# 2021-12 CentOS board meeting https://hackmd.io/@centosboard/rJQZe2zFF Meeting starts: 20:00 UTC on Wednesday 8th of December: `date -d "2021-12-08 20:00 UTC"` Zoom link : https://zoom.us/j/93879964686 Passcode will be sent to participants and guests the day the meeting takes place. # 2021-12 CentOS board meeting - Agenda # Attendees ## Board members * Pat Riehecky * Thomas Oulevey * Rich Bowen * Davide Cavalca * Tru Huynh * Mike * Jim * Bex * Josh Boyer joined at :30 ## Directors Absent * Josh Boyer sends regrets (but made it a bit late :) * Johnny ## Guests * Lance * Neal * Shaun * Peter Georg * Aoife Moloney * Steven * Amy # Agenda * Previous minutes * https://blog.centos.org/2021/11/october-2021-board-meeting-minutes/ * November meeting was skipped * Board seat nominations * https://lists.centos.org/pipermail/centos-devel/2021-November/077422.html * 11 nominations * 7 accepted, with nomination statements * 2 declined * 2 never responded in any way * Proposal for -extras on CS9 (Brian) * https://lists.centos.org/pipermail/centos-devel/2021-November/077417.html * Proposal: Remove extra red tape from process to get packages into -extras repo * SIG-like structure for the repo, with SIG chairs as members * Members could tag packages for release when they're ready * Will proceed unless there are objections expressed * What do we do about third-party repos like EPEL? * Need a policy drafted for this. * Policy on retiring unmaintained repos * Pat&Davide: document the process (and for SIGs) so they are well informed * Brian: yes * Tru : How do you resolve conflicts ? * Brian: just for -release packages so likely no conflicts * Tru: Concerned also about conflicts with third-party repos * Davide: would the infra SIG be a good parent organization? * Bex: reporting on how many releases are updating their repo defs (and what that means in context) might be a useful stat. * Davide: finding out how many folks are downstream consumers of a SIG Repo def could help identify a general number of users (which could be handy). * Move forward with the proposal and document it in the SIG Guide + above comments ### On going discussion * Secure boot and SIGs (ie, issue #67 below) * SIGs want to ship content that needs to be signed * Signing with personal keys results in a terrible user experience * Options 1. Just use project key 2. Make a separate key for these artifacts, and get this added to the shim * Pat: preference for 2/ - separate volonteers effort * Brian: For the Infra, figure out a long term gov for people interacting with Microsoft. Trusted set of people to manage keys. * Davide: Could be centralized for all SIGs ? Does it need to be someone at RH ? * Bex: Board perspective on why having all the released signed by the same key could be a problem ? Safeguard at the SIG acceptance level ? * Neal : Delegate key that can be removed / Think about users perspective for booting things in an easy way * Understand how delegate key and shim can be done ? Brian is happy to follow up the different technical questions. * Bex : Write a detailed proposal and bring it to Red Hat. * Neal: There's a ticket for this (CS9 secureboot ?) - https://bugzilla.redhat.com/show_bug.cgi?id=2027505 * Reasonnable to target CS9 only if need be. ### Issues https://git.centos.org/centos/board/issues **Issues to be closed (ACTION close all of them if no objection)** * None **New issues** * None **Pending issues** * **[#67](https://git.centos.org/centos/board/issue/67)** Trusting the SIGs by default, from a CentOS Project perspective (Secureboot) * See above↓ * **[#65](https://git.centos.org/centos/board/issue/65)** Intel OneApi and Centos stream (Clarification sought - do we actually have any contacts at Intel? * Rich has sent feedback via the website, but don't know whether that will make it to a human. * **[#45](https://git.centos.org/centos/board/issue/45)** CentOS variant artifacts (ISOs, disk images, etc.) branding * Resolved/Approved, but needs to be published. Someone needs to take an action item here. * Publish this in the SIG handbook - Rich will do this * Add note/reference in the TM guidelines, and vice versa * Neal will file a ticket requesting further policy around this * **[#44](https://git.centos.org/centos/board/issue/44)** Remove former Directors from various accounts and permissions * This has been hanging around for 7 months, but it's unclear how to proceed here. * Are former directors still on the mailing lists? * Are there specific actions we need to take here? * Mailing list, IRC channel, HackMD, mailing list ownership * Brian: create a ticket to Infra SIG when a board member goes. * Bex: seperate access link to your board role and to the community roles **Issues on hold** * **#04** Definitive answer requested regarding logo design (On hold as I work with Brand to register. No Board action needed at this time.) * **#27** Providing Official AMIs in Amazon CN regions. * **#03** Getting official CentOS images into Azure ### Community Architect updates * Stream 9 "launch" messaging - https://blog.centos.org/2021/12/introducing-centos-stream-9/ and https://centos.org/stream9/ * FOSDEM Dojo CFP - https://wiki.centos.org/Events/Dojo/FOSDEM2022 * AMA on the 4th of Feb ### SIG Reports * Virtualization - https://blog.centos.org/2021/12/centos-community-newsletter-december-2021/#:~:text=the%20past%20quarter.-,Virtualization,-Advanced%20Virtualization%20updates * OpsTools - https://blog.centos.org/2021/12/centos-community-newsletter-december-2021/#:~:text=CentOS%20OpsTools%20SIG%20Quarterly%20Report ### AOB * TBC ### Executive Session * This part is reserved for board members. ###### tags: `agenda`