Thursday, 2018-10-11

*** strigazi has quit IRC00:10
*** strigazi has joined #openstack-security00:11
*** jhebden has quit IRC00:11
*** devananda has quit IRC00:12
*** jhebden has joined #openstack-security00:12
*** devananda has joined #openstack-security00:13
*** gyee has quit IRC00:15
*** rcernin has quit IRC00:29
*** gagehugo_ has quit IRC01:24
*** gagehugo has joined #openstack-security01:25
*** rcernin has joined #openstack-security02:01
*** dave-mccowan has quit IRC02:21
*** dave-mccowan has joined #openstack-security02:24
*** dave-mccowan has quit IRC03:16
*** pcaruana has joined #openstack-security06:02
*** Luzi has joined #openstack-security07:00
*** rcernin has quit IRC07:01
*** v12aml has quit IRC10:25
*** v12aml has joined #openstack-security10:26
*** v12aml has quit IRC10:34
*** v12aml has joined #openstack-security10:37
*** Emine has joined #openstack-security11:13
*** dave-mccowan has joined #openstack-security12:07
gagehugofungi: I likely won't be around today for the security meeting12:13
*** dave-mccowan has quit IRC12:19
fungigagehugo: thanks for the heads up! if there's enough interest i'll see who wants to chair (or chair it myself), otherwise we can cancel it if nobody's around12:26
*** SimAloo has joined #openstack-security13:12
*** Luzi has quit IRC14:47
*** nickthetait has joined #openstack-security14:51
*** openstackgerrit has quit IRC14:58
*** openstackgerrit has joined #openstack-security15:00
*** gyee has joined #openstack-security15:08
*** openstackgerrit has quit IRC15:22
*** macza has joined #openstack-security15:28
*** macza has quit IRC15:43
*** macza has joined #openstack-security15:43
*** macza has quit IRC15:45
*** macza has joined #openstack-security15:45
*** Emine has quit IRC15:55
fungiwe ended up skipping the meeting16:07
fungialso it took me 15 minutes to even remember to check in on #openstack-meeting to see if anyone wanted to meet16:07
fungithanks for responding, nickthetait!16:08
gagehugofungi: thanks for checking16:09
sean-k-mooneyfungi: regarding i was speaking to trident and they mentioned a posible second vector to trigger the same behavior.  if confirmed it would require a more extensive fix is it ok to split that into a seperate security bug and mark it private or should we extend the exisign bug17:06
openstackLaunchpad bug 1734320 in os-vif "Eavesdropping private traffic" [Undecided,In progress] - Assigned to sean mooney (sean-k-mooney)17:06
fungisean-k-mooney: i would just extend the existing bug17:17
fungii'm starting to think this warrants an ossn until there are sufficient fixes backported17:18
fungii've had a few people ask me about it at this point17:18
fungisean-k-mooney: do we know of any viable workarounds for the problem (short of just not using the affected backends)?17:19
*** macza has quit IRC17:20
*** macza_ has joined #openstack-security17:20
sean-k-mooneyfungi: for the second vector i dont think it can be fixed in just os-vif17:22
fungithanks, figured i'd ask17:24
sean-k-mooneyi intiall said if its confim as i have not tryided to reporduce the second vector yet but i suspect it would require an addtional nova change + neutron change or an addtion os-vif + neutron agent change / sdn controler change17:26
sean-k-mooneyi will try to reproduce tomorw but i dont want to public state the other vector for now without a known solution17:27
fungisean-k-mooney: makes sense. thanks for looking into it17:41
*** openstackstatus has quit IRC18:28
*** openstackstatus has joined #openstack-security18:30
*** ChanServ sets mode: +v openstackstatus18:30
*** dave-mccowan has joined #openstack-security18:58
*** dave-mccowan has quit IRC19:03
*** dave-mccowan has joined #openstack-security19:05
*** pcaruana has quit IRC20:40
*** nickthetait has left #openstack-security21:21
*** dave-mccowan has quit IRC21:28
*** dave-mccowan has joined #openstack-security21:31
*** macza has joined #openstack-security21:47
*** macza has quit IRC21:47
*** macza has joined #openstack-security21:48
*** macza_ has quit IRC21:49
*** macza has quit IRC21:52
*** SimAloo has quit IRC21:58
*** openstackgerrit has joined #openstack-security22:21
*** macza has joined #openstack-security22:21
*** rcernin has joined #openstack-security22:23
*** macza has quit IRC22:25
*** openstackstatus has quit IRC22:28
*** openstackstatus has joined #openstack-security22:29
*** ChanServ sets mode: +v openstackstatus22:29

Generated by 2.15.3 by Marius Gedminas - find it at!