Attendees:
Karanbir Singh
Jim Perrin
Fabian Arrotin
Johnny Hughes
Ralph Angenendt
Karsten Wade
Actions:
Add a license field for every container entry
Develop list of all licenses in the distro + per repo
Add requirements for license field into the SIG guide
Add verification check
Messaging for unified git
Write up proposal & submit to Board for discussion / approval
Notes:
Registry.centos.org containers
Who is vetting that things match the correct rules?
Akin to SIGs -- they can go succeed but following the guidelines
Need guidelines for this
Containers may be more visible than other domains
Licensing guidelines are already in https://wiki.centos.org/SpecialInterestGroup
What is our response?
Containers are acting separately from what SIGs do?
Operate within Atomic SIG
Who is responsible for content going into registry?
BamaChrn Kundu & Container Eng team
Action: Need a ‘License:’ field for every container entry
Action: Make sure it is in the SIG guide & referenced from that SIG
What do we put in the license field?
License field should contain the license for the app that is the ‘purpose’ of the container
All licenses need to be included in the container viewable when examining the container
Make it clear to the SIGs what we are happy to host/not host
Issue of how we build containers
LIfecycle terms
OK to just consume content
Can take built binaries …
Requiring restriction to come from RPMs would be a very high barrier for the upstreams we are working from
Licenses we approve of …
Verification check post-build?
If we’re not checking / don’t have a way to check, we’re responsible.
Unified git (NDA topic)
Discussed at FOSDEM
Buildroot for RHEL8 likely larger than shipped OS
All source coming into CentOS
To make this work with need a unified git with Fedora
Result
Git.centos.org maintained by us, pulls from common place as git.fedoraproject.org
Effects
No appreciable negative effects?
Positive for certain type of maintainers
Makes our future lives easier as stuff is changing anyway
Modified packages
How is this going to work if CentOS & Fedora have a common upstream git repo -- where do our changes go?
Different branches - ‘f’ v ‘c’, so each group/hat worn pushes changes to their branches
Some packagers may wear both hats
How are the CentOS changes retained?
The official branches ‘c7’ are for debranding only -- workflow stays in place.
Johnny’s changes go through as they do currently
We need to be better updating patches in alt-src
E.g. c7-sig-altarch would be protected for project & SIG members via authentication, so no one from e.g. Fedora could step on something.
Ideally this is a minimal changes to current workflow