#openstack-meeting log

15:01:48 <gagehugo> #startmeeting security
15:01:49 <openstack> Meeting started Thu Mar 15 15:01:48 2018 UTC and is due to finish in 60 minutes.  The chair is gagehugo. Information about MeetBot at http://wiki.debian.org/MeetBot.
15:01:51 <openstack> Useful Commands: #action #agreed #help #info #idea #link #topic #startvote.
15:01:54 <openstack> The meeting name has been set to 'security'
15:02:38 <gagehugo> o/
15:02:51 <gagehugo> #link https://etherpad.openstack.org/p/security-agenda
15:03:04 <gagehugo> anyone around?
15:04:28 <ttx> o/
15:04:42 <gagehugo> ttx o/
15:04:52 <gagehugo> lhinds fungi eeiden
15:04:59 <gagehugo> I think lhinds won't make it today
15:05:04 <ttx> sorry I'm attending two meetings at the same time, so let me know when my topic starts :)
15:05:35 <eeiden> That's all good, can definitely catch up later
15:05:38 <gagehugo> you can go now if you'd like, I think the first two topics don't have much to cover
15:06:03 <gagehugo> otherwise with short attendance we can push to next week when lhinds is back
15:06:11 <gagehugo> eeiden ok
15:07:26 <gagehugo> #topic Keystone Threat Analysis
15:07:50 <gagehugo> I need to do that still, move the findings to the patchset for the analysis doc
15:08:00 * gagehugo puts it on his todo list
15:08:12 <gagehugo> #topic Spectre/Meltdown mitigation
15:08:15 <gagehugo> ttx o/
15:09:02 <ttx> o/
15:09:18 <gagehugo> This is from the discussion at the PTG right?
15:09:22 <ttx> OK just a quick update on actions I said I'd do at the PTG
15:09:34 <gagehugo> ok cool
15:09:45 <ttx> I reached out to kashyap regarding te exposure of PCID CPU capabilities
15:09:57 <ttx> He confirmed he had it covered
15:10:30 <ttx> I also reached out to jaypipes regarding the option of running the scheduler in a "One tenant per host" granularity mode
15:10:37 <fungi> i am around, but paying closer attention in the tc office hour
15:10:47 <gagehugo> fungi o/ ok
15:11:04 <ttx> The discussion on that was a bit disrupted by #snowpenstack
15:11:09 <gagehugo> heh
15:11:18 <ttx> He said it was possible but tricky, and future work could facilitate it
15:11:34 <gagehugo> hmm ok
15:11:42 <ttx> i don't think we need to concern ourselves (as the Security SIG) much more at that stage
15:12:17 <gagehugo> maybe worth keeping an eye on for now at least?
15:12:26 <ttx> Just a general need to keep up with what's happening in that area and making sure the openstack community is aware of the situation / optimizations available
15:12:51 <gagehugo> ok
15:14:07 <gagehugo> ttx I'll put some notes down to be aware
15:15:06 <ttx> thanks!
15:15:21 <gagehugo> #topic LCOO
15:15:32 <gagehugo> I think I'd like to have lhinds in for this, can move to next week
15:16:29 <gagehugo> #topic Performance loss mitigation
15:17:27 <gagehugo> this seems like the same topic as spectre/meltdown
15:17:36 <gagehugo> yeah
15:17:56 <gagehugo> #topic Bandit
15:18:05 <gagehugo> not sure if browne is around
15:18:19 <gagehugo> couple ps up for review
15:18:27 <gagehugo> otherwise not much updates
15:18:43 <gagehugo> #topic Tatu Update
15:19:20 <gagehugo> Not sure what Pino's irc is or if he is here?
15:20:03 <gagehugo> #topic OSSN
15:20:42 <ttx> heh
15:21:22 <gagehugo> don't think there's any updates here
15:21:50 <gagehugo> #topic VMT
15:22:02 <gagehugo> same as before, I will update the keystonemiddleware doc
15:22:24 <gagehugo> #topic General Discussion
15:22:46 <gagehugo> Does anyone have anything else?
15:22:52 <gagehugo> otherwise will end a bit early
15:25:09 <gagehugo> thanks everyone!
15:25:15 <gagehugo> #endmeeting