-parallax. pssh has always been in universe, as is python-parallax.
According to https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=819545, "crm cluster health" requires ssh support. In response to this Debian added a dependency on python-parallax. I don't know when "crm cluster health" first appeared upstream, or if it has always been present, or whether Debian never worked with "crm cluster health" until that bug was resolved.
I don't think it'd be a regression upon what was already published to not depend on python-parallax, since "crm cluster health" would still have needed pssh previously (AFAICT). So I intend to do this for now to solve the component mismatch, but leave the MIR open for python-parallax to enter main in order to support "crm cluster health" going forward. |
|
| 2017-02-09 20:51:01 |
Robie Basak |
parallax (Ubuntu): status |
Incomplete |
New |
|
| 2017-02-09 20:53:07 |
Robie Basak |
description |
[Availability]
In universe; Architecture: all.
[Rationale]
Dependency for crmsh, part of our HA stack. parallax is needed for commands like 'crm cluster health' to work.
[Security]
No security history. It looks like parallax wraps the openssh client, so I don't think it is particularly security sensitive. It might be worth asking the security team to decline a security review anyway though.
[Quality assurance]
parallax is a Python API wrapper for ssh; users don't use it directly. Both Python 2 and Python 3 modules are shipped. No debconf questions. No open bugs in Debian, Ubuntu or upstream. No sign of any non-maintenance in Debian (just few upstream releases). No relation to exotic hardware.
Packaging does arrange for some tests to run automatically on build. It misses the one test that does exist. However, that test requires an ssh-able host, and we have no mechanism to set that up currently. Nesting an lxd container inside the autopkgtest environment might be something we could do, but it'd be Ubuntu only (no lxd Debian in yet; still at ITP stage in Debian bug 768073). I'm not sure we've done this thing before, or to what extent our autopkgtest infrastructure will work for this. Please let me know if you think it's needed.
debian/watch file connects to PyPI as expected.
[UI standards]
parallax provides an API only, so N/A.
[Dependencies]
None, except for Python. It should depend on openssh-client. I filed http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=854722 but don't think it's worth an Ubuntu delta over (openssh is recommended in Ubuntu's standard seed).
[Standards compliance]
Appears FHS compliant (trivial; it's a Python module built using dh-python). lintian clean except for debian-watch-may-check-gpg-signature. I don't believe there's a solution for this in PyPI at the moment, or at least upstream don't currently provide a signature.
[Maintenance]
~ubuntu-server has subscribed to this package. I think this also falls under "simple packages" from the MIR requirements.
[Background information]
ssh support used to be provided via the pssh package in crmsh before 2.2. Since 2.2, it has been provided via the python-parallax instead. The upstream change for this was https://github.com/ClusterLabs/crmsh/commit/1698e42f5408adc553000616e1804294a7f61965.
Historically, crmsh never provided none of depends, recommends, suggests against pssh nor python-parallax. pssh has always been in universe, as is python-parallax.
According to https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=819545, "crm cluster health" requires ssh support. In response to this Debian added a dependency on python-parallax. I don't know when "crm cluster health" first appeared upstream, or if it has always been present, or whether Debian never worked with "crm cluster health" until that bug was resolved.
I don't think it'd be a regression upon what was already published to not depend on python-parallax, since "crm cluster health" would still have needed pssh previously (AFAICT). So I intend to do this for now to solve the component mismatch, but leave the MIR open for python-parallax to enter main in order to support "crm cluster health" going forward. |
[Availability]
In universe; Architecture: all.
[Rationale]
Dependency for crmsh, part of our HA stack. parallax is needed for commands like 'crm cluster health' to work.
[Security]
No security history. It looks like parallax wraps the openssh client, so I don't think it is particularly security sensitive. It might be worth asking the security team to decline a security review anyway though.
[Quality assurance]
parallax is a Python API wrapper for ssh; users don't use it directly. Both Python 2 and Python 3 modules are shipped. No debconf questions. No open bugs in Debian, Ubuntu or upstream. No sign of any non-maintenance in Debian (just few upstream releases). No relation to exotic hardware.
Packaging does arrange for some tests to run automatically on build. It misses the one test that does exist. However, that test requires an ssh-able host, and we have no mechanism to set that up currently. Nesting an lxd container inside the autopkgtest environment might be something we could do, but it'd be Ubuntu only (no lxd Debian in yet; still at ITP stage in Debian bug 768073). I'm not sure we've done this thing before, or to what extent our autopkgtest infrastructure will work for this. Please let me know if you think it's needed.
debian/watch file connects to PyPI as expected.
[UI standards]
parallax provides an API only, so N/A.
[Dependencies]
None, except for Python. It should depend on openssh-client. I filed http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=854722 but don't think it's worth an Ubuntu delta over (openssh is recommended in Ubuntu's standard seed).
[Standards compliance]
Appears FHS compliant (trivial; it's a Python module built using dh-python). lintian clean except for debian-watch-may-check-gpg-signature. I don't believe there's a solution for this in PyPI at the moment, or at least upstream don't currently provide a signature.
[Maintenance]
~ubuntu-server has subscribed to this package. I think this also falls under "simple packages" from the MIR requirements.
[Background information]
ssh support used to be provided via the pssh package in crmsh before 2.2. Since 2.2, it has been provided via the python-parallax instead. The upstream change for this was https://github.com/ClusterLabs/crmsh/commit/1698e42f5408adc553000616e1804294a7f61965.
Historically, crmsh never provided any of depends, recommends, suggests against pssh nor against python-parallax. pssh has always been in universe, as is python-parallax.
According to https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=819545, "crm cluster health" requires ssh support. In response to this Debian added a dependency on python-parallax. I don't know when "crm cluster health" first appeared upstream, or if it has always been present, or whether Debian never worked with "crm cluster health" until that bug was resolved.
I don't think it'd be a regression upon what was already published to not depend on python-parallax, since "crm cluster health" would still have needed pssh previously (AFAICT). So I intend to do this for now to solve the component mismatch, but leave the MIR open for python-parallax to enter main in order to support "crm cluster health" going forward. |
|
| 2017-02-09 20:54:08 |
Robie Basak |
description |
[Availability]
In universe; Architecture: all.
[Rationale]
Dependency for crmsh, part of our HA stack. parallax is needed for commands like 'crm cluster health' to work.
[Security]
No security history. It looks like parallax wraps the openssh client, so I don't think it is particularly security sensitive. It might be worth asking the security team to decline a security review anyway though.
[Quality assurance]
parallax is a Python API wrapper for ssh; users don't use it directly. Both Python 2 and Python 3 modules are shipped. No debconf questions. No open bugs in Debian, Ubuntu or upstream. No sign of any non-maintenance in Debian (just few upstream releases). No relation to exotic hardware.
Packaging does arrange for some tests to run automatically on build. It misses the one test that does exist. However, that test requires an ssh-able host, and we have no mechanism to set that up currently. Nesting an lxd container inside the autopkgtest environment might be something we could do, but it'd be Ubuntu only (no lxd Debian in yet; still at ITP stage in Debian bug 768073). I'm not sure we've done this thing before, or to what extent our autopkgtest infrastructure will work for this. Please let me know if you think it's needed.
debian/watch file connects to PyPI as expected.
[UI standards]
parallax provides an API only, so N/A.
[Dependencies]
None, except for Python. It should depend on openssh-client. I filed http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=854722 but don't think it's worth an Ubuntu delta over (openssh is recommended in Ubuntu's standard seed).
[Standards compliance]
Appears FHS compliant (trivial; it's a Python module built using dh-python). lintian clean except for debian-watch-may-check-gpg-signature. I don't believe there's a solution for this in PyPI at the moment, or at least upstream don't currently provide a signature.
[Maintenance]
~ubuntu-server has subscribed to this package. I think this also falls under "simple packages" from the MIR requirements.
[Background information]
ssh support used to be provided via the pssh package in crmsh before 2.2. Since 2.2, it has been provided via the python-parallax instead. The upstream change for this was https://github.com/ClusterLabs/crmsh/commit/1698e42f5408adc553000616e1804294a7f61965.
Historically, crmsh never provided any of depends, recommends, suggests against pssh nor against python-parallax. pssh has always been in universe, as is python-parallax.
According to https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=819545, "crm cluster health" requires ssh support. In response to this Debian added a dependency on python-parallax. I don't know when "crm cluster health" first appeared upstream, or if it has always been present, or whether Debian never worked with "crm cluster health" until that bug was resolved.
I don't think it'd be a regression upon what was already published to not depend on python-parallax, since "crm cluster health" would still have needed pssh previously (AFAICT). So I intend to do this for now to solve the component mismatch, but leave the MIR open for python-parallax to enter main in order to support "crm cluster health" going forward. |
[Availability]
In universe; Architecture: all.
[Rationale]
Dependency for crmsh, part of our HA stack. parallax is needed for commands like 'crm cluster health' to work.
[Security]
No security history. It looks like parallax wraps the openssh client, so I don't think it is particularly security sensitive. It might be worth asking the security team to decline a security review anyway though.
[Quality assurance]
parallax is a Python API wrapper for ssh; users don't use it directly. Both Python 2 and Python 3 modules are shipped. No debconf questions. No open bugs in Debian, Ubuntu or upstream. No sign of any non-maintenance in Debian (just few upstream releases). No relation to exotic hardware.
Packaging does arrange for some tests to run automatically on build. It misses the one test that does exist. However, that test requires an ssh-able host, and we have no mechanism to set that up currently. Nesting an lxd container inside the autopkgtest environment might be something we could do, but it'd be Ubuntu only (no lxd Debian in yet; still at ITP stage in Debian bug 768073). I'm not sure we've done this thing before, or to what extent our autopkgtest infrastructure will work for this. Please let me know if you think it's needed.
debian/watch file connects to PyPI as expected.
[UI standards]
parallax provides an API only, so N/A.
[Dependencies]
None, except for Python. It should depend on openssh-client. I filed http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=854722 but don't think it's worth an Ubuntu delta over (openssh is recommended in Ubuntu's standard seed).
[Standards compliance]
Appears FHS compliant (trivial; it's a Python module built using dh-python). lintian clean except for debian-watch-may-check-gpg-signature. I don't believe there's a solution for this in PyPI at the moment, or at least upstream don't currently provide a signature.
[Maintenance]
~ubuntu-server has subscribed to this package. I think this also falls under "simple packages" from the MIR requirements.
[Background information]
ssh support used to be provided via the pssh package in crmsh before 2.2. Since 2.2, it has been provided via the python-parallax instead. The upstream change for this was https://github.com/ClusterLabs/crmsh/commit/1698e42f5408adc553000616e1804294a7f61965.
Historically, crmsh never provided any of depends, recommends, suggests against pssh nor against python-parallax. pssh has always been in universe, as is python-parallax.
According to https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=819545, "crm cluster health" requires ssh support. In response to this Debian added a dependency on python-parallax. I don't know when "crm cluster health" first appeared upstream, or if it has always been present, or whether Debian never worked with "crm cluster health" until that bug was resolved.
I don't think it'd be a regression upon what was already published to not depend on python-parallax, since "crm cluster health" would still have needed pssh previously (AFAICT). But we want "crm cluster health" to work, hence this MIR. |
|
| 2017-02-13 17:42:52 |
Michael Terry |
parallax (Ubuntu): assignee |
Ubuntu Server Team (ubuntu-server) |
Ubuntu Security Team (ubuntu-security) |
|
| 2017-02-15 13:46:38 |
Robie Basak |
bug |
|
|
added subscriber Robie Basak |
| 2017-07-22 03:51:07 |
Seth Arnold |
bug |
|
|
added subscriber Seth Arnold |
| 2017-07-22 03:51:11 |
Seth Arnold |
parallax (Ubuntu): assignee |
Ubuntu Security Team (ubuntu-security) |
|
|
| 2017-08-03 12:12:48 |
Matthias Klose |
parallax (Ubuntu): status |
New |
Fix Released |
|
