Tuesday, 2024-08-20

« Monday, 2024-08-19 Index Wednesday, 2024-08-21 »
opendevreviewJens Harbott proposed openstack/contributor-guide master: Update IRC document  https://review.opendev.org/c/openstack/contributor-guide/+/92651100:15
opendevreviewGhanshyam proposed openstack/election master: Add Ghanshyam candidacy for TC next term  https://review.opendev.org/c/openstack/election/+/92660203:30
*** bauzas_ is now known as bauzas06:39
opendevreviewMerged openstack/election master: Add Jens Harbott candidacy for TC 2025.1  https://review.opendev.org/c/openstack/election/+/92658107:43
opendevreviewMerged openstack/election master: Add Vladimir Kozhukalov candidacy for 2025.1 TC  https://review.opendev.org/c/openstack/election/+/92658507:43
*** bauzas_ is now known as bauzas08:40
kevkohi \o15:23
opendevreviewPierre Riteau proposed openstack/election master: Add Pierre Riteau candidacy for Blazar 2025.1 PTL  https://review.opendev.org/c/openstack/election/+/92665815:24
opendevreviewHao Wang proposed openstack/election master: Add Hao Wang candidacy for Zaqar 2025.1 PTL  https://review.opendev.org/c/openstack/election/+/92665916:49
fricklertc-members reminder: meeting in 60 minutes17:00
opendevreviewHao Wang proposed openstack/election master: Add Hao Wang candidacy for Zaqar 2025.1 PTL  https://review.opendev.org/c/openstack/election/+/92665917:15
*** bauzas_ is now known as bauzas17:41
frickler#startmeeting tc18:00
opendevmeetMeeting started Tue Aug 20 18:00:05 2024 UTC and is due to finish in 60 minutes.  The chair is frickler. Information about MeetBot at http://wiki.debian.org/MeetBot.18:00
opendevmeetUseful Commands: #action #agreed #help #info #idea #link #topic #startvote.18:00
opendevmeetThe meeting name has been set to 'tc'18:00
fricklerWelcome to the weekly meeting of the OpenStack Technical Committee. A reminder that this meeting is held under the OpenInfra Code of Conduct available at https://openinfra.dev/legal/code-of-conduct18:00
fricklerToday's meeting agenda can be found at https://wiki.openstack.org/wiki/Meetings/TechnicalCommittee18:00
frickler#topic Roll Call18:00
JayFo/18:00
slaweqo/18:00
gtemao/18:00
gmanno/18:00
kevko\o/18:01
fricklernoted absence: n o o n e d e a d p u n k   g o u t h a m r18:01
* frickler likes the idea to mention ppl without highlighting them18:01
JayFI noticed that last meeting and appreciate it too18:01
dansmith@kaso/18:03
dansmithoops, but.. I'm here :)18:03
fricklercourtesy ping: spotz[m] 18:03
spotz[m]o/:)18:03
fricklerthat's everyone accounted for unless I'm mistaken18:04
frickler(note this is the first time I'm chairing, please bear with me if something goes wrong)18:04
frickler#topic Action Items from last week18:04
fricklerthere was an AI regarding Rocky Linux mirrors; not sure from last week's log if we should continue tracking this?18:04
fricklerI also didn't see any other AIs, anything to mention here? except for the upcoming big topic18:05
fungifrom opendev's perspective the outstanding question for now is what the current problem observed with rocky jobs is and does it imply an immediate need for package mirrors in ci18:06
fungibut community members with a vested interest in that can engage outside this meeting through the tact sig18:06
clarkbya I wrote down a list of steps for that first was determine if package mirrors are expected to help address an observed problem. If so then determine the size of the mirrored content. Check that size against available disk space in afs and mirror if there is room. Else make room then mirror18:07
fricklerI'm not aware of any specific issues, in my understanding this is more of following the general idea of having mirrors in place to avoid potential issues18:07
fricklerbut yes, let's follow up in either #opendev or #openstack-infra then18:08
fricklerseems there is nothing else, so ...18:09
frickler#topic Implications of testing/shipping non-OSI licensed software within OpenStack18:09
fricklerfirst subtopic: support of consul within the kolla project, related mailing-list thread:18:09
frickler#link https://lists.openstack.org/archives/list/legal-discuss@lists.openstack.org/thread/IEGARFPOGX6QZAHMKIP4AG5MXEM7WVIO/ (LICENSE question - Openstack Masakari)18:09
fricklerrelated TC resolution:18:09
frickler#link https://governance.openstack.org/tc/resolutions/20170530-binary-artifacts.html (TC Guidelines for Managing Releases of Binary Artifacts)18:09
fricklerkevko is the person who started the thread, do you want to add something?18:10
kevkoI can add something if there's someone here who doesn't know what it's about.18:11
JayFMy reading of both the thread and the resolution implies that team is free to do what they want, yes?18:11
spotz[m]If anything you’re adding for anyone reading the log too18:11
JayFUnless the TC takes action to write a new resolution to remove it?18:11
fricklerin the kolla channel earlier today fungi summarized with these questions:18:12
fricklerlikely policy questions for the tc members to tackle are: 1. should the current guidance on distribution of binary artifacts be extended to require that they contain only open source software?18:12
spotz[m]Even if we write a new resolution this would fall on the current and then would require removal?18:12
frickler2. is it okay for an openstack project to add a new testdependency which is not open source? 3. if a test dependency switches to a non-open-source license, what actions is openstack expected totake? (pin to the last open source version, switch to an open source fork, remove upstream testing of the integration...)18:12
fungii mainly just want to make sure that the tc decides intentionally what its policy is on having non-open-source (non-osi-approved/non-dfsg-compliant) licensed software as test dependencies and/or distributed within binary artifacts18:13
gmannI also think same, we should write policy/new resolution to explicitly mention about it otherwise yes project team are allowed to do that18:13
gmannif I am not wring, this is the first case of request/using non-oss deps right?18:14
fungithe tc does maintain a licensing document currently which has an explicit carve-out to request approval for adding "[A]GPL libraries used during validation or testing phases of development" but says nothing on the topic of non-open-source software18:14
clarkbnot to open a whole can of worms here, but a while back there was a whole effort to explicitly make etcd a running cloud dependency. It is a bti odd to me that we would elect to use dependencies that are not open that solve similar problems18:15
fungi#link https://governance.openstack.org/tc/reference/licensing.html "Licensing requirements"18:15
clarkbI think that is a separate issue to the BSL question though. More of a "why did we go through all this effort for etcd if we are just going to ignore it" qusetion18:15
fricklerthere were similar situations iiuc with hashicorp vault and elasticsearch18:15
JayFclarkb: etcd is used in several jobs and projects unrelated to masakari, including Ironic Networking-Generic-Switch fwiw.18:16
kevkoand redis will be the next 18:16
fungiyes, in those cases they were open source at the time support was added and switched licenses later, but also open source drop-in replacements/forks are also available which could be used instead18:16
gmannyeah18:17
gtemavalkey explicitly states it is started as a fork but may/would deviate sooned or later18:17
clarkbJayF: cool, that doesn't justify masakari seemingly ignoring it though18:17
JayFI am not sure we should put more restrictions in; my expectation would be the masakari developers would not suggest use of Consul if etcd did the job.18:17
kevkomain point is that BSL allows usage in infra IF it's not sold as some solution in other words .. API of BSL software is not provided to end user ...18:17
kevkomasakari has no support for etcd .. 18:18
JayFI think the question, from Clark, kevko, is why was consul selected instead of other more open solutions in that spec18:18
JayF**space18:18
clarkbwell and specifically the one we've already stated we expect openstack projects to use18:19
fungiyeah, i think the question is why does masakari not support etcd but instead focused energy on supporting a non-open-source option (and it's possible there are technical reasons for that decision)18:19
clarkbbut yes why not use an open source tool and why not use the one we've already said you should use18:19
kevkofor example in our next deployment for new customer the problem is that corosync-pacemaker is limited up to 32 hosts 18:19
clarkbkevko: I don't think direct api access is necessary to trigger the BSL18:20
fungicompeting with hashicorp in any way they decide constitutes competition immediately terminates the license18:20
clarkbbut also different BSL licenses have different exclusion clauses for what tehy care about so it is a bit messy18:20
JayFkevko: is that a licensing limitation new to consul (I know hashicorp has been doing license changes) or  a technical limitation of etcd?18:20
fungiit's the same bsl license that vault is under18:21
fungi#link https://www.hashicorp.com/bsl "Business Source License"18:21
kevkoclarkb: https://github.com/hashicorp/consul/blob/0e47b380b2b86ab1c232dcd19e7c116e85ed6d69/LICENSE#L9-L1318:21
clarkbok so they seem to have a specific carve out in the consul case18:22
kevkoclarkb: https://github.com/hashicorp/consul/blob/0e47b380b2b86ab1c232dcd19e7c116e85ed6d69/LICENSE#L5718:22
clarkbbut in the general BSL case I don't think you can make this assumption as that is under the additional use grants18:22
kevkoBSL can have "Additional Use Grant"18:22
clarkbyes that is the point I'm trying to make. Each BSL license is different due to that18:22
clarkbwhich makes it messy and you often have to consider things on a case by case basis18:23
fungifrom an upstream perspective the license doesn't seem to pose any legal risks for openstack as a project, according to openinfra foundation legal cousel18:23
fricklerianal but a scenario like openmetal provisions a cloud using consul which is then operated by opendev seems to me like a grey area for that license18:23
kevkoand I don't think this is the question ...as from legal-discuss i have this answer 18:23
kevkoAfter consulting foundation legal counsel, this type of integration should not be a problem from a licensing perspective as long as no BSL licensed code is added into OpenStack code and as long as use of the HashiCorp product remains optional.18:23
clarkbfrickler: ya but that would be openmetal's problem not oepnstack's18:23
fungiso it's more of a general question of whether the tc is okay with bsl test dependencies and distributing copies of bsl software in container images18:24
gtemathere is another aspect into the story, if SW (OpenStack service) communicates with Hashi software using i.e. python hvac lib  - there is no issue at all since it is under Apache license18:25
fungiand from a consistency standpoint it seems odd that openstack cares enough to warn about use of gpl and agpl test dependencies, but doesn't need to supply guidance about non-open-source licenses like bsl18:25
JayFHonestly I went into this discussion thinking we should stay outta masakari's way, but now I'm concerned that BSL software could be toxic in the same way AGPL can be18:26
slaweqwhat about packaging for distros, could it impact e.g. debian packages if some openstack service will have non open source (test) dependencies?18:26
JayFCan we pose that specific question, re if it would put OpenDev or the donor clouds in any kind of jeopardy?18:26
clarkbslaweq: gtema that is why the "remain optional" portion of the statement is important aiui18:26
clarkbif you have a hard dependency that can't be avoided on smething that isn't open source then you aren't really open (and we already have policies that should prevent this)18:27
kevkoJayF: This is not about masakari but for example also about barbican ... they have also support for hashicorp vault as a backend 18:27
gtemacorrect clarkb, I would be against of forbidding our services to have support for optional non opensource drives18:27
fungiclarkb: debian dropped their consul package after bullseye (oldstable) related to the license change18:27
JayFkevko: interesting point, I wonder if they test/install it on our donor clouds already...18:27
clarkbfungi: right and masakari packaging in debian would depend on an open source alternative18:28
kevkoJayF: also kolla is testing vault integration in CI  - https://github.com/openstack/kolla-ansible/blob/master/tests/test-hashicorp-vault-passwords.sh18:28
slaweqIMHO our software should be fully open and depend only on the opensource software, and any driver or something like that for non opensource soulution should be part of some 3rd party solution18:28
JayFkevko: so interestingly, it seems like frickler's license concern -- that we may be putting our donor clouds into a grey area -- may already be happening18:29
slaweqin upstream we should have in such case some kind of reference implementation based on the opensource solution18:29
slaweqeven if it has some limitations as in the kevko's case IIUC18:29
fungiwe definitely have a lot of cases where openstack has drivers for proprietary systems like network and storage devices, so i think having this kind of integration is fairly typical, but in the majority of those cases the people supporting the proprietary system drivers are expected to do their own external testing rather than testing upstream18:29
JayFslaweq: I think the only reason I'm hesitant to have a hard stance of that nature is actually due to the Hashicorp situation: if a previously open backend closes, it may generate a crisis for that project whereby they don't have the resources to stay alive :( 18:29
spotz[m]I’m with slaweq though I know it’s getting hard with the changing licenses18:29
spotz[m]In theory if an open source project sprouted from a changed license could our stuff switch?18:31
fungimaybe reversing the order of my questions in the kolla channel, is keeping test dependencies and distributing newer copies of software that switches from an open source license to a source-available license okay or do projects need to work to remove them once that happens, and particularly if the latter then is adding new instances of the same acceptable?18:31
JayFspotz[m]: that's basically my question18:31
JayFfungi: Does the foundation care at all, at that level?18:32
fungithe foundation (legally speaking, as an organization) doesn't have an opinion, other than stating it doesn't present any obvious legal risk either way18:33
fricklerok, I'd like to avoid filling the whole meeting with this topic, so maybe let's phrase this the other way around: does anyone think that the TC needs to come up with a new resolution regarding this topic? is there a volunteer to propose something?18:33
fricklerotherwise let's timebox this at say 18:4018:33
fungias far as tc guidance is concerned, i'll note that those proposing the consul integration found and followed the tc's documented recommendation for handling of (a)gpl test dependencies because there was no guidance on non-open-source test dependencies18:34
spotz[m]Sounds like this would be a good forum session but that’s 2 months away18:34
fungitwo weeks away18:34
JayFfrickler: kevko: if the masakari team is not held up too much by waiting, this seems like *prime* fodder for a TC PTG session18:34
spotz[m]Forum or PTG I should say18:34
JayF== spotz[m] yep exactly18:35
frickleriiuc this isn't about masakari, but about kolla implementing consul support for masakari18:35
kevkoyep 18:36
*** bauzas_ is now known as bauzas18:36
JayFsimilar question then, directed towards the correct team :)18:36
fricklerbut evaluating whether bringing other options like etcd into masakari would be possible does also sound interesting18:36
kevkoif kolla and kolla-ansible can provide the way to user to install those BSL backends to be used by openstack service which already supports it 18:36
fricklerkevko: how urgent is this topic for you?18:36
kevkowell, sometimes I am backporting my patchsets from gerrit for several releases until they are merged ... 18:37
fungikevko: is kolla able to support that integration without testing it upstream (letting people who care about it run a third-party ci) and avoid building images that contain copies of consul? then it would be no different from other proprietary systems integration openstack supports18:38
JayFthat's a very good suggestion, especially if it buys enough time to get to the PTG for a long-form discussion18:38
gmannI think kolla release is after PTG for D right? maybe it will give some time to kolla even we discuss it in PTG?18:38
kevkobut I have better feeling if i know it will be in master and freezed as some released version in future ... otherwise i will be backporting those stuff forever in my downstream git ...  but i like do upstream work and don't want to implement everything in my downstream gits18:38
fricklerkolla is cycle-trailing, yes18:39
JayFkevko++ thank you for that 18:39
fungiin theory expecting users to build the images for consul or get them elsewhere shouldn't be a significant burden since the tc already says that binary artifacts like container images published by openstack teams should be clearly marked as not for production use, and that end consumers are expected to build their own anyway to take on that liability18:39
JayFabsolutely18:40
kevkoyep 18:40
fricklerok, so I'd suggest we stop here and take this topic to the PTG, any final words?18:40
kevkokolla  is just bunch of python and jinja code ...we don't need to build them ...but user can ... for kolla-ansible ..the same ..it can be turned off by default ...but there can be an option to orchestrate those images if user will build them 18:41
spotz[m]If anyone wants to discuss in Suwon let me know, this could get added as a session still at NA but that’s a week before the PTG18:41
fricklerthere is a second subtopic added in the wiki but I think we wait until noonedeadpunk is back with that, regarding ansible-collections-openstack18:42
frickler#topic A check on gate health18:42
kevkoin fact ..kolla just provides Dockerfiles and kolla-ansible just ansible orchestration .... kolla don't need to provide container images ... it can be marked as BSL third party and needed to build by users 18:42
fricklergmann: any update on the adoption of latest oslo.policy? is there a chance that this will be release critical?18:42
frickler#link https://review.opendev.org/c/openstack/requirements/+/92546418:43
gmannfrickler: there are few projects still not fixed, tacker fix is up but not merged and barbican I need to push today18:43
gmannother than than one designate-neutron job failing which I continue to debug as root cause is not known18:44
fricklergmann: I'm just worried that in the end we need to revert some oslo changes, like we had to do for db and others in the last cycles18:44
gmannneutron-tempest-plugin-designate-scenario fail, slaweq I will try to catch you on this after meeting or sometime tomorrow18:44
gmannfrickler: It should not be at that level. there are config default value change and easy fix is to disable them at service level. But I am trying some test fix as per new version18:45
gmannI think I will push all by today and ask team to merge those (if test cannot be fixed then just continue disable the new RBAC for those services)18:45
fricklerok, sounds like a plan. anything else gate-y?18:46
gmannmy target is to merge the requirement u-c max by this week18:46
slaweqgmann: I will be afk today just after this meeting but please write on the neutron channel, I will check tomorrow morning18:46
gmannslaweq: ack18:46
fricklergmann: +118:47
gmannnothing else on gate specific from my side18:48
frickler#topic 2024.2 TC Tracker18:48
frickler#link https://etherpad.opendev.org/p/tc-2024.2-tracker (Technical Committee activity tracker)18:48
frickleranything that needs to be brought up here?18:48
fricklerI did look at the update for monasca that was mentioned last week, and I'm not convinced that it is on a path towards a healthy project, but open to hear other opinions18:50
frickler#link https://review.opendev.org/c/openstack/governance/+/923919 (Inactive state extensions: Monasca)18:50
kevkojust for record - current limitation in kolla, kolla-ansible for masakari and corosync-pacemaker implementation 18:52
gmannI will say, let's give the extension and see in next cycle how it goes18:52
kevkohttps://clusterlabs.org/pacemaker/doc/2.1/Pacemaker_Remote/html/intro.html#overview  << 18:52
kevkoIn a basic Pacemaker high-availability cluster [1] each node runs the full cluster stack of Corosync and all Pacemaker components. This allows great flexibility but limits scalability to around 32 nodes. << 18:53
kevkoThanks to all 18:53
fricklerso this kind of melts into ...18:53
frickler#topic Open Discussion and Reviews18:53
JayFIf you are running for TC or PTL this cycle; you're running out of time to do the nomination.18:54
gmannI have couple of reviews request18:54
fricklerplease check open governance and other reviews, I didn't prepare a specific list18:54
gmann#link https://review.opendev.org/c/openstack/governance/+/925926 18:54
gmann^^ this has been open for couple of week, please review 18:54
gmannand testing runtime is also ready to review18:54
gmann#link https://review.opendev.org/c/openstack/governance/+/92615018:54
fricklerthx gmann. anything else to mention?18:57
fricklerthank you all for attending this meeting18:58
fricklersee you here again next week or feel free to ping tc-members anytime you need our attention \o/18:58
frickler#endmeeting18:58
opendevmeetMeeting ended Tue Aug 20 18:58:22 2024 UTC.  Information about MeetBot at http://wiki.debian.org/MeetBot . (v 0.1.4)18:58
opendevmeetMinutes:        https://meetings.opendev.org/meetings/tc/2024/tc.2024-08-20-18.00.html18:58
opendevmeetMinutes (text): https://meetings.opendev.org/meetings/tc/2024/tc.2024-08-20-18.00.txt18:58
opendevmeetLog:            https://meetings.opendev.org/meetings/tc/2024/tc.2024-08-20-18.00.log.html18:58
JayFo/ thanks for chairing18:58
slaweqthx18:58
slaweqo/18:58
gtemathanks, cy18:58
gmannthanks18:59
fricklero/... (that's just a bit of sweat, and only because the evening is still warm ;)18:59
spotz[m]Thanks all!18:59
opendevreviewMerged openstack/election master: Add Ghanshyam candidacy for TC next term  https://review.opendev.org/c/openstack/election/+/92660219:20
opendevreviewMerged openstack/election master: Add Pierre Riteau candidacy for Blazar 2025.1 PTL  https://review.opendev.org/c/openstack/election/+/92665819:20
opendevreviewMerged openstack/contributor-guide master: Update IRC document  https://review.opendev.org/c/openstack/contributor-guide/+/92651119:20
opendevreviewTatiana Ovchinnikova proposed openstack/election master: Add Tatiana Ovchinnikova candidacy for Horizon 2025.1 PTL  https://review.opendev.org/c/openstack/election/+/92667719:45
opendevreviewIan Y. Choi proposed openstack/contributor-guide master: [IRC] Improve on IRC nature and global community  https://review.opendev.org/c/openstack/contributor-guide/+/92658421:19
opendevreviewMerged openstack/contributor-guide master: [IRC] Improve on IRC nature and global community  https://review.opendev.org/c/openstack/contributor-guide/+/92658421:53
« Monday, 2024-08-19 Index Wednesday, 2024-08-21 »

Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!