2024-09-04 16:32:54 <@jbtrystram:matrix.org> !startmeeting fedora_coreos_meeting
2024-09-04 16:32:59 <@jbtrystram:matrix.org> !topic roll call
2024-09-04 16:32:59 <@meetbot:fedora.im> Meeting started at 2024-09-04 16:32:54 UTC
2024-09-04 16:32:59 <@meetbot:fedora.im> The Meeting name is 'fedora_coreos_meeting'
2024-09-04 16:33:19 <@aaradhak:matrix.org> !hi aaradhak
2024-09-04 16:33:22 <@zodbot:fedora.im> Aashish Radhakrishnan (aaradhak)
2024-09-04 16:33:30 <@siosm:matrix.org> !hi
2024-09-04 16:33:37 <@zodbot:fedora.im> Timothée Ravier (siosm) - he / him / his
2024-09-04 16:33:39 <@gurssing:matrix.org> !hi gursewak
2024-09-04 16:33:43 <@zodbot:fedora.im> Gursewak Singh (gursewak)
2024-09-04 16:33:48 <@marmijo:fedora.im> !hi
2024-09-04 16:33:49 <@zodbot:fedora.im> Michael Armijo (marmijo)
2024-09-04 16:33:53 <@jbtrystram:matrix.org> !hi
2024-09-04 16:33:55 <@zodbot:fedora.im> Jean-Baptiste Trystram (jbtrystram) - he / him / his
2024-09-04 16:33:59 <@dustymabe:matrix.org> !hi
2024-09-04 16:34:01 <@zodbot:fedora.im> Dusty Mabe (dustymabe) - he / him / his
2024-09-04 16:34:34 <@jbrooks:matrix.org> !hi jasonbrooks
2024-09-04 16:34:37 <@zodbot:fedora.im> Jason Brooks (jasonbrooks) - he / him / his
2024-09-04 16:35:38 <@jlebon:fedora.im> !hi
2024-09-04 16:35:39 <@zodbot:fedora.im> None (jlebon)
2024-09-04 16:35:55 <@jbtrystram:matrix.org> i'll wait another minute and get started :)
2024-09-04 16:35:59 <@dustymabe:matrix.org> I'll need to drop at some point to pick up kids from school
2024-09-04 16:36:12 <@ravanelli:matrix.org> !hi ravanelli
2024-09-04 16:36:19 <@zodbot:fedora.im> Renata Ravanelli (ravanelli)
2024-09-04 16:36:28 <@jbtrystram:matrix.org> There were no actions items from the last meeting, so let's go into the topics
2024-09-04 16:36:40 <@jbtrystram:matrix.org> !topic /boot/efiisunlabeled_t since version 40.20240504.3.0
2024-09-04 16:36:49 <@jbtrystram:matrix.org> !link https://github.com/coreos/fedora-coreos-tracker/issues/1771
2024-09-04 16:37:21 <@jbtrystram:matrix.org> Jonathan Lebon: added the meeting label on this
2024-09-04 16:37:45 <@jbtrystram:matrix.org> ohh it was discussed last week but the label was not removed
2024-09-04 16:38:39 <@jbtrystram:matrix.org> I don't think there were new development, let's move on 
2024-09-04 16:39:39 <@jbtrystram:matrix.org> well, same thing for the second scheduled topic, so we have no topics today ! 
2024-09-04 16:39:53 <@jbtrystram:matrix.org> !topic Open Floor
2024-09-04 16:40:15 <@siosm:matrix.org> we still need to talk about it
2024-09-04 16:40:16 <@dustymabe:matrix.org> jbtrystram: in that case: reminder to add the `meeting` label to tickets you think warrant group discussion
2024-09-04 16:40:27 <@dustymabe:matrix.org> jbtrystram: in that case: reminder to all to add the `meeting` label to tickets you think warrant group discussion
2024-09-04 16:40:39 <@siosm:matrix.org> we also have https://github.com/coreos/fedora-coreos-tracker/issues/1708
2024-09-04 16:40:58 <@siosm:matrix.org> (the meeting action does not picks up late-tag tickets)
2024-09-04 16:41:04 <@dustymabe:matrix.org> any takers to implement adding the `lspci` owning package? https://github.com/coreos/fedora-coreos-tracker/issues/1778 
2024-09-04 16:41:09 <@siosm:matrix.org> (the meeting action does not pick up late-tag tickets)
2024-09-04 16:41:38 <@jbtrystram:matrix.org> dustymabe: yeah sorry i realized very late it was my turn to host the meeting so i did not really prep
2024-09-04 16:41:46 <@jbtrystram:matrix.org> !topic add pciutils
2024-09-04 16:41:54 <@jbtrystram:matrix.org> !link https://github.com/coreos/fedora-coreos-tracker/issues/1778
2024-09-04 16:42:15 <@jbtrystram:matrix.org> The previous agreement was to add this package in FCOS but no-one actually did it
2024-09-04 16:42:27 <@dustymabe:matrix.org> jbtrystram: :) - I was mostly just throwing that out there for Open Floor to see if anyone wanted to pick up implementing it (should be pretty easy) 
2024-09-04 16:43:11 <@jbtrystram:matrix.org> I have a friend interested to get started to contribute on FCOS so i'm happy to mentor him through that if there is no takers
2024-09-04 16:43:32 <@siosm:matrix.org> sounds like a good plan
2024-09-04 16:43:47 <@jbtrystram:matrix.org> cool, voluntered ! :D 
2024-09-04 16:44:27 <@jbtrystram:matrix.org> !action jbtrystram to add lspci package to FCOS manifests
2024-09-04 16:45:04 <@jlebon:fedora.im> yeah, would like to discuss https://github.com/coreos/fedora-coreos-tracker/issues/1708
2024-09-04 16:45:46 <@jbtrystram:matrix.org> !topic New Package Request: s390utils.base
2024-09-04 16:46:19 <@jbtrystram:matrix.org> !link https://github.com/coreos/fedora-coreos-tracker/issues/1708
2024-09-04 16:46:46 <@jbtrystram:matrix.org> who want to introduce it ?
2024-09-04 16:47:13 <@jlebon:fedora.im> there's a new feature in Ignition: using the CEX card on s390x when doing LUKS
2024-09-04 16:47:13 <@jlebon:fedora.im> CEX is basically cryptography hardware
2024-09-04 16:47:50 <@jlebon:fedora.im> it requires zkey, which is currently in s390utils-base
2024-09-04 16:48:56 <@jbtrystram:matrix.org> so the plan is to split that into a subpackage ?
2024-09-04 16:49:20 <@jlebon:fedora.im> i don't actually expect anyone interested in running FCOS with this, but for testing purposes, currently the written tests only work on RHCOS because of this
2024-09-04 16:50:06 <@jlebon:fedora.im> jbtrystram: that'd be the ideal, but the maintainer didn't answer the ping there, and in the past hasn't been very responsive unfortunately
2024-09-04 16:51:03 <@jlebon:fedora.im> worth trying a different medium perhaps. though also, this is s390x so i'm more ok if it e.g. pulls in Perl there personally
2024-09-04 16:51:34 <@siosm:matrix.org> I was going to say that, but that does not help us down the line
2024-09-04 16:51:47 <@dustymabe:matrix.org> ehh. I'd really prefer not - python is one thing, perl is another
2024-09-04 16:51:59 <@jbtrystram:matrix.org> are the countme stats reporting the architecture ?
2024-09-04 16:52:11 <@dustymabe:matrix.org> jbtrystram: yes.
2024-09-04 16:52:31 <@dustymabe:matrix.org> and yes. basically no one uses it, which could be argument for us just not building it 
2024-09-04 16:53:02 <@siosm:matrix.org> ppc64le & s390x are single digit
2024-09-04 16:53:10 <@jlebon:fedora.im> totally fine to keep trying to reach the maintainer. but if that fails/there's no agreement, i don't think we should block on it
2024-09-04 16:53:25 <@dustymabe:matrix.org> I feel like this is an IBM problem TBH
2024-09-04 16:53:30 <@siosm:matrix.org> (but it helps us catch issues early for downstream builds)
2024-09-04 16:53:39 <@dustymabe:matrix.org> IBM wants CEX, IBM maintains that package 
2024-09-04 16:53:52 <@siosm:matrix.org> agree, we should pu pressure there
2024-09-04 16:53:57 <@siosm:matrix.org> agree, we should put pressure there
2024-09-04 16:54:50 <@dustymabe:matrix.org> of course we could just include perl in our s390x artifacts, but then s390x really starts to become it's own thing very much unlike the rest of our architectures (things are mostly uniform right now) 
2024-09-04 16:55:40 <@jlebon:fedora.im> end of topic for me
2024-09-04 16:55:58 <@dustymabe:matrix.org> same - going to go grab kids from school 👋
2024-09-04 16:57:07 <@jbtrystram:matrix.org> travier: do you want to take on the action on trying to contact the maintainer ?
2024-09-04 16:57:26 <@siosm:matrix.org> I asked Madhu to do it in the ticket
2024-09-04 16:57:32 <@jbtrystram:matrix.org> nice
2024-09-04 16:58:04 <@jbtrystram:matrix.org> !action madhu to contact the maintainer to see if agreement is reachable to split the package
2024-09-04 16:58:32 <@jbtrystram:matrix.org> Any other topics to discuss ?
2024-09-04 16:58:53 <@siosm:matrix.org> We should talk about again https://github.com/coreos/fedora-coreos-tracker/issues/1771
2024-09-04 16:59:03 <@siosm:matrix.org> We should talk about https://github.com/coreos/fedora-coreos-tracker/issues/1771 again
2024-09-04 17:00:45 <@jbtrystram:matrix.org> !topic /boot/efi is unlabeled_t since version 40.20240504.3.0 
2024-09-04 17:00:51 <@jbtrystram:matrix.org> !link https://github.com/coreos/fedora-coreos-tracker/issues/1771
2024-09-04 17:02:08 <@jlebon:fedora.im> this isn't correct AFAIK. the maintainer works at red hatter (so yes... IBM, but i don't think what you meant :) )
2024-09-04 17:02:18 <@siosm:matrix.org> AFAIK, we don't have any update test for bootup so does not show up a test failure yet: https://github.com/coreos/fedora-coreos-tracker/issues/1788
2024-09-04 17:02:56 <@siosm:matrix.org> I'm pushing fixes for bootupd updates in the selinux policy in https://github.com/coreos/bootupd/issues/694
2024-09-04 17:03:29 <@siosm:matrix.org> and asking for freeze exceptions for F41: https://bugzilla.redhat.com/show_bug.cgi?id=2309742
2024-09-04 17:03:43 <@siosm:matrix.org> but that won't help us here as it won't give us access to unlabeled files
2024-09-04 17:04:15 <@siosm:matrix.org> so we need a fix / workaround for this one for F41 or we will have issues the next time we need to do a bootloader update
2024-09-04 17:04:55 <@siosm:matrix.org> We're also pushing for always on bootloader updates in https://github.com/coreos/bootupd/pull/716
2024-09-04 17:05:13 <@siosm:matrix.org> but that does not work yet with RAID setups in FCOS
2024-09-04 17:06:13 <@siosm:matrix.org> So it's more of a status update as we have to be careful otherwise this might become an urgency the next time we need to update the bootloader
2024-09-04 17:08:39 <@siosm:matrix.org> One option until we get this sorted out is to turn back the domain in permissive mode, not at the upstream level, but just for us
2024-09-04 17:09:05 <@jlebon:fedora.im> travier: we did this already in https://github.com/coreos/fedora-coreos-config/commit/40e9f23bb9322b97f6593cb3569b3d951aa7619f
2024-09-04 17:09:20 <@jlebon:fedora.im> travier: we did that option already in https://github.com/coreos/fedora-coreos-config/commit/40e9f23bb9322b97f6593cb3569b3d951aa7619f
2024-09-04 17:09:48 <@siosm:matrix.org> great, I had missed that
2024-09-04 17:10:07 <@siosm:matrix.org> ok, it's less of a concern then
2024-09-04 17:10:13 <@jlebon:fedora.im> but yeah, clearly we need to fix the labels. i think it's already on the radar but not sure yet who's picking it up
2024-09-04 17:10:19 <@siosm:matrix.org> let's move on
2024-09-04 17:10:26 <@jlebon:fedora.im> dustymabe was looking at it
2024-09-04 17:11:39 <@jbtrystram:matrix.org> We agreed to have a chat about that with dusty tomorrow :) 
2024-09-04 17:12:33 <@jbtrystram:matrix.org> do we have any other topics folks want to discuss ?
2024-09-04 17:13:36 <@jlebon:fedora.im> this isn't correct AFAIK. the maintainer is a red hatter (so yes... IBM, but i don't think what you meant :) )
2024-09-04 17:14:00 <@siosm:matrix.org> ok for me
2024-09-04 17:16:42 <@dustymabe:matrix.org> yeah. we wanted to get our pipelines back green without a ton of overrides or denylist entries.. will try to unfurl all the selinux denials over time with the maintainer
2024-09-04 17:18:43 <@jbtrystram:matrix.org> Should we communicate this change somewhere or wait so the story is more fleshed out ?
2024-09-04 17:18:43 <@jbtrystram:matrix.org> I have a small topic : we recently started publishing build tags for our bootable container images. Which allow people to properly consume them and revert back if needed. However zincati does not support that, so it exists but can't be supported in that state.
2024-09-04 17:19:13 <@jbtrystram:matrix.org> It's on my list to bring that discussion back to the table :) 
2024-09-04 17:21:19 <@siosm:matrix.org> Unfortunately, once we start advertising our container images, we will get users, and then that means that we'll double the amount of things to look at until we move things to containers
2024-09-04 17:21:43 <@jlebon:fedora.im> jbtrystram: this is part of the much larger discussion of "layering + updates"
2024-09-04 17:21:43 <@siosm:matrix.org> so I'm more for a "one step at a time" approach
2024-09-04 17:23:07 <@jlebon:fedora.im> which, we had put on pause for a bit but we need to resume as part of the "roadmap to bootable containers"
2024-09-04 17:24:10 <@jlebon:fedora.im> jbtrystram: i vaguely recall you were interested in that part of the story? (zincati and layering) or am i misremembering?
2024-09-04 17:24:44 <@jbtrystram:matrix.org> I am ! That's why i want to bring that story out of the limbo it's been for a year 
2024-09-04 17:25:37 <@jlebon:fedora.im> jbtrystram: maybe let's set up a meeting to chat :)
2024-09-04 17:25:53 <@jbtrystram:matrix.org> But okay, let's not brag about the container until this is more fleshed out
2024-09-04 17:26:00 <@jbtrystram:matrix.org> But okay, let's not brag about the containers tags until this is more fleshed out
2024-09-04 17:27:38 <@siosm:matrix.org> Ideally, we start bragging about them once we are ready to transition everybody to them
2024-09-04 17:28:31 <@siosm:matrix.org> composefs is one part, zincati support another, the tags were another bit as well
2024-09-04 17:29:49 <@siosm:matrix.org> we kind of derived into open floor. Anything for open floor?
2024-09-04 17:30:03 <@siosm:matrix.org> (we're almost at time)
2024-09-04 17:30:12 <@siosm:matrix.org> (we're <del>almost</del> at time)
2024-09-04 17:30:51 <@jlebon:fedora.im> nothing on my side!
2024-09-04 17:32:02 <@dustymabe:matrix.org> time for some food
2024-09-04 17:32:15 <@jbtrystram:matrix.org> thanks for attending everyone ! 
2024-09-04 17:32:23 <@jbtrystram:matrix.org> I'm closing here
2024-09-04 17:32:31 <@jbtrystram:matrix.org> !endmeeting