15:11:05 <gundalow> #startmeeting Ansible Public Core Meeting 15:11:05 <zodbot> Meeting started Thu Nov 17 15:11:05 2016 UTC. The chair is gundalow. Information about MeetBot at http://wiki.debian.org/MeetBot. 15:11:05 <zodbot> Useful Commands: #action #agreed #halp #info #idea #link #topic. 15:11:05 <zodbot> The meeting name has been set to 'ansible_public_core_meeting' 15:11:13 <gundalow> HELLO EVERYBODY 15:11:24 <gundalow> #chair alikins jtanner bcoca abadger1999 15:11:24 <zodbot> Current chairs: abadger1999 alikins bcoca gundalow jtanner 15:11:37 <jtanner> hEElow 15:11:43 * Qalthos 🌊🌊 15:11:59 <gundalow> Agenda as always https://github.com/ansible/community/issues/140 15:12:07 <gundalow> shaps: You around? 15:12:11 * jimi|ansible here now 15:12:12 <abadger1999> Good morning 15:12:34 <shaps> yep I am, do I need to talk about something? :) 15:13:01 <gundalow> Discuss implementation of ansible/ansible#18501 - This is to be discussed in 2016-11-22 meeting. 15:13:07 <gundalow> oh, that's not today 15:13:13 <shaps> yup :D 15:13:33 <shaps> I mean, if bcoca has info it can be discussed, otherwise wait next week 15:13:45 <gundalow> that comment changed since when I looked at it this morning 15:13:52 <gundalow> sounds like we need to wait for the other implementation 15:14:09 <bcoca> changed 18h ago 15:14:19 <shaps> yeah that was this morning here :P 15:14:21 <gundalow> or last night 15:14:24 <bcoca> still trying to remember who commited to it 15:14:58 <gundalow> #topic Provides a document with lifecycle of the various releases https://github.com/ansible/community/issues/143 15:15:01 <gundalow> #info https://github.com/ansible/community/issues/143 15:16:07 <bcoca> we do community tickets here now also? 15:16:12 <ryansb> Do we have that written down somewhere? 15:16:24 <bcoca> ah, has to do with 'support' 15:16:29 <ryansb> Seems relevant, even though it's in /community 15:16:32 <bcoca> we have some vague stuff in releases 15:16:57 <gundalow> aye, I spotted it in community, though it feels more like a Core thing 15:17:12 <bcoca> i can see the overlap 15:17:45 <gundalow> thoughts? 15:18:44 <bcoca> reasonable request, we should clarify a bit more how many versions we support 15:18:48 * gundalow find https://github.com/ansible/ansible/blob/devel/RELEASES.txt and notes it out of date 15:19:15 <bcoca> http://docs.ansible.com/ansible/dev_guide/developing_releases.html 15:19:21 <bcoca> ^ that is doc i was refereing to 15:19:37 <gundalow> ah, cool thanks. That's why I was trying to find 15:20:11 <ryansb> So adding an EOL list somewhere? 15:20:37 <bcoca> instead of list, rule 15:20:51 <abadger1999> and 1.9 as an exception to the rule 15:21:00 <ryansb> So last 2 majors, but also 1.9? 15:21:03 <bcoca> n - 2 for normal bugfixes, security fixes might be applied to older versions depending on consensus 15:21:08 <jtanner> bleh, rm -rf 1.9 15:21:24 <bcoca> abadger1999: im fine with 1.9 now not being an exception anymore 15:21:46 <bcoca> actually, n + n-1, for normal bufixes, where n == devel 15:22:09 <abadger1999> bcoca: Okay, note that from the tower side, they still support 1 release which does not support ansible2.x 15:22:20 <ryansb> so right now that'd mean only 2.3/devel and 2.2? 15:22:46 <jtanner> we're still pushing 2.1 updates, so -2 probably makes more sense 15:22:54 <bcoca> does anyone normally cherrypick bugfixes to stable-2.1 or stable-2.0 or stable-.19?? 15:23:07 <bcoca> we are only doing 2.1 cause of security issue 15:23:16 <jtanner> right ... 15:23:20 <bcoca> after we release we don't normally update the older branches 15:23:28 <abadger1999> jimi|ansible was thinking that we could do one more 1.9 release with the security fixes applied.... one of those needs to be reworked to be applied to 1.9, though 15:24:17 <jtanner> i think n-1 moves too fast for most orgs 15:24:40 * abadger1999 cherry-picked bugfixes to stable-2.1 until 2.2.0 was released. 15:24:43 <jimi|ansible> bcoca: i sometimes do backport things to 2.1 still 15:24:55 <abadger1999> only thing I still target for 2.1 are security fixes now. 15:25:00 <jimi|ansible> for instance, the thing i merged yesterday will be merged back 15:25:12 <bcoca> jimi|ansible: but that is more exception than rule 15:25:22 <abadger1999> would consider also pushing security fixes to 1.9 if that's what we want to do as a group. 15:25:24 <bcoca> ^ im fine with exceptions when the fix is fundamental 15:25:34 <alikins> I wouldn't get bogged down in figuring out a formula for release cycle. Just document it for each release. 15:25:38 <jtanner> we don't have any formal "rules" yet do we? 15:25:48 <bcoca> abadger1999: im fine with that also considering it's widespread use, if fix is not overtly complicated 15:26:09 <bcoca> i would document the general rule as i posted above, exceptions can be made on case by case 15:26:53 <abadger1999> to me there's little sense in pushing "trivial security fixes" to 1.9 if we don't also push major security fixes... 15:27:16 <ryansb> so N,N-1 support, backports/security case by case for older releases? 15:27:19 <jtanner> i think i've heard mattclay might be doing some release manager type duties at some point, so i'd like to know his thoughts on N - x 15:27:22 <abadger1999> so it's less about whether it's easy to backport the fix... but degree of the flaw. 15:27:40 <ryansb> tw 15:27:49 <bcoca> abadger1999: i think many things factor in 15:28:19 <bcoca> abadger1999: if too hard to backport major security fix to 1.9, no subsequent minor one makes sense, that version is already 'insecure' and should be avoided 15:28:23 <abadger1999> ryansb: that more or less works for me. 15:28:54 <bcoca> ryansb: yes, that rule is easy to understand and lets people we know we are flexible if circumstances dictate 15:28:54 <ryansb> so in the hypothetical case of bcoca's major fix that can't be backported, what happens? 15:29:02 <jtanner> devel for all! 15:29:16 <ryansb> ruh roh 15:29:26 <bcoca> no, last stable shoudl always be scure N-4 ... doesnt have that requriement 15:30:08 <alikins> And even better than just documenting it, keep a record of the timeline in the doc. (ie, when released what was it's expected lifetime. If we change that, document when and what we changed). And git history of the doc doesn't count. 15:30:14 <abadger1999> bcoca: the problem is for users... users will have much better expectations if they know we're giving them security fixes until X date than if they wake up one morning to find they must update today because we won't fix this flaw in the version they're running. 15:30:50 <bcoca> abadger1999: ok, lets do this, N-1 for normal fixes N-2 for security? 15:31:07 <bcoca> with N-X where X>2 is left to our discression 15:31:24 <bcoca> ^ not really willing to guarantee security fixes for N-5 15:31:42 <abadger1999> that's fine with me.... 1.9 being the exception that we have to work out specially here. 15:32:02 <bcoca> have we had major security issue that we have not been able to fix for 1.9? 15:32:06 <bcoca> ^ did i miss something? 15:32:11 <abadger1999> bcoca: the latest one. 15:32:11 <ryansb> so https://paste.fedoraproject.org/483831/79396728/ 15:32:21 <bcoca> ah, then i would argue ... 1.9 be flagged as insecure 15:32:30 <ryansb> ^^ just a draft, does that cover what people want to say 15:33:42 <alikins> ryansb: Not for me. 15:33:52 <abadger1999> bcoca: but we haven't telegraphed to users that we have ended support for 1.9 already. 15:33:53 <alikins> I'd avoid 'support' 15:34:16 <alikins> doesn't define what N is 15:34:39 <abadger1999> so it puts users in exactly the position I feel is bad for them: they wake up tomorrow and find out that they must upgrade from 1.9 to 2.2. 15:34:42 <bcoca> ryansb: i would reword 15:34:57 <bcoca> abadger1999: 1.9 to 2.1 OR 2.2 15:34:58 <alikins> or the units of the -1, -2 etc 15:35:47 <bcoca> abadger1999: we still havep lenty of 1.7 users ... we have always been clear on the expectation that we dont backport bufixes more than last stable, security has always been a judgement call 15:35:57 <abadger1999> bcoca: Either way, the problem is that they wake up and find they have to upgrade. 15:36:10 <ryansb> ok, so instead of support how does "N-1 release (latest official) will receive backports, security fixes, and other fixes from the core team" 15:36:14 <ryansb> sound 15:36:19 <bcoca> they ALL have to upgrade, granted that most just a minor version 15:36:20 <abadger1999> bcoca: we have not always been clear. 15:36:21 <ryansb> No "support" 15:36:31 <abadger1999> bcoca: we have been clear on every release except for 1.9 15:36:42 <abadger1999> bcoca: that's why 1.9 is the exception that we have to figure out. 15:37:01 <bcoca> we were clear that at one point we would not be able to keep updating it 15:37:13 <bcoca> 1.9.6 has been out since march 15:37:15 <abadger1999> ryansb: Also.... we need to loop notting and jmckerr into this discussion... 15:37:29 <abadger1999> bcoca: yes. But we've never said when that date is. 15:37:31 <bcoca> 6 other versions have been released since then 15:37:33 <abadger1999> and that's the problem. 15:37:40 <abadger1999> we need to tell people a date. 15:37:48 <bcoca> abadger1999: we never give any dates more than 'release in aprox 4 months' 15:37:54 <bcoca> ok, date is today 15:37:58 <abadger1999> and it's... "unfriendly" if we tell them that date is $now 15:38:17 <abadger1999> bcoca: we've said that 1.9 would be supported longer than normal. 15:38:24 <bcoca> it has been already 15:38:29 <bcoca> waaaay past normal 15:38:33 <abadger1999> but we never put an end to it. So people can't plan. 15:38:46 <bcoca> we never put an end to anything 15:38:56 <bcoca> if we are going to start now, lets formalize it 15:39:05 <alikins> I think it just needs to be explicit and explain what is maintained now and for how long. Anything else is even more of a guess. 15:39:09 <bcoca> but 1.9 users have known for a looong time they are on borwed time 15:39:21 <abadger1999> the normal end is "once we've made the N+1 release". 15:39:34 <bcoca> we are at N+3 15:39:43 <bcoca> for 1.9 15:39:53 <abadger1999> but we said 1.9 is an exception to that rule without putting a new expectation in for it. 15:40:04 <bcoca> abadger1999: not sure what alternative we have, since backporting the fix is such an issue 15:40:49 <bcoca> abadger1999: yes, we were vague, but we have always been pretty vague, not sure what we can do except set less vague expectations going forward, and then adhere to them 15:41:12 <abadger1999> Anyhow, we don't have the pay grade to make this decision here... 15:41:14 <bcoca> we left a lot to 'when we cross that bridge' ... well, now we are in the middle of the birdge 15:41:22 <alikins> If we don't know what we actually consider maintained at the moment, that is ok if it's documented. TBD is a valid EOL 15:41:45 <abadger1999> And newtMckerr wasn't going to be able to make this meeting. 15:42:01 <bcoca> alikins: and that has been what we've done, which is mostly a reflection of us not knowing nor having time to plan, i'm all for being more specific, but i cannot go back in time 15:42:03 <abadger1999> So we probably need to make some proposals and then table the decision itself. 15:42:24 <bcoca> if we already cannot update 1.9 ... its EOL, insecure and should not be used 15:42:40 <abadger1999> bcoca: jimi|ansible was somewhat amenable to updating 1.9. 15:43:08 <abadger1999> So my best guess is that the fix can be backported but he anticipates having to do some work to do so. 15:43:14 <bcoca> which CVE was this one? 15:43:22 <bcoca> i have 3 'last ones' in my head 15:43:32 <abadger1999> the modules affecting the controller one. 15:43:35 <bcoca> only one seems hard to implement, but 1.9 didnt need it anyways 15:43:49 <bcoca> 1.9 does not have ansible_ssh_executable, only 2.2 has that and is affected by it 15:44:00 <abadger1999> I believe the others were independent changes to a few modules. 15:44:25 <abadger1999> but modules can overwrite any vars right? 15:44:37 <abadger1999> and some of the other vars can lead to problems as well. 15:44:46 <bcoca> yes, but that is the case for every version of ansible since facts got introduced 15:45:00 <bcoca> the actual vulnerability was allowing for arbitrary execution on controller 15:45:06 <bcoca> which only 2.2 is vulnerable to 15:45:29 <bcoca> is it 'nice' to have the var protection, yes, is it needed ... not imo 15:47:05 <abadger1999> so... we need to ask ksiefred/jimi about whether this affect 1.9 and talk to jmckerr/notting about when we can EOL 1.9.x. 15:47:39 <ryansb> abadger1999: I'm not saying we have to make a decision now, but I would like to have something at least we agree on 15:47:40 <abadger1999> and give them a proposal about both normal release EOL and 1.9.x EOL specifically. 15:47:43 <ryansb> then evolve from there 15:48:07 <abadger1999> I'm +1 to ryansb's proposal for normal releases 15:48:13 <alikins> Documenting CVE's (when and where fixed) is another TODO 15:48:20 <bcoca> the general var overwrite issue affects all versions, the actual vulnerability filed is only 2.2 15:48:34 * sivel daylight savings time... :( 15:48:46 * sivel is now lurking 15:48:51 <bcoca> alikins: last one was oversight, we dont add to commit or changelog to not disclose before release (but we should deff add on release) 15:48:53 <abadger1999> bcoca: that's what I'm not sure about. I thought there were other vars that people were figuring ways to exploit as well. 15:49:12 <abadger1999> anyhow... we need t oloop kseifred and jimi into that. 15:49:26 <bcoca> abadger1999: worst case is connection vars, which you can only redirect to other host, no real way to send payload 15:49:43 <abadger1999> For 1.9, Propose We end support in 1 month and we make one more security release to address outstanding CVEs before then. 15:49:55 <bcoca> any auth/secrets gotten through 3rd host are irrelevant since attacker already has original target host 15:50:34 <ryansb> Updated https://paste.fedoraproject.org/483864/93978271/ 15:50:53 <alikins> s/support/maintain 15:50:59 <bcoca> ryansb: i would not add 'currently' or you need to update docs every release 15:51:17 <ryansb> alikins: k, will do 15:51:37 <alikins> we don't support anything to anyone 15:51:39 <ryansb> bcoca: that's just to disambiguate during this meeting, I'll clean that up w/ a full explanation of what the N/N-1 stuff means 15:51:40 <bcoca> +1 to maintain vs support, rest of text seems fine 15:51:59 <bcoca> ryansb: N == devel? 15:52:20 <bcoca> i would replace N-1 for 'current stable release' and N-2 'previous stable release' 15:52:22 <abadger1999> ryansb, alikins: CVEs are documented in two places already.. Changelog in the tarball and https://www.ansible.com/security 15:52:31 <bcoca> abadger1999: we missed that last time 15:52:53 <bcoca> but that was 'release snafu' 15:52:58 <abadger1999> <nod> yep. 15:53:19 <ryansb> Ok, fixed https://paste.fedoraproject.org/483868/79397992/ 15:53:24 <bcoca> i'm updateing RELEASES.txt with missing stuff 15:53:32 <abadger1999> Understood... but those are the places we make the list... having a third place we keep the list won't make release snafus happen less frequently... 15:54:26 <bcoca> agreed 15:54:26 <abadger1999> ryansb: Cool. +1 to taking that up the chain. 15:54:32 <bcoca> just need to make sure we always update those 15:58:09 <ryansb> #action ryansb bring https://paste.fedoraproject.org/483868/79397992/ up with PMs and such 15:58:25 <abadger1999> gundalow: I think we're ready to move on 15:58:50 <gundalow> "N-2 will get security fixes, but no feature or other backports" - It isn't clear if functional fixes will go into that 15:58:53 <bcoca> https://github.com/ansible/ansible/commit/2b37bd8e67e5423c2ff9d1da4ffe687b0531ee11 15:59:07 <gundalow> Just given the wording used for N-1 15:59:07 <ryansb> what is a "functional fix"? 15:59:16 <gundalow> erm, bug fix 15:59:18 <bcoca> bugfix 15:59:18 <gundalow> rather 15:59:57 <ryansb> I guess I lumped that w/ "other backports" 16:00:09 <ryansb> I'll reword to "N-2 will get security fixes only" 16:00:17 <gundalow> +1 16:00:18 <gundalow> Thanks 16:00:21 <gundalow> cool 16:00:28 <gundalow> hum, nothing else on the agenda 16:00:36 <gundalow> Do we want to talk about any proposals? 16:00:40 <alikins> I've never seen https://www.ansible.com/security before. google for 'ansible cve' doesn't have it on first page. It is not reverenced anywhere from ansible/ansible that I see. 16:00:53 <gundalow> or are we happy with the hours we've spent 16:01:09 <gundalow> #topic Open Floor 16:02:34 <bcoca> i had from last meeting, extending deprecation period 16:03:01 <bcoca> since we hvae now gotten back to mostly regular releases every quarter, deprecating n+2 seems a bit 'soon' for most 16:03:24 <gundalow> #topic extending deprecation period 16:04:56 <abadger1999> I'm okay with making deprecation period longer but I think the larger problem is that you have to port your playbooks 4 times a year if we release quarterly. 16:04:59 <gundalow> That makes sense to me 16:05:58 <bcoca> we'll we are still 'cleaning up' bad errors that 1.x allowed 16:06:06 <bcoca> i expect deprecations to go down after 2.4 16:06:32 <abadger1999> That would be helped by making the release cycle longer (or only having new deprecations in certain releases)... longer deprecation periods don't fix it. 16:06:43 <abadger1999> bcoca: You sir, are an optimist ;-) 16:06:43 <gundalow> I've been wondering if we can make it easier for people to update their playbooks. Some combination of ansible-lint, ansible-review or maybe even a tool that will rewrite your paybooks like Python's 2to3 or GoLangs https://golang.org/cmd/fix/ 16:07:25 <gundalow> As well as having a single page the details all the deprecations and how to deal with them, like the 2.0 porting page we did. They any deprecation warnings point to thet page 16:08:03 <bcoca> we had upgrade guide for 2.0 ...we should have kept updating it (though 90% of issues are with stuff we already put in that guide) 16:08:16 <bcoca> most people complaining are upgrading NOW from 1.9 16:08:24 <gundalow> Yup 16:08:28 <bcoca> or upgraded and just turned deprecation warnings OFF 16:08:46 <bcoca> ^ see #ansible just 4 mins ago, they were ignoring the warnings from 2.0/2.1 and then hit error in 2.2 16:08:50 <gundalow> So I was chatting to lots of people at O'Reilly Velocity and it was suprising the amount of people still on 1.9 16:10:19 <bcoca> gundalow: what is shocking is the people on 1.5 and 1.7 16:11:45 <alikins> any numbers? 16:12:09 <gundalow> There was a survey a while ago 16:12:29 <bcoca> none too reliable, i'm guessing those responding to survey are not same crowd that would run ancient versions 16:12:47 <bcoca> but guessing by ammount of questions, <5% 16:13:01 <bcoca> but since we have grown the ansible user base ... that is still a LOT of people 16:16:20 <gundalow> yup 16:17:12 * gundalow often gets comments about the pain in updating to the latest version of Ansible, so that's why I was wondering about what we can do to reduce that pain 16:20:04 <alikins> gundalow: +1 16:21:27 <gundalow> 1) Do people think having a rolling deprecations page with all the details will be good - perhaps repurposing the poting 2.0 page? 16:21:42 <gundalow> votes? 16:22:43 <abadger1999> +1 16:23:19 <bcoca> +1, but module deprecations are comming via diff way 16:23:48 <bcoca> 2 things, deprecating a module (no way to have version associated currently), deprecating module options (resmo just built in the facility to do this) 16:24:12 <gundalow> bcoca: Just to clarify, you mean the way we implement the code to track and report deprecations by "via diff way" 16:24:25 <jimi|ansible> +1, though most of those deprecations occurred because of the major 2.0 changes where we got rid of a lot of cruft so hopefully a major set of deps like that won't happen again for a long time 16:24:41 <bcoca> yep 16:24:52 <bcoca> jimi|ansible: you are the other optimist! 16:25:02 * bcoca still wants to deprecate with_ ... 16:25:15 <jimi|ansible> i am a pessimistic optimist, I believe the glass is half full of crap 16:25:20 <gundalow> lol 16:25:25 <bcoca> but going back to original point ... lmao .... 16:25:40 <bcoca> do we extend deprecation from N+2? if so, how long ? 16:25:54 <jtanner> i believe the glass has a hole in it, so some of the crap has leaked out onto my shoe 16:26:16 * bcoca must stop using glasses inappropriately 16:26:44 <bcoca> (i cannot believe this is me saying this) kidding aside, back to the serious point 16:26:50 <gundalow> :) 16:27:00 <bcoca> a) do we want to extend deprecation period? b) if so, for how long? 16:27:17 <bcoca> me=> a +1 , b= n+4 16:27:32 <gundalow> c) Do we want a single deprecation period for core & modules, or different 16:27:51 <gundalow> a) +1 b) n=1 (that gives a year) c) same 16:27:57 <bcoca> c) same 16:28:08 <jimi|ansible> i was actually thinking just make it a flat year for everything rather than 2 versions 16:28:12 <bcoca> gundalow: n+4 = 4 releases, 1 each quarter == 1 year 16:28:34 <gundalow> a) +1 b) n=4 (that gives a year) c) same 16:28:36 <gundalow> *cough* 16:28:49 <bcoca> well, but we cannot really deprecate 'by time' only by version 16:28:58 <jimi|ansible> well, next version after a year 16:29:09 <bcoca> which is n+4? 16:29:11 <gundalow> -1 to by year 16:29:31 <bcoca> just cause it is hard to codify by time and kind of less predictable for users 16:29:40 <bcoca> we probably will take longer than 1 year, very rarely less 16:29:46 <bcoca> for 4 releases 16:29:48 <jimi|ansible> ok, just a thought 16:30:19 <gundalow> Difficult to write in code $what_ever_release_is_in_a_year, unless we do Ubuntu style YY.MM releases 16:30:23 <bcoca> if we change to every 3 months, i would say n+5 (i think a year is good period, but we deprecate and announce version) 16:31:02 <bcoca> jimi|ansible: so i agree with the period, just not sure how to 'implement' that in the warnings 16:31:25 <gundalow> If we are writing in code when the deprecation will happen as per https://github.com/ansible/proposals/issues/32 then we can't go back and change it (I don't think) if we decide we are doing 6 or 2 releases a year 16:32:04 <gundalow> Just a thing to be aware of 16:32:55 <abadger1999> I We're not quarterly yet and I don't think quarterly is achievable. 16:33:00 <abadger1999> (release-wsie) 16:33:15 <bcoca> we are almost quaterly 16:33:33 <abadger1999> I think 3 months is a better number. 16:33:36 <abadger1999> err 16:33:36 <bcoca> 3.5 releases a year vs 4 16:33:40 <abadger1999> 3-yearly. 4 months 16:34:25 <bcoca> n+4 guarantees AT least a year, even if we meet with quarterly, we are in between right now 16:34:47 <abadger1999> I could even see us going to 6 months... we still haven't solved how to address community feature PRs in a timely manner in the current release cycles. 16:34:50 <bcoca> i did update 'releases' to be 4months 16:35:04 <jtanner> when i look at the releases page, i get the impression we are never not actively releasing something 16:35:47 <bcoca> jtanner: basically we are talking about major 2.x <= x is major (i know not same as most version standards), for this discussion 2.x.y is not being considered a 'release' 16:36:04 <abadger1999> jtanner: If you include minor releases, in the process of releasing something is definitely the norm rather than the exception 16:36:04 <bcoca> as those are 'bugfix' vs feature release 16:36:40 <gundalow> ok, maybe we can look at this form a different point 16:36:53 <jtanner> my point is that we seem to be very busy "releasing" things 16:36:53 <bcoca> is everyone comfortable with 1yr? 16:37:03 <bcoca> jtanner: i blame bugs! 16:37:04 <gundalow> 1y +1 16:37:08 <jtanner> perhaps a longer cycle wouldn't hurt 16:37:42 <jtanner> well, are the bugs in any way correlated to the rate of releasing? 16:37:43 <bcoca> probably, but hard to balance people wanting new features, also most of the issues come from us not really observing teh freezes that strictly 16:37:59 <bcoca> 90% of headaches come from stuff introduced in 'last 2 weeks before release' 16:38:28 <bcoca> new bugs are correlated to change, any change 16:38:45 <bcoca> as sometimes a 'fix' may cause other bugs cause of 'unintended/uknwon' consequences 16:38:50 <bcoca> test coverage helps with that 16:39:08 <bcoca> but also having greater samples of actual usage, many 'bugs' are users doing stuff we did not expect 16:39:14 <jtanner> would doing postmortems get us closer to reducing the breaking changes? 16:40:09 <abadger1999> 1 year +1 with the caveat that we should revist if we change our target release cycle. 16:40:21 <bcoca> possibly, but we have 2 major sources, core fixes/revamps and module changes, some like docker/aws have to do with moving targets or features that are then incompatible with api/libs used across very diverse user base 16:40:22 <abadger1999> postmortems would be nice in general. 16:40:24 <alikins> 1yr of what exactly? 16:41:09 <bcoca> alikins: since feature was marked for deprecation, which currently would be 'current version +4' 16:41:16 <abadger1999> alikins: we're targetting 1 year between the introduction of a deprecation (with warning) and the feature being removed. 16:41:21 <bcoca> ^ possibly +3 but not enough safety 16:42:35 <abadger1999> I'd rather do 3 releases and be slightly under a year actually but not going to block for that. 16:42:55 <alikins> given the user base, 1 year sounds ridiculous to me. 16:43:11 <bcoca> i'm fine with revising release schedule, but that is diff topic 16:43:14 <gundalow> alikins: how do? 16:43:17 <bcoca> alikins: what period do you suggest? 16:43:43 <abadger1999> bcoca: I mean -- deprecation cycle 3 releases rather than 4. 16:43:49 <bcoca> abadger1999: we attempt every 3 motnhs (but document 4, we normally fall in between) 16:43:57 <alikins> any time period really seems wrong. That is just going to result in folks getting stuck on older releases. 16:44:06 * gundalow invokes chair power: We've had 40 minutes on this, are we still getting anyway, do we want to park it think some more and revisit at another point 16:44:09 <abadger1999> agreed that changing the release schedule is a different topic 16:44:12 <bcoca> alikins: never? 16:44:47 <jimi|ansible> alikins: that's not the case now, i don't think it would be if we made it longer (in fact i think it would be much less) 16:44:52 <bcoca> so you propose we dont deprecate nor remove sutff? 16:45:54 <abadger1999> -1 to never remove.... I've been in projects that have a few deprecations every cycle and ones that eventually have a major, break everything release.... the former are the ones that are easier to adapt to. 16:47:18 <gundalow> -1 16:47:36 <bcoca> before you vote, let him confirm 16:47:44 <gundalow> fair point 16:47:59 <bcoca> ^ that is my inference, that is why i want him to clarify 16:49:41 <bcoca> alikins: ? 16:50:21 <alikins> never what? 16:51:28 <bcoca> [11:43] <alikins> any time period really seems wrong. That is just going to result in folks getting stuck on older releases. 16:51:43 <bcoca> ^ so i infered that youre time period is 'never' and that we should just not do deprecations 16:51:48 <alikins> no time period. version based. 16:52:10 <bcoca> well, we discussed that above, just adjusting the version to be at least a year from deprecation 16:52:24 <bcoca> no good way to implement '1yr' that is why i was voting version+4 16:52:34 <bcoca> which will roughly always be 'over one year' 16:54:27 <abadger1999> k. So I think we're all in agreement. 16:57:40 <abadger1999> bcoca, gundalow: Are we making this official or holding for more discussion next week? 16:57:53 <bcoca> either is OK with me 16:58:03 <abadger1999> I don't think anyone voted against the proposal but it's not "quorum". 16:58:18 <gundalow> To make it offical where does it get documented - We could update that as a PR and get extra votes on that 16:58:25 <bcoca> didnt we make these mandatory to ensure quorum? 16:58:27 <gundalow> and reference the PR in next weeks meeting 16:58:47 * bcoca goes back to bed 16:58:58 <jtanner> you sick again? 16:59:06 <bcoca> lazy 17:00:05 <gundalow> If we are to make this officail where do we document it? 17:00:29 <bcoca> releases doc i linked above seems good place 17:00:32 <gundalow> Does it go on http://docs.ansible.com/ansible/dev_guide/developing_releases.html 17:00:40 <bcoca> thatone 17:00:55 <bcoca> though thinking it does not belong in devguide 17:01:09 <bcoca> more like 'about' or just 'release policy' as users care about that too 17:01:12 <gundalow> #action gundalow to raise a PR to update http://docs.ansible.com/ansible/dev_guide/developing_releases.html add in deprecation section and raise PR in next meeting 17:01:22 <abadger1999> yeah, it's not dev_guide. 17:02:17 <abadger1999> probably need a short and long version of developing_releases. short version user-oriented. Long version project-oriented. 17:02:37 <bcoca> agreed 17:03:39 <gundalow> bah, brain failing now 17:03:58 <gundalow> 1) new page in docs root (to replace developing_releases.html ) 17:04:09 <gundalow> 2) Document deprecation process 17:05:24 <gundalow> ? 17:06:04 <gundalow> right, that's 2 hours 17:06:12 <gundalow> #endmeeting