[09:14] utkarsh2102, bah -- knew I'd forgotten something [09:14] waveform: please do that now. :) [09:14] on it [09:15] don't announce that you already got it, hah [09:23] done [09:30] nice email :D [09:41] I didn't give away the ending :) [15:01] o/ [15:28] eslerm: I thnk you were half an hour early [15:28] we will start soon [15:28] I know :) [15:28] in that case you were well prepared :-) === cpaelzer_ is now known as cpaelzer [15:29] I hope so! [15:30] #startmeeting Weekly Main Inclusion Requests status [15:30] Meeting started at 15:30:10 UTC. The chair is cpaelzer. Information about MeetBot at https://wiki.ubuntu.com/meetingology [15:30] Available commands: action, commands, idea, info, link, nick [15:30] Ping for MIR meeting - didrocks joalif slyon sarnold cpaelzer jamespage [15:30] o/ [15:30] o/ [15:30] o/ [15:30] o/ [15:30] (sarnold is out) [15:31] o/ [15:31] welcome eslerm [15:31] #topic current component mismatches [15:31] Mission: Identify required actions and spread the load among the teams [15:31] #link https://people.canonical.com/~ubuntu-archive/component-mismatches-proposed.svg [15:31] thanks :D [15:31] #link https://people.canonical.com/~ubuntu-archive/component-mismatches.svg [15:32] lots of jdk things [15:32] slyon: I expect that to be doko, or is this now within some dedicated team/people? [15:32] cpaelzer: yeah, lots of c-m in general. I investigated jdk a bit. seems to be mostly related to the -doc package, maybe we can demote that. I'll try to get it cleared with doko (he's off today) [15:33] yes, if it really is a new -doc then add to extra excludes and be happy [15:33] next I see is glm -> highlights-js [15:33] re glm->highlight.js I looked at it, glm pulls in highlight.js to enable syntax highlighting in a doc page [15:33] it comes from debian https://salsa.debian.org/science-team/glm/-/commit/72cedac91ede1eac284796a5e1e1dcd0effb6303 [15:33] -ubottu:#ubuntu-meeting- Commit 72cedac in science-team/glm "d/rules: enable syntax highlighting in manual.html" [15:33] glm itself is the mir team (not us, the Ui ones) [15:33] the relevant upstream commit https://github.com/g-truc/glm/pull/1120 [15:33] -ubottu:#ubuntu-meeting- Pull 1120 in g-truc/glm "docs(manual): some markdown fixes" [Merged] [15:34] does anyone have connections to them to ask? [15:34] (hey) [15:34] hi didrocks [15:35] having you here, do you still have connections to mir people? [15:35] to ask how to deal with glm? [15:35] joalif: I wonder what happens if highlight.js is not installed? seems like "just" the highlighting wouldn't work? [15:35] In this case we might be able to drop it to a suggests.. [15:35] (or rather the mir team should do this) [15:36] yeah, I'm looking for someone to own this - no matter how exactly it will be resolved [15:36] well, apart from RAOF, I don't, I can ping him, but he is kind of at the opposite side of the world :p [15:36] that for sure, i'm not sure if it would impact the success of the build thoigh [15:36] i haven't checked [15:36] because it's used in debian/rules [15:36] let me try to follow up with saviq at worst [15:36] https://www.irccloud.com/pastebin/5bQnDDfV/ [15:37] let me ping on #ubuntu-release [15:37] done, let us continue [15:37] policykit-1 -> duktape [15:38] joalif: ack I saw that... maybe we need to update that snippet to fail gracefully in case highlight.js is not found in /usr/share/javascript/highlight.js/* [15:38] thanks joalif and didrocks for getting glm analyzed and handled [15:38] last time we have seen policykit it was a false positive [15:38] correct [15:39] didrocks: do you want to look if this is one again? [15:39] slyon: libnet-dns-perl is for foundations [15:39] if duktape is a false positive, we should add it to https://bugs.launchpad.net/ubuntu/+source/plzip/+bug/1980663 [15:39] -ubottu:#ubuntu-meeting- Launchpad bug 1980663 in plzip (Ubuntu) "[MIR] false-positives, do not promote" [Undecided, Fix Released] [15:40] ACK. I wasn't able to investigate any c-m besides jdk. but will take care of the foundations ones eventually [15:40] ok [15:40] wow [15:40] there are more when we scroll right [15:41] well that is how opening the archive feels [15:41] libsoup3 -> sysprof [15:41] desktop package [15:41] cpaelzer: I will double check policykit again [15:41] but I guess libsoup could be anywhere [15:42] let me grab checking libsoup [15:42] as the next is foundations again and I do not want to overload slyon [15:42] slyon: nvme-cli [15:42] ok [15:42] -> libnvme libhugetlbfs [15:43] foundations has some items around nvme anyway [15:43] maybe you can pass this item on to whoever owns these this cycle after you made an initial check what is going on [15:43] looks like a new major version [15:43] yes, I heard people talking about it in our standup today .) [15:43] :) [15:44] ok, chase them down :-P [15:44] looking at the clock [15:44] oO [15:44] going on [15:44] #topic New MIRs [15:44] Mission: ensure to assign all incoming reviews for fast processing [15:44] #link https://bugs.launchpad.net/ubuntu/?field.searchtext=&orderby=-date_last_updated&field.status%3Alist=NEW&field.status%3Alist=CONFIRMED&assignee_option=none&field.assignee=&field.subscriber=ubuntu-mir [15:44] eslerm: is here and smartcard is in this list [15:44] oh I see [15:45] so the decision was "no need for now" [15:45] I've marked it incomplete [15:45] otherwise it looks as if it would wait on us [15:45] noted, thank you [15:45] dh-cargo is back up here [15:45] didrocks: you look afte rcargo - right? [15:45] yeah, cargo itself needed a second look [15:46] it’s the next one on my list, I need to refresh my memory first [15:46] ok and dh-cargo - wasn't assigned last time [15:46] probably due to the sprint keeping all of us busy [15:46] anyone always wanted to look at a dh tool? [15:46] I think I can, but would not commit it for next week [15:46] well you have the other one [15:46] let me take it instead [15:47] ack then :) [15:47] dh-cargo to me [15:47] but there is more [15:47] https://bugs.launchpad.net/ubuntu/+source/libheif/+bug/1827442 [15:47] -ubottu:#ubuntu-meeting- Launchpad bug 1827442 in x265 (Ubuntu) "[MIR] libheif" [Undecided, Incomplete] [15:47] thanks, I was hesitnat to take it due to being "foundations internal" [15:47] agreed [15:47] ^ this was brought up by steve the other day. [15:48] (dh-cargo was part of LP#1957932) [15:48] -ubottu:#ubuntu-meeting- Launchpad bug 1957932 in rustc (Ubuntu) "[MIR] rustc, cargo, dh-cargo" [Critical, Fix Released] https://launchpad.net/bugs/1957932 [15:48] but he correctly said "probably want to have it updated using the new template in order to do a new review" [15:48] I expect someone in foundations doing the mentioned update [15:48] then we assign it here for a review [15:48] WDYT? [15:48] sounds good. I'll find somebody in foundations [15:48] I updated the bug [15:49] also let them check if it is just heif or heif + the 265 libs [15:49] thanks slyon [15:49] gogin on [15:49] #topic Incomplete bugs / questions [15:49] Mission: Identify required actions and spread the load among the teams [15:49] #link https://bugs.launchpad.net/ubuntu/?field.searchtext=&orderby=-date_last_updated&field.status%3Alist=INCOMPLETE_WITH_RESPONSE&field.status%3Alist=INCOMPLETE_WITHOUT_RESPONSE&field.subscriber=ubuntu-mir [15:50] all from just now except .. [15:50] https://bugs.launchpad.net/ubuntu/+source/ruby-eventmachine/+bug/1990580 [15:50] -ubottu:#ubuntu-meeting- Launchpad bug 1990580 in ruby-eventmachine (Ubuntu) "[MIR] Promote ruby-eventmachine to main as a pcs indirect dependency" [Undecided, Incomplete] [15:50] is there something left for the server team? [15:50] reading ... [15:51] ok, lucas waits for joalif to confirm " I hope the explanation above clarifies everything for you." [15:51] does it @ joalif ? [15:52] sorry in other mtg at the same time [15:52] can you repeat [15:52] joalif: did the answer on https://bugs.launchpad.net/ubuntu/+source/ruby-eventmachine/+bug/1990580 satisfy you [15:52] -ubottu:#ubuntu-meeting- Launchpad bug 1990580 in ruby-eventmachine (Ubuntu) "[MIR] Promote ruby-eventmachine to main as a pcs indirect dependency" [Undecided, Incomplete] [15:52] ok i'll look at it in a bit [15:53] If it does, assign security as they will be next to process it [15:53] if it does not - tell Lucas what is missing still [15:54] updated the bug to match that [15:54] #topic MIR related Security Review Queue [15:54] Mission: Check on progress, do deadlines seem doable? [15:54] #link https://bugs.launchpad.net/~ubuntu-security/+bugs?field.searchtext=%5BMIR%5D&assignee_option=choose&field.assignee=ubuntu-security&field.bug_reporter=&field.bug_commenter=&field.subscriber=ubuntu-mir [15:54] Internal link [15:54] - ensure your teams items are prioritized among each other as you'd expect [15:55] - ensure community requests do not get stomped by teams calling for favors too much [15:55] #link https://warthogs.atlassian.net/jira/software/c/projects/SEC/boards/594 [15:55] and here we have eslerm stepping in for Seth for a while [15:55] he wanted to ask for new/other ways to express priorities - is that correct eslerm? [15:55] this is trhe moment to de-confuse all of us so we can agree on it :-) [15:55] during the sprint the Security Team discussed how to become more consistent with our response time to MIRs [15:55] we decided to write a status update each pulse (every two weeks) to update the MIR Team [15:55] I would like to publish the status report to a repo, but that will wait until Seth is back [15:56] I can email the status report to MIR Team members as well [15:56] the reports cannot be public, as there could be sensitive information in them [15:56] e.g., there is a novel security disclosure in the initial report [15:56] Open to questions, criticisms, and comments :) [15:56] the initial report is in Seth's vacation email [15:56] will that replace https://warthogs.atlassian.net/jira/software/c/projects/SEC/boards/594 then ? [15:57] that was used to prioritize [15:57] no, we could integrate the two [15:57] or will it only help to show your "answer" but not change any of your planning? [15:57] so that, everything pertinent is in jira but we would also have a higher level overview to put everything together [15:58] It sounds nice, but it also sounds complex [15:58] if this costs you a lot of time, then I'd say do not do it [15:58] if it helps you to organize yourself, then it is good [15:58] I feel like the level of detail from seth's email is not really needed at the MIR meeting [15:58] if so we could probably look it up in the jira card updates/comments? [15:58] as a TL;DR the MIR team never cared too much "how" you do it - as long as we can insert bugs into your todo-queue and have a feeling on when they will complete [15:59] ^ this. [15:59] I agree with the point cpaelzer made [15:59] I agree to slyon that the meeting does not need that detail [15:59] that detail goes to the MIR - bugs [15:59] that is the one place - one per case [15:59] okay, if it sounds good, I'll do the status report internally to get security on one page and then update jira cards that way [15:59] that sounds fine to me eslerm [16:00] essentially it will stay an "implementation detail" of yours [16:00] yes it should end up in the MIR LP bug when finished. And if we need status updates, we could probably look at the jira card (e.g. "security team is working with upstream about XXX") [16:00] if any of the things we know (lp bugs and to some extend that jira board to prioritize) will change let us know [16:00] okay, can do [16:01] ok, then let us do it this way [16:01] summary: you do stuff, we are ok with it as nothing changes for us :-) [16:01] +1 [16:01] but in any case, thanks for bringing it up and discussing it eslerm [16:01] whenever you want to change the process or anything related down the road, bring it up here as well [16:02] if we pre-agree but it needs details it becomes a PR to the github repo [16:02] I have one question [16:02] now going on [16:02] oh well put that question into ... [16:02] #topic Any other business? [16:02] a lot of the ruby packages are dependent on pcs, which Seth has a question to [16:02] yeah, ask me eslerm [16:02] kanashiro[m]: ^^ watch this [16:03] is it okay to set the priority of all those ruby packages to wishlist until pcs is resolved? [16:03] not really, we need all of them to complete (we can only move it as one) [16:03] if we set them all to wishlist then we will not make it in time [16:04] but I'm fine if you keep them all as high as PCS, but order it in PCS itself first - and if passed then do the rest [16:04] I mean, resolve Seth's question (not promote pcs first) [16:04] but I'm afraid if you mark them wishlist ever too many other things will slip in betwene [16:04] we already failed to promote it last cycle [16:04] I'll be in well-earned trouble if we miss it again [16:04] eslerm: yeah, promote pcs first is not an option [16:05] as I said they all belong together [16:05] and are of high prio and importance [16:05] towards 24.04 we need this transition early (hence we wanted 22.10 before) as SW using it will need to adapt [16:05] and that kind of SW isn't the most trivial usually [16:05] did that solve the question eslerm? [16:05] okay, I'll do some more research. iirc, Seth was concerned that the codebase was moving to python [16:06] not that I know [16:06] for now yes :D [16:06] thank you [16:06] ok [16:06] anyone else something to talk about? [16:06] nothing. [16:06] eslerm: and if the codebase moves we still would not have the time to wait [16:06] we would move with it when it does [16:06] understood [16:06] nothing else from me [16:06] nothing either [16:06] ok that sounds good then [16:06] thanks cpaelzer, all! [16:06] thanks and sorry for the long meeting [16:07] #endmeeting [16:07] Meeting ended at 16:07:04 UTC. Minutes at https://ubottu.com/meetingology/logs/ubuntu-meeting/2022/ubuntu-meeting.2022-11-15-15.30.moin.txt [16:07] o/ [16:07] thanks! [16:09] thanks cpaelzer all :) === Guest8190 is now known as ogra === ogra is now known as Guest1015 === Guest1015 is now known as ogra [20:01] o/ [20:01] * vorlon waves [20:02] https://wiki.ubuntu.com/TechnicalBoardAgenda says sil2100, cyphermox [20:02] it also says Aug 30 :P [20:05] hello [20:05] cyphermox: hi there! [20:05] guess I'll chair [20:05] thanks [20:06] #startmeeting Ubuntu Technical Board [20:06] Meeting started at 20:06:20 UTC. The chair is cyphermox. Information about MeetBot at https://wiki.ubuntu.com/meetingology [20:06] Available commands: action, commands, idea, info, link, nick [20:06] #topic Action review [20:07] there's a lot of in-flight items; any of them saw traction recently? [20:07] ACTION: (everyone) review the Ubuntu Backports Team Charter for ratification [20:07] I've made progress on the third party repo requirements, with alignment from the snap store team on the pieces that will require implementation from them. [20:07] On the backports charter I spoke to mapreri at the summit. But I probably need to follow up more with the backporters team on that topic [20:07] ok [20:08] so that was the above and [20:08] ACTION: rbasak to finalize third-party seeded snap security policy [20:08] right? [20:08] Yep [20:08] cool [20:09] ACTION: vorlon to circle around with store, snapcraft, et all, and revise the snap source revision policy to be more clear with regards to rebuildability and GPL compliance. [20:12] vorlon: still around? [20:12] that is largely subsumed by rbasak's action [20:12] oops [20:12] unless he says otherwise [20:13] Yeah, agreed. [20:13] I will update the items accordingly :) [20:13] Maybe we need to refactor all the outstanding agenda items that are intertwined [20:13] yeah [20:13] I will carry over sil2100's OEM archive item unless I missed something? [20:14] ACTION: rbasak to draft a proposal of the DMB-proposed inactivity expiration policy for TB ratification [20:14] I've not tackled this yet - been focused on the other items. [20:14] Right now attendence on the DMB is good, so that makes this less of a priority. [20:14] agreed [20:14] ACTION: cyphermox to re-ping the CC regarding the TB nominations and election [20:15] ^that was done, and I see a call for nominations 11 days ago [20:15] and we still have this one: [20:15] ACTION: review Ubuntu Unity's official flavor proposal [20:16] it wasn't immediately obvious to me which positions on the TB were up for re-election, is this full turnover? I should figure out whether I need to nominate myself if I intend to continue to serve :) [20:16] yeah I was going to do the same :) [20:17] Unity> I think that's done, no? [20:17] vorlon: confirmed, full turn-over [20:17] cyphermox: ack thanks [20:19] rbasak: can I just remove your "definition of the third party repo policy" item from the agenda? and we work together a couple of minutes in the very near future to refactor the actions? [20:19] Unity> well we released it so I guess so! https://cdimage.ubuntu.com/ubuntu-unity/releases/kinetic/release/ [20:19] Sure [20:19] (unfortunate that the proposal is not linked in the agenda) [20:20] vorlon: yeah, I assumed so to; just being extra verbose [20:20] I don't remember when that item was added or whether we closed it out, unfortunately [20:20] it's possible we released because things were on track but never had formal TB signoff [20:20] I just could use some help refactoring the action items, seeing as I might have missed things that happened at the summit or internal to Canonical [20:21] #topic Check up on community bugs (standing item) [20:21] I think we did close it out. [20:21] I hear rs2009 made it to the Ubuntu Summit [20:21] Yes he was there. [20:21] yes [20:21] The proposal got three votes on the ML [20:21] #link https://wiki.ubuntu.com/UbuntuUnity/22.10/Proposal [20:21] fwiw [20:21] great [20:21] So it was inferred approved I think, without anyone formally saying so. [20:22] good [20:22] there are no bugs open; whatever happened to the plan of moving to a separate project? [20:23] I don't remember exactly. Didn't someone suggest something, we all thought it was a good idea, but nobody actually took an action to do it? [20:23] sounds accurate [20:23] ´yeah [20:24] I will do the archaeology to pull up exactly what we had agreed to and do whatever I can to move it forward [20:24] I will take the action [20:25] thanks [20:25] #action cyphermox to figure out next steps to improve TB processes discussed in September? [20:25] ACTION: cyphermox to figure out next steps to improve TB processes discussed in September? [20:25] #topic Scan the mailing list archive for anything we missed (standing item) [20:25] I don't see anything [20:26] NotAutomatic? [20:26] btw I just noticed TB nominations close at EOD *this Thursday* so get your noms in :) [20:26] * rbasak sent his self-nomination already [20:26] NotAutomatic would be good to get consensus on but I think that's best done via the list [20:26] I agree [20:26] since we need to make sure canonical's support team, etc. are happy with any changes [20:27] alright [20:27] #Select a chair for the next meeting (next from https://launchpad.net/~techboard/+members) [20:27] argh [20:27] #topic Select a chair for the next meeting (next from https://launchpad.net/~techboard/+members) [20:28] this is getting difficult. I'm next, I think? with rbasak backup? [20:28] you chaired now so you're off the hook for next [20:28] should be sil2100 primary, and rbasak backup [20:28] alrighty [20:29] #topic AOB [20:29] so cool, I'm triple-booked now [20:30] any any other business? [20:30] not here! [20:30] None from me. [20:30] Thank you for chairing! [20:30] thanks! [20:30] ^^ [20:30] #endmeeting [20:30] Meeting ended at 20:30:49 UTC. Minutes at https://ubottu.com/meetingology/logs/ubuntu-meeting/2022/ubuntu-meeting.2022-11-15-20.06.moin.txt [20:31] side note I'll miss the next meeting due to some flip-flopping of my schedule but will be on track again for the next one after that [20:31] without you do we even have quorum? [20:32] sil2100 is probably back for the next one; he's off today [20:33] I wouldn't worry too much about quorum. It's rare that we need a vote anyway.