|
 |
12828a |
# 2021-12 CentOS board meeting
|
|
|
12828a |
|
|
|
12828a |
https://hackmd.io/@centosboard/rJQZe2zFF
|
|
|
12828a |
|
|
|
12828a |
Meeting starts: 20:00 UTC on Wednesday 8th of December:
|
|
|
12828a |
|
|
|
12828a |
`date -d "2021-12-08 20:00 UTC"`
|
|
|
12828a |
|
|
|
12828a |
Zoom link : https://zoom.us/j/93879964686
|
|
|
12828a |
|
|
|
12828a |
Passcode will be sent to participants and guests the day the meeting takes place.
|
|
|
12828a |
|
|
|
12828a |
# 2021-12 CentOS board meeting - Agenda
|
|
|
12828a |
|
|
|
12828a |
# Attendees
|
|
|
12828a |
|
|
|
12828a |
## Board members
|
|
|
12828a |
|
|
|
12828a |
* Pat Riehecky
|
|
|
12828a |
* Thomas Oulevey
|
|
|
12828a |
* Rich Bowen
|
|
|
12828a |
* Davide Cavalca
|
|
|
12828a |
* Tru Huynh
|
|
|
12828a |
* Mike
|
|
|
12828a |
* Jim
|
|
|
12828a |
* Bex
|
|
|
12828a |
* Josh Boyer joined at :30
|
|
|
12828a |
|
|
|
12828a |
## Directors Absent
|
|
|
12828a |
|
|
|
12828a |
* Josh Boyer sends regrets (but made it a bit late :)
|
|
|
12828a |
* Johnny
|
|
|
12828a |
|
|
|
12828a |
## Guests
|
|
|
12828a |
|
|
|
12828a |
* Lance
|
|
|
12828a |
* Neal
|
|
|
12828a |
* Shaun
|
|
|
12828a |
* Peter Georg
|
|
|
12828a |
* Aoife Moloney
|
|
|
12828a |
* Steven
|
|
|
12828a |
* Amy
|
|
|
12828a |
|
|
|
12828a |
# Agenda
|
|
|
12828a |
|
|
|
12828a |
* Previous minutes
|
|
|
12828a |
* https://blog.centos.org/2021/11/october-2021-board-meeting-minutes/
|
|
|
12828a |
* November meeting was skipped
|
|
|
12828a |
|
|
|
12828a |
* Board seat nominations
|
|
|
12828a |
* https://lists.centos.org/pipermail/centos-devel/2021-November/077422.html
|
|
|
12828a |
* 11 nominations
|
|
|
12828a |
* 7 accepted, with nomination statements
|
|
|
12828a |
* 2 declined
|
|
|
12828a |
* 2 never responded in any way
|
|
|
12828a |
|
|
|
12828a |
* Proposal for -extras on CS9 (Brian)
|
|
|
12828a |
* https://lists.centos.org/pipermail/centos-devel/2021-November/077417.html
|
|
|
12828a |
* Proposal: Remove extra red tape from process to get packages into -extras repo
|
|
|
12828a |
* SIG-like structure for the repo, with SIG chairs as members
|
|
|
12828a |
* Members could tag packages for release when they're ready
|
|
|
12828a |
* Will proceed unless there are objections expressed
|
|
|
12828a |
* What do we do about third-party repos like EPEL?
|
|
|
12828a |
* Need a policy drafted for this.
|
|
|
12828a |
* Policy on retiring unmaintained repos
|
|
|
12828a |
* Pat&Davide: document the process (and for SIGs) so they are well informed
|
|
|
12828a |
* Brian: yes
|
|
|
12828a |
* Tru : How do you resolve conflicts ?
|
|
|
12828a |
* Brian: just for -release packages so likely no conflicts
|
|
|
12828a |
* Tru: Concerned also about conflicts with third-party repos
|
|
|
12828a |
* Davide: would the infra SIG be a good parent organization?
|
|
|
12828a |
* Bex: reporting on how many releases are updating their repo defs (and what that means in context) might be a useful stat.
|
|
|
12828a |
* Davide: finding out how many folks are downstream consumers of a SIG Repo def could help identify a general number of users (which could be handy).
|
|
|
12828a |
* Move forward with the proposal and document it in the SIG Guide + above comments
|
|
|
12828a |
|
|
|
12828a |
|
|
|
12828a |
### On going discussion
|
|
|
12828a |
|
|
|
12828a |
* Secure boot and SIGs (ie, issue #67 below)
|
|
|
12828a |
* SIGs want to ship content that needs to be signed
|
|
|
12828a |
* Signing with personal keys results in a terrible user experience
|
|
|
12828a |
* Options
|
|
|
12828a |
1. Just use project key
|
|
|
12828a |
2. Make a separate key for these artifacts, and get this added to the shim
|
|
|
12828a |
* Pat: preference for 2/ - separate volonteers effort
|
|
|
12828a |
* Brian: For the Infra, figure out a long term gov for people interacting with Microsoft. Trusted set of people to manage keys.
|
|
|
12828a |
* Davide: Could be centralized for all SIGs ? Does it need to be someone at RH ?
|
|
|
12828a |
* Bex: Board perspective on why having all the released signed by the same key could be a problem ? Safeguard at the SIG acceptance level ?
|
|
|
12828a |
* Neal : Delegate key that can be removed / Think about users perspective for booting things in an easy way
|
|
|
12828a |
* Understand how delegate key and shim can be done ? Brian is happy to follow up the different technical questions.
|
|
|
12828a |
* Bex : Write a detailed proposal and bring it to Red Hat.
|
|
|
12828a |
* Neal: There's a ticket for this (CS9 secureboot ?) - https://bugzilla.redhat.com/show_bug.cgi?id=2027505
|
|
|
12828a |
* Reasonnable to target CS9 only if need be.
|
|
|
12828a |
|
|
|
12828a |
### Issues
|
|
|
12828a |
|
|
|
12828a |
https://git.centos.org/centos/board/issues
|
|
|
12828a |
|
|
|
12828a |
**Issues to be closed (ACTION close all of them if no objection)**
|
|
|
12828a |
|
|
|
12828a |
* None
|
|
|
12828a |
|
|
|
12828a |
**New issues**
|
|
|
12828a |
|
|
|
12828a |
* None
|
|
|
12828a |
|
|
|
12828a |
**Pending issues**
|
|
|
12828a |
|
|
|
12828a |
* **[#67](https://git.centos.org/centos/board/issue/67)** Trusting the SIGs by default, from a CentOS Project perspective (Secureboot)
|
|
|
12828a |
* See above↓
|
|
|
12828a |
* **[#65](https://git.centos.org/centos/board/issue/65)** Intel OneApi and Centos stream (Clarification sought - do we actually have any contacts at Intel?
|
|
|
12828a |
* Rich has sent feedback via the website, but don't know whether that will make it to a human.
|
|
|
12828a |
* **[#45](https://git.centos.org/centos/board/issue/45)** CentOS variant artifacts (ISOs, disk images, etc.) branding
|
|
|
12828a |
* Resolved/Approved, but needs to be published. Someone needs to take an action item here.
|
|
|
12828a |
* Publish this in the SIG handbook - Rich will do this
|
|
|
12828a |
* Add note/reference in the TM guidelines, and vice versa
|
|
|
12828a |
* Neal will file a ticket requesting further policy around this
|
|
|
12828a |
* **[#44](https://git.centos.org/centos/board/issue/44)** Remove former Directors from various accounts and permissions
|
|
|
12828a |
* This has been hanging around for 7 months, but it's unclear how to proceed here.
|
|
|
12828a |
* Are former directors still on the mailing lists?
|
|
|
12828a |
* Are there specific actions we need to take here?
|
|
|
12828a |
* Mailing list, IRC channel, HackMD, mailing list ownership
|
|
|
12828a |
* Brian: create a ticket to Infra SIG when a board member goes.
|
|
|
12828a |
* Bex: seperate access link to your board role and to the community roles
|
|
|
12828a |
|
|
|
12828a |
**Issues on hold**
|
|
|
12828a |
|
|
|
12828a |
* **#04** Definitive answer requested regarding logo design (On hold as I work with Brand to register. No Board action needed at this time.)
|
|
|
12828a |
* **#27** Providing Official AMIs in Amazon CN regions.
|
|
|
12828a |
* **#03** Getting official CentOS images into Azure
|
|
|
12828a |
|
|
|
12828a |
|
|
|
12828a |
### Community Architect updates
|
|
|
12828a |
|
|
|
12828a |
* Stream 9 "launch" messaging - https://blog.centos.org/2021/12/introducing-centos-stream-9/ and https://centos.org/stream9/
|
|
|
12828a |
* FOSDEM Dojo CFP - https://wiki.centos.org/Events/Dojo/FOSDEM2022
|
|
|
12828a |
* AMA on the 4th of Feb
|
|
|
12828a |
|
|
|
12828a |
### SIG Reports
|
|
|
12828a |
|
|
|
12828a |
* Virtualization - https://blog.centos.org/2021/12/centos-community-newsletter-december-2021/#:~:text=the%20past%20quarter.-,Virtualization,-Advanced%20Virtualization%20updates
|
|
|
12828a |
* OpsTools - https://blog.centos.org/2021/12/centos-community-newsletter-december-2021/#:~:text=CentOS%20OpsTools%20SIG%20Quarterly%20Report
|
|
|
12828a |
|
|
|
12828a |
### AOB
|
|
|
12828a |
|
|
|
12828a |
* TBC
|
|
|
12828a |
|
|
|
12828a |
### Executive Session
|
|
|
12828a |
|
|
|
12828a |
* This part is reserved for board members.
|
|
|
12828a |
|
|
|
12828a |
###### tags: `agenda`
|
|
|
12828a |
|