[14:59] <sil2100> o/
[15:00] <bdmurray> o/
[15:01] <rbasak> o/
[15:01] <sil2100> o/
[15:05] <micahg> I'm kinda here and I have another meeting in 25 min
[15:06] <sil2100> Do we know who's chairing today? I guess we stopped selecting chairs recently
[15:11] <rbasak> #startmeeting DMB
[15:11] <meetingology> Meeting started Mon May  8 15:11:31 2017 UTC.  The chair is rbasak. Information about MeetBot at http://wiki.ubuntu.com/meetingology.
[15:11] <meetingology> Available commands: action commands idea info link nick
[15:11] <rbasak> Might as well be me rather than me waiting around.
[15:11] <rbasak> #topic Review of previous action items
[15:11] <rbasak> rbasak to sort Aron's request (carried-over)
[15:12] <rbasak> I was looking at this earlier, and would like a second opinion. But I'll move on for now.
[15:12] <rbasak> #topic Applications
[15:12] <rbasak> #info There are no applications on today's agenda.
[15:12] <rbasak> #topic Outstanding mailing list requests to assign
[15:13] <rbasak> One from Gunnar about GNOME Help packages. Is someone availalble to take that please?
[15:14] <rbasak> I see no other outstanding requests.
[15:14] <rbasak> Any volunteers?
[15:14] <bdmurray> rbasak: that's just adding packages?
[15:15] <bdmurray> If so give it to me.
[15:15] <rbasak> I think so.
[15:15] <bdmurray> Well either way, I'll do it.
[15:15] <rbasak> It might the description of personal-gunnarhj changing too.
[15:15] <rbasak> Thanks!
[15:15] <rbasak> #action bdmurray to handle GunnarHj's GNOME Help packages PPU request
[15:15] <meetingology> ACTION: bdmurray to handle GunnarHj's GNOME Help packages PPU request
[15:15] <jbicha> happyaron also requested his packageset be updated
[15:16] <rbasak> Yeah, see above - I'll discuss that next.
[15:16] <rbasak> #topic Any other business
[15:17] <rbasak> I'm not sure on what basis to handle happyaron's request. Do I just verify that he's listed in the Debian Uploaders field?
[15:17] <rbasak> As network-manager seems like quite a step up from some packages in universe from an Ubuntu perspective.
[15:18] <rbasak> The others seem straightforward to me, with dkms perhaps in the middle.
[15:18] <rbasak> For reference: https://lists.ubuntu.com/archives/devel-permissions/2017-April/001100.html
[15:18] <bdmurray> Do we know what his original application was like?
[15:19] <rbasak> I think it might be before my time. I'll see if I can find it.
[15:21] <rbasak> I can only find https://wiki.ubuntu.com/AronXu/DeveloperApplication, which was presumably unsuccessful. Or was that converted to PPU maybe?
[15:22] <jbicha> hi, I hope I'm not interrupting but happyaron has been one of the main maintainers of NM in Ubuntu:
[15:22] <jbicha> https://git.launchpad.net/network-manager/log/
[15:22] <jbicha> https://git.launchpad.net/~network-manager/network-manager/+git/ubuntu-applet/log/
[15:22] <bdmurray> I think because network-manager is seeded it requires some further discussion.
[15:24] <rbasak> https://irclogs.ubuntu.com/2013/09/09/%23ubuntu-meeting.html is relevant.
[15:25] <rbasak> That's Aron's core dev application (unsuccessful) and it looks like the ubuntukylin packageset was created instead.
[15:25] <bdmurray> https://wiki.ubuntu.com/UbuntuDevelopers#PerPackage
[15:26] <bdmurray> That makes reference to "need to show ... previous work on the package" and "previous concern for the package ... in Ubuntu" - so I think an application needs to be more than just add these.
[15:27] <rbasak> I suppose that applies to all of them?
[15:27] <rbasak> Shall I reply and ask him to address that bullet point for the packages he's requesting?
[15:28] <Laney> The DD process applies to happyaron. https://wiki.ubuntu.com/DeveloperMembershipBoard/ApplicationProcess
[15:28] <bdmurray> Well maybe not for DDs, but I'm concerned about this in particular because of bug 1676547.
[15:30] <rbasak> OK, so what should I do next?
[15:33] <bdmurray> I think the guidelines for DDs are clear and we should just add it, but I personally have reservations.  So then the question is do we, the DMB, get to exercise judgement in this (DD) case.
[15:34] <rbasak> The DMB set the DD guidelines, so the DMB absolutely can exercise judgement so we so choose.
[15:34] <jbicha> bdmurray: is 1676547 happyaron's fault? I'm not sure how relevant that bug is here?
[15:35] <rbasak> And if we do choose, then perhaps that's an indication that the DD guideline needs amending.
[15:35] <jbicha> (and I apologize if I'm speaking out of turn here)
[15:35] <bdmurray> jbicha: cyphermox could explain better but as I understand it the SRU of network-manager to xenial add new capabilities which were not accounted for in Yakkeyt.
[15:36] <jbicha> ah ok
[15:36] <bdmurray> So if you had the X SRU installed and upgraded to yakkety you'd have no network. If you didn't have the n-m SRU you'd be fine.
[15:36] <rbasak> Perhaps the DD guidelines need amending to make it clear that the same original criteria must still apply to the packages being requested?
[15:36] <jbicha> I think I helped sponsor those SRUs :(
[15:37] <Laney> The page I linked says you can seek assurances if you think the new packages have more 'impact'.
[15:38] <bdmurray> Well not many people upgrade from X to Y this late, but still even if it didn't impact many people its not a great experience.
[15:39] <bdmurray> rbasak: So I think network-manager is worth some further discussion.
[15:40] <rbasak> OK
[15:40] <rbasak> What about the others?
[15:40] <rbasak> dkms?
[15:41] <rbasak> ocserv and proxychains are I think probably uncontroversial?
[15:41] <bdmurray> rbasak: thinking about dkms
[15:42] <bdmurray> that's also seeded so maybe it should be discussed too?
[15:42] <rbasak> #agreed Aron Xu's DD-based PPU request for network-manager needs further discussion
[15:42] <rbasak> OK
[15:43] <sil2100> I see only one direct ubuntu upload of dkms made by him
[15:43] <rbasak> #agreed Aron Xu's DD-based PPU request for dkms is similarly seeded so should probably be part of the same discussion
[15:43] <rbasak> ocserv and proxychains are I think probably uncontroversial?
[15:44] <bdmurray> agreed
[15:44] <sil2100> +1
[15:45] <rbasak> #agreed +1 for Aron Xu's DD-based PPU requests for ocserv and proxychains
[15:45] <bdmurray> rbasak: although proxychains was already in his list...
[15:45] <rbasak> Thanks all. I'll reply to the list.
[15:45] <rbasak> Hmm. OK!
[15:45] <bdmurray> rbasak: also you said ocserv and he said ocsev
[15:46] <rbasak> I think he typoed it. What he said didn't seem to exist, and so I looked up his Debian maintainerships.
[15:46] <bdmurray> Hmm, okay.
[15:47] <rbasak> I guess that's it for Aron for this meeting today then?
[15:47] <rbasak> Any other AOB?
[15:47] <bdmurray> not from me
[15:49] <rbasak> That'll be it then. Thanks all!
[15:49] <rbasak> #endmeeting
[15:49] <meetingology> Meeting ended Mon May  8 15:49:02 2017 UTC.
[15:49] <meetingology> Minutes:        http://ubottu.com/meetingology/logs/ubuntu-meeting/2017/ubuntu-meeting.2017-05-08-15.11.moin.txt
[15:49] <sil2100> o/
[16:34] <tyhicks> hello
[16:35] <tyhicks> #startmeeting
[16:35] <meetingology> Meeting started Mon May  8 16:35:11 2017 UTC.  The chair is tyhicks. Information about MeetBot at http://wiki.ubuntu.com/meetingology.
[16:35] <meetingology> Available commands: action commands idea info link nick
[16:35] <tyhicks> The meeting agenda can be found at:
[16:35] <tyhicks> [LINK] https://wiki.ubuntu.com/SecurityTeam/Meeting
[16:35] <tyhicks> [TOPIC] Announcements
[16:35] <tyhicks> Jeremy Bicha (jbicha) provided debdiffs for trusty-zesty for weechat (LP: #1686478)
[16:35] <mdeslaur> \o
[16:35] <tyhicks> Thank you for your assistance in keeping Ubuntu users secure! :)
[16:35] <tyhicks> [TOPIC] Weekly stand-up report
[16:35] <tyhicks> jdstrand: you're up
[16:35] <jdstrand> Got through a lot of the snappy PRs and store reviews the last two weeks. As of this second, caught up, but dbus activation and update-ns PRs are looming. All my PRs are merged
[16:35] <jdstrand> picked up the uid/gid seccomp filtering branch since it sounds like people are assigned to worked on privilege dropping in snaps and this is a requirement for that work
[16:35] <jdstrand> embargoed issue
[16:35] <jdstrand> wayland/gnome/plasma and kubernetes-support after
[16:36] <jdstrand> that's it from me
[16:36] <jdstrand> mdeslaur: you're up
[16:36] <mdeslaur> I'm on community this week
[16:37] <mdeslaur> I have a whole bunch of updates I'm currently testing to release this week, including tomcat7, tomcat8, apache2, freetype, etc.
[16:37] <mdeslaur> that's probably all I'll be doing
[16:37] <mdeslaur> that it, sbeattie, you're up
[16:37] <sbeattie> I'm on bug triage this week
[16:38] <sbeattie> I've got openjdk-8 updates pending, and will hopefully have openjdk-7 soon.
[16:38] <sbeattie> I'm also working on a libplist update
[16:38] <sbeattie> I have some kernel signoff and triage to do.
[16:38] <sbeattie> After that, I'll look for more updates to pick up
[16:39] <sbeattie> That'll consume my week.
[16:39] <sbeattie> tyhicks: over to you
[16:39] <tyhicks> I'm on cve triage
[16:39] <tyhicks> I've got a number of followups to do from the roadmap sprint last week
[16:40] <tyhicks> I need to drive the design of the final bit of the seccomp kernel patches to completion
[16:40] <tyhicks> I may also get a chance to start working with the fscrypto userspace code this week
[16:41] <tyhicks> that's it for me
[16:41] <tyhicks> jjohansen: you're up
[16:41] <jjohansen> I am working on apparmor upstreaming this week
[16:41] <jjohansen> I have a few bugs to follow-up on
[16:42] <jjohansen> but other than that, it is all upstreaming work
[16:42] <tyhicks> jjohansen: what specifically are you working on for upstreaming this week?
[16:43] <tyhicks> a couple weeks ago it was dealing with apparmofs changes and checkpatch cleanups
[16:43]  * tyhicks is mainly curious if you've hit any blockers around those two
[16:43] <jjohansen> I have a revised, smaller securityfs patch that I should be able to send up today. The securityfs portion is done, I am just doing some revision on the supporting apparmor bit
[16:43] <jjohansen> it reduces the securityfs changes to just what is needed to support adding symlinks
[16:44] <jjohansen> much smaller than the old change
[16:44] <tyhicks> nice
[16:44] <tyhicks> thanks
[16:45] <jjohansen> there are still some check patch changes to do
[16:45] <jjohansen> and I have a list of other random fixes that I know of to preform
[16:47] <tyhicks> ok
[16:47] <tyhicks> I had one more thing for myself. I need to retire precise from UCT and open precise/esm in UCT.
[16:47] <mdeslaur> \o/
[16:47] <tyhicks> sarnold: I think jjohansen is done now
[16:48] <sarnold> i'm in the happy place this week
[16:48] <jjohansen> well, sure I was just digging up the list
[16:48] <sarnold> returning to MIRs
[16:48] <tyhicks> jjohansen: we can sync up on those details later
[16:48] <sarnold> that's it for me, chrisccoulson?
[16:48] <chrisccoulson> I've got chromium, firefox and thunderbird to release this week
[16:48] <sarnold> wow
[16:49] <chrisccoulson> I also need to finish my new script for automating symbol uploads, so I can stop doing it manually
[16:49] <chrisccoulson> I'm not sure what else yet. That's me done
[16:50] <tyhicks> ratliff: you're up
[16:50] <ratliff> I'm in the happy place. I have a number of tasks from the sprint.
[16:51] <ratliff> I'm going to work on an icu update for esm.
[16:51] <ratliff> I'm going to instantiate the notification service.
[16:51] <ratliff> If I have time, I will do an update for UC15.
[16:51] <ratliff> that's it for me, back to you, tyhicks
[16:51] <tyhicks> thanks
[16:52] <tyhicks> [TOPIC] Highlighted packages
[16:52] <tyhicks> The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so.
[16:52] <tyhicks> See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved.
[16:52] <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/pyrad.html
[16:52] <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/plasma-workspace.html
[16:52] <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/pcs.html
[16:52] <tyhicks> [TOPIC] Miscellaneous and Questions
[16:52] <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/claws-mail.html
[16:52] <tyhicks> Does anyone have any other questions or items to discuss?
[16:52] <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/golang-github-appc-docker2aci.html
[16:53] <sbeattie> tyhicks: not to discuss particularly, but related to what ratliff said, there's ESM infrastructure tasks that will need to be done.
[16:54] <tyhicks> sbeattie: I think I've got most of the tasks to perform locally documented but you're right that we'll need to do some infrastructure things
[16:54] <tyhicks> sbeattie: I'll try to knock those out today/tomorrow
[16:54] <tyhicks> ratliff: fyi ^
[16:54] <sbeattie> tyhicks: sure, I'm happy to help there, too.
[16:55] <ratliff> thanks, tyhicks and sbeattie
[16:55] <tyhicks> ok
[16:55] <mdeslaur> ratliff: does anything actually use icu in the esm packageset?
[16:56] <tyhicks> shh
[16:56] <tyhicks> there's a reason why it is the first :)
[16:56]  * mdeslaur shuts up
[16:56] <tyhicks> it'll be a good test
[16:57] <tyhicks> it is in the list but there's not much there that depends on it
[16:57] <tyhicks> jdstrand, mdeslaur, sbeattie, jjohansen, sarnold, ChrisCoulson, ratliff: Thanks!
[16:57] <mdeslaur> thanks tyhicks
[16:57] <tyhicks> #endmeeting
[16:57] <meetingology> Meeting ended Mon May  8 16:57:31 2017 UTC.
[16:57] <meetingology> Minutes:        http://ubottu.com/meetingology/logs/ubuntu-meeting/2017/ubuntu-meeting.2017-05-08-16.35.moin.txt
[16:57] <jjohansen> thanks tyhicks
[16:57] <sbeattie> tyhicks: thanks
[16:57] <ratliff> thank you tyhicks!
[16:58] <sarnold> thanks tyhicks!