Minutes from November SPDX General Meeting

Philip Odence

Thanks again to Lei from Fujitsu for an interesting presentation!



General Meeting/Minutes/2016-11-03

< General Meeting‎ | Minutes

Jump to: navigation, search

         Attendance: 12

         Lead by Phil Odence

         Minutes of Sept meeting approved (Oct meeting was cancelled due to LinuxCon Europe)


Contents [hide] 

                        1 Special Guest - Lei Mao Hui, Fujitsu

                        2 Tech Team Report - Kate/Gary

                        3 Legal Team Report - Jilayne/Paul

                        4 Outreach Team Report - Jack

                        5 Cross Functional Topics - Phil

                        6 Attendees

Special Guest - Lei Mao Hui, Fujitsu[edit]


         Working for Fujitu

         Developing on house Distro

         Spoke at ALS and Linux Conference about experience with SPDXX

         Reason Fujitsu needs SPDX

         Want an SPDX file for all their packages

         Customers ofter require license info

         Released under GPL3, but includes software under other license as well. Many!

         MIT, BSD, GPL2, etc.

         SPDX is good for this purpose

         So they added into production Development

         Yocto SPDX

         Lucky for them that Yocto supports SPDX

         But the activity on Yocto SPDX has been slow

         Found some issues when using

         Only supports SPDX 1.1

         Doesn’t do a great job even with that

         Is complex to use; takes a long time

         May introduce license conflicts

         In the end you can download the SPDX

         Fujitsu’s contributions to Yocto SPDX

         So they did some work to improve:

         Created a patch to upgrade to SPDX 1.2

         Unfortunately was never accepted into Yocto

         Would like to upgrade to SPDX 2.0

         And to improve performance

         Has been working on some of the SPDX open source tools

         including DoSocks developed by UNO

         Lei has been continuing to submit improvements to Yocto

         Improved performance

         Currently discussing more improvements with Yocto

         Will be continuing to improve and to upgrade to SPDX 2.1


         Has yocto been receptive?

         Yocto has not been active or focused on SPDX.

         Some people have been interested

         Not sure why they are not interested

         Kate will help and follow up

Tech Team Report - Kate/Gary[edit]


         SPDX 2.1 is now released and official

         Starting to focus on use cases and tooling

         last call was a joint call with the Legal Team

         Templetazation focus

         Agreed on interfaces between teams


         Incorporated results from the bake off

         Overall, everyone at the bake off got good feedback, leading to improvement of all tools

         XML Format

         Legal Team has been working on new format for license templates

         Makes it easier for multiple contributors

         Working now on making it consumable for external tools

         Really good progress

         Should have draft standards in the next month or two.


Legal Team Report - Jilayne/Paul[edit]

         Joint Call with Tech Team

         Worked on syncing tag names to be consistent with spec

         Went really well

         License List

         Business as usual with new licenses

         More license requests for licenses in other languages

         Probably need to have a discussion about how to handle consistently


Outreach Team Report - Jack[edit]


         New site is up

         Jack’s in process of posting new stuff

         Next agenda

         Working on new docs, templates, etc

         Mostly to help explain aspects of how to use

         Trying to assemble list of topics and then prioritize

         Very open to ideas


Cross Functional Topics - Phil[edit]

         Future topic - Will be a discussion of license in different languages

         Legal Team will come forward with a strawman. A few months out.

         Guest stars

         Always looking for more



         Phil Odence, Black Duck

         Lei Mao Hui, Fujitsu

         Kate Stewart, Linux Foundation

         Jilayne Lovejoy, ARM

         Yev Bronshteyn, Black Duck

         Scott Sterling, Palamida

         Paul Madick, Dimension Data

         Gary O’Neill, SourceAuditor

         Tarek Jamal, ARM

         Mark Gisi, Wind River

         Jack Manbeck, TI

         Alexios Zavras, Intel

         NewPP limit report CPU time usage: 0.009 seconds Real time usage: 0.010 seconds Preprocessor visited node count: 23/1000000 Preprocessor generated node count: 28/1000000 Post‐expand include size: 0/2097152 bytes Template argument size: 0/2097152 bytes Highest expansion depth: 2/40 Expensive parser function count: 0/100 Saved in parser cache with key spdx_mwiki:pcache:idhash:1065-0!*!*!!en!*!* and timestamp 20161103153915 and revision id 4059