|
Re: [cip-members] Migration complete - Re: Mailman2 to Groups.io reminder
Urs Gleim
Hi Neal,
toggle quoted messageShow quoted text
Thanks. However I was not requested to set a password.
Best regards,
Urs --
Urs Gleim | Siemens AG | Corporate Technology
Am 06.04.2020 um 23:45 schrieb Neal Caidin <ncaidin@...>:
|
|
|
|
Re: [cip-members] Migration complete - Re: Mailman2 to Groups.io reminder
Chris Paterson
Hello Neil,
>You should receive an email shortly asking you to log in with your email address and set a password. It doesn’t look like I’ve received this email.
>Lists >https://lists.cip-project.org/main > >https://lists.cip-project.org/cip-board >https://lists.cip-project.org/cip-dev >https://lists.cip-project.org/cip-testing-results >https://lists.cip-project.org/cip-members >https://lists.cip-project.org/cip-security
None of these links work. It looks like they should be https://lists.cip-project.org/g/main etc.
Kind regards, Chris
From: cip-members@... <cip-members@...>
On Behalf Of Neal Caidin via lists.cip-project.org
Sent: 06 April 2020 22:45 To: cip-board@...; cip-members@...; cip-security@...; cip-dev@... Subject: [cip-members] Migration complete - Re: Mailman2 to Groups.io reminder
Dear CIP Community,
The migration is complete.
You should receive an email shortly asking you to log in with your email address and set a password.
One important note, please do NOT unsubscribe from the "main" list. This would unsubscribe you from all of the CIP lists. "main" is an administrative list used by Groups.io as a parent list to manage the other lists. Please let me know if you have any questions or issues.
Lists https://lists.cip-project.org/main
https://lists.cip-project.org/cip-board https://lists.cip-project.org/cip-dev https://lists.cip-project.org/cip-testing-results https://lists.cip-project.org/cip-members https://lists.cip-project.org/cip-security
Email addresses
Best regards, Neal
Neal Caidin Program Manager, Program Management & Operations The Linux Foundation +1 (919) 238-9104 (w/h)
On Mon, Apr 6, 2020 at 3:34 PM Neal Caidin <ncaidin@...> wrote:
|
|
|
|
Re: [cip-members] [cip-dev] Migration complete - Re: Mailman2 to Groups.io reminder
Jan Kiszka
On 07.04.20 03:44, punit1.agrawal@toshiba.co.jp wrote:
Pavel Machek <pavel@ucw.cz> writes:Konstantin, could you have a look or organize help? This is a blocker for us, groups.io must not mess with messages.Hi!I wonder if it's possible to turn these off by the admin.The migration is complete.And we have first problem. But given that other projects are using this workflow as well, I strongly suspect there is a way to fix it. Thanks, Jan -- Siemens AG, Corporate Technology, CT RDA IOT SES-DE Corporate Competence Center Embedded Linux
|
|
|
|
Re: Python 3.x vs 2.7
Kento Yoshida
Hi,
toggle quoted messageShow quoted text
-----Original Message-----Some of the security members didn't accept GPLv3, so currently we dropped GPLv3 packages from the candidates. BTW, I'm not sure but is the CIP policy on accepting GPLv3 still to be decided? If that's out of question, I'm pretty sure we can get GPLv2 tar implementationThank you for introduction about "tar". I will investigate whether it meets the requirements. And also I'll search GPLv2 implementation if it meets the requirements. If it's not decided yet about the CIP policy on accepting GPLv3, we cannot adopt GPLv3 packages. Anyway, I agreed it is difficult to support python 2 for a super long term. And everyone agreed on this point. So, we cannot support each libraries using python 2, at least. Best regards, Kent Best regards,
|
|
|
|
Re: Migration complete - Re: Mailman2 to Groups.io reminder
punit1.agrawal@...
Pavel Machek <pavel@ucw.cz> writes:
Hi!I wonder if it's possible to turn these off by the admin.The migration is complete.And we have first problem. Also, another thing to test is the impact of the footer on applying patches sent via email (git am / git apply).
|
|
|
|
Re: Migration complete - Re: Mailman2 to Groups.io reminder
Pavel Machek <pavel@...>
Hi!
The migration is complete.And we have first problem. They seem to add this kind of trailer to the messages, breaking GPG signatures :-(. (I won't quote full trailer as it seems to contain some secrets?) Pavel -- DENX Software Engineering GmbH, Managing Director: Wolfgang Denk HRB 165235 Munich, Office: Kirchenstr.5, D-82194 Groebenzell, Germany
|
|
|
|
Re: Python 3.x vs 2.7
Pavel Machek <pavel@...>
On Mon 2020-04-06 12:15:16, Jan Kiszka wrote:
On 03.04.20 23:47, Pavel Machek wrote:Does "tar" match the requirements?Hi!I suppose there is that concern about GPLv3 again (as with broadly used And I agree that best option would be to accept GPLv3. If that's out of question, I'm pretty sure we can get GPLv2 tar implementation somewhere. busybox has implementation, and I'm pretty sure there's GPLv2 fork of busybox. Old version of tar should be GPLv2. Still better than porting duplicity to different python version... Best regards, Pavel -- DENX Software Engineering GmbH, Managing Director: Wolfgang Denk HRB 165235 Munich, Office: Kirchenstr.5, D-82194 Groebenzell, Germany
|
|
|
|
Migration complete - Re: Mailman2 to Groups.io reminder
Dear CIP Community, The migration is complete. You should receive an email shortly asking you to log in with your email address and set a password. One important note, please do NOT unsubscribe from the "main" list. This would unsubscribe you from all of the CIP lists. "main" is an administrative list used by Groups.io as a parent list to manage the other lists. Please let me know if you have any questions or issues. Lists https://lists.cip-project.org/main
https://lists.cip-project.org/cip-board https://lists.cip-project.org/cip-dev https://lists.cip-project.org/cip-testing-results https://lists.cip-project.org/cip-members https://lists.cip-project.org/cip-security
Email addresses Best regards, Neal Neal Caidin Program Manager, Program Management & Operations The Linux Foundation +1 (919) 238-9104 (w/h) +1 (919) 949-1861 (m)
On Mon, Apr 6, 2020 at 3:34 PM Neal Caidin <ncaidin@...> wrote:
|
|
|
|
Re: Python 3.x vs 2.7
Jan Kiszka
On 03.04.20 23:47, Pavel Machek wrote:
Hi!I suppose there is that concern about GPLv3 again (as with broadly used rsync) - which is generally overrated. There exists legal views that already GPLv2 requires to keep such licensed components replaceable on the target. What then effectively remains with v3 is its, well, wording complexity. Jan -- Siemens AG, Corporate Technology, CT RDA IOT SES-DE Corporate Competence Center Embedded Linux
|
|
|
|
Re: Python 3.x vs 2.7
punit1.agrawal@...
Hi Kent,
Kento Yoshida <kento.yoshida.wz@renesas.com> writes: Thank you for your feedback, Iwamatsu-san.[...]-----Original Message----- From a brief look at the pros / cons between the two choices (below), IActually, option-2 is dominant in the security team as well.As you may know, some of other packages we selected are dependent on python3.x, so we may have the below options:similar problems for the others of python. am also biased towards backporting a python3 based version of duplicity. Suggested next steps further down - * Python2 Pros ---- * No backport (to Buster) needed (least effort, right now) Cons ---- * Has reached EOL in upstream. Not sure about ELTS support. It maybe that if we go with Python2, we (CIP) is on our own. * Python3 Pros ---- * Python3 is available in Debian Buster * Likely to be supported for longer time - upstream and in Debian Cons ---- * Needs backporting duplicity (and dependencies) to Buster via backports to align with upstream first approach of CIP. - From a quick check of dependencies in bullseye a backport of librsync2 might also be needed. Next steps ---------- * Investigate the effort to backport duplicity (and dependencies) to buster-backports. * If no major surprises are found during the investigation, work with Debian upstream to upload the new version. Hope that makes sense. Thanks, Punit However, packages with large dependencies can be difficult to backports. ForAgree. We are not going to select the package which is GPL-3 or has a lot of dependent package, so the duplicity is only one candidate for us substantially.
|
|
|
|
Re: Python 3.x vs 2.7
Pavel Machek
Hi!
<duplicity>I'm not sure what your exact requirements are, but have you considered "tar"? It should be possible to pipe its output to aespipe (and possibly other tools) to get encryption, and it should be able to do incremental backups... Best regards, Pavel -- DENX Software Engineering GmbH, Managing Director: Wolfgang Denk HRB 165235 Munich, Office: Kirchenstr.5, D-82194 Groebenzell, Germany
|
|
|
|
Re: Python 3.x vs 2.7
Kento Yoshida
Thank you for your feedback, Iwamatsu-san.
toggle quoted messageShow quoted text
-----Original Message-----Actually, option-2 is dominant in the security team as well. However, packages with large dependencies can be difficult to backports. ForAgree. We are not going to select the package which is GPL-3 or has a lot of dependent package, so the duplicity is only one candidate for us substantially. Best regards,
|
|
|
|
Re: Python 3.x vs 2.7
Nobuhiro Iwamatsu
Hi,
As you may know, some of other packages we selected are dependent on python 3.x, so we may have the below options:In my opinion, it is difficult to support Python2 for a super long term. And I think it is difficult to support each library using Python2. Therefore, I think Option2 is good. And if necessary, we can use backposts.debian.org. However, packages with large dependencies can be difficult to backports. For example Kbuckup is difficult, I think. Best regards, Nobuhiro From: cip-dev [mailto:cip-dev-bounces@lists.cip-project.org] On Behalf Of Kento Yoshida Sent: Thursday, April 2, 2020 6:59 PM To: cip-dev@lists.cip-project.org Cc: cip-security@lists.cip-project.org Subject: [cip-dev] Python 3.x vs 2.7 Hi CIP core group, The security package proposal is suspended now, but I'd like to discuss about the python version which is suitable to maintain. We selected "duplicity" for the requirement of system backup according to the functionality, license, the number of dependencies and so on. However, the duplicity in the Debian buster [1] dependent on python 2.7, which is not maintained anymore [2]. [1] https://packages.debian.org/source/buster/duplicity [2] https://pythonclock.org/ As you may know, some of other packages we selected are dependent on python 3.x, so we may have the below options: 1. Maintain python 2.7 as well 2. Backport the upper duplicity which migrated python 3.x in bullseye archive 3. Others What do you think is best? I hope we can decide the policy within the CIP core group because there shall be similar problems for the others of python. FYI, unfortunately we couldn't find the alternative package for system backup. The duplicity is the best package for us from the license and num of dependencies point of view. See the following. <Rsync> Encryption: No Schedule backup: No Incremental backup: Yes License: GPL v3 Dependencies count (aprox): 24 Reference: https://rsync.samba.org/features.html <duplicity> Encryption: Yes Schedule backup: No Incremental backup: Yes License: GPL v2 Dependencies count (aprox): 80 Reference: http://duplicity.nongnu.org/features.ht <Backuppc> Encryption: No Schedule backup: Yes Incremental backup: Yes License: GPL-2+, X11 Dependencies count (aprox): 132 Reference: http://backuppc.sourceforge.net/info.html <Amanda> Encryption: Yes Schedule backup: Yes Incremental backup: Yes License: GPL-2+ Dependencies count (aprox): 289 Reference: https://www.zmanda.com/amanda-community-edition.html <Kbackup> Encryption: Yes Schedule backup: Yes Incremental backup: Yes License: GPL-2, LGPL-2.1, GFDL-1.2+, KDEeV Dependencies count (aprox): 414 Reference: https://kde.org/applications/utilities/org.kde.kbackup Best regards, Kent
|
|
|
|
Mailman2 to Groups.io reminder
[cross posted] Reminder. Mailman2 to Groups.io email is scheduled to start on Pacific - 2 pm , Monday, April 6 Eastern - 5 pm, Monday April 6 CET - 11 pm, Monday April 6 JST - 6 am, Tuesday, April 7 It is expected to take several hours, but could be as much as a full 24 hours. When the migration is completed, I will send out the links so that you can access email archives. Best regards, Neal Neal Caidin Program Manager, Program Management & Operations The Linux Foundation +1 (919) 238-9104 (w/h) +1 (919) 949-1861 (m)
|
|
|
|
Python 3.x vs 2.7
Kento Yoshida
Hi CIP core group,
The security package proposal is suspended now, but I'd like to discuss about the python version which is suitable to maintain.
We selected "duplicity" for the requirement of system backup according to the functionality, license, the number of dependencies and so on. However, the duplicity in the Debian buster [1] dependent on python 2.7, which is not maintained anymore [2].
[1] https://packages.debian.org/source/buster/duplicity
As you may know, some of other packages we selected are dependent on python 3.x, so we may have the below options:
1. Maintain python 2.7 as well 2. Backport the upper duplicity which migrated python 3.x in bullseye archive 3. Others
What do you think is best? I hope we can decide the policy within the CIP core group because there shall be similar problems for the others of python.
FYI, unfortunately we couldn't find the alternative package for system backup. The duplicity is the best package for us from the license and num of dependencies point of view. See the following.
<Rsync> Encryption: No Schedule backup: No Incremental backup: Yes License: GPL v3 Dependencies count (aprox): 24 Reference: https://rsync.samba.org/features.html
<duplicity> Encryption: Yes Schedule backup: No Incremental backup: Yes License: GPL v2 Dependencies count (aprox): 80 Reference: http://duplicity.nongnu.org/features.ht
<Backuppc> Encryption: No Schedule backup: Yes Incremental backup: Yes License: GPL-2+, X11 Dependencies count (aprox): 132 Reference: http://backuppc.sourceforge.net/info.html
<Amanda> Encryption: Yes Schedule backup: Yes Incremental backup: Yes License: GPL-2+ Dependencies count (aprox): 289 Reference: https://www.zmanda.com/amanda-community-edition.html
<Kbackup> Encryption: Yes Schedule backup: Yes Incremental backup: Yes License: GPL-2, LGPL-2.1, GFDL-1.2+, KDEeV Dependencies count (aprox): 414 Reference: https://kde.org/applications/utilities/org.kde.kbackup
Best regards, Kent
|
|
|
|
Re: CIP IRC weekly meeting today
masashi.kudo@...
Hi, Iwamatsu-san,
toggle quoted messageShow quoted text
Noted. Then, see you next week! Best regards, -- M. Kudo
-----Original Message-----
From: nobuhiro1.iwamatsu@toshiba.co.jp <nobuhiro1.iwamatsu@toshiba.co.jp> Sent: Thursday, April 2, 2020 5:19 PM To: 工藤 雅司(CTJ OSS事業推進室) <masashi.kudo@cybertrust.co.jp>; cip-dev@lists.cip-project.org Subject: RE: CIP IRC weekly meeting today Hi, Sorry, I can not join IRC meeting today. -----Original Message-----No update. 2. Strengthen sustainable process to backport patches from Mainline/LTS -No update. But I reviewed and checked other LTS kernel. * Kernel testingBest regards, Nobuhiro
|
|
|
|
Re: CIP IRC weekly meeting today
Nobuhiro Iwamatsu
Hi,
toggle quoted messageShow quoted text
Sorry, I can not join IRC meeting today.
-----Original Message-----No update. 2. Strengthen sustainable process to backport patches from Mainline/LTS -No update. But I reviewed and checked other LTS kernel. * Kernel testingBest regards, Nobuhiro
|
|
|
|
CIP IRC weekly meeting today
masashi.kudo@...
Hi all,
Kindly be reminded to attend the weekly meeting through IRC to discuss technical topics with CIP kernel today. *Please note that the IRC meeting was rescheduled to UTC (GMT) 09:00 starting from the first week of Apr. according to TSC meeting* https://www.timeanddate.com/worldclock/meetingdetails.html?year=2020&month=4&day=2&hour=9&min=0&sec=0&p1=224&p2=179&p3=136&p4=37&p5=241&p6=248 USWest USEast UK DE TW JP 02:00 05:00 10:00 11:00 17:00 18:00 Channel: * irc:chat.freenode.net:6667/cip Last meeting minutes: https://irclogs.baserock.org/meetings/cip/2020/03/cip.2020-03-26-09.00.log.html Agenda: * Action item 1. Combine root filesystem with kselftest binary - Iwamatsu-san 2. Strengthen sustainable process to backport patches from Mainline/LTS - Kernel Team 2-1. Workflow for identifying important fixes, backporting, and reviewing them 2-2. Prepare the tools to be used for this workflow 2-3. Get practice in backporting patches 3. Upload a guideline for reference hardware platform addition - masashi910 * Kernel maintenance updates * Kernel testing * CIP Core * Software update * CIP Security * AOB The meeting will take 30 min, although it can be extended to an hour if it makes sense and those involved in the topics can stay. Otherwise, the topic will be taken offline or in the next meeting. Best regards, -- M. Kudo Cybertrust Japan Co., Ltd.
|
|
|
|
Test case for the security pacakges tied to requirements of IEC 62443-4-2
Kento Yoshida
Hi,
As the last IRC meeting, I'll share a draft of test cases for security packages. Noted that this draft is still under review and improvement. In addition, it finally will be revised during validation with the certification body. Then, we don't intend to complete it at this moment. But if you have any question or feedback, please let me know.
BR, Kent
|
|
|
|
Enquiry of BV
WORLDS VALVE <tjwdsv@...>
Hi Sir/Madam, Glad to hear that you are on the market for valves, we specialize in this field for 13 years with the strength of BUTTERFLY VALVES with good quality and pretty competitive price.
Also we have our own professional designers to meet any of your requirements. If you are interested in,Please let me know.
Best Regards!
Huang Dekai ____________________________ Tianjin Worlds Valve co., ltd. Tel:0086-13682070288
Add:No.25,Fuhui Road,Jinnan District,Tianjin, China
|
|
|
