14:03:14 <andreasn> #startmeeting Weekly cockpit meeting 2015-11-30
14:03:14 <zodbot> Meeting started Mon Nov 30 14:03:14 2015 UTC.  The chair is andreasn. Information about MeetBot at http://wiki.debian.org/MeetBot.
14:03:14 <zodbot> Useful Commands: #action #agreed #halp #info #idea #link #topic.
14:03:14 <zodbot> The meeting name has been set to 'weekly_cockpit_meeting_2015-11-30'
14:03:14 <andreasn> did that work I wonder
14:03:27 <mvollmer> .hello mvo
14:03:28 <stefw> .hello stefw
14:03:30 <zodbot> mvollmer: mvo 'Marius Vollmer' <marius.vollmer@gmail.com>
14:03:30 <andreasn> yup, just slow bot
14:03:30 <andreasn> .hello andreasn
14:03:33 <zodbot> stefw: stefw 'Stef Walter' <stefw@redhat.com>
14:03:36 <zodbot> andreasn: andreasn 'Andreas Nilsson' <anilsson@redhat.com>
14:04:28 <dperpeet> .hello dperpeet
14:04:28 <zodbot> dperpeet: dperpeet 'None' <dperpeet@redhat.com>
14:04:43 <mvollmer> yay!
14:04:53 <andreasn> #topic Agenda
14:05:15 <mvollmer> * External channels
14:05:18 <mvollmer> * SOSReport
14:05:21 <mvollmer> * Debian
14:05:35 <andreasn> * OpenSCAP container support
14:06:00 <stefw> * Javascript dependencies
14:06:59 <andreasn> all right
14:07:18 <andreasn> #topic External Channels
14:07:42 <mvollmer> stef has been doing great work on the "external channels"
14:08:02 <mvollmer> propmted by the sosreport download feature
14:08:19 <andreasn> yay
14:08:24 <mvollmer> now we can open channels just from a GET request with a special URL
14:08:56 <mvollmer> stefw, would you like to add?
14:09:07 <stefw> the GET request uses a CSRF token
14:09:14 <stefw> which is sent via the WebSocket in the "init" message
14:09:21 <stefw> i tried different approaches for these external channels
14:09:25 <stefw> and this one ended up making the most sense
14:10:30 <mvollmer> i have changes the sosreport code to use this, and it works great
14:10:34 <stefw> cool
14:10:35 <mvollmer> *changed
14:10:39 <andreasn> nice
14:10:47 <andreasn> anything else on that subject?
14:11:05 <mvollmer> review is ongoing, hopefully can be merged very soon.
14:11:28 <andreasn> nice
14:11:28 <andreasn> #topic SOSReport
14:11:32 <mvollmer> right
14:11:41 <mvollmer> so I changed sosreport to use external channels. :-)
14:11:56 <mvollmer> the removes the need to add a file server
14:12:07 <mvollmer> now we just open a superuser fsread1 channel
14:12:41 <mvollmer> works very well after stefw helped me remember the "binary" option for a channel
14:12:55 <stefw> should that be the default for external channels?
14:12:59 <stefw> it would be a bit unexpected
14:13:03 <stefw> but may help things go better?
14:13:09 <mvollmer> i don't know...
14:13:23 <mvollmer> maybe
14:13:32 <mvollmer> or depending on the content-type?
14:14:06 <stefw> yeah, could be
14:14:11 <stefw> if content type is set, then make it binary
14:14:15 <mvollmer> what other uses do we have for the external channels?
14:14:37 <stefw> well all the resource loading is actually external channels
14:14:40 <stefw> and they do set binary by default
14:14:45 <mvollmer> right
14:15:24 <mvollmer> hmm, we should decide this before merging
14:15:43 <mvollmer> changing the default later is nasty
14:16:13 <mvollmer> or culd it be a per-payload default?
14:16:30 <mvollmer> fsread1 is binary
14:16:34 <mvollmer> fslist1 is not
14:16:41 <mvollmer> let's discuss later
14:16:45 <stefw> ok
14:17:00 <mvollmer> andreasn, sosreport has "needsdesign"
14:17:11 <mvollmer> I would say, let's not do profiles
14:17:31 <mvollmer> they are already inconsistent between f22 and f23 I think.
14:17:42 <mvollmer> or rather, don't work on f23
14:17:51 <andreasn> all right
14:17:51 <andreasn> so regarding profiles, I looked into that
14:17:51 <andreasn> and made some mockups https://raw.githubusercontent.com/cockpit-project/cockpit-design/master/sos-reports/create-sos-report-v3.png
14:17:51 <andreasn> but I ran into the hurdle that Fedora doesn't ship any profiles(?!)
14:17:51 <mvollmer> let's bother about that later
14:18:01 <andreasn> but I could have gotten that backwards
14:18:09 <mvollmer> ok!
14:18:12 <andreasn> yes, I think it would make sense as a version 2
14:18:15 <mvollmer> I'll look into this then.
14:18:19 <mvollmer> okay.
14:18:29 <andreasn> I'll remove the label for now
14:18:56 <mvollmer> yep
14:19:09 <andreasn> and I'll keep investigating this situation with profiles
14:19:23 <andreasn> all right, next up
14:19:30 <mvollmer> i have to check the integration test and make new images, then sosreport should be ready again
14:19:32 <andreasn> #topic OpenSCAP container support
14:20:12 <andreasn> so I went back to researching Atomic SCAP scanning a bit, sketching things out and such
14:20:40 <andreasn> but I wonder when and when we need to develop that, if it's urgent and such
14:21:07 <andreasn> or if some other fire is more urgent
14:21:49 <mvollmer> not a fire, but what about rolekit?
14:22:04 <mvollmer> is that in good shape from your point of view?
14:22:30 <andreasn> I have a lot of design done on rolekit already, but I'm revisiting those a bit as well
14:22:35 <andreasn> it's in like a half-good state maybe
14:22:49 <mvollmer> okay
14:23:03 <andreasn> so it would work, but could be better
14:23:04 <mvollmer> I am thinking that I start with that towards the end of the week, maybe
14:23:14 <andreasn> I'll do some more work on rolekit as well during this week
14:23:23 <mvollmer> okay
14:23:23 <andreasn> sounds good
14:24:12 <andreasn> #topic Debian
14:24:14 * stefw has to go in 6 minutes
14:24:29 <mvollmer> let's do stef's topic
14:24:41 <andreasn> sure, what was that?
14:24:49 <mvollmer> #topic Javascript dependencies
14:24:50 <stefw> javascript dependencies
14:24:55 <andreasn> #topic Javascript dependencies
14:25:06 <stefw> because some distros are complaining about us bundling javascript dependencies
14:25:13 <mvollmer> right
14:25:20 <stefw> i'm trying to make progress in the direction of having them replacable at *build* time
14:25:21 <andreasn> hehehe
14:25:22 <andreasn> this old fight
14:25:25 <stefw> not at *runtime*
14:25:33 <mvollmer> yes, that makes sense
14:25:47 <stefw> so as a first step, i'm trying to move all deps into a sane place (rather than copying them around our tree)
14:25:53 <stefw> and trying to use unmodified upstream files
14:26:01 <stefw> this is also interesting for the image registry package i'm working on
14:26:05 <andreasn> so that a distro could ship a certain patternfly version and have us pick up that?
14:26:05 <andreasn> (maybe a bad example)
14:26:07 <stefw> lets see how far we get
14:26:17 <stefw> andreasn, well i would suggest we lock down the versions very specifically
14:26:29 <stefw> and the distro needs to ship that version (perhaps the dotted point version can vary)
14:26:35 <mvollmer> i think we should still ship 'known good' versions in the tarball
14:26:42 <stefw> mvollmer, yes, we could do that
14:26:45 <andreasn> right
14:26:46 <mvollmer> but allow them to be replaced
14:26:49 <stefw> and i'm going to do that for the bower dependencies
14:26:53 <mvollmer> so that we can point fingers
14:26:57 <stefw> so there are broadly two types of javascript dependencies:
14:27:08 <stefw> 1. the nodejs devel dependencies listed in package.json
14:27:20 <stefw> 2. the bower runtime dependencies currently controlled via 'make update-lib'
14:27:27 <stefw> i would like to continue to ship known good versions of the latter
14:27:31 <stefw> in our git repo
14:27:32 <mvollmer> yes
14:27:35 <andreasn> newer patternfly could break an older cockpit theoretically
14:27:38 <stefw> especially because then it makes development so much easier
14:27:41 <stefw> andreasn, yes, and it has
14:27:47 <stefw> we can be less stringent about the nodejs deps
14:27:54 <stefw> even though those have broken our build in the past
14:28:10 <stefw> but for the runtime bower dependencies we need to be quite strict about versions, or we'll have a mess on our hands
14:28:13 <stefw> so anyway, just a step in this direction
14:28:16 <stefw> disentangling things
14:28:20 <stefw> hopefully there will be a pull request soon
14:28:22 <mvollmer> nice
14:28:46 <andreasn> cool
14:29:05 <mvollmer> it's more or less equivalent to patching configure.ac, no?
14:29:21 <mvollmer> if you do it, you need to run some extra steps and need more builddeps
14:29:24 <stefw> yes, distros will need to place symlinks in the right places
14:29:29 <stefw> so our build can find them
14:29:45 <stefw> and then yes, many mor ebuild deps are need.ed
14:29:54 <stefw> our goal should still be that no javascript is needed to build the tarball
14:29:58 <stefw> but if distros want to meddle
14:30:00 <stefw> then they need everything
14:30:14 <mvollmer> yes
14:30:15 <stefw> the open question becomes
14:30:24 <stefw> how can we guarantee that our tests catch the bugs?
14:30:30 <stefw> likely we'll have to upstream their meddling ... in some way
14:30:33 <stefw> so it's not a handsoff thing
14:30:44 <stefw> lets see how it goes
14:30:45 <mvollmer> right
14:30:49 <mvollmer> yes
14:30:59 <dperpeet> they can run our tests with their packages
14:31:07 <dperpeet> it should be drop-in, basically
14:31:47 * stefw has got to go
14:31:53 <dperpeet> our tests only expect cockpit running on the system, they don't care where it comes from
14:32:57 <mvollmer> let's see
14:33:13 <mvollmer> stefw, see you!
14:33:53 <mvollmer> Debian?
14:33:59 <andreasn> later!
14:34:26 <dperpeet> mvollmer, go ahead with Debian
14:34:31 <andreasn> sure
14:34:33 <andreasn> #topic Debian
14:34:38 <mvollmer> ok
14:34:46 <mvollmer> I have been making good progress
14:35:03 <mvollmer> some status here:
14:35:05 <mvollmer> https://github.com/cockpit-project/cockpit/pull/3202#issuecomment-160580658
14:35:35 <mvollmer> I'll continue with this
14:35:46 <mvollmer> have to figure out network-manager and FreeIPA
14:35:57 <mvollmer> and user synching might be a challenge
14:36:14 <mvollmer> but it looks good
14:36:21 <dperpeet> nice work
14:36:23 <dperpeet> 5 tests failing
14:36:25 <mvollmer> a lot of work still to be done, of course
14:36:28 <mvollmer> storaged
14:36:42 <mvollmer> and SELinux
14:36:49 <mvollmer> but we need help with that, I'd say
14:37:00 <dperpeet> I think we can leave storaged out of the picture for now
14:37:07 <mvollmer> yeah
14:37:11 <dperpeet> and pick up the work when someone has it running on debian
14:37:17 <mvollmer> we still don't have a maintainer in Debian, right?
14:37:23 <dperpeet> not that I know of
14:37:37 <mvollmer> it's a good chunk of work
14:37:47 <mvollmer> for a volunteer
14:38:45 <mvollmer> about the PR itself
14:38:55 <mvollmer> there is one big commit that adds support for Debian 8
14:39:07 <mvollmer> and many small ones that tweak the tests and Cockpit in small ways
14:39:30 <mvollmer> I would appreciate it if you could have a look at the PR
14:39:39 <mvollmer> looks like a lot, but really isn't
14:39:57 <mvollmer> https://github.com/cockpit-project/cockpit/pull/3202
14:40:09 <dperpeet> ok
14:40:16 <mvollmer> petervo, still here?
14:40:26 <petervo> yes
14:40:40 <mvollmer> petervo, Debian doesn't have ssh_set_agent_port
14:40:42 <mvollmer> (or similar)
14:41:01 <mvollmer> it's essential for ssh public key stuff, right?
14:41:14 <petervo> right so no key auth support
14:41:18 <mvollmer> can we do something about getting it into Debian?
14:41:34 <mvollmer> newer version? patch against upstream?
14:41:51 <petervo> it's probably a matter of upgrading libshh i can look into it
14:42:06 <petervo> libssh*
14:42:09 <mvollmer> okay
14:42:53 <mvollmer> so, I don't feel like spendin 100% on Debian for much longer
14:43:02 <andreasn> probably makes sense
14:43:24 <mvollmer> but network-manager and freeipa need to be tackled
14:43:38 <mvollmer> I should talk more to mbiebl etc
14:43:42 <andreasn> what was up with networkmanager?
14:44:00 <mvollmer> the tests fail, and I haven't bothered to check
14:44:09 <mvollmer> also, the tests are pretty fedora specific
14:44:26 <mvollmer> fedora and debian have different ways to configure the network
14:44:32 <andreasn> ah, but networkmanager itself is functional?
14:44:40 <mvollmer> yes
14:45:14 <mvollmer> ahh, one more thing
14:45:26 <mvollmer> installiong build dependencies during vm-create
14:45:37 <mvollmer> right now, they are installed during vm-install
14:45:46 <mvollmer> but I think I know how to do it
14:46:29 <mvollmer> that's it
14:46:38 <andreasn> nice
14:46:43 <andreasn> #topic open floor
14:47:18 <andreasn> since mvollmer is going to start looking at rolekit at the end of the week, should we move it up one point on the roadmap?
14:47:27 <andreasn> above NFS
14:47:40 <andreasn> (NFS client that is)
14:47:41 <mvollmer> I'd say yes
14:47:52 <andreasn> cool, I'll do that then
14:48:00 <mvollmer> thanks
14:48:21 <andreasn> anything else?
14:49:44 <andreasn> did I go offline?
14:50:40 <mvollmer> i think we are done
14:51:13 <andreasn> hups, seems I dropped off
14:51:19 <andreasn> cool
14:51:23 <andreasn> #endmeeting